mrok 0.4.5__tar.gz → 0.5.0__tar.gz
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- {mrok-0.4.5 → mrok-0.5.0}/PKG-INFO +2 -5
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/devtools/inspector/app.py +2 -2
- mrok-0.5.0/mrok/agent/sidecar/app.py +77 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/sidecar/main.py +5 -5
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/ziticorn.py +2 -2
- mrok-0.5.0/mrok/cli/commands/__init__.py +8 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/register/extensions.py +2 -4
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/register/instances.py +11 -5
- {mrok-0.4.5/mrok/cli/commands/proxy → mrok-0.5.0/mrok/cli/commands/frontend}/__init__.py +1 -1
- {mrok-0.4.5/mrok/cli/commands/proxy → mrok-0.5.0/mrok/cli/commands/frontend}/run.py +4 -4
- mrok-0.5.0/mrok/constants.py +4 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/openapi/examples.py +13 -0
- mrok-0.5.0/mrok/frontend/__init__.py +3 -0
- mrok-0.5.0/mrok/frontend/app.py +75 -0
- {mrok-0.4.5/mrok/proxy → mrok-0.5.0/mrok/frontend}/main.py +4 -10
- mrok-0.5.0/mrok/proxy/app.py +175 -0
- mrok-0.5.0/mrok/proxy/backend.py +43 -0
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/config.py +3 -3
- {mrok-0.4.5/mrok → mrok-0.5.0/mrok/proxy}/datastructures.py +43 -10
- mrok-0.5.0/mrok/proxy/exceptions.py +22 -0
- mrok-0.5.0/mrok/proxy/lifespan.py +10 -0
- {mrok-0.4.5/mrok → mrok-0.5.0/mrok/proxy}/master.py +35 -38
- {mrok-0.4.5/mrok → mrok-0.5.0/mrok/proxy}/metrics.py +37 -49
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/middlewares.py +47 -26
- mrok-0.5.0/mrok/proxy/streams.py +45 -0
- mrok-0.5.0/mrok/proxy/types.py +15 -0
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/utils.py +1 -1
- {mrok-0.4.5 → mrok-0.5.0}/pyproject.toml +3 -5
- {mrok-0.4.5 → mrok-0.5.0}/settings.yaml +1 -1
- mrok-0.5.0/tests/agent/sidecar/test_app.py +105 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/sidecar/test_main.py +1 -1
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/admin/test_register.py +2 -2
- {mrok-0.4.5/tests/cli/proxy → mrok-0.5.0/tests/cli/frontend}/test_run.py +4 -4
- {mrok-0.4.5 → mrok-0.5.0}/tests/conftest.py +51 -6
- mrok-0.5.0/tests/frontend/test_app.py +89 -0
- mrok-0.5.0/tests/frontend/test_main.py +27 -0
- mrok-0.5.0/tests/proxy/test_app.py +272 -0
- mrok-0.5.0/tests/proxy/test_backend.py +83 -0
- {mrok-0.4.5/tests/http → mrok-0.5.0/tests/proxy}/test_config.py +12 -10
- {mrok-0.4.5/tests/http → mrok-0.5.0/tests/proxy}/test_lifespan.py +1 -1
- mrok-0.5.0/tests/proxy/test_master.py +460 -0
- mrok-0.5.0/tests/proxy/test_metrics.py +62 -0
- mrok-0.5.0/tests/proxy/test_middlewares.py +194 -0
- {mrok-0.4.5/tests/http → mrok-0.5.0/tests/proxy}/test_protocol.py +1 -1
- {mrok-0.4.5/tests/http → mrok-0.5.0/tests/proxy}/test_server.py +2 -2
- mrok-0.5.0/tests/proxy/test_streams.py +135 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/types.py +13 -0
- {mrok-0.4.5 → mrok-0.5.0}/uv.lock +127 -159
- mrok-0.4.5/mrok/agent/sidecar/app.py +0 -29
- mrok-0.4.5/mrok/cli/commands/__init__.py +0 -8
- mrok-0.4.5/mrok/http/forwarder.py +0 -338
- mrok-0.4.5/mrok/http/lifespan.py +0 -39
- mrok-0.4.5/mrok/http/types.py +0 -43
- mrok-0.4.5/mrok/proxy/__init__.py +0 -3
- mrok-0.4.5/mrok/proxy/app.py +0 -72
- mrok-0.4.5/tests/agent/sidecar/test_app.py +0 -114
- mrok-0.4.5/tests/http/test_forwarder.py +0 -675
- mrok-0.4.5/tests/http/test_master.py +0 -166
- mrok-0.4.5/tests/proxy/test_app.py +0 -114
- mrok-0.4.5/tests/proxy/test_ziti.py +0 -528
- mrok-0.4.5/tests/proxy/test_ziti_branches.py +0 -154
- {mrok-0.4.5 → mrok-0.5.0}/.github/actions/setup-python-env/action.yml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.github/workflows/assets/turing_team_pr_bot.png +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.github/workflows/notify-pr-closed.yaml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.github/workflows/notify-pr-reviewed.yml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.github/workflows/pr-build-merge.yaml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.github/workflows/release.yml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.gitignore +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.pre-commit-config.yaml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/.python-version +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/LICENSE.txt +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/README.md +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/dev.Dockerfile +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/docker-compose.yaml +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/entrypoint.sh +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/devtools/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/devtools/__main__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/devtools/inspector/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/devtools/inspector/__main__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/devtools/inspector/server.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/agent/sidecar/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/bootstrap.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/list/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/list/extensions.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/list/instances.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/register/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/unregister/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/unregister/extensions.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/unregister/instances.