Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

API reference documentation should also include enumeration descriptions #3151

Closed
liorokman opened this issue Apr 9, 2024 · 1 comment · Fixed by #3186
Closed

API reference documentation should also include enumeration descriptions #3151

liorokman opened this issue Apr 9, 2024 · 1 comment · Fixed by #3186
Assignees
@liorokman
Labels
documentation Improvements or additions to documentation

Comments

@liorokman
Copy link
Contributor

Description:

The API reference documentation generated from the CRD structures currently doesn't include the valid values for Enum types.

For example, the ClientTrafficPolicy API contains an enum field called escapedSlashesAction of a type called PathEscapedSlashAction. The generated documentation doesn't list the set of valid values for this field.

Ideally, that information should be included in the generated documentation. For this example, the information is available and the following table could have been automatically generated:

Value Description
KeepUnchanged KeepUnchangedAction keeps escaped slashes as they arrive without changes
RejectRequest RejectRequestAction rejects client requests containing escaped slashes with a 400 status. gRPC requests will be rejected with the INTERNAL (13) error code. The "httpN.downstream_rq_failed_path_normalization" counter is incremented for each rejected request.
UnescapeAndRedirect UnescapeAndRedirect unescapes %2F and %5C sequences and redirects to the new path if these sequences were present. Redirect occurs after path normalization and merge slashes transformations if they were configured. gRPC requests will be rejected with the INTERNAL (13) error code. This option minimizes possibility of path confusion exploits by forcing request with unescaped slashes to traverse all parties: downstream client, intermediate proxies, Envoy and upstream server. The “httpN.downstream_rq_redirected_with_normalized_path” counter is incremented for each redirected request.
UnescapeAndForward UnescapeAndForward unescapes %2F and %5C sequences and forwards the request. Note: this option should not be enabled if intermediaries perform path based access control as it may lead to path confusion vulnerabilities.
@liorokman liorokman added triage documentation Improvements or additions to documentation labels Apr 9, 2024
@liorokman
Copy link
Contributor Author

I've opened a PR for the crd-ref-docs tool to support generating this sort of table: elastic/crd-ref-docs#79 .

Once it's merged, we can update the templates that EG uses to also generate this sort of table.

@zirain zirain removed the triage label Apr 11, 2024
@liorokman liorokman mentioned this issue Apr 13, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@liorokman liorokman

Labels
documentation Improvements or additions to documentation
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

docs: Generate enum documentation liorokman/gateway
2 participants
@zirain @liorokman