Deuxfleurs
/
diplonat
23
4
Fork 1
Code Issues 8 Pull Requests Releases Wiki Activity

Make Diplonat more modular (breaking changes) #7

New Issue
Open
opened 2021-08-16 10:09:47 +00:00 by adrien · 2 comments
adrien commented 2021-08-16 10:09:47 +00:00
Owner
Copy Link

Currently, if one doesn't have an IGD-enabled gateway, Diplonat will fail with "Failed to find gateway".

I want to use Diplonat for ACME on Hammerhead, which is a Kimsufi server with a public IP and fully opened ports. I won't use the IGD part.

Since I plan on implementing ACME, Diplonat will soon be constituted of four modules:

  • Consul (mandatory; it feeds the other modules)
  • IGD (optional; negociates ports' mapping declared in Consul service tags)
  • Firewall (optional; opens the above ports in iptables)
  • ACME (optional; it generates TLS certificates for domain names declared in Consul service tags).

My plan is to modify the environment variables names as follows:

  • New DIPLONAT_IGD_ENABLE (bool), defaulting to false
  • New DIPLONAT_FIREWALL_ENABLE (bool), defaulting to false
  • DIPLONAT_EXPIRATION_TIME -> DIPLONAT_IGD_EXPIRATION_TIME
  • DIPLONAT_REFRESH_TIME -> DIPLONAT_IGD_REFRESH_TIME & DIPLONAT_FIREWALL_REFRESH_TIME (these two have no reason to be correlated, and the naming scheme will be cleaner this way).
  • DIPLONAT_PRIVATE_IP -> DIPLONAT_IGD_PRIVATE_IP
  • Add a bunch of DIPLONAT_ACME_* stuff as needed.
Currently, if one doesn't have an IGD-enabled gateway, Diplonat will fail with "Failed to find gateway". I want to use Diplonat for ACME on Hammerhead, which is a Kimsufi server with a public IP and fully opened ports. I won't use the IGD part. Since I plan on implementing ACME, Diplonat will soon be constituted of four modules: * Consul (mandatory; it feeds the other modules) * IGD (optional; negociates ports' mapping declared in Consul service tags) * Firewall (optional; opens the above ports in iptables) * ACME (optional; it generates TLS certificates for domain names declared in Consul service tags). **My plan is to modify the environment variables names** as follows: * New `DIPLONAT_IGD_ENABLE` (bool), defaulting to `false` * New `DIPLONAT_FIREWALL_ENABLE` (bool), defaulting to `false` * `DIPLONAT_EXPIRATION_TIME` -> `DIPLONAT_IGD_EXPIRATION_TIME` * `DIPLONAT_REFRESH_TIME` -> `DIPLONAT_IGD_REFRESH_TIME` & `DIPLONAT_FIREWALL_REFRESH_TIME` (these two have no reason to be correlated, and the naming scheme will be cleaner this way). * `DIPLONAT_PRIVATE_IP` -> `DIPLONAT_IGD_PRIVATE_IP` * Add a bunch of `DIPLONAT_ACME_*` stuff as needed.
👍 1
adrien added the
enhancement
 label 2021-08-16 10:10:25 +00:00
darkgallium commented 2021-08-19 09:54:40 +00:00
Owner
Copy Link

+1 to allow to allow to disable the IGD part. That's pretty annoying to test Diplonat in an environment without IGD.

+1 to allow to allow to disable the IGD part. That's pretty annoying to test Diplonat in an environment without IGD.
👍 1
adrien commented 2021-08-25 12:21:21 +00:00
Author
Owner
Copy Link

Alright let's do this shit!

Alright let's do this shit!
adrien added a new dependency 2021-08-26 14:29:21 +00:00
#8 Modular Diplonat (with the option to disable useless modules)
adrien removed a dependency 2021-08-26 14:29:37 +00:00
#8 Modular Diplonat (with the option to disable useless modules)
adrien added a new dependency 2021-08-26 14:30:31 +00:00
#8 Modular Diplonat (with the option to disable useless modules)
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
main
ci-fmt
feature/acme
docker-7
Labels
Clear labels   
bug

Something is not working

  
duplicate

This issue or pull request already exists

  
enhancement

New feature

  
help wanted

Need some help

  
invalid

Something is wrong

  
question

More information is needed

  
wontfix

This won't be fixed

No Label
bug
duplicate
enhancement
help wanted
invalid
question
wontfix
Milestone
Clear milestone
No items
No Milestone
Assignees
Clear assignees
No Assignees
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Depends on
#8 Modular Diplonat (with the option to disable useless modules)
Deuxfleurs/diplonat
Reference: Deuxfleurs/diplonat#7
No description provided.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?