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/admin/utils.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/dev/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/dev/console.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/dev/web.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/run/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/run/asgi.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/run/sidecar.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/agent/utils.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/controller/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/controller/openapi.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/commands/controller/run.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/main.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/rich.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/cli/utils.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/conf.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/app.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/auth.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/dependencies/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/dependencies/conf.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/dependencies/ziti.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/openapi/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/openapi/utils.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/pagination.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/routes/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/routes/extensions.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/routes/instances.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/controller/schemas.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/errors.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/logging.py +0 -0
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/__init__.py +0 -0
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/constants.py +0 -0
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/protocol.py +0 -0
- {mrok-0.4.5/mrok/http → mrok-0.5.0/mrok/proxy}/server.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/api.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/bootstrap.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/constants.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/errors.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/identities.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/pki.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/mrok/ziti/services.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/prod.Dockerfile +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/scripts/ziti.sh +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/snapshot_report.html +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/sonar-project.properties +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/sidecar/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/sidecar/__snapshots__/test_inspector/test_inspector_app.svg +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/sidecar/__snapshots__/test_inspector/test_inspector_app_empty_card.svg +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/sidecar/__snapshots__/test_inspector/test_inspector_app_filed_store_connection.svg +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/sidecar/__snapshots__/test_inspector/test_inspector_app_open_card.svg +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/agent/test_ziticorn.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/admin/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/admin/test_bootstrap.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/admin/test_list.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/admin/test_unregister.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/admin/test_utils.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/agent/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/agent/test_run.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/controller/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/controller/test_openapi.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/controller/test_run.py +0 -0
- {mrok-0.4.5/tests/cli/proxy → mrok-0.5.0/tests/cli/frontend}/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/cli/test_main.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/controller/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/controller/test_auth.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/controller/test_extensions.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/controller/test_instances.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/controller/test_openapi.py +0 -0
- {mrok-0.4.5/tests/http → mrok-0.5.0/tests/frontend}/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/proxy/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/ziti/__init__.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/ziti/test_api.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/ziti/test_bootstrap.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/ziti/test_identities.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/ziti/test_pki.py +0 -0
- {mrok-0.4.5 → mrok-0.5.0}/tests/ziti/test_services.py +0 -0
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
Metadata-Version: 2.4
|
|
2
2
|
Name: mrok
|
|
3
|
-
Version: 0.
|
|
3
|
+
Version: 0.5.0
|
|
4
4
|
Summary: MPT Extensions OpenZiti Orchestrator
|
|
5
5
|
Author: SoftwareOne AG
|
|
6
6
|
License: Apache License
|
|
@@ -206,7 +206,6 @@ License: Apache License
|
|
|
206
206
|
limitations under the License.
|
|
