-
Notifications
You must be signed in to change notification settings - Fork 39
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
14 changed files
with
1,156 additions
and
252 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,18 @@ | ||
| NODE1=172.18.31.33 | ||
| REGISTRY=bitnami/etcd | ||
| ETCD_VERSION=latest | ||
| # run cluster | ||
| prepare-cluster: | ||
| cd example | ||
| docker-compose up -d | ||
|
|
||
| # run single node in docker | ||
| prepare: | ||
| docker pull ${REGISTRY}:${ETCD_VERSION} | ||
| docker run -d --name Etcd-server \ | ||
| --network app-tier \ | ||
| --publish 2379:2379 \ | ||
| --publish 2380:2380 \ | ||
| --env ALLOW_NONE_AUTHENTICATION=yes \ | ||
| --env ETCD_ADVERTISE_CLIENT_URLS=http://etcd-server:2379 \ | ||
| bitnami/etcd:latest |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,110 @@ | ||
| // Copyright 2021 CloudWeGo Authors. | ||
| // | ||
| // Licensed under the Apache License, Version 2.0 (the "License"); | ||
| // you may not use this file except in compliance with the License. | ||
| // You may obtain a copy of the License at | ||
| // | ||
| // http://www.apache.org/licenses/LICENSE-2.0 | ||
| // | ||
| // Unless required by applicable law or agreed to in writing, software | ||
| // distributed under the License is distributed on an "AS IS" BASIS, | ||
| // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. | ||
| // See the License for the specific language governing permissions and | ||
| // limitations under the License. | ||
|
|
||
| package etcd | ||
|
|
||
| import ( | ||
| "crypto/tls" | ||
| "crypto/x509" | ||
| "errors" | ||
| "fmt" | ||
| "io/ioutil" | ||
| "os" | ||
| "strconv" | ||
|
|
||
| "github.com/cloudwego/hertz/pkg/app/server/registry" | ||
| "github.com/cloudwego/hertz/pkg/common/hlog" | ||
| clientv3 "go.etcd.io/etcd/client/v3" | ||
| ) | ||
|
|
||
| const ( | ||
| defaultTTL = 60 | ||
| ) | ||
|
|
||
| // instanceInfo used to stored service basic info in etcd. | ||
| type instanceInfo struct { | ||
| Network string `json:"network"` | ||
| Address string `json:"address"` | ||
| Weight int `json:"weight"` | ||
| Tags map[string]string `json:"tags"` | ||
| } | ||
|
|
||
| func serviceKeyPrefix(serviceName string) string { | ||
| return etcdPrefix + "/" + serviceName | ||
| } | ||
|
|
||
| // serviceKey generates the key used to stored in etcd. | ||
| func serviceKey(serviceName, addr string) string { | ||
| return serviceKeyPrefix(serviceName) + "/" + addr | ||
| } | ||
|
|
||
| // validateRegistryInfo validate the registry.Info | ||
| func validateRegistryInfo(info *registry.Info) error { | ||
| if info == nil { | ||
| return fmt.Errorf("registry.Info can not be empty") | ||
| } | ||
| if info.ServiceName == "" { | ||
| return fmt.Errorf("registry.Info ServiceName can not be empty") | ||
| } | ||
| if info.Addr == nil { | ||
| return fmt.Errorf("registry.Info Addr can not be empty") | ||
| } | ||
| return nil | ||
| } | ||
|
|
||
| // getTTL get the lease from default or from the env | ||
| func getTTL() int64 { | ||
| var ttl int64 = defaultTTL | ||
| if str, ok := os.LookupEnv(ttlKey); ok { | ||
| if t, err := strconv.Atoi(str); err == nil { | ||
| ttl = int64(t) | ||
| } | ||
| } | ||
| return ttl | ||
| } | ||
|
|
||
| // Option sets options such as username, tls etc. | ||
| type Option func(cfg *clientv3.Config) | ||
|
|
||
| // WithTLSOpt returns a option that authentication by tls/ssl. | ||
| func WithTLSOpt(certFile, keyFile, caFile string) Option { | ||
| return func(cfg *clientv3.Config) { | ||
| tlsCfg, err := newTLSConfig(certFile, keyFile, caFile, "") | ||
| if err != nil { | ||
| hlog.Errorf("tls failed with err: %v , skipping tls.", err) | ||
| } | ||
| cfg.TLS = tlsCfg | ||
| } | ||
| } | ||
|
|
||
| func newTLSConfig(certFile, keyFile, caFile, serverName string) (*tls.Config, error) { | ||
| cert, err := tls.LoadX509KeyPair(certFile, keyFile) | ||
| if err != nil { | ||
| return nil, err | ||
| } | ||
| caCert, err := ioutil.ReadFile(caFile) | ||
| if err != nil { | ||
| return nil, err | ||
| } | ||
| caCertPool := x509.NewCertPool() | ||
| successful := caCertPool.AppendCertsFromPEM(caCert) | ||
| if !successful { | ||
| return nil, errors.New("failed to parse ca certificate as PEM encoded content") | ||
| } | ||
| cfg := &tls.Config{ | ||
| Certificates: []tls.Certificate{cert}, | ||
| RootCAs: caCertPool, | ||
| } | ||
| return cfg, nil | ||
| } |
Oops, something went wrong.