shishantbiswas/coder
1
0
Fork 0
mirror of https://github.com/coder/coder.git synced 2026-06-04 13:38:21 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
8a2f28fa6a2ea8bf755dd7836cf331eead9628d2
coder/enterprise/coderd/x/chatd/chatd.go
T

887 lines
26 KiB
Go
Raw Blame History

package chatd
import (
"context"
"errors"
"fmt"
"net/http"
"net/url"
"strconv"
"strings"
"time"
"github.com/google/uuid"
"golang.org/x/xerrors"
"cdr.dev/slog/v3"
"github.com/coder/coder/v2/coderd/database"
osschatd "github.com/coder/coder/v2/coderd/x/chatd"
"github.com/coder/coder/v2/codersdk"
"github.com/coder/quartz"
"github.com/coder/retry"
"github.com/coder/websocket"
"github.com/coder/websocket/wsjson"
)
// RelaySourceHeader marks replica-relayed stream requests.
const RelaySourceHeader = "X-Coder-Relay-Source-Replica"
const (
authorizationHeader = "Authorization"
cookieHeader = "Cookie"
// relayDrainTimeout is how long an established relay is
// kept open after the chat leaves running state, giving
// buffered snapshot events time to be forwarded before
// the relay is torn down.
relayDrainTimeout = 200 * time.Millisecond
// Retry knobs for the cross-replica relay handshake. Uses the
// github.com/coder/retry defaults (φ-growth, no jitter) but drives
// the delay manually because retry.Retrier.Wait uses time.After,
// which isn't compatible with quartz.Clock determinism in tests.
relayRetryFloor = 500 * time.Millisecond // first retry matches old fixed delay
relayRetryCeil = 15 * time.Second // cap stall before tear-down
// After this many reconnect retries the relay leg is torn down.
// Total dial attempts = 1 initial dial + relayMaxRetries.
relayMaxRetries = 6
)
// RelayDialError wraps a failed relay handshake. HTTPStatus is 0
// when the failure happened before a response (DNS, TCP, TLS,
// timeout, context cancel); otherwise it carries the peer's status
// code for the reconnect loop to classify.
type RelayDialError struct {
HTTPStatus int
Err error
}
func (e *RelayDialError) Error() string { return e.Err.Error() }
func (e *RelayDialError) Unwrap() error { return e.Err }
// IsUnrecoverable reports whether retrying with the same captured
// session token is futile. Only 401/403 qualify - the token is dead
// or the peer won't authorize it. 5xx, 429, network, and context
// errors fall through to backoff.
func (e *RelayDialError) IsUnrecoverable() bool {
return e.HTTPStatus == http.StatusUnauthorized ||
e.HTTPStatus == http.StatusForbidden
}
// MultiReplicaSubscribeConfig holds the dependencies for multi-replica chat
// subscription. ReplicaIDFn is called lazily because the
// replica ID may not be known at construction time.
//
// DialerFn, when set, overrides the default WebSocket relay
// dialer. This is used in tests to inject mock relay behavior
// without requiring real HTTP servers.
type MultiReplicaSubscribeConfig struct {
ResolveReplicaAddress func(context.Context, uuid.UUID) (string, bool)
ReplicaHTTPClient *http.Client
ReplicaIDFn func() uuid.UUID
DialerFn func(
ctx context.Context,
chatID uuid.UUID,
workerID uuid.UUID,
requestHeader http.Header,
) (
snapshot []codersdk.ChatStreamEvent,
parts <-chan codersdk.ChatStreamEvent,
cancel func(),
err error,
)
// Clock is used for creating timers. In production use
// quartz.NewReal(); in tests use quartz.NewMock(t) to
// control reconnect timing deterministically.
Clock quartz.Clock
}
// dial returns the configured dialer, preferring DialerFn (tests)
// over the real dialRelay. Returns nil when relay is not configured.
func (c MultiReplicaSubscribeConfig) dial() func(
ctx context.Context,
chatID uuid.UUID,
workerID uuid.UUID,
requestHeader http.Header,
) (
[]codersdk.ChatStreamEvent,
<-chan codersdk.ChatStreamEvent,
func(),
error,
) {
if c.DialerFn != nil {
return c.DialerFn
}
if c.ResolveReplicaAddress == nil {
return nil
}
return func(
ctx context.Context,
chatID uuid.UUID,
workerID uuid.UUID,
requestHeader http.Header,
) (
[]codersdk.ChatStreamEvent,
<-chan codersdk.ChatStreamEvent,
func(),
error,
) {
return dialRelay(ctx, chatID, workerID, requestHeader, c, c.clock())
}
}
// clock returns the quartz.Clock to use. Defaults to a real clock
// when not set.
func (c MultiReplicaSubscribeConfig) clock() quartz.Clock {
if c.Clock != nil {
return c.Clock
}
return quartz.NewReal()
}
// NewMultiReplicaSubscribeFn returns a SubscribeFn that manages
// relay connections to remote replicas and returns relay
// message_part events only. OSS handles pubsub subscription,
// message catch-up, queue updates, status forwarding, and local
// parts merging.
//
//nolint:gocognit // Complexity is inherent to the multi-source merge loop.
func NewMultiReplicaSubscribeFn(
cfg MultiReplicaSubscribeConfig,
) osschatd.SubscribeFn {
return func(ctx context.Context, params osschatd.SubscribeFnParams) <-chan codersdk.ChatStreamEvent {
chatID := params.ChatID
requestHeader := params.RequestHeader
logger := params.Logger
var relayCancel func()
var relayParts <-chan codersdk.ChatStreamEvent
// If the chat is currently running on a different worker
// and we have a remote parts provider, open an initial
// relay synchronously so the caller gets in-flight
// message_part events right away.
var initialRelaySnapshot []codersdk.ChatStreamEvent
if params.Chat.Status == database.ChatStatusRunning &&
params.Chat.WorkerID.Valid &&
params.Chat.WorkerID.UUID != params.WorkerID &&
cfg.dial() != nil {
snapshot, parts, cancel, err := cfg.dial()(ctx, chatID, params.Chat.WorkerID.UUID, requestHeader)
if err == nil {
relayCancel = cancel
relayParts = parts
// Collect relay message_parts to forward at the
// start of the merge goroutine.
for _, event := range snapshot {
if event.Type == codersdk.ChatStreamEventTypeMessagePart {
initialRelaySnapshot = append(initialRelaySnapshot, event)
}
}
} else {
logger.Warn(ctx, "failed to open initial relay for chat stream",
slog.F("chat_id", chatID),
slog.Error(err),
)
}
}
// Merge all event sources.
mergedEvents := make(chan codersdk.ChatStreamEvent, 128)
// Channel for async relay establishment.
type relayResult struct {
parts <-chan codersdk.ChatStreamEvent
cancel func()
workerID uuid.UUID // the worker this dial targeted
// err and parts are mutually exclusive: success sets
// parts; failure sets err (unwrap to *RelayDialError
// for classification).
err error
}
relayReadyCh := make(chan relayResult, 4)
// Reset on successful dial or when the relay target
// changes, so a fresh target starts at the floor delay.
retryState := newRelayRetryState()
// Per-dial context so in-flight dials can be canceled when
// a new dial is initiated or the relay is closed.
var dialCancel context.CancelFunc
// expectedWorkerID tracks which replica we expect the next
// relay result to target. Stale results are discarded.
var expectedWorkerID uuid.UUID
// Reconnect timer state.
var reconnectTimer *quartz.Timer
var reconnectCh <-chan time.Time
// drainAndClose is set when the chat transitions away
// from running while a relay dial is still in progress.
// Instead of canceling the dial immediately, we let it
// complete so the snapshot of buffered message_parts
// can be forwarded to the subscriber.
var drainAndClose bool
// Drain timer state. When the relay connects in
// drain-and-close mode, a short timer is started.
