fix(helm): improve session routing and CORS handling

- Add http-snippet with map function to extract sessionID from peerId - Update ingress annotations for Assist chart - Add proper CORS headers to support cross-origin requests - Remove debugging headers that were previously enabled Signed-off-by: rjshrjndrn <rjshrjndrn@gmail.com>
2025-03-22 20:10:52 +01:00 · 2025-03-22 20:10:52 +01:00 · e6eb41536d
commit e6eb41536d
parent 4b3ad60565
2 changed files with 25 additions and 6 deletions
--- a/scripts/helmcharts/openreplay/charts/assist/templates/ingress.yaml
+++ b/scripts/helmcharts/openreplay/charts/assist/templates/ingress.yaml
@ -11,12 +11,24 @@ metadata:
  annotations:
    nginx.ingress.kubernetes.io/rewrite-target: /$1
    nginx.ingress.kubernetes.io/configuration-snippet: |
-      # Extract sessionID from peerId using regex
-      if ($arg_peerId ~ ".*-(?<extracted_sid>[^-]+)-.*") {
-        set $session_id $extracted_sid;
-      }
-      add_header X-Debug-Session-ID $session_id;
-      add_header X-Debug-Session-Type "wss";
+      #set $sticky_used "no";
+      #if ($sessionid != "") {
+      #  set $sticky_used "yes";
+      #}
+
+      #add_header X-Debug-Session-ID $sessionid;
+      #add_header X-Debug-Session-Type "wss";
+      #add_header X-Sticky-Session-Used $sticky_used;
+      #add_header X-Upstream-Server $upstream_addr;
+
+      proxy_hide_header access-control-allow-headers;
+      proxy_hide_header Access-Control-Allow-Origin;
+      add_header 'Access-Control-Allow-Origin' $http_origin always;
+      add_header 'Access-Control-Allow-Methods' 'GET, OPTIONS' always;
+      add_header 'Access-Control-Allow-Headers' 'sessionid, Content-Type, Authorization' always;
+      add_header 'Access-Control-Max-Age' 1728000;
+      add_header 'Content-Type' 'text/plain charset=UTF-8';
+
    nginx.ingress.kubernetes.io/upstream-hash-by: $session_id

  {{- with .Values.ingress.annotations }}
--- a/scripts/helmcharts/openreplay/values.yaml
+++ b/scripts/helmcharts/openreplay/values.yaml
@ -17,6 +17,13 @@ redis: &redis
 ingress-nginx:
  enabled: true
  controller:
+    config:
+      http-snippet: |-
+        # Extract sessionid from peerId, it'll be used for sticky session.
+        map $arg_peerId $sessionid {
+          default "";
+          "~.*-(\d+)(?:-.*|$)" $1;
+        }
    admissionWebhooks:
      patch:
        podAnnotations: