2023-03-16 20:05:39 +01:00
|
|
|
package limits
|
|
|
|
|
|
|
|
|
|
import (
|
2023-03-21 19:06:23 +01:00
|
|
|
"github.com/jmoiron/sqlx"
|
2023-03-27 21:29:25 +02:00
|
|
|
"github.com/openziti/zrok/controller/emailUi"
|
2023-03-16 20:05:39 +01:00
|
|
|
"github.com/openziti/zrok/controller/metrics"
|
|
|
|
|
"github.com/openziti/zrok/controller/store"
|
|
|
|
|
"github.com/openziti/zrok/controller/zrokEdgeSdk"
|
2024-05-23 20:08:14 +02:00
|
|
|
"github.com/openziti/zrok/sdk/golang/sdk"
|
2023-03-21 19:06:23 +01:00
|
|
|
"github.com/pkg/errors"
|
2023-03-16 20:05:39 +01:00
|
|
|
"github.com/sirupsen/logrus"
|
2023-03-28 20:39:42 +02:00
|
|
|
"reflect"
|
2023-03-17 18:13:33 +01:00
|
|
|
"time"
|
2023-03-16 20:05:39 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
type Agent struct {
|
2023-03-23 22:16:35 +01:00
|
|
|
cfg *Config
|
|
|
|
|
ifx *influxReader
|
|
|
|
|
zCfg *zrokEdgeSdk.Config
|
|
|
|
|
str *store.Store
|
|
|
|
|
queue chan *metrics.Usage
|
2023-03-27 17:43:58 +02:00
|
|
|
acctWarningActions []AccountAction
|
|
|
|
|
acctLimitActions []AccountAction
|
|
|
|
|
acctRelaxActions []AccountAction
|
2023-03-23 22:16:35 +01:00
|
|
|
close chan struct{}
|
|
|
|
|
join chan struct{}
|
2023-03-16 20:05:39 +01:00
|
|
|
}
|
|
|
|
|
|
2023-03-27 21:29:25 +02:00
|
|
|
func NewAgent(cfg *Config, ifxCfg *metrics.InfluxConfig, zCfg *zrokEdgeSdk.Config, emailCfg *emailUi.Config, str *store.Store) (*Agent, error) {
|
2023-03-27 17:34:29 +02:00
|
|
|
a := &Agent{
|
2023-03-27 17:53:18 +02:00
|
|
|
cfg: cfg,
|
|
|
|
|
ifx: newInfluxReader(ifxCfg),
|
|
|
|
|
zCfg: zCfg,
|
|
|
|
|
str: str,
|
|
|
|
|
queue: make(chan *metrics.Usage, 1024),
|
2023-06-05 22:01:04 +02:00
|
|
|
acctWarningActions: []AccountAction{newAccountWarningAction(emailCfg, str)},
|
2023-06-05 22:16:07 +02:00
|
|
|
acctLimitActions: []AccountAction{newAccountLimitAction(str, zCfg)},
|
2023-06-05 22:01:04 +02:00
|
|
|
acctRelaxActions: []AccountAction{newAccountRelaxAction(str, zCfg)},
|
2023-03-27 17:53:18 +02:00
|
|
|
close: make(chan struct{}),
|
|
|
|
|
join: make(chan struct{}),
|
2023-03-27 17:34:29 +02:00
|
|
|
}
|
|
|
|
|
return a, nil
|
2023-03-16 20:05:39 +01:00
|
|
|
}
|
|
|
|
|
|
2023-03-17 18:13:33 +01:00
|
|
|
func (a *Agent) Start() {
|
|
|
|
|
go a.run()
|
2023-03-16 20:05:39 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (a *Agent) Stop() {
|
2023-03-17 18:13:33 +01:00
|
|
|
close(a.close)
|
|
|
|
|
<-a.join
|
2023-03-16 20:05:39 +01:00
|
|
|
}
|
|
|
|
|
|
2023-03-21 21:34:45 +01:00
|
|
|
func (a *Agent) CanCreateEnvironment(acctId int, trx *sqlx.Tx) (bool, error) {
|
2023-03-29 19:29:12 +02:00
|
|
|
if a.cfg.Enforcing {
|
2024-05-15 21:48:42 +02:00
|
|
|
if err := a.str.LimitCheckLock(acctId, trx); err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
2024-05-31 20:26:29 +02:00
|
|
|
if empty, err := a.str.IsBandwidthLimitJournalEmpty(acctId, trx); err == nil && !empty {
|
|
|
|
|
alj, err := a.str.FindLatestBandwidthLimitJournal(acctId, trx)
|
2023-04-05 19:57:22 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
2024-05-14 19:24:48 +02:00