207
207
|
License-File: LICENSE.txt
|
|
208
208
|
Requires-Python: <4,>=3.12
|
|
209
|
-
Requires-Dist: aiocache<0.13.0,>=0.12.3
|
|
210
209
|
Requires-Dist: asn1crypto<2.0.0,>=1.5.1
|
|
211
210
|
Requires-Dist: cryptography<46.0.0,>=45.0.7
|
|
212
211
|
Requires-Dist: dynaconf<4.0.0,>=3.2.11
|
|
@@ -214,14 +213,12 @@ Requires-Dist: fastapi-pagination<0.15.0,>=0.14.1
|
|
|
214
213
|
Requires-Dist: fastapi[standard]<0.120.0,>=0.119.0
|
|
215
214
|
Requires-Dist: gunicorn<24.0.0,>=23.0.0
|
|
216
215
|
Requires-Dist: hdrhistogram<0.11.0,>=0.10.3
|
|
217
|
-
Requires-Dist:
|
|
218
|
-
Requires-Dist: httpx<0.29.0,>=0.28.1
|
|
216
|
+
Requires-Dist: httpcore<2.0.0,>=1.0.9
|
|
219
217
|
Requires-Dist: openziti<2.0.0,>=1.3.1
|
|
220
218
|
Requires-Dist: psutil<8.0.0,>=7.1.3
|
|
221
219
|
Requires-Dist: pydantic<3.0.0,>=2.11.7
|
|
222
220
|
Requires-Dist: pyfiglet<2.0.0,>=1.0.4
|
|
223
221
|
Requires-Dist: pyjwt<3.0.0,>=2.10.1
|
|
224
|
-
Requires-Dist: pytest-textual-snapshot<2.0.0,>=1.1.0
|
|
225
222
|
Requires-Dist: pyyaml<7.0.0,>=6.0.2
|
|
226
223
|
Requires-Dist: pyzmq<28.0.0,>=27.1.0
|
|
227
224
|
Requires-Dist: rich<15.0.0,>=14.1.0
|
|
@@ -27,7 +27,7 @@ from textual.widgets.data_table import ColumnKey
|
|
|
27
27
|
from textual.worker import get_current_worker
|
|
28
28
|
|
|
29
29
|
from mrok import __version__
|
|
30
|
-
from mrok.datastructures import Event, HTTPHeaders, HTTPResponse,
|
|
30
|
+
from mrok.proxy.datastructures import Event, HTTPHeaders, HTTPResponse, WorkerMetrics, ZitiMrokMeta
|
|
31
31
|
|
|
32
32
|
|
|
33
33
|
def build_tree(node, data):
|
|
@@ -185,7 +185,7 @@ class InfoPanel(Static):
|
|
|
185
185
|
# mem=int(mean([m.process.mem for m in self.workers_metrics.values()])),
|
|
186
186
|
# )
|
|
187
187
|
|
|
188
|
-
def update_meta(self, meta:
|
|
188
|
+
def update_meta(self, meta: ZitiMrokMeta) -> None:
|
|
189
189
|
table = self.query_one(DataTable)
|
|
190
190
|
if len(table.rows) == 0:
|
|
191
191
|
table.add_row("URL", f"https://{meta.extension}.{meta.domain}")
|
|
@@ -0,0 +1,77 @@
|
|
|
1
|
+
import logging
|
|
2
|
+
from pathlib import Path
|
|
3
|
+
from typing import Literal
|
|
4
|
+
|
|
5
|
+
from httpcore import AsyncConnectionPool
|
|
6
|
+
|
|
7
|
+
from mrok.proxy.app import ProxyAppBase
|
|
8
|
+
from mrok.proxy.types import Scope
|
|
9
|
+
|
|
10
|
+
logger = logging.getLogger("mrok.agent")
|
|
11
|
+
|
|
12
|
+
|
|
13
|
+
TargetType = Literal["tcp", "unix"]
|
|
14
|
+
|
|
15
|
+
|
|
16
|
+
class SidecarProxyApp(ProxyAppBase):
|
|
17
|
+
def __init__(
|
|
18
|
+
self,
|
|
19
|
+
target: str | Path | tuple[str, int],
|
|
20
|
+
*,
|
|
21
|
+
max_connections=1000,
|
|
22
|
+
max_keepalive_connections=10,
|
|
23
|
+
keepalive_expiry=120,
|
|
24
|
+
retries=0,
|
|
25
|
+
):
|
|
26
|
+
self._target = target
|
|
27
|
+
self._target_type, self._target_address = self._parse_target()
|
|
28
|
+
super().__init__(
|
|
29
|
+
max_connections=max_connections,
|
|
30
|
+
max_keepalive_connections=max_keepalive_connections,
|
|
31
|
+
keepalive_expiry=keepalive_expiry,
|
|
32
|
+
retries=retries,
|
|
33
|
+
)
|
|
34
|
+
|
|
35
|
+
def setup_connection_pool(
|
|
36
|
+
self,
|
|
37
|
+
max_connections: int | None = 1000,
|
|
38
|
+
max_keepalive_connections: int | None = 10,
|
|
39
|
+
keepalive_expiry: float | None = 120.0,
|
|
40
|
+
retries: int = 0,
|
|
41
|
+
) -> AsyncConnectionPool:
|
|
42
|
+
if self._target_type == "unix":
|
|
43
|
+
return AsyncConnectionPool(
|
|
44
|
+
max_connections=max_connections,
|
|
45
|
+
max_keepalive_connections=max_keepalive_connections,
|
|
46
|
+
keepalive_expiry=keepalive_expiry,
|
|
47
|
+
retries=retries,
|
|
48
|
+
uds=self._target_address,
|
|
49
|
+
)
|
|
50
|
+
return AsyncConnectionPool(
|
|
51
|
+
max_connections=max_connections,
|
|
52
|
+
max_keepalive_connections=max_keepalive_connections,
|
|
53
|
+
keepalive_expiry=keepalive_expiry,
|
|
54
|
+
retries=retries,
|
|
55
|
+
)
|
|
56
|
+
|
|
57
|
+
def get_upstream_base_url(self, scope: Scope) -> str:
|
|
58
|
+
if self._target_type == "unix":
|
|
59
|
+
return "http://localhost"
|
|
60
|
+
return f"http://{self._target_address}"
|
|
61
|
+
|
|
62
|
+
def _parse_target(self) -> tuple[TargetType, str]:
|
|
63
|
+
if isinstance(self._target, Path) or (
|
|
64
|
+
isinstance(self._target, str) and ":" not in self._target
|
|
65
|
+
):
|
|
66
|
+
return "unix", str(self._target)
|
|
67
|
+
|
|
68
|
+
if isinstance(self._target, str) and ":" in self._target:
|
|
69
|
+
host, port = str(self._target).split(":", 1)
|
|
70
|
+
host = host or "127.0.0.1"
|
|
71
|
+
elif isinstance(self._target, tuple) and len(self._target) == 2:
|
|
72
|
+
host = self._target[0]
|
|
73
|
+
port = str(self._target[1])
|
|
74
|
+
else:
|
|
75
|
+
raise Exception(f"Invalid target address: {self._target}")
|
|
76
|
+
|
|
77
|
+
return "tcp", f"{host}:{port}"
|
|
@@ -1,8 +1,8 @@
|
|
|
1
1
|
import logging
|
|
2
2
|
from pathlib import Path
|
|
3
3
|
|
|
4
|
-
from mrok.agent.sidecar.app import
|
|
5
|
-
from mrok.master import MasterBase
|
|
4
|
+
from mrok.agent.sidecar.app import SidecarProxyApp
|
|
5
|
+
from mrok.proxy.master import MasterBase
|
|
6
6
|
|
|
7
7
|
logger = logging.getLogger("mrok.proxy")
|
|
8
8
|
|
|
@@ -11,7 +11,7 @@ class SidecarAgent(MasterBase):
|
|
|
11
11
|
def __init__(
|
|
12
12
|
self,
|
|
13
13
|
identity_file: str,
|
|
14
|
-
|
|
14
|
+
target: str | Path | tuple[str, int],
|
|
15
15
|
workers: int = 4,
|
|
16
16
|
publishers_port: int = 50000,
|
|
17
17
|
subscribers_port: int = 50001,
|
|
@@ -23,10 +23,10 @@ class SidecarAgent(MasterBase):
|
|
|
23
23
|
publishers_port,
|
|
24
24
|
subscribers_port,
|
|
25
25
|
)
|
|
26
|
-
self.
