add support for optional swagger ui (#1005)

* add support for optional swagger ui
[ci]

Signed-off-by: Peter Kvokacka <peter.kvokacka@digitalasset.com>

* [ci]

Signed-off-by: Peter Kvokacka <peter.kvokacka@digitalasset.com>

* [ci]

Signed-off-by: Peter Kvokacka <peter.kvokacka@digitalasset.com>

---------

Signed-off-by: Peter Kvokacka <peter.kvokacka@digitalasset.com>

Author: peterkvokacka-da

cluster/compose/localnet/README.md

@@ -86,6 +86,18 @@ The `*.localhost` domains will resolve to your local host IP `127.0.0.1`.
 - **App Provider**: app-provider
 - **SV**: sv
 
+## Swagger UI
+
+When the `swagger-ui` profile is enabled, the Swagger UI for the `JSON Ledger API HTTP Endpoints` across all running participants is available at [http://localhost:9090](http://localhost:9090).
+Note: Some endpoints require a JWT token when using the **Try it out** feature. One method to obtain this token is via the Canton Console. Start the Canton Console and execute the following command:
+```
+app-provider.adminToken
+```
+
+For proper functionality, Swagger UI relies on a localhost nginx proxy for `canton.localhost` configured for each participant. For example, the `JSON Ledger API HTTP Endpoints` for the app-provider
+can be accessed at the nginx proxy URL `http://canton.localhost:${APP_PROVIDER_UI_PORT}` via Swagger UI, which corresponds to accessing `localhost:3${PARTICIPANT_JSON_API_PORT}` directly.
+The nginx proxy only adds additional headers to resolve CORS issues within Swagger UI.
+
 
 ## Run in localnet
 ### start
@@ -110,7 +122,30 @@ docker compose --env-file $LOCALNET_DIR/compose.env \
                --profile app-provider \
                --profile app-user down -v
 ```
-
+### start with swagger-ui
+```
+docker compose --env-file $LOCALNET_DIR/compose.env \
+               --env-file $LOCALNET_DIR/env/common.env \
+               --env-file $LOCALNET_DIR/env/local.env \
+               -f $LOCALNET_DIR/compose.yaml \
+               -f $LOCALNET_DIR/resource-constraints.yaml \
+               --profile sv \
+               --profile app-provider \
+               --profile app-user \
+               --profile swagger-ui up -d
+```
+### stop with swagger-ui
+```
+docker compose --env-file $LOCALNET_DIR/compose.env \
+               --env-file $LOCALNET_DIR/env/common.env \
+               --env-file $LOCALNET_DIR/env/local.env \
+               -f $LOCALNET_DIR/compose.yaml \
+               -f $LOCALNET_DIR/resource-constraints.yaml \
+               --profile sv \
+               --profile app-provider \
+               --profile app-user \
+               --profile swagger-ui down -v
+```
 ### console
 ```
 docker compose --env-file $LOCALNET_DIR/compose.env \

cluster/compose/localnet/compose.yaml

@@ -68,6 +68,7 @@ services:
       - ${LOCALNET_DIR}/conf/nginx/app-provider.conf:/etc/nginx/templates/app-provider.c${APP_PROVIDER_PROFILE}f.template
       - ${LOCALNET_DIR}/conf/nginx/app-user.conf:/etc/nginx/templates/app-user.c${APP_USER_PROFILE}f.template
       - ${LOCALNET_DIR}/conf/nginx/sv.conf:/etc/nginx/templates/sv.c${SV_PROFILE}f.template
+      - ${LOCALNET_DIR}/conf/nginx/swagger-ui:/etc/nginx/includes
     ports:
       - "${SV_UI_PORT}:${SV_UI_PORT}"
       - "${APP_PROVIDER_UI_PORT}:${APP_PROVIDER_UI_PORT}"
@@ -192,6 +193,20 @@ services:
     profiles:
       - console
 
+  swagger-ui:
+    image: swaggerapi/swagger-ui
+    container_name: swagger-ui
+    volumes:
+      - ${LOCALNET_DIR}/docker/swagger-ui/entrypoint.sh:/entrypoint.sh
+    environment:
+      URLS: '[{"url": "http://canton.localhost:${APP_PROVIDER_UI_PORT}/docs/openapi", "name": "app-provider"},
+              {"url": "http://canton.localhost:${APP_USER_UI_PORT}/docs/openapi", "name": "app-user"},
+              {"url": "http://canton.localhost:${SV_UI_PORT}/docs/openapi", "name": "sv"}]'
+    ports:
+      - "${SWAGGER_UI_PORT}:8080"
+    profiles:
+      - swagger-ui
+
   ###############################################################################################################
   ### Application User
   ###############################################################################################################

