[exporter/coralogix] Fix missing header causing authentication errors (#40335)

#### Link to tracking issue
Fixes #40330

#### Testing
- Added new unit tests
- Manual test with the Coralogix backend

Workaround tested with:
```yaml
receivers:
  otlp:
    protocols:
      grpc:
        endpoint: 0.0.0.0:4317
      http:
        endpoint: 0.0.0.0:4318

exporters:
  coralogix:
    traces:
      headers:
        "Authorization": "Bearer ${env:CORALOGIX_PRIVATE_KEY}"
    metrics:
      headers:
        "Authorization": "Bearer ${env:CORALOGIX_PRIVATE_KEY}"
    logs:
      headers:
        "Authorization": "Bearer ${env:CORALOGIX_PRIVATE_KEY}"
    application_name: otel
    application_name_attributes:
      - service.name
      - k8s.namespace.name
      - service.namespace
    sending_queue:
      enabled: true
      sizer: "items"
      num_consumers: 10
      queue_size: 25000
      batch:
        flush_timeout: 1s
        min_size: 1024
        max_size: 2048
    domain: eu2.coralogix.com
    subsystem_name: k8s-saas
    subsystem_name_attributes:
      - subsystem.name
    private_key: ${env:CORALOGIX_PRIVATE_KEY}

service:
  pipelines:
    traces:
      receivers: [otlp]
      exporters: [coralogix]
    metrics:
      receivers: [otlp]
      exporters: [coralogix]
    logs:
      receivers: [otlp]
      exporters: [coralogix]

```

Signed-off-by: Israel Blancas <[email protected]>

Author: iblancasa

.chloggen/40330.yaml

@@ -0,0 +1,27 @@
+# Use this changelog template to create an entry for release notes.
+
+# One of 'breaking', 'deprecation', 'new_component', 'enhancement', 'bug_fix'
+change_type: bug_fix
+
+# The name of the component, or a single word describing the area of concern, (e.g. filelogreceiver)
+component: coralogixexporter
+
+# A brief description of the change.  Surround your text with quotes ("") if it needs to start with a backtick (`).
+note: Fix Authorization header not being set in metadata.
+
+# Mandatory: One or more tracking issues related to the change. You can use the PR number here if no issue exists.
+issues: [40330]
+
+# (Optional) One or more lines of additional information to render under the primary note.
+# These lines will be padded with 2 spaces and then inserted directly into the document.
+# Use pipe (|) for multiline entries.
+subtext:
+
+# If your change doesn't affect end users or the exported elements of any package,
+# you should instead start your pull request title with [chore] or use the "Skip Changelog" label.
+# Optional: The change log or logs in which this entry should be included.
+# e.g. '[user]' or '[user, api]'
+# Include 'user' if the change is relevant to end users.
+# Include 'api' if there is a change to a library API.
+# Default: '[user]'
+change_logs: [user]

