Initial commit

Author: nicholasjackson

Dockerfile

@@ -0,0 +1,16 @@
+FROM golang:1.16.3 as build
+
+RUN mkdir /go/app
+
+COPY ./ /go/app
+
+WORKDIR /go/app
+
+RUN CGO_ENABLED=0 go build -o ./bin/server .
+
+FROM alpine:latest
+
+RUN mkdir /app
+COPY --from=build /go/app/bin/server /app/server
+
+ENTRYPOINT ["/app/server"]

Makefile

@@ -0,0 +1,5 @@
+build_docker:
+	docker build -t nicholasjackson/connect-native:v0.0.3 .
+
+push_docker: build_docker
+	docker push nicholasjackson/connect-native:v0.0.3

go.mod

@@ -0,0 +1,13 @@
+module github.com/service-mesh-patterns/agentless-proxy-app
+
+go 1.15
+
+require (
+	github.com/hashicorp/consul v1.8.0
+	//github.com/hashicorp/consul v0.0.0-20210331183933-6e69829edbde
+	github.com/hashicorp/consul/api v1.8.0
+	github.com/hashicorp/go-hclog v0.14.1
+	github.com/nicholasjackson/env v0.6.0
+)
+
+//replace github.com/hashicorp/consul/api v1.8.0 => github.com/hashicorp/consul/api v0.0.0-20210331183933-6e69829edbde

go.sum

@@ -0,0 +1,132 @@
+package main
+
+import (
+	"encoding/json"
+	"fmt"
+	"net/http"
+	"os"
+	"os/signal"
+	"syscall"
+	"time"
+
+	"github.com/hashicorp/consul/api"
+	"github.com/hashicorp/consul/connect"
+	"github.com/hashicorp/go-hclog"
+	"github.com/nicholasjackson/env"
+)
+
+var name = env.String("SERVICE_NAME", false, "app", "Name of the service")
+var bindAddress = env.String("BIND_ADDRESS", false, "0.0.0.0", "Bind address of the service")
+var bindPort = env.Int("BIND_PORT", false, 9090, "Bind port of the service")
+var upstream = env.String("UPSTREAM", false, "", "Upstream service to call when the service receives an inbound request")
+var public = env.Bool("PUBLIC", false, false, "Does the service have a public API, if false the server is configured to use mTLS")
+var address = env.String("IP_ADDRESS", false, "localhost", "IP address of the service")
+
+func main() {
+	log := hclog.Default()
+
+	err := env.Parse()
+	if err != nil {
+		log.Error("Unable to parse environment", "error", err)
+		os.Exit(1)
+	}
+
+	//	// Create a Consul API client
+	client, err := api.NewClient(api.DefaultConfig())
+	if err != nil {
+		log.Error("Unable to create Consul client", "error", err)
+		os.Exit(1)
+	}
+
+	// register the service
+	serviceID := fmt.Sprintf("%s-%d", *name, time.Now().UnixNano())
+	client.Agent().ServiceRegister(&api.AgentServiceRegistration{
+		Name:    *name,
+		ID:      serviceID,
+		Address: *address,
+		Port:    *bindPort,
+		Connect: &api.AgentServiceConnect{
+			Native: true,
+		},
+	})
+
+	// Create an instance representing this service. "my-service" is the
+	// name of _this_ service. The service should be cleaned up via Close.
+	svc, err := connect.NewService(*name, client)
+	if err != nil {
+		log.Error("Unable to register service", "error", err)
+		os.Exit(1)
+	}
+	defer svc.Close()
+
+	// register the handler
+	http.HandleFunc("/", handleRoot(svc, *upstream, log))
+
+	log.Info("Starting server", "address", *bindAddress, "port", *bindPort)
+	if !*public {
+		// The service is not public so create a HTTP server that serves via Connect
+		server := &http.Server{
+			Addr:      fmt.Sprintf("%s:%d", *bindAddress, *bindPort),
+			TLSConfig: svc.ServerTLSConfig(),
+			Handler:   http.DefaultServeMux,
+			// ... other standard fields
+		}
+
+		go server.ListenAndServeTLS("", "")
+	} else {
+		// Start a public server
+		go http.ListenAndServe(fmt.Sprintf("%s:%d", *bindAddress, *bindPort), nil)
+	}
+
+	sigs := make(chan os.Signal, 1)
+	done := make(chan bool, 1)
+
+	signal.Notify(sigs, syscall.SIGINT, syscall.SIGTERM)
+
+	go func() {
+		sig := <-sigs
+		fmt.Println()
+		fmt.Println(sig)
+		done <- true
+	}()
+
+	fmt.Println("awaiting signal")
+	<-done
+	fmt.Println("exiting")
+
+	client.Agent().ServiceDeregister(serviceID)
+
+}
+
+type Response struct {
+	Service      string    `json:"service"`
+	UpstreamCall *Response `json:"upstream_call,omitempty"`
+}
+
+func handleRoot(svc *connect.Service, upstream string, log hclog.Logger) func(rw http.ResponseWriter, r *http.Request) {
+	return func(rw http.ResponseWriter, r *http.Request) {
+		resp := Response{Service: svc.Name()}
+
+		if upstream != "" {
+			r, err := svc.HTTPClient().Get(upstream)
+			if err != nil || r == nil || r.StatusCode != http.StatusOK {
+				http.Error(rw, fmt.Sprintf("Unable to contact upstream, error: %s", err), http.StatusInternalServerError)
+				return
+			}
+
+			upstreamResponse := &Response{}
+			err = json.NewDecoder(r.Body).Decode(upstreamResponse)
+			if err != nil {
+				http.Error(rw, "Unable to decode upstream response", http.StatusInternalServerError)
+				return
+			}
+
+			resp.UpstreamCall = upstreamResponse
+		}
+
+		err := json.NewEncoder(rw).Encode(resp)
+		if err != nil {
+			log.Error("Unable to write response", "error", err)
+		}
+	}
+}

