zrok/controller/controller.go

package controller

import (
	"context"
	"github.com/openziti/zrok/controller/config"
	"github.com/openziti/zrok/controller/limits"
	"github.com/openziti/zrok/controller/metrics"
	"github.com/sirupsen/logrus"
	"log"
	"net/http"
	_ "net/http/pprof"

	"github.com/go-openapi/loads"
	influxdb2 "github.com/influxdata/influxdb-client-go/v2"
	"github.com/openziti/zrok/controller/store"
	"github.com/openziti/zrok/rest_server_zrok"
	"github.com/openziti/zrok/rest_server_zrok/operations"
	"github.com/openziti/zrok/rest_server_zrok/operations/account"
	"github.com/openziti/zrok/rest_server_zrok/operations/metadata"
	"github.com/pkg/errors"
)

var (
	cfg         *config.Config
	str         *store.Store
	idb         influxdb2.Client
	limitsAgent *limits.Agent
)

func Run(inCfg *config.Config) error {
	cfg = inCfg

	if cfg.Admin != nil && cfg.Admin.ProfileEndpoint != "" {
		go func() {
			log.Println(http.ListenAndServe(cfg.Admin.ProfileEndpoint, nil))
		}()
	}

	swaggerSpec, err := loads.Embedded(rest_server_zrok.SwaggerJSON, rest_server_zrok.FlatSwaggerJSON)
	if err != nil {
		return errors.Wrap(err, "error loading embedded swagger spec")
	}

	api := operations.NewZrokAPI(swaggerSpec)
	api.KeyAuth = newZrokAuthenticator(cfg).authenticate
	api.AccountInviteHandler = newInviteHandler(cfg)
	api.AccountLoginHandler = account.LoginHandlerFunc(loginHandler)
	api.AccountRegisterHandler = newRegisterHandler(cfg)
	api.AccountResetPasswordHandler = newResetPasswordHandler(cfg)
	api.AccountResetPasswordRequestHandler = newResetPasswordRequestHandler()
	api.AccountVerifyHandler = newVerifyHandler()
	api.AdminCreateFrontendHandler = newCreateFrontendHandler()
	api.AdminCreateIdentityHandler = newCreateIdentityHandler()
	api.AdminDeleteFrontendHandler = newDeleteFrontendHandler()
	api.AdminInviteTokenGenerateHandler = newInviteTokenGenerateHandler()
	api.AdminListFrontendsHandler = newListFrontendsHandler()
	api.AdminUpdateFrontendHandler = newUpdateFrontendHandler()
	api.EnvironmentEnableHandler = newEnableHandler()
	api.EnvironmentDisableHandler = newDisableHandler()
	api.MetadataGetAccountDetailHandler = newAccountDetailHandler()
	api.MetadataConfigurationHandler = newConfigurationHandler(cfg)
	if cfg.Metrics != nil && cfg.Metrics.Influx != nil {
		api.MetadataGetAccountMetricsHandler = newGetAccountMetricsHandler(cfg.Metrics.Influx)
		api.MetadataGetEnvironmentMetricsHandler = newGetEnvironmentMetricsHandler(cfg.Metrics.Influx)
		api.MetadataGetShareMetricsHandler = newGetShareMetricsHandler(cfg.Metrics.Influx)
	}
	api.MetadataGetEnvironmentDetailHandler = newEnvironmentDetailHandler()
	api.MetadataGetFrontendDetailHandler = newGetFrontendDetailHandler()
	api.MetadataGetShareDetailHandler = newShareDetailHandler()
	api.MetadataOverviewHandler = newOverviewHandler()
	api.MetadataVersionHandler = metadata.VersionHandlerFunc(versionHandler)
	api.ShareAccessHandler = newAccessHandler()
	api.ShareShareHandler = newShareHandler()
	api.ShareUnaccessHandler = newUnaccessHandler()
	api.ShareUnshareHandler = newUnshareHandler()
	api.ShareUpdateShareHandler = newUpdateShareHandler()

