Skip to content

Cluster manager reverse tunnel#801

Open
edlerd wants to merge 1 commit into
canonical:mainfrom
edlerd:websocket
Open

Cluster manager reverse tunnel#801
edlerd wants to merge 1 commit into
canonical:mainfrom
edlerd:websocket

Conversation

@edlerd
Copy link
Copy Markdown
Contributor

@edlerd edlerd commented May 26, 2025
edited
Loading

Done

  • added reverse tunnel to cluster manager
  • proxy endpoint to expose the LXD API through the tunnel
  • expect an authorization / bearer header for auth, reply with the session that the client can cache

Ready for review.

github-advanced-security[bot]
github-advanced-security AI found potential problems May 26, 2025
View reviewed changes
Comment thread cmd/microcloudd/cluster_manager_task.go Fixed
Comment thread cmd/microcloudd/cluster_manager_task.go Fixed
@edlerd edlerd force-pushed the websocket branch 7 times, most recently from 1d36035 to e4741bd Compare May 27, 2025 08:54
@roosterfish
Copy link
Copy Markdown
Contributor

roosterfish commented Jul 24, 2025

@edlerd can this PR be closed?

@edlerd
Copy link
Copy Markdown
Contributor Author

edlerd commented Jul 24, 2025
edited
Loading

@edlerd can this PR be closed?

We might want to use this approach at a later time, so I'd keep it open in draft state.

@edlerd edlerd force-pushed the websocket branch 3 times, most recently from 99939f7 to 0f73e50 Compare February 27, 2026 09:22
@github-actions github-actions Bot added the Documentation Documentation needs updating label Feb 27, 2026
@github-actions github-actions Bot removed the Documentation Documentation needs updating label Feb 27, 2026
@edlerd edlerd force-pushed the websocket branch 6 times, most recently from 03a8fa9 to 99d12b3 Compare March 2, 2026 17:59
github-advanced-security[bot]
github-advanced-security AI found potential problems Apr 29, 2026
View reviewed changes
Comment thread cmd/microcloudd/cluster_manager_task.go Fixed
Comment thread cmd/microcloudd/cluster_manager_task.go
},
}

lxdResponse, err := lxdHttpClient.Do(newReq)
Copy link
Copy Markdown
Contributor Author

@edlerd edlerd May 28, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This is by design, not sure if there is a solution for this.

Copy link
Copy Markdown
Contributor Author

@edlerd edlerd May 28, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Added an allowlist of methods and a prefix check for the path.

@edlerd edlerd force-pushed the websocket branch 3 times, most recently from 8988de9 to f1f9f2f Compare May 28, 2026 07:46
@edlerd edlerd marked this pull request as ready for review May 28, 2026 07:47
@edlerd edlerd changed the title Cluster manager proof of concept for reverse tunnel [spike] Cluster manager reverse tunnel May 28, 2026
@edlerd edlerd force-pushed the websocket branch 3 times, most recently from 851f04d to 1f74f54 Compare May 28, 2026 11:01
@edlerd
Cluster manager proof of concept for reverse tunnel
79d3180 
Signed-off-by: David Edler <david.edler@canonical.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@github-advanced-security github-advanced-security[bot] github-advanced-security[bot] left review comments

Reviewers whose approvals may not affect merge requirements

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@edlerd @roosterfish @github-advanced-security