istio.io/istio@v0.0.0-20240520182934-d79c90f27776/pilot/pkg/security/authz/matcher/template.go (about) 1 // Copyright Istio Authors 2 // 3 // Licensed under the Apache License, Version 2.0 (the "License"); 4 // you may not use this file except in compliance with the License. 5 // You may obtain a copy of the License at 6 // 7 // http://www.apache.org/licenses/LICENSE-2.0 8 // 9 // Unless required by applicable law or agreed to in writing, software 10 // distributed under the License is distributed on an "AS IS" BASIS, 11 // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 12 // See the License for the specific language governing permissions and 13 // limitations under the License. 14 15 package matcher 16 17 import ( 18 "strings" 19 20 uri_template "github.com/envoyproxy/go-control-plane/envoy/extensions/path/match/uri_template/v3" 21 22 "istio.io/istio/pkg/config/security" 23 ) 24 25 var replacer = strings.NewReplacer(security.MatchOneTemplate, "*", security.MatchAnyTemplate, "**") 26 27 // PatherTemplateMatcher creates a URI template matcher for path. 28 func PathTemplateMatcher(path string) *uri_template.UriTemplateMatchConfig { 29 return &uri_template.UriTemplateMatchConfig{ 30 PathTemplate: sanitizePathTemplate(path), 31 } 32 } 33 34 // sanitizePathTemplate converts the path template into a valid envoy uri template. 35 // https://www.envoyproxy.io/docs/envoy/latest/api-v3/extensions/path/match/uri_template/v3/uri_template_match.proto 36 // If path contains "{*}", it will be replaced with "*". 37 // If path contains "{**}", it will be replaced with "**". 38 // If the path already contained "*" or "**", they will be left as is. 39 func sanitizePathTemplate(path string) string { 40 return replacer.Replace(path) 41 }