|
|
26
|
+
self._target = target
|
|
27
27
|
|
|
28
28
|
def get_asgi_app(self):
|
|
29
|
-
return
|
|
29
|
+
return SidecarProxyApp(self._target)
|
|
30
30
|
|
|
31
31
|
|
|
32
32
|
def run(
|
|
@@ -1,5 +1,4 @@
|
|
|
1
1
|
import asyncio
|
|
2
|
-
import re
|
|
3
2
|
from typing import Annotated
|
|
4
3
|
|
|
5
4
|
import typer
|
|
@@ -7,11 +6,10 @@ from rich import print
|
|
|
7
6
|
|
|
8
7
|
from mrok.cli.commands.admin.utils import parse_tags
|
|
9
8
|
from mrok.conf import Settings
|
|
9
|
+
from mrok.constants import RE_EXTENSION_ID
|
|
10
10
|
from mrok.ziti.api import ZitiManagementAPI
|
|
11
11
|
from mrok.ziti.services import register_service
|
|
12
12
|
|
|
13
|
-
RE_EXTENSION_ID = re.compile(r"(?i)EXT-\d{4}-\d{4}")
|
|
14
|
-
|
|
15
13
|
|
|
16
14
|
async def do_register(settings: Settings, extension_id: str, tags: list[str] | None):
|
|
17
15
|
async with ZitiManagementAPI(settings) as api:
|
|
@@ -20,7 +18,7 @@ async def do_register(settings: Settings, extension_id: str, tags: list[str] | N
|
|
|
20
18
|
|
|
21
19
|
def validate_extension_id(extension_id: str) -> str:
|
|
22
20
|
if not RE_EXTENSION_ID.fullmatch(extension_id):
|
|
23
|
-
raise typer.BadParameter("
|
|
21
|
+
raise typer.BadParameter("it must match EXT-xxxx-yyyy (case-insensitive)")
|
|
24
22
|
return extension_id
|
|
25
23
|
|
|
26
24
|
|
|
@@ -1,6 +1,5 @@
|
|
|
1
1
|
import asyncio
|
|
2
2
|
import json
|
|
3
|
-
import re
|
|
4
3
|
from pathlib import Path
|
|
5
4
|
from typing import Annotated
|
|
6
5
|
|
|
@@ -8,11 +7,10 @@ import typer
|
|
|
8
7
|
|
|
9
8
|
from mrok.cli.commands.admin.utils import parse_tags
|
|
10
9
|
from mrok.conf import Settings
|
|
10
|
+
from mrok.constants import RE_EXTENSION_ID, RE_INSTANCE_ID
|
|
11
11
|
from mrok.ziti.api import ZitiClientAPI, ZitiManagementAPI
|
|
12
12
|
from mrok.ziti.identities import register_identity
|
|
13
13
|
|
|
14
|
-
RE_EXTENSION_ID = re.compile(r"(?i)EXT-\d{4}-\d{4}")
|
|
15
|
-
|
|
16
14
|
|
|
17
15
|
async def do_register(
|
|
18
16
|
settings: Settings, extension_id: str, instance_id: str, tags: list[str] | None
|
|
@@ -25,10 +23,16 @@ async def do_register(
|
|
|
25
23
|
|
|
26
24
|
def validate_extension_id(extension_id: str):
|
|
27
25
|
if not RE_EXTENSION_ID.fullmatch(extension_id):
|
|
28
|
-
raise typer.BadParameter("
|
|
26
|
+
raise typer.BadParameter("it must match EXT-xxxx-yyyy (case-insensitive)")
|
|
29
27
|
return extension_id
|
|
30
28
|
|
|
31
29
|
|
|
30
|
+
def validate_instance_id(instance_id: str):
|
|
31
|
+
if not RE_INSTANCE_ID.fullmatch(instance_id):
|
|
32
|
+
raise typer.BadParameter("it must match INS-xxxx-yyyy-zzzz (case-insensitive)")
|
|
33
|
+
return instance_id
|
|
34
|
+
|
|
35
|
+
|
|
32
36
|
def register(app: typer.Typer) -> None:
|
|
33
37
|
@app.command("instance")
|
|
34
38
|
def register_instance(
|
|
@@ -36,7 +40,9 @@ def register(app: typer.Typer) -> None:
|
|
|
36
40
|
extension_id: str = typer.Argument(
|
|
37
41
|
..., callback=validate_extension_id, help="Extension ID in format EXT-xxxx-yyyy"
|
|
38
42
|
),
|
|
39
|
-
instance_id: str = typer.Argument(
|
|
43
|
+
instance_id: str = typer.Argument(
|
|
44
|
+
..., callback=validate_instance_id, help="Instance ID in format INS-xxxx-yyyy-zzzz"
|
|
45
|
+
),
|
|
40
46
|
output: Path = typer.Argument(
|
|
41
47
|
...,
|
|
42
48
|
file_okay=True,
|
|
@@ -3,7 +3,7 @@ from typing import Annotated
|
|
|
3
3
|
|
|
4
4
|
import typer
|
|
5
5
|
|
|
6
|
-
from mrok import
|
|
6
|
+
from mrok import frontend
|
|
7
7
|
from mrok.cli.utils import number_of_workers
|
|
8
8
|
|
|
9
9
|
default_workers = number_of_workers()
|
|
@@ -11,7 +11,7 @@ default_workers = number_of_workers()
|
|
|
11
11
|
|
|
12
12
|
def register(app: typer.Typer) -> None:
|
|
13
13
|
@app.command("run")
|
|
14
|
-
def
|
|
14
|
+
def run_frontend(
|
|
15
15
|
ctx: typer.Context,
|
|
16
16
|
identity_file: Path = typer.Argument(
|
|
17
17
|
...,
|
|
@@ -45,5 +45,5 @@ def register(app: typer.Typer) -> None:
|
|
|
45
45
|
),
|
|
46
46
|
] = default_workers,
|
|
47
47
|
):
|
|
48
|
-
"""Run the mrok
|
|
49
|
-
|
|
48
|
+
"""Run the mrok frontend with Gunicorn and Uvicorn workers."""
