2017-04-17 13:50:02 +03:00
package ecs
2017-01-05 17:24:17 +03:00
import (
"context"
"fmt"
"strconv"
"strings"
"text/template"
"time"
"github.com/BurntSushi/ty/fun"
"github.com/aws/aws-sdk-go/aws"
"github.com/aws/aws-sdk-go/aws/credentials"
"github.com/aws/aws-sdk-go/aws/defaults"
"github.com/aws/aws-sdk-go/aws/ec2metadata"
"github.com/aws/aws-sdk-go/aws/request"
"github.com/aws/aws-sdk-go/aws/session"
"github.com/aws/aws-sdk-go/service/ec2"
"github.com/aws/aws-sdk-go/service/ecs"
"github.com/cenk/backoff"
"github.com/containous/traefik/job"
"github.com/containous/traefik/log"
2017-04-17 13:50:02 +03:00
"github.com/containous/traefik/provider"
2017-01-05 17:24:17 +03:00
"github.com/containous/traefik/safe"
"github.com/containous/traefik/types"
)
2017-04-17 13:50:02 +03:00
var _ provider . Provider = ( * Provider ) ( nil )
2017-01-05 17:24:17 +03:00
2017-04-17 13:50:02 +03:00
// Provider holds configurations of the provider.
type Provider struct {
provider . BaseProvider ` mapstructure:",squash" `
2017-01-05 17:24:17 +03:00
Domain string ` description:"Default domain used" `
ExposedByDefault bool ` description:"Expose containers by default" `
RefreshSeconds int ` description:"Polling interval (in seconds)" `
2017-04-17 13:50:02 +03:00
// Provider lookup parameters
2017-01-05 17:24:17 +03:00
Cluster string ` description:"ECS Cluster Name" `
Region string ` description:"The AWS region to use for requests" `
AccessKeyID string ` description:"The AWS credentials access key to use for making requests" `
SecretAccessKey string ` description:"The AWS credentials access key to use for making requests" `
}
type ecsInstance struct {
Name string
ID string
task * ecs . Task
taskDefinition * ecs . TaskDefinition
container * ecs . Container
containerDefinition * ecs . ContainerDefinition
machine * ec2 . Instance
}
type awsClient struct {
ecs * ecs . ECS
ec2 * ec2 . EC2
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) createClient ( ) ( * awsClient , error ) {
2017-01-05 17:24:17 +03:00
sess := session . New ( )
ec2meta := ec2metadata . New ( sess )
2017-04-17 13:50:02 +03:00
if p . Region == "" {
2017-01-05 17:24:17 +03:00
log . Infoln ( "No EC2 region provided, querying instance metadata endpoint..." )
identity , err := ec2meta . GetInstanceIdentityDocument ( )
if err != nil {
return nil , err
}
2017-04-17 13:50:02 +03:00
p . Region = identity . Region
2017-01-05 17:24:17 +03:00
}
cfg := & aws . Config {
2017-04-17 13:50:02 +03:00
Region : & p . Region ,
2017-01-05 17:24:17 +03:00
Credentials : credentials . NewChainCredentials (
[ ] credentials . Provider {
& credentials . StaticProvider {
Value : credentials . Value {
2017-04-17 13:50:02 +03:00
AccessKeyID : p . AccessKeyID ,
SecretAccessKey : p . SecretAccessKey ,
2017-01-05 17:24:17 +03:00
} ,
} ,
& credentials . EnvProvider { } ,
& credentials . SharedCredentialsProvider { } ,
defaults . RemoteCredProvider ( * ( defaults . Config ( ) ) , defaults . Handlers ( ) ) ,
} ) ,
}
2017-07-08 00:48:53 +03:00
if p . Trace {
cfg . WithLogger ( aws . LoggerFunc ( func ( args ... interface { } ) {
log . Debug ( args ... )
} ) )
}
2017-01-05 17:24:17 +03:00
return & awsClient {
ecs . New ( sess , cfg ) ,
ec2 . New ( sess , cfg ) ,
} , nil
}
2017-04-17 13:50:02 +03:00
// Provide allows the ecs provider to provide configurations to traefik
2017-01-05 17:24:17 +03:00
// using the given configuration channel.
