mirror of
https://github.com/grafana/grafana.git
synced 2025-01-24 07:17:08 -06:00
9c98314e9f
* Add ApprovalForce to AuthCodeOptions * Extract access token validity check to a function * Refactor * Oauth: set options internally instead of exposing new function * Align tests * Remove unused function Co-authored-by: Karl Persson <kalle.persson@grafana.com>
267 lines
7.7 KiB
Go
267 lines
7.7 KiB
Go
package server
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"net"
|
|
"os"
|
|
"path/filepath"
|
|
"reflect"
|
|
"strconv"
|
|
"sync"
|
|
|
|
"github.com/grafana/grafana/pkg/infra/usagestats/statscollector"
|
|
"github.com/grafana/grafana/pkg/services/accesscontrol"
|
|
"github.com/grafana/grafana/pkg/services/loginattempt"
|
|
|
|
"github.com/grafana/grafana/pkg/api"
|
|
_ "github.com/grafana/grafana/pkg/extensions"
|
|
"github.com/grafana/grafana/pkg/infra/log"
|
|
"github.com/grafana/grafana/pkg/infra/metrics"
|
|
"github.com/grafana/grafana/pkg/login"
|
|
"github.com/grafana/grafana/pkg/login/social"
|
|
"github.com/grafana/grafana/pkg/registry"
|
|
"github.com/grafana/grafana/pkg/services/provisioning"
|
|
"github.com/grafana/grafana/pkg/services/user"
|
|
|
|
"github.com/grafana/grafana/pkg/setting"
|
|
"golang.org/x/sync/errgroup"
|
|
)
|
|
|
|
// Options contains parameters for the New function.
|
|
type Options struct {
|
|
HomePath string
|
|
PidFile string
|
|
Version string
|
|
Commit string
|
|
BuildBranch string
|
|
Listener net.Listener
|
|
}
|
|
|
|
// New returns a new instance of Server.
|
|
func New(opts Options, cfg *setting.Cfg, httpServer *api.HTTPServer, roleRegistry accesscontrol.RoleRegistry,
|
|
provisioningService provisioning.ProvisioningService, backgroundServiceProvider registry.BackgroundServiceRegistry,
|
|
usageStatsProvidersRegistry registry.UsageStatsProvidersRegistry, statsCollectorService *statscollector.Service,
|
|
userService user.Service, loginAttemptService loginattempt.Service,
|
|
) (*Server, error) {
|
|
statsCollectorService.RegisterProviders(usageStatsProvidersRegistry.GetServices())
|
|
s, err := newServer(opts, cfg, httpServer, roleRegistry, provisioningService, backgroundServiceProvider, userService, loginAttemptService)
|
|
if err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
if err := s.init(); err != nil {
|
|
return nil, err
|
|
}
|
|
|
|
return s, nil
|
|
}
|
|
|
|
func newServer(opts Options, cfg *setting.Cfg, httpServer *api.HTTPServer, roleRegistry accesscontrol.RoleRegistry,
|
|
provisioningService provisioning.ProvisioningService, backgroundServiceProvider registry.BackgroundServiceRegistry, userService user.Service, loginAttemptService loginattempt.Service,
|
|
) (*Server, error) {
|
|
rootCtx, shutdownFn := context.WithCancel(context.Background())
|
|
childRoutines, childCtx := errgroup.WithContext(rootCtx)
|
|
|
|
s := &Server{
|
|
context: childCtx,
|
|
childRoutines: childRoutines,
|
|
HTTPServer: httpServer,
|
|
provisioningService: provisioningService,
|
|
roleRegistry: roleRegistry,
|
|
shutdownFn: shutdownFn,
|
|
shutdownFinished: make(chan struct{}),
|
|
log: log.New("server"),
|
|
cfg: cfg,
|
|
pidFile: opts.PidFile,
|
|
version: opts.Version,
|
|
commit: opts.Commit,
|
|
buildBranch: opts.BuildBranch,
|
|
backgroundServices: backgroundServiceProvider.GetServices(),
|
|
userService: userService,
|
|
loginAttemptService: loginAttemptService,
|
|
}
|
|
|
|
return s, nil
|
|
}
|
|
|
|
// Server is responsible for managing the lifecycle of services.
|
|
type Server struct {
|
|
context context.Context
|
|
shutdownFn context.CancelFunc
|
|
childRoutines *errgroup.Group
|
|
log log.Logger
|
|
cfg *setting.Cfg
|
|
shutdownOnce sync.Once
|
|
shutdownFinished chan struct{}
|
|
isInitialized bool
|
|
mtx sync.Mutex
|
|
|
|
pidFile string
|
|
version string
|
|
commit string
|
|
buildBranch string
|
|
backgroundServices []registry.BackgroundService
|
|
|
|
HTTPServer *api.HTTPServer
|
|
roleRegistry accesscontrol.RoleRegistry
|
|
provisioningService provisioning.ProvisioningService
|
|
userService user.Service
|
|
loginAttemptService loginattempt.Service
|
|
}
|
|
|
|
// init initializes the server and its services.
