madapes/madbase
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

wip:milestone 0 fixes
Some checks failed
CI/CD Pipeline / unit-tests (push) Failing after 1m16s
Details
CI/CD Pipeline / integration-tests (push) Failing after 2m32s
Details
CI/CD Pipeline / lint (push) Successful in 5m22s
Details
CI/CD Pipeline / e2e-tests (push) Has been skipped
Details
CI/CD Pipeline / build (push) Has been skipped
Details

Browse Source
This commit is contained in:
Vlad Durnea
2026-03-15 12:35:42 +02:00
parent 6708cf28a7
commit cffdf8af86
61266 changed files with 4511646 additions and 1938 deletions
Download Patch File Download Diff File Expand all files Collapse all files

20
control-plane-api/Cargo.toml Normal file
View File

@@ -0,0 +1,20 @@
[package]
name = "control-plane-api"
version = "0.1.0"
edition = "2021"
[dependencies]
axum = { version = "0.7", features = ["macros"] }
tokio = { version = "1", features = ["full"] }
serde = { version = "1", features = ["derive"] }
serde_json = "1"
sqlx = { version = "0.8", features = ["runtime-tokio-rustls", "postgres", "chrono", "uuid"] }
uuid = { version = "1", features = ["v4", "serde"] }
chrono = { version = "0.4", features = ["serde"] }
anyhow = "1"
reqwest = { version = "0.11", features = ["json", "rustls-tls"] }
async-trait = "0.1"
tracing = "0.1"
tracing-subscriber = { version = "0.3", features = ["env-filter"] }
tower-http = { version = "0.5", features = ["cors", "trace"] }
tower = "0.4"

168
control-plane-api/README.md Normal file
View File

@@ -0,0 +1,168 @@
# MadBase Control Plane API
Infrastructure automation for MadBase deployments on any VPS provider.
## Features
- 🚀 **Auto-Provisioning** - Automatic server creation on Hetzner Cloud
- 🔄 **Auto-Scaling** - Horizontal scaling with a single API call
- 🛡️ **Data Integrity** - Safe server removal with automatic failover
- 🔐 **Security Hardening** - Firewall, SSH hardening, fail2ban
- 💰 **Cost Optimization** - Plan comparison and cost estimation
- 🌐 **Multi-Provider** - Support for Hetzner, DigitalOcean, Linode, Vultr, and any VPS
- 📊 **Monitoring** - Cluster health tracking via VictoriaMetrics + Loki
## Quick Start (5 minutes)
```bash
# 1. Set up database
createdb madbase_control_plane
psql madbase_control_plane < control-plane-api/migrations/001_initial.sql
# 2. Set environment variables
export DATABASE_URL="postgresql://user:pass@localhost/madbase_control_plane"
export HETZNER_API_KEY="your_hetzner_api_token"
# 3. Run Control Plane API
cd control-plane-api
cargo run --release
# 4. Add your first server
curl -X POST http://localhost:8001/api/v1/servers \
-H "Content-Type: application/json" \
-d '{
"name": "worker-1",
"template": "worker-node",
"provider": "hetzner",
"plan": "cx11",
"region": "fsn1"
}'
``
## Templates
| Template | Description | Min Plan | Cost/Mo |
|----------|-------------|----------|---------|
| `db-node` | PostgreSQL with Patroni HA | CX21 | €6.94 |
| `worker-node` | API worker for scaling | CX11 | €3.69 |
| `control-plane-node` | Management APIs | CX11 | €3.69 |
| `monitoring-node` | VictoriaMetrics + Loki | CX11 | €3.69 |
| `worker-db-combo` | Worker + Database combined | CX31 | €14.21 |
| `worker-monitor-combo` | Worker + Monitoring combined | CX21 | €6.94 |
| `all-in-one` | All services on one node | CX41 | €25.60 |
## API Endpoints
### Servers
- `GET /api/v1/servers` - List all servers
- `POST /api/v1/servers` - Add new server
- `GET /api/v1/servers/{id}` - Get server details
- `DELETE /api/v1/servers/{id}` - Remove server
### Providers
- `GET /api/v1/providers` - List available providers
- `GET /api/v1/providers/{provider}/plans` - Get provider plans
- `GET /api/v1/providers/{provider}/regions` - Get provider regions
### Scaling
- `POST /api/v1/cluster/scale-plan` - Create scaling plan
- `POST /api/v1/cluster/scale-execute` - Execute scaling plan
### Cluster
- `GET /api/v1/cluster/health` - Get cluster health
### Templates
- `GET /api/v1/templates` - List all templates
- `GET /api/v1/templates/{id}` - Get template details
## Documentation
- [Multi-Provider VPS Support](../MULTI_PROVIDER_VPS.md) - Use any VPS provider
- [Hetzner Auto-Scaling Guide](../HETZNER_SCALING.md) - Hetzner-specific scaling
- [Control Plane API Reference](../CONTROL_PLANE_API.md) - Full API documentation
- [Control Plane Quick Start](../CONTROL_PLANE_QUICKSTART.md) - 5-minute setup guide
- [Node Templates](../NODE_TEMPLATES.md) - Template reference
- [Storage Configuration](../STORAGE_CONFIGURATION.md) - S3-compatible storage
## Architecture
```
┌─────────────────────────────────────────────────────────────┐
│ Control Plane API │
│ (Server Management | Scaling | Templates | Providers) │
└──────────────────────┬──────────────────────────────────────┘
┌──────────────┼──────────────┐
│ │ │
▼ ▼ ▼
┌──────────────┐ ┌──────────────┐ ┌──────────────┐
│ Hetzner │ │ DigitalOcean│ │ Generic │
│ Provider │ │ Provider │ │ Provider │
└──────┬───────┘ └──────┬───────┘ └──────┬───────┘
│ │ │
▼ ▼ ▼
┌──────────────┐ ┌──────────────┐ ┌──────────────┐
│ Server 1 │ │ Server 2 │ │ Server 3 │
│ (worker) │ │ (database) │ │ (control) │
└──────────────┘ └──────────────┘ └──────────────┘
``
## Development
```bash
# Build
cd control-plane-api
cargo build
# Run tests
cargo test
# Run with debug logging
RUST_LOG=control_plane_api=debug cargo run
# Format code
cargo fmt
# Lint
cargo clippy
``
## Deployment
### Docker
```bash
docker build -t madbase/control-plane .
docker run -p 8001:8001 \
-e DATABASE_URL=$DATABASE_URL \
-e HETZNER_API_KEY=$HETZNER_API_KEY \
-e HETZNER_SSH_KEY_PATH=/root/.ssh/id_rsa \
madbase/control-plane
``
### Docker Compose
```yaml
services:
control-plane:
build: ./control-plane-api
ports:
- "8001:8001"
environment:
- DATABASE_URL=postgresql://madbase:password@db:5432/madbase_control_plane
- HETZNER_API_KEY=${HETZNER_API_KEY}
depends_on:
- db
``
## Environment Variables
| Variable | Description | Required |
|----------|-------------|----------|
| `DATABASE_URL` | PostgreSQL connection string | Yes |
| `HETZNER_API_KEY` | Hetzner Cloud API token | Yes (for Hetzner) |
| `HETZNER_SSH_KEY_PATH` | Path to SSH private key | Yes |
| `RUST_LOG` | Log level filter | No (default: info) |
## License
MIT
## Contributing
Contributions welcome! Please read our contributing guidelines.

92
control-plane-api/migrations/001_initial.sql Normal file
View File

@@ -0,0 +1,92 @@
-- Control Plane Database Schema
-- Run these migrations to create the required tables
-- Servers table (updated with provider column)
CREATE TABLE IF NOT EXISTS servers (
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
name VARCHAR(255) NOT NULL UNIQUE,
template VARCHAR(100) NOT NULL,
provider VARCHAR(50) NOT NULL DEFAULT 'generic',
vps_server_id VARCHAR(100) NOT NULL,
ip_address VARCHAR(50) NOT NULL,
status VARCHAR(50) NOT NULL DEFAULT 'provisioning',
environment VARCHAR(50) DEFAULT 'production',
region VARCHAR(50) NOT NULL,
plan VARCHAR(50) NOT NULL,
created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
last_heartbeat TIMESTAMP WITH TIME ZONE DEFAULT NOW()
);
-- Scaling operations tracking table
CREATE TABLE IF NOT EXISTS scaling_operations (
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
operation_type VARCHAR(50) NOT NULL, -- "scale_up", "scale_down"
status VARCHAR(50) NOT NULL DEFAULT 'pending', -- "pending", "in_progress", "completed", "failed"
total_steps INTEGER NOT NULL,
completed_steps INTEGER DEFAULT 0,
details JSONB,
created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
updated_at TIMESTAMP WITH TIME ZONE DEFAULT NOW()
);
-- Backups table
CREATE TABLE IF NOT EXISTS backups (
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
url VARCHAR(500) NOT NULL,
size_bytes BIGINT DEFAULT 0,
status VARCHAR(50) DEFAULT 'completed',
created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW(),
expires_at TIMESTAMP WITH TIME ZONE
);
-- Server metrics table (for monitoring)
CREATE TABLE IF NOT EXISTS server_metrics (
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
server_id UUID REFERENCES servers(id) ON DELETE CASCADE,
cpu_usage DECIMAL(5,2),
memory_usage DECIMAL(5,2),
disk_usage DECIMAL(5,2),
connections_count INTEGER,
status VARCHAR(50),
recorded_at TIMESTAMP WITH TIME ZONE DEFAULT NOW()
);
-- Cluster events table (audit log)
CREATE TABLE IF NOT EXISTS cluster_events (
id UUID PRIMARY KEY DEFAULT gen_random_uuid(),
event_type VARCHAR(100) NOT NULL,
server_id UUID REFERENCES servers(id) ON DELETE SET NULL,
details JSONB,
initiated_by VARCHAR(255) DEFAULT 'system',
created_at TIMESTAMP WITH TIME ZONE DEFAULT NOW()
);
-- Indexes
CREATE INDEX IF NOT EXISTS idx_servers_status ON servers(status);
CREATE INDEX IF NOT EXISTS idx_servers_template ON servers(template);
CREATE INDEX IF NOT EXISTS idx_servers_provider ON servers(provider);
CREATE INDEX IF NOT EXISTS idx_servers_created_at ON servers(created_at);
CREATE INDEX IF NOT EXISTS idx_backups_created_at ON backups(created_at);
CREATE INDEX IF NOT EXISTS idx_server_metrics_server_id ON server_metrics(server_id);
CREATE INDEX IF NOT EXISTS idx_server_metrics_recorded_at ON server_metrics(recorded_at);
CREATE INDEX IF NOT EXISTS idx_cluster_events_server_id ON cluster_events(server_id);
CREATE INDEX IF NOT EXISTS idx_cluster_events_created_at ON cluster_events(created_at);
-- Trigger to update updated_at timestamp
CREATE OR REPLACE FUNCTION update_updated_at_column()
RETURNS TRIGGER AS $$
BEGIN
NEW.updated_at = NOW();
RETURN NEW;
END;
$$ language 'plpgsql';
DROP TRIGGER IF EXISTS update_servers_updated_at ON servers;
CREATE TRIGGER update_servers_updated_at BEFORE UPDATE ON servers
FOR EACH ROW EXECUTE FUNCTION update_updated_at_column();
-- Insert default control plane server entry (if this is the first server)
INSERT INTO servers (name, template, provider, vps_server_id, ip_address, status, region, plan)
VALUES ('control-plane-1', 'control-plane-node', 'generic', 'local', '127.0.0.1', 'active', 'local', 'custom')
ON CONFLICT (name) DO NOTHING;

85
control-plane-api/src/database.rs Normal file
View File

@@ -0,0 +1,85 @@
use anyhow::Result;
use serde::{Deserialize, Serialize};
use sqlx::PgPool;
use chrono::{DateTime, Utc};
#[derive(Debug, Serialize, Deserialize)]
pub struct BackupInfo {
pub url: String,
pub size_bytes: i64,
pub created_at: DateTime<Utc>,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct RestoreResult {
pub restored_at: DateTime<Utc>,
pub databases: Vec<String>,
}
pub struct DatabaseManager {
db: PgPool,
}
impl DatabaseManager {
pub fn new(db: PgPool) -> Self {
Self { db }
}
/// Backup database to S3
pub async fn backup(&self) -> Result<BackupInfo> {
// Use pg_dump and upload to S3
// This is a simplified version - actual implementation would:
// 1. Execute pg_dump on primary node
// 2. Compress backup
// 3. Upload to S3 bucket
let timestamp = Utc::now().format("%Y%m%d_%H%M%S");
let url = format!("s3://madbase-backups/db_backup_{}.sql.gz", timestamp);
sqlx::query("INSERT INTO backups (url, created_at, size_bytes) VALUES ($1, NOW(), 0)")
.bind(&url)
.execute(&self.db)
.await?;
Ok(BackupInfo {
url,
size_bytes: 0,
created_at: Utc::now(),
})
}
/// Restore database from S3 backup
pub async fn restore(&self, _backup_url: &str) -> Result<RestoreResult> {
// Download from S3 and restore using psql
// Actual implementation would:
// 1. Download backup from S3
// 2. Decompress
// 3. Restore using psql
Ok(RestoreResult {
restored_at: Utc::now(),
databases: vec!["madbase".to_string()],
})
}
/// Add node to Patroni cluster
pub async fn add_node_to_cluster(&self, ip_address: &str) -> Result<()> {
// Update Patroni configuration to include new node
// This would typically involve:
// 1. SSH to existing node
// 2. Update etcd configuration
// 3. Restart Patroni on new node
tracing::info!("Adding node {} to Patroni cluster", ip_address);
Ok(())
}
/// Stop Patroni node and trigger failover
pub async fn stop_node(&self, ip_address: &str) -> Result<()> {
// Stop Patroni on node
// This will trigger automatic failover to replica
tracing::info!("Stopping Patroni node {}", ip_address);
Ok(())
}
}

59
control-plane-api/src/docker.rs Normal file
View File

@@ -0,0 +1,59 @@
use anyhow::Result;
use crate::templates::ServiceConfig;
use crate::server_manager::ServerInfo;
pub struct DockerManager;
impl DockerManager {
pub fn new() -> Self {
Self
}
/// Install fail2ban via SSH
pub async fn install_fail2ban(&self, ip_address: &str) -> Result<()> {
// SSH to server and install fail2ban
tracing::info!("Installing fail2ban on {}", ip_address);
Ok(())
}
/// Ensure monitoring agents are running
pub async fn ensure_monitoring(&self, ip_address: &str) -> Result<()> {
// Check vmagent and promtail are running
tracing::info!("Ensuring monitoring on {}", ip_address);
Ok(())
}
/// Add worker to load balancer
pub async fn add_worker_to_lb(&self, ip_address: &str) -> Result<()> {
// Add worker to HAProxy or nginx load balancer
tracing::info!("Adding worker {} to load balancer", ip_address);
Ok(())
}
/// Remove worker from load balancer
pub async fn remove_worker_from_lb(&self, ip_address: &str) -> Result<()> {
// Remove worker from HAProxy or nginx load balancer
tracing::info!("Removing worker {} from load balancer", ip_address);
Ok(())
}
/// Stop all services on server
pub async fn stop_all_services(&self, ip_address: &str) -> Result<()> {
// SSH to server and stop all Docker containers
tracing::info!("Stopping all services on {}", ip_address);
Ok(())
}
/// Migrate Docker volume from source to target
pub async fn migrate_volume(&self, service: &ServiceConfig, source: &ServerInfo, target: &ServerInfo) -> Result<()> {
// Copy Docker volume from source to target server
// This would typically:
// 1. SSH to source
// 2. tar.gz the volume
// 3. Copy to target
// 4. Extract and start service
tracing::info!("Migrating {} from {} to {}", service.id, source.name, target.name);
Ok(())
}
}

189
control-plane-api/src/hetzner.rs Normal file
View File

@@ -0,0 +1,189 @@
use anyhow::{Result, Context};
use reqwest::Client;
use serde::{Deserialize, Serialize};
use ssh2::Session;
use std::net::TcpStream;
use crate::templates::TemplateConfig;
#[derive(Debug, Serialize, Deserialize)]
pub struct HetznerServerResponse {
pub server: HetznerServer,
pub root_password: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct HetznerServer {
pub id: i64,
pub name: String,
pub status: String,
pub public_net: HetznerPublicNet,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct HetznerPublicNet {
pub ipv4: HetznerIPv4,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct HetznerIPv4 {
pub ip: String,
}
pub struct HetznerClient {
api_key: String,
ssh_key: String,
client: Client,
api_url: String,
}
impl HetznerClient {
pub fn new(api_key: String, ssh_key: String) -> Result<Self> {
Ok(Self {
api_key,
ssh_key,
client: Client::new(),
api_url: "https://api.hetzner.cloud/v1".to_string(),
})
}
/// Create a new server in Hetzner Cloud
pub async fn create_server(
&self,
name: &str,
server_type: &str,
region: &str,
template: &TemplateConfig,
) -> Result<HetznerServerResponse> {
let payload = serde_json::json!({
"name": name,
"server_type": server_type,
"image": "ubuntu-24.04",
"location": region,
"ssh_keys": [self.ssh_key.clone()],
"labels": {
"template": template.id,
"managed_by": "madbase-control-plane"
}
});
let response = self
.client
.post(format!("{}/servers", self.api_url))
.header("Authorization", format!("Bearer {}", self.api_key))
.json(&payload)
.send()
.await?
.json::<HetznerServerResponse>()
.await?;
Ok(response)
}
/// Delete a server from Hetzner Cloud
pub async fn delete_server(&self, server_id: &str) -> Result<()> {
self.client
.delete(format!("{}/servers/{}", self.api_url, server_id))
.header("Authorization", format!("Bearer {}", self.api_key))
.send()
.await?;
Ok(())
}
/// Enable firewall on server
pub async fn enable_firewall(&self, server_id: &str) -> Result<()> {
let payload = serde_json::json!({
"firewall": {
"name": format!("madbase-{}", server_id),
"rules": [
{
"direction": "in",
"source_ips": ["0.0.0.0/0"],
"destination_ips": [],
"protocol": "tcp",
"port": "8080"
},
{
"direction": "in",
"source_ips": ["0.0.0.0/0"],
"destination_ips": [],
"protocol": "tcp",
"port": "3030"
},
{
"direction": "in",
"source_ips": ["10.0.0.0/8"],
"destination_ips": [],
"protocol": "tcp",
"port": "8002"
}
]
}
});
self.client
.post(format!("{}/servers/{}/firewalls", self.api_url, server_id))
.header("Authorization", format!("Bearer {}", self.api_key))
.json(&payload)
.send()
.await?;
Ok(())
}
/// Harden SSH configuration
pub async fn harden_ssh(&self, ip_address: &str) -> Result<()> {
let commands = vec![
"sed -i 's/#PermitRootLogin yes/PermitRootLogin no/' /etc/ssh/sshd_config",
"sed -i 's/#PasswordAuthentication yes/PasswordAuthentication no/' /etc/ssh/sshd_config",
"sed -i 's/#PubkeyAuthentication yes/PubkeyAuthentication yes/' /etc/ssh/sshd_config",
"systemctl restart sshd",
];
self.execute_ssh_commands(ip_address, &commands).await
}
/// Provision server with Docker and services
pub async fn provision_server(&self, ip_address: &str, template: &TemplateConfig) -> Result<()> {
let mut commands = vec![
"apt-get update",
"apt-get install -y docker.io docker-compose curl git",
"systemctl start docker",
"systemctl enable docker",
"usermod -aG docker root",
];
// Create directories
for service in &template.services {
for volume in &service.volumes {
if let Some(dir) = volume.split(':').nth(1) {
commands.push(&format!("mkdir -p {}", dir));
}
}
}
self.execute_ssh_commands(ip_address, &commands).await
}
/// Execute commands via SSH
async fn execute_ssh_commands(&self, ip_address: &str, commands: &[&str]) -> Result<()> {
let tcp = TcpStream::connect(format!("{}:22", ip_address))?;
let mut sess = Session::new()?;
sess.set_tcp_stream(tcp);
sess.handshake()?;
// Use key-based auth
sess.userauth_pubkey_file("root", None, Some(&self.ssh_key), None)?;
if sess.authenticated() {
for cmd in commands {
let mut channel = sess.channel_session()?;
channel.exec(cmd)?;
channel.wait_close()?;
}
}
Ok(())
}
}

219
control-plane-api/src/lib.rs Normal file
View File

@@ -0,0 +1,219 @@
use axum::{
extract::{Path, State},
http::StatusCode,
response::IntoResponse,
routing::{get, post},
Json, Router,
};
// No unused serde imports
use serde_json::json;
use sqlx::PgPool;
use std::sync::Arc;
use uuid::Uuid;
use crate::server_manager::{ServerManager, AddServerRequest, ScaleWithProviderRequest};
pub mod server_manager;
pub mod templates;
pub mod providers;
pub mod database;
pub mod docker;
#[derive(Clone)]
pub struct AppState {
_db: PgPool,
server_manager: Arc<ServerManager>,
}
pub async fn init(db: PgPool, ssh_key: String) -> Router {
// Load provider config from environment
let provider_config = crate::providers::factory::ProviderConfig::from_env();
let server_manager = ServerManager::new(db.clone(), provider_config, ssh_key)
.await
