patr-cloud
diff --git a/‎Cargo.lock‎
Lines changed: 354 additions & 339 deletions b/‎Cargo.lock‎
Lines changed: 354 additions & 339 deletions
diff --git a/‎Cargo.toml‎
Lines changed: 7 additions & 7 deletions b/‎Cargo.toml‎
Lines changed: 7 additions & 7 deletions
diff --git a/‎api/src/routes/api.patr.cloud/workspace/deployment/mod.rs‎
Lines changed: 1 addition & 1 deletion b/‎api/src/routes/api.patr.cloud/workspace/deployment/mod.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎api/src/routes/api.patr.cloud/workspace/deployment/start_deployment.rs‎
Lines changed: 1 addition & 1 deletion b/‎api/src/routes/api.patr.cloud/workspace/deployment/start_deployment.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎api/src/routes/api.patr.cloud/workspace/runner/mod.rs‎
Lines changed: 1 addition & 1 deletion b/‎api/src/routes/api.patr.cloud/workspace/runner/mod.rs‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎api/src/utils/router_ext.rs‎
Lines changed: 166 additions & 0 deletions b/‎api/src/utils/router_ext.rs‎
Lines changed: 166 additions & 0 deletions
diff --git a/‎frontend/src/api/workspace/deployment/list.rs‎
Lines changed: 0 additions & 4 deletions b/‎frontend/src/api/workspace/deployment/list.rs‎
Lines changed: 0 additions & 4 deletions
diff --git a/‎frontend/src/pages/infrastructure/deployment/create_deployment/running.rs‎
Lines changed: 0 additions & 1 deletion b/‎frontend/src/pages/infrastructure/deployment/create_deployment/running.rs‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎frontend/src/pages/infrastructure/deployment/dashboard/footer.rs‎
Lines changed: 0 additions & 1 deletion b/‎frontend/src/pages/infrastructure/deployment/dashboard/footer.rs‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎frontend/src/pages/infrastructure/deployment/dashboard/mod.rs‎
Lines changed: 1 addition & 1 deletion b/‎frontend/src/pages/infrastructure/deployment/dashboard/mod.rs‎
Lines changed: 1 addition & 1 deletion
@@ -57,7 +57,7 @@ ipinfo = { git = "https://github.com/rakshith-ravi/ipinfo-rust", branch = "featu
 ipnetwork = { version = "0.20", default-features = false }
 jsonwebtoken = { version = "9", default-features = false }
 k8s-openapi = { version = "0.23", default-features = false }
-kube = { version = "0.95", default-features = false }
+kube = { version = "0.96", default-features = false }
 leptos = { version = "0.6", default-features = false }
 leptos-use = { version = "0.13", default-features = false }
 leptos_axum = { version = "0.6", default-features = false }
@@ -71,9 +71,9 @@ matchit = { version = "0.7", default-features = false }
 models = { path = "models", default-features = false }
 monostate = { version = "0.1", default-features = false }
 open = { version = "5", default-features = false }
-opentelemetry = { version = "0.25", default-features = false }
-opentelemetry-otlp = { version = "0.25", default-features = false }
-opentelemetry_sdk = { version = "0.25", default-features = false }
+opentelemetry = { version = "0.26", default-features = false }
+opentelemetry-otlp = { version = "0.26", default-features = false }
+opentelemetry_sdk = { version = "0.26", default-features = false }
 preprocess = { version = "0.5", default-features = false }
 proc-macro2 = { version = "1", default-features = false }
 quote = { version = "1", default-features = false }
@@ -98,11 +98,11 @@ tokio = { version = "1", default-features = false }
 tokio-stream = { version = "0.1", default-features = false }
 tokio-tungstenite = { version = "0.24", default-features = false }
 totp-rs = { version = "5", default-features = false }
-tower = { version = "0.4", default-features = false }
-tower-http = { version = "0.5", default-features = false }
+tower = { version = "0.5", default-features = false }
+tower-http = { version = "0.6", default-features = false }
 tracing = { version = "0.1", default-features = false }
 tracing-log = { version = "0.2", default-features = false }
-tracing-opentelemetry = { version = "0.26", default-features = false }
+tracing-opentelemetry = { version = "0.27", default-features = false }
 tracing-subscriber = { version = "0.3", default-features = false }
 typed-builder = { version = "0.20", default-features = false }
 url = { version = "2", default-features = false }
 
