Runtime: Fix a few issues of NGINX API Gateway mode (#1766)

oap-project · Aug 12, 2023 · b41a536 · b41a536
1 parent 4b4bf9a
commit b41a536
Show file tree

Hide file tree

Showing 7 changed files with 79 additions and 39 deletions.
diff --git a/python/cloudtik/core/_private/service_discovery/utils.py b/python/cloudtik/core/_private/service_discovery/utils.py
@@ -1,7 +1,7 @@
 from enum import Enum
 from typing import Optional, Dict, Any
 
-from cloudtik.core._private.core_utils import deserialize_config, serialize_config, get_config_for_update, \
+from cloudtik.core._private.core_utils import deserialize_config, serialize_config, \
     get_list_for_update
 
 # The standard keys and values used for service discovery

diff --git a/python/cloudtik/runtime/nginx/conf/nginx-api-gateway-base.conf b/python/cloudtik/runtime/nginx/conf/nginx-api-gateway-base.conf
@@ -1,5 +1,3 @@
-load_module /etc/nginx/modules/ngx_http_js_module.so;
-
 http {
     include       /etc/nginx/mime.types;
     default_type  application/octet-stream;

diff --git a/python/cloudtik/runtime/nginx/conf/nginx-api-gateway.conf b/python/cloudtik/runtime/nginx/conf/nginx-api-gateway.conf
@@ -19,7 +19,7 @@ server {
     # ssl_protocols        TLSv1.2 TLSv1.3;
 
     # API definitions, one per file
-    include {%nginx.home%}/conf/api_gateway/*.conf;
+    include {%nginx.home%}/conf/routers/*.conf;
 
     # Error responses
     error_page 404 = @400;         # Treat invalid paths as bad requests

diff --git a/python/cloudtik/runtime/nginx/conf/nginx-load-balancer-dynamic.conf b/python/cloudtik/runtime/nginx/conf/nginx-load-balancer-dynamic.conf
@@ -0,0 +1,19 @@
+http {
+    include {%nginx.home%}/conf/upstreams/*.conf;    # The load balancer upstream
+
+    # This server accepts all traffic to port and passes it to the upstream.
+    # Notice that the upstream name and the proxy_pass need to match.
+    server {
+        listen {%server.listen.ip%}:{%server.listen.port%};
+
+        # SSL
+        # listen 443 ssl;
+        # server_name domain_name;
+        # ssl_certificate /path/to/cert.pem;
+        # ssl_certificate_key /path/to/private_key.pem;
+        # ssl_protocols TLSv1 TLSv1.1 TLSv1.2;
+
+        # Routers definitions
+        include {%nginx.home%}/conf/routers/*.conf;
+    }
+}
diff --git a/python/cloudtik/runtime/nginx/discovery.py b/python/cloudtik/runtime/nginx/discovery.py
@@ -147,10 +147,10 @@ def get_dns_backend_service(service_nodes):
         server_address = get_service_address(service_node)
 
         # get a common set of tags
-        tags = service_node.get("ServiceTags", [])
+        tags = set(service_node.get("ServiceTags", []))
         if tags:
             for service_node in service_nodes[1:]:
-                service_tags = service_node.get("ServiceTags", [])
+                service_tags = set(service_node.get("ServiceTags", []))
                 tags = tags.intersection(service_tags)
 
         backend_service = {

diff --git a/python/cloudtik/runtime/nginx/scripts/configure.sh b/python/cloudtik/runtime/nginx/scripts/configure.sh
@@ -56,8 +56,9 @@ function configure_static_backend() {
 
 function configure_dynamic_backend() {
     # python discovery script will write upstream block and do reload if needed
-    cat ${output_dir}/nginx-load-balancer-static.conf >> ${nginx_config_file}
+    cat ${output_dir}/nginx-load-balancer-dynamic.conf >> ${nginx_config_file}
     mkdir -p ${NGINX_CONFIG_DIR}/upstreams
+    mkdir -p ${NGINX_CONFIG_DIR}/routers
 }
 
