2015-11-01 16:35:01 +01:00
package provider
2015-09-12 15:10:03 +02:00
2015-09-08 00:15:14 +02:00
import (
2015-09-15 22:32:09 +02:00
"errors"
2016-04-08 14:20:54 +02:00
"net/http"
2015-09-24 17:16:13 +02:00
"strconv"
"strings"
"text/template"
"time"
2016-04-08 14:20:54 +02:00
"golang.org/x/net/context"
2015-09-10 22:54:37 +02:00
"github.com/BurntSushi/ty/fun"
2015-09-24 14:32:37 +02:00
log "github.com/Sirupsen/logrus"
2015-09-15 22:32:09 +02:00
"github.com/cenkalti/backoff"
2016-03-31 18:57:08 +02:00
"github.com/containous/traefik/safe"
2016-02-24 16:43:39 +01:00
"github.com/containous/traefik/types"
2016-04-08 14:20:54 +02:00
"github.com/docker/engine-api/client"
dockertypes "github.com/docker/engine-api/types"
eventtypes "github.com/docker/engine-api/types/events"
"github.com/docker/engine-api/types/filters"
"github.com/docker/go-connections/sockets"
"github.com/docker/go-connections/tlsconfig"
"github.com/vdemeester/docker-events"
2015-09-07 10:38:58 +02:00
)
2015-09-09 22:39:08 +02:00
2016-04-08 14:20:54 +02:00
// DockerAPIVersion is a constant holding the version of the Docker API traefik will use
const DockerAPIVersion string = "1.21"
2015-11-01 19:29:47 +01:00
// Docker holds configurations of the Docker provider.
2015-11-02 19:48:34 +01:00
type Docker struct {
2016-05-24 17:31:50 +02:00
BaseProvider
Endpoint string ` description:"Docker server endpoint. Can be a tcp or a unix socket endpoint" `
Domain string ` description:"Default domain used" `
TLS * DockerTLS ` description:"Enable Docker TLS support" `
2015-11-20 23:05:06 +08:00
}
// DockerTLS holds TLS specific configurations
type DockerTLS struct {
2016-05-03 16:52:14 +02:00
CA string ` description:"TLS CA" `
Cert string ` description:"TLS cert" `
Key string ` description:"TLS key" `
InsecureSkipVerify bool ` description:"TLS insecure skip verify" `
2015-09-09 22:39:08 +02:00
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) createClient ( ) ( client . APIClient , error ) {
var httpClient * http . Client
httpHeaders := map [ string ] string {
// FIXME(vdemeester) use version here O:)
"User-Agent" : "Traefik" ,
}
if provider . TLS != nil {
tlsOptions := tlsconfig . Options {
CAFile : provider . TLS . CA ,
CertFile : provider . TLS . Cert ,
KeyFile : provider . TLS . Key ,
InsecureSkipVerify : provider . TLS . InsecureSkipVerify ,
}
config , err := tlsconfig . Client ( tlsOptions )
if err != nil {
return nil , err
}
tr := & http . Transport {
TLSClientConfig : config ,
}
proto , addr , _ , err := client . ParseHost ( provider . Endpoint )
if err != nil {
return nil , err
}
sockets . ConfigureTransport ( tr , proto , addr )
httpClient = & http . Client {
Transport : tr ,
}
}
return client . NewClient ( provider . Endpoint , DockerAPIVersion , httpClient , httpHeaders )
}
2015-11-01 19:29:47 +01:00
// Provide allows the provider to provide configurations to traefik
// using the given configuration channel.