@@ -53,5 +53,5 @@ pub async fn setup_routes(state: &AppState) -> Router {
 		.mount_auth_endpoint(delete_deployment, state)
 		.mount_auth_endpoint(update_deployment, state)
 		.mount_auth_endpoint(get_deployment_metric, state)
-		.mount_auth_endpoint(stream_deployment_logs, state)
+		.mount_auth_stream(stream_deployment_logs, state)
 }
@@ -34,7 +34,7 @@ pub async fn start_deployment(
 
 	let now = OffsetDateTime::now_utc();
 
-	let (registry, image_tag, region) = query!(
+	let (registry, ..) = query!(
 		r#"
 		SELECT
 			registry,
 
@@ -19,7 +19,7 @@ use self::{
 #[instrument(skip(state))]
 pub async fn setup_routes(state: &AppState) -> Router {
 	Router::new()
-		.mount_auth_endpoint(stream_runner_data_for_workspace, state)
+		.mount_auth_stream(stream_runner_data_for_workspace, state)
 		.mount_auth_endpoint(add_runner_to_workspace, state)
 		.mount_auth_endpoint(remove_runner_from_workspace, state)
 		.mount_auth_endpoint(list_runners_for_workspace, state)
 
@@ -10,6 +10,7 @@ use models::{
 	ApiRequest,
 };
 use preprocess::Preprocessable;
+use serde::{de::DeserializeOwned, Serialize};
 use tower::{
 	util::{BoxCloneService, BoxLayer},
 	ServiceBuilder,
@@ -44,6 +45,17 @@ where
 	/// Rate limiter using tower layers.
 	#[track_caller]
 	fn mount_endpoint<E, H>(self, handler: H, state: &AppState) -> Self
+	where
+		for<'req> H: EndpointHandler<'req, E> + Clone + Send + Sync + 'static,
+		E: ApiEndpoint<Authenticator = NoAuthentication> + Sync,
+		<E::RequestBody as Preprocessable>::Processed: Send,
+		E::RequestBody: Serialize + DeserializeOwned,
+		E::ResponseBody: Serialize + DeserializeOwned;
+
+	/// Mount an API stream endpoint directly along with the required request
+	/// parser, Rate limiter using tower layers.
+	#[track_caller]
+	fn mount_stream<E, H>(self, handler: H, state: &AppState) -> Self
 	where
 		for<'req> H: EndpointHandler<'req, E> + Clone + Send + Sync + 'static,
 		E: ApiEndpoint<Authenticator = NoAuthentication> + Sync,
@@ -53,6 +65,19 @@ where
 	/// Rate limiter, Audit logger and Auth middlewares, using tower layers.
 	#[track_caller]
 	fn mount_auth_endpoint<E, H>(self, handler: H, state: &AppState) -> Self
+	where
+		for<'req> H: AuthEndpointHandler<'req, E> + Clone + Send + Sync + 'static,
+		E: ApiEndpoint<Authenticator = AppAuthentication<E>> + Sync,
+		<E::RequestBody as Preprocessable>::Processed: Send,
+		E::RequestBody: Serialize + DeserializeOwned,
+		E::ResponseBody: Serialize + DeserializeOwned,
+		E::RequestHeaders: HasHeader<BearerToken>;
+
+	/// Mount an API stream endpoint directly along with the required request
+	/// parser, Rate limiter, Audit logger and Auth middlewares, using tower
+	/// layers.
+	#[track_caller]
