mgr/dashboard: introduce multi-cluster overview page

https://tracker.ceph.com/issues/64530
Signed-off-by: Nizamudeen A <[email protected]>
Signed-off-by: Aashish Sharma <[email protected]>

Author: nizamial09

monitoring/ceph-mixin/dashboards/multi-cluster.libsonnet

@@ -5,7 +5,7 @@ local g = import 'grafonnet/grafana.libsonnet';
     $.dashboardSchema(
       'Ceph - Multi-cluster',
       '',
-      'BnxelG7Sz',
+      'BnxelG7Sx',
       'now-1h',
       '30s',
       22,

monitoring/ceph-mixin/dashboards_out/multi-cluster-overview.json

@@ -2118,6 +2118,6 @@
    },
    "timezone": "",
    "title": "Ceph - Multi-cluster",
-   "uid": "BnxelG7Sz",
+   "uid": "BnxelG7Sx",
    "version": 0
 }

src/pybind/mgr/dashboard/controllers/multi_cluster.py

@@ -6,6 +6,7 @@
 
 import requests
 
+from .. import mgr
 from ..exceptions import DashboardException
 from ..security import Scope
 from ..settings import Settings
@@ -18,9 +19,10 @@
 @APIDoc('Multi-cluster Management API', 'Multi-cluster')
 class MultiCluster(RESTController):
     def _proxy(self, method, base_url, path, params=None, payload=None, verify=False,
-               token=None):
+               token=None, cert=None):
         if not base_url.endswith('/'):
             base_url = base_url + '/'
+
         try:
             if token:
                 headers = {
@@ -33,7 +35,7 @@ def _proxy(self, method, base_url, path, params=None, payload=None, verify=False
                     'Content-Type': 'application/json',
                 }
             response = requests.request(method, base_url + path, params=params,
-                                        json=payload, verify=verify, headers=headers)
+                                        json=payload, verify=verify, cert=cert, headers=headers)
         except Exception as e:
             raise DashboardException(
                 "Could not reach {}, {}".format(base_url+path, e),
@@ -51,10 +53,10 @@ def _proxy(self, method, base_url, path, params=None, payload=None, verify=False
     @Endpoint('POST')
     @CreatePermission
     @EndpointDoc("Authenticate to a remote cluster")
-    def auth(self, url: str, cluster_alias: str, username=None,
-             password=None, token=None, hub_url=None, cluster_fsid=None):
-
-        if username and password:
+    def auth(self, url: str, cluster_alias: str, username: str,
+             password=None, token=None, hub_url=None, cluster_fsid=None,
+             prometheus_api_url=None, ssl_verify=False, ssl_certificate=None):
+        if password:
             payload = {
                 'username': username,
                 'password': password
@@ -69,16 +71,28 @@ def auth(self, url: str, cluster_alias: str, username=None,
             cluster_token = content['token']
 
             self._proxy('PUT', url, 'ui-api/multi-cluster/set_cors_endpoint',
-                        payload={'url': hub_url}, token=cluster_token)
-
+                        payload={'url': hub_url}, token=cluster_token, verify=ssl_verify,
+                        cert=ssl_certificate)
             fsid = self._proxy('GET', url, 'api/health/get_cluster_fsid', token=cluster_token)
 
-            self.set_multi_cluster_config(fsid, username, url, cluster_alias, cluster_token)
+            # add prometheus targets
+            prometheus_url = self._proxy('GET', url, 'api/settings/PROMETHEUS_API_HOST',
+                                         token=cluster_token)
+            _set_prometheus_targets(prometheus_url['value'])
 
-        if token and cluster_fsid and username:
-            self.set_multi_cluster_config(cluster_fsid, username, url, cluster_alias, token)
+            self.set_multi_cluster_config(fsid, username, url, cluster_alias,
+                                          cluster_token, prometheus_url['value'],
+                                          ssl_verify, ssl_certificate)
+            return
 