2016-05-31 09:54:42 +02:00
func ( provider * Docker ) Provide ( configurationChan chan <- types . ConfigMessage , pool * safe . Pool , constraints [ ] types . Constraint ) error {
2016-05-30 15:05:58 +02:00
provider . Constraints = append ( provider . Constraints , constraints ... )
2016-04-13 20:36:23 +02:00
// TODO register this routine in pool, and watch for stop channel
2016-03-31 18:57:08 +02:00
safe . Go ( func ( ) {
2016-02-25 18:30:13 +01:00
operation := func ( ) error {
var err error
2015-11-01 19:29:47 +01:00
2016-04-08 14:20:54 +02:00
dockerClient , err := provider . createClient ( )
2016-02-25 18:30:13 +01:00
if err != nil {
log . Errorf ( "Failed to create a client for docker, error: %s" , err )
return err
}
2016-06-08 19:39:38 +02:00
ctx := context . Background ( )
version , err := dockerClient . ServerVersion ( ctx )
2016-04-08 14:20:54 +02:00
log . Debugf ( "Docker connection established with docker %s (API %s)" , version . Version , version . APIVersion )
2016-06-08 19:39:38 +02:00
containers , err := listContainers ( ctx , dockerClient )
2016-02-25 18:30:13 +01:00
if err != nil {
2016-04-08 14:20:54 +02:00
log . Errorf ( "Failed to list containers for docker, error %s" , err )
2016-02-25 18:30:13 +01:00
return err
}
2016-04-08 14:20:54 +02:00
configuration := provider . loadDockerConfig ( containers )
2016-02-25 18:30:13 +01:00
configurationChan <- types . ConfigMessage {
ProviderName : "docker" ,
Configuration : configuration ,
}
if provider . Watch {
2016-06-08 19:39:38 +02:00
ctx , cancel := context . WithCancel ( ctx )
2016-06-16 22:49:57 +02:00
pool . Go ( func ( stop chan bool ) {
for {
select {
case <- stop :
cancel ( )
return
}
}
} )
2016-04-08 14:20:54 +02:00
f := filters . NewArgs ( )
f . Add ( "type" , "container" )
options := dockertypes . EventsOptions {
Filters : f ,
}
eventHandler := events . NewHandler ( events . ByAction )
startStopHandle := func ( m eventtypes . Message ) {
log . Debugf ( "Docker event received %+v" , m )
2016-06-08 19:39:38 +02:00
containers , err := listContainers ( ctx , dockerClient )
2016-04-08 14:20:54 +02:00
if err != nil {
log . Errorf ( "Failed to list containers for docker, error %s" , err )
// Call cancel to get out of the monitor
cancel ( )
2016-06-08 19:39:38 +02:00
return
2015-11-01 19:29:47 +01:00
}
2016-04-08 14:20:54 +02:00
configuration := provider . loadDockerConfig ( containers )
if configuration != nil {
configurationChan <- types . ConfigMessage {
ProviderName : "docker" ,
Configuration : configuration ,
2015-09-10 22:54:37 +02:00
}
2015-09-10 09:06:37 +02:00
}
2015-09-09 22:39:08 +02:00
}
2016-04-08 14:20:54 +02:00
eventHandler . Handle ( "start" , startStopHandle )
eventHandler . Handle ( "die" , startStopHandle )
2016-04-13 20:36:23 +02:00
2016-04-08 14:20:54 +02:00
errChan := events . MonitorWithHandler ( ctx , dockerClient , options , eventHandler )
if err := <- errChan ; err != nil {
return err
}
2015-11-01 19:29:47 +01:00
}
2016-02-25 18:30:13 +01:00
return nil
}
notify := func ( err error , time time . Duration ) {
log . Errorf ( "Docker connection error %+v, retrying in %s" , err , time )
}
err := backoff . RetryNotify ( operation , backoff . NewExponentialBackOff ( ) , notify )
if err != nil {
log . Fatalf ( "Cannot connect to docker server %+v" , err )
}
2016-03-31 18:57:08 +02:00
} )
2015-11-01 19:29:47 +01:00
2015-10-01 12:04:25 +02:00
return nil
2015-09-07 10:38:58 +02:00
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) loadDockerConfig ( containersInspected [ ] dockertypes . ContainerJSON ) * types . Configuration {
2015-10-08 21:21:51 +02:00
var DockerFuncMap = template . FuncMap {
2015-11-13 11:50:32 +01:00
"getBackend" : provider . getBackend ,
2016-05-31 22:11:17 -07:00
