-
Notifications
You must be signed in to change notification settings - Fork 19
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Should the callback plugin be talking directly to the database? #106
Comments
Deleted my two previous unrelevant comments. This is a summary of what I think:
Let's take for example nova, there's:
Does a segmentation like that make sense for ARA ? I think so. Right now we have everything talking to the database. We could probably have an internal API and then have everything use that internal API instead. The (eventual) HTTP REST API could just almost passthrough to the internal API. There could be a toggle between internal and external api if people want to use REST instead, but then it brings the whole concept of authentication and stuff I didn't want to have to worry about. I know there's a lot of work hidden behind something like that but it's probably something we'll need to do one day or another ... |
The problem with the nova analogy, of course, is that all of those tools - novaclient, opentackclient, horizon, etc. -- expect the Nova API server to be running, and communicate only via the REST API rather than talking to the database directly...which sounds like the situation you are arguing against. I think we're going to need to go that way eventually, even for the callback. |
Agree with @larsks on this one, would definitely be cleaner to talk to the API, also allows us to use basicAuth/TLS/HMAC for authentication with little extra effort. |
@Malet a proper API and segmentation of the different components (client/api/server) is still in the roadmap but it will be quite a significant amount of work. It's probably one of the next large feature set we'll be working on as ARA has reached a certain level of maturity at this point. |
Should the callback plugin be connecting directly to the database? That means that any machine that runs Ansible needs to have direct read/write access to the database server. I can see this making a lot of people uncomfortable.
Should ARA have a REST API that can be used by the callback plugin in lieu of direct database access?
The text was updated successfully, but these errors were encountered: