otlp2pipeline 0.3.2

OTLP ingestion worker for Cloudflare Pipelines and AWS
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470

use bytes::Bytes;
use time::format_description::well_known::Rfc3339;
use tracing_subscriber::fmt::format::Pretty;
use tracing_subscriber::fmt::time::UtcTime;
use tracing_subscriber::prelude::*;
use tracing_web::{performance_layer, MakeWebConsoleWriter};
use worker::*;

use crate::handler;
use crate::livetail::WasmLiveTailSender;
use crate::parse_content_metadata;
use crate::pipeline::PipelineClient;
use crate::registry::{RegistrySender, WasmRegistrySender};
use crate::signal::Signal;
use crate::stats::{handle_all_services_stats, handle_stats_query};
use crate::InputFormat;

/// Add CORS headers to a response.
/// Creates a new response to handle immutable headers from Durable Objects.
fn with_cors(response: Response) -> Result<Response> {
    let headers = Headers::new();
    headers.set("Access-Control-Allow-Origin", "*")?;
    headers.set(
        "Access-Control-Allow-Methods",
        "GET, POST, PUT, DELETE, OPTIONS",
    )?;
    headers.set(
        "Access-Control-Allow-Headers",
        "Content-Type, Accept, Content-Encoding, Authorization, X-User-Agent, X-Iceberg-Access-Delegation",
    )?;
    headers.set("Access-Control-Max-Age", "86400")?;

    // Copy original headers
    for (key, value) in response.headers() {
        // Don't overwrite CORS headers
        if !key.to_lowercase().starts_with("access-control-") {
            headers.set(&key, &value)?;
        }
    }

    Ok(Response::from_body(response.body().clone())?
        .with_status(response.status_code())
        .with_headers(headers))
}

/// Handle CORS preflight OPTIONS requests.
fn cors_preflight() -> Result<Response> {
    with_cors(Response::empty()?.with_status(204))
}

/// Validate bearer token if AUTH_TOKEN env var is set.
/// Returns Ok(()) if auth is valid or not required, Err(Response) if unauthorized.
fn check_auth(req: &Request, env: &Env) -> Result<()> {
    // Auth disabled if AUTH_TOKEN is missing or empty
    let expected_token = match env
        .var("AUTH_TOKEN")
        .ok()
        .map(|v| v.to_string())
        .filter(|t| !t.is_empty())
    {
        Some(token) => token,
        None => return Ok(()),
    };

    let auth_header = req
        .headers()
        .get("Authorization")
        .ok()
        .flatten()
        .ok_or_else(|| Error::from("Unauthorized: missing Authorization header"))?;

    let provided_token = auth_header
        .strip_prefix("Bearer ")
        .ok_or_else(|| Error::from("Unauthorized: invalid Authorization header format"))?;

    if provided_token != expected_token {
        return Err(Error::from("Unauthorized: invalid token"));
    }

    Ok(())
}

/// Initialize tracing and VRL programs for Cloudflare Workers.
/// Must be called via #[event(start)] to run once on worker initialization.
#[event(start)]
fn init() {
    // JSON formatting layer that writes to the Workers console
    let fmt_layer = tracing_subscriber::fmt::layer()
        .json()
        .flatten_event(true)
        .with_ansi(false)
        .with_timer(UtcTime::new(Rfc3339))
        .with_writer(MakeWebConsoleWriter::new());

    let perf_layer = performance_layer().with_details_from_fields(Pretty::default());

    tracing_subscriber::registry()
        .with(fmt_layer)
        .with(perf_layer)
        .init();

    // Pre-compile VRL programs to avoid cold-start latency
    #[cfg(target_arch = "wasm32")]
    otlp2records::transform::init_programs();
}

#[event(fetch)]
pub async fn main(req: Request, env: Env, ctx: Context) -> Result<Response> {
    let method = req.method();
    let path = req.path();

    // Handle CORS preflight for all API endpoints
    if method == Method::Options {
        return cors_preflight();
    }

