Project

General

Profile

Actions

Feature #17209

open

Controller forwards web requests to crunch worker nodes

Added by Tom Clegg about 2 years ago. Updated over 1 year ago.

Status:
In Progress
Priority:
Normal
Assigned To:
Category:
-
Target version:
-
Start date:
05/11/2021
Due date:
% Done:

0%

Estimated time:
0.00 h
Story points:
-

Description

Controller checks authorization, looks up the addr:port of the relevant crunch-run process, and forwards the request there.

Details on #17207


Subtasks 1 (1 open0 closed)

Task #17660: Review 17209-http-forwardIn ProgressWard Vandewege05/11/2021

Actions

Related issues

Related to Arvados Epics - Story #17207: External access to web services running in containersNew09/01/202303/31/2024

Actions
Related to Arvados - Feature #17206: crunch-run reverse proxies HTTP requests to containerNew

Actions
Actions #1

Updated by Tom Clegg about 2 years ago

  • Related to Story #17207: External access to web services running in containers added
Actions #2

Updated by Tom Clegg over 1 year ago

  • Assigned To set to Tom Clegg
  • Status changed from New to In Progress

This provides the basic functionality of forwarding external requests to https://{uuid}-{port}.zzzzz.example.com/foo through Nginx+controller to http://{container}:{port}/foo on the worker node:

17209-http-forward @ bb050a077ae014a8db2e58589f1b62dc6462afe2 -- developer-run-tests: #2469

Todo:
  • Upgrade notes (add wildcard to nginx conf)
  • Documentation (as usual I could use some help with this)
  • Config knob to enable/disable (currently follows "shell access" configs, right up to the error messages "shell access is disabled in config")
  • Tests for "not permitted/configured" and "missing/invalid token" cases
  • Tests for redirect-with-cookie behavior (and rename the query param from "arvados_api_token" to "api_token" to match other places where we do this)
Actions #3

Updated by Tom Clegg over 1 year ago

  • Estimated time set to 0.00 h
  • Tracker changed from Feature to Task
Actions #4

Updated by Tom Clegg over 1 year ago

  • Tracker changed from Task to Feature
Actions #5

Updated by Tom Clegg over 1 year ago

  • Related to Feature #17206: crunch-run reverse proxies HTTP requests to container added
Actions

Also available in: Atom PDF