mirror of https://github.com/coder/coder.git
634 lines
21 KiB
Go
634 lines
21 KiB
Go
package wsproxysdk
|
|
|
|
import (
|
|
"context"
|
|
"encoding/json"
|
|
"io"
|
|
"net/http"
|
|
"net/url"
|
|
"time"
|
|
|
|
"github.com/google/uuid"
|
|
"golang.org/x/xerrors"
|
|
"nhooyr.io/websocket"
|
|
"tailscale.com/tailcfg"
|
|
|
|
"cdr.dev/slog"
|
|
"github.com/coder/coder/v2/coderd/httpapi"
|
|
"github.com/coder/coder/v2/coderd/httpmw"
|
|
"github.com/coder/coder/v2/coderd/workspaceapps"
|
|
"github.com/coder/coder/v2/codersdk"
|
|
"github.com/coder/coder/v2/codersdk/workspacesdk"
|
|
agpl "github.com/coder/coder/v2/tailnet"
|
|
"github.com/coder/coder/v2/tailnet/proto"
|
|
)
|
|
|
|
// Client is a HTTP client for a subset of Coder API routes that external
|
|
// proxies need.
|
|
type Client struct {
|
|
SDKClient *codersdk.Client
|
|
// HACK: the issue-signed-app-token requests may issue redirect responses
|
|
// (which need to be forwarded to the client), so the client we use to make
|
|
// those requests must ignore redirects.
|
|
sdkClientIgnoreRedirects *codersdk.Client
|
|
}
|
|
|
|
// New creates a external proxy client for the provided primary coder server
|
|
// URL.
|
|
func New(serverURL *url.URL) *Client {
|
|
sdkClient := codersdk.New(serverURL)
|
|
sdkClient.SessionTokenHeader = httpmw.WorkspaceProxyAuthTokenHeader
|
|
|
|
sdkClientIgnoreRedirects := codersdk.New(serverURL)
|
|
sdkClientIgnoreRedirects.HTTPClient.CheckRedirect = func(req *http.Request, via []*http.Request) error {
|
|
return http.ErrUseLastResponse
|
|
}
|
|
sdkClientIgnoreRedirects.SessionTokenHeader = httpmw.WorkspaceProxyAuthTokenHeader
|
|
|
|
return &Client{
|
|
SDKClient: sdkClient,
|
|
sdkClientIgnoreRedirects: sdkClientIgnoreRedirects,
|
|
}
|
|
}
|
|
|
|
// SetSessionToken sets the session token for the client. An error is returned
|
|
// if the session token is not in the correct format for external proxies.
|
|
func (c *Client) SetSessionToken(token string) error {
|
|
c.SDKClient.SetSessionToken(token)
|
|
c.sdkClientIgnoreRedirects.SetSessionToken(token)
|
|
return nil
|
|
}
|
|
|
|
// SessionToken returns the currently set token for the client.
|
|
func (c *Client) SessionToken() string {
|
|
return c.SDKClient.SessionToken()
|
|
}
|
|
|
|
// Request wraps the underlying codersdk.Client's Request method.
|
|
func (c *Client) Request(ctx context.Context, method, path string, body interface{}, opts ...codersdk.RequestOption) (*http.Response, error) {
|
|
return c.SDKClient.Request(ctx, method, path, body, opts...)
|
|
}
|
|
|
|
// RequestIgnoreRedirects wraps the underlying codersdk.Client's Request method
|
|
// on the client that ignores redirects.
|
|
func (c *Client) RequestIgnoreRedirects(ctx context.Context, method, path string, body interface{}, opts ...codersdk.RequestOption) (*http.Response, error) {
|
|
return c.sdkClientIgnoreRedirects.Request(ctx, method, path, body, opts...)
|
|
}
|
|
|
|
// DialWorkspaceAgent calls the underlying codersdk.Client's DialWorkspaceAgent
|
|
// method.
|
|
func (c *Client) DialWorkspaceAgent(ctx context.Context, agentID uuid.UUID, options *workspacesdk.DialAgentOptions) (agentConn *workspacesdk.AgentConn, err error) {
|
|
return workspacesdk.New(c.SDKClient).DialAgent(ctx, agentID, options)
|
|
}
|
|
|
|
type IssueSignedAppTokenResponse struct {
|
|
// SignedTokenStr should be set as a cookie on the response.
