Annon
Annon API Gateway
Annon is a configurable API gateway that acts as a reverse proxy with a plugin system. Plugins are reducing boilerplate that must be done in each service, making overall development faster. Also it stores all requests, responses and key metrics, making it easy to debug your application. Inspired by Kong.
"Annon" translates from the Sindarin word for 'Great Door or Gate'. Sindarin is one of the many languages spoken by the immortal Elves.
Annon consist of multiple main parts:
- Annon API Gateway (you are here).
- Annon Dashboard - UI that allows to manage Annon settings, review and analyze Requests.
- annonktl - CLI management utility.
- Annon Status Pages - UI that renders APIs status pages;
- EView - hex package that allows to receive and modify client responses from Elixir application to match Nebo #15 API Manifest. So your back-ends will respond in a same way as Annon does.
- Mithril - authentication and role management service.
Goals of the Project
- Provide single easy to use API management system for medium-to-large scale applications.
- Reduce amount of work needed in other components by orchestrating common functionalities.
- Monitoring - control response time and get answer "what happened" even in a single request perspective. Provide data for in-depth analysis.
- Authorization - set authentication and authorization requirements for each resource and reject requests that do not satisfy them.
- Improve platform scalability.
General Features
Caching and Performance
For performance issues Annon has build-in cache manager, it will load data from DB only once, all further work will be based on this cached data.
Whenever a single node receives request that changes cached data, it's responsible to notify all other nodes in cluster about change, and they should reload configurations from DB.
Whenever new node joins to a cluster, all other nodes should drop their cache, to resolve consistency issues.
This feature is done via skycluster package. All gateway nodes is connected via Erlang distribution protocol. It support different discovery strategies:
kubernetes
- selecting pods via Kubernetes API;gossip
- multicast UDP gossip, using a configurable port/multicast address;epmd
- using standart Erlang Port Mapper Daemon.
Request ID's
When receiving request gateway will generate unique request_id
. It is used to log request and this request is sent to all upstream, so whole back-ends that is affected by a request will create logs with same request id's.
Optionally, you can send X-Request-ID
header with your own request id, but you need to make sure that its length not less than 20 characters. Also, if should be unique, or you will receive error response.
Request Logger
Annon stores all requests and responses by their unique Request ID's in a PostgreSQL database. You use this information to query requests and get base analytics via Requests API.
API consumers may provide a custom request ID by sending X-Request-ID: <request_id>
header. Thus, your Front-End and upstream back-ends can log information with a single unique ID.
Also, idempotency plug is relying on this logs to provide idempotency guarantees for requests with same X-Idempotency-Key: <idempotency_key>
headers.
Monitoring
To monitor services status we will use DogStatsD integration, that will receive following metrics:
request.count
(counter) - API hit rate.request.size
(gauge) - HTTP request size.responses.count
(counter) - same asrequest.count
but sent after request dispatch and additionally tagged withhttp.status
.latencies.{client,upstream,gateway}
(gauge) - total request latency for a API consumer, additionally tagged withhttp.status
.
All metrics have tags: http.host
, http.port
, http.method
, api.name
and api.id
(if matches any), request.id
. This allows to set different aggregated views on counter data.
We recommend you to try DataDog for collecting and displaying performance metrics. But this is not a hard constraint, instead you can use any StatsD collector.
Requests Idempotency
Annon guarantees that replayed requests with same X-Idempotency-Key: <key>
and same request will get permanent response. This is useful in a financial application, where you need good protection from duplicate user actions.
Requests Tracing
Annon supports OpenTracing in Erlang via Otter library. This means that by implementing OpenTracing API in other services you can trace complete request impact for each of your services.
Installation
Annon can be installed by compiling it from sources, but we recommend you to use our pre-build Docker containers:
Our containers are based on Alpine Linux wich is a security-oriented, lightweight Linux distribution based on musl libc and busybox.
Docker Compose
For local environments we provide an example Docker Compose configuration. You can use this one-liner to deploy all Annon components on a local machine:
curl -L http://bit.ly/annon_compose | bash
After Annon is started, open http://localhost:8080/apis for Management UI, http://localhost:4000/ for public API and http://localhost:4001/ for management API.
Kubernetes
You can deploy it to Kubernetes using example configs from Annon's Infra repo.
Documentation
You can find full documentation on official Apiary page.
Also there are auto-generated code documentation available here.
License
See LICENSE.md.