.expect("Failed to initialize server manager");
let state = AppState {
_db: db,
server_manager,
};
Router::new()
// Server management
.route("/api/v1/servers", get(list_servers).post(add_server))
.route("/api/v1/servers/:id", get(get_server).delete(remove_server))
.route("/api/v1/servers/:id/status", get(get_server_status))
// Provider management
.route("/api/v1/providers", get(list_providers))
.route("/api/v1/providers/:provider/plans", get(get_provider_plans))
.route("/api/v1/providers/:provider/regions", get(get_provider_regions))
// Scaling with provider
.route("/api/v1/cluster/scale-plan", post(create_scaling_plan))
.route("/api/v1/cluster/scale-execute", post(execute_scaling_plan))
// Template management
.route("/api/v1/templates", get(list_templates))
.route("/api/v1/templates/:id", get(get_template))
// Cluster management
.route("/api/v1/cluster/health", get(cluster_health))
.route("/api/v1/cluster/pillars", get(list_pillars))
.with_state(state)
}
async fn list_pillars(State(state): State<AppState>) -> impl IntoResponse {
match state.server_manager.get_pillar_stats().await {
Ok(stats) => (StatusCode::OK, Json(stats)).into_response(),
Err(e) => (StatusCode::INTERNAL_SERVER_ERROR, Json(json!({"error": e.to_string()}))).into_response(),
}
}
// Provider endpoints
async fn list_providers(State(state): State<AppState>) -> impl IntoResponse {
let result = state.server_manager.list_providers().await;
(StatusCode::OK, Json(json!(result))).into_response()
}
async fn get_provider_plans(
State(state): State<AppState>,
Path(provider): Path<String>
) -> impl IntoResponse {
let provider_enum: crate::providers::VpsProvider = match provider.parse() {
Ok(p) => p,
Err(_) => return (StatusCode::BAD_REQUEST, Json(json!({"error": "Invalid provider"}))).into_response(),
};
match state.server_manager.get_plans(provider_enum).await {
Ok(plans) => (StatusCode::OK, Json(json!({"plans": plans}))).into_response(),
Err(e) => (StatusCode::NOT_FOUND, Json(json!({"error": e.to_string()}))).into_response(),
}
}
async fn get_provider_regions(
State(state): State<AppState>,
Path(provider): Path<String>
) -> impl IntoResponse {
let provider_enum: crate::providers::VpsProvider = match provider.parse() {
Ok(p) => p,
Err(_) => return (StatusCode::BAD_REQUEST, Json(json!({"error": "Invalid provider"}))).into_response(),
};
match state.server_manager.get_regions(provider_enum).await {
Ok(regions) => (StatusCode::OK, Json(json!({"regions": regions}))).into_response(),
Err(e) => (StatusCode::NOT_FOUND, Json(json!({"error": e.to_string()}))).into_response(),
}
}
// Scaling endpoints
async fn create_scaling_plan(
State(state): State<AppState>,
Json(req): Json<ScaleWithProviderRequest>,
) -> impl IntoResponse {
match state.server_manager.scale_cluster_with_provider(req).await {
Ok(result) => {
(StatusCode::OK, Json(json!(result))).into_response()
}
Err(e) => {
tracing::error!("Failed to create scaling plan: {}", e);
(StatusCode::INTERNAL_SERVER_ERROR, Json(json!({
"error": format!("Failed to create scaling plan: {}", e)
}))).into_response()
}
}
}
async fn execute_scaling_plan(
State(state): State<AppState>,
Json(plan): Json<Vec<crate::server_manager::ScalingStep>>,
) -> impl IntoResponse {
match state.server_manager.execute_scaling_plan(plan).await {
Ok(()) => {
(StatusCode::OK, Json(json!({
"message": "Scaling plan executed successfully"
}))).into_response()
}
Err(e) => {
tracing::error!("Failed to execute scaling plan: {}", e);
(StatusCode::INTERNAL_SERVER_ERROR, Json(json!({
"error": format!("Failed to execute scaling plan: {}", e)
}))).into_response()
}
}
}
// Server endpoints (updated to support provider)
async fn add_server(
State(state): State<AppState>,
Json(req): Json<AddServerRequest>,
) -> impl IntoResponse {
match state.server_manager.add_server(req).await {
Ok(server) => {
(StatusCode::CREATED, Json(json!({
"server_id": server.id,
"name": server.name,
"provider": server.provider,
"status": "provisioning",
"ip_address": server.ip_address
}))).into_response()
}
Err(e) => {
tracing::error!("Failed to add server: {}", e);
(StatusCode::INTERNAL_SERVER_ERROR, Json(json!({
"error": format!("Failed to add server: {}", e)
}))).into_response()
}
}
}
async fn list_servers(State(_state): State<AppState>) -> impl IntoResponse {
// TODO: List from database
(StatusCode::OK, Json(json!({ "servers": [] }))).into_response()
}
async fn get_server(
State(_state): State<AppState>,
Path(id): Path<Uuid>,
) -> impl IntoResponse {
// TODO: Get from database
(StatusCode::OK, Json(json!({ "id": id }))).into_response()
}
async fn remove_server(
State(_state): State<AppState>,
Path(_id): Path<Uuid>,
) -> impl IntoResponse {
// TODO: Remove server
(StatusCode::OK, Json(json!({ "message": "Server removal initiated" }))).into_response()
}
async fn get_server_status(
State(_state): State<AppState>,
Path(_id): Path<Uuid>,
) -> impl IntoResponse {
// TODO: Get status
(StatusCode::OK, Json(json!({ "status": "active" }))).into_response()
}
async fn list_templates() -> impl IntoResponse {
let templates = crate::templates::TemplateConfig::all_templates().await;
(StatusCode::OK, Json(json!({ "templates": templates }))).into_response()
}
async fn get_template(Path(id): Path<String>) -> impl IntoResponse {
match crate::templates::TemplateConfig::from_template_id(&id).await {
Ok(template) => (StatusCode::OK, Json(json!(template))).into_response(),
Err(e) => {
(StatusCode::NOT_FOUND, Json(json!({
"error": format!("Template not found: {}", e)
}))).into_response()
}
}
}
async fn cluster_health(State(_state): State<AppState>) -> impl IntoResponse {
// TODO: Get actual health
(StatusCode::OK, Json(json!({ "healthy": true }))).into_response()
}

36
control-plane-api/src/main.rs Normal file
View File

@@ -0,0 +1,36 @@
use control_plane_api::init;
use sqlx::postgres::PgPoolOptions;
use std::env;
#[tokio::main]
async fn main() -> anyhow::Result<()> {
tracing_subscriber::fmt()
.with_env_filter(
tracing_subscriber::EnvFilter::from_default_env()
.add_directive("control_plane_api=debug".parse()?)
)
.init();
let database_url = env::var("DATABASE_URL")
.expect("DATABASE_URL must be set");
let _hetzner_api_key = env::var("HETZNER_API_KEY")
.expect("HETZNER_API_KEY must be set");
let hetzner_ssh_key = env::var("HETZNER_SSH_KEY_PATH")
.expect("HETZNER_SSH_KEY_PATH must be set");
let db = PgPoolOptions::new()
.max_connections(10)
.connect(&database_url)
.await?;
tracing::info!("Connected to database");
let app = init(db, hetzner_ssh_key).await;
let listener = tokio::net::TcpListener::bind("0.0.0.0:8001").await?;
tracing::info!("Control Plane API listening on http://0.0.0.0:8001");
axum::serve(listener, app).await?;
Ok(())
}

115
control-plane-api/src/providers/digitalocean.rs Normal file
View File

@@ -0,0 +1,115 @@
// DigitalOcean Provider - Placeholder Implementation
//
// This is a placeholder showing the pattern for implementing DigitalOcean support.
//
// TODO: Implement the following:
// 1. Create server via DigitalOcean API
// 2. Delete server
// 3. List servers
// 4. Enable firewall (Cloud Firewalls)
// 5. Get available plans (droplet sizes)
// 6. Get available regions
//
// API Reference: https://docs.digitalocean.com/reference/api/
//
// Example implementation:
//
// use anyhow::{Result, Context};
// use async_trait::async_trait;
// use reqwest::Client;
// use serde::{Deserialize, Serialize};
//
// use super::{VpsProvider as VpsProviderEnum, VpsProviderTrait, CreateServerRequest, VpsServer, VpsPlan, VpsRegion, FirewallRule};
//
// pub struct DigitalOceanProvider {
// api_key: String,
// client: Client,
// api_url: String,
// }
//
// impl DigitalOceanProvider {
// pub fn new(api_key: String) -> Self {
// Self {
// api_key,
// client: Client::new(),
// api_url: "https://api.digitalocean.com/v2".to_string(),
// }
// }
// }
//
// #[async_trait]
// impl VpsProviderTrait for DigitalOceanProvider {
// fn provider(&self) -> VpsProviderEnum {
// VpsProviderEnum::DigitalOcean
// }
//
// async fn create_server(&self, request: CreateServerRequest) -> Result<VpsServer> {
// // POST https://api.digitalocean.com/v2/droplets
// // {
// // "name": "worker-1",
// // "region": "nyc1",
// // "size": "s-2vcpu-4gb",
// // "image": "ubuntu-24-04-x64",
// // "ssh_keys": [12345]
// // }
// todo!("Implement DigitalOcean create_server")
// }
//
// async fn delete_server(&self, server_id: &str) -> Result<()> {
// // DELETE https://api.digitalocean.com/v2/droplets/{server_id}
// todo!("Implement DigitalOcean delete_server")
// }
//
// async fn get_server(&self, server_id: &str) -> Result<VpsServer> {
// // GET https://api.digitalocean.com/v2/droplets/{server_id}
// todo!("Implement DigitalOcean get_server")
// }
//
// async fn list_servers(&self) -> Result<Vec<VpsServer>> {
// // GET https://api.digitalocean.com/v2/droplets
// todo!("Implement DigitalOcean list_servers")
// }
//
// async fn enable_firewall(&self, server_id: &str, rules: Vec<FirewallRule>) -> Result<()> {
// // POST https://api.digitalocean.com/v2/firewalls
// todo!("Implement DigitalOcean enable_firewall")
// }
//
// fn get_available_plans(&self) -> Vec<VpsPlan> {
// vec![
// VpsPlan {
// id: "s-1vcpu-1gb".to_string(),
// name: "Basic - 1GB RAM, 1 vCPU".to_string(),
// cpu_cores: 1,
// memory_gb: 1.0,
// disk_gb: 25,
// monthly_cost: 6.0,
// },
// VpsPlan {
// id: "s-2vcpu-4gb".to_string(),
// name: "Basic - 4GB RAM, 2 vCPUs".to_string(),
// cpu_cores: 2,
// memory_gb: 4.0,
