Elgato_dark/console
1
0
Fork 0
mirror of https://github.com/graphql-hive/console synced 2026-04-21 14:37:17 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
console/deployment/services/graphql.ts
Laurin Quast b85e72d8d2
feat: no longer publish to the legacy CDN (#3247) 
Co-authored-by: Kamil Kisiela <kamil.kisiela@gmail.com>
2023-11-06 12:54:40 +01:00

197 lines
6.5 KiB
TypeScript
Raw Blame History

import { parse } from 'pg-connection-string';
import * as k8s from '@pulumi/kubernetes';
import * as pulumi from '@pulumi/pulumi';
import { Output } from '@pulumi/pulumi';
import { DeploymentEnvironment } from '../types';
import { isProduction } from '../utils/helpers';
import { serviceLocalEndpoint } from '../utils/local-endpoint';
import { ServiceDeployment } from '../utils/service-deployment';
import { StripeBillingService } from './billing';
import { CDN } from './cf-cdn';
import { Clickhouse } from './clickhouse';
import { DbMigrations } from './db-migrations';
import { Emails } from './emails';
import { SchemaPolicy } from './policy';
import { RateLimitService } from './rate-limit';
import { Redis } from './redis';
import { Schema } from './schema';
import { Tokens } from './tokens';
import { Usage } from './usage';
import { UsageEstimator } from './usage-estimation';
import { Webhooks } from './webhooks';
const commonConfig = new pulumi.Config('common');
const cloudflareConfig = new pulumi.Config('cloudflare');
const apiConfig = new pulumi.Config('api');
const githubAppConfig = new pulumi.Config('ghapp');
const commonEnv = commonConfig.requireObject<Record<string, string>>('env');
const apiEnv = apiConfig.requireObject<Record<string, string>>('env');
export type GraphQL = ReturnType<typeof deployGraphQL>;
export function deployGraphQL({
clickhouse,
release,
image,
deploymentEnv,
tokens,
webhooks,
schema,
schemaPolicy,
cdn,
redis,
usage,
usageEstimator,
dbMigrations,
rateLimit,
billing,
emails,
supertokensConfig,
auth0Config,
s3Config,
zendeskConfig,
imagePullSecret,
cdnAuthPrivateKey,
}: {
release: string;
image: string;
clickhouse: Clickhouse;
deploymentEnv: DeploymentEnvironment;
tokens: Tokens;
webhooks: Webhooks;
schema: Schema;
schemaPolicy: SchemaPolicy;
redis: Redis;
cdn: CDN;
cdnAuthPrivateKey: Output<string>;
usage: Usage;
usageEstimator: UsageEstimator;
dbMigrations: DbMigrations;
rateLimit: RateLimitService;
billing: StripeBillingService;
emails: Emails;
supertokensConfig: {
endpoint: Output<string>;
apiKey: Output<string>;
};
auth0Config: {
internalApiKey: Output<string>;
};
s3Config: {
endpoint: string;
bucketName: string;
accessKeyId: Output<string>;
secretAccessKey: Output<string>;
};
zendeskConfig: {
username: string;
password: Output<string>;
subdomain: string;
} | null;
imagePullSecret: k8s.core.v1.Secret;
}) {
const rawConnectionString = apiConfig.requireSecret('postgresConnectionString');
const connectionString = rawConnectionString.apply(rawConnectionString =>
parse(rawConnectionString),
);
return new ServiceDeployment(
'graphql-api',
{
imagePullSecret,
image,
replicas: isProduction(deploymentEnv) ? 3 : 1,
pdb: true,
