Implementing Http throttle support (#1261)

Author: mathewc

sample/Bot-CSharp/run.csx

@@ -1,4 +1,6 @@
-public class BotMessage
+using System.Net;
+
+public class BotMessage
 {
     public string Source { get; set; }
     public string Message { get; set; }

sample/host.json

@@ -4,7 +4,9 @@
         "from": "Azure Functions <[email protected]>"
     },
     "http": {
-        "routePrefix": "api"
+        "routePrefix": "api",
+        "maxDegreeOfParallelism": 5,
+        "maxQueueLength": 30
     },
     "tracing": {
         "fileLoggingMode": "always"

schemas/json/host.json

@@ -44,6 +44,21 @@
                     "description": "Defines the default route prefix that applies to all routes. Use an empty string to remove the prefix.",
                     "type": "string",
                     "default": "api"
+                },
+                "maxDegreeOfParallelism": {
+                    "description": "Defines the the maximum number of http functions that will execute in parallel.",
+                    "type": "integer",
+                    "default": -1
+                },
+                "maxQueueLength": {
+                    "description": "Defines the maximum number of pending requests that will be queued for processing.",
+                    "type": "integer",
+                    "default": -1
+                },
+                "dynamicThrottlesEnabled": {
+                    "description": "Indicates whether dynamic host counter checks should be enabled.",
+                    "type": "boolean",
+                    "default": false
                 }
             }
         },

src/WebJobs.Script.WebHost/App_Data/secrets/httptrigger-csharp.json

@@ -1,3 +1,9 @@
 {
-  "key": null
+    "keys": [
+        {
+            "name": "default",
+            "value": "9884kkdlkkdf83ksld8589kflss90sll5kjjsyfjskqv",
+            "encrypted": false
+        }
+    ]
 }

src/WebJobs.Script.WebHost/Controllers/FunctionsController.cs

@@ -10,6 +10,7 @@
 using System.Threading.Tasks;
 using System.Web.Http;
 using System.Web.Http.Controllers;
+using System.Web.Http.Dependencies;
 using Microsoft.Azure.WebJobs.Script.Description;
 using Microsoft.Azure.WebJobs.Script.WebHost.Filters;
 using Microsoft.Azure.WebJobs.Script.WebHost.WebHooks;
@@ -32,36 +33,52 @@ public FunctionsController(WebScriptHostManager scriptHostManager, WebHookReceiv
 
         public override async Task<HttpResponseMessage> ExecuteAsync(HttpControllerContext controllerContext, CancellationToken cancellationToken)
         {
-            HttpRequestMessage request = controllerContext.Request;
-
-            // First see if the request maps to an HTTP function
-            FunctionDescriptor function = _scriptHostManager.GetHttpFunctionOrNull(request);
+            var request = controllerContext.Request;
+            var function = _scriptHostManager.GetHttpFunctionOrNull(request);
             if (function == null)
             {
+                // request does not map to an HTTP function
                 return new HttpResponseMessage(HttpStatusCode.NotFound);
             }
+            request.SetProperty(ScriptConstants.AzureFunctionsHttpFunctionKey, function);
 
-            // Determine the authorization level of the request
-            ISecretManager secretManager = controllerContext.Configuration.DependencyResolver.GetService<ISecretManager>();
-            var settings = controllerContext.Configuration.DependencyResolver.GetService<WebHostSettings>();
-            var authorizationLevel = settings.IsAuthDisabled
-                ? AuthorizationLevel.Admin
-                : await AuthorizationLevelAttribute.GetAuthorizationLevelAsync(request, secretManager, functionName: function.Name);
-            request.SetAuthorizationLevel(authorizationLevel);
-
+            var authorizationLevel = await DetermineAuthorizationLevelAsync(request, function, controllerContext.Configuration.DependencyResolver);
             if (function.Metadata.IsExcluded ||
-                (function.Metadata.IsDisabled && authorizationLevel != AuthorizationLevel.Admin))
+               (function.Metadata.IsDisabled && authorizationLevel != AuthorizationLevel.Admin))
             {
                 // disabled functions are not publicly addressable w/o Admin level auth,
                 // and excluded functions are also ignored here (though the check above will
                 // already exclude them)
                 return new HttpResponseMessage(HttpStatusCode.NotFound);
             }
 