|
|
49
|
+
frontend.run(identity_file, host, port, workers)
|
|
@@ -13,6 +13,7 @@ INSTANCE_RESPONSE = {
|
|
|
13
13
|
"name": "ins-1234-5678-0001.ext-1234-5678",
|
|
14
14
|
"extension": {"id": "EXT-1234-5678"},
|
|
15
15
|
"instance": {"id": "INS-1234-5678-0001"},
|
|
16
|
+
"status": "offline",
|
|
16
17
|
"tags": {
|
|
17
18
|
"account": "ACC-5555-3333",
|
|
18
19
|
MROK_VERSION_TAG_NAME: "1.0",
|
|
@@ -25,6 +26,7 @@ INSTANCE_CREATE_RESPONSE = {
|
|
|
25
26
|
"name": "ins-1234-5678-0001.ext-1234-5678",
|
|
26
27
|
"extension": {"id": "EXT-1234-5678"},
|
|
27
28
|
"instance": {"id": "INS-1234-5678-0001"},
|
|
29
|
+
"status": "online",
|
|
28
30
|
"identity": {
|
|
29
31
|
"ztAPI": "https://ziti.exts.platform.softwareone.com/edge/client/v1",
|
|
30
32
|
"ztAPIs": None,
|
|
@@ -35,6 +37,17 @@ INSTANCE_CREATE_RESPONSE = {
|
|
|
35
37
|
"ca": "pem:-----BEGIN CERTIFICATE-----\n...\n-----END CERTIFICATE-----\n",
|
|
36
38
|
},
|
|
37
39
|
"enableHa": None,
|
|
40
|
+
"mrok": {
|
|
41
|
+
"identity": "ins-0000-0000-0000.ext-0000-0000",
|
|
42
|
+
"extension": "ext-0000-0000",
|
|
43
|
+
"instance": "ins-0000-0000-0000",
|
|
44
|
+
"domain": "ext.s1.today",
|
|
45
|
+
"tags": {
|
|
46
|
+
"mrok-service": "ext-0000-0000",
|
|
47
|
+
"mrok-identity-type": "instance",
|
|
48
|
+
"mrok": "0.4.0",
|
|
49
|
+
},
|
|
50
|
+
},
|
|
38
51
|
},
|
|
39
52
|
"tags": {
|
|
40
53
|
"account": "ACC-5555-3333",
|
|
@@ -0,0 +1,75 @@
|
|
|
1
|
+
import re
|
|
2
|
+
|
|
3
|
+
from httpcore import AsyncConnectionPool
|
|
4
|
+
|
|
5
|
+
from mrok.conf import get_settings
|
|
6
|
+
from mrok.proxy.app import ProxyAppBase
|
|
7
|
+
from mrok.proxy.backend import AIOZitiNetworkBackend
|
|
8
|
+
from mrok.proxy.exceptions import InvalidTargetError
|
|
9
|
+
from mrok.proxy.types import Scope
|
|
10
|
+
|
|
11
|
+
RE_SUBDOMAIN = re.compile(r"(?i)^(?:EXT-\d{4}-\d{4}|INS-\d{4}-\d{4}-\d{4})$")
|
|
12
|
+
|
|
13
|
+
|
|
14
|
+
class FrontendProxyApp(ProxyAppBase):
|
|
15
|
+
def __init__(
|
|
16
|
+
self,
|
|
17
|
+
identity_file: str,
|
|
18
|
+
*,
|
|
19
|
+
max_connections: int = 1000,
|
|
20
|
+
max_keepalive_connections: int = 10,
|
|
21
|
+
keepalive_expiry: float = 120.0,
|
|
22
|
+
retries=0,
|
|
23
|
+
):
|
|
24
|
+
self._identity_file = identity_file
|
|
25
|
+
self._proxy_domain = self._get_proxy_domain()
|
|
26
|
+
super().__init__(
|
|
27
|
+
max_connections=max_connections,
|
|
28
|
+
max_keepalive_connections=max_keepalive_connections,
|
|
29
|
+
keepalive_expiry=keepalive_expiry,
|
|
30
|
+
retries=retries,
|
|
31
|
+
)
|
|
32
|
+
|
|
33
|
+
def setup_connection_pool(
|
|
34
|
+
self,
|
|
35
|
+
max_connections: int | None = 1000,
|
|
36
|
+
max_keepalive_connections: int | None = 100,
|
|
37
|
+
keepalive_expiry: float | None = 120.0,
|
|
38
|
+
retries: int = 0,
|
|
39
|
+
) -> AsyncConnectionPool:
|
|
40
|
+
return AsyncConnectionPool(
|
|
41
|
+
max_connections=max_connections,
|
|
42
|
+
max_keepalive_connections=max_keepalive_connections,
|
|
43
|
+
keepalive_expiry=keepalive_expiry,
|
|
44
|
+
retries=retries,
|
|
45
|
+
network_backend=AIOZitiNetworkBackend(self._identity_file),
|
|
46
|
+
)
|
|
47
|
+
|
|
48
|
+
def get_upstream_base_url(self, scope: Scope) -> str:
|
|
49
|
+
target = self._get_target_name(
|
|
50
|
+
{k.decode("latin1"): v.decode("latin1") for k, v in scope.get("headers", {})}
|
|
51
|
+
)
|
|
52
|
+
return f"http://{target.lower()}"
|
|
53
|
+
|
|
54
|
+
def _get_proxy_domain(self):
|
|
55
|
+
settings = get_settings()
|
|
56
|
+
return (
|
|
57
|
+
settings.proxy.domain
|
|
58
|
+
if settings.proxy.domain[0] == "."
