README
¶
____ _
| __ ) __ _| | _____ _ __ __ _ ___
| _ \ / _ | |/ / _ \ '__| / _ |/ _ \
| |_) | (_| | < __/ | _ | (_| | (_) |
|____/ \__,_|_|\_\___|_| (_) \__, |\___/
|___/
Introduction
Baker.go is a dynamic http reverse proxy designed to be highly extensible. It has 4 major parts.
- Watcher
listen to orchestration system and produce container object
// Watcher defines how driver should react
type Watcher interface {
// Container gets the next available container
// this is a blocking calls, if Container object is nil
// it means that Watcher has been closed
Container() (*Container, error)
}
- Pinger
consumes container objects from Watcher and ping each container for health check and retrieve configuration and produce Service object
// Pinger defines how container can be ping to get extra information
// and construct Service object
type Pinger interface {
// Service if service returns an nil value, it means that Pinger has
// some internal error and it will no longer return service
Service() (*Service, error)
}
- Store
consumes service objects from Pinger and store them in highly optimize trie data structure for fast access
// Store will be used to get Container
type Store interface {
// Query returns a service based on domain and path
Query(domain, path string) *Service
}
- Router
Router uses Store to query each service, extract recipes and proxy requests to each container. Router is http.Handler compatible.
Features
- Include Docker driver to listen to Docker's events
- Has exposed a driver interface which can be easily hook to other orchestration engines
- Dynamic configuration, no need to restart reverse proxy in order to change the configuration
- Uses only Standard Library
- Uses a custom Trie data structure, to compute fast path pattern matching
- It can be use as library as it has implemented
http.Handlerinterface - Highly extendable as most of the components have exposed interfaces
- Middleware like feature to change the incoming traffic, outgoing traffic and custom error handling
- Round-Robin load balancing by default
- Automatically updates and creates SSL certificates using
Let's Encrypt
Usage
First we need to run Baker inside docker. The following docker-compose.yml
version: '3.5'
services:
baker:
image: alinz/baker.go:latest
environment:
# enables ACME system
- BAKER_ACME=NO
# folder location which holds all certification
- BAKER_ACME_PATH=/acme/cert
- BAKER_LOG_LEVEL=DEBUG
ports:
- '80:80'
- '443:443'
# make sure to use the right network
networks:
- baker
volumes:
# make sure it can access to main docker.sock
- /var/run/docker.sock:/var/run/docker.sock
- ./acme/cert:/acme/cert
networks:
baker:
name: baker_net
driver: bridge
Then for each service, a following docker-compose can be used. The only requirements is labels and networks. Make sure both baker and service has the same network interface
version: '3.5'
services:
service1:
image: service:latest
labels:
- 'baker.enable=true'
- 'baker.network=baker_net'
- 'baker.service.port=8000'
- 'baker.service.ping=/config'
networks:
- baker
networks:
baker:
external:
name: baker_net
The service, should expose a REST endpoint which returns a configuration, the configuration endpoint act as a health check and providing realtime configuration:
[
{
"domain": "example.com",
"path": "/sample1",
"ready": true
},
{
"domain": "example.com",
"path": "/sample2",
"ready": false
},
{
"domain": "example1.com",
"path": "/sample1*",
"ready": true,
"recipes": [
{
"name": "ReplacePath",
"config": {
"search": "/sample1",
"replace": "",
"times": 1
}
}
]
}
]
Custom Baker
Baker is very extensible and easy to build. If a new recipe needed to be added to Router, it can be done in few lines of code as describe in following code, or can be found in cmd/baker/main.go
package main
import (
"net/http"
"github.com/alinz/baker.go"
)
func main() {
watcher := baker.NewDockerWatcher(baker.DefaultDockerWatcherConfig)
pinger := baker.NewBasePinger(watcher)
store := baker.NewBaseStore(pinger)
router := baker.NewBaseRouter(store)
// add all recipes and processors with a unique names here
router.AddProcessor("ReplacePath", baker.CreateProcessorPathReplace)
go watcher.Start()
http.ListenAndServe(":80", router)
}
Documentation
¶
Index ¶
- Variables
- type AcmeServer
- type BasePinger
- type BaseRouter
- type BaseStore
- type Container
- type ContainerType
- type DockerWatcher
- type DockerWatcherConfig
- type Domains
- type Endpoints
- type Paths
- type Pinger
- type PolicyManager
- type Processor
- type ProcessorPathAppend
- type ProcessorPathReplace
- type Recipe
- type Rule
- type Rules
- type Service
- type Services
- type Store
- type Watcher
Constants ¶
This section is empty.
Variables ¶
Functions ¶
This section is empty.
