Added initial nginx services

- Proxy allows ingress traffic to be sent to another element in service mesh - Mirroring is also in the default configuration - Default configuration is to proxy to a clover-server and mirror to snort-ids - A location_path (URI in HTTP requests) can be reconfigured to restrict proxing; default to '/' - A proxy_path can be reconfigured to specify an alternate destination - A mirror path can be reconfigured to specify where traffic will be spanned - The default server_port (listen port) for the proxy is 9180 but can be reconfigured - The default server_name is http-proxy but can be reconfigured - Reconfiguration is done over GRPC with jinja2 template for nginx - Currently snort ids sends alerts to proxy with stub code in GRPC - Refactored the code to have a nginx base with subservices - Proxy, Load Balancer (lb), and Server can share code - mainly GRPC server - Nginx subservices have separate docker builds - Improved build scripts for CI - Render yaml manifests dynamically - Improve nginx_client for runtime modifications (but not really useful yet) Change-Id: Icbff6890021bcc8a8da4690c9261205d6e1ca43a Signed-off-by: Eddie Arrage <eddie.arrage@huawei.com>
author: Eddie Arrage <eddie.arrage@huawei.com> 2018-03-21 18:38:59 +0000
committer: Eddie Arrage <eddie.arrage@huawei.com> 2018-03-30 01:22:37 +0000
commit: 1575a9b3f7e7f475d4d5d8d1541f783948c0d398 (patch)
tree: 6c663149df632258e41a5d961079a9236d42a7a8 /samples/services/nginx/docker/subservices
parent: 9f3d87d798cf04c243e82d284a7dc4f7b3ec5c1a (diff)
3 files changed, 83 insertions, 0 deletions
diff --git a/samples/services/nginx/docker/subservices/lb/Dockerfile b/samples/services/nginx/docker/subservices/lb/Dockerfile
new file mode 100644
index 0000000..125da0b
--- /dev/null
+++ b/samples/services/nginx/docker/subservices/lb/Dockerfile
@@ -0,0 +1,28 @@
+# Copyright (c) Authors of Clover
+#
+# All rights reserved. This program and the accompanying materials
+# are made available under the terms of the Apache License, Version 2.0
+# which accompanies this distribution, and is available at
+# http://www.apache.org/licenses/LICENSE-2.0
+
+FROM ubuntu:16.04
+LABEL maintainer="Eddie Arrage" maintainer_email="eddie.arrage@huawei.com"
+LABEL version="0.1" description="Clover - Nginx HTTP LB"
+
+RUN \
+    apt-get update && apt-get install -y \
+# Some debug tool in container
+    wget \
+    libdnet \
+    net-tools \
+# Nginx as proxy
+    nginx \
+    python-pip \
+&& \
+# Install required python packages
+    python -m pip install grpcio redis jinja2
+
+COPY /process /process
+COPY /grpc /grpc
+CMD ./process/start_process.sh lb
+
diff --git a/samples/services/nginx/docker/subservices/proxy/Dockerfile b/samples/services/nginx/docker/subservices/proxy/Dockerfile
new file mode 100644
index 0000000..0f061a5
--- /dev/null
+++ b/samples/services/nginx/docker/subservices/proxy/Dockerfile
@@ -0,0 +1,27 @@
+# Copyright (c) Authors of Clover
+#
+# All rights reserved. This program and the accompanying materials
+# are made available under the terms of the Apache License, Version 2.0
+# which accompanies this distribution, and is available at
+# http://www.apache.org/licenses/LICENSE-2.0
+
+FROM ubuntu:16.04
+LABEL maintainer="Eddie Arrage" maintainer_email="eddie.arrage@huawei.com"
+LABEL version="0.1" description="Clover - Nginx HTTP Proxy"
+
+RUN \
+    apt-get update && apt-get install -y \
+# Some debug tools in container
+    wget \
+    libdnet \
+    net-tools \
+# Nginx as proxy
+    nginx \
+    python-pip \
+&& \
+# Install required python packages
+    python -m pip install grpcio redis jinja2
+
+COPY /process /process
+COPY /grpc /grpc
+CMD ./process/start_process.sh proxy
diff --git a/samples/services/nginx/docker/subservices/server/Dockerfile b/samples/services/nginx/docker/subservices/server/Dockerfile
new file mode 100644
index 0000000..8bf9449
--- /dev/null
+++ b/samples/services/nginx/docker/subservices/server/Dockerfile
@@ -0,0 +1,28 @@
+# Copyright (c) Authors of Clover
+#
+# All rights reserved. This program and the accompanying materials
+# are made available under the terms of the Apache License, Version 2.0
+# which accompanies this distribution, and is available at
+# http://www.apache.org/licenses/LICENSE-2.0
+
+FROM ubuntu:16.04
+LABEL maintainer="Eddie Arrage" maintainer_email="eddie.arrage@huawei.com"
+LABEL version="0.1" description="Clover - Nginx HTTP Server"
+
+RUN \
+    apt-get update && apt-get install -y \
+# Some debug tools in container
+    wget \
+    libdnet \
+    net-tools \
+# Nginx as proxy
+    nginx \
+    python-pip \
+&& \
+# Install required python packages
+    python -m pip install grpcio redis jinja2
+
+COPY /process /process
+COPY /grpc /grpc
+CMD ./process/start_process.sh server
+
author	Eddie Arrage <eddie.arrage@huawei.com>	2018-03-21 18:38:59 +0000
committer	Eddie Arrage <eddie.arrage@huawei.com>	2018-03-30 01:22:37 +0000
commit	1575a9b3f7e7f475d4d5d8d1541f783948c0d398 (patch)
tree	6c663149df632258e41a5d961079a9236d42a7a8 /samples/services/nginx/docker/subservices
parent	9f3d87d798cf04c243e82d284a7dc4f7b3ec5c1a (diff)