Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Rolling Blue-Green Deployments for AWS-LB (ALB/*NLB) #1948

Open
wants to merge 10 commits into
base: main
Choose a base branch
from
+792 −0
Open

Rolling Blue-Green Deployments for AWS-LB (ALB/*NLB) #1948

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
10 commits
Select commit Hold shift + click to select a range
1275da4
wait for listener with dummy rule
matt-deboer Oct 17, 2017
0627fa2
rename alb => lb
matt-deboer Oct 17, 2017
32965e5
add listener params to control waits; read defaults from asg
matt-deboer Oct 19, 2017
b18c055
default wait for capacity to -1; remove rules before adding
matt-deboer Oct 19, 2017
6ef8972
don't test for target capacity until states are available; fix getTar…
matt-deboer Oct 19, 2017
193d7ec
also apply capacity waiting during creation
matt-deboer Oct 20, 2017
c0ac98b
add blue-green rolling update acceptance test
matt-deboer Oct 20, 2017
60fa5e8
use 'min_target_group_capacity' instead
matt-deboer Oct 20, 2017
dc55e85
Update documentation for new behavior.
matt-deboer Oct 20, 2017
8f1755a
restore 'wait_for_capacity_timeout'
matt-deboer Oct 20, 2017
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
135 changes: 135 additions & 0 deletions aws/resource_aws_lb_listener.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -15,6 +15,9 @@ import (
"github.com/hashicorp/terraform/helper/schema"
)

const healthCheckOnlyHostname = "health-check.terraform.localhost"
const healthCheckOnlyPriority = 1

func resourceAwsLbListener() *schema.Resource {
return &schema.Resource{
Create: resourceAwsLbListenerCreate,
Expand Down Expand Up @@ -64,6 +67,31 @@ func resourceAwsLbListener() *schema.Resource {
Optional: true,
},

"wait_for_capacity_timeout": {
Type: schema.TypeString,
Optional: true,
Default: "10m",
ValidateFunc: func(v interface{}, k string) (ws []string, errors []error) {
value := v.(string)
duration, err := time.ParseDuration(value)
if err != nil {
errors = append(errors, fmt.Errorf(
"%q cannot be parsed as a duration: %s", k, err))
}
if duration < 0 {
errors = append(errors, fmt.Errorf(
"%q must be greater than zero", k))
}
return
},
},

"min_target_group_capacity": {
Default: -1,
Type: schema.TypeInt,
Optional: true,
},

"default_action": {
Type: schema.TypeList,
Required: true,
Expand Down Expand Up @@ -149,6 +177,15 @@ func resourceAwsLbListenerCreate(d *schema.ResourceData, meta interface{}) error

d.SetId(*resp.Listeners[0].ListenerArn)

if err := waitForListenerTargetGroupCapacity(d, meta, func(d *schema.ResourceData, current int, target int) (bool, string) {
if current < target {
return false, fmt.Sprintf("Need at least %d healthy instances in target group, have %d", target, current)
}
return true, ""
}); err != nil {
return errwrap.Wrapf("Error waiting for Target Group Capacity: {{err}}", err)
}

return resourceAwsLbListenerRead(d, meta)
}

Expand Down Expand Up @@ -201,6 +238,8 @@ func resourceAwsLbListenerRead(d *schema.ResourceData, meta interface{}) error {
func resourceAwsLbListenerUpdate(d *schema.ResourceData, meta interface{}) error {
elbconn := meta.(*AWSClient).elbv2conn

shouldWaitForCapacity := false

params := &elbv2.ModifyListenerInput{
ListenerArn: aws.String(d.Id()),
Port: aws.Int64(int64(d.Get("port").(int))),
Expand All @@ -221,6 +260,9 @@ func resourceAwsLbListenerUpdate(d *schema.ResourceData, meta interface{}) error
if defaultActions := d.Get("default_action").([]interface{}); len(defaultActions) == 1 {
params.DefaultActions = make([]*elbv2.Action, len(defaultActions))

// TODO: does this only execute on a change to the target_group_arn ?
shouldWaitForCapacity = true

for i, defaultAction := range defaultActions {
defaultActionMap := defaultAction.(map[string]interface{})