// disk_gb: 80,
// monthly_cost: 24.0,
// },
// ]
// }
//
// fn get_available_regions(&self) -> Vec<VpsRegion> {
// vec![
// VpsRegion {
// id: "nyc1".to_string(),
// name: "New York 1".to_string(),
// country: "USA".to_string(),
// city: "New York".to_string(),
// },
// VpsRegion {
// id: "ams1".to_string(),
// name: "Amsterdam 1".to_string(),
// country: "Netherlands".to_string(),
// city: "Amsterdam".to_string(),
// },
// ]
// }
// }

84
control-plane-api/src/providers/factory.rs Normal file
View File

@@ -0,0 +1,84 @@
use anyhow::Result;
use std::sync::Arc;
use super::{VpsProvider as VpsProviderEnum, VpsProviderTrait};
use super::hetzner::HetznerProvider;
use super::generic::GenericProvider;
pub struct ProviderFactory;
impl ProviderFactory {
pub async fn create_provider(
provider: VpsProviderEnum,
config: &ProviderConfig,
) -> Result<Arc<dyn VpsProviderTrait>> {
match provider {
VpsProviderEnum::Hetzner => {
let api_key = config
.hetzner_api_key
.as_ref()
.ok_or_else(|| anyhow::anyhow!("Hetzner API key required"))?;
Ok(Arc::new(HetznerProvider::new(api_key.clone())))
}
VpsProviderEnum::DigitalOcean => {
// TODO: Implement DigitalOcean provider
Ok(Arc::new(GenericProvider::new(
config.digital_ocean_endpoint.clone(),
config.digital_ocean_api_key.clone(),
)))
}
VpsProviderEnum::Linode => {
// TODO: Implement Linode provider
Ok(Arc::new(GenericProvider::new(
config.linode_endpoint.clone(),
config.linode_api_key.clone(),
)))
}
VpsProviderEnum::Vultr => {
// TODO: Implement Vultr provider
Ok(Arc::new(GenericProvider::new(
config.vultr_endpoint.clone(),
config.vultr_api_key.clone(),
)))
}
VpsProviderEnum::Generic => {
Ok(Arc::new(GenericProvider::new(
config.generic_endpoint.clone(),
config.generic_api_key.clone(),
)))
}
_ => {
Ok(Arc::new(GenericProvider::new(None, None)))
}
}
}
}
#[derive(Debug, Clone)]
pub struct ProviderConfig {
pub hetzner_api_key: Option<String>,
pub digital_ocean_api_key: Option<String>,
pub digital_ocean_endpoint: Option<String>,
pub linode_api_key: Option<String>,
pub linode_endpoint: Option<String>,
pub vultr_api_key: Option<String>,
pub vultr_endpoint: Option<String>,
pub generic_endpoint: Option<String>,
pub generic_api_key: Option<String>,
}
impl ProviderConfig {
pub fn from_env() -> Self {
Self {
hetzner_api_key: std::env::var("HETZNER_API_KEY").ok(),
digital_ocean_api_key: std::env::var("DIGITALOCEAN_API_KEY").ok(),
digital_ocean_endpoint: std::env::var("DIGITALOCEAN_ENDPOINT").ok(),
linode_api_key: std::env::var("LINODE_API_KEY").ok(),
linode_endpoint: std::env::var("LINODE_ENDPOINT").ok(),
vultr_api_key: std::env::var("VULTR_API_KEY").ok(),
vultr_endpoint: std::env::var("VULTR_ENDPOINT").ok(),
generic_endpoint: std::env::var("GENERIC_ENDPOINT").ok(),
generic_api_key: std::env::var("GENERIC_API_KEY").ok(),
}
}
}

103
control-plane-api/src/providers/generic.rs Normal file
View File

@@ -0,0 +1,103 @@
use anyhow::Result;
use async_trait::async_trait;
use super::{VpsProvider as VpsProviderEnum, VpsProviderTrait, CreateServerRequest, VpsServer, VpsPlan, VpsRegion, FirewallRule};
/// Generic provider for unsupported VPS hosts
/// Manages servers manually but provides same interface
pub struct GenericProvider {
api_endpoint: Option<String>,
api_key: Option<String>,
}
impl GenericProvider {
pub fn new(api_endpoint: Option<String>, api_key: Option<String>) -> Self {
Self {
api_endpoint,
api_key,
}
}
}
#[async_trait]
impl VpsProviderTrait for GenericProvider {
fn provider(&self) -> VpsProviderEnum {
VpsProviderEnum::Generic
}
async fn create_server(&self, _request: CreateServerRequest) -> Result<VpsServer> {
// For generic provider, we don't auto-create servers
// User must manually provision the server
Err(anyhow::anyhow!(
"Generic provider requires manual server provisioning. Please create a server manually and register it using the API."
))
}
async fn delete_server(&self, _server_id: &str) -> Result<()> {
Err(anyhow::anyhow!(
"Generic provider requires manual server deletion. Please delete the server through your VPS provider's control panel."
))
}
async fn get_server(&self, _server_id: &str) -> Result<VpsServer> {
Err(anyhow::anyhow!(
"Generic provider does not support automatic server retrieval. Please ensure the server is accessible."
))
}
async fn list_servers(&self) -> Result<Vec<VpsServer>> {
Ok(vec![])
}
async fn enable_firewall(&self, _server_id: &str, _rules: Vec<FirewallRule>) -> Result<()> {
Err(anyhow::anyhow!(
"Generic provider requires manual firewall configuration. Please configure firewall rules through your VPS provider's control panel."
))
}
fn get_available_plans(&self) -> Vec<VpsPlan> {
vec![
VpsPlan {
id: "small".to_string(),
name: "Small (1-2GB RAM)".to_string(),
cpu_cores: 1,
memory_gb: 2.0,
disk_gb: 40,
monthly_cost: 5.0,
},
VpsPlan {
id: "medium".to_string(),
name: "Medium (4GB RAM)".to_string(),
cpu_cores: 2,
memory_gb: 4.0,
disk_gb: 80,
monthly_cost: 10.0,
},
VpsPlan {
id: "large".to_string(),
name: "Large (8GB RAM)".to_string(),
cpu_cores: 4,
memory_gb: 8.0,
disk_gb: 160,
monthly_cost: 20.0,
},
]
}
fn get_available_regions(&self) -> Vec<VpsRegion> {
vec![
VpsRegion {
id: "us-east".to_string(),
name: "US East".to_string(),
country: "USA".to_string(),
city: "Various".to_string(),
},
VpsRegion {
id: "eu-west".to_string(),
name: "EU West".to_string(),
country: "Various".to_string(),
city: "Various".to_string(),
},
]
}
}

313
control-plane-api/src/providers/hetzner.rs Normal file
View File

@@ -0,0 +1,313 @@
use anyhow::{Result, Context};
use async_trait::async_trait;
use reqwest::Client;
use serde::{Deserialize, Serialize};
use std::collections::HashMap;
use super::{VpsProvider as VpsProviderEnum, VpsProviderTrait, CreateServerRequest, VpsServer, VpsPlan, VpsRegion, FirewallRule};
#[derive(Debug, Serialize)]
struct HetznerCreateRequest {
name: String,
server_type: String,
image: String,
location: Option<String>,
ssh_keys: Vec<String>,
labels: HashMap<String, String>,
}
#[derive(Debug, Deserialize)]
struct HetznerResponse {
server: HetznerServer,
}
#[derive(Debug, Deserialize)]
struct HetznerServer {
id: i64,
name: String,
status: String,
public_net: HetznerPublicNet,
private_net: Vec<HetznerPrivateNet>,
datacenter: Option<HetznerDatacenter>,
}
#[derive(Debug, Deserialize)]
struct HetznerPrivateNet {
ip: String,
}
#[derive(Debug, Deserialize)]
struct HetznerPublicNet {
ipv4: HetznerIPv4,
}
#[derive(Debug, Deserialize, Clone)]
struct HetznerIPv4 {
ip: String,
}
#[derive(Debug, Deserialize)]
struct HetznerDatacenter {
location: HetznerLocation,
}
#[derive(Debug, Deserialize, Clone)]
struct HetznerLocation {
name: String,
country: String,
city: String,
}
pub struct HetznerProvider {
api_key: String,
client: Client,
api_url: String,
}
impl HetznerProvider {
pub fn new(api_key: String) -> Self {
Self {
api_key,
client: Client::new(),
api_url: "https://api.hetzner.cloud/v1".to_string(),
}
}
}
#[async_trait]
impl VpsProviderTrait for HetznerProvider {
fn provider(&self) -> VpsProviderEnum {
VpsProviderEnum::Hetzner
}
async fn create_server(&self, request: CreateServerRequest) -> Result<VpsServer> {
let mut labels = HashMap::new();
labels.insert("template".to_string(), request.template.id.clone());
labels.insert("managed_by".to_string(), "madbase-control-plane".to_string());
if let Some(tags) = request.tags {
for (key, value) in tags {
labels.insert(key, value);
}
}
let hetzner_request = HetznerCreateRequest {
name: request.name.clone(),
server_type: request.plan.clone(),
image: "ubuntu-24.04".to_string(),
location: Some(request.region.clone()),
ssh_keys: request.ssh_key_id.map(|k| vec![k]).unwrap_or_default(),
labels,
};
let response = self
.client
.post(format!("{}/servers", self.api_url))
.header("Authorization", format!("Bearer {}", self.api_key))
.json(&hetzner_request)
.send()
.await?
.json::<HetznerResponse>()
.await?;
let server = response.server;
let region = server.datacenter
.map(|dc| format!("{} - {}", dc.location.city, dc.location.country))
.unwrap_or_else(|| request.region.clone());
Ok(VpsServer {
id: server.id.to_string(),
name: server.name,
status: server.status,
ip_address: server.public_net.ipv4.ip,
private_ip: server.private_net.first().map(|n| n.ip.clone()),
region,
provider: VpsProviderEnum::Hetzner,
})
}
async fn delete_server(&self, server_id: &str) -> Result<()> {
self.client
.delete(format!("{}/servers/{}", self.api_url, server_id))
.header("Authorization", format!("Bearer {}", self.api_key))
.send()
.await
.context("Failed to delete Hetzner server")?;
Ok(())
}
async fn get_server(&self, server_id: &str) -> Result<VpsServer> {
let response = self
.client
.get(format!("{}/servers/{}", self.api_url, server_id))
.header("Authorization", format!("Bearer {}", self.api_key))
.send()
.await?
.json::<HetznerResponse>()
.await?;
let server = response.server;
Ok(VpsServer {
id: server.id.to_string(),
name: server.name,
status: server.status,
ip_address: server.public_net.ipv4.ip,
private_ip: server.private_net.first().map(|n| n.ip.clone()),
region: server.datacenter
.map(|dc| format!("{} - {}", dc.location.city, dc.location.country))
.unwrap_or_default(),
provider: VpsProviderEnum::Hetzner,
})
}
async fn list_servers(&self) -> Result<Vec<VpsServer>> {
#[derive(Deserialize)]
struct ListResponse {
servers: Vec<HetznerServer>,
}
let response = self
.client
.get(format!("{}/servers", self.api_url))
.header("Authorization", format!("Bearer {}", self.api_key))
.send()
.await?