|
|
SignedTokenStr string `json:"signed_token_str"`
|
|
}
|
|
|
|
// IssueSignedAppToken issues a new signed app token for the provided app
|
|
// request. The error page will be returned as JSON. For use in external
|
|
// proxies, use IssueSignedAppTokenHTML instead.
|
|
func (c *Client) IssueSignedAppToken(ctx context.Context, req workspaceapps.IssueTokenRequest) (IssueSignedAppTokenResponse, error) {
|
|
resp, err := c.RequestIgnoreRedirects(ctx, http.MethodPost, "/api/v2/workspaceproxies/me/issue-signed-app-token", req, func(r *http.Request) {
|
|
// This forces any HTML error pages to be returned as JSON instead.
|
|
r.Header.Set("Accept", "application/json")
|
|
})
|
|
if err != nil {
|
|
return IssueSignedAppTokenResponse{}, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if resp.StatusCode != http.StatusCreated {
|
|
return IssueSignedAppTokenResponse{}, codersdk.ReadBodyAsError(resp)
|
|
}
|
|
|
|
var res IssueSignedAppTokenResponse
|
|
return res, json.NewDecoder(resp.Body).Decode(&res)
|
|
}
|
|
|
|
// IssueSignedAppTokenHTML issues a new signed app token for the provided app
|
|
// request. The error page will be returned as HTML in most cases, and will be
|
|
// written directly to the provided http.ResponseWriter.
|
|
func (c *Client) IssueSignedAppTokenHTML(ctx context.Context, rw http.ResponseWriter, req workspaceapps.IssueTokenRequest) (IssueSignedAppTokenResponse, bool) {
|
|
writeError := func(rw http.ResponseWriter, err error) {
|
|
res := codersdk.Response{
|
|
Message: "Internal server error",
|
|
Detail: err.Error(),
|
|
}
|
|
rw.WriteHeader(http.StatusInternalServerError)
|
|
_ = json.NewEncoder(rw).Encode(res)
|
|
}
|
|
|
|
resp, err := c.RequestIgnoreRedirects(ctx, http.MethodPost, "/api/v2/workspaceproxies/me/issue-signed-app-token", req, func(r *http.Request) {
|
|
r.Header.Set("Accept", "text/html")
|
|
})
|
|
if err != nil {
|
|
writeError(rw, xerrors.Errorf("perform issue signed app token request: %w", err))
|
|
return IssueSignedAppTokenResponse{}, false
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if resp.StatusCode != http.StatusCreated {
|
|
// Copy the response to the ResponseWriter.
|
|
for k, v := range resp.Header {
|
|
rw.Header()[k] = v
|
|
}
|
|
rw.WriteHeader(resp.StatusCode)
|
|
_, err = io.Copy(rw, resp.Body)
|
|
if err != nil {
|
|
writeError(rw, xerrors.Errorf("copy response body: %w", err))
|
|
}
|
|
return IssueSignedAppTokenResponse{}, false
|
|
}
|
|
|
|
var res IssueSignedAppTokenResponse
|
|
err = json.NewDecoder(resp.Body).Decode(&res)
|
|
if err != nil {
|
|
writeError(rw, xerrors.Errorf("decode response body: %w", err))
|
|
return IssueSignedAppTokenResponse{}, false
|
|
}
|
|
return res, true
|
|
}
|
|
|
|
type ReportAppStatsRequest struct {
|
|
Stats []workspaceapps.StatsReport `json:"stats"`
|
|
}
|
|
|
|
// ReportAppStats reports the given app stats to the primary coder server.
|
|
func (c *Client) ReportAppStats(ctx context.Context, req ReportAppStatsRequest) error {
|
|
resp, err := c.Request(ctx, http.MethodPost, "/api/v2/workspaceproxies/me/app-stats", req)
|
|
if err != nil {
|
|
return xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if resp.StatusCode != http.StatusNoContent {
|
|
return codersdk.ReadBodyAsError(resp)
|
|
}
|
|
|
|
return nil
|
|
}
|
|
|
|
type RegisterWorkspaceProxyRequest struct {
|
|
// AccessURL that hits the workspace proxy api.