|
|
|
if alj.Action == store.LimitLimitAction {
|
2023-04-05 19:57:22 +02:00
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
} else if err != nil {
|
2023-03-21 21:34:45 +01:00
|
|
|
return false, err
|
|
|
|
|
}
|
2023-03-29 19:29:12 +02:00
|
|
|
|
|
|
|
|
if a.cfg.Environments > Unlimited {
|
|
|
|
|
envs, err := a.str.FindEnvironmentsForAccount(acctId, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
|
|
|
|
if len(envs)+1 > a.cfg.Environments {
|
|
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-03-21 21:34:45 +01:00
|
|
|
}
|
|
|
|
|
return true, nil
|
|
|
|
|
}
|
2023-03-21 21:18:17 +01:00
|
|
|
|
2024-05-30 20:27:39 +02:00
|
|
|
func (a *Agent) CanCreateShare(acctId, envId int, reserved, uniqueName bool, _ sdk.ShareMode, _ sdk.BackendMode, trx *sqlx.Tx) (bool, error) {
|
2023-03-29 19:29:12 +02:00
|
|
|
if a.cfg.Enforcing {
|
2024-05-15 21:48:42 +02:00
|
|
|
if err := a.str.LimitCheckLock(acctId, trx); err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
2024-05-31 20:26:29 +02:00
|
|
|
if empty, err := a.str.IsBandwidthLimitJournalEmpty(acctId, trx); err == nil && !empty {
|
|
|
|
|
alj, err := a.str.FindLatestBandwidthLimitJournal(acctId, trx)
|
2023-03-29 19:29:12 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
2024-05-14 19:24:48 +02:00
|
|
|
if alj.Action == store.LimitLimitAction {
|
2023-03-29 19:29:12 +02:00
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
} else if err != nil {
|
2023-03-21 21:18:17 +01:00
|
|
|
return false, err
|
|
|
|
|
}
|
2023-03-29 19:29:12 +02:00
|
|
|
|
2024-05-23 20:08:14 +02:00
|
|
|
alc, err := a.str.FindLimitClassesForAccount(acctId, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
logrus.Errorf("error finding limit classes for account with id '%d': %v", acctId, err)
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
|
|
|
|
sortLimitClasses(alc)
|
|
|
|
|
if len(alc) > 0 {
|
|
|
|
|
logrus.Infof("selected limit class: %v", alc[0])
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-22 22:21:52 +02:00
|
|
|
if a.cfg.Shares > Unlimited || (reserved && a.cfg.ReservedShares > Unlimited) || (reserved && uniqueName && a.cfg.UniqueNames > Unlimited) {
|
2023-03-29 19:29:12 +02:00
|
|
|
envs, err := a.str.FindEnvironmentsForAccount(acctId, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
|
|
|
|
total := 0
|
2024-05-22 22:21:52 +02:00
|
|
|
reserveds := 0
|
|
|
|
|
uniqueNames := 0
|
2023-03-29 19:29:12 +02:00
|
|
|
for i := range envs {
|
|
|
|
|
shrs, err := a.str.FindSharesForEnvironment(envs[i].Id, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false, errors.Wrapf(err, "unable to find shares for environment '%v'", envs[i].ZId)
|
|
|
|
|
}
|
|
|
|
|
total += len(shrs)
|
2024-05-22 22:21:52 +02:00
|
|
|
for _, shr := range shrs {
|
|
|
|
|
if shr.Reserved {
|
|
|
|
|
reserveds++
|
|
|
|
|
}
|
|
|
|
|
if shr.UniqueName {
|
|
|
|
|
uniqueNames++
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-03-29 19:29:12 +02:00
|
|
|
if total+1 > a.cfg.Shares {
|
2024-05-23 17:50:55 +02:00
|
|
|
logrus.Debugf("account '%d', environment '%d' over shares limit '%d'", acctId, envId, a.cfg.Shares)