readinessProbe: '/_readiness',
livenessProbe: '/_health',
availabilityOnEveryNode: true,
env: {
...apiEnv,
...deploymentEnv,
...apiConfig.requireObject<Record<string, string>>('env'),
...commonEnv,
RELEASE: release,
SENTRY: commonEnv.SENTRY_ENABLED,
// Logging
REQUEST_LOGGING: '0', // disabled
// ClickHouse
CLICKHOUSE_PROTOCOL: clickhouse.config.protocol,
CLICKHOUSE_HOST: clickhouse.config.host,
CLICKHOUSE_PORT: clickhouse.config.port,
CLICKHOUSE_USERNAME: clickhouse.config.username,
CLICKHOUSE_PASSWORD: clickhouse.config.password,
// Redis
REDIS_HOST: redis.config.host,
REDIS_PORT: String(redis.config.port),
REDIS_PASSWORD: redis.config.password,
// PG
POSTGRES_HOST: connectionString.apply(connection => connection.host ?? ''),
POSTGRES_PORT: connectionString.apply(connection => connection.port || '5432'),
POSTGRES_PASSWORD: connectionString.apply(connection => connection.password ?? ''),
POSTGRES_USER: connectionString.apply(connection => connection.user ?? ''),
POSTGRES_DB: connectionString.apply(connection => connection.database ?? ''),
POSTGRES_SSL: connectionString.apply(connection => (connection.ssl ? '1' : '0')),
// S3
S3_ENDPOINT: s3Config.endpoint,
S3_ACCESS_KEY_ID: s3Config.accessKeyId,
S3_SECRET_ACCESS_KEY: s3Config.secretAccessKey,
S3_BUCKET_NAME: s3Config.bucketName,
BILLING_ENDPOINT: serviceLocalEndpoint(billing.service),
TOKENS_ENDPOINT: serviceLocalEndpoint(tokens.service),
WEBHOOKS_ENDPOINT: serviceLocalEndpoint(webhooks.service),
SCHEMA_ENDPOINT: serviceLocalEndpoint(schema.service),
SCHEMA_POLICY_ENDPOINT: serviceLocalEndpoint(schemaPolicy.service),
WEB_APP_URL: `https://${deploymentEnv.DEPLOYED_DNS}/`,
// CDN
CDN_CF: '1',
CDN_CF_BASE_URL: cdn.workerBaseUrl,
CDN_AUTH_PRIVATE_KEY: cdnAuthPrivateKey,
// Hive
HIVE: '1',
HIVE_REPORTING: '1',
HIVE_USAGE: '1',
HIVE_USAGE_ENDPOINT: serviceLocalEndpoint(usage.service),
HIVE_REPORTING_ENDPOINT: 'http://0.0.0.0:4000/graphql',
// Zendesk
...(zendeskConfig
? {
ZENDESK_SUPPORT: '1',
ZENDESK_USERNAME: zendeskConfig.username,
ZENDESK_PASSWORD: zendeskConfig.password,
ZENDESK_SUBDOMAIN: zendeskConfig.subdomain,
}
: {
ZENDESK_SUPPORT: '0',
}),
//
USAGE_ESTIMATOR_ENDPOINT: serviceLocalEndpoint(usageEstimator.service),
INTEGRATION_GITHUB: '1',
INTEGRATION_GITHUB_APP_ID: githubAppConfig.require('id'),
INTEGRATION_GITHUB_APP_PRIVATE_KEY: githubAppConfig.requireSecret('key'),
RATE_LIMIT_ENDPOINT: serviceLocalEndpoint(rateLimit.service),
EMAILS_ENDPOINT: serviceLocalEndpoint(emails.service),
ENCRYPTION_SECRET: commonConfig.requireSecret('encryptionSecret'),
// Auth
SUPERTOKENS_CONNECTION_URI: supertokensConfig.endpoint,
SUPERTOKENS_API_KEY: supertokensConfig.apiKey,
AUTH_LEGACY_AUTH0: '1',
AUTH_LEGACY_AUTH0_INTERNAL_API_KEY: auth0Config.internalApiKey,
AUTH_ORGANIZATION_OIDC: '1',
// Various
GRAPHQL_PERSISTED_OPERATIONS_PATH: './persisted-operations.json',
},
exposesMetrics: true,
port: 4000,
},
[
dbMigrations,
redis.deployment,
redis.service,
clickhouse.deployment,
clickhouse.service,
rateLimit.deployment,
rateLimit.service,
],
).deploy();
}
Reference in a new issue View git blame Copy permalink