Adding Dependabot to your Repository - Security Team

.dependabot/config.yml

@@ -0,0 +1,21 @@
+# This is an example config
+# DOCS: https://dependabot.com/docs/config-file/
+version: 1 #required
+update_configs: #required
+  - package_manager: "javascript" #required - options: javascript, ruby:bundler, php:composer, python, go:modules, go:dep, java:maven, java:gradle, dotnet:nuget, rust:cargo, elixir:hex, docker, terraform, submodules, elm
+    directory: "/" #required
+    update_schedule: "live" #required - options: live (check docs for supported package_managers, daily (weekdays only), weekly, monthly
+    target_branch: "main" #optional (default is default branch)
+    default_reviewers: #optional
+      - ""
+    default_assignees: #optional
+      - ""
+    default_labels: #optional
+      - "dependencies"
+      - "dependabot"
+    default_milestone: 1 #optional
+    allowed_updates: #optional, please see docs
+    ignored_updates: #optional, plese see docs
+    automerged_updates: #optional, please see docs
+    version_requirements: #optional, please see docs
+    commit_message: #optional, please see docs

.gitignore

@@ -2,7 +2,3 @@
 .vagrant/
 *console.log
 
-# source code locations
-kong/
-kong-plugin/
-

.gitmodules

@@ -0,0 +1,3 @@
+[submodule "submodules/kong"]
+	path = submodules/kong
+	url = https://github.com/Kong/kong.git

Vagrantfile

@@ -41,7 +41,7 @@ Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
   if ENV["KONG_VERSION"]
     version = ENV["KONG_VERSION"]
   else
-    version = "1.4.0"
+    version = "1.4.2"
   end
 
   if ENV["KONG_CASSANDRA"]
@@ -96,14 +96,26 @@ Vagrant.configure(VAGRANTFILE_API_VERSION) do |config|
     config.vm.synced_folder plugin_source, "/kong-plugin"
   end
 
+  # Sync terraform folder
+  config.vm.synced_folder "./tf", "/tf"
+
+  # Copy terraform-provider-kong
+  config.vm.provision "file", source: "terraform-provider-kong_v5.0.0", destination: "$HOME/.terraform.d/plugins/"
+
+  # Sync all helper scripts into vm
+  config.vm.synced_folder "./scripts", "/home/vagrant/scripts"
+
   config.vm.network :forwarded_port, guest: 8000, host: 8000
   config.vm.network :forwarded_port, guest: 8001, host: 8001
   config.vm.network :forwarded_port, guest: 8443, host: 8443
   config.vm.network :forwarded_port, guest: 8444, host: 8444
   config.vm.network :forwarded_port, guest: 9000, host: 9000 # only used with TCP stream proxy with Kong >= 0.15.0
   config.vm.network :forwarded_port, guest: 5432, host: 65432
 
-  config.vm.provision "shell", path: "provision.sh",
+  config.vm.provision "shell", path: "./scripts/provision.sh",
      env: { "HTTP_PROXY": ENV["HTTP_PROXY"], "HTTPS_PROXY": ENV["HTTPS_PROXY"]},
     :args => [version, cversion, utils, anreports, loglevel]
+
+  # Run initialize Kong and plugins
+  config.vm.provision "shell", path: "./scripts/init.sh"
 end

kong

@@ -0,0 +1 @@
+submodules/kong/

kong-plugin

@@ -0,0 +1 @@
+../../kong-plugin

scripts/compile_plugins.sh

@@ -0,0 +1,15 @@
+#!/usr/bin/env bash
+
+cd /kong-plugin
+
+for i in *; do
+  if [ -d $i ]; then
+    cd $i
+
+    printf "\t$i\n\n"
+
+    luarocks make *.rockspec
+
+    cd /kong-plugin
+  fi
+done

scripts/entrypoint.sh

@@ -0,0 +1,37 @@
+#!/usr/bin/env bash
+
+echo "******************************"
+echo "Initializing Terraform"
+echo "******************************"
+
+cd /tf/dev
+
+terraform init
+
+echo "******************************"
+echo "Bootstrapping Kong DB"
+echo "******************************"
+
+kong migrations bootstrap
+
+KONG_STATUS="$(kong health | grep running -o)"
+
+export KONG_PLUGINS=cors,jwt,jwt-claims-headers,permission-middleware,prometheus,rate-limiting,syslog
+
+echo "******************************"
+echo "Starting Kong"
+echo "plugins enabled:"
+echo $KONG_PLUGINS
+echo "******************************"
+
+if [ "$KONG_STATUS" == "running" ]; then
+  kong restart
+else
+  kong start
+fi
+
+echo "******************************"
+echo "Applying Kong Terraform config"
+echo "******************************"
+
+terraform apply -auto-approve

scripts/hmr.sh

@@ -0,0 +1,11 @@
+#!/usr/bin/env bash
+
+reload_plugins() {
+  echo "Reloading Kong Plugins"
+  vagrant ssh -c "~/scripts/compile_plugins.sh"
+  vagrant ssh -c "cd /tf/dev; terraform apply -auto-approve"
+}
+
+export -f reload_plugins
+
+fswatch -0 -xr --event=Updated ../../../kong-plugin/permission-middleware | xargs -0 -n1 bash -c reload_plugins

scripts/init.sh

@@ -0,0 +1,37 @@
+#!/bin/bash
+
+echo "*************************************"
+echo "Compiling kong middleware"
+echo "*************************************"
+
+cd /kong-plugin
+
+for i in *; do
+  if [ -d $i ]; then
+    cd $i
+
+    printf "\t$i\n\n"
+
+    luarocks make *.rockspec
+
+    cd /kong-plugin
+  fi
+done
+
+echo "*************************************"
+echo "Compiling kong"
+echo "*************************************"
+
+cd /
+make --directory=./kong dev
+
+if [ ! -f /usr/local/bin/terraform ] ; then
+  echo "*************************************"
+  echo "Installing terraform"
+  echo "*************************************"
+
+  cd /tmp
+  wget --quiet https://releases.hashicorp.com/terraform/0.12.17/terraform_0.12.17_linux_amd64.zip
+  unzip -qq terraform*.zip
+  mv ./terraform /usr/local/bin/
+fi

scripts/test.sh

@@ -0,0 +1,5 @@
+#!/usr/bin/env bash
+
+export PATH=/usr/local/bin:/usr/local/openresty/bin:/opt/stap/bin:/usr/local/stapxx:/usr/local/openresty/nginx/sbin:/usr/local/openresty/luajit/bin:$PATH:
+
+/kong/bin/busted /kong-plugin

tf

@@ -0,0 +1 @@
+../../tf/