exporter/coralogixexporter/README.md

@@ -6,6 +6,7 @@
 | Stability     | [alpha]: profiles   |
 |               | [beta]: traces, metrics, logs   |
 | Distributions | [contrib] |
+| Warnings      | [Authentication issues in v0.127.0](#warnings) |
 | Issues        | [![Open issues](https://img.shields.io/github/issues-search/open-telemetry/opentelemetry-collector-contrib?query=is%3Aissue%20is%3Aopen%20label%3Aexporter%2Fcoralogix%20&label=open&color=orange&logo=opentelemetry)](https://github.com/open-telemetry/opentelemetry-collector-contrib/issues?q=is%3Aopen+is%3Aissue+label%3Aexporter%2Fcoralogix) [![Closed issues](https://img.shields.io/github/issues-search/open-telemetry/opentelemetry-collector-contrib?query=is%3Aissue%20is%3Aclosed%20label%3Aexporter%2Fcoralogix%20&label=closed&color=blue&logo=opentelemetry)](https://github.com/open-telemetry/opentelemetry-collector-contrib/issues?q=is%3Aclosed+is%3Aissue+label%3Aexporter%2Fcoralogix) |
 | Code coverage | [![codecov](https://codecov.io/github/open-telemetry/opentelemetry-collector-contrib/graph/main/badge.svg?component=exporter_coralogix)](https://app.codecov.io/gh/open-telemetry/opentelemetry-collector-contrib/tree/main/?components%5B0%5D=exporter_coralogix&displayType=list) |
 | [Code Owners](https://github.com/open-telemetry/opentelemetry-collector-contrib/blob/main/CONTRIBUTING.md#becoming-a-code-owner)    | [@povilasv](https://www.github.com/povilasv), [@iblancasa](https://www.github.com/iblancasa), [@douglascamata](https://www.github.com/douglascamata) |
@@ -325,6 +326,28 @@ service:
       exporters: [coralogix]
 ```
 
+## Warnings
+### Authentication issues in v0.127.0
+
+Version 0.127.0 introduced a regression in the Coralogix exporter. As a consequence, it requires an updated authentication configuration to ensure proper telemetry data transmission to Coralogix. If you're using this version, please modify your configuration to include the authentication headers as shown below:
+
+```yaml
+coralogix:
+  traces:
+    headers:
+      "Authorization": "Bearer ${env:CORALOGIX_PRIVATE_KEY}"
+  metrics:
+    headers:
+      "Authorization": "Bearer ${env:CORALOGIX_PRIVATE_KEY}"
+  logs:
+    headers:
+      "Authorization": "Bearer ${env:CORALOGIX_PRIVATE_KEY}"
+```
+
+This configuration ensures proper authentication with the Coralogix backend.
+Prior versions (v0.126.0 and earlier) and subsequent versions (v0.128.0 and later) are not affected by this authentication issue.
+
+
 ### Need help?
 
 Our world-class customer success team is available 24/7 to walk you through the setup for this exporter and answer any questions that may come up.

exporter/coralogixexporter/logs_client_test.go

@@ -25,6 +25,7 @@ import (
 	"go.uber.org/zap/zapcore"
 	"go.uber.org/zap/zaptest/observer"
 	"google.golang.org/grpc"
+	"google.golang.org/grpc/metadata"
 )
 
 func TestNewLogsExporter(t *testing.T) {
@@ -211,9 +212,27 @@ type mockLogsServer struct {
 	plogotlp.UnimplementedGRPCServer
 	recvCount      int
 	partialSuccess *plogotlp.ExportPartialSuccess
+	t              testing.TB
 }
 
-func (m *mockLogsServer) Export(_ context.Context, req plogotlp.ExportRequest) (plogotlp.ExportResponse, error) {
+func (m *mockLogsServer) Export(ctx context.Context, req plogotlp.ExportRequest) (plogotlp.ExportResponse, error) {
+	md, ok := metadata.FromIncomingContext(ctx)
+	if !ok {
+		m.t.Error("No metadata found in context")
+		return plogotlp.NewExportResponse(), errors.New("no metadata found")
+	}
+
+	authHeader := md.Get("authorization")
+	if len(authHeader) == 0 {
+		m.t.Error("No Authorization header found")
+		return plogotlp.NewExportResponse(), errors.New("no authorization header")
+	}
+
+	if authHeader[0] != "Bearer test-key" {
+		m.t.Errorf("Expected Authorization header 'Bearer test-key', got %s", authHeader[0])
+		return plogotlp.NewExportResponse(), errors.New("invalid authorization header")
+	}
+
 	m.recvCount += req.Logs().LogRecordCount()
 	resp := plogotlp.NewExportResponse()
 	if m.partialSuccess != nil {
@@ -229,7 +248,7 @@ func startMockOtlpLogsServer(tb testing.TB) (endpoint string, stopFn func(), srv
 		tb.Fatalf("failed to listen: %v", err)
 	}
 	grpcServer := grpc.NewServer()
-	srv = &mockLogsServer{}
+	srv = &mockLogsServer{t: tb}
 	plogotlp.RegisterGRPCServer(grpcServer, srv)
 	go func() {
 		_ = grpcServer.Serve(ln)

exporter/coralogixexporter/metadata.yaml

@@ -8,6 +8,7 @@ status:
