mirror of
https://github.com/bigchaindb/bigchaindb.git
synced 2024-10-13 13:34:05 +00:00
425397f644
- Added NGINX deployment to frontend both BDB and MDB. - Nginx is configured with a whitelist (which is read from a ConfigMap) to allow only other MDB nodes in the closter to communicate with it. - Azure LB apparently does not support proxy protocol and hence whitelisting fails as nginx always observer the LB IP instead of the real IP in the TCP stream. - Whitelisting source IPs for MongoDB - Removing deprecated folder - Better log format - Intuitive port number usage - README and examples - Addressed a typo in PYTHON_STYLE_GUIDE.md - Azure LB apparently does not support proxy protocol and hence whitelisting fails as nginx always observer the LB IP instead of the real IP in the TCP stream. - Whitelisting source IPs for MongoDB - Removing deprecated folder - Multiple changes: - Better log format - Intuitive port number usage - README and examples - Addressed a typo in PYTHON_STYLE_GUIDE.md - Documentation - add the k8s directory to the ignore list in codecov.yml
45 lines
1.6 KiB
Bash
Executable File
45 lines
1.6 KiB
Bash
Executable File
#!/bin/bash
|
|
set -euo pipefail
|
|
|
|
mongo_frontend_port=`printenv MONGODB_FRONTEND_PORT`
|
|
mongo_backend_host=`printenv MONGODB_BACKEND_HOST`
|
|
mongo_backend_port=`printenv MONGODB_BACKEND_PORT`
|
|
bdb_frontend_port=`printenv BIGCHAINDB_FRONTEND_PORT`
|
|
bdb_backend_host=`printenv BIGCHAINDB_BACKEND_HOST`
|
|
bdb_backend_port=`printenv BIGCHAINDB_BACKEND_PORT`
|
|
mongo_whitelist=`printenv MONGODB_WHITELIST`
|
|
|
|
# sanity checks
|
|
if [[ -z "${mongo_frontend_port}" || \
|
|
-z "${mongo_backend_host}" || \
|
|
-z "${mongo_backend_port}" || \
|
|
-z "${bdb_frontend_port}" || \
|
|
-z "${bdb_backend_host}" || \
|
|
-z "${bdb_backend_port}" ]] ; then
|
|
echo "Invalid environment settings detected. Exiting!"
|
|
exit 1
|
|
fi
|
|
|
|
NGINX_CONF_FILE=/etc/nginx/nginx.conf
|
|
|
|
# configure the nginx.conf file with env variables
|
|
sed -i "s|MONGODB_FRONTEND_PORT|${mongo_frontend_port}|g" $NGINX_CONF_FILE
|
|
sed -i "s|MONGODB_BACKEND_HOST|${mongo_backend_host}|g" $NGINX_CONF_FILE
|
|
sed -i "s|MONGODB_BACKEND_PORT|${mongo_backend_port}|g" $NGINX_CONF_FILE
|
|
sed -i "s|BIGCHAINDB_FRONTEND_PORT|${bdb_frontend_port}|g" $NGINX_CONF_FILE
|
|
sed -i "s|BIGCHAINDB_BACKEND_HOST|${bdb_backend_host}|g" $NGINX_CONF_FILE
|
|
sed -i "s|BIGCHAINDB_BACKEND_PORT|${bdb_backend_port}|g" $NGINX_CONF_FILE
|
|
|
|
# populate the whitelist in the conf file as per MONGODB_WHITELIST env var
|
|
hosts=$(echo ${mongo_whitelist} | tr ":" "\n")
|
|
for host in $hosts; do
|
|
sed -i "s|MONGODB_WHITELIST|allow ${host};\n MONGODB_WHITELIST|g" $NGINX_CONF_FILE
|
|
done
|
|
|
|
# remove the MONGODB_WHITELIST marker string from template
|
|
sed -i "s|MONGODB_WHITELIST||g" $NGINX_CONF_FILE
|
|
|
|
# start nginx
|
|
echo "INFO: starting nginx..."
|
|
exec nginx -c /etc/nginx/nginx.conf
|