ETOS SSE v2alpha (#91)

* Clean up configurations to utilize composition instead

* Add v2alpha version of the SSE server

* Create a streamer interface and add a file streamer

* Review comments

* Fix a rebase mistake

* Add tests for these new endpoints

Author: t-persson

cmd/keys/main.go

@@ -0,0 +1,135 @@
+// Copyright Axis Communications AB.
+//
+// For a full list of individual contributors, please see the commit history.
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//	http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+package main
+
+import (
+	"context"
+	"net/http"
+	"os"
+	"os/signal"
+	"runtime/debug"
+	"syscall"
+	"time"
+
+	auth "github.com/eiffel-community/etos-api/internal/authorization"
+	"github.com/eiffel-community/etos-api/internal/config"
+	"github.com/eiffel-community/etos-api/internal/logging"
+	"github.com/eiffel-community/etos-api/internal/server"
+	"github.com/eiffel-community/etos-api/pkg/application"
+	v1alpha "github.com/eiffel-community/etos-api/pkg/keys/v1alpha"
+	"github.com/sirupsen/logrus"
+	"github.com/snowzach/rotatefilehook"
+	"go.elastic.co/ecslogrus"
+)
+
+// main sets up logging and starts up the key webserver.
+func main() {
+	cfg := config.NewKeyConfig()
+	ctx := context.Background()
+
+	var hooks []logrus.Hook
+	if fileHook := fileLogging(cfg); fileHook != nil {
+		hooks = append(hooks, fileHook)
+	}
+	logger, err := logging.Setup(cfg.LogLevel(), hooks)
+	if err != nil {
+		logrus.Fatal(err.Error())
+	}
+
+	hostname, err := os.Hostname()
+	if err != nil {
+		logrus.Fatal(err.Error())
+	}
+	log := logger.WithFields(logrus.Fields{
+		"hostname":    hostname,
+		"application": "ETOS API Key Server",
+		"version":     vcsRevision(),
+		"name":        "ETOS API",
+	})
+
+	pub, err := cfg.PublicKey()
+	if err != nil {
+		log.Fatal(err.Error())
+	}
+	priv, err := cfg.PrivateKey()
+	if err != nil {
+		log.Fatal(err.Error())
+	}
+	authorizer, err := auth.NewAuthorizer(pub, priv)
+	if err != nil {
+		log.Fatal(err.Error())
+	}
+	v1AlphaKeys := v1alpha.New(ctx, cfg, log, authorizer)
+	defer v1AlphaKeys.Close()
+
+	log.Info("Loading Key routes")
+	app := application.New(v1AlphaKeys)
+	srv := server.NewWebService(cfg, log, app)
+
+	done := make(chan os.Signal, 1)
+	signal.Notify(done, syscall.SIGINT, syscall.SIGTERM)
+
+	go func() {
+		if err := srv.Start(); err != nil && err != http.ErrServerClosed {
+			log.Errorf("Webserver shutdown: %+v", err)
+		}
+	}()
+
+	sig := <-done
+	log.Infof("%s received", sig.String())
+
+	ctx, cancel := context.WithTimeout(ctx, 1*time.Minute)
+	defer cancel()
+
+	if err := srv.Close(ctx); err != nil {
+		log.Errorf("Webserver shutdown failed: %+v", err)
+	}
+	log.Info("Wait for shutdown to complete")
+}
+
+// fileLogging adds a hook into a slice of hooks, if the filepath configuration is set
+func fileLogging(cfg config.Config) logrus.Hook {
+	if filePath := cfg.LogFilePath(); filePath != "" {
+		// TODO: Make these parameters configurable.
+		// NewRotateFileHook cannot return an error which is why it's set to '_'.
+		rotateFileHook, _ := rotatefilehook.NewRotateFileHook(rotatefilehook.RotateFileConfig{
+			Filename:   filePath,
+			MaxSize:    10, // megabytes
+			MaxBackups: 3,
+			MaxAge:     0, // days
+			Level:      logrus.DebugLevel,
+			Formatter: &ecslogrus.Formatter{
+				DataKey: "labels",
+			},
+		})
+		return rotateFileHook
+	}
+	return nil
+}
+
+// vcsRevision returns vcs revision from build info, if any. Otherwise '(unknown)'.
+func vcsRevision() string {
+	buildInfo, ok := debug.ReadBuildInfo()
+	if !ok {
+		return "(unknown)"
+	}
+	for _, val := range buildInfo.Settings {
+		if val.Key == "vcs.revision" {
+			return val.Value
+		}
+	}
+	return "(unknown)"
+}

cmd/sse/main.go

@@ -24,12 +24,17 @@ import (
 	"syscall"
 	"time"
 