	if err := controllerStartup(); err != nil {
		return err
	}

	if v, err := store.Open(cfg.Store); err == nil {
		str = v
	} else {
		return errors.Wrap(err, "error opening store")
	}

	if cfg.Metrics != nil && cfg.Metrics.Influx != nil {
		idb = influxdb2.NewClient(cfg.Metrics.Influx.Url, cfg.Metrics.Influx.Token)
	} else {
		logrus.Warn("skipping influx client; no configuration")
	}

	if cfg.Metrics != nil && cfg.Metrics.Agent != nil && cfg.Metrics.Influx != nil {
		ma, err := metrics.NewAgent(cfg.Metrics.Agent, str, cfg.Metrics.Influx)
		if err != nil {
			return errors.Wrap(err, "error creating metrics agent")
		}
		if err := ma.Start(); err != nil {
			return errors.Wrap(err, "error starting metrics agent")
		}
		defer func() { ma.Stop() }()

		if cfg.Limits != nil && cfg.Limits.Enforcing {
			limitsAgent, err = limits.NewAgent(cfg.Limits, cfg.Metrics.Influx, cfg.Ziti, cfg.Email, str)
			if err != nil {
				return errors.Wrap(err, "error creating limits agent")
			}
			ma.AddUsageSink(limitsAgent)
			limitsAgent.Start()
			defer func() { limitsAgent.Stop() }()
		}
	}

	ctx, cancel := context.WithCancel(context.Background())
	defer func() {
		cancel()
	}()

	if cfg.Maintenance != nil {
		if cfg.Maintenance.Registration != nil {
			go newRegistrationMaintenanceAgent(ctx, cfg.Maintenance.Registration).run()
		}
		if cfg.Maintenance.ResetPassword != nil {
			go newMaintenanceResetPasswordAgent(ctx, cfg.Maintenance.ResetPassword).run()
		}
	}

	server := rest_server_zrok.NewServer(api)
	defer func() { _ = server.Shutdown() }()
	server.Host = cfg.Endpoint.Host
	server.Port = cfg.Endpoint.Port
	rest_server_zrok.HealthCheck = HealthCheckHTTP
	server.ConfigureAPI()
	if err := server.Serve(); err != nil {
		return errors.Wrap(err, "api server error")
	}

	return nil
}

func Store() *store.Store {
	return str
}
cmd scaffolding for controller; lint removal 2022-07-21 22:43:42 +02:00			`package controller`

wiring in the go-swagger infrastructure 2022-07-22 17:16:30 +02:00			`import (`
added go routine to cleaup expired access requests 2023-01-12 17:04:56 +01:00			`"context"`
consolidated configuration; 'zrok metrics' and 'zrok ctrl' share config (#269) 2023-03-13 19:19:38 +01:00			`"github.com/openziti/zrok/controller/config"`
wire in the new 'limits.Agent' infrastructure; extend the 'metrics.Agent' to support additional 'metrics.UsageSink' instances (#271) 2023-03-16 20:05:39 +01:00			`"github.com/openziti/zrok/controller/limits"`
metrics2 -> metrics (#270) 2023-03-15 21:14:06 +01:00			`"github.com/openziti/zrok/controller/metrics"`
consolidated configuration; 'zrok metrics' and 'zrok ctrl' share config (#269) 2023-03-13 19:19:38 +01:00			`"github.com/sirupsen/logrus"`
support for pprof endpoint 2023-06-16 17:52:42 +02:00			`"log"`
			`"net/http"`
			`_ "net/http/pprof"`
added go routine to cleaup expired access requests 2023-01-12 17:04:56 +01:00
wiring in the go-swagger infrastructure 2022-07-22 17:16:30 +02:00			`"github.com/go-openapi/loads"`
more 'active' removal; overview api sends spark metrics; spark ui (#74, #80) 2022-10-19 21:21:15 +02:00			`influxdb2 "github.com/influxdata/influxdb-client-go/v2"`
openziti-rest-kitchen -> openziti (#158) 2023-01-13 21:01:34 +01:00			`"github.com/openziti/zrok/controller/store"`
			`"github.com/openziti/zrok/rest_server_zrok"`
			`"github.com/openziti/zrok/rest_server_zrok/operations"`
			`"github.com/openziti/zrok/rest_server_zrok/operations/account"`
			`"github.com/openziti/zrok/rest_server_zrok/operations/metadata"`
wiring in the go-swagger infrastructure 2022-07-22 17:16:30 +02:00			`"github.com/pkg/errors"`
			`)`