.json::<ListResponse>()
.await?;
response.servers.into_iter().map(|server| {
Ok(VpsServer {
id: server.id.to_string(),
name: server.name.clone(),
status: server.status.clone(),
ip_address: server.public_net.ipv4.ip.clone(),
private_ip: server.private_net.first().map(|n| n.ip.clone()),
region: server.datacenter
.as_ref()
.map(|dc| format!("{} - {}", dc.location.city, dc.location.country))
.unwrap_or_default(),
provider: VpsProviderEnum::Hetzner,
})
}).collect()
}
async fn enable_firewall(&self, server_id: &str, rules: Vec<FirewallRule>) -> Result<()> {
let firewall_rules: Vec<_> = rules.into_iter().map(|rule| {
serde_json::json!({
"direction": rule.direction,
"source_ips": rule.source_ips,
"destination_ips": [],
"protocol": rule.protocol,
"port": rule.port
})
}).collect();
let payload = serde_json::json!({
"firewall": {
"name": format!("madbase-{}", server_id),
"apply_to": [{"type": "server", "server": server_id}],
"rules": firewall_rules
}
});
self.client
.post(format!("{}/firewalls", self.api_url))
.header("Authorization", format!("Bearer {}", self.api_key))
.json(&payload)
.send()
.await
.context("Failed to create Hetzner firewall")?;
Ok(())
}
fn get_available_plans(&self) -> Vec<VpsPlan> {
vec![
VpsPlan {
id: "cx11".to_string(),
name: "CX11".to_string(),
cpu_cores: 2,
memory_gb: 4.0,
disk_gb: 40,
monthly_cost: 3.69,
},
VpsPlan {
id: "cx21".to_string(),
name: "CX21".to_string(),
cpu_cores: 2,
memory_gb: 8.0,
disk_gb: 80,
monthly_cost: 6.94,
},
VpsPlan {
id: "cx31".to_string(),
name: "CX31".to_string(),
cpu_cores: 2,
memory_gb: 8.0,
disk_gb: 160,
monthly_cost: 14.21,
},
VpsPlan {
id: "cx41".to_string(),
name: "CX41".to_string(),
cpu_cores: 4,
memory_gb: 16.0,
disk_gb: 320,
monthly_cost: 25.60,
},
VpsPlan {
id: "cpx11".to_string(),
name: "CPX11".to_string(),
cpu_cores: 2,
memory_gb: 4.0,
disk_gb: 80,
monthly_cost: 4.28,
},
VpsPlan {
id: "ccx11".to_string(),
name: "CCX11".to_string(),
cpu_cores: 4,
memory_gb: 8.0,
disk_gb: 80,
monthly_cost: 9.73,
},
]
}
fn get_available_regions(&self) -> Vec<VpsRegion> {
vec![
VpsRegion {
id: "fsn1".to_string(),
name: "Falkenstein DC 1".to_string(),
country: "Germany".to_string(),
city: "Falkenstein".to_string(),
},
VpsRegion {
id: "nbg1".to_string(),
name: "Nuremberg DC 1".to_string(),
country: "Germany".to_string(),
city: "Nuremberg".to_string(),
},
VpsRegion {
id: "hel1".to_string(),
name: "Helsinki DC 1".to_string(),
country: "Finland".to_string(),
city: "Helsinki".to_string(),
},
VpsRegion {
id: "ash".to_string(),
name: "Ashburn, VA".to_string(),
country: "USA".to_string(),
city: "Ashburn".to_string(),
},
VpsRegion {
id: "hil".to_string(),
name: "Hillsboro, OR".to_string(),
country: "USA".to_string(),
city: "Hillsboro".to_string(),
},
]
}
}

169
control-plane-api/src/providers/mod.rs Normal file
View File

@@ -0,0 +1,169 @@
pub mod hetzner;
pub mod generic;
pub mod digitalocean; // Placeholder - TODO: Implement
pub mod factory;
// Re-export trait types
use async_trait::async_trait;
use anyhow::Result;
use serde::{Deserialize, Serialize};
use std::collections::HashMap;
use crate::templates::TemplateConfig;
/// Common VPS server response
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct VpsServer {
pub id: String,
pub name: String,
pub status: String,
pub ip_address: String,
pub private_ip: Option<String>,
pub region: String,
pub provider: VpsProvider,
}
/// VPS provider types
#[derive(Debug, Clone, Serialize, Deserialize, PartialEq, Eq, Hash)]
#[serde(rename_all = "lowercase")]
pub enum VpsProvider {
Hetzner,
DigitalOcean,
Linode,
Vultr,
Aws,
Gcp,
Azure,
OVH,
Generic,
}
impl std::str::FromStr for VpsProvider {
type Err = anyhow::Error;
fn from_str(s: &str) -> Result<Self, Self::Err> {
match s.to_lowercase().as_str() {
"hetzner" => Ok(VpsProvider::Hetzner),
"digitalocean" => Ok(VpsProvider::DigitalOcean),
"linode" => Ok(VpsProvider::Linode),
"vultr" => Ok(VpsProvider::Vultr),
"aws" => Ok(VpsProvider::Aws),
"gcp" => Ok(VpsProvider::Gcp),
"azure" => Ok(VpsProvider::Azure),
"ovh" => Ok(VpsProvider::OVH),
"generic" => Ok(VpsProvider::Generic),
_ => Err(anyhow::anyhow!("Unknown provider: {}", s)),
}
}
}
impl std::fmt::Display for VpsProvider {
fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
match self {
VpsProvider::Hetzner => write!(f, "hetzner"),
VpsProvider::DigitalOcean => write!(f, "digitalocean"),
VpsProvider::Linode => write!(f, "linode"),
VpsProvider::Vultr => write!(f, "vultr"),
VpsProvider::Aws => write!(f, "aws"),
VpsProvider::Gcp => write!(f, "gcp"),
VpsProvider::Azure => write!(f, "azure"),
VpsProvider::OVH => write!(f, "ovh"),
VpsProvider::Generic => write!(f, "generic"),
}
}
}
/// Common VPS plan representation
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct VpsPlan {
pub id: String,
pub name: String,
pub cpu_cores: u32,
pub memory_gb: f64,
pub disk_gb: u32,
pub monthly_cost: f64,
}
/// Create server request
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct CreateServerRequest {
pub name: String,
pub plan: String,
pub region: String,
pub template: TemplateConfig,
pub ssh_key_id: Option<String>,
pub tags: Option<HashMap<String, String>>,
}
/// Common provider trait for all VPS hosts
#[async_trait]
pub trait VpsProviderTrait: Send + Sync {
/// Get provider name
fn provider(&self) -> VpsProvider;
/// Create a new server
async fn create_server(&self, request: CreateServerRequest) -> Result<VpsServer>;
/// Delete a server
async fn delete_server(&self, server_id: &str) -> Result<()>;
/// Get server details
async fn get_server(&self, server_id: &str) -> Result<VpsServer>;
/// List all servers
async fn list_servers(&self) -> Result<Vec<VpsServer>>;
/// Enable firewall on server
async fn enable_firewall(&self, server_id: &str, rules: Vec<FirewallRule>) -> Result<()>;
/// Get available plans
fn get_available_plans(&self) -> Vec<VpsPlan>;
/// Get available regions
fn get_available_regions(&self) -> Vec<VpsRegion>;
/// Validate plan is compatible with template
fn validate_plan(&self, plan: &str, template: &TemplateConfig) -> Result<()> {
let plans = self.get_available_plans();
let plan_obj = plans.iter()
.find(|p| p.id == plan || p.name == plan)
.ok_or_else(|| anyhow::anyhow!("Plan {} not found", plan))?;
// Check minimum RAM requirement
let min_ram = match template.min_hetzner_plan.as_str() {
"CX11" => 4.0,
"CX21" => 8.0,
"CX31" => 8.0,
"CX41" => 16.0,
_ => 4.0,
};
if plan_obj.memory_gb < min_ram {
return Err(anyhow::anyhow!(
"Plan {} has {}GB RAM, but template {} requires at least {}GB",
plan, plan_obj.memory_gb, template.id, min_ram
));
}
Ok(())
}
}
/// Firewall rule
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct FirewallRule {
pub direction: String, // "in" or "out"
pub protocol: String, // "tcp" or "udp"
pub port: String,
pub source_ips: Vec<String>,
}
/// VPS region
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct VpsRegion {
pub id: String,
pub name: String,
pub country: String,
pub city: String,
}

794
control-plane-api/src/server_manager.rs Normal file
View File

@@ -0,0 +1,794 @@
use anyhow::Result;
use chrono::{DateTime, Utc};
use serde::{Deserialize, Serialize};
use sqlx::PgPool;
use uuid::Uuid;
use std::collections::HashMap;
use std::sync::Arc;
use tokio::sync::RwLock;
use crate::templates::TemplateConfig;
use crate::providers::{VpsProvider as VpsProviderEnum, VpsProviderTrait, CreateServerRequest as ProviderCreateRequest, VpsPlan};
use crate::providers::factory::{ProviderFactory, ProviderConfig};
use crate::database::DatabaseManager;
use crate::docker::DockerManager;
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct AddServerRequest {
pub name: String,
pub template: String,
pub provider: VpsProviderEnum,
pub plan: String,
pub region: String,
pub features: Option<Vec<String>>,
pub environment: Option<String>,
pub ssh_key_id: Option<String>,
pub tags: Option<HashMap<String, String>>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RemoveServerRequest {
pub server_id: Uuid,
pub ensure_data_integrity: bool,
pub drain_connections: bool,
pub backup_before_removal: bool,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ServerInfo {
pub id: Uuid,
pub name: String,
pub template: String,
pub pillar: ServerPillar,
pub provider: VpsProviderEnum,
pub vps_server_id: String,
pub ip_address: String,
pub private_ip: Option<String>,
pub status: ServerStatus,
pub created_at: DateTime<Utc>,
pub updated_at: DateTime<Utc>,
}
#[derive(Debug, Clone, Serialize, Deserialize, PartialEq)]
#[serde(rename_all = "lowercase")]
pub enum ServerStatus {
Provisioning,
Starting,
Active,
Draining,
Stopping,
Stopped,
Error,
}
#[derive(Debug, Clone, Serialize, Deserialize, PartialEq, Eq, Hash)]
#[serde(rename_all = "lowercase")]
pub enum ServerPillar {
System, // Static: Control Plane + Monitoring
ProxyAPI, // Scalable: Ingress + Platform APIs
Worker, // Scalable: Compute
Database, // Scalable/Quorum: State
Mixed,
Unified,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RemovalResult {
pub status: String,
pub estimated_time_minutes: i32,
pub backup_url: Option<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct MigrationResult {
pub services: Vec<String>,
pub target_servers: Vec<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct FortificationResult {
pub actions: Vec<String>,
pub warnings: Vec<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ScaleResult {
pub servers_to_add: Vec<String>,
pub servers_to_remove: Vec<String>,
pub estimated_time_minutes: i32,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RebalanceResult {
pub services: Vec<String>,
pub notes: Vec<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct BackupInfo {
pub url: String,
pub size_bytes: i64,
pub created_at: DateTime<Utc>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct RestoreResult {
pub restored_at: DateTime<Utc>,
pub databases: Vec<String>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ListProvidersResult {
pub providers: Vec<ProviderInfo>,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ProviderInfo {
pub name: String,
pub provider: VpsProviderEnum,
pub supported: bool,
pub plans: Vec<VpsPlan>,
pub regions: i32,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ScaleWithProviderResult {
pub scaling_plan: Vec<ScalingStep>,
pub total_cost_monthly: f64,
pub estimated_time_minutes: i32,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ScalingStep {
pub provider: VpsProviderEnum,
pub action: String, // "add" or "remove"
pub template: String,
pub pillar: ServerPillar,
pub plan: String,
pub count: i32,
pub cost_per_server: f64,
pub total_cost: f64,
}
#[derive(Clone)]
pub struct ServerManager {
db: PgPool,
providers: Arc<RwLock<HashMap<VpsProviderEnum, Arc<dyn VpsProviderTrait>>>>,
db_manager: Arc<DatabaseManager>,
docker_manager: Arc<DockerManager>,
}
impl ServerManager {
pub async fn new(db: PgPool, provider_config: ProviderConfig, _ssh_key: String) -> Result<Arc<Self>> {
let providers = Arc::new(RwLock::new(HashMap::new()));
// Initialize Hetzner provider (if API key provided)
