openshift/openshift-docs
1
0
Fork 0
mirror of https://github.com/openshift/openshift-docs.git synced 2026-02-05 21:46:22 +01:00
Code Issues Releases Activity
Files
281249a2fec3c3fd39bb14780302401319df861f
openshift-docs/modules/dynamic-plugin-proxy-service.adoc
EricPonvelle d75f887c54 OSDOCS-16567: Updated Web Console for DITA migration
2025-12-23 21:00:36 +00:00

50 lines
2.3 KiB
Plaintext
Raw Blame History

// Module included in the following assemblies:
//
// * web_console/dynamic-plugin/deploy-plugin-cluster.adoc
:_mod-docs-content-type: CONCEPT
[id="dynamic-plugin-proxy-service_{context}"]
= Plugin service proxy
[role="_abstract"]
If you need to make HTTP requests to an in-cluster service from your plugin, you can declare a service proxy in its `ConsolePlugin` resource by using the `spec.proxy` array field. The console backend exposes the `/api/proxy/plugin/<plugin-name>/<proxy-alias>/<request-path>++?++<optional-query-parameters>` endpoint to proxy the communication between the plugin and the service. A proxied request uses a _service CA bundle_ by default. The service must use HTTPS.
[NOTE]
====
The plugin must use the `consolefetch` API to make requests from its JavaScript code or some requests might fail. For more information, see "Dynamic plugin API".
====
For each entry, you must specify an endpoint and alias of the proxy under the `endpoint` and `alias` fields. For the Service proxy type, you must set the endpoint `type` field to `Service` and the `service` must include values for the `name`, `namespace`, and `port` fields. For example, `/api/proxy/plugin/helm/helm-charts/releases++?++limit++=++10` is a proxy request path from the `helm` plugin with a `helm-charts` service that lists ten helm releases.
.Example service proxy
[source,YAML,subs="+quotes,+macros"]
----
apiVersion: console.openshift.io/v1
kind: ConsolePlugin
metadata:
name:<plugin-name>
spec:
proxy:
- alias: helm-charts
authorization: UserToken
caCertificate: +'-----BEGIN CERTIFICATE-----\nMIID....'en+
endpoint:
service:
name: <service-name>
namespace: <service-namespace>
port: <service-port>
type: Service
----
--
where:
`spec.proxy.alias.helm-charts`:: Alias of the proxy.
`spec.proxy.authorization.UserToken`:: If the service proxy request must contain the logged-in user's {product-title} access token, you must set the authorization field to `UserToken`.
+
[NOTE]
====
If the service proxy request does not contain the logged-in user's {product-title} access token, set the authorization field to `None`.
====
`spec.proxy.caCertificate.+'-----BEGIN CERTIFICATE-----\nMIID....'en+`:: If the service uses a custom service CA, the `caCertificate` field must contain the certificate bundle.
`spec.proxy.endpoint`:: Endpoint of the proxy.
--
View Git Blame Copy Permalink