|
|
59
|
+
else f".{settings.proxy.domain}"
|
|
60
|
+
)
|
|
61
|
+
|
|
62
|
+
def _get_target_from_header(self, headers: dict[str, str], name: str) -> str | None:
|
|
63
|
+
header_value = headers.get(name, "")
|
|
64
|
+
if self._proxy_domain in header_value:
|
|
65
|
+
if ":" in header_value:
|
|
66
|
+
header_value, _ = header_value.split(":", 1)
|
|
67
|
+
return header_value[: -len(self._proxy_domain)]
|
|
68
|
+
|
|
69
|
+
def _get_target_name(self, headers: dict[str, str]) -> str:
|
|
70
|
+
target = self._get_target_from_header(headers, "x-forwarded-host")
|
|
71
|
+
if not target:
|
|
72
|
+
target = self._get_target_from_header(headers, "host")
|
|
73
|
+
if not target or not RE_SUBDOMAIN.fullmatch(target):
|
|
74
|
+
raise InvalidTargetError()
|
|
75
|
+
return target
|
|
@@ -6,9 +6,8 @@ from gunicorn.app.base import BaseApplication
|
|
|
6
6
|
from uvicorn_worker import UvicornWorker
|
|
7
7
|
|
|
8
8
|
from mrok.conf import get_settings
|
|
9
|
-
from mrok.
|
|
9
|
+
from mrok.frontend.app import FrontendProxyApp
|
|
10
10
|
from mrok.logging import get_logging_config
|
|
11
|
-
from mrok.proxy.app import ProxyApp
|
|
12
11
|
|
|
13
12
|
|
|
14
13
|
class MrokUvicornWorker(UvicornWorker):
|
|
@@ -40,19 +39,14 @@ def run(
|
|
|
40
39
|
port: int,
|
|
41
40
|
workers: int,
|
|
42
41
|
):
|
|
43
|
-
|
|
42
|
+
app = FrontendProxyApp(str(identity_file))
|
|
44
43
|
|
|
45
|
-
asgi_app = LifespanWrapper(
|
|
46
|
-
proxy_app,
|
|
47
|
-
proxy_app.startup,
|
|
48
|
-
proxy_app.shutdown,
|
|
49
|
-
)
|
|
50
44
|
options = {
|
|
51
45
|
"bind": f"{host}:{port}",
|
|
52
46
|
"workers": workers,
|
|
53
|
-
"worker_class": "mrok.
|
|
47
|
+
"worker_class": "mrok.frontend.main.MrokUvicornWorker",
|
|
54
48
|
"logconfig_dict": get_logging_config(get_settings()),
|
|
55
49
|
"reload": False,
|
|
56
50
|
}
|
|
57
51
|
|
|
58
|
-
StandaloneApplication(
|
|
52
|
+
StandaloneApplication(app, options).run()
|
|
@@ -0,0 +1,175 @@
|
|
|
1
|
+
import abc
|
|
2
|
+
import logging
|
|
3
|
+
|
|
4
|
+
from httpcore import AsyncConnectionPool, Request
|
|
5
|
+
|
|
6
|
+
from mrok.proxy.exceptions import ProxyError
|
|
7
|
+
from mrok.proxy.streams import ASGIRequestBodyStream
|
|
8
|
+
from mrok.proxy.types import ASGIReceive, ASGISend, Scope
|
|
9
|
+
|
|
10
|
+
logger = logging.getLogger("mrok.proxy")
|
|
11
|
+
|
|
12
|
+
|
|
13
|
+
HOP_BY_HOP_HEADERS = [
|
|
14
|
+
b"connection",
|
|
15
|
+
b"keep-alive",
|
|
16
|
+
b"proxy-authenticate",
|
|
17
|
+
b"proxy-authorization",
|
|
18
|
+
b"te",
|
|
19
|
+
b"trailers",
|
|
20
|
+
b"transfer-encoding",
|
|
21
|
+
b"upgrade",
|
|
22
|
+
]
|
|
23
|
+
|
|
24
|
+
|
|
25
|
+
class ProxyAppBase(abc.ABC):
|
|
26
|
+
def __init__(
|
|
27
|
+
self,
|
|
28
|
+
*,
|
|
29
|
+
max_connections: int | None = 1000,
|
|
30
|
+
max_keepalive_connections: int | None = 10,
|
|
31
|
+
keepalive_expiry: float | None = 120.0,
|
|
32
|
+
retries: int = 0,
|
|
33
|
+
) -> None:
|
|
34
|
+
self._pool = self.setup_connection_pool(
|
|
35
|
+
max_connections=max_connections,
|
|
36
|
+
max_keepalive_connections=max_keepalive_connections,
|
|
37
|
+
keepalive_expiry=keepalive_expiry,
|
|
38
|
+
retries=retries,
|
|
39
|
+
)
|
|
40
|
+
|
|
41
|
+
@abc.abstractmethod
|
|
42
|
+
def setup_connection_pool(
|
|
43
|
+
self,
|
|
44
|
+
max_connections: int | None = 1000,
|
|
45
|
+