Types ¶
type AcmeServer ¶
type AcmeServer struct {
// contains filtered or unexported fields
}
AcmeServer contains all logic to handle both on port http and https
func NewAcmeServer ¶
func NewAcmeServer(policyManager PolicyManager, certPath string) *AcmeServer
NewAcmeServer creates acme.Server
type BasePinger ¶
type BasePinger struct {
// contains filtered or unexported fields
}
func NewBasePinger ¶
func NewBasePinger(watcher Watcher) *BasePinger
func (*BasePinger) Service ¶
func (p *BasePinger) Service() (*Service, error)
Service calls each available container and create a service object
type BaseRouter ¶
type BaseRouter struct {
// contains filtered or unexported fields
}
func NewBaseRouter ¶
func NewBaseRouter(store Store) *BaseRouter
func (*BaseRouter) AddProcessor ¶
func (r *BaseRouter) AddProcessor(name string, builder func(config json.RawMessage) (Processor, error)) *BaseRouter
func (*BaseRouter) HostPolicy ¶
func (br *BaseRouter) HostPolicy(ctx context.Context, host string) error
func (*BaseRouter) ServeHTTP ¶
func (br *BaseRouter) ServeHTTP(w http.ResponseWriter, r *http.Request)
type BaseStore ¶
type BaseStore struct {
// contains filtered or unexported fields
}
func NewBaseStore ¶
NewBaseStore creates BaseStore object
type Container ¶
type Container struct {
// Unique ID generated by container orcestration
ID string
// Type shows what type of container it is
Type ContainerType
// Active show wheather container is added or removed
Active bool
// RemoteAddr is IP:PORT which container is listening to
RemoteAddr net.Addr
// ConfigPath is the path to extract config data
ConfigPath string
// Err if error detected by orcestration system, it pass it here. In most case it means that Container is dead
Err error
}
Container is piece of object which contains information about each Node or Container
type ContainerType ¶
type ContainerType string
ContainerType defines which watcher produce them
const ( // DockerContainer defines by docker driver DockerContainer ContainerType = "docker" )
type DockerWatcher ¶
type DockerWatcher struct {
// contains filtered or unexported fields
}
func NewDockerWatcher ¶
func NewDockerWatcher(config DockerWatcherConfig) *DockerWatcher
func (*DockerWatcher) Container ¶
func (d *DockerWatcher) Container() (*Container, error)
func (*DockerWatcher) Start ¶
func (d *DockerWatcher) Start() error
Start is a blocking call, the caller for this method should run in a separate go routine
NOTE: upon on returning this function, the internal channel will be closed, if a restart requires, a new instance of DockerWatcher needs to be instantiated
type DockerWatcherConfig ¶
type Domains ¶
type Domains struct {
// contains filtered or unexported fields
}
func NewDomains ¶
func NewDomains() *Domains
type Endpoints ¶
type Endpoints struct {
// contains filtered or unexported fields
}
func NewEndpoints ¶
func NewEndpoints() *Endpoints
type Pinger ¶
type Pinger interface {
// Service if service returns an nil value, it means that Pinger has
// some internal error and it will no longer return service
Service() (*Service, error)
}
Pinger defines how container can be ping to get extra information and construct Service object
type PolicyManager ¶
PolicyManager is a
type Processor ¶
type Processor interface {
Request(r *http.Request)
Response(r *http.Response) error
HandleError(rw http.ResponseWriter, r *http.Request, err error)
}
func CreateProcessorPathAppend ¶
func CreateProcessorPathAppend(raw json.RawMessage) (Processor, error)
func CreateProcessorPathReplace ¶
func CreateProcessorPathReplace(raw json.RawMessage) (Processor, error)
type ProcessorPathAppend ¶
func (*ProcessorPathAppend) HandleError ¶
func (p *ProcessorPathAppend) HandleError(w http.ResponseWriter, r *http.Request, err error)
func (*ProcessorPathAppend) Request ¶
func (p *ProcessorPathAppend) Request(r *http.Request)
type ProcessorPathReplace ¶
type ProcessorPathReplace struct {
Search string `json:"search"`
Replace string `json:"replace"`
Times int `json:"times"`
}
func (*ProcessorPathReplace) HandleError ¶
func (p *ProcessorPathReplace) HandleError(w http.ResponseWriter, r *http.Request, err error)
func (*ProcessorPathReplace) Request ¶
func (p *ProcessorPathReplace) Request(r *http.Request)
type Recipe ¶
type Recipe struct {
Name string `json:"name"`
Config json.RawMessage `json:"config"`
}
type Rule ¶
type Rule struct {
Domain string `json:"domain"`
Path string `json:"path"`
Ready bool `json:"ready"`
Recipes []*Recipe `json:"recipes"`
}
Rule contains basic information about domain, path and availability of each container
type Rules ¶
type Rules []*Rule
Rules a wrapper around array of Rule to make it simpler to work with array of rules
type Service ¶
Service is a set of configuration that points to a specific running container Each container can have multiple services linked to them
type Services ¶
type Services struct {
// contains filtered or unexported fields
}
func NewServices ¶
func NewServices() *Services
Source Files
Directories