Merge branch 'main' into update-docs-EE-subpath

cmd/gitops-server/cmd/cmd.go

@@ -11,7 +11,6 @@ import (
 	"os"
 	"os/signal"
 	"path"
-	"path/filepath"
 	"strings"
 	"syscall"
 	"time"
@@ -157,9 +156,6 @@ func runCmd(cmd *cobra.Command, args []string) error {
 		}
 	}))
 
-	assetFS := getAssets()
-	assetHandler := http.FileServer(http.FS(assetFS))
-	redirector := createRedirector(assetFS, log, options.RoutePrefix)
 	clusterName := kube.InClusterConfigClusterName()
 
 	rest, err := config.GetConfig()
@@ -271,18 +267,12 @@ func runCmd(cmd *cobra.Command, args []string) error {
 
 	mux.Handle("/v1/", gziphandler.GzipHandler(appAndProfilesHandlers))
 
-	mux.Handle("/", gziphandler.GzipHandler(http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
-		// Assume anything with a file extension in the name is a static asset.
-		extension := filepath.Ext(req.URL.Path)
-		// We use the golang http.FileServer for static file requests.
-		// This will return a 404 on normal page requests, ie /some-page.
-		// Redirect all non-file requests to index.html, where the JS routing will take over.
-		if extension == "" {
-			redirector(w, req)
-			return
-		}
-		assetHandler.ServeHTTP(w, req)
-	})))
+	// Static asset handling
+	assetFS := getAssets()
+	assertFSHandler := http.FileServer(http.FS(assetFS))
+	redirectHandler := server.IndexHTMLHandler(assetFS, log, options.RoutePrefix)
+	assetHandler := server.AssetHandler(assertFSHandler, redirectHandler)
+	mux.Handle("/", gziphandler.GzipHandler(assetHandler))
 
 	if options.RoutePrefix != "" {
 		mux = server.WithRoutePrefix(mux, options.RoutePrefix)
@@ -405,51 +395,3 @@ func getAssets() fs.FS {
 
 	return f
 }
-
-// A redirector ensures that index.html always gets served.
-// The JS router will take care of actual navigation once the index.html page lands.
-func createRedirector(fsys fs.FS, log logr.Logger, routePrefix string) http.HandlerFunc {
-	baseHref := server.GetBaseHref(routePrefix)
-	log.Info("Creating redirector", "routePrefix", routePrefix, "baseHref", baseHref)
-
-	return func(w http.ResponseWriter, r *http.Request) {
-		indexPage, err := fsys.Open("index.html")
-
-		if err != nil {
-			log.Error(err, "could not open index.html page")
-			w.WriteHeader(http.StatusInternalServerError)
-
-			return
-		}
-
-		stat, err := indexPage.Stat()
-		if err != nil {
-			log.Error(err, "could not get index.html stat")
-			w.WriteHeader(http.StatusInternalServerError)
-
-			return
-		}
-
-		bt := make([]byte, stat.Size())
-		_, err = indexPage.Read(bt)
-
-		if err != nil {
-			log.Error(err, "could not read index.html")
-			w.WriteHeader(http.StatusInternalServerError)
-
-			return
-		}
-
-		// inject base tag into index.html
-		bt = server.InjectHTMLBaseTag(bt, baseHref)
-
-		_, err = w.Write(bt)
-
-		if err != nil {
-			log.Error(err, "error writing index.html")
-			w.WriteHeader(http.StatusInternalServerError)
-
-			return
-		}
-	}
-}