max_keepalive_connections: int | None = 10,
|
|
46
|
+
keepalive_expiry: float | None = 120.0,
|
|
47
|
+
retries: int = 0,
|
|
48
|
+
) -> AsyncConnectionPool:
|
|
49
|
+
raise NotImplementedError()
|
|
50
|
+
|
|
51
|
+
@abc.abstractmethod
|
|
52
|
+
def get_upstream_base_url(self, scope: Scope) -> str:
|
|
53
|
+
raise NotImplementedError()
|
|
54
|
+
|
|
55
|
+
async def __call__(self, scope: Scope, receive: ASGIReceive, send: ASGISend) -> None:
|
|
56
|
+
if scope.get("type") == "lifespan":
|
|
57
|
+
return
|
|
58
|
+
|
|
59
|
+
if scope.get("type") != "http":
|
|
60
|
+
await self._send_error(send, 500, "Unsupported")
|
|
61
|
+
return
|
|
62
|
+
|
|
63
|
+
try:
|
|
64
|
+
base_url = self.get_upstream_base_url(scope)
|
|
65
|
+
if base_url.endswith("/"): # pragma: no cover
|
|
66
|
+
base_url = base_url[:-1]
|
|
67
|
+
full_path = self._format_path(scope)
|
|
68
|
+
url = f"{base_url}{full_path}"
|
|
69
|
+
method = scope.get("method", "GET").encode()
|
|
70
|
+
headers = self._prepare_headers(scope)
|
|
71
|
+
|
|
72
|
+
body_stream = ASGIRequestBodyStream(receive)
|
|
73
|
+
|
|
74
|
+
request = Request(
|
|
75
|
+
method=method,
|
|
76
|
+
url=url,
|
|
77
|
+
headers=headers,
|
|
78
|
+
content=body_stream,
|
|
79
|
+
)
|
|
80
|
+
response = await self._pool.handle_async_request(request)
|
|
81
|
+
response_headers = []
|
|
82
|
+
for k, v in response.headers:
|
|
83
|
+
if k.lower() not in HOP_BY_HOP_HEADERS:
|
|
84
|
+
response_headers.append((k, v))
|
|
85
|
+
|
|
86
|
+
await send(
|
|
87
|
+
{
|
|
88
|
+
"type": "http.response.start",
|
|
89
|
+
"status": response.status,
|
|
90
|
+
"headers": response_headers,
|
|
91
|
+
}
|
|
92
|
+
)
|
|
93
|
+
|
|
94
|
+
async for chunk in response.stream: # type: ignore[union-attr]
|
|
95
|
+
await send(
|
|
96
|
+
{
|
|
97
|
+
"type": "http.response.body",
|
|
98
|
+
"body": chunk,
|
|
99
|
+
"more_body": True,
|
|
100
|
+
}
|
|
101
|
+
)
|
|
102
|
+
|
|
103
|
+
await send({"type": "http.response.body", "body": b"", "more_body": False})
|
|
104
|
+
await response.aclose()
|
|
105
|
+
|
|
106
|
+
except ProxyError as pe:
|
|
107
|
+
await self._send_error(send, pe.http_status, pe.message)
|
|
108
|
+
|
|
109
|
+
except Exception:
|
|
110
|
+
logger.exception("Unexpected error in forwarder")
|
|
111
|
+
await self._send_error(send, 502, "Bad Gateway")
|
|
112
|
+
|
|
113
|
+
async def _send_error(self, send: ASGISend, http_status: int, body: str):
|
|
114
|
+
try:
|
|
115
|
+
await send({"type": "http.response.start", "status": http_status, "headers": []})
|
|
116
|
+
await send({"type": "http.response.body", "body": body.encode()})
|
|
117
|
+
except Exception as e: # pragma: no cover
|
|
118
|
+
logger.error(f"Cannot send error response: {e}")
|
|
119
|
+
|
|
120
|
+
def _prepare_headers(self, scope: Scope) -> list[tuple[bytes, bytes]]:
|
|
121
|
+
headers: list[tuple[bytes, bytes]] = []
|
|
122
|
+
scope_headers = scope.get("headers", [])
|
|
123
|
+
|
|
124
|
+
for k, v in scope_headers:
|
|
125
|
+
if k.lower() not in HOP_BY_HOP_HEADERS:
|
|
126
|
+
headers.append((k, v))
|
|
127
|
+
|
|
128
|
+
self._merge_x_forwarded(headers, scope)
|
|
129
|
+
|
|
130
|
+
return headers
|
|
131
|
+
|
|
132
|
+
def _find_header(self, headers: list[tuple[bytes, bytes]], name: bytes) -> int | None:
|
|
133
|
+
"""Return index of header `name` in `headers`, or None if missing."""