2017-04-17 13:50:02 +03:00
func ( p * Provider ) Provide ( configurationChan chan <- types . ConfigMessage , pool * safe . Pool , constraints types . Constraints ) error {
2017-01-05 17:24:17 +03:00
2017-04-17 13:50:02 +03:00
p . Constraints = append ( p . Constraints , constraints ... )
2017-01-05 17:24:17 +03:00
handleCanceled := func ( ctx context . Context , err error ) error {
if ctx . Err ( ) == context . Canceled || err == context . Canceled {
return nil
}
return err
}
pool . Go ( func ( stop chan bool ) {
ctx , cancel := context . WithCancel ( context . Background ( ) )
2017-07-19 15:11:45 +03:00
safe . Go ( func ( ) {
2017-01-05 17:24:17 +03:00
select {
case <- stop :
cancel ( )
}
2017-07-19 15:11:45 +03:00
} )
2017-01-05 17:24:17 +03:00
operation := func ( ) error {
2017-04-17 13:50:02 +03:00
aws , err := p . createClient ( )
2017-01-05 17:24:17 +03:00
if err != nil {
return err
}
2017-04-17 13:50:02 +03:00
configuration , err := p . loadECSConfig ( ctx , aws )
2017-01-05 17:24:17 +03:00
if err != nil {
return handleCanceled ( ctx , err )
}
configurationChan <- types . ConfigMessage {
ProviderName : "ecs" ,
Configuration : configuration ,
}
2017-04-17 13:50:02 +03:00
if p . Watch {
reload := time . NewTicker ( time . Second * time . Duration ( p . RefreshSeconds ) )
2017-01-05 17:24:17 +03:00
defer reload . Stop ( )
for {
select {
case <- reload . C :
2017-04-17 13:50:02 +03:00
configuration , err := p . loadECSConfig ( ctx , aws )
2017-01-05 17:24:17 +03:00
if err != nil {
return handleCanceled ( ctx , err )
}
configurationChan <- types . ConfigMessage {
ProviderName : "ecs" ,
Configuration : configuration ,
}
case <- ctx . Done ( ) :
return handleCanceled ( ctx , ctx . Err ( ) )
}
}
}
return nil
}
notify := func ( err error , time time . Duration ) {
2017-04-17 13:50:02 +03:00
log . Errorf ( "Provider connection error %+v, retrying in %s" , err , time )
2017-01-05 17:24:17 +03:00
}
err := backoff . RetryNotify ( safe . OperationWithRecover ( operation ) , job . NewBackOff ( backoff . NewExponentialBackOff ( ) ) , notify )
if err != nil {
2017-04-17 13:50:02 +03:00
log . Errorf ( "Cannot connect to Provider api %+v" , err )
2017-01-05 17:24:17 +03:00
}
} )
return nil
}
func wrapAws ( ctx context . Context , req * request . Request ) error {
req . HTTPRequest = req . HTTPRequest . WithContext ( ctx )
return req . Send ( )
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) loadECSConfig ( ctx context . Context , client * awsClient ) ( * types . Configuration , error ) {
2017-01-05 17:24:17 +03:00
var ecsFuncMap = template . FuncMap {
2017-04-17 13:50:02 +03:00
"filterFrontends" : p . filterFrontends ,
"getFrontendRule" : p . getFrontendRule ,
2017-01-05 17:24:17 +03:00
}
2017-04-17 13:50:02 +03:00
instances , err := p . listInstances ( ctx , client )
2017-01-05 17:24:17 +03:00
if err != nil {
return nil , err
}
2017-04-17 13:50:02 +03:00
instances = fun . Filter ( p . filterInstance , instances ) . ( [ ] ecsInstance )
2017-01-05 17:24:17 +03:00
2017-04-17 13:50:02 +03:00
return p . GetConfiguration ( "templates/ecs.tmpl" , ecsFuncMap , struct {
2017-01-05 17:24:17 +03:00
Instances [ ] ecsInstance
} {
instances ,
} )
}
2017-04-17 13:50:02 +03:00
// Find all running Provider tasks in a cluster, also collect the task definitions (for docker labels)
