huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
main
speckle-server/packages/server/app.ts
T
Kristaps Fabians Geikins 624b56eacf chore(fe2): even more performant and even less hydration mismatches (#5292) 
* fix(fe2): more preview related mismatch fixes

* moar

* a bunch of preloads

* more preloads

* batchlink

* undo cache only

* lint fix

* more query opt

* rate limiter adjustments to account for batched reqs
2025-08-22 08:22:18 +03:00

503 lines
16 KiB
TypeScript
Raw Permalink Blame History

/* eslint-disable camelcase */
/* istanbul ignore file */
// eslint-disable-next-line no-restricted-imports
import './bootstrap.js'
import http from 'http'
import type { Express } from 'express'
import express from 'express'
// `express-async-errors` patches express to catch errors in async handlers. no variable needed
import 'express-async-errors'
import cookieParser from 'cookie-parser'
import { createTerminus } from '@godaddy/terminus'
import Metrics, { initPrometheusRegistry } from '@/observability'
import {
startupLogger,
shutdownLogger,
subscriptionLogger,
graphqlLogger
} from '@/observability/logging'
import {
DetermineRequestIdMiddleware,
LoggingExpressMiddleware,
sanitizeHeaders
} from '@/observability/components/express/expressLogging'
import { errorMetricsMiddlewareFactory } from '@/observability/components/express/metrics/errorMetrics'
import type { Registry } from 'prom-client'
import prometheusClient from 'prom-client'
import { ApolloServer } from '@apollo/server'
import { expressMiddleware } from '@apollo/server/express4'
import { ApolloServerPluginLandingPageLocalDefault } from '@apollo/server/plugin/landingPage/default'
import { ApolloServerPluginUsageReporting } from '@apollo/server/plugin/usageReporting'
import { ApolloServerPluginUsageReportingDisabled } from '@apollo/server/plugin/disabled'
import type { ConnectionContext } from 'subscriptions-transport-ws'
import { SubscriptionServer } from 'subscriptions-transport-ws'
import { execute, subscribe } from 'graphql'
import knex from '@/db/knex'
import { monitorActiveConnections } from '@/observability/components/httpServer/httpServerMonitoring'
import { buildErrorFormatter } from '@/modules/core/graph/setup'
import {
getFileSizeLimitMB,
isDevEnv,
isTestEnv,
isApolloMonitoringEnabled,
getPort,
getBindAddress,
shutdownTimeoutSeconds,
asyncRequestContextEnabled,
getMaximumRequestBodySizeMB,
isCompressionEnabled,
isRateLimiterEnabled
} from '@/modules/shared/helpers/envHelper'
import * as ModulesSetup from '@/modules/index'
import type { GraphQLContext, Optional } from '@/modules/shared/helpers/typeHelper'
import { get, has, isString } from 'lodash-es'
import { corsMiddlewareFactory } from '@/modules/core/configs/cors'
import {
authContextMiddleware,
buildContext,
compressionMiddlewareFactory,
determineClientIpAddressMiddleware,
requestBodyParsingMiddlewareFactory,
setContentSecurityPolicyHeaderMiddleware
} from '@/modules/shared/middleware'
import { buildMocksConfig } from '@/modules/mocks'
import { defaultErrorHandler } from '@/modules/core/rest/defaultErrorHandler'
import { migrateDbToLatest } from '@/db/migrations'
import { statusCodePlugin } from '@/modules/core/graph/plugins/statusCode'
import { BadRequestError, ForbiddenError } from '@/modules/shared/errors'
import { loggingPluginFactory } from '@/modules/core/graph/plugins/logging'
import { initFactory as healthchecksInitFactory } from '@/healthchecks'
import type { ReadinessHandler } from '@/healthchecks/types'
import type ws from 'ws'
import type { Server as MockWsServer } from 'mock-socket'
import type { SetOptional } from 'type-fest'
import {
enterNewRequestContext,
getRequestContext,
isRequestContext
} from '@/observability/utils/requestContext'
import { randomUUID } from 'crypto'
import { onOperationHandlerFactory } from '@/observability/components/apollo/apolloSubscriptions'