|
|
AccessURL string `json:"access_url"`
|
|
// WildcardHostname that the workspace proxy api is serving for subdomain apps.
|
|
WildcardHostname string `json:"wildcard_hostname"`
|
|
// DerpEnabled indicates whether the proxy should be included in the DERP
|
|
// map or not.
|
|
DerpEnabled bool `json:"derp_enabled"`
|
|
// DerpOnly indicates whether the proxy should only be included in the DERP
|
|
// map and should not be used for serving apps.
|
|
DerpOnly bool `json:"derp_only"`
|
|
|
|
// ReplicaID is a unique identifier for the replica of the proxy that is
|
|
// registering. It should be generated by the client on startup and
|
|
// persisted (in memory only) until the process is restarted.
|
|
ReplicaID uuid.UUID `json:"replica_id"`
|
|
// ReplicaHostname is the OS hostname of the machine that the proxy is running
|
|
// on. This is only used for tracking purposes in the replicas table.
|
|
ReplicaHostname string `json:"hostname"`
|
|
// ReplicaError is the error that the replica encountered when trying to
|
|
// dial it's peers. This is stored in the replicas table for debugging
|
|
// purposes but does not affect the proxy's ability to register.
|
|
//
|
|
// This value is only stored on subsequent requests to the register
|
|
// endpoint, not the first request.
|
|
ReplicaError string `json:"replica_error"`
|
|
// ReplicaRelayAddress is the DERP address of the replica that other
|
|
// replicas may use to connect internally for DERP meshing.
|
|
ReplicaRelayAddress string `json:"replica_relay_address"`
|
|
|
|
// Version is the Coder version of the proxy.
|
|
Version string `json:"version"`
|
|
}
|
|
|
|
type RegisterWorkspaceProxyResponse struct {
|
|
AppSecurityKey string `json:"app_security_key"`
|
|
DERPMeshKey string `json:"derp_mesh_key"`
|
|
DERPRegionID int32 `json:"derp_region_id"`
|
|
DERPMap *tailcfg.DERPMap `json:"derp_map"`
|
|
DERPForceWebSockets bool `json:"derp_force_websockets"`
|
|
// SiblingReplicas is a list of all other replicas of the proxy that have
|
|
// not timed out.
|
|
SiblingReplicas []codersdk.Replica `json:"sibling_replicas"`
|
|
}
|
|
|
|
func (c *Client) RegisterWorkspaceProxy(ctx context.Context, req RegisterWorkspaceProxyRequest) (RegisterWorkspaceProxyResponse, error) {
|
|
res, err := c.Request(ctx, http.MethodPost,
|
|
"/api/v2/workspaceproxies/me/register",
|
|
req,
|
|
)
|
|
if err != nil {
|
|
return RegisterWorkspaceProxyResponse{}, xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusCreated {
|
|
return RegisterWorkspaceProxyResponse{}, codersdk.ReadBodyAsError(res)
|
|
}
|
|
var resp RegisterWorkspaceProxyResponse
|
|
return resp, json.NewDecoder(res.Body).Decode(&resp)
|
|
}
|
|
|
|
type DeregisterWorkspaceProxyRequest struct {
|
|
// ReplicaID is a unique identifier for the replica of the proxy that is
|
|
// deregistering. It should be generated by the client on startup and
|
|
// should've already been passed to the register endpoint.
|
|
ReplicaID uuid.UUID `json:"replica_id"`
|
|
}
|
|
|
|
func (c *Client) DeregisterWorkspaceProxy(ctx context.Context, req DeregisterWorkspaceProxyRequest) error {
|
|
res, err := c.Request(ctx, http.MethodPost,
|
|
"/api/v2/workspaceproxies/me/deregister",
|
|
req,
|
|
)
|
|
if err != nil {
|
|
return xerrors.Errorf("make request: %w", err)
|
|
}
|
|
defer res.Body.Close()
|
|
|
|
if res.StatusCode != http.StatusNoContent {
|
|
return codersdk.ReadBodyAsError(res)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
type RegisterWorkspaceProxyLoopOpts struct {
|
|
Logger slog.Logger
|
|
Request RegisterWorkspaceProxyRequest
|
|
|
|
// Interval between registration attempts. Defaults to 30 seconds. Note that
|
|
// the initial registration is not delayed by this interval.
|
|
Interval time.Duration
|
|
// MaxFailureCount is the maximum amount of attempts that the loop will
|
|
// retry registration before giving up. Defaults to 10 (for ~5 minutes).
|
|
MaxFailureCount int
|
|
// AttemptTimeout is the maximum amount of time that the loop will wait for
|
|
// a response from the server before considering the attempt a failure.
|
|
// Defaults to 10 seconds.
|
|
AttemptTimeout time.Duration
|
|
|
|
// MutateFn is called before each request to mutate the request struct. This
|
|
// can be used to update fields like ReplicaError.
|
|
MutateFn func(req *RegisterWorkspaceProxyRequest)
|
|
// CallbackFn is called with the response from the server after each
|
|
// successful registration, except the first. The callback function is
|
|
// called in a blocking manner, so it should avoid blocking for too long. If
|
|
// the callback returns an error, the loop will stop immediately and the
|
|
// error will be returned to the FailureFn.
|
|
CallbackFn func(res RegisterWorkspaceProxyResponse) error
|
|
// FailureFn is called with the last error returned from the server if the
|
|
// context is canceled, registration fails for more than MaxFailureCount,
|
|
// or if any permanent values in the response change.
|
|
FailureFn func(err error)
|
|
}
|
|
|
|
type RegisterWorkspaceProxyLoop struct {
|
|
opts RegisterWorkspaceProxyLoopOpts
|
|
c *Client
|
|
|
|
// runLoopNow takes a response channel to send the response to and triggers
|
|
// the loop to run immediately if it's waiting.
|
|
runLoopNow chan chan RegisterWorkspaceProxyResponse
|
|
closedCtx context.Context
|
|
close context.CancelFunc
|
|
done chan struct{}
|
|
}
|
|
|
|
func (l *RegisterWorkspaceProxyLoop) register(ctx context.Context) (RegisterWorkspaceProxyResponse, error) {
|
|
registerCtx, registerCancel := context.WithTimeout(ctx, l.opts.AttemptTimeout)
|
|
res, err := l.c.RegisterWorkspaceProxy(registerCtx, l.opts.Request)
|
|
registerCancel()
|
|
if err != nil {
|
|
return RegisterWorkspaceProxyResponse{}, xerrors.Errorf("register workspace proxy: %w", err)
|
|
}
|
|
|
|
return res, nil
|
|
}
|
|
|
|
// Start starts the proxy registration loop. The provided context is only used
|
|
// for the initial registration. Use Close() to stop.
|
|
func (l *RegisterWorkspaceProxyLoop) Start(ctx context.Context) (RegisterWorkspaceProxyResponse, error) {
|
|
if l.opts.Interval == 0 {
|
|
l.opts.Interval = 15 * time.Second
|
|
}
|
|
if l.opts.MaxFailureCount == 0 {
|
|
l.opts.MaxFailureCount = 10
|
|
}
|
|
if l.opts.AttemptTimeout == 0 {
|
|
l.opts.AttemptTimeout = 10 * time.Second
|
|
}
|
|
|
|
var err error
|
|
originalRes, err := l.register(ctx)
|
|
if err != nil {
|
|
return RegisterWorkspaceProxyResponse{}, xerrors.Errorf("initial registration: %w", err)
|
|
}
|
|
|
|
go func() {
|
|
defer close(l.done)
|
|
|
|
var (
|
|
failedAttempts = 0
|
|
ticker = time.NewTicker(l.opts.Interval)
|
|
)
|
|
for {
|
|
var respCh chan RegisterWorkspaceProxyResponse
|
|
select {
|
|
case <-l.closedCtx.Done():
|
|
l.failureFn(xerrors.Errorf("proxy registration loop closed"))
|
|
return
|
|
case respCh = <-l.runLoopNow:
|
|
case <-ticker.C:
|
|
}
|
|
|
|
l.opts.Logger.Debug(context.Background(),
|
|
"re-registering workspace proxy with Coder primary",
|
|
slog.F("req", l.opts.Request),
|
|
slog.F("timeout", l.opts.AttemptTimeout),
|
|
slog.F("failed_attempts", failedAttempts),
|
|
)
|
|
|
|
l.mutateFn(&l.opts.Request)
|
|
resp, err := l.register(l.closedCtx)
|
|
if err != nil {
|
|
failedAttempts++
|
|
l.opts.Logger.Warn(context.Background(),
|
|
"failed to re-register workspace proxy with Coder primary",
|
|
slog.F("req", l.opts.Request),
|
|
slog.F("timeout", l.opts.AttemptTimeout),
|
|
slog.F("failed_attempts", failedAttempts),
|
|
slog.Error(err),
|
|
)
|
|
|
|
if failedAttempts > l.opts.MaxFailureCount {
|
|
l.failureFn(xerrors.Errorf("exceeded re-registration failure count of %d: last error: %w", l.opts.MaxFailureCount, err))
|
|
return
|
|
}
|
|
continue
|
|
}
|
|
failedAttempts = 0
|
|
|
|
// Check for consistency.