2017-01-05 17:24:17 +03:00
// and the EC2 instance data
2017-04-17 13:50:02 +03:00
func ( p * Provider ) listInstances ( ctx context . Context , client * awsClient ) ( [ ] ecsInstance , error ) {
2017-01-05 17:24:17 +03:00
var taskArns [ ] * string
req , _ := client . ecs . ListTasksRequest ( & ecs . ListTasksInput {
2017-04-17 13:50:02 +03:00
Cluster : & p . Cluster ,
2017-01-05 17:24:17 +03:00
DesiredStatus : aws . String ( ecs . DesiredStatusRunning ) ,
} )
for ; req != nil ; req = req . NextPage ( ) {
if err := wrapAws ( ctx , req ) ; err != nil {
return nil , err
}
taskArns = append ( taskArns , req . Data . ( * ecs . ListTasksOutput ) . TaskArns ... )
}
2017-03-01 21:06:34 +03:00
// Early return: if we can't list tasks we have nothing to
// describe below - likely empty cluster/permissions are bad. This
// stops the AWS API from returning a 401 when you DescribeTasks
// with no input.
if len ( taskArns ) == 0 {
return [ ] ecsInstance { } , nil
}
2017-04-17 13:50:02 +03:00
chunkedTaskArns := p . chunkedTaskArns ( taskArns )
2017-03-01 21:06:34 +03:00
var tasks [ ] * ecs . Task
for _ , arns := range chunkedTaskArns {
req , taskResp := client . ecs . DescribeTasksRequest ( & ecs . DescribeTasksInput {
Tasks : arns ,
2017-04-17 13:50:02 +03:00
Cluster : & p . Cluster ,
2017-03-01 21:06:34 +03:00
} )
if err := wrapAws ( ctx , req ) ; err != nil {
return nil , err
}
tasks = append ( tasks , taskResp . Tasks ... )
2017-01-05 17:24:17 +03:00
}
containerInstanceArns := make ( [ ] * string , 0 )
byContainerInstance := make ( map [ string ] int )
taskDefinitionArns := make ( [ ] * string , 0 )
byTaskDefinition := make ( map [ string ] int )
2017-03-01 21:06:34 +03:00
for _ , task := range tasks {
2017-01-05 17:24:17 +03:00
if _ , found := byContainerInstance [ * task . ContainerInstanceArn ] ; ! found {
byContainerInstance [ * task . ContainerInstanceArn ] = len ( containerInstanceArns )
containerInstanceArns = append ( containerInstanceArns , task . ContainerInstanceArn )
}
if _ , found := byTaskDefinition [ * task . TaskDefinitionArn ] ; ! found {
byTaskDefinition [ * task . TaskDefinitionArn ] = len ( taskDefinitionArns )
taskDefinitionArns = append ( taskDefinitionArns , task . TaskDefinitionArn )
}
}
2017-04-17 13:50:02 +03:00
machines , err := p . lookupEc2Instances ( ctx , client , containerInstanceArns )
2017-01-05 17:24:17 +03:00
if err != nil {
return nil , err
}
2017-04-17 13:50:02 +03:00
taskDefinitions , err := p . lookupTaskDefinitions ( ctx , client , taskDefinitionArns )
2017-01-05 17:24:17 +03:00
if err != nil {
return nil , err
}
var instances [ ] ecsInstance
2017-03-01 21:06:34 +03:00
for _ , task := range tasks {
2017-01-05 17:24:17 +03:00
machineIdx := byContainerInstance [ * task . ContainerInstanceArn ]
taskDefIdx := byTaskDefinition [ * task . TaskDefinitionArn ]
for _ , container := range task . Containers {
taskDefinition := taskDefinitions [ taskDefIdx ]
var containerDefinition * ecs . ContainerDefinition
for _ , def := range taskDefinition . ContainerDefinitions {
if * container . Name == * def . Name {
containerDefinition = def
break
}
}
instances = append ( instances , ecsInstance {
fmt . Sprintf ( "%s-%s" , strings . Replace ( * task . Group , ":" , "-" , 1 ) , * container . Name ) ,