// During this window the normal relayPartsCh case
// forwards buffered snapshot events. When the timer
// fires the relay is torn down.
var drainTimer *quartz.Timer
var drainTimerCh <-chan time.Time
// Helper to close relay and stop any pending reconnect
// timer.
closeRelay := func() {
// Cancel any in-flight dial goroutine first.
if dialCancel != nil {
dialCancel()
dialCancel = nil
}
// Drain all buffered relay results from canceled dials.
for {
select {
case result := <-relayReadyCh:
if result.cancel != nil {
result.cancel()
}
default:
goto drained
}
}
drained:
expectedWorkerID = uuid.Nil
if relayCancel != nil {
relayCancel()
relayCancel = nil
}
relayParts = nil
if reconnectTimer != nil {
reconnectTimer.Stop()
reconnectTimer = nil
reconnectCh = nil
}
if drainTimer != nil {
drainTimer.Stop()
drainTimer = nil
drainTimerCh = nil
}
drainAndClose = false
}
// openRelayAsync dials the remote replica in a background
// goroutine and delivers the result on relayReadyCh so the
// main select loop is never blocked by network I/O.
openRelayAsync := func(workerID uuid.UUID) {
if cfg.dial() == nil {
return
}
// Scoped here (not in closeRelay) so repeated dials
// against the same worker keep the attempt counter and
// correctly trip the cap.
if workerID != expectedWorkerID {
retryState.reset()
}
closeRelay()
// Create a per-dial context so this goroutine is
// canceled if closeRelay() or openRelayAsync() is
// called again before the dial completes.
var dialCtx context.Context
dialCtx, dialCancel = context.WithCancel(ctx)
expectedWorkerID = workerID
go func() {
snapshot, parts, cancel, err := cfg.dial()(dialCtx, chatID, workerID, requestHeader)
if err != nil {
// Don't log context-canceled errors
// since they are expected when a dial is
// superseded by a newer one.
if dialCtx.Err() == nil {
fields := []slog.Field{
slog.F("chat_id", chatID),
slog.F("worker_id", workerID),
slog.Error(err),
}
// Surface the peer's HTTP status (when we
// got one) as a structured field so
// operators can filter 401/403 spam
// separately from 5xx/network warnings.
var dialErr *RelayDialError
if errors.As(err, &dialErr) && dialErr.HTTPStatus != 0 {
fields = append(fields, slog.F("http_status", dialErr.HTTPStatus))
}
logger.Warn(ctx, "failed to open relay for message parts", fields...)
}
// Hand the error to the merge loop, which will
// classify it and either back off or tear down.
select {
case relayReadyCh <- relayResult{workerID: workerID, err: err}:
case <-dialCtx.Done():
}
return
}
// Discard stale dials so we don't start a
// wrappedParts goroutine on a canceled connection.
if dialCtx.Err() != nil {
cancel()
return
}
// Wrap the relay channel so snapshot parts
// are delivered through the same channel as
// live parts. This goroutine only forwards
// events - it does not own the relay
// lifecycle. When dialCtx is canceled it
// simply returns, closing wrappedParts via
// its defer. The cancel() is called by
// whoever canceled dialCtx (closeRelay or
// the send-fallback select below).
wrappedParts := make(chan codersdk.ChatStreamEvent, 128)
go func() {
defer close(wrappedParts)
for _, event := range snapshot {
if event.Type == codersdk.ChatStreamEventTypeMessagePart {
select {
case wrappedParts <- event:
case <-dialCtx.Done():
return
}
}
}
for {
select {
case event, ok := <-parts:
if !ok {
return
}
select {
case wrappedParts <- event:
case <-dialCtx.Done():
return
}
case <-dialCtx.Done():
return
}
}
}()
select {
case relayReadyCh <- relayResult{parts: wrappedParts, cancel: cancel, workerID: workerID}:
case <-dialCtx.Done():
cancel()
}
}()
}
// scheduleRelayReconnect arms a timer so the select loop
// can re-check chat status and reopen the relay. Callers
// pass the delay from retryState so the failed-dial branch
// gets backoff while transient branches stay at the floor.
