10b0c84d97
* remove old bootstrap Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * add meta model to set user password Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * ensure KeyOf works with objects in the state of created that already exist Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> * migrate Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add support for shorter form !If tag Signed-off-by: Jens Langhammer <jens@goauthentik.io> * allow !Context to resolve other yaml tags Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't require serializer to be valid for deleting an object Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix check if a model is being created Signed-off-by: Jens Langhammer <jens@goauthentik.io> * remove duplicate way to set password Signed-off-by: Jens Langhammer <jens@goauthentik.io> * migrate token Signed-off-by: Jens Langhammer <jens@goauthentik.io> * only change what is required with migrations Signed-off-by: Jens Langhammer <jens@goauthentik.io> * add description Signed-off-by: Jens Langhammer <jens@goauthentik.io> * fix admin status Signed-off-by: Jens Langhammer <jens@goauthentik.io> * expand tests Signed-off-by: Jens Langhammer <jens@goauthentik.io> * don't require bootstrap in events to fix ci? Signed-off-by: Jens Langhammer <jens@goauthentik.io> --------- Signed-off-by: Jens Langhammer <jens.langhammer@beryju.org> Signed-off-by: Jens Langhammer <jens@goauthentik.io>
144 lines
4.3 KiB
Python
144 lines
4.3 KiB
Python
"""authentik core celery"""
|
|
import os
|
|
from contextvars import ContextVar
|
|
from logging.config import dictConfig
|
|
from pathlib import Path
|
|
from tempfile import gettempdir
|
|
from typing import Callable
|
|
|
|
from celery import Celery, bootsteps
|
|
from celery.apps.worker import Worker
|
|
from celery.signals import (
|
|
after_task_publish,
|
|
setup_logging,
|
|
task_failure,
|
|
task_internal_error,
|
|
task_postrun,
|
|
task_prerun,
|
|
worker_ready,
|
|
)
|
|
from django.conf import settings
|
|
from django.db import ProgrammingError
|
|
from structlog.contextvars import STRUCTLOG_KEY_PREFIX
|
|
from structlog.stdlib import get_logger
|
|
|
|
from authentik.lib.sentry import before_send
|
|
from authentik.lib.utils.errors import exception_to_string
|
|
|
|
# set the default Django settings module for the 'celery' program.
|
|
os.environ.setdefault("DJANGO_SETTINGS_MODULE", "authentik.root.settings")
|
|
|
|
LOGGER = get_logger()
|
|
CELERY_APP = Celery("authentik")
|
|
CTX_TASK_ID = ContextVar(STRUCTLOG_KEY_PREFIX + "task_id", default=Ellipsis)
|
|
HEARTBEAT_FILE = Path(gettempdir() + "/authentik-worker")
|
|
|
|
|
|
@setup_logging.connect
|
|
def config_loggers(*args, **kwargs):
|
|
"""Apply logging settings from settings.py to celery"""
|
|
dictConfig(settings.LOGGING)
|
|
|
|
|
|
@after_task_publish.connect
|
|
def after_task_publish_hook(sender=None, headers=None, body=None, **kwargs):
|
|
"""Log task_id after it was published"""
|
|
info = headers if "task" in headers else body
|
|
LOGGER.info(
|
|
"Task published",
|
|
task_id=info.get("id", "").replace("-", ""),
|
|
task_name=info.get("task", ""),
|
|
)
|
|
|
|
|
|
@task_prerun.connect
|
|
def task_prerun_hook(task_id: str, task, *args, **kwargs):
|
|
"""Log task_id on worker"""
|
|
request_id = "task-" + task_id.replace("-", "")
|
|
CTX_TASK_ID.set(request_id)
|
|
LOGGER.info("Task started", task_id=task_id, task_name=task.__name__)
|
|
|
|
|
|
@task_postrun.connect
|
|
def task_postrun_hook(task_id, task, *args, retval=None, state=None, **kwargs):
|
|
"""Log task_id on worker"""
|
|
CTX_TASK_ID.set(...)
|
|
LOGGER.info(
|
|
"Task finished", task_id=task_id.replace("-", ""), task_name=task.__name__, state=state
|
|
)
|
|
|
|
|
|
@task_failure.connect
|
|
@task_internal_error.connect
|
|
def task_error_hook(task_id, exception: Exception, traceback, *args, **kwargs):
|
|
"""Create system event for failed task"""
|
|
from authentik.events.models import Event, EventAction
|
|
|
|
LOGGER.warning("Task failure", exc=exception)
|
|
CTX_TASK_ID.set(...)
|
|
if before_send({}, {"exc_info": (None, exception, None)}) is not None:
|
|
Event.new(EventAction.SYSTEM_EXCEPTION, message=exception_to_string(exception)).save()
|
|
|
|
|
|
def _get_startup_tasks() -> list[Callable]:
|
|
"""Get all tasks to be run on startup"""
|
|
from authentik.admin.tasks import clear_update_notifications
|
|
from authentik.outposts.tasks import outpost_connection_discovery, outpost_controller_all
|
|
from authentik.providers.proxy.tasks import proxy_set_defaults
|
|
|
|
return [
|
|
clear_update_notifications,
|
|
outpost_connection_discovery,
|
|
outpost_controller_all,
|
|
proxy_set_defaults,
|
|
]
|
|
|
|
|
|
@worker_ready.connect
|
|
def worker_ready_hook(*args, **kwargs):
|
|
"""Run certain tasks on worker start"""
|
|
|
|
LOGGER.info("Dispatching startup tasks...")
|
|
for task in _get_startup_tasks():
|
|
try:
|
|
task.delay()
|
|
except ProgrammingError as exc:
|
|
LOGGER.warning("Startup task failed", task=task, exc=exc)
|
|
from authentik.blueprints.v1.tasks import start_blueprint_watcher
|
|
|
|
start_blueprint_watcher()
|
|
|
|
|
|
class LivenessProbe(bootsteps.StartStopStep):
|
|
"""Add a timed task to touch a temporary file for healthchecking reasons"""
|
|
|
|
requires = {"celery.worker.components:Timer"}
|
|
|
|
def __init__(self, parent, **kwargs):
|
|
super().__init__(parent, **kwargs)
|
|
self.requests = []
|
|
self.tref = None
|
|
|
|
def start(self, parent: Worker):
|
|
self.tref = parent.timer.call_repeatedly(
|
|
10.0,
|
|
self.update_heartbeat_file,
|
|
(parent,),
|
|
priority=10,
|
|
)
|
|
self.update_heartbeat_file(parent)
|
|
|
|
def stop(self, parent: Worker):
|
|
HEARTBEAT_FILE.unlink(missing_ok=True)
|
|
|
|
def update_heartbeat_file(self, worker: Worker):
|
|
"""Touch heartbeat file"""
|
|
HEARTBEAT_FILE.touch()
|
|
|
|
|
|
CELERY_APP.config_from_object(settings.CELERY)
|
|
|
|
# Load task modules from all registered Django app configs.
|
|
CELERY_APP.autodiscover_tasks()
|
|
CELERY_APP.steps["worker"].add(LivenessProbe)
|