-    def set_multi_cluster_config(self, fsid, username, url, cluster_alias, token):
+        if token and cluster_fsid and prometheus_api_url:
+            _set_prometheus_targets(prometheus_api_url)
+            self.set_multi_cluster_config(cluster_fsid, username, url,
+                                          cluster_alias, token, prometheus_api_url,
+                                          ssl_verify, ssl_certificate)
+
+    def set_multi_cluster_config(self, fsid, username, url, cluster_alias, token,
+                                 prometheus_url=None, ssl_verify=False, ssl_certificate=None):
         multi_cluster_config = self.load_multi_cluster_config()
         if fsid in multi_cluster_config['config']:
             existing_entries = multi_cluster_config['config'][fsid]
@@ -89,6 +103,9 @@ def set_multi_cluster_config(self, fsid, username, url, cluster_alias, token):
                     "cluster_alias": cluster_alias,
                     "user": username,
                     "token": token,
+                    "prometheus_url": prometheus_url if prometheus_url else '',
+                    "ssl_verify": ssl_verify,
+                    "ssl_certificate": ssl_certificate if ssl_certificate else ''
                 })
         else:
             multi_cluster_config['current_user'] = username
@@ -98,6 +115,9 @@ def set_multi_cluster_config(self, fsid, username, url, cluster_alias, token):
                 "cluster_alias": cluster_alias,
                 "user": username,
                 "token": token,
+                "prometheus_url": prometheus_url if prometheus_url else '',
+                "ssl_verify": ssl_verify,
+                "ssl_certificate": ssl_certificate if ssl_certificate else ''
             }]
         Settings.MULTICLUSTER_CONFIG = multi_cluster_config
 
@@ -123,16 +143,18 @@ def set_config(self, config: object):
         return Settings.MULTICLUSTER_CONFIG
 
     @Endpoint('PUT')
-    @CreatePermission
+    @UpdatePermission
     # pylint: disable=unused-variable
-    def reconnect_cluster(self, url: str, username=None, password=None, token=None):
+    def reconnect_cluster(self, url: str, username=None, password=None, token=None,
+                          ssl_verify=False, ssl_certificate=None):
         multicluster_config = self.load_multi_cluster_config()
         if username and password:
             payload = {
                 'username': username,
                 'password': password
             }
-            content = self._proxy('POST', url, 'api/auth', payload=payload)
+            content = self._proxy('POST', url, 'api/auth', payload=payload,
+                                  verify=ssl_verify, cert=ssl_certificate)
             if 'token' not in content:
                 raise DashboardException(
                     "Could not authenticate to remote cluster",
@@ -143,7 +165,7 @@ def reconnect_cluster(self, url: str, username=None, password=None, token=None):
 
         if username and token:
             if "config" in multicluster_config:
-                for key, cluster_details in multicluster_config["config"].items():
+                for _, cluster_details in multicluster_config["config"].items():
                     for cluster in cluster_details:
                         if cluster["url"] == url and cluster["user"] == username:
                             cluster['token'] = token
@@ -168,31 +190,38 @@ def edit_cluster(self, url, cluster_alias, username):
     def delete_cluster(self, cluster_name, cluster_user):
         multicluster_config = self.load_multi_cluster_config()
         if "config" in multicluster_config:
-            keys_to_remove = []
-            for key, cluster_details in multicluster_config["config"].items():
-                cluster_details_copy = list(cluster_details)
-                for cluster in cluster_details_copy:
-                    if cluster["name"] == cluster_name and cluster["user"] == cluster_user:
-                        cluster_details.remove(cluster)
-                        if not cluster_details:
-                            keys_to_remove.append(key)
-
-            for key in keys_to_remove:
-                del multicluster_config["config"][key]
+            for key, value in list(multicluster_config['config'].items()):
+                if value[0]['name'] == cluster_name and value[0]['user'] == cluster_user:
+
+                    orch_backend = mgr.get_module_option_ex('orchestrator', 'orchestrator')
+                    try:
+                        if orch_backend == 'cephadm':
+                            cmd = {
+                                'prefix': 'orch prometheus remove-target',
+                                'url': value[0]['prometheus_url'].replace('http://', '').replace('https://', '')  # noqa E501 #pylint: disable=line-too-long
+                            }
+                            mgr.mon_command(cmd)
+                    except KeyError:
+                        pass
+
+                    del multicluster_config['config'][key]
+                    break
 
         Settings.MULTICLUSTER_CONFIG = multicluster_config
         return Settings.MULTICLUSTER_CONFIG
 
-    @Endpoint()
-    @ReadPermission
+    @Endpoint('POST')
+    @CreatePermission
     # pylint: disable=R0911
-    def verify_connection(self, url=None, username=None, password=None, token=None):
+    def verify_connection(self, url=None, username=None, password=None, token=None,
+                          ssl_verify=False, ssl_certificate=None):
         if token:
             try:
                 payload = {
                     'token': token
                 }
-                content = self._proxy('POST', url, 'api/auth/check', payload=payload)
+                content = self._proxy('POST', url, 'api/auth/check', payload=payload,
+                                      verify=ssl_verify, cert=ssl_certificate)
                 if 'permissions' not in content:
                     return content['detail']
                 user_content = self._proxy('GET', url, f'api/user/{username}',
@@ -210,7 +239,8 @@ def verify_connection(self, url=None, username=None, password=None, token=None):
                     'username': username,
                     'password': password
                 }
-                content = self._proxy('POST', url, 'api/auth', payload=payload)
+                content = self._proxy('POST', url, 'api/auth', payload=payload,
+                                      verify=ssl_verify, cert=ssl_certificate)
                 if 'token' not in content:
                     return content['detail']
                 user_content = self._proxy('GET', url, f'api/user/{username}',
@@ -266,3 +296,13 @@ class MultiClusterUi(RESTController):
     @UpdatePermission
     def set_cors_endpoint(self, url: str):
         configure_cors(url)
+
+
+def _set_prometheus_targets(prometheus_url: str):
+    orch_backend = mgr.get_module_option_ex('orchestrator', 'orchestrator')
+    if orch_backend == 'cephadm':
+        cmd = {
+            'prefix': 'orch prometheus set-target',
+            'url': prometheus_url.replace('http://', '').replace('https://', '')
+        }
+        mgr.mon_command(cmd)

src/pybind/mgr/dashboard/controllers/prometheus.py

@@ -146,6 +146,11 @@ def create_silence(self, **params):
     def delete_silence(self, s_id):
         return self.alert_proxy('DELETE', '/silence/' + s_id) if s_id else None
 
+    @RESTController.Collection(method='GET', path='/prometheus_query_data')
+    def get_prometeus_query_data(self, **params):
+        params['query'] = params.pop('params')
+        return self.prometheus_proxy('GET', '/query', params)
+
 
 @APIRouter('/prometheus/notifications', Scope.PROMETHEUS)
 @APIDoc("Prometheus Notifications Management API", "PrometheusNotifications")

src/pybind/mgr/dashboard/frontend/cypress/e2e/ui/navigation.po.ts

@@ -7,6 +7,13 @@ export class NavigationPageHelper extends PageHelper {
 
   navigations = [
     { menu: 'Dashboard', component: 'cd-dashboard' },
+    {
+      menu: 'Multi-Cluster',
+      submenus: [
+        { menu: 'Overview', component: 'cd-multi-cluster' },
+        { menu: 'Manage Clusters', component: 'cd-multi-cluster-list' }
+      ]
+    },
     {
       menu: 'Cluster',
       submenus: [
@@ -78,7 +85,11 @@ export class NavigationPageHelper extends PageHelper {
     cy.intercept('/ui-api/block/rbd/status', { fixture: 'block-rbd-status.json' });
 
     navs.forEach((nav: any) => {
-      cy.contains('.simplebar-content li.nav-item a', nav.menu).click();
+      cy.get('.simplebar-content li.nav-item a').each(($link) => {
+        if ($link.text().trim() === nav.menu.trim()) {
+          cy.wrap($link).click();
+        }
+      });
       if (nav.submenus) {
         this.checkNavSubMenu(nav.menu, nav.submenus);
       } else {
@@ -89,8 +100,10 @@ export class NavigationPageHelper extends PageHelper {
 
   checkNavSubMenu(menu: any, submenu: any) {
     submenu.forEach((nav: any) => {
-      cy.contains('.simplebar-content li.nav-item', menu).within(() => {
-        cy.contains(`ul.list-unstyled li a`, nav.menu).click();
+      cy.get('.simplebar-content li.nav-item a').each(($link) => {
+        if ($link.text().trim() === menu.trim()) {
+          cy.contains(`ul.list-unstyled li a`, nav.menu).click();
+        }
       });
     });
   }

src/pybind/mgr/dashboard/frontend/src/app/app-routing.module.ts

@@ -191,10 +191,7 @@ const routes: Routes = [
         children: [
           {
             path: 'overview',
-            component: MultiClusterComponent,
-            data: {
-              breadcrumbs: 'Multi-Cluster/Overview'
-            }
+            component: MultiClusterComponent
           },
           {
             path: 'manage-clusters',

src/pybind/mgr/dashboard/frontend/src/app/ceph/cluster/cluster.module.ts

@@ -64,6 +64,7 @@ import { UpgradeProgressComponent } from './upgrade/upgrade-progress/upgrade-pro
 import { MultiClusterComponent } from './multi-cluster/multi-cluster.component';
 import { MultiClusterFormComponent } from './multi-cluster/multi-cluster-form/multi-cluster-form.component';
 import { MultiClusterListComponent } from './multi-cluster/multi-cluster-list/multi-cluster-list.component';
+import { DashboardV3Module } from '../dashboard-v3/dashboard-v3.module';
 
 @NgModule({
   imports: [
@@ -84,7 +85,8 @@ import { MultiClusterListComponent } from './multi-cluster/multi-cluster-list/mu
     NgbPopoverModule,
     NgbDropdownModule,
     NgxPipeFunctionModule,
-    NgbProgressbarModule
+    NgbProgressbarModule,
+    DashboardV3Module
   ],
   declarations: [
     HostsComponent,

src/pybind/mgr/dashboard/frontend/src/app/ceph/cluster/multi-cluster/multi-cluster-form/multi-cluster-form.component.html

@@ -117,15 +117,25 @@
                  i18n>Password
           </label>
           <div class="cd-col-form-input">
-            <input id="password"
-                   name="password"
-                   class="form-control"
-                   type="password"
-                   formControlName="password">
-            <span class="invalid-feedback"
-                  *ngIf="remoteClusterForm.showError('password', frm, 'required')"
-                  i18n>This field is required.
-            </span>
+            <div class="input-group">
+              <input id="password"
+                     name="password"
+                     class="form-control"
+                     type="password"
+                     formControlName="password">
+              <span class="input-group-button">
+                <button type="button"
+                        class="btn btn-light"
+                        cdPasswordButton="password">
+                </button>
+                <cd-copy-2-clipboard-button source="password">
+                </cd-copy-2-clipboard-button>
+              </span>
+              <span class="invalid-feedback"
+                    *ngIf="remoteClusterForm.showError('password', frm, 'required')"
+                    i18n>This field is required.
+              </span>
+            </div>
           </div>
         </div>
         <div class="form-group row"
@@ -161,6 +171,45 @@
             </div>
           </div>
         </div>
+        <!-- ssl -->
+        <div class="form-group row">
+          <div class="cd-col-form-offset">
+            <div class="custom-control custom-checkbox">
+              <input class="custom-control-input"
+                     id="ssl"
+                     type="checkbox"
+                     formControlName="ssl">
+              <label class="custom-control-label"
+                     for="ssl"
+                     i18n>SSL</label>
+            </div>
+          </div>
+        </div>
+
+        <!-- ssl_cert -->
+          <div *ngIf="remoteClusterForm.controls.ssl.value"
+               class="form-group row">
+            <label class="cd-col-form-label"
+                   for="ssl_cert">
+              <span i18n>Certificate</span>
+              <cd-helper i18n>The SSL certificate in PEM format.</cd-helper>
+            </label>
+            <div class="cd-col-form-input">
+              <textarea id="ssl_cert"
+                        class="form-control resize-vertical text-monospace text-pre"
+                        formControlName="ssl_cert"
+                        rows="5">
+              </textarea>
+              <input type="file"
+                     (change)="fileUpload($event.target.files, 'ssl_cert')">
+              <span class="invalid-feedback"
+                    *ngIf="remoteClusterForm.showError('ssl_cert', frm, 'required')"
+                    i18n>This field is required.</span>
+              <span class="invalid-feedback"
+                    *ngIf="remoteClusterForm.showError('ssl_cert', frm, 'pattern')"
+                    i18n>Invalid SSL certificate.</span>
+            </div>
+          </div>
         <div class="form-group row"
              *ngIf="!showCrossOriginError && action !== 'edit' && !remoteClusterForm.getValue('showToken')">
           <div class="cd-col-form-offset">