scheduleRelayReconnect := func(delay time.Duration) {
if cfg.dial() == nil {
return
}
if reconnectTimer != nil {
reconnectTimer.Stop()
}
reconnectTimer = cfg.clock().NewTimer(delay, "reconnect")
reconnectCh = reconnectTimer.C
}
// sendRelayTerminalError enqueues one error event for the
// subscriber; callers return afterwards so the deferred
// close(mergedEvents) fires and the OSS merge loop tears
// the relay leg down while pubsub/local sources keep going.
sendRelayTerminalError := func(msg string) {
select {
case mergedEvents <- codersdk.ChatStreamEvent{
Type: codersdk.ChatStreamEventTypeError,
ChatID: chatID,
Error: &codersdk.ChatError{Message: msg},
}:
case <-ctx.Done():
}
}
statusNotifications := params.StatusNotifications
go func() {
defer close(mergedEvents)
defer closeRelay()
// Forward any initial relay snapshot parts
// collected synchronously above.
for _, event := range initialRelaySnapshot {
select {
case <-ctx.Done():
return
case mergedEvents <- event:
}
}
for {
relayPartsCh := relayParts
select {
case <-ctx.Done():
return
case result := <-relayReadyCh:
// Discard stale relay results from a
// previous dial that was superseded.
if result.workerID != expectedWorkerID {
if result.cancel != nil {
result.cancel()
}
continue
}
// A nil parts channel signals the dial
// failed - classify the error to decide
// whether to schedule a backoff retry, emit a
// terminal error and tear the relay leg down
// (unrecoverable / cap reached), or simply
// drop the stale drain.
if result.parts == nil {
if drainAndClose {
// Dial failed and we were only
// waiting to drain - nothing to do.
drainAndClose = false
continue
}
var dialErr *RelayDialError
if errors.As(result.err, &dialErr) && dialErr.IsUnrecoverable() {
logger.Warn(ctx, "relay dial unrecoverable; tearing down relay leg",
slog.F("chat_id", chatID),
slog.F("worker_id", result.workerID),
slog.F("http_status", dialErr.HTTPStatus),
)
sendRelayTerminalError(fmt.Sprintf(
"relay authentication failed (status %d)",
dialErr.HTTPStatus,
))
return
}
delay, giveUp := retryState.next()
if giveUp {
logger.Warn(ctx, "relay dial retry cap reached; tearing down relay leg",
slog.F("chat_id", chatID),
slog.F("worker_id", result.workerID),
slog.F("max_retries", relayMaxRetries),
)
sendRelayTerminalError(fmt.Sprintf(
"relay connection failed after %d retries",
relayMaxRetries,
))
return
}
scheduleRelayReconnect(delay)
continue
}
// An async relay dial completed. Swap in the
// new relay channel. We deliberately do NOT
// reset the retry counter here: a peer that
// accepts the handshake and immediately drops
// the stream would otherwise keep reconnecting
// forever, since each success would zero the
// counter before the next drop re-incremented
// it. The counter only resets when the target
// worker changes (see openRelayAsync).
if relayCancel != nil {
relayCancel()
relayCancel = nil
}
relayParts = result.parts
relayCancel = result.cancel
if drainAndClose {
// The chat is no longer running on
// the remote worker, but the dial
// completed. Verify no new worker
// has claimed the chat before we
// drain stale parts.
