joelegasse
commented
8 years ago Thanks for submitting this. This was actually the solution I was thinking about suggesting for the auth discussion. This looks like a good start, but you're missing the logic in (*bufferList).add() to make sure the auth value matches the current node.
The line that currently reads:
if (*cur).query != query || (*cur).full {
Should now read:
if (*cur).query != query || (*cur).auth != auth || (*cur).full {
Without that change, only the first auth header for a given batch of a query string will be used, probably causing problems in a multi-user scenario.
Also, you'll need to sign the InfluxData CLA before I can merge this: https://influxdata.com/community/cla/
goakley
jeffastorey
I realize there is a discussion going on about auth for the relay ( #13 ) . This implementation proposes just blindly forwarding the
Authorizationheader if it's present. It seems to encompass the spirit of the relay, which is just to forward the request to each server. Query-string auth currently works with the relay since the entire query-string is forwarded, but basic auth did not. Since Telegraf uses basic auth and not query-string auth, data from telegraf fails to pass through the relay without this fix, which is a major issue.