Expand All @@ -229,13 +271,39 @@ func resourceAwsLbListenerUpdate(d *schema.ResourceData, meta interface{}) error
Type: aws.String(defaultActionMap["type"].(string)),
}
}
} else {
log.Printf("[DEBUG] Not waiting for healthy target group capacity")
}

if shouldWaitForCapacity {

err := addHealthCheckOnlyRule(params, elbconn, d.Get("arn").(string))
if err != nil {
return errwrap.Wrapf("Error adding health-check only rule to listener: {{err}}", err)
}

log.Printf("[DEBUG] Waiting for healthy target group capacity...")

if err := waitForListenerTargetGroupCapacity(d, meta, func(d *schema.ResourceData, current int, target int) (bool, string) {
if current < target {
return false, fmt.Sprintf("Need at least %d healthy instances in target group, have %d", target, current)
}
return true, ""
}); err != nil {
return errwrap.Wrapf("Error waiting for Target Group Capacity: {{err}}", err)
}
}

_, err := elbconn.ModifyListener(params)
if err != nil {
return errwrap.Wrapf("Error modifying LB Listener: {{err}}", err)
}

err = removeHealthCheckOnlyRule(elbconn, d.Get("arn").(string))
if err != nil {
return errwrap.Wrapf("Error modifying ALB Listener: {{err}}", err)
}

return resourceAwsLbListenerRead(d, meta)
}

Expand Down Expand Up @@ -282,3 +350,70 @@ func isListenerNotFound(err error) bool {
elberr, ok := err.(awserr.Error)
return ok && elberr.Code() == "ListenerNotFound"
}

// Adds a custom rule to a listener for the sole purpose of
// enabling health checks on a target group
func addHealthCheckOnlyRule(params *elbv2.ModifyListenerInput, elbconn *elbv2.ELBV2, listenerArn string) error {
targetGroupArn := params.DefaultActions[0].TargetGroupArn

err := removeHealthCheckOnlyRule(elbconn, listenerArn)
if err != nil {
return errwrap.Wrapf("Error creating temporary listener rule: {{err}}", err)
}
resp, err := elbconn.CreateRule(&elbv2.CreateRuleInput{
ListenerArn: aws.String(listenerArn),
Actions: []*elbv2.Action{&elbv2.Action{
TargetGroupArn: targetGroupArn,
Type: aws.String("forward"),
}},
Conditions: []*elbv2.RuleCondition{&elbv2.RuleCondition{
Field: aws.String("host-header"),
Values: aws.StringSlice([]string{healthCheckOnlyHostname}),
}},
Priority: aws.Int64(healthCheckOnlyPriority),
})

log.Printf("[DEBUG] resp.Rules.length: %d", len(resp.Rules))

if err != nil {
return errwrap.Wrapf("Error creating temporary listener rule: {{err}}", err)
}
log.Printf("[DEBUG] addHealthCheckOnlyRule: added rule")
return nil
}

// Removes the custom health-check-only rule from a listener
func removeHealthCheckOnlyRule(elbconn *elbv2.ELBV2, listenerArn string) error {

resp, err := elbconn.DescribeRules(&elbv2.DescribeRulesInput{
ListenerArn: aws.String(listenerArn),
})

if err != nil {
return errwrap.Wrapf("Error describing temporary listener rules: {{err}}", err)
}

Rules:
for _, rule := range resp.Rules {
log.Printf("[DEBUG] removeHealthCheckOnlyRule: testing rule %v", rule)
if !aws.BoolValue(rule.IsDefault) {
for _, cond := range rule.Conditions {
field := aws.StringValue(cond.Field)
values := aws.StringValueSlice(cond.Values)
if field == "host-header" && len(values) == 1 && values[0] == healthCheckOnlyHostname {
log.Printf("[DEBUG] removeHealthCheckOnlyRule: removing rule %v", rule)
_, err = elbconn.DeleteRule(&elbv2.DeleteRuleInput{
RuleArn: rule.RuleArn,
})

if err != nil {
return errwrap.Wrapf("Error removing temporary listener rule: {{err}}", err)
}
continue Rules
}
}
}
}

return nil
}
Loading