feat(internal-gateway): refactor int-gw (Ilia's improvements) (#47)

Author: mikhail-klimko

charts/internal-gateway/Chart.yaml

@@ -2,7 +2,7 @@ apiVersion: v2
 appVersion: v0.0.0
 description: A Helm chart for Codefresh Internal Gateway
 name: internal-gateway
-version: 0.1.1
+version: 0.2.1
 home: https://github.com/codefresh-io/helm-charts
 keywords:
   - codefresh
@@ -13,4 +13,4 @@ maintainers:
 dependencies:
   - name: cf-common
     repository: https://chartmuseum.codefresh.io/cf-common
-    version: "0.6.0"
+    version: "0.9.3"

charts/internal-gateway/README.md

@@ -1,6 +1,6 @@
 # internal-gateway
 
-![Version: 0.1.1](https://img.shields.io/badge/Version-0.1.1-informational?style=flat-square) ![AppVersion: v0.0.0](https://img.shields.io/badge/AppVersion-v0.0.0-informational?style=flat-square)
+![Version: 0.2.1](https://img.shields.io/badge/Version-0.2.1-informational?style=flat-square) ![AppVersion: v0.0.0](https://img.shields.io/badge/AppVersion-v0.0.0-informational?style=flat-square)
 
 A Helm chart for Codefresh Internal Gateway
 
@@ -16,14 +16,13 @@ A Helm chart for Codefresh Internal Gateway
 
 | Repository | Name | Version |
 |------------|------|---------|
-| https://chartmuseum.codefresh.io/cf-common | cf-common | 0.6.0 |
+| https://chartmuseum.codefresh.io/cf-common | cf-common | 0.9.3 |
 
 ## Values
 
 | Key | Type | Default | Description |
 |-----|------|---------|-------------|
-| codefresh | object | See below | Codefresh platform settings |
-| configMaps | object | See below | Configmap parameters |
+| codefresh | object | See below | Codefresh platform settings List of services endpoints and port |
 | container | object | See below | Main container parameters |
 | containerSecurityContext | object | See below | Container security context parameters |
 | controller | object | See below | Controller parameters |
@@ -33,16 +32,23 @@ A Helm chart for Codefresh Internal Gateway
 | global.dnsService | string | `"kube-dns"` | configures DNS service name |
 | hpa | object | See below | HPA parameters |
 | ingress | object | See below | Ingress parameters |
-| libraryMode | bool | `false` |  |
+| libraryMode | bool | `true` |  |
 | nginx.config.accessLogEnabled | bool | `true` | Enables NGINX access logs |
 | nginx.config.errorLogLevel | string | `"error"` | Sets the log level of the NGINX error log. One of `debug`, `info`, `notice`, `warn`, `error`, `crit`, `alert`, or `emerg` |
-| nginx.config.file | string | See below | Config file contents for Nginx. Passed through the `tpl` function to allow templating. |
-| nginx.config.httpSnippet | string | `""` | Allows appending custom configuration to the http block |
-| nginx.config.logFormat | string | `"main '$remote_addr - $remote_user [$time_local]  $status '\n        '\"$request\" $body_bytes_sent \"$http_referer\" '\n        '\"$http_user_agent\" \"$http_x_forwarded_for\"';"` | NGINX log format |
-| nginx.config.proxyConf | object | `{"client_body_buffer_size":"16k","client_max_body_size":"5M","proxy_buffer_size":"64k","proxy_buffers":"4 64k","proxy_connect_timeout":"5s","proxy_read_timeout":"60s","proxy_send_timeout":"60s"}` | Set proxy parameters Ref: https://nginx.org/en/docs/http/ngx_http_proxy_module.html |
+| nginx.config.file | string | See below | Config file contents for Nginx. Passed through the `tpl` function to allow templating. !! Moved into separate template at `templates/nginx/configmap.yaml` |
+| nginx.config.httpDirectives | object | `{}` | Allows appending custom directives to the http block (map) |
+| nginx.config.httpSnippet | string | `""` | Allows appending custom configuration to the http block (string) |
+| nginx.config.locationDirectives | object | `{}` | Allows appending custom directives to the location blocks (map) |
+| nginx.config.locationSnippet | string | `""` | Allows appending custom configuration to the location blocks (string) |
+| nginx.config.locations | object | `{}` | Allow add custom locations |
+| nginx.config.logFormat | string | `"main escape=json '{ \"time\": \"$time_iso8601\", \"remote_addr\": \"$proxy_protocol_addr\", \"x-forward-for\": \"$proxy_add_x_forwarded_for\", \"remote_user\": \"$remote_user\", \"bytes_sent\": $bytes_sent, \"request_time\": $request_time, \"status\": $status, \"vhost\": \"$host\", \"request_proto\": \"$server_protocol\", \"path\": \"$uri\", \"request_query\": \"$args\", \"request_length\": $request_length, \"duration\": $request_time, \"method\": \"$request_method\", \"http_referrer\": \"$http_referer\", \"http_user_agent\": \"$http_user_agent\", \"http_x_github_delivery\": \"$http_x_github_delivery\", \"http_x_hook_uuid\": \"$http_x_hook_uuid\", \"metadata\": { \"correlationId\": \"$request_id\", \"service\": \"ingress\", \"time\": \"$time_iso8601\" } }';"` | NGINX log format |
 | nginx.config.resolver | string | `nil` | Allows to set a custom resolver |
-| nginx.config.serverSnippet | string | `""` | Allows appending custom configuration to the server block |
-| nginx.config.verboseLogging | bool | `true` | Enable logging of 2xx and 3xx HTTP requests |
+| nginx.config.serverDirectives | object | `{}` | Allows appending custom directives to the server block (map) |
+| nginx.config.serverSnippet | string | `""` | Allows appending custom configuration to the server block (string) |
+| nginx.config.verboseLogging | bool | `false` | Enable logging of 2xx and 3xx HTTP requests |
+| nginx.config.workerConnections | string | `"16384"` | Sets the maximum number of simultaneous connections that can be opened by a worker process. |
+| nginx.config.workerProcesses | string | `"8"` | Defines the number of worker processes. |
+| nginx.config.workerRlimitNofile | string | `"1047552"` | Changes the limit on the largest size of a core file (RLIMIT_CORE) for worker processes. Used to increase the limit without restarting the main process. |
 | pdb | object | See below | PDB parameters |
 | podAnnotations | object | See below | Pod annotations |
 | podSecurityContext | object | See below | Pod Security Context parameters |

charts/internal-gateway/templates/_components/_configmap.tpl

@@ -0,0 +1,116 @@
+{{- define "internal-gateway.configmap" -}}
+
+{{- $vals := include "internal-gateway.default-values" . | fromYaml }}
+{{- $mergedValues := mergeOverwrite $vals .Values }}
+{{- $_ := set . "Values" $mergedValues }}
+
+{{- $nginxConfig := index (include "internal-gateway.nginx-config" . | fromYaml) "nginx" "config" }}
+---
+kind: ConfigMap
+apiVersion: v1
+metadata:
+  name: {{ include "internal-gateway.fullname" . }}-config
+  labels:
+    {{- include "internal-gateway.labels" . | nindent 4 }}
+data:
+  nginx.conf: |
+    worker_processes {{ $nginxConfig.workerProcesses }};
+    error_log  /dev/stderr {{ $nginxConfig.errorLogLevel }};
+    pid        /tmp/nginx.pid;
+    worker_rlimit_nofile {{ $nginxConfig.workerRlimitNofile }};
+
+    events {
+      worker_connections  {{ $nginxConfig.workerConnections }};
+    }
+
+    http {
+      client_body_temp_path /tmp/client_temp;
+      proxy_temp_path       /tmp/proxy_temp_path;
+      fastcgi_temp_path     /tmp/fastcgi_temp;
+      uwsgi_temp_path       /tmp/uwsgi_temp;
+      scgi_temp_path        /tmp/scgi_temp;
+
+      variables_hash_max_size 2048;
+      variables_hash_bucket_size 64;
+
+      default_type application/octet-stream;
+      log_format   {{ $nginxConfig.logFormat }}
+
+      {{- if $nginxConfig.verboseLogging }}
+      access_log   /dev/stderr  main;
+      {{- else }}
+
+      map $status $loggable {
+        ~^[23]  0;
+        default 1;
+      }
+      access_log   {{ $nginxConfig.accessLogEnabled | ternary "/dev/stderr  main  if=$loggable;" "off;" }}
+      {{- end }}
+      sendfile     on;
+      tcp_nopush   on;
+
+      map $http_upgrade $connection_upgrade {
+          default upgrade;
+          ''      close;
+      }
+
+      {{- if $nginxConfig.resolver }}
+      resolver {{ $nginxConfig.resolver }};
+      {{- else }}
+      resolver {{ .Values.global.dnsService }}.{{ .Values.global.dnsNamespace }}.svc.{{ .Values.global.clusterDomain }};
+      {{- end }}
+
+      {{- with $nginxConfig.httpSnippet }}
+      {{ . | nindent 6 }}
+      {{- end }}
+
+      {{- range $key, $val := $nginxConfig.httpDirectives }}
+      {{ printf "%s %s;" $key $val }}
+      {{- end }}
+
+      server {
+        listen 8080;
+
+        {{- range $key, $val := $nginxConfig.locations }}
+          {{- if $val.enabled }}
+        location {{ $key }} {
+
+          {{- $location_host := printf "location_host%s" (trimSuffix "/" $key | replace "/" "_" | replace "." "_" | replace "-" "_" | lower ) }}
+          {{- $location_port := printf "location_port%s" (trimSuffix "/" $key | replace "/" "_" | replace "." "_" | replace "-" "_" | lower ) }}
+          set ${{ $location_host }} {{ $val.proxy.host }};
+          set ${{ $location_port }} {{ $val.proxy.port }};
+
+          proxy_pass http://${{ $location_host }}:${{ $location_port }};
+
+          {{- if hasKey $val.proxy "proxyPassSnippet" }}
+          {{- print $val.proxy.proxyPassSnippet | nindent 10 }}
+          {{- end }}
+
+          {{- $locationSnippet := "" }}
+          {{- if hasKey $val "locationSnippet" }}
+            {{- $locationSnippet = $val.locationSnippet }}
+          {{- else if hasKey $nginxConfig "locationSnippet"}}
+            {{- $locationSnippet = $nginxConfig.locationSnippet }}
+          {{- end }}
+
+          {{- if $locationSnippet }}
+          {{ print $val.locationSnippet | nindent 10 }}
+          {{- end }}
+
+          {{- $locationDirectives := dict }}
+          {{- if hasKey $val "locationDirectives" }}
+            {{- $locationDirectives = $val.locationDirectives }}
+          {{- else if hasKey $nginxConfig "locationDirectives"}}
+            {{- $locationDirectives = $nginxConfig.locationDirectives }}
+          {{- end }}
+
+          {{- range $key, $val := $locationDirectives }}
+          {{ printf "%s %s;" $key $val }}
+          {{- end }}
+
+        }
+          {{- end }}
+        {{- end }}
+      }
+    }
+{{- end }}

charts/internal-gateway/templates/_libs/_deployment.tpl renamed to charts/internal-gateway/templates/_components/_deployment.tpl

@@ -0,0 +1,55 @@
+{{- define "internal-gateway.default-values" }}
+codefresh:
+  serviceEndpoints:
+    cfapi-endpoints:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-endpoints-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-endpoints-port" }}
+    cfapi-environments:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-environments-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-environments-port" }}
+    cfapi-downloadlogmanager:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-downloadlogmanager-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-downloadlogmanager-port" }}
+    cfapi-gitops-resource-receiver:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-gitops-resource-receiver-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-gitops-resource-receiver-port" }}
+    cfapi-test-reporting:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-test-reporting-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-test-reporting-port" }}
+    cfapi-kubernetesresourcemonitor:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-kubernetesresourcemonitor-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-kubernetesresourcemonitor-port" }}
+    cfapi-kubernetes-endpoints:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-kubernetes-endpoints-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-kubernetes-endpoints-port" }}
+    cfapi-admin:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-admin-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-admin-port" }}
+    cfapi-teams:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-teams-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-teams-port" }}
+    cfapi-ws:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfapi-ws-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfapi-ws-port" }}
+    cfui:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "cfui-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "cfui-port" }}
+    argo-platform-api-graphql:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "argo-platform-api-graphql-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "argo-platform-api-graphql-port" }}
+    argo-platform-api-events:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "argo-platform-api-events-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "argo-platform-api-events-port" }}
+    argo-platform-ui:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "argo-platform-ui-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "argo-platform-ui-port" }}
+    argo-hub:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "argo-hub-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "argo-hub-port" }}
+    nomios:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "nomios-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "nomios-port" }}
+    jira-addon:
+      svc: '{{ .Release.Name }}-{{ index .Values.codefresh "jira-addon-svc" }}.{{ .Release.Namespace }}.svc.{{ .Values.global.clusterDomain }}'
+      port: {{ index .Values.codefresh "jira-addon-port" }}
+{{- end }}