在AWS Fargate中部署Django时,如何将本地ip添加到允许的\u主机中
我正在测试将Django应用程序部署到AWS的Fargate服务中 一切似乎都在运行,但当应用程序负载平衡器使用主机的本地Ip向Django应用程序发送请求时,我收到了运行状况检查错误。这在日志中给了我一个允许的主机错误 无效的HTTP_主机头:“172.31.86.159:8000”。您可能需要将“172.31.86.159”添加到允许的\u主机 我已尝试在任务启动时获取本地ip并将其附加到允许的_主机,但在Fargate下失败:在AWS Fargate中部署Django时,如何将本地ip添加到允许的\u主机中,django,amazon-web-services,aws-fargate,Django,Amazon Web Services,Aws Fargate,我正在测试将Django应用程序部署到AWS的Fargate服务中 一切似乎都在运行,但当应用程序负载平衡器使用主机的本地Ip向Django应用程序发送请求时,我收到了运行状况检查错误。这在日志中给了我一个允许的主机错误 无效的HTTP_主机头:“172.31.86.159:8000”。您可能需要将“172.31.86.159”添加到允许的\u主机 我已尝试在任务启动时获取本地ip并将其附加到允许的_主机,但在Fargate下失败: import requests EC2_PRIVATE_IP
import requests
EC2_PRIVATE_IP = None
try:
EC2_PRIVATE_IP = requests.get('http://169.254.169.254/latest/meta-data/local-ipv4', timeout = 0.01).text
except requests.exceptions.RequestException:
pass
if EC2_PRIVATE_IP:
ALLOWED_HOSTS.append(EC2_PRIVATE_IP)
有没有办法获取ENI IP地址,以便我可以将其附加到允许的主机上?现在可以了,它与文档一致,但我不知道这是最好的方法还是有更好的方法 我的容器在
awsvpchttp://169.254.170.2/v2/metadataimport requests
EC2_PRIVATE_IP = None
METADATA_URI = os.environ.get('ECS_CONTAINER_METADATA_URI', 'http://169.254.170.2/v2/metadata')
try:
resp = requests.get(METADATA_URI)
data = resp.json()
# print(data)
container_meta = data['Containers'][0]
EC2_PRIVATE_IP = container_meta['Networks'][0]['IPv4Addresses'][0]
except:
# silently fail as we may not be in an ECS environment
pass
if EC2_PRIVATE_IP:
# Be sure your ALLOWED_HOSTS is a list NOT a tuple
# or .append() will fail
ALLOWED_HOSTS.append(EC2_PRIVATE_IP)
import os
import requests
EC2_PRIVATE_IP = None
METADATA_URI = os.environ.get('ECS_CONTAINER_METADATA_URI', 'http://169.254.170.2/v2/metadata')
try:
resp = requests.get(METADATA_URI)
data = resp.json()
# print(data)
container_name = os.environ.get('DOCKER_CONTAINER_NAME', None)
search_results = [x for x in data['Containers'] if x['Name'] == container_name]
if len(search_results) > 0:
container_meta = search_results[0]
else:
# Fall back to the pause container
container_meta = data['Containers'][0]
EC2_PRIVATE_IP = container_meta['Networks'][0]['IPv4Addresses'][0]
except:
# silently fail as we may not be in an ECS environment
pass
if EC2_PRIVATE_IP:
# Be sure your ALLOWED_HOSTS is a list NOT a tuple
# or .append() will fail
ALLOWED_HOSTS.append(EC2_PRIVATE_IP)
有没有更好的方法来做这件事,我错过了?同样,这是为了允许应用程序负载平衡器运行状况检查。当使用ECS(Fargate)时,ALB将主机头作为容器的本地IP发送。在Fargate中,AWS容器代理注入了一个环境变量:
${ECS\u container\u METADATA\u URI}curl ${ECS_CONTAINER_METADATA_URI}
{
"DockerId":"redact",
"Name":"redact",
"DockerName":"ecs-redact",
"Image":"redact",
"ImageID":"redact",
"Labels":{ },
"DesiredStatus":"RUNNING",
"KnownStatus":"RUNNING",
"Limits":{ },
"CreatedAt":"2019-04-16T22:39:57.040286277Z",
"StartedAt":"2019-04-16T22:39:57.29386087Z",
"Type":"NORMAL",
"Networks":[
{
"NetworkMode":"awsvpc",
"IPv4Addresses":[
"172.30.1.115"
]
}
]
}
NetworksIPv4AddressMETADATA_URI = os.environ['ECS_CONTAINER_METADATA_URI']
container_metadata = requests.get(METADATA_URI).json()
ALLOWED_HOSTS.append(container_metadata['Networks'][0]['IPv4Addresses'][0])
允许的\u主机from django.http import HttpResponse
from django.utils.deprecation import MiddlewareMixin
class HealthEndpointMiddleware(MiddlewareMixin):
def process_request(self, request):
if request.META["PATH_INFO"] == "/health/":
return HttpResponse("OK")
我们在entrypoint.sh add:
export machineIP=$(echo`curl-s)中也做了类似的事情,它正在工作http://169.254.170.2/v2/metadata`| python-c“导入sys,json;打印json.load(sys.stdin)['Containers'][0]['Networks'][0]['IPv4Addresses'][0]”)container\u meta['Networks'][0]['IPv4Addresses'][0]container\u meta['Networks'][0]['IPv4Addresses']ECS\u container\u METADATA\u URI\u V4