hosting/selfhostblocks
1
0
Fork 0
Code Issues Activity

add support for plugins in haproxy config

Browse source
This commit is contained in:
ibizaman 2022-12-10 00:21:35 -08:00
parent 9407df4eb5
commit e9ef7f3a1a
1 changed files with 67 additions and 67 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

134
haproxy/configcreator.nix
View file

@ -1,4 +1,5 @@
{ lib { lib
, pkgs
}: }:
with builtins; with builtins;
@ -7,6 +8,12 @@ with lib.attrsets;
with lib.lists; with lib.lists;
with lib.strings; with lib.strings;
let let
getAttrWithDefault = name: default: attrset:
if isAttrs attrset && hasAttr name attrset then
getAttr name attrset
else
default;
augmentedContent = fieldName: rules: parent: set: augmentedContent = fieldName: rules: parent: set:
let let
print = {rule = k: parent: v: print = {rule = k: parent: v:
@ -106,6 +113,57 @@ let
(optionals (check != null) (mapAttrsToList (k: v: "${k} ${v}") check)) (optionals (check != null) (mapAttrsToList (k: v: "${k} ${v}") check))
]) ])
]; ];
# Lua's import system requires the import path to be something like:
#
# /nix/store/123-name/<package>/<file.lua>
#
# Then the lua-prepend-path can be:
#
# /nix/store/123-name/?/<file.lua>
#
# Then when lua code imports <package>, it will search in the
# prepend paths and replace the question mark with the <package>
# name to get a match.
#
# But the config.source is actually without the <package> name:
#
# /nix/store/123-name/<file.lua>
#
# This requires us to create a new directory structure and we're
# using a linkFarm for this.
createPluginLinks = configs:
let
mkLink = name: config: {
inherit name;
path = config.source;
};
in
pkgs.linkFarm "haproxyplugins" (mapAttrsToList mkLink configs);
mkPlugin = links: name:
{ init
, load ? false
, ...
}:
{
lua-prepend-path = ["${links}/?/${init}"];
} // optionalAttrs load {
lua-load = ["${links}/${name}/${init}"];
};
# Takes plugins as an attrset of name to {init, load, source},
# transforms them to a [attrset] with fields lua-prepend-path
# and optionally lua-load then returns a list of lines with all
# lua-prepend-path first and all lua-load afterwards.
mkPlugins = v:
let
f = recursiveMerge (mapAttrsToList (mkPlugin (createPluginLinks v)) v);
lua-prepend-path = map (x: "lua-prepend-path ${x}") (getAttrWithDefault "lua-prepend-path" [] f);
lua-load = map (x: "lua-load ${x}") (getAttrWithDefault "lua-load" [] f);
in
lua-prepend-path ++ lua-load;
in [ in [
{ {
match = k: parent: v: k == "defaults"; match = k: parent: v: k == "defaults";
@ -124,7 +182,12 @@ let
order = 1; order = 1;
indent = " "; indent = " ";
header = k: k; header = k: k;
rules = []; rules = [
{
match = k: parent: v: k == "plugins";
rule = k: parent: v: mkPlugins v;
}
];
} }
{ {
match = k: parent: v: k == "frontend"; match = k: parent: v: k == "frontend";
@ -196,10 +259,6 @@ let
} }
]; ];
} }
# {
# match = k: v: k == "plugins";
# rule = k: v: mkPlugins v;
# }
]; ];
@ -252,17 +311,12 @@ in
{ user { user
, group , group
, certPath , certPath
, plugins ? [] , plugins ? {}
, stats ? null , stats ? null
, debug ? false , debug ? false
, sites ? {} , sites ? {}
}: { }: {
# inherit plugins;
global = { global = {
# Load the plugin handling Let's Encrypt request
# lua-load /etc/haproxy/plugins/haproxy-acme-validation-plugin-0.1.1/acme-http01-webroot.lua
# Silence a warning issued by haproxy. Using 2048 # Silence a warning issued by haproxy. Using 2048
# instead of the default 1024 makes the connection stronger. # instead of the default 1024 makes the connection stronger.
"tune.ssl.default-dh-param" = 2048; "tune.ssl.default-dh-param" = 2048;
@ -272,6 +326,8 @@ in
inherit user group; inherit user group;
log = "/dev/log local0 info"; log = "/dev/log local0 info";
inherit plugins;
}; };
defaults = { defaults = {
@ -382,62 +438,6 @@ in
nameValuePair name config.backend) nameValuePair name config.backend)
sites; sites;
}; };
# mapIfHasAttr = f: attr: set:
# if hasAttr attr set
# then f (getAttr attr set)
# else set;
# Lua's import system requires the import path to be something like:
#
# /nix/store/123-name/<package>/<file.lua>
#
# Then the lua-prepend-path can be:
#
# /nix/store/123-name/?/<file.lua>
#
# Then when lua code imports <package>, it will search in the
# prepend paths and replace the question mark with the <package>
# name to get a match.
#
# But the config.source is actually without the <package> name:
#
# /nix/store/123-name/<file.lua>
#
# This requires us to create a new directory structure and we're
# using a linkFarm for this.
# pluginLinks = configs:
# let
# mkLink = config: {
# inherit (config) name;
# path = config.source;
# };
# links = pkgs.linkFarm "haproxyplugins" (map mkLink configs);
# in
# map (config:
# "lua-prepend-path ${links}/?/${config.init}"
# ) configs;
# loadPlugins = links: configs:
# let
# mustLoad = config: hasAttr "load" config && config.load;
# in
# concatMap
# (config: optional (mustLoad config) "lua-load ${links}/${config.name}/${config.init}")
# configs;
# mkPlugins = configs:
# { name
# , init
# , source
# , load ? false
# }:
# let
# path = "lua-prepend-path ${links}/?/${init}"
# concatStringsSep " " (flatten [
# ]);
render = config: render = config:
concatStringsSep "\n" (augmentedContent "" schema [] config); concatStringsSep "\n" (augmentedContent "" schema [] config);