   distributions: [contrib]
   codeowners:
     active: [povilasv, iblancasa, douglascamata]
+  warnings: ["Authentication issues in v0.127.0"]
 
 tests:
   config:

exporter/coralogixexporter/metrics_client_test.go

@@ -25,6 +25,7 @@ import (
 	"go.uber.org/zap/zapcore"
 	"go.uber.org/zap/zaptest/observer"
 	"google.golang.org/grpc"
+	"google.golang.org/grpc/metadata"
 )
 
 func TestNewMetricsExporter(t *testing.T) {
@@ -213,10 +214,28 @@ type mockMetricsServer struct {
 	pmetricotlp.UnimplementedGRPCServer
 	recvCount      int
 	partialSuccess *pmetricotlp.ExportPartialSuccess
+	t              testing.TB
 }
 
-func (m *mockMetricsServer) Export(_ context.Context, req pmetricotlp.ExportRequest) (pmetricotlp.ExportResponse, error) {
-	m.recvCount += req.Metrics().MetricCount()
+func (m *mockMetricsServer) Export(ctx context.Context, req pmetricotlp.ExportRequest) (pmetricotlp.ExportResponse, error) {
+	md, ok := metadata.FromIncomingContext(ctx)
+	if !ok {
+		m.t.Error("No metadata found in context")
+		return pmetricotlp.NewExportResponse(), errors.New("no metadata found")
+	}
+
+	authHeader := md.Get("authorization")
+	if len(authHeader) == 0 {
+		m.t.Error("No Authorization header found")
+		return pmetricotlp.NewExportResponse(), errors.New("no authorization header")
+	}
+
+	if authHeader[0] != "Bearer test-key" {
+		m.t.Errorf("Expected Authorization header 'Bearer test-key', got %s", authHeader[0])
+		return pmetricotlp.NewExportResponse(), errors.New("invalid authorization header")
+	}
+
+	m.recvCount += req.Metrics().DataPointCount()
 	resp := pmetricotlp.NewExportResponse()
 	if m.partialSuccess != nil {
 		resp.PartialSuccess().SetErrorMessage(m.partialSuccess.ErrorMessage())
@@ -231,7 +250,7 @@ func startMockOtlpMetricsServer(tb testing.TB) (endpoint string, stopFn func(),
 		tb.Fatalf("failed to listen: %v", err)
 	}
 	grpcServer := grpc.NewServer()
-	srv = &mockMetricsServer{}
+	srv = &mockMetricsServer{t: tb}
 	pmetricotlp.RegisterGRPCServer(grpcServer, srv)
 	go func() {
 		_ = grpcServer.Serve(ln)

exporter/coralogixexporter/profiles_client_test.go

@@ -26,6 +26,7 @@ import (
 	"go.uber.org/zap/zapcore"
 	"go.uber.org/zap/zaptest/observer"
 	"google.golang.org/grpc"
+	"google.golang.org/grpc/metadata"
 )
 
 func TestNewProfilesExporter(t *testing.T) {
@@ -214,9 +215,27 @@ type mockProfilesServer struct {
 	pprofileotlp.UnimplementedGRPCServer
 	recvCount      int
 	partialSuccess *pprofileotlp.ExportPartialSuccess
+	t              testing.TB
 }
 
-func (m *mockProfilesServer) Export(_ context.Context, req pprofileotlp.ExportRequest) (pprofileotlp.ExportResponse, error) {
+func (m *mockProfilesServer) Export(ctx context.Context, req pprofileotlp.ExportRequest) (pprofileotlp.ExportResponse, error) {
+	md, ok := metadata.FromIncomingContext(ctx)
+	if !ok {
+		m.t.Error("No metadata found in context")
+		return pprofileotlp.NewExportResponse(), errors.New("no metadata found")
+	}
+
+	authHeader := md.Get("authorization")
+	if len(authHeader) == 0 {
+		m.t.Error("No Authorization header found")
+		return pprofileotlp.NewExportResponse(), errors.New("no authorization header")
+	}
+
+	if authHeader[0] != "Bearer test-key" {
+		m.t.Errorf("Expected Authorization header 'Bearer test-key', got %s", authHeader[0])
+		return pprofileotlp.NewExportResponse(), errors.New("invalid authorization header")
+	}
+
 	m.recvCount += req.Profiles().ResourceProfiles().Len()
 	resp := pprofileotlp.NewExportResponse()
 	if m.partialSuccess != nil {
@@ -232,7 +251,7 @@ func startMockOtlpProfilesServer(tb testing.TB) (endpoint string, stopFn func(),
 		tb.Fatalf("failed to listen: %v", err)
 	}
 	grpcServer := grpc.NewServer()
-	srv = &mockProfilesServer{}
+	srv = &mockProfilesServer{t: tb}
 	pprofileotlp.RegisterGRPCServer(grpcServer, srv)
 	go func() {
 		_ = grpcServer.Serve(ln)

exporter/coralogixexporter/signals.go

@@ -120,6 +120,10 @@ func (e *signalExporter) startSignalExporter(ctx context.Context, host component
 			signalConfigWrapper.config.Headers = make(map[string]configopaque.String)
 		}
 		signalConfigWrapper.config.Headers["Authorization"] = configopaque.String("Bearer " + string(e.config.PrivateKey))
+
+		for k, v := range signalConfigWrapper.config.Headers {
+			e.metadata.Set(k, string(v))
+		}
 	}
 
 	e.callOptions = []grpc.CallOption{

exporter/coralogixexporter/signals_test.go

@@ -4,12 +4,16 @@
 package coralogixexporter
 