+	fn mount_auth_stream<E, H>(self, handler: H, state: &AppState) -> Self
 	where
 		for<'req> H: AuthEndpointHandler<'req, E> + Clone + Send + Sync + 'static,
 		E: ApiEndpoint<Authenticator = AppAuthentication<E>> + Sync,
@@ -66,6 +91,73 @@ where
 {
 	#[instrument(skip_all)]
 	fn mount_endpoint<E, H>(self, handler: H, state: &AppState) -> Self
+	where
+		for<'req> H: EndpointHandler<'req, E> + Clone + Send + Sync + 'static,
+		E: ApiEndpoint<Authenticator = NoAuthentication> + Sync,
+		<E::RequestBody as Preprocessable>::Processed: Send,
+		E::RequestBody: Serialize + DeserializeOwned,
+		E::ResponseBody: Serialize + DeserializeOwned,
+	{
+		frontend::utils::API_CALL_REGISTRY
+			.get_or_init(|| RwLock::new(Default::default()))
+			.write()
+			.expect("API call registry poisoned")
+			.entry(E::METHOD)
+			.or_default()
+			.insert(
+				<E::RequestPath as TypedPath>::PATH,
+				Box::new(BoxLayer::<
+					BoxCloneService<(ApiRequest<E>, IpAddr), AppResponse<E>, ErrorType>,
+					(ApiRequest<E>, IpAddr),
+					AppResponse<E>,
+					ErrorType,
+				>::new(
+					ServiceBuilder::new()
+						// .layer(todo!("Add rate limiter checker middleware here")),
+						.layer(DataStoreConnectionLayer::<E>::with_state(state.clone()))
+						.layer(PreprocessLayer::new())
+						.layer(UserAgentValidationLayer::new())
+						// .layer(todo!("Add rate limiter value updater middleware here"))
+						.layer(EndpointLayer::new(handler.clone())),
+				)),
+			)
+			.unwrap_or_else(|_| {
+				panic!(
+					"API endpoint `{} {}` already registered",
+					E::METHOD,
+					<E::RequestPath as TypedPath>::PATH
+				);
+			});
+
+		frontend::utils::register_api_call::<E>();
+
+		// Setup the layers for the backend
+		if <E as ApiEndpoint>::API_ALLOWED || cfg!(debug_assertions) {
+			self.route(
+				<<E as ApiEndpoint>::RequestPath as TypedPath>::PATH,
+				MethodRouter::<S>::new()
+					.on(
+						MethodFilter::try_from(<E as ApiEndpoint>::METHOD).unwrap(),
+						|| async {},
+					)
+					.layer(
+						ServiceBuilder::new()
+							// .layer(todo!("Add rate limiter checker middleware here")),
+							.layer(RequestParserLayer::new())
+							.layer(DataStoreConnectionLayer::with_state(state.clone()))
+							// .layer(todo!("Add rate limiter value updater middleware here"))
+							.layer(PreprocessLayer::new())
+							.layer(UserAgentValidationLayer::new())
+							.layer(EndpointLayer::new(handler)),
+					),
+			)
+		} else {
+			self
+		}
+	}
+
+	#[instrument(skip_all)]
+	fn mount_stream<E, H>(self, handler: H, state: &AppState) -> Self
 	where
 		for<'req> H: EndpointHandler<'req, E> + Clone + Send + Sync + 'static,
 		E: ApiEndpoint<Authenticator = NoAuthentication> + Sync,
@@ -129,6 +221,80 @@ where
 