pkg/server/static_assets.go

@@ -0,0 +1,61 @@
+package server
+
+import (
+	"io"
+	"io/fs"
+	"net/http"
+	"path/filepath"
+
+	"github.com/go-logr/logr"
+)
+
+// AssetHandler returns a http.Handler that serves static assets from the provided fs.FS.
+// It also redirects all non-file requests to index.html.
+func AssetHandler(assetHandler, redirectHandler http.Handler) http.HandlerFunc {
+	return func(w http.ResponseWriter, req *http.Request) {
+		// Assume anything with a file extension in the name is a static asset.
+		extension := filepath.Ext(req.URL.Path)
+		// We use the golang http.FileServer for static file requests.
+		// This will return a 404 on normal page requests, ie /some-page.
+		// Redirect all non-file requests to index.html, where the JS routing will take over.
+		if extension == "" {
+			redirectHandler.ServeHTTP(w, req)
+			return
+		}
+		assetHandler.ServeHTTP(w, req)
+	}
+}
+
+// IndexHTMLHandler ensures that index.html always gets served.
+// The JS router will take care of actual navigation once the index.html page lands.
+func IndexHTMLHandler(fsys fs.FS, log logr.Logger, routePrefix string) http.HandlerFunc {
+	baseHref := GetBaseHref(routePrefix)
+	log.Info("Creating redirector", "routePrefix", routePrefix, "baseHref", baseHref)
+
+	return func(w http.ResponseWriter, r *http.Request) {
+		indexPage, err := fsys.Open("index.html")
+		if err != nil {
+			log.Error(err, "could not open index.html page")
+			http.Error(w, "could not open index.html page", http.StatusInternalServerError)
+			return
+		}
+		defer indexPage.Close()
+
+		bt, err := io.ReadAll(indexPage)
+		if err != nil {
+			log.Error(err, "could not read index.html")
+			http.Error(w, "could not read index.html", http.StatusInternalServerError)
+			return
+		}
+
+		// inject base tag into index.html
+		bt = InjectHTMLBaseTag(bt, baseHref)
+
+		_, err = w.Write(bt)
+		if err != nil {
+			log.Error(err, "error writing index.html")
+			http.Error(w, "error writing index.html", http.StatusInternalServerError)
+			return
+		}
+	}
+}

pkg/server/static_assets_test.go

@@ -0,0 +1,118 @@
+package server
+
+import (
+	"io"
+	"io/fs"
+	"net/http"
+	"net/http/httptest"
+	"os"
+	"strings"
+	"testing"
+
+	"github.com/go-logr/logr"
+)
+
+func TestCreateRedirector(t *testing.T) {
+	log := logr.Discard()
+	// Easiest way to create a filesystem..
+	fsys, err := fs.Sub(os.DirFS("testdata"), "public")
+	if err != nil {
+		t.Fatalf("failed to create fs: %v", err)
+	}
+
+	t.Run("We read the index.html and inject base", func(t *testing.T) {
+		req := httptest.NewRequest("GET", "http://example.com/foo", nil)
+		w := httptest.NewRecorder()
+		handler := IndexHTMLHandler(fsys, log, "/prefix")
+
+		handler.ServeHTTP(w, req)
+
+		resp := w.Result()
+		body, _ := io.ReadAll(resp.Body)
+
+		// Check the status code
+		if resp.StatusCode != http.StatusOK {
+			t.Errorf("expected status OK; got %v", resp.StatusCode)
+		}
+
+		// Check that the base tag was injected
+		if !strings.Contains(string(body), `<base href="/prefix/">`) {
+			t.Errorf("base tag not injected correctly: %v", string(body))
+		}
+	})
+
+	t.Run("file not found", func(t *testing.T) {
+		brokenFS, err := fs.Sub(os.DirFS("testdata"), "nonexistent")
+		if err != nil {
+			t.Fatalf("failed to create fs: %v", err)
+		}
+		req := httptest.NewRequest("GET", "http://example.com/foo", nil)
+		w := httptest.NewRecorder()
+		handler := IndexHTMLHandler(brokenFS, log, "/prefix")
+
+		handler.ServeHTTP(w, req)
+
+		resp := w.Result()
+
+		// Check the status code
+		if resp.StatusCode != http.StatusInternalServerError {
+			t.Errorf("expected status InternalServerError; got %v", resp.StatusCode)
+		}
+	})
+}
+
+func TestAssetHandlerFunc(t *testing.T) {
+	// Mock assetHandler to just record that it was called and with what request
+	assetHandler := http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
+		w.Write([]byte("assetHandler called"))
+	})
+
+	// Mock redirector to just record that it was called and with what request
+	redirector := http.HandlerFunc(func(w http.ResponseWriter, req *http.Request) {
+		w.Write([]byte("redirector called"))
+	})
+
+	handler := AssetHandler(assetHandler, redirector)
+
+	tests := []struct {
+		name       string
+		requestURI string
+		wantStatus int
+		wantBody   string
+	}{
+		{
+			name:       "Asset request with extension",
+			requestURI: "/static/somefile.js",
+			wantStatus: http.StatusOK,
+			wantBody:   "assetHandler called",
+		},
+		{
+			name:       "Non-asset request",
+			requestURI: "/some-page",
+			wantStatus: http.StatusOK,
+			wantBody:   "redirector called",
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			req, err := http.NewRequest("GET", tt.requestURI, nil)
+			if err != nil {
+				t.Fatalf("could not create request: %v", err)
+			}
+
+			rr := httptest.NewRecorder()
+			handler(rr, req)
+
+			if rr.Code != tt.wantStatus {
+				t.Errorf("handler returned wrong status code: got %v want %v",
+					rr.Code, tt.wantStatus)
+			}
+
+			if rr.Body.String() != tt.wantBody {
+				t.Errorf("handler returned unexpected body: got %v want %v",
+					rr.Body.String(), tt.wantBody)
+			}
+		})
+	}
+}

