Use read replica (#55)

Author: manelmontilla

.travis.yml

@@ -8,12 +8,9 @@ env:
     - CGO_ENABLED=0
 gobuild_args: -a -tags netgo -ldflags '-w'
 go_import_path: github.com/adevinta/vulnerability-db-api
-before_script:
-  - _script/start-pg
 script:
   - go install ./...
   - go test -short -v $(go list ./... | grep -v /vendor/)
-  - source _script/setup-e2e-tests.sh
-  - _script/run-e2e-tests.sh
+  - _script/run-e2e.sh read
 after_success:
   - bash -c 'source <(curl -s https://raw.githubusercontent.com/adevinta/vulcan-cicd/master/docker.sh)'

README.md

@@ -10,7 +10,7 @@ For running the component locally, clone and run at the root of the repo the fol
 ```sh
 go install ./...
 cd ../vulnerability-db/db && source postgres-start.sh && cd -
-cd ../vulnerability-db && source flyway-migrate.sh && cd -
+cd ../vulnerability-db/db && source flyway-migrate.sh && cd -
 vulnerability-db-api -c ../_resources/config/local.toml
 ```
 
@@ -27,8 +27,15 @@ Those are the variables you have to use:
 |PG_PASSWORD|Database password|vulnerabilitydb|
 |PG_PORT|Database port|5432|
 |PG_SSLMODE|One of these (disable,allow,prefer,require,verify-ca,verify-full)|disable|
+|PG_HOST_READ|Read replica database host|localhost|
+|PG_NAME_READ|Read replica Database name|vulnerabilitydb|
+|PG_USER_READ|Read replica Database user|vulnerabilitydb|
+|PG_PASSWORD_READ|Read replica Database password|vulnerabilitydb|
+|PG_PORT_READ|Read replica Database port|5432|
+|PG_SSLMODE_READ|One of these (disable,allow,prefer,require,verify-ca,verify-full)|disable|
 |PG_CA_B64|A base64 encoded CA certificate||
 
+
 ```sh
 docker build . -t vdba
 

_resources/README.md

@@ -4,15 +4,15 @@
 
 ```sh
 bash postgres-start.sh
-psql -h localhost -p 5438 -U vulndb -f schema.sql # Type "vulndb" as password.
+psql -h localhost -p 5432 -U vulndb -f schema.sql # Type "vulndb" as password.
 ```
 
 ## Populating Database
 