 function configure_load_balancer() {
@@ -86,7 +87,7 @@ function configure_api_gateway() {
     cat ${output_dir}/nginx-api-gateway-base.conf >> ${nginx_config_file}
     cp ${output_dir}/nginx-api-gateway.conf ${NGINX_CONFIG_DIR}/api-gateway.conf
     cp ${output_dir}/nginx-api-gateway-json-errors.conf ${NGINX_CONFIG_DIR}/api-gateway-json-errors.conf
-    mkdir -p ${NGINX_CONFIG_DIR}/api-gateway
+    mkdir -p ${NGINX_CONFIG_DIR}/routers
 
     if [ "${NGINX_CONFIG_MODE}" == "dns" ]; then
         configure_api_gateway_dns
@@ -104,7 +105,7 @@ function configure_nginx() {
     ETC_DEFAULT=/etc/default
     sudo mkdir -p ${ETC_DEFAULT}
 
-    sed -i "s#{%nginx.home%}#${NGINX_HOME}#g" ${output_dir}/nginx
+    sed -i "s#{%nginx.home%}#${NGINX_HOME}#g" `grep "{%nginx.home%}" -rl ${output_dir}`
     sudo cp ${output_dir}/nginx ${ETC_DEFAULT}/nginx
 
     NGINX_CONFIG_DIR=${NGINX_HOME}/conf

diff --git a/python/cloudtik/runtime/nginx/utils.py b/python/cloudtik/runtime/nginx/utils.py
@@ -56,6 +56,8 @@
 
 NGINX_DISCOVER_BACKEND_SERVERS_INTERVAL = 15
 
+NGINX_LOAD_BALANCER_UPSTREAM_NAME = "backend"
+
 
 def _get_config(runtime_config: Dict[str, Any]):
     return runtime_config.get(NGINX_RUNTIME_CONFIG_KEY, {})
@@ -309,9 +311,9 @@ def _get_upstreams_config_dir():
         home_dir, "conf", "upstreams")
 
 
-def _get_api_gateway_config_dir():
+def _get_routers_config_dir():
     return os.path.join(
-        _get_home_dir(), "conf", "api-gateway")
+        _get_home_dir(), "conf", "routers")
 
 
 def _configure_static_backend(nginx_config):
@@ -327,18 +329,29 @@ def _save_load_balancer_upstream(servers, balance_method):
     upstreams_dir = _get_upstreams_config_dir()
     config_file = os.path.join(
         upstreams_dir, "load-balancer.conf")
-    _save_upstream_config(config_file, servers, balance_method)
+    _save_upstream_config(
+        config_file, NGINX_LOAD_BALANCER_UPSTREAM_NAME,
+        servers, balance_method)
+
+
+def _save_load_balancer_router():
+    routers_dir = _get_routers_config_dir()
+    config_file = os.path.join(
+        routers_dir, "load-balancer.conf")
+    _save_router_config(
+        config_file, "", NGINX_LOAD_BALANCER_UPSTREAM_NAME)
 
 
 def _save_upstream_config(
-        upstream_config_file, servers, balance_method):
-    with open(upstream_config_file, "a") as f:
+        upstream_config_file, backend_name,
+        servers, balance_method):
+    with open(upstream_config_file, "w") as f:
         # upstream block
-        f.write("upstream backend {\n")
+        f.write("upstream " + backend_name + " {\n")
         if balance_method and balance_method != NGINX_BACKEND_BALANCE_ROUND_ROBIN:
             f.write(f"    {balance_method};\n")
         for server in servers:
-            server_line = f"    server {server} max_fails=10 fail_timeout=30s slow_start=30s;\n"
+            server_line = f"    server {server} max_fails=10 fail_timeout=30s;\n"
             f.write(server_line)
         # end upstream block
         f.write("}\n")
@@ -352,7 +365,7 @@ def start_pull_server(head):
     runtime_config = get_runtime_config_from_node(head)
     nginx_config = _get_config(runtime_config)
 
