Parsing HTTP POST data with NGINX OpenResty LUA | Devops Junction

Updated on:

In this article let us learn how to parse through the HTTP post payload in Nginx Openresty with LUA language

OpenResty is an nginx distribution which includes the LuaJIT (Just in Time) interpreter for supporting Lua scripts. this LUA script helps you extend your regular NGINX with custom functionalities and features

Open resty supports a lot of Great third-party plugins and components, you can find the list here

The great advantage of OpenResty over NGINX is the support of LUA and it enables you to program and extend the NGINX

In this article, let us see an example on how to use Open resty LUA scripting to parse the HTTP POST request body and transform the request.

nginx parse http

Adding Header Dynamically based on the Payload or Request Data

Refer to the following nginx.conf file of openresty where we have the LUA code block.

If the request method is POST the LUA starts the Logging and prints the request body ( you can optionally disable it as it might cause IO latency when the payload is enormous in size)

Our Objective is to look at whether there is an external email ID  ending with yahoo, aol or Gmail, outlook etc

Here is the complete flow diagram of the design

nginx prase post body

We parse the POST body and the args to check whether it has any public email domains such as yahoo, ymail, outlook etc.

If it's found, we are adding a header X-is-email before forwarding the request to the backend using proxy_pass

 

OpenResty NGINX Conf with Lua script - to Parse HTTP POST body data

here is the complete source code

server {
    resolver local=on valid=1s;
    set $upstream_endpoint api.gritfy.io;

    listen 80;

    location ~ (^.*$)  {
      proxy_set_header X-Forwarded-Host $host;
      proxy_set_header X-Forwarded-Server $host;
      proxy_set_header X-Real-IP $remote_addr;
      proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
      proxy_set_header X-Url-Scheme $scheme;
      proxy_set_header X-Forwarded-Proto $scheme;
      proxy_set_header Host $http_host;
      proxy_redirect off;

      client_max_body_size 100m;
      client_body_buffer_size 100m;

      set $logme 0;

      #access_log /var/log/nginx/lua.log log_body if=$logme;

      if ($request_method = POST ) {
        access_by_lua '
        local isemail="FALSE"
        ngx.req.read_body()
        local args, err = ngx.req.get_post_args()
         if not args then
             ngx.say("failed to get post args: ", err)
             return
         end
         for key, val in pairs(args) do
             – ngx.say("KEY: ", key, ", TYPE: ", type(val), ", VALUE: ", val)
             if type(val) == "table" then
                – for k, v in pairs(val) do ngx.say("k: ", k, ", v: ", v) end
                for k, v in pairs(val) do
                  if type(v) == "string" then
                    local match = ngx.re.match(v, "(%40|@)(yahoo|aol|ymail|gmail|live|outlook)")
                    if match then
                        isemail="TRUE"
                        break
                    end
                  else
                    ngx.var.logme=1
                  end
                end
             else
                – ngx.say(key, ": plain: ", val)
                 local match = ngx.re.match(val, "(%40|@)(yahoo|aol|ymail|gmail|live|outlook)")
                  if match then
                      isemail="TRUE"
                      break
                  end
             end
         end
         ngx.req.set_header("X-is-email", isemail)
         – ngx.say("X-is-yahoo : ",isyahoo )
        ';

        proxy_pass http://$upstream_endpoint/api/v1$1;
    }
  }
}

 

This is just one use case and an example of what OpenResty NGINX and LUA scripts can do.

you can further extend this or change it to suit your needs

Hope this helps

Cheers

Sarav AK

Follow me on Linkedin My Profile
Follow DevopsJunction onFacebook orTwitter
For more practical videos and tutorials. Subscribe to our channel

Buy Me a Coffee at ko-fi.com

Signup for Exclusive "Subscriber-only" Content

More from Middleware Inventory

  • TCPDump Capture HTTP GET/POST requests

    TCPDUMP is a swiss army knife for all the administrators and developers when it comes to troubleshooting. This post is written for the people who work in middleware technologies. Web servers such as Apache, NGINX, Oracle HTTP, IHS web servers and  application servers such as Weblogic, Websphere, Tomcat, Jboss Consider…

  • Apache Clickjack
    Hide Server Banner and Product Info from HTTP Header

    Overview Probably one of the first tasks to do while setting up the production environment is to mask the Apache (or) IHS (IBM HTTP Server) version and Server Banner in a header. This is not critical but considered low risk as information leakage vulnerability and must do for PCI DSS…

  • nginx dynamic ip upstream
    NGINX Dynamic IP address upstream - DNS Cache issue | How to solve

    NGINX has become a standard for reverse proxy implementation, At least 20% of the internet is powered by NGINX webserver as the stats suggest I presume you all know what is a reverse proxy and forward proxy and how it works. Let us move on to the objective of this…

  • The Wordpress and the vanishing html elements

    Are you looking for a solution to any of the following probelm "html elements are not working in wordpress post", "iframe tag is getting stripped in the post after update", "script tags are vanishing after updating the post", "not able to use any html elements in the post" "Not able…

  • How to install IBM HTTP Server and Websphere Plugin - IBM Installation Manager

    This post gives the screenshots and steps to install the IBM HTTP server and WebSphere plugin. Step1: Launch the Installation Manager and add the Diskconfig  files using the File --> Preferences tab in the Installation Manager Step2: Add a repository using Add Repository Button  and install the Packages using the…