Project

General

Profile

Actions

Feature #17209

open

Controller forwards web requests to crunch worker nodes

Added by Tom Clegg almost 4 years ago. Updated 7 months ago.

Status:
In Progress
Priority:
Normal
Assigned To:
Category:
-
Target version:
Story points:
-
Release:
Release relationship:
Auto

Description

Controller checks authorization, looks up the addr:port of the relevant crunch-run process, and forwards the request there.

Details on #17207


Subtasks 1 (1 open0 closed)

Task #17660: Review 17209-http-forwardIn ProgressWard Vandewege05/11/2021Actions

Related issues

Related to Arvados Epics - Idea #17207: External access to web services running in containersNewActions
Related to Arvados - Feature #17206: crunch-run reverse proxies HTTP requests to containerNewActions
Actions #1

Updated by Tom Clegg almost 4 years ago

  • Related to Idea #17207: External access to web services running in containers added
Actions #2

Updated by Tom Clegg over 3 years ago

  • Assigned To set to Tom Clegg
  • Status changed from New to In Progress

This provides the basic functionality of forwarding external requests to https://{uuid}-{port}.zzzzz.example.com/foo through Nginx+controller to http://{container}:{port}/foo on the worker node:

17209-http-forward @ bb050a077ae014a8db2e58589f1b62dc6462afe2 -- developer-run-tests: #2469

Todo:
  • Upgrade notes (add wildcard to nginx conf)
  • Documentation (as usual I could use some help with this)
  • Config knob to enable/disable (currently follows "shell access" configs, right up to the error messages "shell access is disabled in config")
  • Tests for "not permitted/configured" and "missing/invalid token" cases
  • Tests for redirect-with-cookie behavior (and rename the query param from "arvados_api_token" to "api_token" to match other places where we do this)
Actions #3

Updated by Tom Clegg over 3 years ago

  • Estimated time set to 0.00 h
  • Tracker changed from Feature to Task
Actions #4

Updated by Tom Clegg over 3 years ago

  • Tracker changed from Task to Feature
Actions #5

Updated by Tom Clegg over 3 years ago

  • Related to Feature #17206: crunch-run reverse proxies HTTP requests to container added
Actions #6

Updated by Peter Amstutz over 1 year ago

  • Release set to 60
Actions #7

Updated by Peter Amstutz 7 months ago

  • Target version set to Future
Actions

Also available in: Atom PDF