|
2023-03-29 19:29:12 +02:00
|
|
|
return false, nil
|
|
|
|
|
}
|
2024-05-22 22:21:52 +02:00
|
|
|
if reserved && reserveds+1 > a.cfg.ReservedShares {
|
2024-05-23 17:50:55 +02:00
|
|
|
logrus.Debugf("account '%v', environment '%d' over reserved shares limit '%d'", acctId, envId, a.cfg.ReservedShares)
|
2024-05-22 22:21:52 +02:00
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
if reserved && uniqueName && uniqueNames+1 > a.cfg.UniqueNames {
|
2024-05-23 17:50:55 +02:00
|
|
|
logrus.Debugf("account '%v', environment '%d' over unique names limit '%d'", acctId, envId, a.cfg.UniqueNames)
|
2024-05-22 22:21:52 +02:00
|
|
|
return false, nil
|
|
|
|
|
}
|
2023-03-29 19:29:12 +02:00
|
|
|
logrus.Infof("total = %d", total)
|
|
|
|
|
}
|
2023-03-21 21:18:17 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return true, nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-06-06 17:29:22 +02:00
|
|
|
func (a *Agent) CanAccessShare(shrId int, trx *sqlx.Tx) (bool, error) {
|
|
|
|
|
if a.cfg.Enforcing {
|
|
|
|
|
shr, err := a.str.GetShare(shrId, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
2024-05-31 20:26:29 +02:00
|
|
|
if empty, err := a.str.IsBandwidthLimitJournalEmpty(shr.Id, trx); err == nil && !empty {
|
|
|
|
|
slj, err := a.str.FindLatestBandwidthLimitJournal(shr.Id, trx)
|
2023-06-06 17:29:22 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
2024-05-14 19:24:48 +02:00
|
|
|
if slj.Action == store.LimitLimitAction {
|
2023-06-06 17:29:22 +02:00
|
|
|
return false, nil
|
|
|
|
|
}
|
|
|
|
|
} else if err != nil {
|
|
|
|
|
return false, err
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-06-06 16:54:57 +02:00
|
|
|
return true, nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-16 20:05:39 +01:00
|
|
|
func (a *Agent) Handle(u *metrics.Usage) error {
|
2023-03-21 18:05:22 +01:00
|
|
|
logrus.Debugf("handling: %v", u)
|
|
|
|
|
a.queue <- u
|
2023-03-16 20:05:39 +01:00
|
|
|
return nil
|
|
|
|
|
}
|
2023-03-17 18:13:33 +01:00
|
|
|
|
|
|
|
|
func (a *Agent) run() {
|
|
|
|
|
logrus.Info("started")
|
|
|
|
|
defer logrus.Info("stopped")
|
|
|
|
|
|
2023-03-29 23:03:42 +02:00
|
|
|
lastCycle := time.Now()
|
2023-03-17 18:13:33 +01:00
|
|
|
mainLoop:
|
|
|
|
|
for {
|
|
|
|
|
select {
|
2023-03-21 18:05:22 +01:00
|
|
|
case usage := <-a.queue:
|
2023-06-16 19:18:46 +02:00
|
|
|
if usage.ShareToken != "" {
|
|
|
|
|
if err := a.enforce(usage); err != nil {
|
|
|
|
|
logrus.Errorf("error running enforcement: %v", err)
|
|
|
|
|
}
|
|
|
|
|
if time.Since(lastCycle) > a.cfg.Cycle {
|
|
|
|
|
if err := a.relax(); err != nil {
|
|
|
|
|
logrus.Errorf("error running relax cycle: %v", err)
|
|
|
|
|
}
|
|
|
|
|
lastCycle = time.Now()
|
2023-03-29 23:03:42 +02:00
|
|
|
}
|
2023-06-16 19:18:46 +02:00
|
|
|
} else {
|
2023-06-16 19:28:00 +02:00
|
|
|
logrus.Warnf("not enforcing for usage with no share token: %v", usage.String())
|
2023-03-29 23:03:42 +02:00
|
|
|
}
|
2023-03-21 18:05:22 +01:00
|
|
|
|
2023-03-17 18:13:33 +01:00
|
|
|
case <-time.After(a.cfg.Cycle):
|
