Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add endpoint support for web-specific stack #10257

Closed
spencergibb opened this issue Sep 12, 2017 · 10 comments
Closed

Add endpoint support for web-specific stack #10257

spencergibb opened this issue Sep 12, 2017 · 10 comments
Assignees
@snicoll @philwebb
Labels
type: regression A regression from a previous release
Milestone
2.0.0.RC1

Comments

@spencergibb
Copy link
Member

In spring cloud there are numerous MvcEndpoints that took advantage of the ability of SpringMVC to add arbitrarily complex behaviors to the actuator such as:

  • complex POST parameters (maps & objects)
  • wrapping a servlet (/hystrix.stream), basically access to raw HttpServletRequest & HttpServletResponse

The benefit of having them in actuator is that they aren't part of the main application and can be protected by actuator security.

If we move them to normal endpoints we would lose all of the benefits of actuator (global disabled, security, management port, etc...) that are users are used to.

Thoughts?
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Sep 12, 2017
@snicoll
Copy link
Member

snicoll commented Sep 12, 2017
edited
Loading

The end goal of the endpoint infrastructure in 2.0 is not to replicate what Spring MVC can do (imagine the work to abstract that to webflux and Jersey). If you have those needs you need to keep your MVC controllers as they are today.

We still need to work on letting users define whatever they like using a traditional controller (and with that limitation in mind). Several things:

  • If you register your controller in a @ManagementContextConfiguration it will be part of the actuator application context (if one). This isn't new and documented
  • We have @ConditionalOnEnabledEndpoint that currently only works when set on an endpoint or an extension. We probably need to relax that a bit for that scenario

I am happy to discuss alternative routes but your endpoint needs to be an endpoint in the first place. I would argue that the second example is not an endpoint: where is the JMX feature with a method that takes servlet and response? How do you pass those complex map and objects with JMX for the first case?

On our side, we did move Jolokia because we realized it wasn't an endpoint. I believe you should do the same.

@wilkinsona
Copy link
Member

For the security aspect of this, we now have the same problem with our Jolokia support. Whatever is figured out for that will, hopefully, be relevant to Spring Cloud as well.

@wilkinsona wilkinsona mentioned this issue Sep 12, 2017
Closed
@spencergibb spencergibb mentioned this issue Sep 20, 2017
Closed
@spencergibb
Copy link
Member Author

Regarding @ManagementContextConfiguration it puts it in the management application context, but not the web (/application) context. Currently, that has to be done by hand.

@snicoll snicoll added the for: team-attention An issue we'd like other members of the team to review label Oct 20, 2017
@wilkinsona
Copy link
Member

This doesn't appear to be moving much. @spencergibb Have you reviewed your current endpoints to determine which of them aren't really endpoints? What, if anything, do you still need to help you to make the transition?

@wilkinsona wilkinsona added the status: waiting-for-feedback We need additional information before we can continue label Oct 27, 2017
@snicoll snicoll removed the for: team-attention An issue we'd like other members of the team to review label Oct 27, 2017
@wilkinsona wilkinsona mentioned this issue Oct 28, 2017
Closed
@spencergibb
Copy link
Member Author

There are a few. In some cases I changed ids from /bus/refresh to /bus-refresh. Other cases we've simplified (removed complex input). Some cases I moved request parameters to a path parameter. The hystrix servlet, I copied the jolokia management auto-configuration. I think we're ok writing mvc controllers, etc... where it doesn't fit. The one thing missing is disabling the non @Endpoints when all endpoints are disabled.

@spring-projects-issues spring-projects-issues added status: feedback-provided Feedback has been provided and removed status: waiting-for-feedback We need additional information before we can continue labels Nov 1, 2017
@wilkinsona
Copy link
Member

The one thing missing is disabling the non @endpoints when all endpoints are disabled.

I don’t think we’ll do that. IMO, if something isn’t an endpoint it would be counter-intuitive for disabling all endpoints to disable it.

@snicoll snicoll changed the title Complex actuators in Boot 2.0.0 Add endpoint support for web-specific stack Nov 19, 2017
@snicoll snicoll added for: team-attention An issue we'd like other members of the team to review and removed status: feedback-provided Feedback has been provided labels Nov 19, 2017
@snicoll
Copy link
Member

snicoll commented Nov 19, 2017

At the last team meeting, we discussed the possibility to add a new kind of Endpoint. Recent work that we're going to ship in M7 brings the concept of @JmxEndpoint and @WebEndpoint that are a specialization of an @Endpoint: they are meta-annotated with it and define a filter that determines if that particular endpoint has to be exposed on an environment.

We discussed the opportunity to introduce a @MvcEndpoint that would be a regular @Controller (as it is the case in 1.x) for those corner cases where the underlying technology is required. Similar @WebFluxEndpoint or @JerseyEndpoint could be envisioned for those who want to offer the full support without using the API.

The required features would be:

  1. Reserve an id for the feature so that a regular Endpoint can't "steal it"
  2. Offer a way to enable/disable the endpoint using the same infrastructure (management.endpoint.<xyz>.enabled)
  3. Automatically find and deploy the controller on the chosen management.endpoints.web.base-path
  4. Make sure the security infrastructure is compatible (i.e. because it is an endpoint, we can secure it like any other endpoint)

From a user perspective, this feature makes sense: a user doesn't care if the implementation has to inject HttpServletRequet or whatever fine-grained feature the underlying tech provides. The proof of that is our Jolokia support that is deployed in the same area but is a raw Servlet. Anybody can create a @Endpoint(id = "jolokia") and potentially shadowing it (or vice versa).

Having said that, from our perspective, we would allow to define something as an Endpoint that isn't one:

  1. Most probably the endpoint will have zero Operations
  2. Because of 1., the caching feature would feel awkward: we provide a cache property automatically but it has no effect

That last point could be fixed by moving the cache configuration at management.endpoints.cache like we did for web path customization. The annotation processor would only generate an enabled flag and we should not be able to add any extra property to that namespace then. We need to figure out if we are ready to pay that price.

@philwebb philwebb added this to the 2.0.0.RC1 milestone Nov 22, 2017
@philwebb philwebb added priority: normal type: regression A regression from a previous release and removed status: waiting-for-triage An issue we've not yet triaged priority: normal labels Nov 22, 2017
@Aloren Aloren mentioned this issue Nov 24, 2017
Closed
@snicoll snicoll removed the for: team-attention An issue we'd like other members of the team to review label Nov 24, 2017
@snicoll snicoll self-assigned this Jan 9, 2018
@snicoll snicoll mentioned this issue Jan 9, 2018
Closed
@dsyer
Copy link
Member

dsyer commented Jan 10, 2018

Probably @MvcEndpoint needs to be augmented (or merged) with @WebfluxEndpoint? Anyone who adds an MVC endpoint (and wants it to be managed with enable flag, prefix, security etc. along with the other endpoints) will probably do the same for WebFlux. It might even be the same bean, given the overlap of the annotation programming model. Certainly we would want to do this with the endpoints in Spring Cloud.

@spencergibb spencergibb mentioned this issue Jan 18, 2018
Closed
@philwebb philwebb mentioned this issue Jan 20, 2018
Closed
@snicoll
Copy link
Member

snicoll commented Jan 20, 2018
edited
Loading

@philwebb the remark in my previous comment has not been fully addressed, specifically:

The caching feature would feel awkward: we provide a cache property automatically but it has no effect. That could be fixed by moving the cache configuration at management.endpoints.cache like we did for web path customization. The annotation processor would only generate an enabled flag and we should not be able to add any extra property to that namespace then. We need to figure out if we are ready to pay that price.

I've just tried with latest master and that property is generated. Is that deliberate or is it an oversight?

@philwebb philwebb mentioned this issue Jan 20, 2018
Closed
@philwebb
Copy link
Member

@snicoll I missed that comment, rather than re-open this one I've raised #11703. We can certainly live with the extra meta-data in RC1.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@snicoll snicoll

@philwebb philwebb

Labels
type: regression A regression from a previous release
Projects
None yet
Milestone
2.0.0.RC1
Development

No branches or pull requests
6 participants
@dsyer @snicoll @philwebb @spencergibb @wilkinsona @spring-projects-issues