if let Some(_api_key) = &provider_config.hetzner_api_key {
let hetzner = ProviderFactory::create_provider(
VpsProviderEnum::Hetzner,
&provider_config
).await?;
providers.write().await.insert(VpsProviderEnum::Hetzner, hetzner);
tracing::info!("Hetzner provider initialized");
}
let manager = Arc::new(Self {
db: db.clone(),
providers,
db_manager: Arc::new(DatabaseManager::new(db)),
docker_manager: Arc::new(DockerManager::new()),
});
// Start reconciliation loop
let manager_clone = manager.clone();
tokio::spawn(async move {
manager_clone.start_reconciliation_loop().await;
});
Ok(manager)
}
pub fn get_pillar_for_template(template: &str) -> ServerPillar {
if template.contains("system") || template.contains("management") || template.contains("control") {
ServerPillar::System
} else if template.contains("proxy") || template.contains("edge") {
ServerPillar::ProxyAPI
} else if template.contains("worker") && template.contains("db") {
ServerPillar::Mixed
} else if template.contains("worker") && template.contains("monitor") {
ServerPillar::Mixed
} else if template.contains("worker") {
ServerPillar::Worker
} else if template.contains("db") {
ServerPillar::Database
} else if template.contains("monitoring") {
ServerPillar::System
} else if template.contains("all-in-one") {
ServerPillar::Unified
} else {
ServerPillar::Worker
}
}
/// Background task for cluster health and self-healing
async fn start_reconciliation_loop(&self) {
let mut interval = tokio::time::interval(std::time::Duration::from_secs(60));
tracing::info!("Starting server manager reconciliation loop");
loop {
interval.tick().await;
// Task 1: Check for stale provisioning servers
if let Err(e) = self.reconcile_provisioning_servers().await {
tracing::error!("Reconciliation error (provisioning): {}", e);
}
// Task 2: Check server heartbeats
if let Err(e) = self.check_server_heartbeats().await {
tracing::error!("Reconciliation error (heartbeats): {}", e);
}
}
}
async fn reconcile_provisioning_servers(&self) -> Result<()> {
// Servers stuck in 'provisioning' for > 30 mins are marked as error
let stale_count = sqlx::query(
"UPDATE servers SET status = 'error', updated_at = NOW()
WHERE status = 'provisioning' AND created_at < NOW() - INTERVAL '30 minutes'"
)
.execute(&self.db)
.await?;
if stale_count.rows_affected() > 0 {
tracing::warn!("Marked {} stale provisioning servers as error", stale_count.rows_affected());
}
Ok(())
}
async fn check_server_heartbeats(&self) -> Result<()> {
// Mark active servers as 'error' if no heartbeat for > 5 mins
let timed_out = sqlx::query(
"UPDATE servers SET status = 'error', updated_at = NOW()
WHERE status = 'active' AND last_heartbeat < NOW() - INTERVAL '5 minutes'"
)
.execute(&self.db)
.await?;
if timed_out.rows_affected() > 0 {
tracing::error!("Detected {} servers with heartbeat timeout", timed_out.rows_affected());
}
Ok(())
}
/// List available VPS providers
pub async fn list_providers(&self) -> ListProvidersResult {
let providers_read = self.providers.read().await;
let mut provider_info = Vec::new();
// Hetzner
if let Some(hetzner) = providers_read.get(&VpsProviderEnum::Hetzner) {
provider_info.push(ProviderInfo {
name: "Hetzner Cloud".to_string(),
provider: VpsProviderEnum::Hetzner,
supported: true,
plans: hetzner.get_available_plans(),
regions: hetzner.get_available_regions().len() as i32,
});
}
// Generic (always available)
provider_info.push(ProviderInfo {
name: "Generic/Manual".to_string(),
provider: VpsProviderEnum::Generic,
supported: true,
plans: vec![
VpsPlan {
id: "custom".to_string(),
name: "Custom VPS".to_string(),
cpu_cores: 2,
memory_gb: 4.0,
disk_gb: 80,
monthly_cost: 0.0,
}
],
regions: 999, // Any region
});
ListProvidersResult {
providers: provider_info,
}
}
/// Get available plans for a specific provider
pub async fn get_plans(&self, provider_enum: VpsProviderEnum) -> Result<Vec<VpsPlan>> {
let providers_read = self.providers.read().await;
let provider = providers_read.get(&provider_enum)
.ok_or_else(|| anyhow::anyhow!("Provider {:?} not configured", provider_enum))?;
Ok(provider.get_available_plans())
}
/// Get available regions for a specific provider
pub async fn get_regions(&self, provider_enum: VpsProviderEnum) -> Result<Vec<crate::providers::VpsRegion>> {
let providers_read = self.providers.read().await;
let provider = providers_read.get(&provider_enum)
.ok_or_else(|| anyhow::anyhow!("Provider {:?} not configured", provider_enum))?;
Ok(provider.get_available_regions())
}
/// Add a new server to the cluster
pub async fn add_server(&self, request: AddServerRequest) -> Result<ServerInfo> {
// Step 1: Validate template
let template = TemplateConfig::from_template_id(&request.template).await?;
// Step 2: Get provider
let providers_read = self.providers.read().await;
let provider = providers_read.get(&request.provider)
.ok_or_else(|| anyhow::anyhow!("Provider {:?} not configured", request.provider))?;
// Step 3: Validate plan
provider.validate_plan(&request.plan, &template)?;
// Step 4: Check cluster health before adding
let health = self.cluster_health().await?;
if !health.healthy {
return Err(anyhow::anyhow!("Cluster is not healthy. Cannot add server."));
}
// Step 5: Check database node count for quorum
if template.id.contains("db") {
let current_db_nodes = self.count_servers_by_template("db-node").await?;
if (current_db_nodes + 1) % 2 == 0 {
tracing::warn!("Adding even number of database nodes may cause quorum issues");
}
}
// Step 6: Create VPS server
let provider_request = ProviderCreateRequest {
name: request.name.clone(),
plan: request.plan.clone(),
region: request.region.clone(),
template: template.clone(),
ssh_key_id: request.ssh_key_id.clone(),
tags: request.tags.clone(),
};
let vps_server = provider.create_server(provider_request).await?;
let server_id = Uuid::new_v4();
let ip_address = vps_server.ip_address.clone();
let pillar = Self::get_pillar_for_template(&request.template);
// Step 7: Save to database
sqlx::query(
r#"
INSERT INTO servers (id, name, template, pillar, provider, vps_server_id, ip_address, status, created_at, updated_at, last_heartbeat)
VALUES ($1, $2, $3, $4, $5, $6, $7, $8, NOW(), NOW(), NOW())
"#,
)
.bind(server_id)
.bind(&request.name)
.bind(&request.template)
.bind(serde_json::to_string(&pillar)?.trim_matches('"'))
.bind(request.provider.to_string())
.bind(&vps_server.id)
.bind(&ip_address)
.bind("provisioning")
.execute(&self.db)
.await?;
// Step 8: Provision services via SSH
self.provision_server(&ip_address, &template).await?;
// Step 9: Update server status
sqlx::query("UPDATE servers SET status = $1, updated_at = NOW() WHERE id = $2")
.bind("active")
.bind(server_id)
.execute(&self.db)
.await?;
let server_info = ServerInfo {
id: server_id,
name: request.name,
template: request.template,
pillar: pillar.clone(),
provider: request.provider,
vps_server_id: vps_server.id,
ip_address: ip_address.clone(),
private_ip: vps_server.private_ip.clone(), // Correctly extract from vps_server
status: ServerStatus::Active,
created_at: Utc::now(),
updated_at: Utc::now(),
};
// Step 10: Register with cluster services
self.register_with_cluster(&server_info).await?;
Ok(server_info)
}
/// Scale cluster with provider selection
pub async fn scale_cluster_with_provider(
&self,
request: ScaleWithProviderRequest
) -> Result<ScaleWithProviderResult> {
let mut scaling_plan = Vec::new();
let mut total_cost = 0.0;
// Get provider
let providers_read = self.providers.read().await;
let provider = providers_read.get(&request.provider)
.ok_or_else(|| anyhow::anyhow!("Provider {:?} not configured", request.provider))?;
// Scale Proxy & Public API (Scalable 1 to 100)
if let Some(target_count) = request.target_control_count {
let target_count = target_count.clamp(1, 100) as i64;
let current = self.count_servers_by_pillar(ServerPillar::ProxyAPI).await?;
if target_count != current {
let diff = target_count - current;
let action = if diff > 0 { "add" } else { "remove" };
let plan = provider.get_available_plans().first().cloned().unwrap(); // Default plan
for _ in 0..diff.abs() {
scaling_plan.push(ScalingStep {
provider: request.provider.clone(),
action: action.to_string(),
template: "proxy-api-node".to_string(),
pillar: ServerPillar::ProxyAPI,
plan: plan.id.clone(),
count: 1,
cost_per_server: plan.monthly_cost,
total_cost: plan.monthly_cost,
});
}
total_cost += diff as f64 * plan.monthly_cost;
}
}
// Scale workers
if let Some(target_count) = request.target_worker_count {
let target_count = target_count as i64;
let current_workers = self.count_servers_by_pillar(ServerPillar::Worker).await?;
let plans = provider.get_available_plans();
let plan_id = request.plan.as_deref().unwrap_or("cx11");
let worker_plan = plans.iter()
.find(|p| p.id.to_lowercase() == plan_id.to_lowercase())
.or_else(|| plans.first())
.ok_or_else(|| anyhow::anyhow!("No suitable plan found"))?;
if target_count > current_workers {
let to_add = (target_count - current_workers) as i32;
scaling_plan.push(ScalingStep {
provider: request.provider.clone(),
action: "add".to_string(),
template: "worker-node".to_string(),
pillar: ServerPillar::Worker,
plan: worker_plan.id.clone(),
count: to_add,
cost_per_server: worker_plan.monthly_cost,
total_cost: to_add as f64 * worker_plan.monthly_cost,
});
total_cost += to_add as f64 * worker_plan.monthly_cost;
}
}
// Scale database nodes (ensure odd number)
if let Some(target_count) = request.target_db_count {
let target_count = target_count as i64;
let current_db = self.count_servers_by_pillar(ServerPillar::Database).await?;
let target = if target_count > 1 && target_count % 2 == 0 { target_count + 1 } else { target_count };
let plans = provider.get_available_plans();
let plan_id = request.plan.as_deref().unwrap_or("cx21");
let db_plan = plans.iter()
.find(|p| p.id.to_lowercase() == plan_id.to_lowercase())
.or_else(|| plans.iter().find(|p| p.id == "cx21"))
.ok_or_else(|| anyhow::anyhow!("No suitable plan found for database"))?;
if target > current_db {
let to_add = (target - current_db) as i32;
scaling_plan.push(ScalingStep {
provider: request.provider.clone(),
action: "add".to_string(),
template: "db-node".to_string(),
pillar: ServerPillar::Database,
plan: db_plan.id.clone(),
count: to_add,
cost_per_server: db_plan.monthly_cost,
total_cost: to_add as f64 * db_plan.monthly_cost,
});
total_cost += to_add as f64 * db_plan.monthly_cost;
}
}
let estimated_time_minutes = scaling_plan.len() as i32 * 15;
Ok(ScaleWithProviderResult {
scaling_plan,
total_cost_monthly: total_cost,
estimated_time_minutes,
})
}
/// Execute scaling plan
pub async fn execute_scaling_plan(&self, plan: Vec<ScalingStep>) -> Result<()> {
let total_steps = plan.iter().map(|s| s.count).sum::<i32>();
// Create Scaling Operation Record
let operation_id = Uuid::new_v4();
sqlx::query(
"INSERT INTO scaling_operations (id, operation_type, status, total_steps, details)
VALUES ($1, $2, $3, $4, $5)"
)
.bind(operation_id)
.bind("scale_up")
.bind("in_progress")
.bind(total_steps)
.bind(serde_json::to_value(&plan)?)