( * task . TaskArn ) [ len ( * task . TaskArn ) - 12 : ] ,
task ,
taskDefinition ,
container ,
containerDefinition ,
machines [ machineIdx ] ,
} )
}
}
return instances , nil
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) lookupEc2Instances ( ctx context . Context , client * awsClient , containerArns [ ] * string ) ( [ ] * ec2 . Instance , error ) {
2017-01-05 17:24:17 +03:00
order := make ( map [ string ] int )
2017-02-09 02:18:38 +03:00
instanceIds := make ( [ ] * string , len ( containerArns ) )
instances := make ( [ ] * ec2 . Instance , len ( containerArns ) )
2017-01-05 17:24:17 +03:00
for i , arn := range containerArns {
order [ * arn ] = i
}
2017-02-09 02:18:38 +03:00
req , _ := client . ecs . DescribeContainerInstancesRequest ( & ecs . DescribeContainerInstancesInput {
ContainerInstances : containerArns ,
2017-04-17 13:50:02 +03:00
Cluster : & p . Cluster ,
2017-02-09 02:18:38 +03:00
} )
for ; req != nil ; req = req . NextPage ( ) {
if err := wrapAws ( ctx , req ) ; err != nil {
return nil , err
}
containerResp := req . Data . ( * ecs . DescribeContainerInstancesOutput )
for i , container := range containerResp . ContainerInstances {
order [ * container . Ec2InstanceId ] = order [ * container . ContainerInstanceArn ]
instanceIds [ i ] = container . Ec2InstanceId
}
2017-01-05 17:24:17 +03:00
}
2017-02-09 02:18:38 +03:00
req , _ = client . ec2 . DescribeInstancesRequest ( & ec2 . DescribeInstancesInput {
2017-01-05 17:24:17 +03:00
InstanceIds : instanceIds ,
} )
2017-02-09 02:18:38 +03:00
for ; req != nil ; req = req . NextPage ( ) {
if err := wrapAws ( ctx , req ) ; err != nil {
return nil , err
}
2017-01-05 17:24:17 +03:00
2017-02-09 02:18:38 +03:00
instancesResp := req . Data . ( * ec2 . DescribeInstancesOutput )
for _ , r := range instancesResp . Reservations {
for _ , i := range r . Instances {
if i . InstanceId != nil {
instances [ order [ * i . InstanceId ] ] = i
}
}
}
2017-01-05 17:24:17 +03:00
}
return instances , nil
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) lookupTaskDefinitions ( ctx context . Context , client * awsClient , taskDefArns [ ] * string ) ( [ ] * ecs . TaskDefinition , error ) {
2017-01-05 17:24:17 +03:00
taskDefinitions := make ( [ ] * ecs . TaskDefinition , len ( taskDefArns ) )
for i , arn := range taskDefArns {
req , resp := client . ecs . DescribeTaskDefinitionRequest ( & ecs . DescribeTaskDefinitionInput {
TaskDefinition : arn ,
} )
if err := wrapAws ( ctx , req ) ; err != nil {
return nil , err
}
taskDefinitions [ i ] = resp . TaskDefinition
}
return taskDefinitions , nil
}
func ( i ecsInstance ) label ( k string ) string {
if v , found := i . containerDefinition . DockerLabels [ k ] ; found {
return * v
}
return ""
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) filterInstance ( i ecsInstance ) bool {
2017-01-05 17:24:17 +03:00
if len ( i . container . NetworkBindings ) == 0 {
log . Debugf ( "Filtering ecs instance without port %s (%s)" , i . Name , i . ID )
return false
}
2017-02-09 02:18:38 +03:00
if i . machine == nil ||
i . machine . State == nil ||
i . machine . State . Name == nil {
log . Debugf ( "Filtering ecs instance in an missing ec2 information %s (%s)" , i . Name , i . ID )
return false
}
if * i . machine . State . Name != ec2 . InstanceStateNameRunning {
