diff --git a/example/plugins/api-call-example/ui.go b/example/plugins/api-call-example/ui.go
index d8fccc4..00dfecf 100644
--- a/example/plugins/api-call-example/ui.go
+++ b/example/plugins/api-call-example/ui.go
@@ -69,7 +69,7 @@ func allowedEndpointInvalidKey(cfg *plugin.ConfigureSpec) (string, error) {
return string(respDump), nil
}
-func disallowedEndpoint(cfg *plugin.ConfigureSpec) (string, error) {
+func unaccessibleEndpoint(cfg *plugin.ConfigureSpec) (string, error) {
// Make an API call to an endpoint that is not permitted
client := &http.Client{}
apiURL := fmt.Sprintf("http://localhost:%d/api/acme/listExpiredDomains", cfg.ZoraxyPort)
@@ -95,6 +95,32 @@ func disallowedEndpoint(cfg *plugin.ConfigureSpec) (string, error) {
return string(respDump), nil
}
+func unpermittedEndpoint(cfg *plugin.ConfigureSpec) (string, error) {
+ // Make an API call to an endpoint that is plugin-accessible but is not permitted
+ client := &http.Client{}
+ apiURL := fmt.Sprintf("http://localhost:%d/api/proxy/list", cfg.ZoraxyPort)
+ req, err := http.NewRequest(http.MethodGet, apiURL, nil)
+ if err != nil {
+ return "", fmt.Errorf("error creating request: %v", err)
+ }
+ // Use the API key from the runtime config
+ req.Header.Set("Authorization", "Bearer "+cfg.APIKey)
+ req.Header.Set("Content-Type", "application/json")
+
+ resp, err := client.Do(req)
+ if err != nil {
+ return "", fmt.Errorf("error making API call: %v", err)
+ }
+ defer resp.Body.Close()
+
+ respDump, err := httputil.DumpResponse(resp, true)
+ if err != nil {
+ return "", fmt.Errorf("error dumping response: %v", err)
+ }
+
+ return string(respDump), nil
+}
+
func RenderUI(config *plugin.ConfigureSpec, w http.ResponseWriter, r *http.Request) {
// make several types of API calls to demonstrate the plugin functionality
accessList, err := allowedEndpoint(config)
@@ -116,14 +142,24 @@ func RenderUI(config *plugin.ConfigureSpec, w http.ResponseWriter, r *http.Reque
RenderedInvalidKeyResponseHTML = fmt.Sprintf("
%s
", html.EscapeString(invalidKeyResponse))
}
- // Make an API call to an endpoint that is not permitted
- disallowedResponse, err := disallowedEndpoint(config)
- var RenderedDisallowedResponseHTML string
+ // Make an API call to an endpoint that is not plugin-accessible
+ unaccessibleResponse, err := unaccessibleEndpoint(config)
+ var RenderedUnaccessibleResponseHTML string
if err != nil {
- RenderedDisallowedResponseHTML = fmt.Sprintf("
", err)
} else {
- // Render the disallowed response as HTML
- RenderedDisallowedResponseHTML = fmt.Sprintf("
%s
", html.EscapeString(disallowedResponse))
+ // Render the unaccessible response as HTML
+ RenderedUnaccessibleResponseHTML = fmt.Sprintf("
%s
", html.EscapeString(unaccessibleResponse))
+ }
+
+ // Make an API call to an endpoint that is plugin-accessible but is not permitted
+ unpermittedResponse, err := unpermittedEndpoint(config)
+ var RenderedUnpermittedResponseHTML string
+ if err != nil {
+ RenderedUnpermittedResponseHTML = fmt.Sprintf("
Error with unpermitted endpoint: %v
", err)
+ } else {
+ // Render the unpermitted response as HTML
+ RenderedUnpermittedResponseHTML = fmt.Sprintf("
%s
", html.EscapeString(unpermittedResponse))
}
// Render the UI for the plugin
@@ -133,7 +169,7 @@ func RenderUI(config *plugin.ConfigureSpec, w http.ResponseWriter, r *http.Reque
- Plugin UI
+ API Call Example Plugin UI
@@ -188,8 +224,8 @@ func RenderUI(config *plugin.ConfigureSpec, w http.ResponseWriter, r *http.Reque
-
-
Welcome to the Plugin UI
+
+
Welcome to the API Call Example Plugin UI
Plugin is running on port: ` + strconv.Itoa(config.Port) + `
API Call Examples
@@ -212,9 +248,17 @@ func RenderUI(config *plugin.ConfigureSpec, w http.ResponseWriter, r *http.Reque
⚠️ Disallowed Endpoint
-
Making a GET request to /api/acme/listExpiredDomains (not in allowed endpoints):
+
Making a GET request to /api/acme/listExpiredDomains (not a plugin-accessible endpoint):