API
Leek API is a Flask Restful Application built using python and served by Gunicorn web server. it acts as a proxy between Leek Agent and Elasticsearch and between Leek WEB and Elasticsearch. Leek API receives events from Leek Agent and index them into Elasticsearch.
Process events:
Leek API expose the /v1/events/process webhooks endpoint to Leek Agents, this endpoint is secured using API key
header, for every wehbhook event this endpoint:
Authenticate/Authorize the request by searching for an application with the same value in
x-leek-app-key,x-leek-app-nameandx-leek-org-nameheaders, if not found will returnUNAUTHORIZED, otherwise it will get the application and add it to the request context.Validate the webhook events with
TaskSchemaandWorkerSchema.Adapt the json validated events into
TaskandWorkerobjects.Search in elasticsearch for tasks with similar IDs:
- Index the new event if no document matching the new event is found.
- Upsert the existing document with new event if a document is found and there are no conflicts.
- If a conflict is detected, Leek resolves the conflict, merge and reindex the document.
- Go through notification pipeline and notify any event matching the rules in the trigger.
Search events:
Leek API expose the /v1/search proxy endpoint to Leek WEB, this endpoint is secured using JWT tokens authorizer and
it is used for:
- Filtering tasks
- Filtering workers
- Running basic metrics aggregations
- Running issues aggregations
- Running charts aggregations
Applications management:
Leek API expose multiple endpoints for managing applications, these endpoints are secured using JWT tokens authorizer and used for:
Listing applications and triggers -
permissions:allCreating applications -
permissions:allCreating triggers -
permissions:ownerEditing triggers -
permissions:ownerDeleting triggers -
permissions:ownerDeleting application -
permissions:ownerPurging application -
permissions:ownerCleaning application -
permissions:owner
Some actions can be called by all authenticated users and some can only be called by the application owner (the user who created the application the first time)