2023-03-23 20:13:59 +01:00
|
|
|
if err := a.relax(); err != nil {
|
|
|
|
|
logrus.Errorf("error running relax cycle: %v", err)
|
|
|
|
|
}
|
2023-03-29 23:03:42 +02:00
|
|
|
lastCycle = time.Now()
|
2023-03-17 18:13:33 +01:00
|
|
|
|
|
|
|
|
case <-a.close:
|
|
|
|
|
close(a.join)
|
|
|
|
|
break mainLoop
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-03-21 18:05:22 +01:00
|
|
|
|
2023-03-21 19:06:23 +01:00
|
|
|
func (a *Agent) enforce(u *metrics.Usage) error {
|
|
|
|
|
trx, err := a.str.Begin()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return errors.Wrap(err, "error starting transaction")
|
|
|
|
|
}
|
|
|
|
|
defer func() { _ = trx.Rollback() }()
|
|
|
|
|
|
2023-06-07 17:00:42 +02:00
|
|
|
acct, err := a.str.GetAccount(int(u.AccountId), trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
if acct.Limitless {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-31 22:06:42 +02:00
|
|
|
shr, err := a.str.FindShareWithToken(u.ShareToken, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
logrus.Infof("share: '%v', shareMode: '%v', backendMode: '%v'", shr.Token, shr.ShareMode, shr.BackendMode)
|
|
|
|
|
|
2024-05-31 21:57:41 +02:00
|
|
|
if enforce, warning, rxBytes, txBytes, err := a.checkBandwidthLimit(u.AccountId); err == nil {
|
2023-03-21 19:06:23 +01:00
|
|
|
if enforce {
|
2023-03-22 19:10:07 +01:00
|
|
|
enforced := false
|
|
|
|
|
var enforcedAt time.Time
|
2024-05-31 20:26:29 +02:00
|
|
|
if empty, err := a.str.IsBandwidthLimitJournalEmpty(int(u.AccountId), trx); err == nil && !empty {
|
|
|
|
|
if latest, err := a.str.FindLatestBandwidthLimitJournal(int(u.AccountId), trx); err == nil {
|
2024-05-14 19:24:48 +02:00
|
|
|
enforced = latest.Action == store.LimitLimitAction
|
2023-03-22 19:10:07 +01:00
|
|
|
enforcedAt = latest.UpdatedAt
|
|
|
|
|
}
|
|
|
|
|
}
|
2023-03-22 18:09:21 +01:00
|
|
|
|
2023-03-22 19:10:07 +01:00
|
|
|
if !enforced {
|
2024-05-31 20:26:29 +02:00
|
|
|
_, err := a.str.CreateBandwidthLimitJournalEntry(&store.BandwidthLimitJournalEntry{
|
2023-03-22 19:10:07 +01:00
|
|
|
AccountId: int(u.AccountId),
|
2023-03-29 23:03:42 +02:00
|
|
|
RxBytes: rxBytes,
|
|
|
|
|
TxBytes: txBytes,
|
2024-05-14 19:24:48 +02:00
|
|
|
Action: store.LimitLimitAction,
|
2023-03-22 19:10:07 +01:00
|
|
|
}, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2023-03-27 19:00:05 +02:00
|
|
|
acct, err := a.str.GetAccount(int(u.AccountId), trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
// run account limit actions
|
|
|
|
|
for _, action := range a.acctLimitActions {
|
2024-05-30 19:46:15 +02:00
|
|
|
if err := action.HandleAccount(acct, rxBytes, txBytes, a.cfg.Bandwidth, trx); err != nil {
|
2023-03-28 20:39:42 +02:00
|
|
|
return errors.Wrapf(err, "%v", reflect.TypeOf(action).String())
|
2023-03-27 19:00:05 +02:00
|
|
|
}
|
|
|
|
|
}
|
2023-03-22 19:10:07 +01:00
|
|
|
if err := trx.Commit(); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Debugf("already enforced limit for account '#%d' at %v", u.AccountId, enforcedAt)
|
2023-03-22 18:09:21 +01:00
|
|
|
}
|
|
|
|
|
|
2023-03-21 19:06:23 +01:00