 	#[instrument(skip_all)]
 	fn mount_auth_endpoint<E, H>(self, handler: H, state: &AppState) -> Self
+	where
+		for<'req> H: AuthEndpointHandler<'req, E> + Clone + Send + Sync + 'static,
+		E: ApiEndpoint<Authenticator = AppAuthentication<E>> + Sync,
+		<E::RequestBody as Preprocessable>::Processed: Send,
+		E::RequestBody: Serialize + DeserializeOwned,
+		E::ResponseBody: Serialize + DeserializeOwned,
+		E::RequestHeaders: HasHeader<BearerToken>,
+	{
+		frontend::utils::API_CALL_REGISTRY
+			.get_or_init(|| RwLock::new(Default::default()))
+			.write()
+			.expect("API call registry poisoned")
+			.entry(E::METHOD)
+			.or_default()
+			.insert(
+				<E::RequestPath as TypedPath>::PATH,
+				Box::new(BoxLayer::<
+					BoxCloneService<(ApiRequest<E>, IpAddr), AppResponse<E>, ErrorType>,
+					(ApiRequest<E>, IpAddr),
+					AppResponse<E>,
+					ErrorType,
+				>::new(
+					ServiceBuilder::new()
+						// .layer(todo!("Add rate limiter checker middleware here")),
+						.layer(DataStoreConnectionLayer::with_state(state.clone()))
+						.layer(PreprocessLayer::new())
+						.layer(UserAgentValidationLayer::new())
+						.layer(AuthenticationLayer::new(ClientType::WebDashboard))
+						// .layer(todo!("Add permission checker middleware here"))
+						// .layer(todo!("Add rate limiter value updater middleware here"))
+						// .layer(todo!("Add audit logger middleware here"))
+						.layer(AuthEndpointLayer::new(handler.clone())),
+				)),
+			)
+			.unwrap_or_else(|_| {
+				panic!(
+					"API endpoint `{} {}` already registered",
+					E::METHOD,
+					<E::RequestPath as TypedPath>::PATH
+				);
+			});
+
+		frontend::utils::register_api_call::<E>();
+
+		// Setup the layers for the backend
+		if <E as ApiEndpoint>::API_ALLOWED || cfg!(debug_assertions) {
+			self.route(
+				<<E as ApiEndpoint>::RequestPath as TypedPath>::PATH,
+				MethodRouter::<S>::new()
+					.on(
+						MethodFilter::try_from(<E as ApiEndpoint>::METHOD).unwrap(),
+						|| async {},
+					)
+					.layer(
+						ServiceBuilder::new()
+							// .layer(todo!("Add rate limiter checker middleware here")),
+							.layer(RequestParserLayer::new())
+							.layer(DataStoreConnectionLayer::with_state(state.clone()))
+							.layer(PreprocessLayer::new())
+							.layer(UserAgentValidationLayer::new())
+							.layer(AuthenticationLayer::new(ClientType::ApiToken))
+							// .layer(todo!("Add permission checker middleware here"))
+							// .layer(todo!("Add rate limiter value updater middleware here"))
+							// .layer(todo!("Add audit logger middleware here"))
+							.layer(AuthEndpointLayer::new(handler)),
+					),
+			)
+		} else {
+			self
+		}
+	}
+
+	#[instrument(skip_all)]
+	fn mount_auth_stream<E, H>(self, handler: H, state: &AppState) -> Self
 	where
 		for<'req> H: AuthEndpointHandler<'req, E> + Clone + Send + Sync + 'static,
 		E: ApiEndpoint<Authenticator = AppAuthentication<E>> + Sync,
 
@@ -1,7 +1,4 @@
-use std::{thread, time};
-
 use models::api::workspace::deployment::*;
-use server_fn::codec::FromRes;
 
 use crate::prelude::*;
 
@@ -15,7 +12,6 @@ pub async fn list_deployments(
 ) -> Result<(usize, ListDeploymentResponse), ServerFnError<ErrorType>> {
 	use std::str::FromStr;
 
-	thread::sleep(time::Duration::from_secs(2));
 	let access_token = BearerToken::from_str(access_token.unwrap().as_str())
 		.map_err(|_| ServerFnError::WrappedServerError(ErrorType::MalformedAccessToken))?;
 
 
@@ -1,6 +1,5 @@
 use std::str::FromStr;
 
-use ev::MouseEvent;
 use models::api::workspace::deployment::{EnvironmentVariableValue, ExposedPortType};
 
 use super::{super::components::*, RunnerPageError};
 
@@ -1,7 +1,6 @@
 use std::rc::Rc;
 
 use ev::MouseEvent;
-use leptos_query::QueryResult;
 
 use crate::prelude::*;
 
 
@@ -5,7 +5,7 @@ use convert_case::*;
 use leptos_query::QueryResult;
 
 use self::{footer::*, head::*};
-use super::{components::*, utils::*};
+use super::components::*;
 use crate::{
 	prelude::*,
 	queries::{list_deployments_query, AllDeploymentsTag},
Original file line number	Diff line number	Diff line change
`@@ -53,5 +53,5 @@ pub async fn setup_routes(state: &AppState) -> Router {`
`53`	`53`	`.mount_auth_endpoint(delete_deployment, state)`
`54`	`54`	`.mount_auth_endpoint(update_deployment, state)`
`55`	`55`	`.mount_auth_endpoint(get_deployment_metric, state)`
`56`		`- .mount_auth_endpoint(stream_deployment_logs, state)`
	`56`	`+ .mount_auth_stream(stream_deployment_logs, state)`
`57`	`57`	`}`