-            // Dispatch the request
+            Func<HttpRequestMessage, CancellationToken, Task<HttpResponseMessage>> processRequestHandler = async (req, ct) =>
+            {
+                return await ProcessRequestAsync(req, function, ct);
+            };
+            return await _scriptHostManager.HttpRequestManager.ProcessRequestAsync(request, processRequestHandler, cancellationToken);
+        }
+
+        public static async Task<AuthorizationLevel> DetermineAuthorizationLevelAsync(HttpRequestMessage request, FunctionDescriptor function, IDependencyResolver resolver)
+        {
+            var secretManager = resolver.GetService<ISecretManager>();
+            var settings = resolver.GetService<WebHostSettings>();
+
+            var authorizationLevel = settings.IsAuthDisabled
+                ? AuthorizationLevel.Admin
+                : await AuthorizationLevelAttribute.GetAuthorizationLevelAsync(request, secretManager, functionName: function.Name);
+            request.SetAuthorizationLevel(authorizationLevel);
+
+            return authorizationLevel;
+        }
+
+        private async Task<HttpResponseMessage> ProcessRequestAsync(HttpRequestMessage request, FunctionDescriptor function, CancellationToken cancellationToken)
+        {
             HttpTriggerBindingMetadata httpFunctionMetadata = (HttpTriggerBindingMetadata)function.Metadata.InputBindings.FirstOrDefault(p => string.Compare("HttpTrigger", p.Type, StringComparison.OrdinalIgnoreCase) == 0);
             bool isWebHook = !string.IsNullOrEmpty(httpFunctionMetadata.WebHookType);
+            var authorizationLevel = request.GetAuthorizationLevel();
             HttpResponseMessage response = null;
+
             if (isWebHook)
             {
                 if (authorizationLevel == AuthorizationLevel.Admin)

src/WebJobs.Script.WebHost/WebJobs.Script.WebHost.csproj

@@ -475,6 +475,7 @@
     <Compile Include="WebHooks\WebHookReceiverManager.cs" />
     <Compile Include="WebScriptHostExceptionHandler.cs" />
     <Compile Include="WebScriptHostManager.cs" />
+    <Compile Include="WebScriptHostRequestManager.cs" />
   </ItemGroup>
   <ItemGroup>
     <Content Include="packages.config">
@@ -492,6 +493,7 @@
     <Content Include="App_Data\secrets\httptrigger-csharp-customroute.json" />
     <Content Include="App_Data\secrets\httptrigger-customroute-get.json" />
     <Content Include="App_Data\secrets\httptrigger-customroute-post.json" />
+    <Content Include="App_Data\secrets\httptrigger-csharp.json" />
     <None Include="App_Data\secrets\HttpTrigger.json" />
     <Content Include="App_Data\secrets\webhook-azure-csharp.json" />
     <None Include="App_Data\secrets\WebHook-Generic-CSharp.json" />

src/WebJobs.Script.WebHost/WebScriptHostManager.cs

@@ -19,6 +19,7 @@
 using Microsoft.Azure.WebJobs.Host.Loggers;
 using Microsoft.Azure.WebJobs.Host.Timers;
 using Microsoft.Azure.WebJobs.Script.Binding;
+using Microsoft.Azure.WebJobs.Script.Binding.Http;
 using Microsoft.Azure.WebJobs.Script.Config;
 using Microsoft.Azure.WebJobs.Script.Description;
 using Microsoft.Azure.WebJobs.Script.Diagnostics;
@@ -42,6 +43,7 @@ public class WebScriptHostManager : ScriptHostManager
         private bool _hostStarted = false;
         private IDictionary<IHttpRoute, FunctionDescriptor> _httpFunctions;
         private HttpRouteCollection _httpRoutes;
+        private HttpRequestManager _httpRequestManager;
 
         public WebScriptHostManager(ScriptHostConfiguration config, ISecretManagerFactory secretManagerFactory, ScriptSettingsManager settingsManager, WebHostSettings webHostSettings, IScriptHostFactory scriptHostFactory = null, ISecretsRepositoryFactory secretsRepositoryFactory = null)
             : base(config, settingsManager, scriptHostFactory)
@@ -64,7 +66,7 @@ public WebScriptHostManager(ScriptHostConfiguration config, ISecretManagerFactor
 
             config.IsSelfHost = webHostSettings.IsSelfHost;
 
-            _performanceManager = new HostPerformanceManager(settingsManager);
+            _performanceManager = new HostPerformanceManager(settingsManager, config.TraceWriter);
             _swaggerDocumentManager = new SwaggerDocumentManager(config);
 
             var secretsRepository = secretsRepositoryFactory.Create(settingsManager, webHostSettings, config);
@@ -87,6 +89,8 @@ public WebScriptHostManager(ScriptHostConfiguration config, ISecretManagerFactor
 
         public ISwaggerDocumentManager SwaggerDocumentManager => _swaggerDocumentManager;
 
+        public HttpRequestManager HttpRequestManager => _httpRequestManager;
+
         public virtual bool Initialized
         {
             get
@@ -414,6 +418,10 @@ protected override void OnHostCreated()
             // all http function routes
             InitializeHttpFunctions(Instance.Functions);
 
+            // since the request manager is created based on configurable
+            // settings, it has to be recreated when host config changes
+            _httpRequestManager = new WebScriptHostRequestManager(Instance.ScriptConfig.HttpConfiguration, PerformanceManager, _metricsLogger, _config.TraceWriter);
+
             base.OnHostCreated();
         }
 
