Move plugin interface to apis package

Author: everesio

Makefile

@@ -91,8 +91,10 @@ plugin.auth-user:
 plugin.auth-ldap:
 	CGO_ENABLED=0 go build -o build/auth-ldap $(BUILD_FLAGS) -ldflags "$(LDFLAGS)" cmd/plugin-auth-ldap/main.go
 
-plugin.googleid-provider:
-	CGO_ENABLED=0 go build -o build/googleid-provider $(BUILD_FLAGS) -ldflags "$(LDFLAGS)" cmd/plugin-googleid-provider/main.go
+plugin.google-id-provider:
+	CGO_ENABLED=0 go build -o build/google-id-provider $(BUILD_FLAGS) -ldflags "$(LDFLAGS)" cmd/plugin-googleid-provider/main.go
+
+all: build plugin.auth-user plugin.auth-ldap plugin.google-id-provider
 
 clean:
 	@rm -rf build

cmd/kafka-proxy/server.go

@@ -19,6 +19,7 @@ import (
 	"time"
 
 	"errors"
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	gatewayclient "github.com/grepplabs/kafka-proxy/plugin/gateway-client/shared"
 	localauth "github.com/grepplabs/kafka-proxy/plugin/local-auth/shared"
 	"github.com/hashicorp/go-hclog"
@@ -144,7 +145,7 @@ func init() {
 func Run(_ *cobra.Command, _ []string) {
 	logrus.Infof("Starting kafka-proxy version %s", config.Version)
 
-	var passwordAuthenticator localauth.PasswordAuthenticator
+	var passwordAuthenticator apis.PasswordAuthenticator
 	if c.Auth.Local.Enable {
 		client := NewLocalAuthPluginClient()
 		defer client.Kill()
@@ -158,13 +159,13 @@ func Run(_ *cobra.Command, _ []string) {
 			logrus.Fatal(err)
 		}
 		var ok bool
-		passwordAuthenticator, ok = raw.(localauth.PasswordAuthenticator)
+		passwordAuthenticator, ok = raw.(apis.PasswordAuthenticator)
 		if !ok {
 			logrus.Fatal(errors.New("unsupported plugin type"))
 		}
 	}
 
-	var tokenProvider gatewayclient.TokenProvider
+	var tokenProvider apis.TokenProvider
 	if c.Auth.Gateway.Client.Enable {
 		client := NewGatewayClientPluginClient()
 		defer client.Kill()
@@ -178,7 +179,7 @@ func Run(_ *cobra.Command, _ []string) {
 			logrus.Fatal(err)
 		}
 		var ok bool
-		tokenProvider, ok = raw.(gatewayclient.TokenProvider)
+		tokenProvider, ok = raw.(apis.TokenProvider)
 		if !ok {
 			logrus.Fatal(errors.New("unsupported plugin type"))
 		}

cmd/plugin-googleid-provider/main.go

@@ -51,9 +51,10 @@ func (f *TokenProvider) flagSet() *flag.FlagSet {
 func main() {
 	tokenProvider := &TokenProvider{}
 	fs := tokenProvider.flagSet()
-	fs.Parse(os.Args[1:])
 	fs.IntVar(&tokenProvider.timeout, "timeout", 5, "Request timeout")
 
+	fs.Parse(os.Args[1:])
+
 	plugin.Serve(&plugin.ServeConfig{
 		HandshakeConfig: shared.Handshake,
 		Plugins: map[string]plugin.Plugin{

plugin/gateway-client/shared/grpc.go

@@ -1,6 +1,7 @@
 package shared
 
 import (
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	"github.com/grepplabs/kafka-proxy/plugin/gateway-client/proto"
 	"github.com/hashicorp/go-plugin"
 	"golang.org/x/net/context"
@@ -12,8 +13,8 @@ type GRPCClient struct {
 	client proto.TokenProviderClient
 }
 
-func (m *GRPCClient) GetToken(username, password string) (int32, string, error) {
-	resp, err := m.client.GetToken(context.Background(), &proto.TokenRequest{})
+func (m *GRPCClient) GetToken(claims []string) (int32, string, error) {
+	resp, err := m.client.GetToken(context.Background(), &proto.TokenRequest{Claims: claims})
 	if err != nil {
 		return 0, "", err
 	}
@@ -23,7 +24,7 @@ func (m *GRPCClient) GetToken(username, password string) (int32, string, error)
 // Here is the gRPC server that GRPCClient talks to.
 type GRPCServer struct {
 	broker *plugin.GRPCBroker
-	Impl   TokenProvider
+	Impl   apis.TokenProvider
 }
 
 func (m *GRPCServer) GetToken(

plugin/gateway-client/shared/interface.go

@@ -5,6 +5,7 @@ import (
 	"golang.org/x/net/context"
 	"google.golang.org/grpc"
 
