mirror of
https://github.com/graphql-hive/console
synced 2026-04-21 14:37:17 +00:00
e0eb3bdb28
Co-authored-by: Kamil Kisiela <kamil.kisiela@gmail.com> Co-authored-by: Saihajpreet Singh <saihajpreet.singh@gmail.com> Co-authored-by: Laurin Quast <laurinquast@googlemail.com> Co-authored-by: Dotan Simha <dotansimha@gmail.com>
104 lines
2.7 KiB
TypeScript
104 lines
2.7 KiB
TypeScript
import * as pulumi from '@pulumi/pulumi';
|
|
import { CertManager } from '../utils/cert-manager';
|
|
import { Proxy } from '../utils/reverse-proxy';
|
|
import { App } from './app';
|
|
import { Environment } from './environment';
|
|
import { GraphQL } from './graphql';
|
|
import { Observability } from './observability';
|
|
import { Usage } from './usage';
|
|
|
|
export function deployProxy({
|
|
graphql,
|
|
app,
|
|
usage,
|
|
environment,
|
|
observability,
|
|
}: {
|
|
observability: Observability;
|
|
environment: Environment;
|
|
graphql: GraphQL;
|
|
app: App;
|
|
usage: Usage;
|
|
}) {
|
|
const { tlsIssueName } = new CertManager().deployCertManagerAndIssuer();
|
|
const commonConfig = new pulumi.Config('common');
|
|
|
|
return new Proxy(tlsIssueName, {
|
|
address: commonConfig.get('staticIp'),
|
|
aksReservedIpResourceGroup: commonConfig.get('aksReservedIpResourceGroup'),
|
|
})
|
|
.deployProxy({
|
|
envoy: {
|
|
replicas: environment.isProduction ? 3 : 1,
|
|
cpu: environment.isProduction ? '800m' : '150m',
|
|
memory: environment.isProduction ? '800Mi' : '192Mi',
|
|
},
|
|
tracing: observability.enabled
|
|
? { collectorService: observability.observability!.otlpCollectorService }
|
|
: undefined,
|
|
})
|
|
.registerService({ record: environment.appDns }, [
|
|
{
|
|
name: 'app',
|
|
path: '/',
|
|
service: app.service,
|
|
requestTimeout: '60s',
|
|
},
|
|
{
|
|
name: 'server',
|
|
path: '/server',
|
|
service: graphql.service,
|
|
requestTimeout: '60s',
|
|
},
|
|
{
|
|
name: 'registry-api-health',
|
|
path: '/registry/_health',
|
|
customRewrite: '/_health',
|
|
service: graphql.service,
|
|
},
|
|
{
|
|
name: 'registry-api',
|
|
path: '/registry',
|
|
customRewrite: '/graphql',
|
|
service: graphql.service,
|
|
requestTimeout: '60s',
|
|
retriable: true,
|
|
},
|
|
{
|
|
name: 'graphql-api',
|
|
path: '/graphql',
|
|
customRewrite: '/graphql',
|
|
service: graphql.service,
|
|
requestTimeout: '60s',
|
|
retriable: true,
|
|
},
|
|
{
|
|
name: 'graphql-api-subscriptions',
|
|
path: '/graphql/stream',
|
|
customRewrite: '/graphql',
|
|
service: graphql.service,
|
|
requestTimeout: 'infinity',
|
|
// we send a ping every 12 seconds
|
|
idleTimeout: '30s',
|
|
retriable: true,
|
|
},
|
|
{
|
|
name: 'auth',
|
|
path: '/auth-api',
|
|
customRewrite: '/auth-api',
|
|
service: graphql.service,
|
|
requestTimeout: '60s',
|
|
retriable: true,
|
|
rateLimit: {
|
|
maxRequests: 10,
|
|
unit: 'minute',
|
|
},
|
|
},
|
|
{
|
|
name: 'usage',
|
|
path: '/usage',
|
|
service: usage.service,
|
|
retriable: true,
|
|
},
|
|
]);
|
|
}
|