currentChat, dbErr := params.DB.GetChatByID(ctx, chatID)
if dbErr != nil {
logger.Warn(ctx, "failed to check chat status for relay drain",
slog.F("chat_id", chatID),
slog.Error(dbErr),
)
}
if dbErr == nil && currentChat.Status == database.ChatStatusRunning &&
currentChat.WorkerID.Valid &&
currentChat.WorkerID.UUID != params.WorkerID {
// A new worker picked up the chat;
// discard the stale relay and let
// openRelayAsync handle the new one.
closeRelay()
} else {
// Chat is still idle - drain the
// buffered snapshot before closing.
if drainTimer != nil {
drainTimer.Stop()
}
drainTimer = cfg.clock().NewTimer(relayDrainTimeout, "drain")
drainTimerCh = drainTimer.C
drainAndClose = false
}
}
case <-reconnectCh:
reconnectCh = nil
// Re-check whether the chat is still
// running on a remote worker before
// reconnecting.
currentChat, chatErr := params.DB.GetChatByID(ctx, chatID)
if chatErr != nil {
logger.Warn(ctx, "failed to get chat for relay reconnect",
slog.F("chat_id", chatID),
slog.Error(chatErr),
)
// Retry on transient DB errors to
// avoid permanently stalling the
// stream. The same retry state
// bounds the DB-error loop too so a
// persistently broken DB eventually
// tears the relay down instead of
// spinning forever.
delay, giveUp := retryState.next()
if giveUp {
logger.Warn(ctx, "relay reconnect retry cap reached; tearing down relay leg",
slog.F("chat_id", chatID),
slog.F("max_retries", relayMaxRetries),
)
sendRelayTerminalError(fmt.Sprintf(
"relay connection failed after %d retries",
relayMaxRetries,
))
return
}
scheduleRelayReconnect(delay)
continue
}
if currentChat.Status == database.ChatStatusRunning &&
currentChat.WorkerID.Valid && currentChat.WorkerID.UUID != params.WorkerID {
openRelayAsync(currentChat.WorkerID.UUID)
}
case sn, ok := <-statusNotifications:
if !ok {
statusNotifications = nil
continue
}
if sn.Status == database.ChatStatusRunning && sn.WorkerID != uuid.Nil && sn.WorkerID != params.WorkerID {
openRelayAsync(sn.WorkerID)
} else {
switch {
case dialCancel != nil && relayParts == nil:
// In-progress dial: let it complete
// so its snapshot can be forwarded.
drainAndClose = true
case relayParts != nil:
// Active relay: give it a short
// window to deliver any remaining
// buffered parts before closing.
if drainTimer != nil {
drainTimer.Stop()
}
drainTimer = cfg.clock().NewTimer(relayDrainTimeout, "drain")
drainTimerCh = drainTimer.C
default:
closeRelay()
}
}
case <-drainTimerCh:
drainTimerCh = nil
drainTimer = nil
closeRelay()
case event, ok := <-relayPartsCh:
if !ok {
if relayCancel != nil {
relayCancel()
relayCancel = nil
}
relayParts = nil
// Reuse the retry state so a relay that
// repeatedly drops eventually tears down.
delay, giveUp := retryState.next()
if giveUp {
logger.Warn(ctx, "relay drop retry cap reached; tearing down relay leg",
slog.F("chat_id", chatID),
slog.F("max_retries", relayMaxRetries),
)
sendRelayTerminalError(fmt.Sprintf(
"relay connection failed after %d retries",
relayMaxRetries,
))
return
}
scheduleRelayReconnect(delay)
continue
}
// Only forward message_part events from
// relay.
if event.Type == codersdk.ChatStreamEventTypeMessagePart {
select {
case <-ctx.Done():
return
case mergedEvents <- event:
}
}
}
}
}()
// Cleanup is driven by ctx cancellation: the merge
// goroutine owns all relay state (reconnectTimer,
// relayCancel, dialCancel, etc.) and tears it down
// via defer closeRelay() when ctx is done.
return mergedEvents
}
}
// relayRetryState drives the retry policy for the relay reconnect
// loop. Wraps github.com/coder/retry to reuse its φ-growth defaults
// but computes the delay without blocking so the merge loop can
// schedule its own quartz.Clock timer.
