Olá!!!
Primeiro parabéns pelo recurso disponibilizado. Espetacular.

Sugiro a inclusão da opção do OpenID para o command: ParseServices:

if ($data['openapi'] && preg_match('/^3./', $data['openapi']) && isset($data['paths']))
return $this->injectSettings($this->parseSwaggerTwo($data), $url, $docRoot, $serviceId);

Could I ask about authentication to the microservices?
Am I right in thinking that this setup could only be used 'as is' to consume microservices that you control/own due to there being no authentication between the gateway and the microservices?

Would you put a microservice between the API gateway and a third party service, just to handle the authentication and regulate the API of the third party service?

I really like this approach and your Medium article was a great read.

The gateway:parse does not work with swagger 2.0

First thanks for all !
I have i problem to get a image from the microservice because all the result is on JSON, How I can get the image by the gatway,

Regards

Hi,
First of all thanks for making this kind of stuff for us, there are no other php support for API gateway. Its really helpful. But I do have one concern. I want to add multi tenancy support in my project along with this API gateway, so each customer shares the software application and also shares a individual database.

so please help me to run multiple websites using the same Laravel installation while keeping tenant specific data separated for fully independent multi-domain setups.

Thanks,
Anil

I want to contribute on this API GATEWAY, I need if possible if you can help me start thank you.

How do i do the permission management on vrata?
I have an API, using lumen by the way, thats have a complexe auth system, in there i can filter witch controler my user has access, but i want to transform that into a microservice, how i going to do that on vrata? If my auth stays on the vrata how my endpoint is going to know who is requesting? and how my endpoint its goind to know the user information? I don't want to duplicate code here, and i want to add later another api made of C++ to interact with. I don't know if i was clear enough.

Fresh install using composer has the following dependancy problems.

Failed to download codeclimate/php-test-reporter from source: Failed to clone https://github.com/codeclimate/php-test-reporter.git, git was not found, check that it is installed and in your PATH env.

sh: git: command not found

Now trying to download from dist

Package guzzle/guzzle is abandoned, you should avoid using it. Use guzzlehttp/guzzle instead.
Package satooshi/php-coveralls is abandoned, you should avoid using it. Use php-coveralls/php-coveralls instead.

Hello my freind!
Please implement post aggregated routes!

Please, I would like help to understand how to define the routes that will be triggered in the API Gateway and will call the microservices endpoints. Help like this.

Где можно посмотреть полную схему данных конфигурации services, global и routes?
Столкнулся что не до конца понимаю что от меня требуется.
Пример: в config/gateway.php вроде все описано, но в описании репозитория вы говорите о том что в services можно указывать hostname.
Есть ли возможность для каждого сервиса задавать префикс для роутинга, например для сервиса service1 url будет service1/someMethod?

I dont set the public key in routes.json and middlware automatic set to auth, but this middlware not working and my service route not protected by auth middleware!
please help me!

Hi there

I'm using plenty of your vrata-gateway-code in my own api-gateway and your code helped me very much on my way. But now I figured out a problem when using laravel passport with a proxy request. This means, I use an additional Controller (LoginController) that accepts post-params username and password and then does an internal request to Passport oauth/token to get the token - like it is shown in this article (sorry - German):
https://medium.com/@albrecht.mauersberger/spa-mit-vue-js-vuetify-laravel-lumen-und-passport-ii-83f7491297a6

But to reduce it - here the code of LoginControllers login function

public function login(Request $request)
    {
        $this->validate($request, [
            'username' => 'required',
            'password' => 'required',
        ]);

        $tokenRequest = Request::create(
            env('APP_URL') . 'api/oauth/token',
            'POST'
        );

        $tokenRequest->merge([
            'username' => $request->username,
            'password' => $request->password,
            'grant_type' => 'password',
            'client_id' => $this->client->id,
            'client_secret' => $this->client->secret,
            'scope' => '*'
        ]);

        return app()->dispatch($tokenRequest);
    }

there you see that it is dispatched an internal request to passport. And there the problem starts with the App\Http\Request-Class -> the dispatcher uses make('request') internally and now gets a App\Http\Request-Class what doesn't fit to this interal request and returns the originally that came from outside... - in short: my internal passport-request doesn't work any more... It took me several hours of debugging to find out, why my request didn't work - so maybe this helps somebody other...

I finally found a solution and I'd even suggest to include it to your project even if there is no internal request used... this solution totally removes the App\Http\Request-Class from your project. (I didn't fork, because I don't use your complete project... so I just share my solution here)

First change in Middleware: instead of attaching the Route with the function attachRoute we can use attributes of the original Request-Class - here my new middleware:

<?php

namespace App\Http\Middleware;

use App\Routing\RouteRegistry;
use Closure;
use Illuminate\Http\Request;

class HelperMiddleware
{
    /**
     * Handle an incoming request.
     *
     * @param Request $request
     * @param  \Closure  $next
     * @param string $id
     * @return mixed
     */
    public function handle(Request $request, Closure $next, $id)
    {
        $request->attributes->add([
            'route' => app()->make(RouteRegistry::class)->getRoute($id)
        ]);

        return $next($request);
    }
}

now the route-object is added to the Illuminate Requests attributes.

Next changes in GatewayController
also replace App\Http\Request with Illuminate\Http\Request
and then use this:
$request->attributes->get('route')
instead of
$request->getRoute()

To receive all route-params you don't need an own Route-Resolver - it can be done with the standard-Request-Class:
$request->route()[2]
this always returns the params in Lumen (route() function always returns the route-array). so I replaced all calls of
$request->getRouteParams() with $request->route()[2]

So now all functions except "route()" of the App\Http\Request-Class aren't used any more...
and thats now the reason why I don't open a Merge-Request, because in MY application it seems like this functionality is also not necessary - so I just removed it, and the route()-Function of the base-class works for me... But it might be, that this doesn't work in your whole application - I'm not quite sure...