main.go

@@ -0,0 +1,40 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: api-deployment
+  labels:
+    app: api
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: api
+  template:
+    metadata:
+      labels:
+        app: api
+    spec:
+      containers:
+      - name: api
+        image: nicholasjackson/connect-native:v0.0.3
+        ports:
+        - containerPort: 9090
+        env:
+        - name: HOST_IP
+          valueFrom:
+            fieldRef:
+               fieldPath: status.hostIP
+        - name: POD_IP
+          valueFrom:
+            fieldRef:
+              fieldPath: status.podIP
+        - name: CONSUL_HTTP_ADDR
+          value: http://$(HOST_IP):8500
+        - name: SERVICE_NAME
+          value: api
+        - name: PUBLIC
+          value: "true"
+        - name: UPSTREAM
+          value: https://payments.service.consul
+        - name: IP_ADDRESS
+          value: $(POD_IP)

shipyard/k8s_config/api.yaml

@@ -0,0 +1,36 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: payments-deployment
+  labels:
+    app: payments
+spec:
+  replicas: 3
+  selector:
+    matchLabels:
+      app: payments
+  template:
+    metadata:
+      labels:
+        app: payments
+    spec:
+      containers:
+      - name: payments
+        image: nicholasjackson/connect-native:v0.0.3
+        ports:
+        - containerPort: 9090
+        env:
+        - name: HOST_IP
+          valueFrom:
+            fieldRef:
+               fieldPath: status.hostIP
+        - name: POD_IP
+          valueFrom:
+            fieldRef:
+              fieldPath: status.podIP
+        - name: CONSUL_HTTP_ADDR
+          value: http://$(HOST_IP):8500
+        - name: SERVICE_NAME
+          value: payments
+        - name: IP_ADDRESS
+          value: $(POD_IP)

shipyard/k8s_config/payments.yaml

@@ -0,0 +1,40 @@
+variable "consul_k8s_cluster" {
+  default = "dc1"
+}
+
+variable "consul_k8s_network" {
+  default = "dc1"
+}
+
+k8s_cluster "dc1" {
+  driver  = "k3s"
+
+  nodes = 1
+
+  network {
+    name = "network.dc1"
+  }
+}
+
+network "dc1" {
+  subnet = "10.5.0.0/16"
+}
+ 
+module "consul" {
+  source = "github.com/shipyard-run/blueprints/modules/kubernetes-consul"
+}
+
+k8s_config "app" {
+  depends_on = ["module.consul"]
+
+  cluster = "k8s_cluster.dc1"
+  paths = [
+    "./k8s_config/",
+  ]
+
+  wait_until_ready = true
+}
+
+output "KUBECONFIG" {
+  value = k8s_config("dc1")
+}