@@ -429,7 +437,7 @@ internal void InitializeHttpFunctions(IEnumerable<FunctionDescriptor> functions)
         {
             // we must initialize the route factory here AFTER full configuration
             // has been resolved so we apply any route prefix customizations
-            HttpRouteFactory httpRouteFactory = new HttpRouteFactory(_config.HttpRoutePrefix);
+            var httpRouteFactory = new HttpRouteFactory(_config.HttpConfiguration.RoutePrefix);
 
             _httpFunctions = new Dictionary<IHttpRoute, FunctionDescriptor>();
             _httpRoutes = new HttpRouteCollection();

src/WebJobs.Script.WebHost/WebScriptHostRequestManager.cs

@@ -0,0 +1,60 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the MIT License. See License.txt in the project root for license information.
+
+using System;
+using System.Collections.ObjectModel;
+using System.Net.Http;
+using Microsoft.Azure.WebJobs.Host;
+using Microsoft.Azure.WebJobs.Script.Binding.Http;
+using Microsoft.Azure.WebJobs.Script.Description;
+using Microsoft.Azure.WebJobs.Script.Diagnostics;
+
+namespace Microsoft.Azure.WebJobs.Script.WebHost
+{
+    public class WebScriptHostRequestManager : HttpRequestManager
+    {
+        private readonly HostPerformanceManager _performanceManager;
+        private readonly IMetricsLogger _metricsLogger;
+        private readonly int _performanceCheckPeriodSeconds;
+        private DateTime _lastPerformanceCheck;
+        private bool _rejectAllRequests;
+
+        public WebScriptHostRequestManager(HttpConfiguration config, HostPerformanceManager performanceManager, IMetricsLogger metricsLogger, TraceWriter traceWriter, int performanceCheckPeriodSeconds = 15) : base(config, traceWriter)
+        {
+            _performanceManager = performanceManager;
+            _metricsLogger = metricsLogger;
+            _performanceCheckPeriodSeconds = performanceCheckPeriodSeconds;
+        }
+
+        protected override bool RejectAllRequests()
+        {
+            if (base.RejectAllRequests())
+            {
+                return true;
+            }
+
+            if (Config.DynamicThrottlesEnabled &&
+               ((DateTime.UtcNow - _lastPerformanceCheck) > TimeSpan.FromSeconds(_performanceCheckPeriodSeconds)))
+            {
+                // only check host status periodically
+                Collection<string> exceededCounters = new Collection<string>();
+                _rejectAllRequests = _performanceManager.IsUnderHighLoad(exceededCounters);
+                _lastPerformanceCheck = DateTime.UtcNow;
+                if (_rejectAllRequests)
+                {
+                    TraceWriter.Info($"Thresholds for the following counters have been exceeded: {string.Join(", ", exceededCounters)}");
+                }
+            }
+
+            return _rejectAllRequests;
+        }
+
+        protected override HttpResponseMessage RejectRequest(HttpRequestMessage request)
+        {
+            var function = request.GetPropertyOrDefault<FunctionDescriptor>(ScriptConstants.AzureFunctionsHttpFunctionKey);
+            _metricsLogger.LogEvent(MetricEventNames.FunctionInvokeThrottled, function.Name);
+
+            return base.RejectRequest(request);
+        }
+    }
+}

src/WebJobs.Script/Binding/Http/HttpConfiguration.cs

@@ -0,0 +1,42 @@
+// Copyright (c) .NET Foundation. All rights reserved.
+// Licensed under the MIT License. See License.txt in the project root for license information.
+
+using System.Threading.Tasks.Dataflow;
+
+namespace Microsoft.Azure.WebJobs.Script.Binding.Http
+{
+    public class HttpConfiguration
+    {
+        public HttpConfiguration()
+        {
+            MaxQueueLength = DataflowBlockOptions.Unbounded;
+            MaxDegreeOfParallelism = DataflowBlockOptions.Unbounded;
+            RoutePrefix = ScriptConstants.DefaultHttpRoutePrefix;
+        }
+
+        /// <summary>
+        /// Gets or sets the default route prefix that will be applied to
+        /// function routes.
+        /// </summary>
+        public string RoutePrefix { get; set; }
+
+        /// <summary>
+        /// Gets or sets the maximum number of pending requests that
+        /// will be queued for processing. If this limit is exceeded,
+        /// new requests will be rejected with a 429 status code.
+        /// </summary>
+        public int MaxQueueLength { get; set; }
+
+        /// <summary>
+        /// Gets or sets the maximum number of http functions that will execute
+        /// in parallel.
+        /// </summary>
+        public int MaxDegreeOfParallelism { get; set; }
+
+        /// <summary>
+        /// Gets or sets a value indicating whether dynamic host counter
+        /// checks should be enabled.
+        /// </summary>
+        public bool DynamicThrottlesEnabled { get; set; }
+    }
+}