apollo-router 2.13.1

A configurable, high-performance routing runtime for Apollo Federation 🚀
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188

//! Runtime diagnostics plugin for the Apollo Router
//!
//! Provides an interactive web dashboard and API endpoints for debugging and profiling router
//! behavior in production or development environments. Useful for investigating performance issues,
//! memory leaks, and understanding router configuration.
//!
//! ## Use Cases
//!
//! - **Memory profiling**: Track heap allocations and identify memory leaks in long-running routers
//! - **Configuration debugging**: Inspect active router configuration and supergraph schema
//! - **System diagnostics**: Collect system information (OS, CPU, memory, network) for support tickets
//! - **Diagnostic export**: Generate comprehensive snapshot archives for offline analysis
//!
//! ## Architecture
//!
//! The plugin exposes a nested Axum router under `/diagnostics` with three main subsystems:
//!
//! - **Dashboard** (`html_generator`): Interactive web UI for visualizing router state
//! - **Memory Service** (`memory`): Jemalloc heap profiling with start/stop/dump control
//! - **Export Service** (`export`): Bundles configuration, schema, system info, and memory dumps
//!
//! All endpoints return structured JSON or serve static resources. The memory service uses
//! jemalloc's profiling API (Linux-only) with graceful degradation on other platforms.
//!
//! ## Security
//!
//! **WARNING: This plugin is disabled by default.** When enabled, it binds to `127.0.0.1:8089` to prevent
//! network exposure. Only enable in trusted environments with network isolation, as endpoints
//! expose sensitive configuration data and memory contents.
//! Do not expose this endpoint directly to the internet.
//!
//! ## Platform Support
//!
//! Available on all platforms. Memory profiling features require Linux with jemalloc allocator
//! (enabled via `global-allocator` feature). Other diagnostic features work cross-platform.

use std::path::PathBuf;
use std::sync::Arc;

use multimap::MultiMap;
use schemars::JsonSchema;
use serde::Deserialize;
use serde::Serialize;
use tower::BoxError;

use crate::Endpoint;
use crate::configuration::ListenAddr;
use crate::plugin::Plugin;
use crate::plugin::PluginInit;

mod archive_utils;
mod constants;
mod export;
mod html_generator;
mod memory;
mod response_builder;
mod security;
mod service;
mod static_resources;
pub(crate) mod system_info;

#[cfg(test)]
mod tests;

/// Simplified error types for the diagnostics plugin
#[derive(Debug, thiserror::Error)]
pub(crate) enum DiagnosticsError {
    /// I/O operation errors
    #[error("I/O error: {0}")]
    Io(#[from] std::io::Error),

    /// HTTP response errors
    #[error("HTTP error: {0}")]
    Http(#[from] http::Error),

    /// JSON serialization/deserialization errors
    #[error("JSON error: {0}")]
    Json(#[from] serde_json::Error),

    /// Jemalloc/memory profiling errors
    #[error("Memory profiling error: {0}")]
    #[cfg_attr(
        not(all(target_family = "unix", feature = "global-allocator")),
        allow(dead_code)
    )]
    Memory(String),

    /// Internal errors (catch-all)
    #[error("Internal error: {0}")]
    Internal(String),
}

/// Result type alias for diagnostics operations
pub(crate) type DiagnosticsResult<T> = Result<T, DiagnosticsError>;

impl From<String> for DiagnosticsError {
    fn from(error: String) -> Self {
        DiagnosticsError::Internal(error)
    }
}

/// Configuration for the diagnostics plugin
///
/// **Platform Requirements**: This plugin is supported on all platforms.
/// Heap dump functionality is only available on Linux platforms due to
/// jemalloc requirements. Other diagnostic features work across platforms.
#[derive(Clone, Debug, Deserialize, Serialize, JsonSchema)]
#[serde(deny_unknown_fields)]
#[serde(default)]
pub(crate) struct Config {
    /// Enable the diagnostics plugin
    pub(crate) enabled: bool,

    /// The socket address and port to listen on
    /// Defaults to 127.0.0.1:8089
    /// Do not expose this endpoint to the internet as it exposes sensitive information.
    pub(crate) listen: ListenAddr,

    /// Directory path for memory dump files
    /// Defaults to "/tmp/router-diagnostics" on Unix, or temp directory on other platforms
    ///
    /// This directory will be created automatically if it doesn't exist.
    /// Note: Memory dumps are only generated on Linux platforms.
    pub(crate) output_directory: PathBuf,
}

impl Default for Config {
    fn default() -> Self {
        Self {
            // SECURITY: Plugin disabled by default to prevent accidental exposure
            // Diagnostics endpoints expose sensitive information and should only be enabled
            // during development/debugging with network isolation.
            enabled: false,

            // SECURITY: Bind to localhost only by default to prevent network exposure
            // Using 127.0.0.1 instead of 0.0.0.0 ensures the diagnostic endpoints
            // are only accessible from the local machine, not from the network
            listen: constants::network::default_listen_addr().into(),

            output_directory: PathBuf::from("/tmp/router-diagnostics"),
        }
    }
}

/// The diagnostics plugin
#[derive(Debug, Clone)]
struct DiagnosticsPlugin {
    config: Config,
    router_config: Arc<str>,
    supergraph_schema: Arc<String>,
}

#[async_trait::async_trait]
impl Plugin for DiagnosticsPlugin {
    type Config = Config;

    async fn new(init: PluginInit<Self::Config>) -> Result<Self, BoxError> {
        Ok(Self {
            config: init.config,
            supergraph_schema: init.supergraph_sdl,
            router_config: init.raw_yaml.unwrap_or(Arc::from("")),
        })
    }

    fn web_endpoints(&self) -> MultiMap<ListenAddr, Endpoint> {
        if !self.config.enabled {
            return MultiMap::new();
        }

        let router = service::create_router(
            &self.config.output_directory,
            self.router_config.clone(),
            self.supergraph_schema.clone(),
        );

        let mut map = MultiMap::new();
        let endpoint = Endpoint::from_router("/diagnostics".to_string(), router);

        tracing::info!(
            "Diagnostics endpoints at {}/diagnostics",
            self.config.listen
        );
        map.insert(self.config.listen.clone(), endpoint);
        map
    }
}

register_plugin!("apollo", "experimental_diagnostics", DiagnosticsPlugin);