|
|
|
} else if warning {
|
2023-03-22 19:10:07 +01:00
|
|
|
warned := false
|
|
|
|
|
var warnedAt time.Time
|
2024-05-31 20:26:29 +02:00
|
|
|
if empty, err := a.str.IsBandwidthLimitJournalEmpty(int(u.AccountId), trx); err == nil && !empty {
|
|
|
|
|
if latest, err := a.str.FindLatestBandwidthLimitJournal(int(u.AccountId), trx); err == nil {
|
2024-05-14 19:24:48 +02:00
|
|
|
warned = latest.Action == store.WarningLimitAction || latest.Action == store.LimitLimitAction
|
2023-03-22 19:10:07 +01:00
|
|
|
warnedAt = latest.UpdatedAt
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !warned {
|
2024-05-31 20:26:29 +02:00
|
|
|
_, err := a.str.CreateBandwidthLimitJournalEntry(&store.BandwidthLimitJournalEntry{
|
2023-03-22 19:10:07 +01:00
|
|
|
AccountId: int(u.AccountId),
|
2023-03-29 23:03:42 +02:00
|
|
|
RxBytes: rxBytes,
|
|
|
|
|
TxBytes: txBytes,
|
2024-05-14 19:24:48 +02:00
|
|
|
Action: store.WarningLimitAction,
|
2023-03-22 19:10:07 +01:00
|
|
|
}, trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2023-03-27 19:00:05 +02:00
|
|
|
acct, err := a.str.GetAccount(int(u.AccountId), trx)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
// run account warning actions
|
|
|
|
|
for _, action := range a.acctWarningActions {
|
2024-05-30 19:46:15 +02:00
|
|
|
if err := action.HandleAccount(acct, rxBytes, txBytes, a.cfg.Bandwidth, trx); err != nil {
|
2023-03-28 20:39:42 +02:00
|
|
|
return errors.Wrapf(err, "%v", reflect.TypeOf(action).String())
|
2023-03-27 19:00:05 +02:00
|
|
|
}
|
|
|
|
|
}
|
2023-03-22 19:10:07 +01:00
|
|
|
if err := trx.Commit(); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Debugf("already warned account '#%d' at %v", u.AccountId, warnedAt)
|
|
|
|
|
}
|
2023-03-21 19:06:23 +01:00
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Error(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2023-03-23 20:13:59 +01:00
|
|
|
func (a *Agent) relax() error {
|
2023-03-28 21:19:01 +02:00
|
|
|
logrus.Debug("relaxing")
|
2023-03-23 20:13:59 +01:00
|
|
|
|
|
|
|
|
trx, err := a.str.Begin()
|
2023-03-21 19:06:23 +01:00
|
|
|
if err != nil {
|
2023-03-23 20:13:59 +01:00
|
|
|
return errors.Wrap(err, "error starting transaction")
|
|
|
|
|
}
|
|
|
|
|
defer func() { _ = trx.Rollback() }()
|
|
|
|
|
|
|
|
|
|
commit := false
|
|
|
|
|
|
2024-05-31 20:26:29 +02:00
|
|
|
if aljs, err := a.str.FindAllLatestBandwidthLimitJournal(trx); err == nil {
|
2023-03-23 20:13:59 +01:00
|
|
|
for _, alj := range aljs {
|
|
|
|
|
if acct, err := a.str.GetAccount(alj.AccountId, trx); err == nil {
|
2024-05-14 19:24:48 +02:00
|
|
|
if alj.Action == store.WarningLimitAction || alj.Action == store.LimitLimitAction {
|
2024-05-31 21:57:41 +02:00
|
|
|
if enforce, warning, rxBytes, txBytes, err := a.checkBandwidthLimit(int64(alj.AccountId)); err == nil {
|
2023-03-23 20:13:59 +01:00
|
|
|
if !enforce && !warning {
|
2024-05-14 19:24:48 +02:00
|
|
|
if alj.Action == store.LimitLimitAction {
|
2023-03-29 22:24:52 +02:00
|
|
|
// run relax actions for account
|
|
|
|
|
for _, action := range a.acctRelaxActions {
|