"getIPAddress" : provider . getIPAddress ,
2015-11-13 11:50:32 +01:00
"getPort" : provider . getPort ,
"getWeight" : provider . getWeight ,
"getDomain" : provider . getDomain ,
"getProtocol" : provider . getProtocol ,
"getPassHostHeader" : provider . getPassHostHeader ,
2016-06-06 22:30:23 +02:00
"getPriority" : provider . getPriority ,
2016-02-01 16:08:58 +01:00
"getEntryPoints" : provider . getEntryPoints ,
2015-11-13 11:50:32 +01:00
"getFrontendRule" : provider . getFrontendRule ,
"replace" : replace ,
2015-09-10 22:54:37 +02:00
}
// filter containers
2016-06-06 21:59:58 +02:00
filteredContainers := fun . Filter ( provider . ContainerFilter , containersInspected ) . ( [ ] dockertypes . ContainerJSON )
2015-09-10 22:54:37 +02:00
2016-04-08 14:20:54 +02:00
frontends := map [ string ] [ ] dockertypes . ContainerJSON { }
2015-09-10 22:54:37 +02:00
for _ , container := range filteredContainers {
2016-06-06 21:59:58 +02:00
frontendName := provider . getFrontendName ( container )
frontends [ frontendName ] = append ( frontends [ frontendName ] , container )
2015-09-07 10:38:58 +02:00
}
2015-09-09 16:49:51 +02:00
templateObjects := struct {
2016-04-08 14:20:54 +02:00
Containers [ ] dockertypes . ContainerJSON
Frontends map [ string ] [ ] dockertypes . ContainerJSON
2015-09-09 17:50:02 +02:00
Domain string
2015-09-07 10:38:58 +02:00
} {
2015-09-10 22:54:37 +02:00
filteredContainers ,
2015-10-23 09:49:19 +02:00
frontends ,
2015-09-09 17:10:43 +02:00
provider . Domain ,
2015-09-07 10:38:58 +02:00
}
2015-11-13 11:50:32 +01:00
configuration , err := provider . getConfiguration ( "templates/docker.tmpl" , DockerFuncMap , templateObjects )
2015-09-07 10:38:58 +02:00
if err != nil {
2015-11-13 11:50:32 +01:00
log . Error ( err )
2015-09-07 10:38:58 +02:00
}
2015-11-13 11:50:32 +01:00
return configuration
}
2015-09-07 10:38:58 +02:00
2016-06-06 21:59:58 +02:00
// ContainerFilter checks if container have to be exposed
func ( provider * Docker ) ContainerFilter ( container dockertypes . ContainerJSON ) bool {
2016-05-28 15:16:57 -07:00
_ , err := strconv . Atoi ( container . Config . Labels [ "traefik.port" ] )
if len ( container . NetworkSettings . Ports ) == 0 && err != nil {
log . Debugf ( "Filtering container without port and no traefik.port label %s" , container . Name )
2015-11-13 11:50:32 +01:00
return false
2015-09-07 10:38:58 +02:00
}
2015-11-13 11:50:32 +01:00
if len ( container . NetworkSettings . Ports ) > 1 && err != nil {
log . Debugf ( "Filtering container with more than 1 port and no traefik.port label %s" , container . Name )
return false
}
if container . Config . Labels [ "traefik.enable" ] == "false" {
log . Debugf ( "Filtering disabled container %s" , container . Name )
return false
}
2016-06-06 21:59:58 +02:00
constraintTags := strings . Split ( container . Config . Labels [ "traefik.tags" ] , "," )
2016-06-11 19:05:54 +02:00
if ok , failingConstraint := provider . MatchConstraints ( constraintTags ) ; ! ok {
2016-06-06 21:59:58 +02:00
if failingConstraint != nil {
log . Debugf ( "Container %v pruned by '%v' constraint" , container . Name , failingConstraint . String ( ) )
}
return false
}
2015-11-13 11:50:32 +01:00
return true
2015-09-09 16:49:51 +02:00
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getFrontendName ( container dockertypes . ContainerJSON ) string {
2015-10-23 09:49:19 +02:00
// Replace '.' with '-' in quoted keys because of this issue https://github.com/BurntSushi/toml/issues/78
2016-03-27 01:05:17 +01:00
return normalize ( provider . getFrontendRule ( container ) )
2015-10-23 09:49:19 +02:00
}
2015-11-13 11:50:32 +01:00
// GetFrontendRule returns the frontend rule for the specified container, using
// it's label. It returns a default one (Host) if the label is not present.
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getFrontendRule ( container dockertypes . ContainerJSON ) string {
2016-03-30 19:05:43 +02:00
// ⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠
// TODO: backwards compatibility with DEPRECATED rule.Value
if value , ok := container . Config . Labels [ "traefik.frontend.value" ] ; ok {
2016-03-31 12:59:50 +02:00
log . Warnf ( "Label traefik.frontend.value=%s is DEPRECATED (will be removed in v1.0.0), please refer to the rule label: https://github.com/containous/traefik/blob/master/docs/index.md#docker" , value )
2016-03-30 19:05:43 +02:00
rule , _ := container . Config . Labels [ "traefik.frontend.rule" ]
return rule + ":" + value
}
// ⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠⚠
2015-11-13 11:50:32 +01:00
if label , err := getLabel ( container , "traefik.frontend.rule" ) ; err == nil {
return label
}
2016-06-01 16:47:39 +02:00
return "Host:" + provider . getSubDomain ( container . Name ) + "." + provider . Domain
2015-11-13 11:50:32 +01:00
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getBackend ( container dockertypes . ContainerJSON ) string {
2015-11-13 11:50:32 +01:00
if label , err := getLabel ( container , "traefik.backend" ) ; err == nil {
return label
}
2016-03-27 01:05:17 +01:00
return normalize ( container . Name )
2015-11-13 11:50:32 +01:00
}
2016-05-31 22:11:17 -07:00
func ( provider * Docker ) getIPAddress ( container dockertypes . ContainerJSON ) string {
if label , err := getLabel ( container , "traefik.docker.network" ) ; err == nil && label != "" {
networks := container . NetworkSettings . Networks
if networks != nil {
network := networks [ label ]
if network != nil {
return network . IPAddress
}
}
}
for _ , network := range container . NetworkSettings . Networks {
return network . IPAddress
}
return ""
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getPort ( container dockertypes . ContainerJSON ) string {
2015-11-13 11:50:32 +01:00
if label , err := getLabel ( container , "traefik.port" ) ; err == nil {
return label
}
for key := range container . NetworkSettings . Ports {
return key . Port ( )
}
return ""
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getWeight ( container dockertypes . ContainerJSON ) string {
2015-11-13 11:50:32 +01:00
if label , err := getLabel ( container , "traefik.weight" ) ; err == nil {
return label
}
2016-03-27 01:05:17 +01:00
return "1"
2015-11-13 11:50:32 +01:00
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getDomain ( container dockertypes . ContainerJSON ) string {
2015-11-13 11:50:32 +01:00
if label , err := getLabel ( container , "traefik.domain" ) ; err == nil {
return label
}
return provider . Domain
2015-10-23 09:49:19 +02:00
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getProtocol ( container dockertypes . ContainerJSON ) string {
2015-11-13 11:50:32 +01:00
if label , err := getLabel ( container , "traefik.protocol" ) ; err == nil {
return label
}
return "http"
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getPassHostHeader ( container dockertypes . ContainerJSON ) string {
2015-11-13 11:50:32 +01:00
if passHostHeader , err := getLabel ( container , "traefik.frontend.passHostHeader" ) ; err == nil {