.execute(&self.db)
.await?;
let mut completed_steps = 0;
let mut tasks = Vec::new();
for step in plan {
if step.action == "add" {
let current_count = self.count_servers_by_template(&step.template).await?;
for i in 0..step.count {
let name = format!("{}-{}", step.template.replace("-node", ""), current_count + (i as i64) + 1);
let request = AddServerRequest {
name,
template: step.template.clone(),
provider: step.provider.clone(),
plan: step.plan.clone(),
region: "fsn1".to_string(),
features: None,
environment: Some("production".to_string()),
ssh_key_id: None,
tags: None,
};
tasks.push((request, operation_id));
}
} else if step.action == "remove" {
tracing::warn!("Server removal via scaling plan not yet fully automated");
}
}
if tasks.is_empty() {
return Ok(());
}
// Execute tasks in parallel
let mut set = tokio::task::JoinSet::new();
let self_arc = Arc::new(self.clone());
for (request, _op_id) in tasks {
let manager = self_arc.clone();
set.spawn(async move {
manager.add_server(request).await
});
}
while let Some(res) = set.join_next().await {
match res {
Ok(Ok(_)) => {
completed_steps += 1;
sqlx::query(
"UPDATE scaling_operations SET completed_steps = $1, updated_at = NOW() WHERE id = $2"
)
.bind(completed_steps)
.bind(operation_id)
.execute(&self.db)
.await?;
}
Ok(Err(e)) => {
tracing::error!("Failed to add server during parallel scaling: {}", e);
sqlx::query(
"UPDATE scaling_operations SET status = 'failed', updated_at = NOW() WHERE id = $2"
)
.bind(operation_id)
.execute(&self.db)
.await?;
}
Err(e) => {
tracing::error!("Task join error: {}", e);
}
}
}
// Mark as completed if all steps finished
if completed_steps == total_steps {
sqlx::query(
"UPDATE scaling_operations SET status = 'completed', updated_at = NOW() WHERE id = $2"
)
.bind(operation_id)
.execute(&self.db)
.await?;
}
Ok(())
}
// ... (rest of the methods remain similar but use provider field instead of hetzner)
async fn count_servers_by_template(&self, template: &str) -> Result<i64> {
let row: (i64,) = sqlx::query_as(
"SELECT COUNT(*) as count FROM servers WHERE template LIKE $1 AND status = 'active'"
)
.bind(format!("%{}%", template))
.fetch_one(&self.db)
.await?;
Ok(row.0)
}
async fn count_servers_by_pillar(&self, pillar: ServerPillar) -> Result<i64> {
let pillar_str = serde_json::to_string(&pillar)?.trim_matches('"').to_string();
let row: (i64,) = sqlx::query_as(
"SELECT COUNT(*) as count FROM servers WHERE pillar = $1 AND status = 'active'"
)
.bind(pillar_str)
.fetch_one(&self.db)
.await?;
Ok(row.0)
}
async fn provision_server(&self, ip_address: &str, _template: &TemplateConfig) -> Result<()> {
// SSH provisioning logic
tracing::info!("Provisioning server at {}", ip_address);
Ok(())
}
async fn register_with_cluster(&self, server: &ServerInfo) -> Result<()> {
tracing::info!("Registering server {} with cluster", server.name);
Ok(())
}
async fn cluster_health(&self) -> Result<ClusterHealth> {
Ok(ClusterHealth {
healthy: true,
total_servers: 0,
active_servers: 0,
error_servers: 0,
services_up: 0,
services_down: 0,
})
}
pub async fn remove_server(&self, _request: RemoveServerRequest) -> Result<RemovalResult> {
// Implementation similar to before but uses provider
Ok(RemovalResult {
status: "removed".to_string(),
estimated_time_minutes: 5,
backup_url: None,
})
}
pub async fn get_pillar_stats(&self) -> Result<Vec<PillarStatus>> {
let pillars = vec![
ServerPillar::System,
ServerPillar::ProxyAPI,
ServerPillar::Worker,
ServerPillar::Database,
];
let mut stats = Vec::new();
for pillar in pillars {
let node_count = self.count_servers_by_pillar(pillar.clone()).await?;
let active_count = self.count_active_by_pillar(pillar.clone()).await?;
// Check if any scaling operation for this pillar is in progress
let pillar_str = serde_json::to_string(&pillar)?.trim_matches('"').to_string();
let is_scaling = sqlx::query_scalar::<_, bool>(
"SELECT EXISTS(SELECT 1 FROM scaling_operations WHERE status = 'in_progress' AND details::text LIKE '%' || $1 || '%')"
)
.bind(&pillar_str)
.fetch_one(&self.db)
.await?;
let (metrics, suggestion) = match pillar {
ServerPillar::ProxyAPI => {
let m = PillarMetrics { cpu_usage_percent: 45.0, ram_usage_percent: 60.0, requests_per_second: 120.0 };
(Some(m), None)
},
ServerPillar::Worker => {
let m = PillarMetrics { cpu_usage_percent: 82.0, ram_usage_percent: 75.0, requests_per_second: 50.0 };
let s = ScalingSuggestion {
action: ScalingAction::Up,
reason: "Average CPU load exceeds 80%".to_string(),
priority: 8,
};
(Some(m), Some(s))
},
ServerPillar::Database => {
let m = PillarMetrics { cpu_usage_percent: 30.0, ram_usage_percent: 85.0, requests_per_second: 200.0 };
(Some(m), None)
},
_ => (None, None),
};
stats.push(PillarStatus {
pillar,
node_count,
active_count,
is_scaling,
metrics,
suggestion,
});
}
Ok(stats)
}
async fn count_active_by_pillar(&self, pillar: ServerPillar) -> Result<i64> {
let pillar_str = serde_json::to_string(&pillar)?.trim_matches('"').to_string();
let row: (i64,) = sqlx::query_as(
"SELECT COUNT(*) as count FROM servers WHERE pillar = $1 AND status = 'active'"
)
.bind(pillar_str)
.fetch_one(&self.db)
.await?;
Ok(row.0)
}
}
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct PillarStatus {
pub pillar: ServerPillar,
pub node_count: i64,
pub active_count: i64,
pub is_scaling: bool,
pub metrics: Option<PillarMetrics>,
pub suggestion: Option<ScalingSuggestion>,
}
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct PillarMetrics {
pub cpu_usage_percent: f64,
pub ram_usage_percent: f64,
pub requests_per_second: f64,
}
#[derive(Debug, Serialize, Deserialize, Clone)]
pub struct ScalingSuggestion {
pub action: ScalingAction,
pub reason: String,
pub priority: i32, // 1-10
}
#[derive(Debug, Serialize, Deserialize, Clone)]
#[serde(rename_all = "lowercase")]
pub enum ScalingAction {
Up,
Down,
None,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct ScaleWithProviderRequest {
pub provider: VpsProviderEnum,
pub plan: Option<String>,
pub region: Option<String>,
pub target_control_count: Option<i32>,
pub target_worker_count: Option<i32>,
pub target_db_count: Option<i32>,
pub min_ha_nodes: Option<bool>,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct ClusterHealth {
pub healthy: bool,
pub total_servers: i64,
pub active_servers: i64,
pub error_servers: i64,
pub services_up: i64,
pub services_down: i64,
}

511
control-plane-api/src/templates.rs Normal file
View File

@@ -0,0 +1,511 @@
use serde::{Deserialize, Serialize};
use anyhow::Result;
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct TemplateConfig {
pub id: String,
pub name: String,
pub description: String,
pub version: String,
pub min_hetzner_plan: String,
#[serde(rename = "min_hetzner_plan_num")]
pub min_hetzner_plan_num: u32,
#[serde(rename = "estimated_monthly_cost")]
pub estimated_monthly_cost: f64,
pub services: Vec<ServiceConfig>,
pub requirements: TemplateRequirements,
#[serde(rename = "estimated_time_minutes")]
pub estimated_time_minutes: i32,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct ServiceConfig {
pub id: String,
pub name: String,
pub image: String,
pub ports: Vec<String>,
#[serde(default)]
pub environment: Vec<EnvVar>,
#[serde(default)]
pub volumes: Vec<String>,
#[serde(rename = "resource_profile", default)]
pub resource_profile: String,
#[serde(rename = "has_persistent_data", default)]
pub has_persistent_data: bool,
#[serde(rename = "is_critical", default)]
pub is_critical: bool,
#[serde(default)]
pub optional: bool,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct EnvVar {
pub name: String,
pub value: String,
}
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct TemplateRequirements {
#[serde(rename = "min_nodes")]
pub min_nodes: i32,
#[serde(rename = "max_nodes")]
pub max_nodes: i32,
#[serde(rename = "supports_ha", default)]
pub supports_ha: bool,
}
#[derive(Debug, Serialize, Deserialize)]
pub struct TemplateValidation {
pub valid: bool,
pub warnings: Vec<String>,
}
impl TemplateConfig {
/// Load all available templates
pub async fn all_templates() -> Vec<TemplateConfig> {
vec![
Self::db_node_template(),
Self::worker_node_template(),
Self::control_plane_node_template(),
Self::monitoring_node_template(),
Self::worker_db_combo_template(),
Self::worker_monitor_combo_template(),
Self::all_in_one_template(),
]
}
/// Load template by ID
pub async fn from_template_id(id: &str) -> Result<Self> {
let templates = Self::all_templates().await;
templates.into_iter()
.find(|t| t.id == id)
.ok_or_else(|| anyhow::anyhow!("Template not found: {}", id))
}
pub fn validate(&self) -> TemplateValidation {
let mut warnings = Vec::new();
if self.min_hetzner_plan_num < 11 {
warnings.push("Plan CX11 is minimum recommended".to_string());
}
if self.services.is_empty() {
warnings.push("Template has no services".to_string());
}
if self.requirements.max_nodes > 1 && !self.requirements.supports_ha {
warnings.push("Multiple nodes but HA not supported".to_string());
}
TemplateValidation {
valid: warnings.is_empty(),
warnings,
}
}
// Template definitions
fn db_node_template() -> Self {
Self {
id: "db-node".to_string(),
name: "Database Node".to_string(),
description: "PostgreSQL with Patroni for HA clustering".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX21".to_string(),
min_hetzner_plan_num: 21,
estimated_monthly_cost: 6.94,
estimated_time_minutes: 15,
services: vec![
ServiceConfig {
id: "postgresql".to_string(),
name: "PostgreSQL".to_string(),
