Compare commits
No commits in common. "master" and "0.0.6" have entirely different histories.
2 changed files with 36 additions and 137 deletions
79
README_GO.md
79
README_GO.md
|
|
@ -15,85 +15,14 @@ export HAPROXY_TEMPLATE="./haproxy.tmpl"
|
|||
{{- range .backends }}
|
||||
|
||||
backend {{ .Name }}
|
||||
mode {{ .Mode }}
|
||||
balance {{ .Balance }}
|
||||
{{- if .CookieName }}
|
||||
cookie {{ .CookieName }} {{ .CookieFlags }}
|
||||
{{- end }}
|
||||
mode tcp
|
||||
balance leastconn
|
||||
cookie {{ .Name }} insert indirect nocache
|
||||
|
||||
{{- if .HealthCheck }}
|
||||
option httpchk GET {{ .HealthCheck }}
|
||||
http-check expect status 200
|
||||
{{- end }}
|
||||
|
||||
{{- $backend := . }}
|
||||
{{- range .Servers }}
|
||||
server {{ .Name }} {{ .Address }}:{{ .Port }}{{ if $backend.HealthCheck }} check{{ end }}{{ if $backend.CookieName }} cookie {{ .Cookie }}{{ end }}{{ if $backend.ServerOptions }} {{ $backend.ServerOptions }}{{ end }}
|
||||
server {{ .Name }} {{ .Address }}:{{ .Port }} check cookie {{ .Cookie }}
|
||||
{{- end }}
|
||||
|
||||
{{- end }}
|
||||
```
|
||||
|
||||
|
||||
# Systemd Service and Timer
|
||||
|
||||
```
|
||||
[Unit]
|
||||
Description=HAProxy Config Generator
|
||||
After=network.target
|
||||
|
||||
[Service]
|
||||
Type=oneshot
|
||||
Environment=KUBERNETES_HOST=https://10.0.20.7:6443
|
||||
Environment=KUBERNETES_TOKEN=eyJhbGciOi...
|
||||
Environment=KUBERNETES_VERIFYSSL=false
|
||||
Environment=HAPROXY_TEMPLATE=/etc/haproxy/haproxy.tmpl
|
||||
ExecStart=/bin/bash /etc/haproxy/haproxy-generator.sh
|
||||
|
||||
```
|
||||
|
||||
Timer for Systemd
|
||||
```
|
||||
[Unit]
|
||||
Description=Run HAProxy Config Generator every minute
|
||||
|
||||
[Timer]
|
||||
OnBootSec=1min
|
||||
OnUnitActiveSec=1min
|
||||
Unit=haproxy-generator.service
|
||||
Persistent=true
|
||||
|
||||
[Install]
|
||||
WantedBy=timers.target
|
||||
|
||||
```
|
||||
|
||||
# Reload Script for post start
|
||||
|
||||
Copy the script to /etc/haproxy/haproxy-generator.sh
|
||||
```
|
||||
#!/bin/bash
|
||||
|
||||
/usr/local/bin/haproxy-generator > /etc/haproxy/haproxy.cfg.new
|
||||
DIFF=$(diff /etc/haproxy/haproxy.cfg /etc/haproxy/haproxy.cfg.new)
|
||||
/sbin/haproxy -f /etc/haproxy/haproxy.cfg.new -c
|
||||
VALID=$?
|
||||
|
||||
if [ "$DIFF" != "" ] && [ $VALID -eq 0 ]
|
||||
then
|
||||
mv /etc/haproxy/haproxy.cfg.new /etc/haproxy/haproxy.cfg
|
||||
/usr/sbin/service haproxy restart
|
||||
fi
|
||||
```
|
||||
|
||||
# Service Annotations
|
||||
|
||||
| Annotation-Key | Beschreibung | Typ | Beispielwert |
|
||||
|--------------------------------|-----------------------------------------------------------------------------|---------|---------------------------|
|
||||
| `haproxy/enabled` | **Aktiviert** die Aufnahme des Services in die HAProxy-Konfiguration | `bool` | `"true"` |
|
||||
| `haproxy/mode` | Betriebsmodus des Backends (`tcp` oder `http`) | `string`| `"tcp"` / `"http"` |
|
||||
| `haproxy/cookie-name` | Name des Cookies zur Session-Persistenz | `string`| `"SRVCOOKIE"` |
|
||||
| `haproxy/cookie-flags` | Zusätzliche Cookie-Optionen für HAProxy | `string`| `"insert indirect nocache"`|
|
||||
| `haproxy/health-check` | Deaktiviert Health-Checks, wenn `"false"` gesetzt wird | `bool` | `"false"` |
|
||||
| `haproxy/server-options` | Zusätzliche Optionen für die einzelnen `server`-Zeilen in HAProxy | `string`| `"ssl verify none"` |
|
||||
| `haproxy/port` | Nutze nur **diesen Port** des Services, wenn mehrere Ports definiert sind | `int` |`"8080"` |
|
||||
92
main.go
92
main.go
|
|
@ -28,14 +28,9 @@ type BackendServer struct {
|
|||
}
|
||||
|
||||
type Backend struct {
|
||||
Name string
|
||||
Balance string
|
||||
Mode string
|
||||
CookieName string
|
||||
CookieFlags string
|
||||
HealthCheck string
|
||||
ServerOptions string
|
||||
Servers []BackendServer
|
||||
Name string
|
||||
Balance string
|
||||
Servers []BackendServer
|
||||
}
|
||||
|
||||
func getEnv(key, fallback string) string {
|
||||
|
|
@ -122,9 +117,8 @@ func main() {
|
|||
|