import { initApolloSubscriptionMonitoring } from '@/observability/components/apollo/metrics/apolloSubscriptionMonitoring'
import { initiateRequestContextMiddleware } from '@/observability/components/express/requestContextMiddleware'
import { createRateLimiterMiddleware } from '@/modules/core/rest/ratelimiter'
import { TIME_MS } from '@speckle/shared'
const GRAPHQL_PATH = '/graphql'
/**
* In mocked Ws connections, request will be undefined
*/
type PossiblyMockedConnectionContext = SetOptional<ConnectionContext, 'request'>
const isWsServer = (server: http.Server | MockWsServer): server is MockWsServer => {
return 'on' in server && 'clients' in server
}
/**
* TODO: subscriptions-transport-ws is no longer maintained, we should migrate to graphql-ws insted. The problem
* is that graphql-ws uses an entirely different protocol, so the client-side has to change as well, and so old clients
* will be unable to use any WebSocket/subscriptions functionality with the updated server
*/
export async function buildApolloSubscriptionServer(params: {
server: http.Server | MockWsServer
registers?: Registry[]
}): Promise<SubscriptionServer> {
const { server, registers } = params
const httpServer = isWsServer(server) ? undefined : server
const mockServer = isWsServer(server) ? server : undefined
// we have to break the type here, cause its a mock
const wsServer = mockServer ? (mockServer as unknown as ws.Server) : undefined
const schema = await ModulesSetup.graphSchema()
const {
metricConnectCounter,
metricConnectedClients,
metricSubscriptionTotalOperations,
metricSubscriptionTotalResponses
} = initApolloSubscriptionMonitoring({
registers: registers ?? [prometheusClient.register]
})
const getHeaders = (params: {
connContext?: PossiblyMockedConnectionContext
connectionParams?: Record<string, unknown>
}) => {
const { connContext, connectionParams } = params
const connCtxHeaders = connContext?.request?.headers || {}
const paramsHeaders = connectionParams?.headers || {}
return {
...connCtxHeaders,
...paramsHeaders
} as Record<string, string>
}
return SubscriptionServer.create(
{
schema,
execute,
subscribe,
onConnect: async (
connectionParams: Record<string, unknown>,
webSocket: WebSocket,
connContext: PossiblyMockedConnectionContext
) => {
metricConnectCounter.inc()
metricConnectedClients.inc()
const logger = connContext.request?.log || subscriptionLogger
const possiblePaths = [
'Authorization',
'authorization',
'headers.Authorization',
'headers.authorization'
]
// Resolve token
let token: string
try {
const headers = getHeaders({ connContext, connectionParams })
const requestId = headers['x-request-id'] || `ws-${randomUUID()}`
enterNewRequestContext({ reqId: requestId, logger })
logger.debug(
{ requestId, headers: sanitizeHeaders(headers) },
'New websocket connection'
)
let header: Optional<string>
for (const possiblePath of possiblePaths) {
if (has(connectionParams, possiblePath)) {
header = get(connectionParams, possiblePath) as string
if (header) break
}
}
if (!header) {
throw new BadRequestError("Couldn't resolve auth header for subscription")
}
token = header.split(' ')[1]
if (!token) {
throw new BadRequestError("Couldn't resolve token from auth header")
}
} catch {
throw new ForbiddenError('You need a token to subscribe')
}
// Build context (Apollo Server v3 no longer triggers context building automatically
// for subscriptions)
try {
const headers = getHeaders({ connContext, connectionParams })
const buildCtx = await buildContext({ token })
buildCtx.log.debug(
{
userId: buildCtx.userId,
ws_protocol: webSocket.protocol,
ws_url: webSocket.url,
headers: sanitizeHeaders(headers)
},
'Websocket connected and subscription context built.'
)
return buildCtx
} catch {
throw new ForbiddenError('Subscription context build failed')
}
},
onDisconnect: (
webSocket: WebSocket,
connContext: PossiblyMockedConnectionContext
) => {