|
|
func (s *Server) init() error {
|
|
s.mtx.Lock()
|
|
defer s.mtx.Unlock()
|
|
|
|
if s.isInitialized {
|
|
return nil
|
|
}
|
|
s.isInitialized = true
|
|
|
|
s.writePIDFile()
|
|
if err := metrics.SetEnvironmentInformation(s.cfg.MetricsGrafanaEnvironmentInfo); err != nil {
|
|
return err
|
|
}
|
|
|
|
login.ProvideService(s.HTTPServer.SQLStore, s.HTTPServer.Login, s.loginAttemptService, s.userService)
|
|
social.ProvideService(s.cfg, s.HTTPServer.Features)
|
|
|
|
if err := s.roleRegistry.RegisterFixedRoles(s.context); err != nil {
|
|
return err
|
|
}
|
|
|
|
return s.provisioningService.RunInitProvisioners(s.context)
|
|
}
|
|
|
|
// Run initializes and starts services. This will block until all services have
|
|
// exited. To initiate shutdown, call the Shutdown method in another goroutine.
|
|
func (s *Server) Run() error {
|
|
defer close(s.shutdownFinished)
|
|
|
|
if err := s.init(); err != nil {
|
|
return err
|
|
}
|
|
|
|
services := s.backgroundServices
|
|
|
|
// Start background services.
|
|
for _, svc := range services {
|
|
if registry.IsDisabled(svc) {
|
|
continue
|
|
}
|
|
|
|
service := svc
|
|
serviceName := reflect.TypeOf(service).String()
|
|
s.childRoutines.Go(func() error {
|
|
select {
|
|
case <-s.context.Done():
|
|
return s.context.Err()
|
|
default:
|
|
}
|
|
s.log.Debug("Starting background service", "service", serviceName)
|
|
err := service.Run(s.context)
|
|
// Do not return context.Canceled error since errgroup.Group only
|
|
// returns the first error to the caller - thus we can miss a more
|
|
// interesting error.
|
|
if err != nil && !errors.Is(err, context.Canceled) {
|
|
s.log.Error("Stopped background service", "service", serviceName, "reason", err)
|
|
return fmt.Errorf("%s run error: %w", serviceName, err)
|
|
}
|
|
s.log.Debug("Stopped background service", "service", serviceName, "reason", err)
|
|
return nil
|
|
})
|
|
}
|
|
|
|
s.notifySystemd("READY=1")
|
|
|
|
s.log.Debug("Waiting on services...")
|
|
return s.childRoutines.Wait()
|
|
}
|
|
|
|
// Shutdown initiates Grafana graceful shutdown. This shuts down all
|
|
// running background services. Since Run blocks Shutdown supposed to
|
|
// be run from a separate goroutine.
|
|
func (s *Server) Shutdown(ctx context.Context, reason string) error {
|
|
var err error
|
|
s.shutdownOnce.Do(func() {
|
|
s.log.Info("Shutdown started", "reason", reason)
|
|
// Call cancel func to stop services.
|
|
s.shutdownFn()
|
|
// Wait for server to shut down
|
|
select {
|
|
case <-s.shutdownFinished:
|
|
s.log.Debug("Finished waiting for server to shut down")
|
|
case <-ctx.Done():
|
|
s.log.Warn("Timed out while waiting for server to shut down")
|
|
err = fmt.Errorf("timeout waiting for shutdown")
|
|
}
|
|
})
|
|
|
|
return err
|
|
}
|
|
|
|
// ExitCode returns an exit code for a given error.
|
|
func (s *Server) ExitCode(runError error) int {
|
|
if runError != nil {
|
|
s.log.Error("Server shutdown", "error", runError)
|
|
return 1
|
|
}
|
|
return 0
|
|
}
|
|
|
|
// writePIDFile retrieves the current process ID and writes it to file.
|
|
func (s *Server) writePIDFile() {
|
|
if s.pidFile == "" {
|
|
return
|
|
}
|
|
|
|
// Ensure the required directory structure exists.
|
|
err := os.MkdirAll(filepath.Dir(s.pidFile), 0700)
|
|
if err != nil {
|
|
s.log.Error("Failed to verify pid directory", "error", err)
|
|
os.Exit(1)
|
|
}
|
|
|
|
// Retrieve the PID and write it to file.
|
|
pid := strconv.Itoa(os.Getpid())
|
|
if err := os.WriteFile(s.pidFile, []byte(pid), 0644); err != nil {
|
|
s.log.Error("Failed to write pidfile", "error", err)
|
|
os.Exit(1)
|
|
}
|
|
|
|
s.log.Info("Writing PID file", "path", s.pidFile, "pid", pid)
|
|
}
|
|
|
|
// notifySystemd sends state notifications to systemd.
|
|
func (s *Server) notifySystemd(state string) {
|
|
notifySocket := os.Getenv("NOTIFY_SOCKET")
|
|
if notifySocket == "" {
|
|
s.log.Debug(
|
|
"NOTIFY_SOCKET environment variable empty or unset, can't send systemd notification")
|
|
return
|
|
}
|
|
|
|
socketAddr := &net.UnixAddr{
|
|
Name: notifySocket,
|
|
Net: "unixgram",
|
|
}
|
|
conn, err := net.DialUnix(socketAddr.Net, nil, socketAddr)
|
|
if err != nil {
|
|
s.log.Warn("Failed to connect to systemd", "err", err, "socket", notifySocket)
|
|
return
|
|
}
|
|
defer func() {
|
|
if err := conn.Close(); err != nil {
|
|
s.log.Warn("Failed to close connection", "err", err)
|
|
}
|
|
}()
|
|
|
|
_, err = conn.Write([]byte(state))
|
|
if err != nil {
|
|
s.log.Warn("Failed to write notification to systemd", "err", err)
|
|
}
|
|
}
|