|
|
if originalRes.AppSecurityKey != resp.AppSecurityKey {
|
|
l.failureFn(xerrors.New("app security key has changed, proxy must be restarted"))
|
|
return
|
|
}
|
|
if originalRes.DERPMeshKey != resp.DERPMeshKey {
|
|
l.failureFn(xerrors.New("DERP mesh key has changed, proxy must be restarted"))
|
|
return
|
|
}
|
|
if originalRes.DERPRegionID != resp.DERPRegionID {
|
|
l.failureFn(xerrors.New("DERP region ID has changed, proxy must be restarted"))
|
|
return
|
|
}
|
|
|
|
err = l.callbackFn(resp)
|
|
if err != nil {
|
|
l.failureFn(xerrors.Errorf("callback function returned an error: %w", err))
|
|
return
|
|
}
|
|
|
|
// If we were triggered by RegisterNow(), send the response back.
|
|
if respCh != nil {
|
|
respCh <- resp
|
|
close(respCh)
|
|
}
|
|
|
|
ticker.Reset(l.opts.Interval)
|
|
}
|
|
}()
|
|
|
|
return originalRes, nil
|
|
}
|
|
|
|
// RegisterNow asks the registration loop to register immediately. A timeout of
|
|
// 2x the attempt timeout is used to wait for the response.
|
|
func (l *RegisterWorkspaceProxyLoop) RegisterNow() (RegisterWorkspaceProxyResponse, error) {
|
|
// The channel is closed by the loop after sending the response.
|
|
respCh := make(chan RegisterWorkspaceProxyResponse, 1)
|
|
select {
|
|
case <-l.done:
|
|
return RegisterWorkspaceProxyResponse{}, xerrors.New("proxy registration loop closed")
|
|
case l.runLoopNow <- respCh:
|
|
}
|
|
select {
|
|
case <-l.done:
|
|
return RegisterWorkspaceProxyResponse{}, xerrors.New("proxy registration loop closed")
|
|
case resp := <-respCh:
|
|
return resp, nil
|
|
}
|
|
}
|
|
|
|
func (l *RegisterWorkspaceProxyLoop) Close() {
|
|
l.close()
|
|
<-l.done
|
|
}
|
|
|
|
func (l *RegisterWorkspaceProxyLoop) mutateFn(req *RegisterWorkspaceProxyRequest) {
|
|
if l.opts.MutateFn != nil {
|
|
l.opts.MutateFn(req)
|
|
}
|
|
}
|
|
|
|
func (l *RegisterWorkspaceProxyLoop) callbackFn(res RegisterWorkspaceProxyResponse) error {
|
|
if l.opts.CallbackFn != nil {
|
|
return l.opts.CallbackFn(res)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (l *RegisterWorkspaceProxyLoop) failureFn(err error) {
|
|
// We have to use background context here because the original context may
|
|
// be canceled.