cluster/compose/localnet/conf/nginx/app-provider.conf

@@ -16,8 +16,15 @@ server {
 
 server {
     listen ${APP_PROVIDER_UI_PORT};
-    server_name swagger.localhost;
+    server_name canton.localhost;
     location /docs/openapi {
-        proxy_pass http://canton:3${PARTICIPANT_JSON_API_PORT}/docs/openapi;
+      proxy_pass http://canton:3${PARTICIPANT_JSON_API_PORT}/docs/openapi;
+      include /etc/nginx/includes/cors-headers.conf;
+    }
+
+    location /v2 {
+      include /etc/nginx/includes/cors-options-headers.conf;
+      proxy_pass http://canton:3${PARTICIPANT_JSON_API_PORT}/v2;
+      include /etc/nginx/includes/cors-headers.conf;
     }
 }

cluster/compose/localnet/conf/nginx/app-user.conf

@@ -15,9 +15,16 @@ server {
 }
 
 server {
-    listen ${APP_USER_UI_PORT};
-    server_name swagger.localhost;
-    location /docs/openapi {
-        proxy_pass http://canton:2${PARTICIPANT_JSON_API_PORT}/docs/openapi;
-    }
+  listen ${APP_USER_UI_PORT};
+  server_name canton.localhost;
+  location /docs/openapi {
+    proxy_pass http://canton:2${PARTICIPANT_JSON_API_PORT}/docs/openapi;
+    include /etc/nginx/includes/cors-headers.conf;
+  }
+
+  location /v2 {
+    include /etc/nginx/includes/cors-options-headers.conf;
+    proxy_pass http://canton:2${PARTICIPANT_JSON_API_PORT}/v2;
+    include /etc/nginx/includes/cors-headers.conf;
+  }
 }

cluster/compose/localnet/conf/nginx/sv.conf

@@ -57,3 +57,18 @@ server {
     proxy_pass http://wallet-web-ui-sv:8080/;
   }
 }
+
+server {
+  listen ${SV_UI_PORT};
+  server_name canton.localhost;
+  location /docs/openapi {
+    proxy_pass http://canton:4${PARTICIPANT_JSON_API_PORT}/docs/openapi;
+    include /etc/nginx/includes/cors-headers.conf;
+  }
+
+  location /v2 {
+    include /etc/nginx/includes/cors-options-headers.conf;
+    proxy_pass http://canton:4${PARTICIPANT_JSON_API_PORT}/v2;
+    include /etc/nginx/includes/cors-headers.conf;
+  }
+}

cluster/compose/localnet/conf/nginx/swagger-ui/cors-headers.conf

@@ -0,0 +1,3 @@
+add_header Access-Control-Allow-Origin *;
+add_header Access-Control-Allow-Methods 'GET, POST, OPTIONS';
+add_header Access-Control-Allow-Headers 'Origin, Content-Type, Accept';

cluster/compose/localnet/conf/nginx/swagger-ui/cors-options-headers.conf

@@ -0,0 +1,9 @@
+if ($request_method = OPTIONS) {
+  add_header 'Access-Control-Allow-Origin' "$http_origin" always;
+  add_header 'Access-Control-Allow-Methods' 'GET, POST, OPTIONS, PUT, DELETE' always;
+  add_header 'Access-Control-Allow-Headers' '*' always;
+  add_header 'Access-Control-Max-Age' 1728000;
+  add_header 'Content-Type' 'text/plain charset=UTF-8';
+  add_header 'Content-Length' 0;
+  return 204;
+}

cluster/compose/localnet/env/common.env

@@ -29,6 +29,7 @@ CANTON_GRPC_HEALTHCHECK_PORT=${CANTON_GRPC_HEALTHCHECK_PORT:-5061}
 APP_USER_UI_PORT=${APP_USER_UI_PORT:-2000}
 APP_PROVIDER_UI_PORT=${APP_PROVIDER_UI_PORT:-3000}
 SV_UI_PORT=${SV_UI_PORT:-4000}
+SWAGGER_UI_PORT=${SWAGGER_UI_PORT:-9090}
 
 SPLICE_SV_IS_DEVNET=${SPLICE_SV_IS_DEVNET:-true}
 SPLICE_APP_VALIDATOR_AUTH_AUDIENCE=${SPLICE_APP_VALIDATOR_AUTH_AUDIENCE:-https://sv.example.com}

cluster/compose/localnet/resource-constraints.yaml

@@ -15,7 +15,7 @@ services:
     environment:
       _JAVA_OPTIONS: "-XX:-UseCompressedOops -Xms512m -Xmx2560m"
   console:
-    mem_limit: 1g
+    mem_limit: 2g
     environment:
       _JAVA_OPTIONS: "-XX:+UseContainerSupport -XX:-UseCompressedOops"
   scan-web-ui:
@@ -28,3 +28,5 @@ services:
     mem_limit: 256mb
   wallet-web-ui-sv:
     mem_limit: 256mb
+  swagger-ui:
+    mem_limit: 128mb