feat: Implement dynamic Gatekeeper proxy and enhance service health monitoring

- **Implemented Dynamic Gatekeeper (Anubis) Proxy:** - Introduced Anubis as a Gatekeeper proxy layer for services (`web`, `web-staging`, `feedback`, `health`). - Added `docker-gen` setup (`docker-compose_gatekeeper.template.yml`, `gatekeeper-manager`) to dynamically configure Anubis instances based on container labels (`enable_gatekeeper=true`). - Updated HAProxy to route traffic through the respective Gatekeeper services. - **Enhanced Service Health Monitoring & Checks:** - Integrated `django-health-check` into the Django application, providing detailed health endpoints (e.g., `/health/`). - Replaced the custom health check view with `django-health-check` URLs. - Added `psutil` for system metrics in health checks. - Made Gatus configuration dynamic using `docker-gen` (`config.template.yaml`), allowing automatic discovery and monitoring of service instances (e.g., web workers). - Externalized Gatus SMTP credentials to environment variables. - Strengthened `docker-compose_core.yml` with a combined `db-redis-healthcheck` service reporting to Gatus. - Added explicit health checks for `db` and `redis` services in `docker-compose.yml`. - **Improved Docker & Compose Configuration:** - Added `depends_on` conditions in `docker-compose.yml` for `web` and `celery` services to wait for the database. - Updated `ALLOWED_HOSTS` in `docker-compose_staging.yml` and `docker-compose_web.yml` to include internal container names for Gatekeeper communication. - Set `DEBUG=False` for staging services. - Removed `.env.production` from `.gitignore` (standardized to `.env`). - Streamlined `scripts/entrypoint.sh` by removing the call to the no-longer-present `/deploy.sh`. - **Dependency Updates:** - Added `django-health-check>=3.18.3` and `psutil>=7.0.0` to `pyproject.toml` and `uv.lock`. - Updated `settings.py` to include `health_check` apps, configuration, and use `REDIS_URL` consistently. - **Streamlined deployment script used in GHA:** - Updated the workflow to copy new server files and create a new `.env` file in the temporary directory before moving them into place. - Consolidated the stopping and removal of old containers into a single step for better clarity and efficiency. - Reduce container downtime by rearranging stop/start steps.
2025-05-22 19:21:58 -07:00 · 2025-05-22 19:21:58 -07:00 · 6aa15d1af9
commit 6aa15d1af9
parent f530790f6c
16 changed files with 487 additions and 162 deletions
--- a/docker-compose.yml
+++ b/docker-compose.yml
@ -8,6 +8,7 @@ services:
    volumes:
      - ./seed:/seed:ro
      # DANGEROUS DUE TO DOCKERFILE PACKAGE BUILDING/INSTALLATION
+      # will need to use editable package instead somehow
      #- ./src/pkmntrade_club:/app/lib/python3.12/site-packages/pkmntrade_club:ro
    env_file:
      - .env
@ -16,6 +17,9 @@ services:
      - PUBLIC_HOST=localhost
      - ALLOWED_HOSTS=127.0.0.1,localhost
      - DISABLE_CACHE=false
+    depends_on:
+      db:
+        condition: service_healthy
  celery:
    build: .
    command: ["celery", "-A", "pkmntrade_club.django_project", "worker", "-l", "INFO", "-B", "-E"]
@ -27,28 +31,26 @@ services:
      - PUBLIC_HOST=localhost
      - ALLOWED_HOSTS=127.0.0.1,localhost
      - DISABLE_CACHE=false
+    depends_on:
+      db:
+        condition: service_healthy
  redis:
    image: redis:latest
    restart: always
    ports:
      - 6379:6379
-#     depends_on:
-#       db:
-#         condition: service_healthy
-#   db:
-#     image: postgres:16
-#     restart: always
-#     ports:
-#       - 5432:5432
-#     volumes:
-#       - postgres_data:/var/lib/postgresql/data/
-#     environment:
-#       - "POSTGRES_HOST_AUTH_METHOD=trust"
-#     healthcheck:
-#       test: ["CMD", "pg_isready", "-U", "postgres", "-d", "postgres"]
-#       interval: 10s
-#       timeout: 5s
-#       retries: 5
+  db:
+    image: postgres:16
+    restart: always
+    volumes:
+      - postgres_data:/var/lib/postgresql/data/
+    environment:
+      - "POSTGRES_HOST_AUTH_METHOD=trust"
+    healthcheck:
+      test: ["CMD", "pg_isready", "-U", "postgres", "-d", "postgres"]
+      interval: 10s
+      timeout: 5s
+      retries: 5

-# volumes:
-#   postgres_data:
+volumes:
+  postgres_data: