kubeflow
/
pipelines
mirror of https://github.com/kubeflow/pipelines.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
pipelines/frontend/server/server.ts

386 lines
13 KiB
TypeScript
Raw Blame History

// Copyright 2018 Google LLC
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
import * as express from 'express';
import {Application, static as StaticHandler} from 'express';
import * as fs from 'fs';
import * as proxy from 'http-proxy-middleware';
import {Client as MinioClient} from 'minio';
import fetch from 'node-fetch';
import * as path from 'path';
import * as process from 'process';
// @ts-ignore
import * as tar from 'tar';
import * as k8sHelper from './k8s-helper';
import proxyMiddleware from './proxy-middleware';
import { Storage } from '@google-cloud/storage';
import {Stream} from 'stream';
import {loadJSON} from './utils';
const BASEPATH = '/pipeline';
/** All configurable environment variables can be found here. */
const {
/** minio client use these to retrieve minio objects/artifacts */
MINIO_ACCESS_KEY = 'minio',
MINIO_SECRET_KEY = 'minio123',
MINIO_PORT = '9000',
MINIO_HOST = 'minio-service',
MINIO_NAMESPACE = 'kubeflow',
MINIO_SSL = 'false',
/** minio client use these to retrieve s3 objects/artifacts */
AWS_ACCESS_KEY_ID,
AWS_SECRET_ACCESS_KEY,
/** http/https base URL **/
HTTP_BASE_URL = '',
/** http/https fetch with this authorization header key (for example: 'Authorization') */
HTTP_AUTHORIZATION_KEY = '',
/** http/https fetch with this authorization header value by default when absent in client request at above key */
HTTP_AUTHORIZATION_DEFAULT_VALUE = '',
/** API service will listen to this host */
ML_PIPELINE_SERVICE_HOST = 'localhost',
/** API service will listen to this port */
ML_PIPELINE_SERVICE_PORT = '3001',
/** path to viewer:tensorboard pod template spec */
VIEWER_TENSORBOARD_POD_TEMPLATE_SPEC_PATH
} = process.env;
/** construct minio endpoint from host and namespace (optional) */
const MINIO_ENDPOINT = MINIO_NAMESPACE && MINIO_NAMESPACE.length > 0 ? `${MINIO_HOST}.${MINIO_NAMESPACE}` : MINIO_HOST;
/** converts string to bool */
const _as_bool = (value: string) => ['true', '1'].indexOf(value.toLowerCase()) >= 0
/** minio client for minio storage */
const minioClient = new MinioClient({
accessKey: MINIO_ACCESS_KEY,
endPoint: MINIO_ENDPOINT,
port: parseInt(MINIO_PORT, 10),
secretKey: MINIO_SECRET_KEY,
useSSL: _as_bool(MINIO_SSL),
} as any);
/** minio client for s3 objects */
const s3Client = new MinioClient({
endPoint: 's3.amazonaws.com',
accessKey: AWS_ACCESS_KEY_ID,
secretKey: AWS_SECRET_ACCESS_KEY,
} as any);
/** pod template spec to use for viewer crd */
const podTemplateSpec = loadJSON(VIEWER_TENSORBOARD_POD_TEMPLATE_SPEC_PATH, k8sHelper.defaultPodTemplateSpec)
const app = express() as Application;
app.use(function (req, _, next) {
console.info(req.method + ' ' + req.originalUrl);
next();
});
if (process.argv.length < 3) {
console.error(`\
Usage: node server.js <static-dir> [port].
You can specify the API server address using the
ML_PIPELINE_SERVICE_HOST and ML_PIPELINE_SERVICE_PORT
env vars.`);
process.exit(1);
}
const currentDir = path.resolve(__dirname);
const buildDatePath = path.join(currentDir, 'BUILD_DATE');
const commitHashPath = path.join(currentDir, 'COMMIT_HASH');
const staticDir = path.resolve(process.argv[2]);
const buildDate =
fs.existsSync(buildDatePath) ? fs.readFileSync(buildDatePath, 'utf-8').trim() : '';
const commitHash =
fs.existsSync(commitHashPath) ? fs.readFileSync(commitHashPath, 'utf-8').trim() : '';
const port = process.argv[3] || 3000;
const apiServerAddress = `http://${ML_PIPELINE_SERVICE_HOST}:${ML_PIPELINE_SERVICE_PORT}`;
const v1beta1Prefix = 'apis/v1beta1';
const healthzStats = {
apiServerCommitHash: '',
apiServerReady: false,
buildDate,
frontendCommitHash: commitHash,
};
const healthzHandler = async (_, res) => {
try {
const response = await fetch(
`${apiServerAddress}/${v1beta1Prefix}/healthz`, { timeout: 1000 });
healthzStats.apiServerReady = true;
const serverStatus = await response.json();
healthzStats.apiServerCommitHash = serverStatus.commit_sha;
} catch (e) {
healthzStats.apiServerReady = false;
}
res.json(healthzStats);
};
const artifactsHandler = async (req, res) => {
const [source, bucket, encodedKey] = [req.query.source, req.query.bucket, req.query.key];
if (!source) {
res.status(500).send('Storage source is missing from artifact request');
return;
}
if (!bucket) {
res.status(500).send('Storage bucket is missing from artifact request');
return;
}
if (!encodedKey) {
res.status(500).send('Storage key is missing from artifact request');
return;
}
const key = decodeURIComponent(encodedKey);
console.log(`Getting storage artifact at: ${source}: ${bucket}/${key}`);
switch (source) {
case 'gcs':
try {
// Read all files that match the key pattern, which can include wildcards '*'.
// The way this works is we list all paths whose prefix is the substring
// of the pattern until the first wildcard, then we create a regular
// expression out of the pattern, escaping all non-wildcard characters,
// and we use it to match all enumerated paths.
const storage = new Storage();
const prefix = key.indexOf('*') > -1 ? key.substr(0, key.indexOf('*')) : key;
const files = await storage.bucket(bucket).getFiles({ prefix });
const matchingFiles = files[0].filter((f) => {
// Escape regex characters
const escapeRegexChars = (s: string) => s.replace(/[|\\{}()[\]^$+*?.]/g, '\\$&');
// Build a RegExp object that only recognizes asterisks ('*'), and
// escapes everything else.
const regex = new RegExp('^' + key.split(/\*+/).map(escapeRegexChars).join('.*') + '$');
return regex.test(f.name);
});
if (!matchingFiles.length) {
console.log('No matching files found.');
res.send();
return;
}
console.log(`Found ${matchingFiles.length} matching files:`, matchingFiles);
let contents = '';
matchingFiles.forEach((f, i) => {
const buffer: Buffer[] = [];
f.createReadStream()
.on('data', (data) => buffer.push(Buffer.from(data)))
.on('end', () => {
contents += Buffer.concat(buffer).toString().trim() + '\n';
if (i === matchingFiles.length - 1) {
res.send(contents);
}
})
.on('error', () => res.status(500).send('Failed to read file: ' + f.name));
});
} catch (err) {
res.status(500).send('Failed to download GCS file(s). Error: ' + err);
}
break;
case 'minio':
minioClient.getObject(bucket, key, (err, stream) => {
if (err) {
res.status(500).send(`Failed to get object in bucket ${bucket} at path ${key}: ${err}`);
return;
}
try {
let contents = '';
stream.pipe(new tar.Parse()).on('entry', (entry: Stream) => {
entry.on('data', (buffer) => contents += buffer.toString());
});
stream.on('end', () => {
res.send(contents);
});
} catch (err) {
res.status(500).send(`Failed to get object in bucket ${bucket} at path ${key}: ${err}`);
}
});
break;
case 's3':
s3Client.getObject(bucket, key, (err, stream) => {
if (err) {
res.status(500).send(`Failed to get object in bucket ${bucket} at path ${key}: ${err}`);
return;
}
try {
let contents = '';
stream.on('data', (chunk) => {
contents = chunk.toString();
});
stream.on('end', () => {
res.send(contents);
});
} catch (err) {
res.status(500).send(`Failed to get object in bucket ${bucket} at path ${key}: ${err}`);
}
});
break;
case 'http':
case 'https':
// trim `/` from both ends of the base URL, then append with a single `/` to the end (empty string remains empty)
const baseUrl = HTTP_BASE_URL.replace(/^\/*(.+?)\/*$/, '$1/');
const headers = {};
// add authorization header to fetch request if key is non-empty
if (HTTP_AUTHORIZATION_KEY.length > 0) {
// inject original request's value if exists, otherwise default to provided default value
headers[HTTP_AUTHORIZATION_KEY] = req.headers[HTTP_AUTHORIZATION_KEY] || HTTP_AUTHORIZATION_DEFAULT_VALUE;
}
const response = await fetch(`${source}://${baseUrl}${bucket}/${key}`, { headers: headers });
const content = await response.buffer();
res.send(content);
break;
default:
res.status(500).send('Unknown storage source: ' + source);
return;
}
};
const getTensorboardHandler = async (req, res) => {
if (!k8sHelper.isInCluster) {
res.status(500).send('Cannot talk to Kubernetes master');
return;
}
const logdir = decodeURIComponent(req.query.logdir);
if (!logdir) {
res.status(404).send('logdir argument is required');
return;
}
try {
res.send(await k8sHelper.getTensorboardInstance(logdir));
} catch (err) {
res.status(500).send('Failed to list Tensorboard pods: ' + JSON.stringify(err));
}
};
const createTensorboardHandler = async (req, res) => {
if (!k8sHelper.isInCluster) {
res.status(500).send('Cannot talk to Kubernetes master');
return;
}
const logdir = decodeURIComponent(req.query.logdir);
if (!logdir) {
res.status(404).send('logdir argument is required');
return;
}
try {
await k8sHelper.newTensorboardInstance(logdir, podTemplateSpec);
const tensorboardAddress = await k8sHelper.waitForTensorboardInstance(logdir, 60 * 1000);
res.send(tensorboardAddress);
} catch (err) {
res.status(500).send('Failed to start Tensorboard app: ' + JSON.stringify(err));
}
};
const logsHandler = async (req, res) => {
if (!k8sHelper.isInCluster) {
res.status(500).send('Cannot talk to Kubernetes master');
return;
}
const podName = decodeURIComponent(req.query.podname);
if (!podName) {
res.status(404).send('podname argument is required');
return;
}
try {
res.send(await k8sHelper.getPodLogs(podName));
} catch (err) {
res.status(500).send('Could not get main container logs: ' + err);
}
};
const clusterNameHandler = async (req, res) => {
const response = await fetch(
'http://metadata/computeMetadata/v1/instance/attributes/cluster-name',
{ headers: {'Metadata-Flavor': 'Google' } }
);
res.send(await response.text());
};
const projectIdHandler = async (req, res) => {
const response = await fetch(
'http://metadata/computeMetadata/v1/project/project-id',
{ headers: {'Metadata-Flavor': 'Google' } }
);
res.send(await response.text());
};
app.get('/' + v1beta1Prefix + '/healthz', healthzHandler);
app.get(BASEPATH + '/' + v1beta1Prefix + '/healthz', healthzHandler);
app.get('/artifacts/get', artifactsHandler);
app.get(BASEPATH + '/artifacts/get', artifactsHandler);
app.get('/apps/tensorboard', getTensorboardHandler);
app.get(BASEPATH + '/apps/tensorboard', getTensorboardHandler);
app.post('/apps/tensorboard', createTensorboardHandler);
app.post(BASEPATH + '/apps/tensorboard', createTensorboardHandler);
app.get('/k8s/pod/logs', logsHandler);
app.get(BASEPATH + '/k8s/pod/logs', logsHandler);
app.get('/system/cluster-name', clusterNameHandler);
app.get(BASEPATH + '/system/cluster-name', clusterNameHandler);
app.get('/system/project-id', projectIdHandler);
app.get(BASEPATH + '/system/project-id', projectIdHandler);
// Order matters here, since both handlers can match any proxied request with a referer,
// and we prioritize the basepath-friendly handler
proxyMiddleware(app, BASEPATH + '/' + v1beta1Prefix);
proxyMiddleware(app, '/' + v1beta1Prefix);
app.all('/' + v1beta1Prefix + '/*', proxy({
changeOrigin: true,
onProxyReq: proxyReq => {
console.log('Proxied request: ', (proxyReq as any).path);
},
target: apiServerAddress,
}));
app.all(BASEPATH + '/' + v1beta1Prefix + '/*', proxy({
changeOrigin: true,
onProxyReq: proxyReq => {
console.log('Proxied request: ', (proxyReq as any).path);
},
pathRewrite: (path) =>
path.startsWith(BASEPATH) ? path.substr(BASEPATH.length, path.length) : path,
target: apiServerAddress,
}));
app.use(BASEPATH, StaticHandler(staticDir));
app.use(StaticHandler(staticDir));
app.get('*', (req, res) => {
// TODO: look into caching this file to speed up multiple requests.
res.sendFile(path.resolve(staticDir, 'index.html'));
});
app.listen(port, () => {
console.log('Server listening at http://localhost:' + port);
});
Reference in New Issue View Git Blame Copy Permalink