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	"github.com/grepplabs/kafka-proxy/plugin/gateway-client/proto"
 	"github.com/hashicorp/go-plugin"
 	"net/rpc"
@@ -21,12 +22,8 @@ var PluginMap = map[string]plugin.Plugin{
 	"tokenProvider": &TokenProviderPlugin{},
 }
 
-type TokenProvider interface {
-	GetToken(claims []string) (int32, string, error)
-}
-
 type TokenProviderPlugin struct {
-	Impl TokenProvider
+	Impl apis.TokenProvider
 }
 
 func (p *TokenProviderPlugin) GRPCServer(broker *plugin.GRPCBroker, s *grpc.Server) error {

plugin/gateway-client/shared/rpc.go

@@ -1,6 +1,7 @@
 package shared
 
 import (
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	"net/rpc"
 )
 
@@ -15,7 +16,7 @@ func (m *RPCClient) GetToken(claims []string) (int32, string, error) {
 }
 
 type RPCServer struct {
-	Impl TokenProvider
+	Impl apis.TokenProvider
 }
 
 func (m *RPCServer) GetToken(args map[string]interface{}, resp *map[string]interface{}) error {

plugin/local-auth/shared/grpc.go

@@ -1,6 +1,7 @@
 package shared
 
 import (
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	"github.com/grepplabs/kafka-proxy/plugin/local-auth/proto"
 	"github.com/hashicorp/go-plugin"
 	"golang.org/x/net/context"
@@ -26,7 +27,7 @@ func (m *GRPCClient) Authenticate(username, password string) (bool, int32, error
 // Here is the gRPC server that GRPCClient talks to.
 type GRPCServer struct {
 	broker *plugin.GRPCBroker
-	Impl   PasswordAuthenticator
+	Impl   apis.PasswordAuthenticator
 }
 
 func (m *GRPCServer) Authenticate(

plugin/local-auth/shared/interface.go

@@ -5,6 +5,7 @@ import (
 	"golang.org/x/net/context"
 	"google.golang.org/grpc"
 
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	"github.com/grepplabs/kafka-proxy/plugin/local-auth/proto"
 	"github.com/hashicorp/go-plugin"
 	"net/rpc"
@@ -21,12 +22,8 @@ var PluginMap = map[string]plugin.Plugin{
 	"passwordAuthenticator": &PasswordAuthenticatorPlugin{},
 }
 
-type PasswordAuthenticator interface {
-	Authenticate(username, password string) (bool, int32, error)
-}
-
 type PasswordAuthenticatorPlugin struct {
-	Impl PasswordAuthenticator
+	Impl apis.PasswordAuthenticator
 }
 
 func (p *PasswordAuthenticatorPlugin) GRPCServer(broker *plugin.GRPCBroker, s *grpc.Server) error {

plugin/local-auth/shared/rpc.go

@@ -1,6 +1,7 @@
 package shared
 
 import (
+	"github.com/grepplabs/kafka-proxy/pkg/apis"
 	"net/rpc"
 )
 
@@ -16,7 +17,7 @@ func (m *RPCClient) Authenticate(username, password string) (bool, int32, error)
 }
 
 type RPCServer struct {
-	Impl PasswordAuthenticator
+	Impl apis.PasswordAuthenticator
 }
 
 func (m *RPCServer) Authenticate(args map[string]interface{}, resp *map[string]interface{}) error {

proxy/client.go

@@ -56,6 +56,13 @@ func NewClient(conns *ConnSet, c *config.Config, netAddressMappingFunc config.Ne
 			forbiddenApiKeys[int16(apiKey)] = struct{}{}
 		}
 	}
+	if c.Auth.Local.Enable && passwordAuthenticator == nil {
+		return nil, errors.New("Auth.Local.Enable is enabled but passwordAuthenticator is nil")
+	}
+
+	if c.Auth.Gateway.Client.Enable && tokenProvider == nil {
+		return nil, errors.New("Auth.Gateway.Client.Enable is enabled but tokenProvider is nil")
+	}
 
 	return &Client{conns: conns, config: c, tlsConfig: tlsConfig, tcpConnOptions: tcpConnOptions, stopRun: make(chan struct{}, 1),
 		saslPlainAuth: &SASLPlainAuth{
@@ -66,10 +73,11 @@ func NewClient(conns *ConnSet, c *config.Config, netAddressMappingFunc config.Ne
 			password:     c.Kafka.SASL.Password,
 		},
 		authClient: &AuthClient{
-			enabled: c.Auth.Gateway.Client.Enable,
-			magic:   c.Auth.Gateway.Client.Magic,
-			method:  c.Auth.Gateway.Client.Method,
-			timeout: c.Auth.Gateway.Client.Timeout,
+			enabled:       c.Auth.Gateway.Client.Enable,
+			magic:         c.Auth.Gateway.Client.Magic,
+			method:        c.Auth.Gateway.Client.Method,
+			timeout:       c.Auth.Gateway.Client.Timeout,
+			tokenProvider: tokenProvider,
 		},
 		processorConfig: ProcessorConfig{
 			MaxOpenRequests:       c.Kafka.MaxOpenRequests,