initial testing for oauth protecting shares 2023-02-22 16:37:07 +01:00			`var (`
oauth updates 2023-07-18 20:03:43 +02:00			`cfg *config.Config`
initial testing for oauth protecting shares 2023-02-22 16:37:07 +01:00			`str *store.Store`
			`idb influxdb2.Client`
			`limitsAgent *limits.Agent`
			`)`
controller store skeleton; sqlx; sqlite3; migrations 2022-07-22 19:53:39 +02:00
consolidated configuration; 'zrok metrics' and 'zrok ctrl' share config (#269) 2023-03-13 19:19:38 +01:00			`func Run(inCfg *config.Config) error {`
controller config structure improvements 2022-10-19 19:20:47 +02:00			`cfg = inCfg`

support for pprof endpoint 2023-06-16 17:52:42 +02:00			`if cfg.Admin != nil && cfg.Admin.ProfileEndpoint != "" {`
			`go func() {`
			`log.Println(http.ListenAndServe(cfg.Admin.ProfileEndpoint, nil))`
			`}()`
			`}`

api package naming cleanup (less conflicts with existing ziti infrastructure) 2022-07-26 21:16:02 +02:00			`swaggerSpec, err := loads.Embedded(rest_server_zrok.SwaggerJSON, rest_server_zrok.FlatSwaggerJSON)`
wiring in the go-swagger infrastructure 2022-07-22 17:16:30 +02:00			`if err != nil {`
			`return errors.Wrap(err, "error loading embedded swagger spec")`
			`}`