const reqCtx = getRequestContext()
const logger = connContext.request?.log || subscriptionLogger
const headers = getHeaders({ connContext })
logger.debug(
{
ws_protocol: webSocket.protocol,
ws_url: webSocket.url,
headers: sanitizeHeaders(headers),
...(isRequestContext(reqCtx) ? { req: { id: reqCtx.requestId } } : {})
},
'Websocket disconnected.'
)
metricConnectedClients.dec()
},
onOperation: onOperationHandlerFactory({
metricSubscriptionTotalOperations,
metricSubscriptionTotalResponses
}),
keepAlive: 30000 //milliseconds. Loadbalancers may close the connection after inactivity. e.g. nginx default is 60000ms.
},
wsServer || {
server: httpServer!,
path: GRAPHQL_PATH
}
)
}
/**
* Create Apollo Server instance
*/
export async function buildApolloServer(options?: {
subscriptionServer?: SubscriptionServer
}): Promise<ApolloServer<GraphQLContext>> {
const includeStacktraceInErrorResponses = isDevEnv() || isTestEnv()
const subscriptionServer = options?.subscriptionServer
const schema = await ModulesSetup.graphSchema(await buildMocksConfig())
const server = new ApolloServer({
schema,
plugins: [
statusCodePlugin,
loggingPluginFactory({ registers: [prometheusClient.register] }),
ApolloServerPluginLandingPageLocalDefault({
embed: true,
includeCookies: true
}),
...(subscriptionServer
? [
{
async serverWillStart() {
return {
async drainServer() {
subscriptionServer?.close()
}
}
}
}
]
: []),
...(isApolloMonitoringEnabled()
? [
ApolloServerPluginUsageReporting({
// send all headers (except auth ones)
sendHeaders: { all: true }
})
]
: [ApolloServerPluginUsageReportingDisabled()])
],
introspection: true,
cache: 'bounded',
persistedQueries: false,
csrfPrevention: true,
formatError: buildErrorFormatter({ includeStacktraceInErrorResponses }),
includeStacktraceInErrorResponses,
status400ForVariableCoercionErrors: true,
stopOnTerminationSignals: false, // handled by terminus and shutdown function
logger: graphqlLogger,
allowBatchedHttpRequests: true
})
await server.start()
return server
}
/**
* Initialises all server (express/subscription/http) instances
*/
export async function init() {
startupLogger.info('🖼️ Serving for frontend-2...')
const app = express()
const promRegister = initPrometheusRegistry() // has to be called before both Metrics and Modules are initialized
app.disable('x-powered-by')
// Moves things along automatically on restart.
// Should perhaps be done manually?
await migrateDbToLatest({ region: 'main', db: knex })
app.use(cookieParser())
app.use(DetermineRequestIdMiddleware)
app.use(LoggingExpressMiddleware)
app.use(initiateRequestContextMiddleware)
app.use(determineClientIpAddressMiddleware)
if (asyncRequestContextEnabled()) {
startupLogger.info('Async request context tracking enabled 👀')
}
app.use(
compressionMiddlewareFactory({ isCompressionEnabled: isCompressionEnabled() })
)
app.use(corsMiddlewareFactory())
app.use(
requestBodyParsingMiddlewareFactory({
maximumRequestBodySizeMb: getMaximumRequestBodySizeMB()
})
) // there are some paths that need the raw body, not a parsed body
app.use(express.urlencoded({ limit: `${getFileSizeLimitMB()}mb`, extended: false }))
// Trust X-Forwarded-* headers (for https protocol detection)
app.enable('trust proxy')
app.use(createRateLimiterMiddleware({ rateLimiterEnabled: isRateLimiterEnabled() })) // Rate limiting by IP address for all users
app.use(authContextMiddleware)
app.use(setContentSecurityPolicyHeaderMiddleware)
// Initialize default modules, including rest api handlers
await ModulesSetup.init({ app, metricsRegister: prometheusClient.register })
// Initialize healthchecks
const healthchecks = await healthchecksInitFactory()(app, true)
// Metrics relies on 'regions' table in the database, so much be initialized after migrations in the main database ("migrateDbToLatest({ region: 'main'," etc..)
// It also relies on the regional knex clients, which will initialize and run migrations in the respective regions.