//
// Not safe for concurrent use.
type relayRetryState struct {
retrier *retry.Retrier
attempts int
}
func newRelayRetryState() *relayRetryState {
return &relayRetryState{
retrier: retry.New(relayRetryFloor, relayRetryCeil),
}
}
// next returns the delay before the next dial and sets giveUp once
// attempts exceed relayMaxRetries. Adapts the math from
// retry.Retrier.Wait (github.com/coder/retry/retrier.go) without
// blocking: the library's Wait returns 0 on the first call and sets
// Delay to Floor only after the sleep, so we clamp to Floor up
// front.
func (s *relayRetryState) next() (delay time.Duration, giveUp bool) {
s.attempts++
if s.attempts > relayMaxRetries {
return 0, true
}
r := s.retrier
d := time.Duration(float64(r.Delay) * r.Rate)
if d > r.Ceil {
d = r.Ceil
}
if d < r.Floor {
d = r.Floor
}
r.Delay = d
return d, false
}
// reset returns the state to the floor delay and zero attempts.
// Called after a successful dial or a relay target change.
func (s *relayRetryState) reset() {
s.retrier.Reset()
s.attempts = 0
}
// dialRelay opens a WebSocket to the replica owning chatID and
// returns any buffered message_part snapshot plus a live channel of
// subsequent events. Handshake failures return an error unwrapping
// to *RelayDialError so callers can classify via IsUnrecoverable.
//
// websocket.Dial is called directly (not via the SDK wrapper) so we
// can read *http.Response.StatusCode for classification.
func dialRelay(
ctx context.Context,
chatID uuid.UUID,
workerID uuid.UUID,
requestHeader http.Header,
cfg MultiReplicaSubscribeConfig,
clk quartz.Clock,
) (
snapshot []codersdk.ChatStreamEvent,
parts <-chan codersdk.ChatStreamEvent,
cancel func(),
err error,
) {
address, ok := cfg.ResolveReplicaAddress(ctx, workerID)
if !ok {
return nil, nil, nil, &RelayDialError{
Err: xerrors.New("dial relay stream: worker replica not found"),
}
}
wsURL, err := buildRelayURL(address, chatID)
if err != nil {
return nil, nil, nil, &RelayDialError{
Err: xerrors.Errorf("dial relay stream: %w", err),
}
}
replicaID := cfg.ReplicaIDFn()
headers := make(http.Header, 2)
headers.Set(codersdk.SessionTokenHeader, extractSessionToken(requestHeader))
headers.Set(RelaySourceHeader, replicaID.String())
relayCtx, relayCancel := context.WithCancel(ctx)
conn, resp, dialErr := websocket.Dial(relayCtx, wsURL, &websocket.DialOptions{
HTTPClient: cfg.ReplicaHTTPClient,
HTTPHeader: headers,
CompressionMode: websocket.CompressionDisabled,
})
status := 0
if resp != nil {
status = resp.StatusCode
// The websocket library closes resp.Body on success; on
// failure we close it ourselves so we don't leak the TCP
// connection.
if dialErr != nil && resp.Body != nil {
_ = resp.Body.Close()
}
}
if dialErr != nil {
relayCancel()
return nil, nil, nil, &RelayDialError{
HTTPStatus: status,
Err: xerrors.Errorf("dial relay stream: %w", dialErr),
}
}
// Match the server's 4 MiB read limit in codersdk.StreamChat so
// large message_part batches don't trip the default 32 KiB cap.
conn.SetReadLimit(1 << 22)
snapshot = make([]codersdk.ChatStreamEvent, 0, 100)
// sourceEvents is the flattened batch→event channel. A small
// goroutine reads batches off the websocket and fans them out;
// callers see a single event stream identical to the shape the
// old SDK call produced.