			`api := operations.NewZrokAPI(swaggerSpec)`
add admin support to rest_model_zrok.Principal; authenticator (#116) 2022-12-01 20:48:23 +01:00			`api.KeyAuth = newZrokAuthenticator(cfg).authenticate`
initial rough pass for a stored token implementation 2023-01-09 18:00:37 +01:00			`api.AccountInviteHandler = newInviteHandler(cfg)`
api namespace/naming polish 2022-11-30 17:43:00 +01:00			`api.AccountLoginHandler = account.LoginHandlerFunc(loginHandler)`
Enhanced password requirements and relevant ui changes 2023-05-11 20:35:49 +02:00			`api.AccountRegisterHandler = newRegisterHandler(cfg)`
			`api.AccountResetPasswordHandler = newResetPasswordHandler(cfg)`
forgot -> reset; password reset testing & tweaks (#65) 2023-01-20 18:08:40 +01:00			`api.AccountResetPasswordRequestHandler = newResetPasswordRequestHandler()`
api namespace/naming polish 2022-11-30 17:43:00 +01:00			`api.AccountVerifyHandler = newVerifyHandler()`
create frontend handler (#129) 2022-12-01 22:14:42 +01:00			`api.AdminCreateFrontendHandler = newCreateFrontendHandler()`
basic 'admin create identity' infrastructure (#130) 2022-12-06 20:06:12 +01:00			`api.AdminCreateIdentityHandler = newCreateIdentityHandler()`
add backend for 'admin delete frontend' (#129) 2022-12-02 14:58:41 +01:00			`api.AdminDeleteFrontendHandler = newDeleteFrontendHandler()`
pr comments 2023-01-10 19:26:22 +01:00			`api.AdminInviteTokenGenerateHandler = newInviteTokenGenerateHandler()`
list frontends backend (#129) 2022-12-02 15:30:06 +01:00			`api.AdminListFrontendsHandler = newListFrontendsHandler()`
update frontend backend (#129) 2022-12-02 16:46:53 +01:00			`api.AdminUpdateFrontendHandler = newUpdateFrontendHandler()`
centralized environment limits check (#277) 2023-03-21 21:18:17 +01:00			`api.EnvironmentEnableHandler = newEnableHandler()`
api namespace/naming polish 2022-11-30 17:43:00 +01:00			`api.EnvironmentDisableHandler = newDisableHandler()`
roughed in environment sparklines backend (#327) 2023-05-12 17:57:34 +02:00			`api.MetadataGetAccountDetailHandler = newAccountDetailHandler()`
added configuration endpoint which sends tou link and version info 2023-01-31 19:44:03 +01:00			`api.MetadataConfigurationHandler = newConfigurationHandler(cfg)`
account metrics endpoint (#319) 2023-05-09 20:16:01 +02:00			`if cfg.Metrics != nil && cfg.Metrics.Influx != nil {`
			`api.MetadataGetAccountMetricsHandler = newGetAccountMetricsHandler(cfg.Metrics.Influx)`
wire in environment and share handlers (#319) 2023-05-09 22:48:11 +02:00			`api.MetadataGetEnvironmentMetricsHandler = newGetEnvironmentMetricsHandler(cfg.Metrics.Influx)`
			`api.MetadataGetShareMetricsHandler = newGetShareMetricsHandler(cfg.Metrics.Influx)`
account metrics endpoint (#319) 2023-05-09 20:16:01 +02:00			`}`
/detail/environmment; environment detail api backend (#107) 2022-12-22 19:51:29 +01:00			`api.MetadataGetEnvironmentDetailHandler = newEnvironmentDetailHandler()`
frontend details (#323) 2023-05-17 19:53:18 +02:00			`api.MetadataGetFrontendDetailHandler = newGetFrontendDetailHandler()`
massive services -> share boatload (#144) 2023-01-04 19:43:37 +01:00			`api.MetadataGetShareDetailHandler = newShareDetailHandler()`
limit details on explorer nodes (#320) 2023-05-16 19:45:43 +02:00			`api.MetadataOverviewHandler = newOverviewHandler()`
basic login service/state (#17) 2022-08-02 19:23:31 +02:00			`api.MetadataVersionHandler = metadata.VersionHandlerFunc(versionHandler)`
massive services -> share boatload (#144) 2023-01-04 19:43:37 +01:00			`api.ShareAccessHandler = newAccessHandler()`
oauth updates 2023-07-18 20:03:43 +02:00			`api.ShareShareHandler = newShareHandler()`
massive services -> share boatload (#144) 2023-01-04 19:43:37 +01:00			`api.ShareUnaccessHandler = newUnaccessHandler()`
			`api.ShareUnshareHandler = newUnshareHandler()`
			`api.ShareUpdateShareHandler = newUpdateShareHandler()`
more swagger wiring 2022-07-22 17:45:37 +02:00
controller config structure improvements 2022-10-19 19:20:47 +02:00			`if err := controllerStartup(); err != nil {`
controller startup/setup (#12) 2022-08-15 20:25:50 +02:00			`return err`
			`}`

api improvements 2022-07-27 19:38:35 +02:00			`if v, err := store.Open(cfg.Store); err == nil {`
not public; lint 2022-07-29 21:28:40 +02:00			`str = v`
api improvements 2022-07-27 19:38:35 +02:00			`} else {`
			`return errors.Wrap(err, "error opening store")`
			`}`

consolidated configuration; 'zrok metrics' and 'zrok ctrl' share config (#269) 2023-03-13 19:19:38 +01:00			`if cfg.Metrics != nil && cfg.Metrics.Influx != nil {`
			`idb = influxdb2.NewClient(cfg.Metrics.Influx.Url, cfg.Metrics.Influx.Token)`
			`} else {`
			`logrus.Warn("skipping influx client; no configuration")`
more 'active' removal; overview api sends spark metrics; spark ui (#74, #80) 2022-10-19 21:21:15 +02:00			`}`