// It must be initialized after the multiregion module is initialized in ModulesSetup.init
await Metrics({ app, registry: promRegister })
// Init HTTP server & subscription server
const server = http.createServer(app)
const subscriptionServer = await buildApolloSubscriptionServer({
server,
registers: [promRegister]
})
// Initialize graphql server
const graphqlServer = await buildApolloServer({
subscriptionServer
})
app.use(
GRAPHQL_PATH,
expressMiddleware(graphqlServer, {
context: buildContext
})
)
// At the very end adding default error handler middleware
app.use(errorMetricsMiddlewareFactory({ promRegisters: [promRegister] }))
app.use(defaultErrorHandler)
return {
app,
graphqlServer,
registers: [promRegister],
server,
subscriptionServer,
readinessCheck: healthchecks.isReady
}
}
export async function shutdown(params: {
graphqlServer: Optional<ApolloServer<GraphQLContext>>
}): Promise<void> {
await params.graphqlServer?.stop()
await ModulesSetup.shutdown()
}
const shouldUseFrontendProxy = () => isDevEnv()
async function createFrontendProxy() {
const frontendHost = process.env.FRONTEND_HOST || '127.0.0.1'
const frontendPort = process.env.FRONTEND_PORT || 8081
const { createProxyMiddleware } = await import('http-proxy-middleware')
// even tho it has default values, it fixes http-proxy setting `Connection: close` on each request
// slowing everything down
const defaultAgent = new http.Agent()
return createProxyMiddleware({
target: `http://${frontendHost}:${frontendPort}`,
changeOrigin: true,
ws: false,
agent: defaultAgent
})
}
/**
* Starts a http server, hoisting the express app to it.
*/
export async function startHttp(params: {
server: http.Server
app: Express
registers?: Registry[]
graphqlServer: ApolloServer<GraphQLContext>
readinessCheck: ReadinessHandler
customPortOverride?: number
}) {
const { server, app, registers, graphqlServer, readinessCheck, customPortOverride } =
params
let bindAddress = getBindAddress() // defaults to 127.0.0.1
let port = getPort() // defaults to 3000
if (customPortOverride || customPortOverride === 0) port = customPortOverride
if (shouldUseFrontendProxy()) {
// app.use('/', frontendProxy)
app.use(await createFrontendProxy())
startupLogger.info('✨ Proxying frontend (dev mode):')
startupLogger.info(`👉 main application: http://127.0.0.1:${port}/`)
}
// Production mode
else {
bindAddress = getBindAddress('0.0.0.0')
}
monitorActiveConnections({
httpServer: server,
registers: registers ?? [prometheusClient.register]
})
app.set('port', port)
// large timeout to allow large downloads on slow connections to finish
createTerminus(server, {
signals: ['SIGTERM', 'SIGINT'],
timeout: shutdownTimeoutSeconds() * TIME_MS.second,
beforeShutdown: async () => {
shutdownLogger.info('Shutting down (signal received)...')
},
onSignal: async () => {
await shutdown({ graphqlServer })
},
onShutdown: () => {
shutdownLogger.info('Shutdown completed')
shutdownLogger.flush()
return Promise.resolve()
},
healthChecks: {
'/readiness': readinessCheck,
// '/liveness' should return true even if in shutdown phase, so app does not get restarted while draining connections
// therefore we cannot use terminus to handle liveness checks.
verbatim: true
},
logger: (message, err) => {
if (err) {
shutdownLogger.warn({ err }, message)
} else {
shutdownLogger.info(message)
}
}
})
server.on('listening', () => {
const address = server.address()
const addressString = isString(address) ? address : address?.address
const port = isString(address) ? null : address?.port
startupLogger.info(
`🚀 My name is Speckle Server, and I'm running at ${addressString}:${port}`
)
app.emit('appStarted')
})
server.listen(port, bindAddress)
server.keepAliveTimeout = 61 * TIME_MS.second
server.headersTimeout = 65 * TIME_MS.second
return { server }
}
Reference in New Issue View Git Blame Copy Permalink