pkg/server/testdata/public/index.html

@@ -0,0 +1,6 @@
+<html>
+  <head></head>
+  <body>
+    <h1>Index</h1>
+  </body>
+</html>

website/docs/enterprise/getting-started/install-enterprise-cli.mdx

@@ -133,13 +133,24 @@ The bootstrap CLI will prompt you to choose from the latest 3 versions of Weave
 You will be prompt to provide admin username and password, which will be used to access the dashboard. This will create admin secret with the credentials. If you already have previous admin credentials on your cluster, the installation will prompt you if you want to continue with the old credentials or exit and revoke them and re-run the installation.
 
 #### Configure Dashboard Access
-To access Weave GitOps Enterprise dashboard, you have the two following options available:
+Weave GitOps Enterprise dashboard is available by default via ClusterIP service. You could use the `port-forward` command
+output as part of the bootstrapping session. Other networking configurations could be achieved by
+modifying the `service` or `ingress` in the `HelmRelease` values:
 
-1. **Service**: this option is called `localhost` in the cli and the dashboard will be available through a [ClusterIP Service](https://kubernetes.io/docs/concepts/services-networking/service/#type-clusterip).
-2. **Ingress**: this option is called `externaldns` the dashboard will be available through an [Ingress](https://kubernetes.io/docs/concepts/services-networking/ingress/) with the following considerations:
-    - An Ingress controller needs to exist.
-    - A host-based ingress will be created of the ingress class `public-nginx`.
-    - An [ExternalDNS](https://github.com/kubernetes-sigs/external-dns) annotation will be added with the value of the provided domain.
+```yaml
+---
+apiVersion: helm.toolkit.fluxcd.io/v2beta1
+kind: HelmRelease
+metadata:
+  name: weave-gitops-enterprise
+  namespace: flux-system
+spec:
+  values:
+    service: # update to meet your needs
+      ...
+    ingress: # update to meet your needs
+      ...
+```
 
 #### Access the dashboard
 
@@ -160,8 +171,6 @@ Please don't forget to add a new static-client on your OIDC provider settings wi
 ### CLI configurations
 
 - `--kube-config`:                  allows to choose the Kubeconfig for your cluster, default would be ~/.kube/config
-- `-d`, `--domain externaldns`:     indicate the domain to use in case of using externaldns
-- `-t`, `--domain-type`:            dashboard domain type: could be 'localhost' or 'externaldns'
 - `-h`, `--help`:                   help for bootstrap
 - `-p`, `--password`:               Dashboard admin password
 - `-k`, `--private-key`:            Private key path. This key will be used to push the Weave GitOps Enterprise's resources to the default cluster repository

yarn.lock

@@ -8,9 +8,9 @@
   integrity sha512-1Yjs2SvM8TflER/OD3cOjhWWOZb58A2t7wpE2S9XfBYTiIl+XFhQG2bjy4Pu1I+EAlCNUzRDYDdFwFYUKvXcIA==
 
 "@adobe/css-tools@^4.0.1":
-  version "4.3.1"
-  resolved "https://registry.yarnpkg.com/@adobe/css-tools/-/css-tools-4.3.1.tgz#abfccb8ca78075a2b6187345c26243c1a0842f28"
-  integrity sha512-/62yikz7NLScCGAAST5SHdnjaDJQBDq0M2muyRTpf2VQhw6StBg2ALiu73zSJQ4fMVLA+0uBhBHAle7Wg+2kSg==
+  version "4.3.2"
+  resolved "https://registry.yarnpkg.com/@adobe/css-tools/-/css-tools-4.3.2.tgz#a6abc715fb6884851fca9dad37fc34739a04fd11"
+  integrity sha512-DA5a1C0gD/pLOvhv33YMrbf2FK3oUzwNl9oOJqE4XVjuEtt6XIakRcsd7eLiOSPkp1kTRQGICTA8cKra/vFbjw==
 
 "@babel/code-frame@^7.0.0", "@babel/code-frame@^7.10.4", "@babel/code-frame@^7.12.13", "@babel/code-frame@^7.16.7":
   version "7.16.7"