+	auth "github.com/eiffel-community/etos-api/internal/authorization"
 	"github.com/eiffel-community/etos-api/internal/config"
 	"github.com/eiffel-community/etos-api/internal/logging"
 	"github.com/eiffel-community/etos-api/internal/server"
+	"github.com/eiffel-community/etos-api/internal/stream"
 	"github.com/eiffel-community/etos-api/pkg/application"
 	v1 "github.com/eiffel-community/etos-api/pkg/sse/v1"
 	v1alpha "github.com/eiffel-community/etos-api/pkg/sse/v1alpha"
+	v2alpha "github.com/eiffel-community/etos-api/pkg/sse/v2alpha"
+	"github.com/julienschmidt/httprouter"
+	rabbitMQStream "github.com/rabbitmq/rabbitmq-stream-go-client/pkg/stream"
 	"github.com/sirupsen/logrus"
 	"github.com/snowzach/rotatefilehook"
 	"go.elastic.co/ecslogrus"
@@ -66,7 +71,37 @@ func main() {
 	v1SSE := v1.New(cfg, log, ctx)
 	defer v1SSE.Close()
 
-	app := application.New(v1AlphaSSE, v1SSE)
+	pub, err := cfg.PublicKey()
+	if err != nil {
+		log.Fatal(err.Error())
+	}
+	var app *httprouter.Router
+	// Only load v2alpha if a public key exists.
+	if pub != nil {
+		authorizer, err := auth.NewAuthorizer(pub, nil)
+		if err != nil {
+			log.Fatal(err.Error())
+		}
+
+		var streamer stream.Streamer
+		if cfg.RabbitMQURI() != "" {
+			log.Info("Starting up a RabbitMQStreamer")
+			streamer, err = stream.NewRabbitMQStreamer(*rabbitMQStream.NewEnvironmentOptions().SetUri(cfg.RabbitMQURI()), log)
+		} else {
+			log.Warning("RabbitMQURI is not set, defaulting to FileStreamer")
+			streamer, err = stream.NewFileStreamer(100*time.Millisecond, log)
+		}
+		if err != nil {
+			log.Fatal(err.Error())
+		}
+		v2AlphaSSE := v2alpha.New(ctx, cfg, log, streamer, authorizer)
+		defer v2AlphaSSE.Close()
+		app = application.New(v1AlphaSSE, v1SSE, v2AlphaSSE)
+	} else {
+		log.Warning("Public key does not exist, won't enable v2alpha endpoint")
+		app = application.New(v1AlphaSSE, v1SSE)
+	}
+
 	srv := server.NewWebService(cfg, log, app)
 
 	done := make(chan os.Signal, 1)

