- Make
_cajeendpoints require some kind of authentication - Add admin Dashbaord
On this stream we focused on Authentication for our Admin endpoints.
We added Sessions to our Database, and are storing session_ids in Private Cookies.
These cookies are encrypted with a secret key that is stored in an environment variable.
We added browser facing endpoints for Auth, and make the _caje/list our Admin Dashboard 'homebase'.
This page now has buttons to kick off the actions that previously needed an HTTP client (clearing the DB
and File System)
We looking into Passkeys a tiny bit, but didn't find any clear documentation on how to use them in Rust. We found 1 libary [https://github.com/kanidm/webauthn-rs] that looked like it might work, but it uses OpenSSL which we are avoiding here. The other library we found was [https://crates.io/crates/passkey] but it doesn't seem to implement the server/application side of things and focuses on the client side.
- Move some hard coded proxy information to config file
- Allow proxying to multiple origins
- Move the cache population to a seperate process that runs in the background
- Move the cache dir to somewhere persisted in the Fly.io VM
- Add Passkeys for Admin Auth
- Cleanup and Publish
litefs-rsto crates.io - Look into setting Proxy headers 'correctly'
- Use the returned
requestfrom cache-semantics when we revalidate from the origin - Decide if the DB should also have the serialized Body so we can make origin requests better [what about headers?]
On this stream we got started looking at the Cache-Controler headers. Previously we cached the response no matter what.
But now we can use the Cache-Control header to determine if we should cache the response or not.
We opted to use the http-cache-semantics crate to parse the Cache-Control header for us, instead of implementing it ourselves.
We learned that Chrome was sending a Max-Age: 0 header which was forcing our CDN to always refetch from the Origin.
NOTE: Use Firefox for future testing!
-
Cache to the FileSystem instead of holding everything in memory
-
Add a
/_caje/listendpoint to see what is in the cache- This will be important for debugging, especially when we get to Multinode
-
Add a SQLite DB to store the cache metadata
- This will be what we share between nodes. So it should be a "manifest" of the pages to cache
- If we get a request for a page that is not in the DB, we should fetch it from the origin and add it to the DB
We moved the cache from memory to the File System. To do this we needed to serialize the objects and be able to deserialize them. We went with
postcardas the serialization format/library. This usesserdeso we created Structs that hold all the request and response information we need and can be serialized.The admin endpoint is very simply and currently only looks at the cache. We should expand it to also show information about the DB, and if everything in the manifest is already cached.
In our Fourth stream we got everything deployed to Fly.io
We started by deploying slow_server to Paris.
We then depolyed caje to New Jersey and London, and have it proxying to the slow_server in Paris.
We got LiteFS working for caje so that the replicas can read the SQLite and the primary can write to it.
We currently blow up if the replicas try to write to the DB, fixing this is up next!
We tried to implement the LiteFS HALT mechanism. We used https://github.com/superfly/litefs-go/blob/main/litefs.go as our reference implementation.
We got the code in a spot where we expected it to work, but haven't succesfully gotten it working in Fly (or tried locally).
We are currently WERE getting an errno: 38 which we believe means ENOSYS or Function not implemented. Which is weird cause Fly.io makes LiteFS so it should work on their platform. But as I type this it might be an OS thing, but also strange debain wouldn't support it.
This might have been fixed by changing the lock cmd to FcntlCmd::SetLockWait. BUTT this doesn't seem like its actually making the lock correctly. Or maybe litefs isn't reading it correctly?
We are still getting this error from the replica: error returned from database: (code: 1544) attempt to write a readonly database
The Primary doesnt have this issue since it doesn't need HALTing to work to write to the DB
Today we got LiteFS Halt mode working!!
The last two puzzle pieces were to use the Open File Descriptor variants of file locking. And to keep the File Descriptor open for the duration of HALT process
Now we can do read and writes from any node in our Cluster 🎉
This means that when a replica gets a request for something it wants to cache, it can use the HALT to aquire a write lock and do its write. Then it releases the lock and allows other nodes to continue writing. Its NOT recommended to do this for write heavy applications, but for our use case it should be fine. Plus I kinda want to stress test the HALT functionality to learn where its limits are.
-
_caje/listshould return the TTL of pages in the cache - Create Endpoint to clear the File System Cache
- Create Endpoint to clear the SQLite Cache
- Make sure DB doesn't record duplicate entries
- Create Endpoint to fetch any missing pages from the origin
- This will be used to populate the cache
- If there are things in Sqlite that are not in the File System, we should fetch them from the origin
- Setup
.vscodefor Debugging and sharing recommeneded extensions
Today we worked on some of the Admin endpoints. We improved _caje/list to show the TTL of the cached pages.
We also added some endpoints to clear both the Filesystem and Database. These were VERY helpful in debugging
the _caje/populate endpoint.
We spent some time trying to figure out why we weren't use the cached requests after we populated the cache from the DB. For this debugging we decided to try an actual debugger for probably my first time in Rust!
Took a bit of figuring out how to use it, but eventually learned that the HOST headers weren't matching mostly because I was using the ORIGIN instead of the requested HOST.
Justus_Fluegel from Twitch Chat helped me get the vscode settings all nicely wired up for Debugging and Building our Rust project. Thanks for the help!