    // Check auth for all endpoints except /health
    if path != "/health" {
        if let Err(e) = check_auth(&req, &env) {
            return with_cors(Response::error(e.to_string(), 401)?);
        }
    }

    let response = match (method, path.as_str()) {
        (Method::Post, "/v1/logs") => handle_logs_worker(req, env, ctx).await,
        (Method::Post, "/v1/traces") => handle_traces_worker(req, env, ctx).await,
        (Method::Post, "/v1/metrics") => handle_metrics_worker(req, env, ctx).await,
        (Method::Get, "/health") => Response::ok("ok"),
        (Method::Get, "/v1/config") => handle_config(env),
        (Method::Get, "/v1/services") => handle_services_list(env).await,
        (Method::Get, "/v1/metrics") => handle_metrics_list(env).await,
        // All-services stats: /v1/services/stats?signal=logs|traces
        (Method::Get, "/v1/services/stats") => handle_all_services_stats(req, env).await,
        // Per-service stats: /v1/services/:service/:signal/stats
        (Method::Get, path) if path.starts_with("/v1/services/") && path.ends_with("/stats") => {
            handle_stats_query(path, req, env).await
        }
        // Live tail WebSocket upgrade - return directly without CORS wrapper
        // WebSocket responses use status 101 which can't be reconstructed
        (Method::Get, path) if path.starts_with("/v1/tail/") => {
            return handle_tail_upgrade(path, req, env).await;
        }
        // R2 Data Catalog proxy for browser DuckDB (CORS workaround)
        (_, path) if path.starts_with("/v1/iceberg/") => handle_iceberg_proxy(path, req, env).await,
        _ => Response::error("Not Found", 404),
    };

    // Add CORS headers to all responses, including errors
    match response {
        Ok(r) => with_cors(r),
        Err(e) => with_cors(Response::error(e.to_string(), 500)?),
    }
}

async fn handle_signal_worker<H: handler::SignalHandler>(
    mut req: Request,
    env: Env,
    ctx: Context,
) -> Result<Response> {
    let body_bytes = req.bytes().await?;
    let (is_gzipped, decode_format) = parse_worker_headers(&req);
    let client = PipelineClient::from_worker_env(&env)?;

    // Initialize aggregator sender for dual-write
    let cache = crate::aggregator::WasmAggregatorSender::new(env.clone());

    // Initialize livetail sender for triple-write
    let livetail = WasmLiveTailSender::new(env.clone());

    match handler::handle_signal_with_cache::<H, _, _, _>(
        Bytes::from(body_bytes),
        is_gzipped,
        decode_format,
        &client,
        Some(&cache),
        Some(&livetail),
    )
    .await
    {
        Ok(resp) => {
            // Fire-and-forget service registration for discovered services
            if !resp.service_names.is_empty() {
                let env_clone = env.clone();
                let service_names = resp.service_names.clone();
                let signal = H::SIGNAL;
                ctx.wait_until(async move {
                    register_services(&env_clone, &service_names, signal).await;
                });
            }
            // Fire-and-forget metric registration for discovered metrics
            if !resp.metric_names.is_empty() {
                let env_clone = env.clone();
                let metric_names = resp.metric_names.clone();
                ctx.wait_until(async move {
                    register_metrics(&env_clone, &metric_names).await;
                });
            }
            Response::from_json(&resp)
        }
        Err(e) => Response::error(e.to_string(), 400),
    }
}

async fn handle_metrics_worker(req: Request, env: Env, ctx: Context) -> Result<Response> {
    handle_signal_worker::<handler::MetricsHandler>(req, env, ctx).await
}

async fn handle_logs_worker(req: Request, env: Env, ctx: Context) -> Result<Response> {
    handle_signal_worker::<handler::LogsHandler>(req, env, ctx).await
}

async fn handle_traces_worker(req: Request, env: Env, ctx: Context) -> Result<Response> {
    handle_signal_worker::<handler::TracesHandler>(req, env, ctx).await
}

fn parse_worker_headers(req: &Request) -> (bool, InputFormat) {
    parse_content_metadata(|name| {
        req.headers()
            .get(name)
            .ok()
            .flatten()
            .map(|s| s.to_string())
    })
}

