Documentation ¶
Index ¶
- Constants
- Variables
- func BlockPathFromEnv(block *pfs.Block) (string, error)
- func DisableMonkeyTest()
- func EnableMonkeyTest()
- func InitMonkeyTest(seed int64)
- func IsMonkeyError(err error) bool
- func IsRetryable(client Client, err error) bool
- func NewExponentialBackOffConfig() *backoff.ExponentialBackOff
- func StorageRootFromEnv() (string, error)
- func TestStorage(ctx context.Context, c Client) error
- type AmazonAdvancedConfiguration
- type AmazonCreds
- type BackoffReadCloser
- type BackoffWriteCloser
- type Client
- func NewAmazonClient(region, bucket string, creds *AmazonCreds, distribution string, ...) (Client, error)
- func NewAmazonClientFromEnv() (Client, error)
- func NewAmazonClientFromSecret(bucket string, reverse ...bool) (Client, error)
- func NewClientFromEnv(storageRoot string) (c Client, err error)
- func NewClientFromSecret(storageRoot string) (c Client, err error)
- func NewClientFromURLAndSecret(url *ObjectStoreURL, reverse ...bool) (c Client, err error)
- func NewGoogleClient(bucket string, opts []option.ClientOption) (Client, error)
- func NewGoogleClientFromEnv() (Client, error)
- func NewGoogleClientFromSecret(bucket string) (Client, error)
- func NewLocalClient(root string) (Client, error)
- func NewMicrosoftClient(container string, accountName string, accountKey string) (Client, error)
- func NewMicrosoftClientFromEnv() (Client, error)
- func NewMicrosoftClientFromSecret(container string) (Client, error)
- func NewMinioClient(endpoint, bucket, id, secret string, secure, isS3V2 bool) (Client, error)
- func NewMinioClientFromEnv() (Client, error)
- func NewMinioClientFromSecret(bucket string) (Client, error)
- func TracingObjClient(provider string, c Client) Client
- type ObjectStoreURL
- type RetryError
Constants ¶
const ( StorageBackendEnvVar = "STORAGE_BACKEND" PachRootEnvVar = "PACH_ROOT" )
Environment variables for determining storage backend and pathing
const ( Minio = "MINIO" Amazon = "AMAZON" Google = "GOOGLE" Microsoft = "MICROSOFT" Local = "LOCAL" )
Valid object storage backends
const ( GoogleBucketEnvVar = "GOOGLE_BUCKET" GoogleCredEnvVar = "GOOGLE_CRED" )
Google environment variables
const ( MicrosoftContainerEnvVar = "MICROSOFT_CONTAINER" MicrosoftIDEnvVar = "MICROSOFT_ID" MicrosoftSecretEnvVar = "MICROSOFT_SECRET" )
Microsoft environment variables
const ( MinioBucketEnvVar = "MINIO_BUCKET" MinioEndpointEnvVar = "MINIO_ENDPOINT" MinioIDEnvVar = "MINIO_ID" MinioSecretEnvVar = "MINIO_SECRET" MinioSecureEnvVar = "MINIO_SECURE" MinioSignatureEnvVar = "MINIO_SIGNATURE" )
Minio environment variables
const ( AmazonRegionEnvVar = "AMAZON_REGION" AmazonBucketEnvVar = "AMAZON_BUCKET" AmazonIDEnvVar = "AMAZON_ID" AmazonSecretEnvVar = "AMAZON_SECRET" AmazonTokenEnvVar = "AMAZON_TOKEN" AmazonVaultAddrEnvVar = "AMAZON_VAULT_ADDR" AmazonVaultRoleEnvVar = "AMAZON_VAULT_ROLE" AmazonVaultTokenEnvVar = "AMAZON_VAULT_TOKEN" AmazonDistributionEnvVar = "AMAZON_DISTRIBUTION" CustomEndpointEnvVar = "CUSTOM_ENDPOINT" )