 ```sh
 # Type "vulndb" as password.
-psql -h localhost -p 5438 -U vulndb -f schema.sql # Create the schema.
-psql -h localhost -p 5438 -U vulndb -f data.sql # Populate with test data.
+psql -h localhost -p 5432 -U vulndb -f schema.sql # Create the schema.
+psql -h localhost -p 5432 -U vulndb -f data.sql # Populate with test data.
 ```
 
 ## Stopping Database

_resources/config/local-e2e.toml _resources/config/e2e-master.toml

@@ -4,10 +4,11 @@ default_size = 20
 
 [postgresql]
 host = "localhost"
-port = "5440"
+port = "5434"
 user = "vulndb"
 pass = "vulndb"
 db = "vulndbtest"
+sslmode = "disable"
 
 [log]
-level = "DEBUG"
+level = "INFO"

_resources/config/e2e-read-replica.toml

@@ -0,0 +1,22 @@
+[api]
+max_size = 100
+default_size = 20
+
+[postgresql]
+host = "localhost"
+port = "5434"
+user = "vulndb"
+pass = "vulndb"
+db = "vulndbtest"
+sslmode = "disable"
+
+[postgresql_read]
+host = "localhost"
+port = "5435"
+user = "vulndb"
+pass = "vulndb"
+db = "vulndbtest"
+sslmode = "disable"
+
+[log]
+level = "INFO"

_resources/docker-compose-e2e.yml

@@ -0,0 +1,48 @@
+version: '2'
+
+services:
+  postgresql-e2e-master:
+    image: docker.io/bitnami/postgresql:14
+    ports:
+      - '5434:5432'
+    environment:
+      - POSTGRESQL_REPLICATION_MODE=master
+      - POSTGRESQL_REPLICATION_USER=repl_user
+      - POSTGRESQL_REPLICATION_PASSWORD=repl_password
+      - POSTGRESQL_USERNAME=vulndb
+      - POSTGRESQL_PASSWORD=vulndb
+      - POSTGRESQL_DATABASE=vulndbtest
+      - ALLOW_EMPTY_PASSWORD=yes
+    healthcheck:
+      test: ["CMD-SHELL", "sh -c 'pg_isready -U vulndb'"]
+      interval: 5s
+      timeout: 10s
+      retries: 6
+
+  postgresql-e2e-slave:
+    image: docker.io/bitnami/postgresql:14
+    ports:
+      - '5435:5432'
+    depends_on:
+      postgresql-e2e-master:
+        condition: service_healthy
+    environment:
+      - POSTGRESQL_REPLICATION_MODE=slave
+      - POSTGRESQL_REPLICATION_USER=repl_user
+      - POSTGRESQL_REPLICATION_PASSWORD=repl_password
+      - POSTGRESQL_MASTER_HOST=postgresql-e2e-master
+      - POSTGRESQL_MASTER_PORT_NUMBER=5432
+      - ALLOW_EMPTY_PASSWORD=yes
+      - POSTGRESQL_PASSWORD=vulndb
+
+  e2e:
+    image: postman/newman
+    command: ["run",
+      "/postman/Vulnerability_DB_API.postman_collection.json",
+      "--environment=/postman/VulnerabilityDBAPI.postman_environment.e2e.json",
+      "--bail",
+      ]
+    volumes:
+      - "../_resources/e2e/postman:/postman"
+    extra_hosts:
+      - "host.docker.internal:host-gateway"

_resources/e2e/postman/VulnerabilityDBAPI.postman_environment.e2e.json

@@ -0,0 +1,15 @@
+{
+	"id": "670c18fe-cf98-4c48-a725-4866a4ebfdf8",
+	"name": "VulnerabilityDBAPI",
+	"values": [
+		{
+			"key": "host",
+			"value": "host.docker.internal:8080",
+			"type": "default",
+			"enabled": true
+		}
+	],
+	"_postman_variable_scope": "environment",
+	"_postman_exported_at": "2022-12-20T11:35:31.612Z",
+	"_postman_exported_using": "Postman/9.31.0"
+}

_resources/e2e/postman/Vulnerability_DB_API.postman_collection.json

@@ -22722,4 +22722,4 @@
 			"type": "string"
 		}
 	]
-}
+}

_script/run-e2e-tests.sh

@@ -0,0 +1,73 @@
+#!/bin/bash
+
+# Copyright 2022 Adevinta
+
+set -u -e
+
+cd "$(dirname $0)/.."
+
+case $# in
+1)
+	ARG=$1
+    ;;
+*)
+	echo "usage: $0 <read|master>" >&2
+	exit 2
+	;;
+esac
+
+COMPOSE_OPTIONS=""
+case $ARG in
+"read")
+	CONFIG_FILE="_resources/config/e2e-read-replica.toml"
+	SERVICE="postgresql-e2e-slave"
+    echo "using the read replica database"
+    ;;
+"master")
+	CONFIG_FILE="_resources/config/e2e-master.toml"
+	SERVICE="postgresql-e2e-master"
+    echo "using the master database"
+    ;;
+*)
+	echo "usage: $0 <read|master>" >&2
+	exit 2
+	;;
+esac
+
+
+# Start postgress databases.
+docker-compose -f _resources/docker-compose-e2e.yml  -p "e2e" up -d $SERVICE
+
+# Set up schema for the test db.
+set +e
+rm -rf /tmp/vulnerability-db
+set -e
+git clone --single-branch --branch master https://github.com/adevinta/vulnerability-db.git /tmp/vulnerability-db
+docker run --net=host -v /tmp/vulnerability-db/db:/flyway/sql flyway/flyway:"${FLYWAY_VERSION:-8}-alpine" \
+    -user=vulndb -password=vulndb -url=jdbc:postgresql://127.0.0.1:5434/vulndbtest -baselineOnMigrate=true migrate
+
+# Loaf fixtures in the test db.
+TestDBPort=5434 go run e2e/fixtures.go _resources/e2e/fixtures/
+
+# Give time to the fixtures data to be replicated to the read replica.
+sleep 5
+
+# Kill any possible running server.
+set +e
+pkill vulnerability-db-api
+set -e
+
+echo "RUNNING vulnerability-db-api"
+go install ./...
+vulnerability-db-api -c $CONFIG_FILE &
+
+# Run e2e tests.
+echo "RUNNING e2e tests"
+docker-compose -f _resources/docker-compose-e2e.yml -p "e2e" run e2e
+
+# Clean up resurces.
+set +e
+pkill vulnerability-db-api
+set -e
+docker-compose -f _resources/docker-compose-e2e.yml  -p "e2e" rm -s -f -v
+

_script/run-e2e.sh

@@ -14,9 +14,10 @@ import (
 )
 
 type config struct {
-	API  apiConfig          `toml:"api"`
-	PSQL postgresql.ConnStr `toml:"postgresql"`
-	Log  logConfig          `toml:"log"`
+	API      apiConfig          `toml:"api"`
+	PSQL     postgresql.ConnStr `toml:"postgresql"`
+	PSQLRead postgresql.ConnStr `toml:"postgresql_read"`
+	Log      logConfig          `toml:"log"`
 }
 
 type apiConfig struct {

_script/setup-e2e-tests.sh

@@ -30,8 +30,13 @@ func main() {
 	e := echo.New()
 
 	e.Logger.SetLevel(parseLogLvl(config.Log.Level))
-
-	db, err := postgresql.NewDB(config.PSQL, e.Logger)
+	cfgPSQL := config.PSQL
+	cfgPSQLRead := config.PSQLRead
+	// If we don't have defined the read replica we use the read write one.
+	if cfgPSQLRead.Host == "" {
+		cfgPSQLRead = cfgPSQL
+	}
+	db, err := postgresql.NewDB(cfgPSQL, cfgPSQLRead, e.Logger)
 	if err != nil {
 		e.Logger.Fatal(err)
 	}

_script/start-pg

@@ -10,5 +10,15 @@ pass = "$PG_PASSWORD"
 db = "$PG_NAME"
 sslmode = "$PG_SSLMODE"
 
+# Read replica DB. If specified the endpoints that only read data from the DB
+# will use this db instance instead of the RW one set above.
+[postgresql_read]
+host = "$PG_HOST_READ"
+port = "$PG_PORT_READ"
+user = "$PG_USER_READ"
+pass = "$PG_PASSWORD_READ"
+db = "$PG_NAME_READ"
+sslmode = "$PG_SSLMODE_READ"
+
 [log]
 level = "$LOG_LEVEL"