incorporate metrics.Agent into the controller (#270) 2023-03-15 21:05:01 +01:00			`if cfg.Metrics != nil && cfg.Metrics.Agent != nil && cfg.Metrics.Influx != nil {`
metrics2 -> metrics (#270) 2023-03-15 21:14:06 +01:00			`ma, err := metrics.NewAgent(cfg.Metrics.Agent, str, cfg.Metrics.Influx)`
incorporate metrics.Agent into the controller (#270) 2023-03-15 21:05:01 +01:00			`if err != nil {`
			`return errors.Wrap(err, "error creating metrics agent")`
			`}`
			`if err := ma.Start(); err != nil {`
			`return errors.Wrap(err, "error starting metrics agent")`
			`}`
			`defer func() { ma.Stop() }()`
wire in the new 'limits.Agent' infrastructure; extend the 'metrics.Agent' to support additional 'metrics.UsageSink' instances (#271) 2023-03-16 20:05:39 +01:00
			`if cfg.Limits != nil && cfg.Limits.Enforcing {`
roughed in limit warning email actions (#276) 2023-03-27 21:29:25 +02:00			`limitsAgent, err = limits.NewAgent(cfg.Limits, cfg.Metrics.Influx, cfg.Ziti, cfg.Email, str)`
wire in the new 'limits.Agent' infrastructure; extend the 'metrics.Agent' to support additional 'metrics.UsageSink' instances (#271) 2023-03-16 20:05:39 +01:00			`if err != nil {`
			`return errors.Wrap(err, "error creating limits agent")`
			`}`
centralized environment limits check (#277) 2023-03-21 21:18:17 +01:00			`ma.AddUsageSink(limitsAgent)`
			`limitsAgent.Start()`
			`defer func() { limitsAgent.Stop() }()`
wire in the new 'limits.Agent' infrastructure; extend the 'metrics.Agent' to support additional 'metrics.UsageSink' instances (#271) 2023-03-16 20:05:39 +01:00			`}`
incorporate metrics.Agent into the controller (#270) 2023-03-15 21:05:01 +01:00			`}`

added go routine to cleaup expired access requests 2023-01-12 17:04:56 +01:00			`ctx, cancel := context.WithCancel(context.Background())`
			`defer func() {`
			`cancel()`
			`}()`

added maintenance cleanup for expired password reset requests 2023-01-20 17:00:46 +01:00			`if cfg.Maintenance != nil {`
			`if cfg.Maintenance.Registration != nil {`
			`go newRegistrationMaintenanceAgent(ctx, cfg.Maintenance.Registration).run()`
			`}`
forgot -> reset; password reset testing & tweaks (#65) 2023-01-20 18:08:40 +01:00			`if cfg.Maintenance.ResetPassword != nil {`
			`go newMaintenanceResetPasswordAgent(ctx, cfg.Maintenance.ResetPassword).run()`
added maintenance cleanup for expired password reset requests 2023-01-20 17:00:46 +01:00			`}`
added go routine to cleaup expired access requests 2023-01-12 17:04:56 +01:00			`}`

api package naming cleanup (less conflicts with existing ziti infrastructure) 2022-07-26 21:16:02 +02:00			`server := rest_server_zrok.NewServer(api)`
wiring in the go-swagger infrastructure 2022-07-22 17:16:30 +02:00			`defer func() { _ = server.Shutdown() }()`
elaborating controller config (#23) 2022-08-09 17:18:24 +02:00			`server.Host = cfg.Endpoint.Host`
			`server.Port = cfg.Endpoint.Port`
health check endpoint for checking both the SQL store and also influx (#372) 2023-08-08 19:48:34 +02:00			`rest_server_zrok.HealthCheck = HealthCheckHTTP`
wiring in the go-swagger infrastructure 2022-07-22 17:16:30 +02:00			`server.ConfigureAPI()`
			`if err := server.Serve(); err != nil {`
			`return errors.Wrap(err, "api server error")`
			`}`
metrics agent infrastructure 2022-10-13 20:23:52 +02:00
cmd scaffolding for controller; lint removal 2022-07-21 22:43:42 +02:00			`return nil`
			`}`
health check endpoint for checking both the SQL store and also influx (#372) 2023-08-08 19:48:34 +02:00
			`func Store() *store.Store {`
			`return str`
			`}`