log . Debugf ( "Filtering ecs instance in an incorrect state %s (%s) (state = %s)" , i . Name , i . ID , * i . machine . State . Name )
return false
}
if i . machine . PrivateIpAddress == nil {
log . Debugf ( "Filtering ecs instance without an ip address %s (%s)" , i . Name , i . ID )
return false
}
2017-07-10 17:58:12 +03:00
label := i . label ( types . LabelEnable )
2017-04-17 13:50:02 +03:00
enabled := p . ExposedByDefault && label != "false" || label == "true"
2017-01-05 17:24:17 +03:00
if ! enabled {
log . Debugf ( "Filtering disabled ecs instance %s (%s) (traefik.enabled = '%s')" , i . Name , i . ID , label )
return false
}
return true
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) filterFrontends ( instances [ ] ecsInstance ) [ ] ecsInstance {
2017-01-05 17:24:17 +03:00
byName := make ( map [ string ] bool )
return fun . Filter ( func ( i ecsInstance ) bool {
if _ , found := byName [ i . Name ] ; ! found {
byName [ i . Name ] = true
return true
}
return false
} , instances ) . ( [ ] ecsInstance )
}
2017-04-17 13:50:02 +03:00
func ( p * Provider ) getFrontendRule ( i ecsInstance ) string {
2017-07-10 17:58:12 +03:00
if label := i . label ( types . LabelFrontendRule ) ; label != "" {
2017-01-05 17:24:17 +03:00
return label
}
2017-04-17 13:50:02 +03:00
return "Host:" + strings . ToLower ( strings . Replace ( i . Name , "_" , "-" , - 1 ) ) + "." + p . Domain
2017-01-05 17:24:17 +03:00
}
2017-04-17 13:50:02 +03:00
// Provider expects no more than 100 parameters be passed to a DescribeTask call; thus, pack
2017-03-01 21:06:34 +03:00
// each string into an array capped at 100 elements
2017-04-17 13:50:02 +03:00
func ( p * Provider ) chunkedTaskArns ( tasks [ ] * string ) [ ] [ ] * string {
2017-03-01 21:06:34 +03:00
var chunkedTasks [ ] [ ] * string
for i := 0 ; i < len ( tasks ) ; i += 100 {
sliceEnd := - 1
if i + 100 < len ( tasks ) {
sliceEnd = i + 100
} else {
sliceEnd = len ( tasks )
}
chunkedTasks = append ( chunkedTasks , tasks [ i : sliceEnd ] )
}
return chunkedTasks
}
2017-01-05 17:24:17 +03:00
func ( i ecsInstance ) Protocol ( ) string {
2017-07-10 17:58:12 +03:00
if label := i . label ( types . LabelProtocol ) ; label != "" {
2017-01-05 17:24:17 +03:00
return label
}
return "http"
}
func ( i ecsInstance ) Host ( ) string {
return * i . machine . PrivateIpAddress
}
func ( i ecsInstance ) Port ( ) string {
return strconv . FormatInt ( * i . container . NetworkBindings [ 0 ] . HostPort , 10 )
}
func ( i ecsInstance ) Weight ( ) string {
2017-07-10 17:58:12 +03:00
if label := i . label ( types . LabelWeight ) ; label != "" {
2017-01-05 17:24:17 +03:00
return label
}
return "0"
}
func ( i ecsInstance ) PassHostHeader ( ) string {
2017-07-10 17:58:12 +03:00
if label := i . label ( types . LabelFrontendPassHostHeader ) ; label != "" {
2017-01-05 17:24:17 +03:00
return label
}
return "true"
}
func ( i ecsInstance ) Priority ( ) string {
2017-07-10 17:58:12 +03:00
if label := i . label ( types . LabelFrontendPriority ) ; label != "" {
2017-01-05 17:24:17 +03:00
return label
}
return "0"
}
func ( i ecsInstance ) EntryPoints ( ) [ ] string {
2017-07-10 17:58:12 +03:00
if label := i . label ( types . LabelFrontendEntryPoints ) ; label != "" {
2017-01-05 17:24:17 +03:00
return strings . Split ( label , "," )
}
return [ ] string { }
}