 import (
+	"context"
 	"errors"
 	"testing"
 	"time"
 
 	"github.com/stretchr/testify/assert"
 	"github.com/stretchr/testify/require"
+	"go.opentelemetry.io/collector/component/componenttest"
+	"go.opentelemetry.io/collector/config/configgrpc"
+	"go.opentelemetry.io/collector/config/configopaque"
 	"go.opentelemetry.io/collector/consumer/consumererror"
 	"go.opentelemetry.io/collector/exporter/exporterhelper"
 	"go.opentelemetry.io/collector/exporter/exportertest"
@@ -160,3 +164,134 @@ func TestProcessError(t *testing.T) {
 		})
 	}
 }
+
+func TestSignalExporter_AuthorizationHeader(t *testing.T) {
+	privateKey := "test-private-key"
+	cfg := &Config{
+		Domain:     "test.domain.com",
+		PrivateKey: configopaque.String(privateKey),
+		Logs: configgrpc.ClientConfig{
+			Headers: map[string]configopaque.String{},
+		},
+	}
+
+	exp, err := newSignalExporter(cfg, exportertest.NewNopSettings(exportertest.NopType), "", nil)
+	require.NoError(t, err)
+
+	wrapper := &signalConfigWrapper{config: &cfg.Logs}
+	err = exp.startSignalExporter(context.Background(), componenttest.NewNopHost(), wrapper)
+	require.NoError(t, err)
+	defer func() {
+		require.NoError(t, exp.shutdown(context.Background()))
+	}()
+
+	authHeader, ok := wrapper.config.Headers["Authorization"]
+	require.True(t, ok, "Authorization header should be present")
+	assert.Equal(t, configopaque.String("Bearer "+privateKey), authHeader, "Authorization header should be in Bearer format")
+
+	mdValue := exp.metadata.Get("Authorization")
+	require.Len(t, mdValue, 1, "Authorization header should be present in metadata")
+	assert.Equal(t, "Bearer "+privateKey, mdValue[0], "Authorization header in metadata should be in Bearer format")
+}
+
+func TestSignalExporter_CustomHeadersAndAuthorization(t *testing.T) {
+	tests := []struct {
+		name   string
+		config configgrpc.ClientConfig
+	}{
+		{
+			name: "logs",
+			config: configgrpc.ClientConfig{
+				Headers: map[string]configopaque.String{
+					"Custom-Header": "custom-value",
+					"X-Test":        "test-value",
+				},
+			},
+		},
+		{
+			name: "traces",
+			config: configgrpc.ClientConfig{
+				Headers: map[string]configopaque.String{
+					"Custom-Header": "custom-value",
+					"X-Test":        "test-value",
+				},
+			},
+		},
+		{
+			name: "metrics",
+			config: configgrpc.ClientConfig{
+				Headers: map[string]configopaque.String{
+					"Custom-Header": "custom-value",
+					"X-Test":        "test-value",
+				},
+			},
+		},
+		{
+			name: "profiles",
+			config: configgrpc.ClientConfig{
+				Headers: map[string]configopaque.String{
+					"Custom-Header": "custom-value",
+					"X-Test":        "test-value",
+				},
+			},
+		},
+	}
+
+	for _, tt := range tests {
+		t.Run(tt.name, func(t *testing.T) {
+			privateKey := "test-private-key"
+			cfg := &Config{
+				Domain:     "test.domain.com",
+				PrivateKey: configopaque.String(privateKey),
+			}
+
+			switch tt.name {
+			case "logs":
+				cfg.Logs = tt.config
+			case "traces":
+				cfg.Traces = tt.config
+			case "metrics":
+				cfg.Metrics = tt.config
+			case "profiles":
+				cfg.Profiles = tt.config
+			}
+
+			exp, err := newSignalExporter(cfg, exportertest.NewNopSettings(exportertest.NopType), "", nil)
+			require.NoError(t, err)
+
+			wrapper := &signalConfigWrapper{config: &tt.config}
+			err = exp.startSignalExporter(context.Background(), componenttest.NewNopHost(), wrapper)
+			require.NoError(t, err)
+			defer func() {
+				require.NoError(t, exp.shutdown(context.Background()))
+			}()
+
+			headers := wrapper.config.Headers
+			require.Len(t, headers, 3)
+
+			authHeader, ok := headers["Authorization"]
+			require.True(t, ok)
+			assert.Equal(t, configopaque.String("Bearer "+privateKey), authHeader)
+
+			customHeader, ok := headers["Custom-Header"]
+			require.True(t, ok)
+			assert.Equal(t, configopaque.String("custom-value"), customHeader)
+
+			testHeader, ok := headers["X-Test"]
+			require.True(t, ok)
+			assert.Equal(t, configopaque.String("test-value"), testHeader)
+
+			mdAuth := exp.metadata.Get("Authorization")
+			require.Len(t, mdAuth, 1)
+			assert.Equal(t, "Bearer "+privateKey, mdAuth[0])
+
+			mdCustom := exp.metadata.Get("Custom-Header")
+			require.Len(t, mdCustom, 1)
+			assert.Equal(t, "custom-value", mdCustom[0])
+
+			mdTest := exp.metadata.Get("X-Test")
+			require.Len(t, mdTest, 1)
+			assert.Equal(t, "test-value", mdTest[0])
+		})
+	}
+}