/// Register services with RegistryDO (fire-and-forget helper).
async fn register_services(env: &Env, service_names: &[String], signal: Signal) {
    if service_names.is_empty() {
        return;
    }

    let sender = WasmRegistrySender::new(env.clone());

    if let Err(e) = sender
        .register_services(service_names.to_vec(), signal)
        .await
    {
        tracing::warn!(error = %e, signal = ?signal, "Failed to register services");
    }
}

/// Register metrics with RegistryDO (fire-and-forget helper).
async fn register_metrics(env: &Env, metric_names: &[(String, String)]) {
    if metric_names.is_empty() {
        return;
    }

    let sender = WasmRegistrySender::new(env.clone());

    if let Err(e) = sender.register_metrics(metric_names.to_vec()).await {
        tracing::warn!(error = %e, "Failed to register metrics");
    }
}

async fn handle_services_list(env: Env) -> Result<Response> {
    let sender = WasmRegistrySender::new(env);

    match sender.get_all_services().await {
        Ok(services) => Response::from_json(&services),
        Err(e) => Response::error(format!("Failed to get services: {}", e), 500),
    }
}

async fn handle_metrics_list(env: Env) -> Result<Response> {
    let sender = WasmRegistrySender::new(env);

    match sender.get_all_metrics().await {
        Ok(metrics) => Response::from_json(&metrics),
        Err(e) => Response::error(format!("Failed to get metrics: {}", e), 500),
    }
}

/// Return R2 catalog configuration for frontend DuckDB connection.
/// The token is provided by the client - the proxy just forwards it.
fn handle_config(env: Env) -> Result<Response> {
    let account_id = env.var("R2_CATALOG_ACCOUNT_ID").map(|v| v.to_string()).ok();
    let bucket_name = env.var("R2_CATALOG_BUCKET").map(|v| v.to_string()).ok();
    let mut missing = Vec::new();
    if account_id.is_none() {
        missing.push("R2_CATALOG_ACCOUNT_ID");
    }
    if bucket_name.is_none() {
        missing.push("R2_CATALOG_BUCKET");
    }
    if !missing.is_empty() {
        tracing::warn!(
            missing = ?missing,
            "Iceberg catalog proxy disabled: missing configuration"
        );
    }

    #[derive(serde::Serialize)]
    #[serde(rename_all = "camelCase")]
    struct ConfigResponse {
        account_id: Option<String>,
        bucket_name: Option<String>,
        iceberg_proxy_enabled: bool,
    }

    let config = ConfigResponse {
        iceberg_proxy_enabled: missing.is_empty(),
        account_id,
        bucket_name,
    };

    Response::from_json(&config)
}

/// Proxy requests to R2 Data Catalog to work around browser CORS restrictions.
/// Forwards the client's Authorization header to catalog.cloudflarestorage.com.
///
/// Path format: /v1/iceberg/{rest_of_path}
/// Environment variables required:
///   - R2_CATALOG_ACCOUNT_ID: Cloudflare account ID
///   - R2_CATALOG_BUCKET: R2 bucket name
/// Client must provide Authorization header with R2 API token.
async fn handle_iceberg_proxy(path: &str, mut req: Request, env: Env) -> Result<Response> {
    // Require Authorization header from client
    let auth_header = req
        .headers()
        .get("Authorization")
        .ok()
        .flatten()
        .ok_or_else(|| Error::from("Authorization header required"))?;

    // Get configuration from environment
    let account_id = env
        .var("R2_CATALOG_ACCOUNT_ID")
        .map(|v| v.to_string())
        .map_err(|_| Error::from("R2_CATALOG_ACCOUNT_ID not configured"))?;
    let bucket = env
        .var("R2_CATALOG_BUCKET")
        .map(|v| v.to_string())
        .map_err(|_| Error::from("R2_CATALOG_BUCKET not configured"))?;

    // Extract the path after /v1/iceberg/
    let catalog_path = path.trim_start_matches("/v1/iceberg");