|
|
deregisterCtx, cancel := context.WithTimeout(context.Background(), l.opts.AttemptTimeout)
|
|
defer cancel()
|
|
deregisterErr := l.c.DeregisterWorkspaceProxy(deregisterCtx, DeregisterWorkspaceProxyRequest{
|
|
ReplicaID: l.opts.Request.ReplicaID,
|
|
})
|
|
if deregisterErr != nil {
|
|
l.opts.Logger.Error(context.Background(),
|
|
"failed to deregister workspace proxy with Coder primary (it will be automatically deregistered shortly)",
|
|
slog.Error(deregisterErr),
|
|
)
|
|
}
|
|
|
|
if l.opts.FailureFn != nil {
|
|
l.opts.FailureFn(err)
|
|
}
|
|
}
|
|
|
|
// RegisterWorkspaceProxyLoop will register the workspace proxy and then start a
|
|
// goroutine to keep registering periodically in the background.
|
|
//
|
|
// The first response is returned immediately, and subsequent responses will be
|
|
// notified to the given CallbackFn. When the loop is Close()d it will stop
|
|
// immediately and an error will be returned to the FailureFn.
|
|
//
|
|
// When a fatal error is encountered (or the proxy is closed), the proxy will be
|
|
// deregistered (with the same ReplicaID and AttemptTimeout) before calling the
|
|
// FailureFn.
|
|
func (c *Client) RegisterWorkspaceProxyLoop(ctx context.Context, opts RegisterWorkspaceProxyLoopOpts) (*RegisterWorkspaceProxyLoop, RegisterWorkspaceProxyResponse, error) {
|
|
closedCtx, closeFn := context.WithCancel(context.Background())
|
|
loop := &RegisterWorkspaceProxyLoop{
|
|
opts: opts,
|
|
c: c,
|
|
runLoopNow: make(chan chan RegisterWorkspaceProxyResponse),
|
|
closedCtx: closedCtx,
|
|
close: closeFn,
|
|
done: make(chan struct{}),
|
|
}
|
|
|
|
regResp, err := loop.Start(ctx)
|
|
if err != nil {
|
|
return nil, RegisterWorkspaceProxyResponse{}, xerrors.Errorf("start loop: %w", err)
|
|
}
|
|
return loop, regResp, nil
|
|
}
|
|
|
|
type CoordinateMessageType int
|
|
|
|
const (
|
|
CoordinateMessageTypeSubscribe CoordinateMessageType = 1 + iota
|
|
CoordinateMessageTypeUnsubscribe
|
|
CoordinateMessageTypeNodeUpdate
|
|
)
|
|
|
|
type CoordinateMessage struct {
|
|
Type CoordinateMessageType `json:"type"`
|
|
AgentID uuid.UUID `json:"agent_id"`
|
|
Node *agpl.Node `json:"node"`
|
|
}
|
|
|
|
type CoordinateNodes struct {
|
|
Nodes []*agpl.Node
|
|
}
|
|
|
|
func (c *Client) DialCoordinator(ctx context.Context) (agpl.MultiAgentConn, error) {
|
|
ctx, cancel := context.WithCancel(ctx)
|
|
logger := c.SDKClient.Logger().Named("multiagent")
|
|
|
|
coordinateURL, err := c.SDKClient.URL.Parse("/api/v2/workspaceproxies/me/coordinate")
|
|
if err != nil {
|
|
cancel()
|
|
return nil, xerrors.Errorf("parse url: %w", err)
|
|
}
|
|
q := coordinateURL.Query()
|
|
q.Add("version", proto.CurrentVersion.String())
|
|
coordinateURL.RawQuery = q.Encode()
|
|
coordinateHeaders := make(http.Header)
|
|
tokenHeader := codersdk.SessionTokenHeader
|
|
if c.SDKClient.SessionTokenHeader != "" {
|
|
tokenHeader = c.SDKClient.SessionTokenHeader
|
|
}
|
|
coordinateHeaders.Set(tokenHeader, c.SessionToken())
|
|
|
|
//nolint:bodyclose
|
|
conn, _, err := websocket.Dial(ctx, coordinateURL.String(), &websocket.DialOptions{
|
|
HTTPClient: c.SDKClient.HTTPClient,
|
|
HTTPHeader: coordinateHeaders,