The additional benefit: I could remove the whole part of binding the own request-class in AppServiceProvider, no own RouteResolver, no own prepareRequest-Call, all the base-functionallity runs smooth. I currently use no trustedproxys - but to get this running again, I'd include package fideloper/proxy

I gues this solution could also work for you and increase performance additionally.
I'm looking forward for comments

Has this project been abandoned?

Hi there, I've been trying to migrate a full monolithic app to microservices, and so far Vrata has been the best option that I could find, but I'm not sure if it is still been supported, latest requirement is lumen 5.3, or do lumen version wouldn't matter?

So, is it a future proof choice to go with Vrata?

Thank you.

Hi I was looking to the implementation but still don't know how to interact with a service.
It is possible to see an example with a simple service?
Also a license would be awesome, thanks

Hi, Thank you very much for this great api gateway! But you did't say anything about authenticating between gateway and microservices !
For example we have two microservice : service1 and service2 + vrata as api gateway.

I have three problems now:

1.Now we want to send request from service1 to service2 by vrata. In which one we should install lumen-passport? in vrata ? in two microservices? or all three?

2.How to determine in the vrata that a route needs permission ? If we just do not use 'public' => true, is it enough?

3.Also if access to service1 requires authentication, how to do it?

Thanks

Please upgrade your projects Lumen package and other packages to latest version

I searching this code and dont see register routes. When i use routes */oauth/token and send grant_type='password', client_id, client_secret i must send username and password too. When i find it? When i using grant_type='client_credentials' i get token without username and password but when i try send request GET on /me i get Unauthorized error.

First of all thanks for this good lib. But a youtube (or any) tutorial video would be nice to understand the whole flow.

Cheers.

Hi!

A friend sent me a link to your libraries.io description and I'm excited to get it running. I noticed as I install that the composer dependency is behind using guzzle/guzzle instead of guzzlehttp/guzzle.

Are you interested in a PR to update this? I'd be happy to contribute.

Hi!

I was just wondering if it is somehow possible to forward custom headers that come with the original request to the final microservice?

Best,
Philipp

Because the data of setBody not in $_POST but in php://input

 private function simpleRequest(Request $request, RestClient $client)
    {
        if ($request->getRoute()->isAggregate()) throw new NotImplementedException('Aggregate ' . strtoupper($request->method()) . 's are not implemented yet');

        $client->setBody($request->getContent());

        if (count($request->allFiles()) !== 0) {
            $client->setFiles($request->allFiles());
        }

        $parametersJar = array_merge($request->getRouteParams(), ['query_string' => $request->getQueryString()]);
        $response = $client->syncRequest($this->actions->first()->first(), $parametersJar);

        return $this->presenter->format((string)$response->getBody(), $response->getStatusCode());
    }

Maybe I'm over stretching this, but I'm trying to run the php artisan command from a fresh vrata instalation usgin the composer create-project, and it keeps saying the message

In ServiceProvider.php line 97:                                                      
  Trying to access array offset on value of type null

I've narrowed dwn to two classes that call the method "loadViewsFrom" which is the one that fails to find the views config file in the config directory, and those two classes are "PassportServiceProvider", "PaginationServiceProvider".

So as I mentioned above, maybe I'm trying to do somthing that is totally unnecesary like running the "php artisan" command to work with vrata, but I'm trying to wrap my head arround on how vrata do its things, I understand that there are no views needed in vrata, but lets say how does vrata install passport correctly if it cant run the php artisan command.

I've noticed that it runs migrations from the ci/start.sh when using docker (which I haven't done, I'm also figuring out how to pass the json to the docker env correctly), but if I want to do it myself from fresh instalation using composer create-project, I cant run passport:install nor gateway:parse.

Now, I ended commenting the calls to the "loadViewsFrom" from those 2 providers and I was able to run "php artisan", I know it might not be an issue using the docker method, but do I have to do that every time I install a vrata project composer way?

Also, any clarification on why maybe it isn't a problem at all would be appreciated. Thank you.

Hi!

I just recognized (after some hours) that there is no PostgreSQL driver shipped with the Docker image. Since we use PostgreSQL as our user database and Lumen supports it from scratch it would be nice if the driver would come pre-installed with the Docker image.

Best,
Philipp

Installing poweredlocal/vrata (0.2.0)

• Installing poweredlocal/vrata (0.2.0): Loading from cache
  Created project in vrata/

php -r "copy('.env.example', '.env');"
PHP Warning: copy(.env.example): failed to open stream: No such file or directory in Command line code on line 1
PHP Stack trace:
PHP 1. {main}() Command line code:0
PHP 2. copy() Command line code:1

As title, it's good to see that this repository has the Docker image and it's available on Docker hub page.

I think we need to tag the version and it can let developers know which versions are stable.

And nobody want to use the unstable version to build Docker container on the production.

Can you provide some JSON schema for these variables?

Hi ! @dusterio 👋
First thanks for all !

I created this issue about micro-services authentication questions i have.
Why not pass JWT to micro-services and every micro-service check JWT token validity with Public KEY ?

And i would like to know what is the best practice for you, if the gateway send JWT token to micro-services, it's better to send in X-Access-Token header or directly in Authorization ?

This question is not clearly defined in other forums.

Thanks,
Léo

when i wrire composer install command, i get this error
[Composer\Json\JsonValidationException]
"./composer.json" does not match the expected JSON schema:

• name : Does not match the regex pattern ^a-z0-9/a-z0-9$

Hello can i request for sample postman collection? Thanks!