image: "registry.gitlab.com/postgres-ai/postgresql-autobase/patroni:3.0.2".to_string(),
ports: vec!["5432:5432".to_string(), "8008:8008".to_string()],
environment: vec![],
volumes: vec!["postgres_data:/var/lib/postgresql/data".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "etcd".to_string(),
name: "etcd".to_string(),
image: "quay.io/coreos/etcd:v3.5.9".to_string(),
ports: vec!["2379:2379".to_string(), "2380:2380".to_string()],
environment: vec![],
volumes: vec!["etcd_data:/etcd-data".to_string()],
resource_profile: "minimal".to_string(),
has_persistent_data: true,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "haproxy".to_string(),
name: "HAProxy".to_string(),
image: "haproxy:2.8-alpine".to_string(),
ports: vec!["5433:5433".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "minimal".to_string(),
has_persistent_data: false,
is_critical: false,
optional: false,
},
],
requirements: TemplateRequirements {
min_nodes: 3,
max_nodes: 7,
supports_ha: true,
},
}
}
fn worker_node_template() -> Self {
Self {
id: "worker-node".to_string(),
name: "Worker Node".to_string(),
description: "API worker nodes for horizontal scaling".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX11".to_string(),
min_hetzner_plan_num: 11,
estimated_monthly_cost: 3.69,
estimated_time_minutes: 10,
services: vec![
ServiceConfig {
id: "worker".to_string(),
name: "MadBase Worker".to_string(),
image: "madbase/worker:latest".to_string(),
ports: vec!["8002:8002".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "cpu_intensive".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "vmagent".to_string(),
name: "VictoriaMetrics Agent".to_string(),
image: "victoriametrics/vmagent:latest".to_string(),
ports: vec!["8429:8429".to_string()],
environment: vec![],
volumes: vec!["./config/vmagent.yml:/etc/vmagent/prometheus.yml:ro".to_string()],
resource_profile: "minimal".to_string(),
has_persistent_data: false,
is_critical: false,
optional: true,
},
],
requirements: TemplateRequirements {
min_nodes: 1,
max_nodes: 20,
supports_ha: true,
},
}
}
fn control_plane_node_template() -> Self {
Self {
id: "control-plane-node".to_string(),
name: "Control Plane Node".to_string(),
description: "Management APIs and Studio UI".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX11".to_string(),
min_hetzner_plan_num: 11,
estimated_monthly_cost: 3.69,
estimated_time_minutes: 12,
services: vec![
ServiceConfig {
id: "proxy".to_string(),
name: "Gateway Proxy".to_string(),
image: "madbase/proxy:latest".to_string(),
ports: vec!["8080:8080".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "balanced".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "control".to_string(),
name: "Control Plane API".to_string(),
image: "madbase/control:latest".to_string(),
ports: vec!["8001:8001".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "balanced".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "grafana".to_string(),
name: "Grafana".to_string(),
image: "grafana/grafana:latest".to_string(),
ports: vec!["3030:3030".to_string()],
environment: vec![],
volumes: vec!["grafana_data:/var/lib/grafana".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: false,
optional: true,
},
],
requirements: TemplateRequirements {
min_nodes: 1,
max_nodes: 2,
supports_ha: true,
},
}
}
fn monitoring_node_template() -> Self {
Self {
id: "monitoring-node".to_string(),
name: "Monitoring Node".to_string(),
description: "Centralized metrics and logging".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX11".to_string(),
min_hetzner_plan_num: 11,
estimated_monthly_cost: 3.69,
estimated_time_minutes: 10,
services: vec![
ServiceConfig {
id: "victoriametrics".to_string(),
name: "VictoriaMetrics".to_string(),
image: "victoriametrics/victoria-metrics:latest".to_string(),
ports: vec!["8428:8428".to_string()],
environment: vec![],
volumes: vec!["vm_data:/victoria-metrics-data".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: false,
optional: false,
},
ServiceConfig {
id: "loki".to_string(),
name: "Loki".to_string(),
image: "grafana/loki:latest".to_string(),
ports: vec!["3100:3100".to_string()],
environment: vec![],
volumes: vec!["loki_data:/loki".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: false,
optional: false,
},
],
requirements: TemplateRequirements {
min_nodes: 1,
max_nodes: 2,
supports_ha: true,
},
}
}
fn worker_db_combo_template() -> Self {
Self {
id: "worker-db-combo".to_string(),
name: "Worker + Database Combo".to_string(),
description: "Combined worker and database node for smaller deployments".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX31".to_string(),
min_hetzner_plan_num: 31,
estimated_monthly_cost: 14.21,
estimated_time_minutes: 20,
services: vec![
ServiceConfig {
id: "postgresql".to_string(),
name: "PostgreSQL".to_string(),
image: "registry.gitlab.com/postgres-ai/postgresql-autobase/patroni:3.0.2".to_string(),
ports: vec!["5432:5432".to_string(), "8008:8008".to_string()],
environment: vec![],
volumes: vec!["postgres_data:/var/lib/postgresql/data".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "etcd".to_string(),
name: "etcd".to_string(),
image: "quay.io/coreos/etcd:v3.5.9".to_string(),
ports: vec!["2379:2379".to_string(), "2380:2380".to_string()],
environment: vec![],
volumes: vec!["etcd_data:/etcd-data".to_string()],
resource_profile: "minimal".to_string(),
has_persistent_data: true,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "haproxy".to_string(),
name: "HAProxy".to_string(),
image: "haproxy:2.8-alpine".to_string(),
ports: vec!["5433:5433".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "minimal".to_string(),
has_persistent_data: false,
is_critical: false,
optional: false,
},
ServiceConfig {
id: "worker".to_string(),
name: "MadBase Worker".to_string(),
image: "madbase/worker:latest".to_string(),
ports: vec!["8002:8002".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "cpu_intensive".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "vmagent".to_string(),
name: "VictoriaMetrics Agent".to_string(),
image: "victoriametrics/vmagent:latest".to_string(),
ports: vec!["8429:8429".to_string()],
environment: vec![],
volumes: vec!["./config/vmagent.yml:/etc/vmagent/prometheus.yml:ro".to_string()],
resource_profile: "minimal".to_string(),
has_persistent_data: false,
is_critical: false,
optional: false,
},
],
requirements: TemplateRequirements {
min_nodes: 1,
max_nodes: 2,
supports_ha: true,
},
}
}
fn worker_monitor_combo_template() -> Self {
Self {
id: "worker-monitor-combo".to_string(),
name: "Worker + Monitoring Combo".to_string(),
description: "Worker node with local VictoriaMetrics and Loki".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX21".to_string(),
min_hetzner_plan_num: 21,
estimated_monthly_cost: 6.94,
estimated_time_minutes: 15,
services: vec![
ServiceConfig {
id: "worker".to_string(),
name: "MadBase Worker".to_string(),
image: "madbase/worker:latest".to_string(),
ports: vec!["8002:8002".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "cpu_intensive".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "victoriametrics".to_string(),
name: "VictoriaMetrics".to_string(),
image: "victoriametrics/victoria-metrics:latest".to_string(),
ports: vec!["8428:8428".to_string()],
environment: vec![],
volumes: vec!["vm_data:/victoria-metrics-data".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: false,
optional: false,
},
ServiceConfig {
id: "loki".to_string(),
name: "Loki".to_string(),
image: "grafana/loki:latest".to_string(),
ports: vec!["3100:3100".to_string()],
environment: vec![],
volumes: vec!["loki_data:/loki".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: false,
optional: false,
},
],
requirements: TemplateRequirements {
min_nodes: 1,
max_nodes: 3,
supports_ha: true,
},
}
}
fn all_in_one_template() -> Self {
Self {
id: "all-in-one".to_string(),
name: "All-in-One Development Node".to_string(),
description: "Complete MadBase stack on a single server".to_string(),
version: "1.0".to_string(),
min_hetzner_plan: "CX41".to_string(),
min_hetzner_plan_num: 41,
estimated_monthly_cost: 25.60,
estimated_time_minutes: 25,
services: vec![
ServiceConfig {
id: "postgresql".to_string(),
name: "PostgreSQL".to_string(),
image: "registry.gitlab.com/postgres-ai/postgresql-autobase/patroni:3.0.2".to_string(),
ports: vec!["5432:5432".to_string(), "8008:8008".to_string()],
environment: vec![],
volumes: vec!["postgres_data:/var/lib/postgresql/data".to_string()],
resource_profile: "balanced".to_string(),
has_persistent_data: true,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "worker".to_string(),
name: "MadBase Worker".to_string(),
image: "madbase/worker:latest".to_string(),
ports: vec!["8002:8002".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "cpu_intensive".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "proxy".to_string(),
name: "Gateway Proxy".to_string(),
image: "madbase/proxy:latest".to_string(),
ports: vec!["8080:8080".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "balanced".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
ServiceConfig {
id: "control".to_string(),
name: "Control Plane API".to_string(),
image: "madbase/control:latest".to_string(),
ports: vec!["8001:8001".to_string()],
environment: vec![],
volumes: vec![],
resource_profile: "balanced".to_string(),
has_persistent_data: false,
is_critical: true,
optional: false,
},
],
requirements: TemplateRequirements {
min_nodes: 1,
max_nodes: 1,
supports_ha: false,
},
}
}
}