Amazon environment variables
const ( RetriesEnvVar = "RETRIES" TimeoutEnvVar = "TIMEOUT" UploadACLEnvVar = "UPLOAD_ACL" ReverseEnvVar = "REVERSE" PartSizeEnvVar = "PART_SIZE" MaxUploadPartsEnvVar = "MAX_UPLOAD_PARTS" )
Advanced configuration environment variables
const ( // DefaultRetries is the default number of retries for object storage requests. DefaultRetries = 10 // DefaultTimeout is the default timeout for object storage requests. DefaultTimeout = "5m" // DefaultUploadACL is the default upload ACL for object storage uploads. DefaultUploadACL = "bucket-owner-full-control" // DefaultReverse is the default for whether to reverse object storage paths or not. DefaultReverse = true // DefaultPartSize is the default part size for object storage uploads. DefaultPartSize = 5242880 // DefaultMaxUploadParts is the default maximum number of upload parts. DefaultMaxUploadParts = 10000 )
Variables ¶
var EnvVarToSecretKey = []struct { Key string Value string }{ {Key: GoogleBucketEnvVar, Value: "google-bucket"}, {Key: GoogleCredEnvVar, Value: "google-cred"}, {Key: MicrosoftContainerEnvVar, Value: "microsoft-container"}, {Key: MicrosoftIDEnvVar, Value: "microsoft-id"}, {Key: MicrosoftSecretEnvVar, Value: "microsoft-secret"}, {Key: MinioBucketEnvVar, Value: "minio-bucket"}, {Key: MinioEndpointEnvVar, Value: "minio-endpoint"}, {Key: MinioIDEnvVar, Value: "minio-id"}, {Key: MinioSecretEnvVar, Value: "minio-secret"}, {Key: MinioSecureEnvVar, Value: "minio-secure"}, {Key: MinioSignatureEnvVar, Value: "minio-signature"}, {Key: AmazonRegionEnvVar, Value: "amazon-region"}, {Key: AmazonBucketEnvVar, Value: "amazon-bucket"}, {Key: AmazonIDEnvVar, Value: "amazon-id"}, {Key: AmazonSecretEnvVar, Value: "amazon-secret"}, {Key: AmazonTokenEnvVar, Value: "amazon-token"}, {Key: AmazonVaultAddrEnvVar, Value: "amazon-vault-addr"}, {Key: AmazonVaultRoleEnvVar, Value: "amazon-vault-role"}, {Key: AmazonVaultTokenEnvVar, Value: "amazon-vault-token"}, {Key: AmazonDistributionEnvVar, Value: "amazon-distribution"}, {Key: CustomEndpointEnvVar, Value: "custom-endpoint"}, {Key: RetriesEnvVar, Value: "retries"}, {Key: TimeoutEnvVar, Value: "timeout"}, {Key: UploadACLEnvVar, Value: "upload-acl"}, {Key: ReverseEnvVar, Value: "reverse"}, {Key: PartSizeEnvVar, Value: "part-size"}, {Key: MaxUploadPartsEnvVar, Value: "max-upload-parts"}, }
EnvVarToSecretKey is an environment variable name to secret key mapping This is being used to temporarily bridge the gap as we transition to a model where object storage access in the workers is based on environment variables and a library rather than mounting a secret to a sidecar container which accesses object storage
Functions ¶
func BlockPathFromEnv ¶ added in v1.8.0
BlockPathFromEnv gets the path to an object storage block based on environment variables.
func DisableMonkeyTest ¶ added in v1.8.8
func DisableMonkeyTest()
DisableMonkeyTest disables sporadic request failures.
func EnableMonkeyTest ¶ added in v1.8.8
func EnableMonkeyTest()
EnableMonkeyTest enables sporadic request failures.