    // Build the target URL
    let catalog_base = format!(
        "https://catalog.cloudflarestorage.com/{}/{}",
        account_id, bucket
    );
    let target_url = if catalog_path.is_empty() || catalog_path == "/" {
        catalog_base
    } else {
        format!("{}{}", catalog_base, catalog_path)
    };

    // Preserve query string if present
    let url = req.url()?;
    let target_url = if let Some(query) = url.query() {
        format!("{}?{}", target_url, query)
    } else {
        target_url
    };

    // Build headers for the proxied request - forward client's auth
    let headers = Headers::new();
    headers.set("Authorization", &auth_header)?;

    // Copy relevant headers from original request
    if let Ok(Some(content_type)) = req.headers().get("Content-Type") {
        headers.set("Content-Type", &content_type)?;
    }
    if let Ok(Some(accept)) = req.headers().get("Accept") {
        headers.set("Accept", &accept)?;
    }

    // Get method and body before creating request
    let method = req.method();
    let is_body_request = method == Method::Post || method == Method::Put;
    let body = if is_body_request {
        Some(req.bytes().await?)
    } else {
        None
    };

    // Create the proxied request
    let mut init = RequestInit::new();
    init.with_method(method);
    init.with_headers(headers);
    if let Some(b) = body {
        init.with_body(Some(b.into()));
    }

    let proxy_req = Request::new_with_init(&target_url, &init)?;

    // Execute the request
    let response = Fetch::Request(proxy_req).send().await?;

    // Log non-2xx responses for debugging catalog issues
    if response.status_code() >= 400 {
        tracing::warn!(
            status = response.status_code(),
            path = catalog_path,
            "R2 catalog proxy received error response"
        );
    }

    Ok(response)
}

async fn handle_tail_upgrade(path: &str, req: Request, env: Env) -> Result<Response> {
    // Parse path: /v1/tail/:service/:signal
    let parts: Vec<&str> = path.trim_start_matches("/v1/tail/").split('/').collect();

    if parts.len() < 2 {
        return Response::error("Invalid path. Use /v1/tail/:service/:signal", 400);
    }

    let service = parts[0];
    let signal = parts[1];

    // Validate signal
    if signal != "logs" && signal != "traces" {
        return Response::error("Signal must be 'logs' or 'traces'", 400);
    }

    // Validate service name (same rules as aggregator)
    if service.is_empty()
        || service.len() > 128
        || !service
            .chars()
            .all(|c| c.is_alphanumeric() || c == '-' || c == '_' || c == '.')
    {
        return Response::error("Invalid service name", 400);
    }

    let do_name = format!("{}:{}", service, signal);

    let namespace = env.durable_object("LIVETAIL")?;
    let id = namespace.id_from_name(&do_name)?;
    let stub = id.get_stub()?;

    // Build headers for WebSocket upgrade
    let headers = worker::Headers::new();
    if let Ok(Some(upgrade)) = req.headers().get("Upgrade") {
        headers.set("Upgrade", &upgrade)?;
    }
    if let Ok(Some(key)) = req.headers().get("Sec-WebSocket-Key") {
        headers.set("Sec-WebSocket-Key", &key)?;
    }
    if let Ok(Some(version)) = req.headers().get("Sec-WebSocket-Version") {
        headers.set("Sec-WebSocket-Version", &version)?;
    }

    let do_request = worker::Request::new_with_init(
        "http://do/websocket",
        worker::RequestInit::new()
            .with_method(worker::Method::Get)
            .with_headers(headers),
    )?;

    // Forward to Durable Object and return response directly
    // Note: WebSocket responses (status 101) cannot be modified or wrapped with CORS
    stub.fetch_with_request(do_request).await
}

// Re-export AggregatorDO from aggregator module
#[allow(unused_imports)]
pub use crate::aggregator::AggregatorDO;

// Re-export RegistryDO from registry module
#[allow(unused_imports)]
pub use crate::registry::RegistryDO;

// Re-export LiveTailDO from livetail module
#[allow(unused_imports)]
pub use crate::livetail::LiveTailDO;