MIT OL Devops Patterns Cookbook

Summary

This document will serve as a place to put patterns and best practices.

The goal is to ease the path for both new builders and experienced builders by helping narrow down the bevvy of choices and present a workable best practice solution to a given problem.

There are many potential ways to organize a document like this, but for now I intend to start with the recipes broken down by infrastructure components.

Example of what I mean are Docker, Traefik, Pyinfra and the like.

Please write your recipes in the following form with What I Want and How To Build It as bold subsections.

Recipes

Traefik

Token Based Authentication

What I Want

I want Traefik to allow requests only from clients that pass a particular token in the HTTP headers of the request. Here's an example curl from Tika with the actual token:

curl  --header 'X-Access-Token: <crazy hex digits>' https://tika-qa.odl.mit.edu

How To Build It

Traefik does not contain this functionality by default, so we must leverage the checkheaders Traefik middleware plugin.

You will need to add a blob to your Traefik static configuration like this:

experimental:
  plugins:
    checkheadersplugin:
      moduleName: "github.com/dkijkuit/checkheadersplugin"
      version: "v0.2.6"

Since we use pyinfra to automate our image builds, you'll need to add code like this to your deploy.py and a line like this to your docker-compose.yaml file.

Keys	Action
`?`	Open this help
`n`	Next page
`p`	Previous page
`s`	Search