Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[v17] Kubernetes App Auto Discovery: improve protocol detection #50269

Merged
merged 1 commit into from
Dec 16, 2024
Merged

[v17] Kubernetes App Auto Discovery: improve protocol detection #50269

merged 1 commit into from
Dec 16, 2024

Conversation

marcoandredinis
Copy link
Contributor

Backport #50223 to branch/v17

changelog: Improve performance of Kubernetes App Auto Discover

@marcoandredinis
Kubernetes App Auto Discovery: improve protocol detection
8336a39 
Kubernetes App Auto Discovery iterates over all Services and tries to
auto enroll them as Teleport Applications.

During this process, it tries to guess the Service's port protocol to
ensure we add the application only if it's either an HTTP or HTTPS
capable Service.

When there's not annotation configuration (which are teleport specific),
we try to infer from the Service's ports.

When that doesn't work out, the teleport-agent issues an HTTP HEAD
request against the port. This way we detect whether the service can
answer HTTP or HTTPS.

This PR changes the way teleport infers the protocol using the Service's
Port.
It was checking for HTTPS (checking for port number and port name), then
it did a HTTP HEAD request and then it was checking for HTTP (checking
port number and port name).

This PR changes 4 things:
- checks the port, the node port and the target port against well known
  ports (443, 80, 8080)
- checks the name of the port in bother Port.Name and Port.TargetPort
- tries to do HTTPS and HTTP checks before trying an HTTP request
- decreases the HTTP request timeout from 5s to 500ms

With a demo cluster with 2700+ Services, the reconciliation time
decreased from 2m to something very close to 0s.
@github-actions github-actions bot requested review from tigrato and zmb3 December 16, 2024 09:15
@aws-amplify-us-west-2 AWS Amplify (us-west-2)
Copy link

This pull request is automatically being deployed by Amplify Hosting (learn more).

Access this pull request here: https://pr-50269.d212ksyjt6y4yg.amplifyapp.com

@marcoandredinis marcoandredinis added this pull request to the merge queue Dec 16, 2024
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks Dec 16, 2024
@marcoandredinis marcoandredinis added this pull request to the merge queue Dec 16, 2024
Merged via the queue into branch/v17 with commit 704a235 Dec 16, 2024
42 checks passed
@marcoandredinis marcoandredinis deleted the bot/backport-50223-branch/v17 branch December 16, 2024 16:26
@doggydogworld doggydogworld mentioned this pull request Dec 18, 2024
Merged
This was referenced Dec 20, 2024
Merged
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zmb3 zmb3 zmb3 approved these changes

@tigrato tigrato tigrato approved these changes

Assignees
No one assigned
Labels
backport discovery size/sm
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@marcoandredinis @tigrato @zmb3