return passHostHeader
}
2016-05-10 07:43:24 -04:00
return "true"
2015-11-13 11:50:32 +01:00
}
2016-06-06 22:30:23 +02:00
func ( provider * Docker ) getPriority ( container dockertypes . ContainerJSON ) string {
if priority , err := getLabel ( container , "traefik.frontend.priority" ) ; err == nil {
return priority
}
return "0"
}
2016-04-08 14:20:54 +02:00
func ( provider * Docker ) getEntryPoints ( container dockertypes . ContainerJSON ) [ ] string {
2016-02-01 16:08:58 +01:00
if entryPoints , err := getLabel ( container , "traefik.frontend.entryPoints" ) ; err == nil {
return strings . Split ( entryPoints , "," )
}
return [ ] string { }
}
2016-04-08 14:20:54 +02:00
func getLabel ( container dockertypes . ContainerJSON , label string ) ( string , error ) {
2015-09-09 16:49:51 +02:00
for key , value := range container . Config . Labels {
2015-10-23 09:49:19 +02:00
if key == label {
return value , nil
2015-09-09 16:49:51 +02:00
}
}
2015-10-23 09:49:19 +02:00
return "" , errors . New ( "Label not found:" + label )
}
2016-04-08 14:20:54 +02:00
func getLabels ( container dockertypes . ContainerJSON , labels [ ] string ) ( map [ string ] string , error ) {
2015-11-05 15:14:25 +01:00
var globalErr error
2015-10-27 00:26:35 +01:00
foundLabels := map [ string ] string { }
for _ , label := range labels {
2015-11-13 11:50:32 +01:00
foundLabel , err := getLabel ( container , label )
2015-11-05 15:14:25 +01:00
// Error out only if one of them is defined.
2015-11-01 19:29:47 +01:00
if err != nil {
2015-11-05 15:14:25 +01:00
globalErr = errors . New ( "Label not found: " + label )
continue
2015-10-27 00:26:35 +01:00
}
2015-11-01 19:29:47 +01:00
foundLabels [ label ] = foundLabel
2015-11-05 15:14:25 +01:00
2015-10-27 00:26:35 +01:00
}
2015-11-05 15:14:25 +01:00
return foundLabels , globalErr
2015-10-27 00:26:35 +01:00
}
2016-06-08 19:39:38 +02:00
func listContainers ( ctx context . Context , dockerClient client . APIClient ) ( [ ] dockertypes . ContainerJSON , error ) {
containerList , err := dockerClient . ContainerList ( ctx , dockertypes . ContainerListOptions { } )
2016-04-08 14:20:54 +02:00
if err != nil {
return [ ] dockertypes . ContainerJSON { } , err
}
containersInspected := [ ] dockertypes . ContainerJSON { }
2015-10-23 09:49:19 +02:00
2015-11-13 11:50:32 +01:00
// get inspect containers
for _ , container := range containerList {
2016-06-08 19:39:38 +02:00
containerInspected , err := dockerClient . ContainerInspect ( ctx , container . ID )
2016-04-08 14:20:54 +02:00
if err != nil {
2016-06-20 12:15:31 +02:00
log . Warnf ( "Failed to inspect container %s, error: %s" , container . ID , err )
2016-06-08 19:39:38 +02:00
} else {
containersInspected = append ( containersInspected , containerInspected )
2016-04-08 14:20:54 +02:00
}
2015-10-23 09:49:19 +02:00
}
2016-04-08 14:20:54 +02:00
return containersInspected , nil
2015-09-12 15:10:03 +02:00
}
2016-05-31 23:23:23 +02:00
// Escape beginning slash "/", convert all others to dash "-"
2016-06-01 16:47:39 +02:00
func ( provider * Docker ) getSubDomain ( name string ) string {
2016-05-31 23:23:23 +02:00
return strings . Replace ( strings . TrimPrefix ( name , "/" ) , "/" , "-" , - 1 )
}