go.mod

@@ -7,20 +7,27 @@ toolchain go1.22.1
 require (
 	github.com/eiffel-community/eiffelevents-sdk-go v0.0.0-20240807115026-5ca5c194b7dc
 	github.com/fernet/fernet-go v0.0.0-20240119011108-303da6aec611
+	github.com/golang-jwt/jwt/v5 v5.2.1
 	github.com/google/uuid v1.6.0
 	github.com/jmespath/go-jmespath v0.4.0
 	github.com/julienschmidt/httprouter v1.3.0
-	github.com/machinebox/graphql v0.2.2
 	github.com/maxcnunes/httpfake v1.2.4
 	github.com/package-url/packageurl-go v0.1.3
+	github.com/rabbitmq/amqp091-go v1.10.0
+	github.com/rabbitmq/rabbitmq-stream-go-client v1.4.10
 	github.com/sethvargo/go-retry v0.3.0
 	github.com/sirupsen/logrus v1.9.3
 	github.com/snowzach/rotatefilehook v0.0.0-20220211133110-53752135082d
 	github.com/stretchr/testify v1.9.0
 	go.elastic.co/ecslogrus v1.0.0
-	go.etcd.io/etcd/api/v3 v3.5.15
 	go.etcd.io/etcd/client/v3 v3.5.15
 	go.etcd.io/etcd/server/v3 v3.5.14
+	go.opentelemetry.io/otel v1.20.0
+	go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.20.0
+	go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.20.0
+	go.opentelemetry.io/otel/sdk v1.20.0
+	go.opentelemetry.io/otel/trace v1.20.0
+	k8s.io/api v0.31.1
 	k8s.io/apimachinery v0.31.1
 	k8s.io/client-go v0.31.1
 )
@@ -46,6 +53,7 @@ require (
 	github.com/gogo/protobuf v1.3.2 // indirect
 	github.com/golang-jwt/jwt/v4 v4.4.2 // indirect
 	github.com/golang/protobuf v1.5.4 // indirect
+	github.com/golang/snappy v0.0.4 // indirect
 	github.com/google/btree v1.0.1 // indirect
 	github.com/google/gnostic-models v0.6.8 // indirect
 	github.com/google/go-cmp v0.6.0 // indirect
@@ -59,21 +67,22 @@ require (
 	github.com/jonboulle/clockwork v0.2.2 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/klauspost/compress v1.17.9 // indirect
 	github.com/magefile/mage v1.9.0 // indirect
 	github.com/mailru/easyjson v0.7.7 // indirect
-	github.com/matryer/is v1.4.1 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.1 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/pierrec/lz4 v2.6.1+incompatible // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/pmezard/go-difflib v1.0.1-0.20181226105442-5d4384ee4fb2 // indirect
 	github.com/prometheus/client_golang v1.11.1 // indirect
 	github.com/prometheus/client_model v0.2.0 // indirect
 	github.com/prometheus/common v0.26.0 // indirect
 	github.com/prometheus/procfs v0.6.0 // indirect
-	github.com/rabbitmq/amqp091-go v1.10.0 // indirect
 	github.com/soheilhy/cmux v0.1.5 // indirect
+	github.com/spaolacci/murmur3 v1.1.0 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
 	github.com/tidwall/gjson v1.17.1 // indirect
 	github.com/tidwall/match v1.1.1 // indirect
@@ -82,29 +91,24 @@ require (
 	github.com/x448/float16 v0.8.4 // indirect
 	github.com/xiang90/probing v0.0.0-20190116061207-43a291ad63a2 // indirect
 	go.etcd.io/bbolt v1.3.10 // indirect
+	go.etcd.io/etcd/api/v3 v3.5.15 // indirect
 	go.etcd.io/etcd/client/pkg/v3 v3.5.15 // indirect
 	go.etcd.io/etcd/client/v2 v2.305.14 // indirect
 	go.etcd.io/etcd/pkg/v3 v3.5.14 // indirect
 	go.etcd.io/etcd/raft/v3 v3.5.14 // indirect
 	go.opentelemetry.io/contrib/instrumentation/google.golang.org/grpc/otelgrpc v0.46.0 // indirect
-	go.opentelemetry.io/otel v1.20.0 // indirect
-	go.opentelemetry.io/otel/exporters/otlp/otlptrace v1.20.0 // indirect
-	go.opentelemetry.io/otel/exporters/otlp/otlptrace/otlptracegrpc v1.20.0 // indirect
 	go.opentelemetry.io/otel/metric v1.20.0 // indirect
-	go.opentelemetry.io/otel/sdk v1.20.0 // indirect
-	go.opentelemetry.io/otel/trace v1.20.0 // indirect
 	go.opentelemetry.io/proto/otlp v1.0.0 // indirect
 	go.uber.org/atomic v1.7.0 // indirect
 	go.uber.org/multierr v1.6.0 // indirect
 	go.uber.org/zap v1.17.0 // indirect
-	golang.org/x/crypto v0.24.0 // indirect
-	golang.org/x/net v0.26.0 // indirect
+	golang.org/x/crypto v0.26.0 // indirect
+	golang.org/x/net v0.28.0 // indirect
 	golang.org/x/oauth2 v0.21.0 // indirect
-	golang.org/x/sys v0.21.0 // indirect
-	golang.org/x/term v0.21.0 // indirect
-	golang.org/x/text v0.16.0 // indirect
+	golang.org/x/sys v0.23.0 // indirect
+	golang.org/x/term v0.23.0 // indirect
+	golang.org/x/text v0.17.0 // indirect
 	golang.org/x/time v0.3.0 // indirect
-	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/genproto v0.0.0-20230822172742-b8732ec3820d // indirect
 	google.golang.org/genproto/googleapis/api v0.0.0-20230822172742-b8732ec3820d // indirect
 	google.golang.org/genproto/googleapis/rpc v0.0.0-20230822172742-b8732ec3820d // indirect
@@ -114,7 +118,6 @@ require (
 	gopkg.in/natefinch/lumberjack.v2 v2.2.1 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
-	k8s.io/api v0.31.1 // indirect
 	k8s.io/klog/v2 v2.130.1 // indirect
 	k8s.io/kube-openapi v0.0.0-20240228011516-70dd3763d340 // indirect
 	k8s.io/utils v0.0.0-20240711033017-18e509b52bc8 // indirect