|
|
134
|
+
lname = name.lower()
|
|
135
|
+
for i, (k, _) in enumerate(headers):
|
|
136
|
+
if k.lower() == lname:
|
|
137
|
+
return i
|
|
138
|
+
return None
|
|
139
|
+
|
|
140
|
+
def _merge_x_forwarded(self, headers: list[tuple[bytes, bytes]], scope: Scope) -> None:
|
|
141
|
+
client = scope.get("client")
|
|
142
|
+
if client:
|
|
143
|
+
client_ip = client[0].encode()
|
|
144
|
+
idx = self._find_header(headers, b"x-forwarded-for")
|
|
145
|
+
if idx is None:
|
|
146
|
+
headers.append((b"x-forwarded-for", client_ip))
|
|
147
|
+
else:
|
|
148
|
+
k, v = headers[idx]
|
|
149
|
+
headers[idx] = (k, v + b", " + client_ip)
|
|
150
|
+
|
|
151
|
+
server = scope.get("server")
|
|
152
|
+
if server:
|
|
153
|
+
if self._find_header(headers, b"x-forwarded-host") is None:
|
|
154
|
+
headers.append((b"x-forwarded-host", server[0].encode()))
|
|
155
|
+
if server[1] and self._find_header(headers, b"x-forwarded-port") is None:
|
|
156
|
+
headers.append((b"x-forwarded-port", str(server[1]).encode()))
|
|
157
|
+
|
|
158
|
+
# Always set the protocol to https for upstream
|
|
159
|
+
idx_proto = self._find_header(headers, b"x-forwarded-proto")
|
|
160
|
+
if idx_proto is None:
|
|
161
|
+
headers.append((b"x-forwarded-proto", b"https"))
|
|
162
|
+
else:
|
|
163
|
+
k, _ = headers[idx_proto]
|
|
164
|
+
headers[idx_proto] = (k, b"https")
|
|
165
|
+
|
|
166
|
+
def _format_path(self, scope: Scope) -> str:
|
|
167
|
+
raw_path = scope.get("raw_path")
|
|
168
|
+
if raw_path:
|
|
169
|
+
return raw_path.decode()
|
|
170
|
+
q = scope.get("query_string", b"")
|
|
171
|
+
path = scope.get("path", "/")
|
|
172
|
+
path_qs = path
|
|
173
|
+
if q:
|
|
174
|
+
path_qs += "?" + q.decode()
|
|
175
|
+
return path_qs
|
|
@@ -0,0 +1,43 @@
|
|
|
1
|
+
import asyncio
|
|
2
|
+
from collections.abc import Iterable
|
|
3
|
+
from pathlib import Path
|
|
4
|
+
|
|
5
|
+
import openziti
|
|
6
|
+
from httpcore import SOCKET_OPTION, AsyncNetworkBackend, AsyncNetworkStream
|
|
7
|
+
from openziti.context import ZitiContext
|
|
8
|
+
|
|
9
|
+
from mrok.proxy.exceptions import TargetUnavailableError
|
|
10
|
+
from mrok.proxy.streams import AIONetworkStream
|
|
11
|
+
|
|
12
|
+
|
|
13
|
+
class AIOZitiNetworkBackend(AsyncNetworkBackend):
|
|
14
|
+
def __init__(self, identity_file: str | Path) -> None:
|
|
15
|
+
self._identity_file = identity_file
|
|
16
|
+
self._ziti_ctx: ZitiContext | None = None
|
|
17
|
+
|
|
18
|
+
def _get_ziti_ctx(self) -> ZitiContext:
|
|
19
|
+
if self._ziti_ctx is None:
|
|
20
|
+
ctx, err = openziti.load(str(self._identity_file), timeout=10_000)
|
|
21
|
+
if err != 0:
|
|
22
|
+
raise Exception(f"Cannot create a Ziti context from the identity file: {err}")
|
|
23
|
+
self._ziti_ctx = ctx
|
|
24
|
+
return self._ziti_ctx
|
|
25
|
+
|
|
26
|
+
async def connect_tcp(
|
|
27
|
+
self,
|
|
28
|
+
host: str,
|
|
29
|
+
port: int,
|
|
30
|
+
timeout: float | None = None,
|
|
31
|
+
local_address: str | None = None,
|
|
32
|
+
socket_options: Iterable[SOCKET_OPTION] | None = None,
|
|
33
|
+
) -> AsyncNetworkStream:
|
|
34
|
+
ctx = self._get_ziti_ctx()
|
|
35
|
+
try:
|
|
36
|
+
sock = ctx.connect(host)
|
|
37
|
+
reader, writer = await asyncio.open_connection(sock=sock)
|
|
38
|
+
return AIONetworkStream(reader, writer)
|
|
39
|
+
except Exception as e:
|
|
40
|
+
raise TargetUnavailableError() from e
|
|
41
|
+
|
|
42
|
+
async def sleep(self, seconds: float) -> None:
|
|
43
|
+
await asyncio.sleep(seconds)
|
|
@@ -8,12 +8,12 @@ from typing import Any
|
|
|
8
8
|
import openziti
|
|
9
9
|
from uvicorn import config
|
|
10
10
|
|
|
11
|
-
from mrok.
|
|
12
|
-
from mrok.
|
|
11
|
+
from mrok.proxy.protocol import MrokHttpToolsProtocol
|
|
12
|
+
from mrok.proxy.types import ASGIApp
|
|
13
13
|
|
|
14
14
|
logger = logging.getLogger("mrok.proxy")
|
|
15
15
|
|
|
16
|
-
config.LIFESPAN["auto"] = "mrok.
|
|
16
|
+
config.LIFESPAN["auto"] = "mrok.proxy.lifespan:MrokLifespan"
|
|
17
17
|
|
|
18
18
|
|
|
19
19
|
class MrokBackendConfig(config.Config):
|