ext_authz: support for buffering request body

[gsagula]

This PR adds support to ext_authz filter for buffering the request data. This is useful when the authorization server needs to check the request body, e.g. HMAC validation.

Fixes #5676

Risk Level: low
Testing: unit
Docs Changes: yes
Release Notes: yes

[htuch]

Please merge master to pick up #5827.

[stale]

This pull request has been automatically marked as stale because it has not had activity in the last 7 days. It will be closed in 7 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions!

[lizan]

Sorry for the delay, @dio is sick.

[gsagula]

@lizan Thank you for looking at the PR. I had to work on some other things, but I will work on this by next week.

[stale]

This pull request has been automatically marked as stale because it has not had activity in the last 7 days. It will be closed in 7 days if no further activity occurs. Please feel free to give a status update now, ping for review, or re-open when it's ready. Thank you for your contributions!

[gsagula]

Sorry, another busy week. I will take a look at this later today or Monday.

[gsagula]

@lizan I've addressed all your comments. Thanks for reviewing it.

[gsagula]

I think I could use an std::string and then just move it. Not sure.

[lizan]

yeah I think you can do that.

[dio]

Thanks for this. I think @lizan has gone through the critical bits. Mine is only small details.

[gsagula]

@lizan @dio I think I addressed all your comments. Thank you for reviewing it.

[brectanus-sigsci]

@gsagula Any update/ETA on this? Seems all comments were addressed.

[itstehkman]

Same! I would love for this to be merged, am also waiting on it as it will help me a lot, trying to do HMAC in ext-authz :)

[dio]

Thanks for working on this @gsagula! Looks good.

[lizan]

sorry for the delay, one last question.

[gsagula]

@lizan No worries, I've been pretty busy lately too. I found a couple of issues with the partial message feature, but I need to fix the broken tests now. I will try to get it out tomorrow. Thanks!

[gsagula]

Build failures seem unrelated. I will merge master and retry.

[lizan]

Do filters get upgrade requests? I roughly remember this is handled by HCM now? cc @alyssawilk

[gsagula]

Apparently, they do but would be nice to hear from @alyssawilk. If this is ok, the same logic ^^ should be applied to the buffer filter.

[lizan]

Ah nvm I was in the old impression before we have new style websocket.

[gsagula]

@lizan @dio I have addressed your concerns I believe. I also added a few tests for the logic around upgrade requests and did some manual testing. Feel free to take another look. Thanks!