|
|
})
|
|
if err != nil {
|
|
cancel()
|
|
return nil, xerrors.Errorf("dial coordinate websocket: %w", err)
|
|
}
|
|
|
|
go httpapi.HeartbeatClose(ctx, logger, cancel, conn)
|
|
|
|
nc := websocket.NetConn(ctx, conn, websocket.MessageBinary)
|
|
client, err := agpl.NewDRPCClient(nc, logger)
|
|
if err != nil {
|
|
logger.Debug(ctx, "failed to create DRPCClient", slog.Error(err))
|
|
_ = conn.Close(websocket.StatusInternalError, "")
|
|
return nil, xerrors.Errorf("failed to create DRPCClient: %w", err)
|
|
}
|
|
protocol, err := client.Coordinate(ctx)
|
|
if err != nil {
|
|
logger.Debug(ctx, "failed to reach the Coordinate endpoint", slog.Error(err))
|
|
_ = conn.Close(websocket.StatusInternalError, "")
|
|
return nil, xerrors.Errorf("failed to reach the Coordinate endpoint: %w", err)
|
|
}
|
|
|
|
rma := remoteMultiAgentHandler{
|
|
sdk: c,
|
|
logger: logger,
|
|
protocol: protocol,
|
|
cancel: cancel,
|
|
}
|
|
|
|
ma := (&agpl.MultiAgent{
|
|
ID: uuid.New(),
|
|
OnSubscribe: rma.OnSubscribe,
|
|
OnUnsubscribe: rma.OnUnsubscribe,
|
|
OnNodeUpdate: rma.OnNodeUpdate,
|
|
OnRemove: rma.OnRemove,
|
|
}).Init()
|
|
|
|
go func() {
|
|
<-ctx.Done()
|
|
_ = ma.Close()
|
|
_ = client.DRPCConn().Close()
|
|
<-client.DRPCConn().Closed()
|
|
_ = conn.Close(websocket.StatusGoingAway, "closed")
|
|
}()
|
|
|
|
rma.ma = ma
|
|
go rma.respLoop()
|
|
|
|
return ma, nil
|
|
}
|
|
|
|
type remoteMultiAgentHandler struct {
|
|
sdk *Client
|
|
logger slog.Logger
|
|
protocol proto.DRPCTailnet_CoordinateClient
|
|
ma *agpl.MultiAgent
|
|
cancel func()
|
|
}
|
|
|
|
func (a *remoteMultiAgentHandler) respLoop() {
|
|
{
|
|
defer a.cancel()
|
|
for {
|
|
resp, err := a.protocol.Recv()
|
|
if err != nil {
|
|
if xerrors.Is(err, io.EOF) {
|
|
a.logger.Info(context.Background(), "remote multiagent connection severed", slog.Error(err))
|
|
return
|
|
}
|
|
|
|
a.logger.Error(context.Background(), "error receiving multiagent responses", slog.Error(err))
|
|
return
|
|
}
|
|
|
|
err = a.ma.Enqueue(resp)
|
|
if err != nil {
|
|
a.logger.Error(context.Background(), "enqueue response from coordinator", slog.Error(err))
|
|
continue
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
func (a *remoteMultiAgentHandler) OnNodeUpdate(_ uuid.UUID, node *proto.Node) error {
|
|
return a.protocol.Send(&proto.CoordinateRequest{UpdateSelf: &proto.CoordinateRequest_UpdateSelf{Node: node}})
|
|
}
|
|
|
|
func (a *remoteMultiAgentHandler) OnSubscribe(_ agpl.Queue, agentID uuid.UUID) error {
|
|
return a.protocol.Send(&proto.CoordinateRequest{AddTunnel: &proto.CoordinateRequest_Tunnel{Id: agentID[:]}})
|
|
}
|
|
|
|
func (a *remoteMultiAgentHandler) OnUnsubscribe(_ agpl.Queue, agentID uuid.UUID) error {
|
|
return a.protocol.Send(&proto.CoordinateRequest{RemoveTunnel: &proto.CoordinateRequest_Tunnel{Id: agentID[:]}})
|
|
}
|
|
|
|
func (a *remoteMultiAgentHandler) OnRemove(_ agpl.Queue) {
|
|
err := a.protocol.Send(&proto.CoordinateRequest{Disconnect: &proto.CoordinateRequest_Disconnect{}})
|
|
if err != nil {
|
|
a.logger.Warn(context.Background(), "failed to gracefully disconnect", slog.Error(err))
|
|
}
|
|
_ = a.protocol.CloseSend()
|
|
}
|