||||
type Service struct {
|
||||
Metadata struct {
|
||||
Name string `json:"name"`
|
||||
Namespace string `json:"namespace"`
|
||||
Annotations map[string]string `json:"annotations"`
|
||||
Name string `json:"name"`
|
||||
Namespace string `json:"namespace"`
|
||||
} `json:"metadata"`
|
||||
Spec struct {
|
||||
Type string `json:"type"`
|
||||
|
|
@ -137,13 +131,16 @@ func main() {
|
|||
type EndpointSubsetAddress struct {
|
||||
IP string `json:"ip"`
|
||||
}
|
||||
|
||||
type EndpointSubsetPort struct {
|
||||
Port int `json:"port"`
|
||||
}
|
||||
|
||||
type EndpointSubset struct {
|
||||
Addresses []EndpointSubsetAddress `json:"addresses"`
|
||||
Ports []EndpointSubsetPort `json:"ports"`
|
||||
}
|
||||
|
||||
type Endpoint struct {
|
||||
Metadata struct {
|
||||
Name string `json:"name"`
|
||||
|
|
@ -181,67 +178,40 @@ func main() {
|
|||
backends := []Backend{}
|
||||
|
||||
for _, svc := range services {
|
||||
ann := svc.Metadata.Annotations
|
||||
if val, ok := ann["haproxy/enabled"]; !ok || val != "true" {
|
||||
if svc.Spec.Type != "ClusterIP" {
|
||||
continue
|
||||
}
|
||||
key := svc.Metadata.Namespace + "/" + svc.Metadata.Name
|
||||
ep, found := endpointMap[key]
|
||||
if !found || len(ep.Subsets) == 0 {
|
||||
continue
|
||||
}
|
||||
|
||||
key := svc.Metadata.Namespace + "/" + svc.Metadata.Name
|
||||
ep, found := endpointMap[key]
|
||||
|
||||
b := Backend{
|
||||
Name: "SRV_" + strings.ReplaceAll(svc.Metadata.Name, " ", "-"),
|
||||
Balance: "leastconn",
|
||||
Mode: "tcp",
|
||||
HealthCheck: "",
|
||||
}
|
||||
|
||||
if val, ok := ann["haproxy/mode"]; ok && val != "" {
|
||||
b.Mode = val
|
||||
}
|
||||
if val, ok := ann["haproxy/cookie-name"]; ok && val != "" {
|
||||
b.CookieName = val
|
||||
}
|
||||
if val, ok := ann["haproxy/cookie-flags"]; ok && val != "" {
|
||||
b.CookieFlags = val
|
||||
}
|
||||
if val, ok := ann["haproxy/health-check"]; ok && val != "" {
|
||||
b.HealthCheck = val
|
||||
}
|
||||
if val, ok := ann["haproxy/server-options"]; ok && val != "" {
|
||||
b.ServerOptions = val
|
||||
}
|
||||
|
||||
targetPort := 0
|
||||
if val, ok := ann["haproxy/port"]; ok && val != "" {
|
||||
if p, err := strconv.Atoi(val); err == nil {
|
||||
targetPort = p
|
||||
}
|
||||
Name: "SRV_" + strings.ReplaceAll(svc.Metadata.Name, " ", "-"),
|
||||
Balance: "leastconn",
|
||||
}
|
||||
|
||||
servers := []BackendServer{}
|
||||
serverIndex := 1
|
||||
for _, subset := range ep.Subsets {
|
||||
for _, addr := range subset.Addresses {
|
||||
for _, port := range subset.Ports {
|
||||
cookie := hashString(fmt.Sprintf("%s-%s-%d", svc.Metadata.Name, addr.IP, port.Port))
|
||||
serverName := fmt.Sprintf("%s_%d", svc.Metadata.Name, serverIndex)
|
||||
serverIndex++
|
||||
|
||||
if found && len(ep.Subsets) > 0 {
|
||||
for _, subset := range ep.Subsets {
|
||||
for _, addr := range subset.Addresses {
|
||||
for _, port := range subset.Ports {
|
||||
if targetPort != 0 && port.Port != targetPort {
|
||||
continue
|
||||
}
|
||||
cookie := hashString(fmt.Sprintf("%s-%s-%d", svc.Metadata.Name, addr.IP, port.Port))
|
||||
serverName := fmt.Sprintf("%s_%d", svc.Metadata.Name, cookie)
|
||||
servers = append(servers, BackendServer{
|
||||
Name: serverName,
|
||||
Address: addr.IP,
|
||||
Port: port.Port,
|
||||
Cookie: cookie,
|
||||
})
|
||||
}
|
||||
servers = append(servers, BackendServer{
|
||||
Name: serverName,
|
||||
Address: addr.IP,
|
||||
Port: port.Port,
|
||||
Cookie: cookie,
|
||||
})
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
b.Servers = servers
|
||||
|
||||
backends = append(backends, b)
|
||||
}
|
||||
|
||||
|
|
@ -249,11 +219,11 @@ func main() {
|
|||
if err != nil {
|
||||
log.Fatalf("Failed to get absolute path: %v", err)
|
||||
}
|
||||
|
||||
tmpl, err := getTemplate(tmplAbsPath)
|
||||
if err != nil {
|
||||
log.Fatalf("Failed to parse template: %v", err)
|
||||
}
|
||||
|
||||
err = tmpl.Execute(os.Stdout, map[string]interface{}{
|
||||
"backends": backends,
|
||||
})
|
||||
|
|
|
|||
Loading…
Add table
Reference in a new issue