func InitMonkeyTest ¶ added in v1.8.8
func InitMonkeyTest(seed int64)
InitMonkeyTest sets up this package for monkey testing. Object storage clients will be wrapped with a client that sporadically fails requests.
func IsMonkeyError ¶ added in v1.8.8
IsMonkeyError checks if an error was caused by a monkey client.
func IsRetryable ¶ added in v1.3.14
IsRetryable determines if an operation should be retried given an error
func NewExponentialBackOffConfig ¶ added in v1.1.0
func NewExponentialBackOffConfig() *backoff.ExponentialBackOff
NewExponentialBackOffConfig creates an exponential back-off config with longer wait times than the default.
func StorageRootFromEnv ¶ added in v1.8.0
StorageRootFromEnv gets the storage root based on environment variables.
Types ¶
type AmazonAdvancedConfiguration ¶ added in v1.9.6
type AmazonAdvancedConfiguration struct { Retries int `env:"RETRIES, default=10"` Timeout string `env:"TIMEOUT, default=5m"` // By default, objects uploaded to a bucket are only accessible to the // uploader, and not the owner of the bucket. Using the default ensures that // the owner of the bucket can access the objects as well. UploadACL string `env:"UPLOAD_ACL, default=bucket-owner-full-control"` Reverse bool `env:"REVERSE, default=true"` PartSize int64 `env:"PART_SIZE, default=5242880"` MaxUploadParts int `env:"MAX_UPLOAD_PARTS, default=10000"` }
AmazonAdvancedConfiguration contains the advanced configuration for the amazon client.
type AmazonCreds ¶ added in v1.7.1
type AmazonCreds struct { // Direct credentials. Only applicable if Pachyderm is given its own permanent // AWS credentials ID string // Access Key ID Secret string // Secret Access Key Token string // Access token (if using temporary security credentials // Vault options (if getting AWS credentials from Vault) VaultAddress string // normally addresses come from env, but don't have vault service name VaultRole string VaultToken string }
AmazonCreds are options that are applicable specifically to Pachd's credentials in an AWS deployment
type BackoffReadCloser ¶
type BackoffReadCloser struct {
// contains filtered or unexported fields
}
BackoffReadCloser retries with exponential backoff in the case of failures
func (*BackoffReadCloser) Close ¶
func (b *BackoffReadCloser) Close() (retErr error)
Close closes the ReaderCloser contained in b.
type BackoffWriteCloser ¶
type BackoffWriteCloser struct {
// contains filtered or unexported fields
}
BackoffWriteCloser retries with exponential backoff in the case of failures
func (*BackoffWriteCloser) Close ¶
func (b *BackoffWriteCloser) Close() (retErr error)
Close closes the WriteCloser contained in b.
type Client ¶
type Client interface { // Writer returns a writer which writes to an object. // It should error if the object already exists or we don't have sufficient // permissions to write it. Writer(ctx context.Context, name string) (io.WriteCloser, error) // Reader returns a reader which reads from an object. // If `size == 0`, the reader should read from the offset till the end of the object. // It should error if the object doesn't exist or we don't have sufficient // permission to read it. Reader(ctx context.Context, name string, offset uint64, size uint64) (io.ReadCloser, error) // Delete deletes an object. // It should error if the object doesn't exist or we don't have sufficient // permission to delete it. Delete(ctx context.Context, name string) error // Walk calls `fn` with the names of objects which can be found under `prefix`. Walk(ctx context.Context, prefix string, fn func(name string) error) error // Exsits checks if a given object already exists Exists(ctx context.Context, name string) bool // IsRetryable determines if an operation should be retried given an error IsRetryable(err error) bool // IsNotExist returns true if err is a non existence error IsNotExist(err error) bool // IsIgnorable returns true if the error can be ignored IsIgnorable(err error) bool }
Client is an interface to object storage.