sourceEvents := make(chan codersdk.ChatStreamEvent, 128)
go func() {
defer close(sourceEvents)
for {
var batch []codersdk.ChatStreamEvent
if readErr := wsjson.Read(relayCtx, conn, &batch); readErr != nil {
return
}
for _, event := range batch {
select {
case sourceEvents <- event:
case <-relayCtx.Done():
return
}
}
}
}()
closeSource := func() {
relayCancel()
_ = conn.Close(websocket.StatusNormalClosure, "")
}
// Wait briefly for the first event to handle the common
// case where the remote side has buffered parts but hasn't
// flushed them to the WebSocket yet.
const drainTimeout = time.Second
drainTimer := clk.NewTimer(drainTimeout, "drain")
defer drainTimer.Stop()
drainInitial:
for len(snapshot) < cap(snapshot) {
select {
case <-relayCtx.Done():
closeSource()
return nil, nil, nil, &RelayDialError{
Err: xerrors.Errorf("dial relay stream: %w", relayCtx.Err()),
}
case event, ok := <-sourceEvents:
if !ok {
break drainInitial
}
if event.Type != codersdk.ChatStreamEventTypeMessagePart {
continue
}
snapshot = append(snapshot, event)
// After getting the first event, switch to
// non-blocking drain for remaining buffered events.
drainTimer.Stop()
drainTimer.Reset(0)
case <-drainTimer.C:
break drainInitial
}
}
events := make(chan codersdk.ChatStreamEvent, 128)
go func() {
defer close(events)
defer closeSource()
// No need to re-send snapshot events - they're
// returned to the caller directly.
for {
select {
case <-relayCtx.Done():
return
case event, ok := <-sourceEvents:
if !ok {
return
}
if event.Type != codersdk.ChatStreamEventTypeMessagePart {
continue
}
select {
case events <- event:
case <-relayCtx.Done():
return
}
}
}
}()
return snapshot, events, closeSource, nil
}
// buildRelayURL builds the websocket URL for the chat stream
// endpoint on a peer replica. It maps http(s) schemes to ws(s).
func buildRelayURL(address string, chatID uuid.UUID) (string, error) {
u, err := url.Parse(address)
if err != nil {
return "", xerrors.Errorf("parse relay address %q: %w", address, err)
}
switch u.Scheme {
case "http":
u.Scheme = "ws"
case "https":
u.Scheme = "wss"
case "ws", "wss":
// already a websocket URL, leave as-is.
default:
return "", xerrors.Errorf("unsupported relay address scheme %q", u.Scheme)
}
u.Path = fmt.Sprintf("/api/experimental/chats/%s/stream", chatID)
q := u.Query()
// Relays only need live message_part events, not the full
// history; pass the relay sentinel so the peer skips its
// durable DB snapshot and delivers in-flight parts only.
q.Set("after_id", strconv.FormatInt(osschatd.RelaySentinelAfterID, 10))
u.RawQuery = q.Encode()
return u.String(), nil
}
// extractSessionToken returns the session token carried by the
// given request headers. It mirrors the priority order used by
// apiKeyMiddleware: cookie, then Coder-Session-Token header, then
// Authorization: Bearer header.
func extractSessionToken(header http.Header) string {
if header == nil {
return ""
}
// Cookie (browser WebSocket upgrade - most common relay case).
if raw := header.Get(cookieHeader); raw != "" {
r := &http.Request{Header: http.Header{cookieHeader: {raw}}}
if c, err := r.Cookie(codersdk.SessionTokenCookie); err == nil && c.Value != "" {
return c.Value
}
}
// Coder-Session-Token header (SDK / CLI callers).
if v := header.Get(codersdk.SessionTokenHeader); v != "" {
return v
}
// Authorization: Bearer <token>.
if v := header.Get(authorizationHeader); len(v) > 7 && strings.EqualFold(v[:7], "bearer ") {
return strings.TrimSpace(v[7:])
}
return ""
}
Reference in New Issue View Git Blame Copy Permalink