Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[ECO-2152] Segment REST and WS endpoints for dual load balancer schema #229

Merged
merged 204 commits into from
Sep 4, 2024
Merged

[ECO-2152] Segment REST and WS endpoints for dual load balancer schema #229

merged 204 commits into from
Sep 4, 2024

Conversation

alnoki
Copy link
Member

@alnoki alnoki commented Sep 1, 2024
edited
Loading

Description

This PR segments the REST and WS endpoints into separate subdomains through
internal load balancer refactors that will enable rate limiting and caching in
subsequent updates.

CloudFormation

  1. Connect PostgREST to a private NLB, accessed by new REST API gateway over VPC
    Link, to enable add-on rate limiting and caching in subsequent updates.
  2. Provide a custom domain for WS and REST endpoints, leaving broker connected
    to public ALB due to aforementioned difficulties with header forwarding. Note
    that rate limiting can still be applied to the ALB, even though caching is
    not meaningful for the WS endpoint.
  3. Update processor health checks per
    [ECO-2145] Add health route aptos-indexer-processors#45.
  4. Update broker health checks per [ECO-2142] Implement retry functionality for the broker #220 and per WS path updates in this PR.
  5. Update README with new domain layout, diagnostics commands.

Broker path updates

  1. Update broker WS server to be at / on broker.
  2. Update broker / health check to be /live.
  3. Bump version for each time that I vacillated about path strategy, for
    consistency with Docker images pushed to Docker Hub.
  4. Pin apt-get install versions major.
  5. Update broker README for new path strategy.
  6. Update Docker compose for new path strategy.

Testing

  • I deployed the changes in this PR on a CloudFormation stack then verified
    the README instructions for both public endpoints and bastion host, using the
    CLI to send in chat events.
  • I fully de-provisioned the stack by setting MaybeDeployStack to false to
    verify no update hangs during de-provisioning.
  • I then set MaybeDeployStack to true to verify full stack provisioning
    from genesis, which will happen on main when this lands since main is
    currently de-provisioned.

Checklist

  • Did you update relevant documentation?
  • Did you check all checkboxes from the linked Linear task?

alnoki added 30 commits August 31, 2024 11:29
@alnoki
Provision up through container base
e026193
@alnoki
Bump broker version
242dcc8
@alnoki
Bump broker version
cc6db6a
@alnoki
Make ALB private
0f8b797
@alnoki
Resolve deps issues
a8829fd
@alnoki
Deploy ALB
df03cd9
@alnoki
Try deploy API DNS record
7cc9835
@alnoki
Add bastion host connection to ALB
6330c34
@alnoki
Try deploy API cert
bdd1d60
@alnoki
Update aliasing
d4493a9
@alnoki
Tweak bastion, add README
9b0fb8a
@alnoki
Fix mapping typo
e6c217a
@alnoki
Deploy API certs
7e565e4
@alnoki
Configure bastion, kill certs
16c3e88
@alnoki
Deploy containers
4116823
@alnoki
Add regional cert specification
8364663
@alnoki
Provision bastion
3f6bfaa
@alnoki
Deploy API certs
26ea201
@alnoki
Begin stubbing NLB, kill bastion for SG
460c79f
@alnoki
Provision bastion host, NLB SGs
2801b7e
@alnoki
Kill bastion, update user data
9af3e82
@alnoki
Update ALB test command
cc1c8a1
@alnoki
Redeploy bastion
7b76bcf
@alnoki
Kill bastion
7c7a851
@alnoki
Fix name export
b518a79
@alnoki
Deploy bastion
35fd4ea
@alnoki
Provision NLB
7f56030
@alnoki
Try adding NLB listener
319a90f
@alnoki
Add bastion host
2e567c1
@alnoki
Add NLB bastion tests
84a1e55
@alnoki alnoki changed the title [ECO-2152] Endpoint protections [ECO-2152] Segment REST and WS endpoints for dual load balancer schema Sep 3, 2024
@alnoki alnoki marked this pull request as ready for review September 3, 2024 01:52
@alnoki alnoki requested review from xbtmatt and CRBl69 September 3, 2024 01:52
@CRBl69 CRBl69 merged commit d2b1197 into main Sep 4, 2024
9 of 10 checks passed
@CRBl69 CRBl69 deleted the ECO-2152 branch September 4, 2024 19:02
xbtmatt

This comment was marked as outdated.

Sign in to view

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@xbtmatt xbtmatt xbtmatt left review comments

@CRBl69 CRBl69 CRBl69 approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@alnoki @CRBl69 @xbtmatt