2024-05-30 19:46:15 +02:00
|
|
|
if err := action.HandleAccount(acct, rxBytes, txBytes, a.cfg.Bandwidth, trx); err != nil {
|
2023-03-29 22:24:52 +02:00
|
|
|
return errors.Wrapf(err, "%v", reflect.TypeOf(action).String())
|
|
|
|
|
}
|
2023-03-27 19:00:05 +02:00
|
|
|
}
|
2023-03-29 23:03:42 +02:00
|
|
|
} else {
|
|
|
|
|
logrus.Infof("relaxing warning for '%v'", acct.Email)
|
2023-03-23 20:13:59 +01:00
|
|
|
}
|
2024-05-31 20:26:29 +02:00
|
|
|
if err := a.str.DeleteBandwidthLimitJournal(acct.Id, trx); err == nil {
|
2023-03-23 20:13:59 +01:00
|
|
|
commit = true
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Errorf("error deleting account_limit_journal for '%v': %v", acct.Email, err)
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Infof("account '%v' still over limit", acct.Email)
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Errorf("error checking account limit for '%v': %v", acct.Email, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
logrus.Errorf("error getting account for '#%d': %v", alj.AccountId, err)
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
return err
|
2023-03-21 19:06:23 +01:00
|
|
|
}
|
|
|
|
|
|
2023-03-23 20:13:59 +01:00
|
|
|
if commit {
|
|
|
|
|
if err := trx.Commit(); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2024-05-31 21:57:41 +02:00
|
|
|
func (a *Agent) checkBandwidthLimit(acctId int64) (enforce, warning bool, rxBytes, txBytes int64, err error) {
|
2023-03-21 19:06:23 +01:00
|
|
|
period := 24 * time.Hour
|
|
|
|
|
limit := DefaultBandwidthPerPeriod()
|
2024-05-30 20:27:39 +02:00
|
|
|
if a.cfg.Bandwidth != nil {
|
2024-05-30 19:46:15 +02:00
|
|
|
limit = a.cfg.Bandwidth
|
2023-03-21 18:05:22 +01:00
|
|
|
}
|
2023-03-21 19:06:23 +01:00
|
|
|
if limit.Period > 0 {
|
|
|
|
|
period = limit.Period
|
2023-03-21 18:05:22 +01:00
|
|
|
}
|
2023-03-23 20:13:59 +01:00
|
|
|
rx, tx, err := a.ifx.totalRxTxForAccount(acctId, period)
|
2023-03-21 18:05:22 +01:00
|
|
|
if err != nil {
|
|
|
|
|
logrus.Error(err)
|
|
|
|
|
}
|
2023-03-21 19:06:23 +01:00
|
|
|
|
|
|
|
|
enforce, warning = a.checkLimit(limit, rx, tx)
|
2023-03-27 19:00:05 +02:00
|
|
|
return enforce, warning, rx, tx, nil
|
2023-03-21 19:06:23 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func (a *Agent) checkLimit(cfg *BandwidthPerPeriod, rx, tx int64) (enforce, warning bool) {
|
|
|
|
|
if cfg.Limit.Rx != Unlimited && rx > cfg.Limit.Rx {
|
|
|
|
|
return true, false
|
|
|
|
|
}
|
|
|
|
|
if cfg.Limit.Tx != Unlimited && tx > cfg.Limit.Tx {
|
|
|
|
|
return true, false
|
|
|
|
|
}
|
|
|
|
|
if cfg.Limit.Total != Unlimited && rx+tx > cfg.Limit.Total {
|
|
|
|
|
return true, false
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if cfg.Warning.Rx != Unlimited && rx > cfg.Warning.Rx {
|
|
|
|
|
return false, true
|
|
|
|
|
}
|
|
|
|
|
if cfg.Warning.Tx != Unlimited && tx > cfg.Warning.Tx {
|
|
|
|
|
return false, true
|
|
|
|
|
}
|
|
|
|
|
if cfg.Warning.Total != Unlimited && rx+tx > cfg.Warning.Total {
|
|
|
|
|
return false, true
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return false, false
|
|
|
|
|
}
|
