README
¶
AKS middleware for Go
-
- 2.1. requestid
- 2.2. ctxlogger (applogger)
- 2.3. autologger (api request/response logger)
- 2.4. recovery
- 2.5. protovalidate
- 2.6. responseheader
-
- 3.1. mdforward
- 3.2. autologger (api request/response logger)
- 3.3. retry
-
- 4.1. requestid
- 4.2. ctxlogger (applogger)
- 4.3. logging (api request/response logger)
- 4.4. recovery
- 4.5. inputvalidate
-
- 5.1. mdforward
- 5.2. policy (api request/response logger)
- 5.3. retry
-
- 6.1. mdforward
- 6.2. Restlogger (api request/response logger)
- 6.3. retry
-
- 7.1. Contributing
- 7.2. Trademarks
This directory is the root of the aks-middleware module. It implements interceptors to aid common service tasks. See the list below for details.
1. Usage
Run the following command in the root directory of this module.
make
2. gRPC server
The following gRPC server interceptors are used by default. Some interceptors are implemented in this repo. Some are implemented in existing open source projects and are used by this repo.
2.1. requestid
It adds x-request-id to MD if there is no such entry. This interceptor needs to be registered first so that its request-id can be used by autologger and ctxlogger.
2.2. ctxlogger (applogger)
It adds a logger to ctx with important information (e.g., request-id, method-name) already populated. App's handler code can get the logger and output additional information. Needs to be registered after the requestid interceptor.
The logger added via ctx.WithValue() is local to the ctx and won't be propagated to dependencies. Only information in MD could be propagated to dependencies.
This is a feature of ctxlogger that allows the user to annotate within api.proto what request payload variables should be logged or not. Logic in the ctxlogger.go decides what to log based off the annotation. The "loggable" annotation is true by default, so the user is only required to annotate the variables that should not be logged.
Ancestors need to be loggable in order to examine the annotations on the leaf nodes. For example, if loggable value for "address" is false, it will not look for the loggable values of "city", "state", "zipcode", etc.
The source code for the external loggable field option is located at https://github.com/toma3233/loggable. Whenever it is updated, it is pushed to the following Buf Schema Registry as a module: https://buf.build/service-hub/loggable. Command used to authenticate before pushing to the BSR is "buf registry login" which prompts for BSR username and BSR token. The .netrc file is updated with these credentials.
The following gRPC server interceptors are implemented by other open source projects. We enabled them in our default server interceptor list. return []grpc.UnaryServerInterceptor{
2.3. autologger (api request/response logger)
This is to provide the default logger implementation to log incoming request/response result and latency. We use go-grpc-middleware's logging.UnaryServerIncerceptor() to achieve this.
2.4. recovery
This is to handle panics in the code.
Once a panic is detected, it is handled by a custom recovery function defined in recoveryOpts.go which logs gRPC code "unknown" along with the file name/line number of where the panic occurred and a link to the repo. The program continues and does not terminate.
2.5. protovalidate
This is to validate the requests from the client.
The validation rules are generated and executed by the protovalidate-go library, and the rules are applied to the variables in the api.proto file.
2.6. responseheader
This is to copy the metadata that the server receives from the incoming request into the response header.
The interceptor accepts a map of strings that it uses to determine which metadata will be copied into the response.
3. gRPC client
The following gRPC client interceptors are used by default.
3.1. mdforward
It propagates MD from incoming to outgoing. Only need to be used in servers that have both incoming requests and outgoing requests. No need to be used in a pure client app that doesn't have incoming requests.
The following gRPC client interceptors are implemented by other open source projects. We enabled them in our default client interceptor list. return []grpc.UnaryClientInterceptor{
3.2. autologger (api request/response logger)
This package only provides the default logger implementation to log outgoing request/response result and latency. We use go-grpc-middleware's logging.UnaryClientInterceptor() to achieve this.
3.3. retry
It resends a request based on the gRPC code that is returned from the server
All options for the interceptor (i.e. max retries, codes to retry on, type of backoff) are defined in the retryOpts.go file
4. HTTP server
The httpmw folder contains middleware for HTTP servers built using the gorilla/mux package. These are similar to gRPC server interceptors.
4.1. requestid
It extracts Azure Resource Manager required HTTP headers from the request and put them as metadata of the incoming context.
The current implementation is not consistent with its gRPC counterpart.
4.2. ctxlogger (applogger)
Missing.
4.3. logging (api request/response logger)
The logging middleware logs details about each HTTP request and response, including the request method, URL, status code, and duration.
To use the logging middleware, you need to create a logger and then apply the middleware to your router.
Code example is included in the test code.
4.4. recovery
The recovery middleware recovers from panics in your HTTP handlers and logs the error. It can use a custom panic handler if provided.
To use the recovery middleware, you need to create a logger and apply the middleware to your router. You can also provide a custom panic handler.
Code example is included in the test code
4.5. inputvalidate
Missing.
5. HTTP client via Azure SDK
5.1. mdforward
Strictly speaking, it is not metadata forwarding. But it serves the same purpose: instead of propagating the id from the incoming context to the outgoing context, the id is propagated from incoming context to Azure HTTP request header.
If we choose to not implement it, we can let Azure SDK to decide the request id. The mapping between the Azure request id and the opertion/correlation id will be logged by the policy middleware below.
5.2. policy (api request/response logger)
The policy package provides a logging policy for HTTP requests made via the Azure SDK for Go.
The logging policy logs details about each HTTP request and response, including the request method, URL, status code, and duration.
To use the logging policy, you need to create a logger and then apply the policy to your HTTP client.
Code example is included in the test code
5.3. retry
Missing.
6. HTTP client via Direct HTTP request
6.1. mdforward
Missing.
6.2. Restlogger (api request/response logger)
The restlogger package provides a logging round tripper for HTTP clients.
The logging round tripper logs details about each HTTP request and response, including the request method, URL, status code, and duration.
To use the logging round tripper, you need to create a logger and then apply the round tripper to your HTTP client.
Code example is included in the test code
6.3. retry
Missing.
7. Project
This repo has been populated by an initial template to help get you started. Please make sure to update the content to build a great experience for community-building.
As the maintainer of this project, please make a few updates:
- Improving this README.MD file to provide a great experience
- Updating SUPPORT.MD with content about this project's support experience
- Understanding the security reporting process in SECURITY.MD
- Remove this section from the README
7.1. Contributing
This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.
When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.
7.2. Trademarks
This project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft trademarks or logos is subject to and must follow Microsoft's Trademark & Brand Guidelines. Use of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship. Any use of third-party trademarks or logos are subject to those third-party's policies.
Directories