-    app_mode = get_runtime_value("HAPROXY_APP_MODE")
+    app_mode = get_runtime_value("NGINX_APP_MODE")
     if app_mode == NGINX_APP_MODE_LOAD_BALANCER:
         discovery_class = "DiscoverBackendServers"
     else:
@@ -401,10 +414,13 @@ def update_load_balancer_configuration(
         backend_servers, balance_method):
     # write load balancer upstream config file
     servers = ["{}:{}".format(
-        backend_server[0], backend_server[1]) for backend_server in backend_servers]
+        server_address[0], server_address[1]
+    ) for _, server_address in backend_servers.items()]
+
     _save_load_balancer_upstream(servers, balance_method)
+    _save_load_balancer_router()
 
-    # the upstream config is changed, relad the service
+    # the upstream config is changed, reload the service
     exec_with_call("sudo service nginx reload")
 
 
@@ -417,7 +433,8 @@ def update_api_gateway_dynamic_backends(
     _update_api_gateway_dynamic_upstreams(
         sorted_api_gateway_backends, balance_method)
     # write api-gateway config
-    _update_api_gateway_dynamic_routes(sorted_api_gateway_backends)
+    _update_api_gateway_dynamic_routers(
+        sorted_api_gateway_backends)
 
     # Need reload nginx if there is new backend added
     exec_with_call("sudo service nginx reload")
@@ -432,38 +449,44 @@ def _update_api_gateway_dynamic_upstreams(
         upstream_config_file = os.path.join(
             upstreams_dir, "{}.conf".format(backend_name))
         servers = ["{}:{}".format(
-            server_address[0], server_address[1]) for _, server_address in backend_servers.items()]
+            server_address[0], server_address[1]
+        ) for _, server_address in backend_servers.items()]
         _save_upstream_config(
-            upstream_config_file, servers, balance_method)
+            upstream_config_file, backend_name,
+            servers, balance_method)
 
 
-def _update_api_gateway_dynamic_routes(
+def _update_api_gateway_dynamic_routers(
         sorted_api_gateway_backends):
-    api_gateway_dir = _get_api_gateway_config_dir()
-    remove_files(api_gateway_dir)
+    routers_dir = _get_routers_config_dir()
+    remove_files(routers_dir)
 
     for backend_name, backend_service in sorted_api_gateway_backends:
-        api_gateway_file = os.path.join(api_gateway_dir,
-                                        "{}.conf".format(backend_name))
-        with open(api_gateway_file, "a") as f:
-            # for each backend, we generate a location block
-            f.write("location /" + backend_name + " {\n")
-            # proxy_pass http://backend;
-            f.write(f"    proxy_pass http://{backend_name};\n")
-            f.write("}\n")
+        router_file = os.path.join(
+            routers_dir, "{}.conf".format(backend_name))
+        _save_router_config(
+            router_file, backend_name, backend_name)
+
+
+def _save_router_config(router_file, location, backend_name):
+    with open(router_file, "w") as f:
+        # for each backend, we generate a location block
+        f.write("location /" + location + " {\n")
+        f.write(f"    proxy_pass http://{backend_name};\n")
+        f.write("}\n")
 
 
 def update_api_gateway_dns_backends(
         api_gateway_backends):
-    api_gateway_dir = _get_api_gateway_config_dir()
-    remove_files(api_gateway_dir)
+    routers_dir = _get_routers_config_dir()
+    remove_files(routers_dir)
 
     # sort to make the order to the backends are always the same
     sorted_api_gateway_backends = sorted(api_gateway_backends.items())
 
     for backend_name, backend_service in sorted_api_gateway_backends:
-        api_gateway_file = os.path.join(api_gateway_dir,
-                                        "{}.conf".format(backend_name))
+        router_file = os.path.join(
+            routers_dir, "{}.conf".format(backend_name))
 
         service_port = backend_service["service_port"]
         tags = backend_service.get("tags")
@@ -472,7 +495,7 @@ def update_api_gateway_dns_backends(
             backend_name, service_tag)
 
         variable_name = backend_name.replace('-', '_')
-        with open(api_gateway_file, "a") as f:
+        with open(router_file, "w") as f:
             # for each backend, we generate a location block
             f.write("location /" + backend_name + " {\n")
             f.write(f"    set ${variable_name}_servers {service_dns_name};\n")
@@ -481,4 +504,3 @@ def update_api_gateway_dns_backends(
 
     # Need reload nginx if there is new backend added
     exec_with_call("sudo service nginx reload")
-