func NewAmazonClient ¶
func NewAmazonClient(region, bucket string, creds *AmazonCreds, distribution string, endpoint string, reverse ...bool) (Client, error)
NewAmazonClient creates an amazon client with the following credentials:
bucket - S3 bucket name distribution - cloudfront distribution ID id - AWS access key id secret - AWS secret access key token - AWS access token region - AWS region endpoint - Custom endpoint (generally used for S3 compatible object stores) reverse - Reverse object storage paths (overwrites configured value)
func NewAmazonClientFromEnv ¶ added in v1.8.0
NewAmazonClientFromEnv creates a Amazon client based on environment variables.
func NewAmazonClientFromSecret ¶ added in v1.3.2
NewAmazonClientFromSecret constructs an amazon client by reading credentials from a mounted AmazonSecret. You may pass "" for bucket in which case it will read the bucket from the secret.
func NewClientFromEnv ¶ added in v1.8.0
NewClientFromEnv creates a client based on environment variables.
func NewClientFromSecret ¶ added in v1.8.8
NewClientFromSecret creates a client based on mounted secret files.
func NewClientFromURLAndSecret ¶ added in v1.3.2
func NewClientFromURLAndSecret(url *ObjectStoreURL, reverse ...bool) (c Client, err error)
NewClientFromURLAndSecret constructs a client by parsing `URL` and then constructing the correct client for that URL using secrets.
func NewGoogleClient ¶
func NewGoogleClient(bucket string, opts []option.ClientOption) (Client, error)
NewGoogleClient creates a google client with the given bucket name.
func NewGoogleClientFromEnv ¶ added in v1.8.0
NewGoogleClientFromEnv creates a Google client based on environment variables.
func NewGoogleClientFromSecret ¶ added in v1.3.2
NewGoogleClientFromSecret creates a google client by reading credentials from a mounted GoogleSecret. You may pass "" for bucket in which case it will read the bucket from the secret.
func NewLocalClient ¶ added in v1.6.0
NewLocalClient returns a Client that stores data on the local file system
func NewMicrosoftClient ¶ added in v1.2.3
NewMicrosoftClient creates a microsoft client:
container - Azure Blob Container name accountName - Azure Storage Account name accountKey - Azure Storage Account key
func NewMicrosoftClientFromEnv ¶ added in v1.8.0
NewMicrosoftClientFromEnv creates a Microsoft client based on environment variables.
func NewMicrosoftClientFromSecret ¶ added in v1.3.2
NewMicrosoftClientFromSecret creates a microsoft client by reading credentials from a mounted MicrosoftSecret. You may pass "" for container in which case it will read the container from the secret.
func NewMinioClient ¶ added in v1.3.5
NewMinioClient creates an s3 compatible client with the following credentials:
endpoint - S3 compatible endpoint bucket - S3 bucket name id - AWS access key id secret - AWS secret access key secure - Set to true if connection is secure. isS3V2 - Set to true if client follows S3V2
func NewMinioClientFromEnv ¶ added in v1.8.0
NewMinioClientFromEnv creates a Minio client based on environment variables.
func NewMinioClientFromSecret ¶ added in v1.3.5
NewMinioClientFromSecret constructs an s3 compatible client by reading credentials from a mounted AmazonSecret. You may pass "" for bucket in which case it will read the bucket from the secret.
func TracingObjClient ¶ added in v1.7.12
TracingObjClient wraps the given object client 'c', adding tracing to all calls made by the returned interface
type ObjectStoreURL ¶ added in v1.5.3
type ObjectStoreURL struct { // The object store, e.g. s3, gcs, as... Store string // The "bucket" (in AWS parlance) or the "container" (in Azure parlance). Bucket string // The object itself. Object string }
ObjectStoreURL represents a parsed URL to an object in an object store.
func ParseURL ¶ added in v1.5.3
func ParseURL(urlStr string) (*ObjectStoreURL, error)
ParseURL parses an URL into ObjectStoreURL.
type RetryError ¶
RetryError is used to log retry attempts.