haproxy-mcp

kaffa/haproxy-mcp

Fork 0

Commit Graph

Author	SHA1	Message	Date
kaffa	46c86b62f2	fix: HAProxy batch commands and improve routing/subdomain handling - Fix haproxy_cmd_batch to send each command on separate connection (HAProxy Runtime API only processes first command on single connection) - HTTP frontend now routes to backends instead of redirecting to HTTPS - Add subdomain detection to avoid duplicate wildcard entries - Add reload verification with retry logic - Optimize SSL: TLS 1.3 ciphersuites, extended session lifetime - Add CPU steal monitoring script Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-02-03 11:46:04 +09:00
kaffa	79254835e9	feat: Zero-downtime certificate management via Runtime API Changes: - Replace USR2 signal reload with HAProxy Runtime API for cert updates - new ssl cert → set ssl cert → commit ssl cert - No connection drops during certificate changes - Add certificates.json for persistence (domain list only) - Add haproxy_load_cert tool for manual certificate loading - Auto-restore certificates on MCP startup - Update startup sequence to load both servers and certificates certificates.json format: { "domains": ["inouter.com", "anvil.it.com"] } Paths derived from convention: - Host: /opt/haproxy/certs/{domain}.pem - Container: /etc/haproxy/certs/{domain}.pem Total MCP tools: 28 → 29 Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-02-02 04:23:28 +00:00
kaffa	7bee373684	refactor: Modularize MCP server with command batching - Split monolithic mcp/server.py (1874 lines) into haproxy_mcp/ package: - config.py: Configuration constants and environment variables - exceptions.py: Custom exception classes - validation.py: Input validation functions - haproxy_client.py: HAProxy Runtime API client with batch support - file_ops.py: Atomic file operations with locking - utils.py: CSV parsing utilities - tools/: MCP tools organized by function - domains.py: Domain management (3 tools) - servers.py: Server management (7 tools) - health.py: Health checks (3 tools) - monitoring.py: Monitoring (4 tools) - configuration.py: Config management (4 tools) - Add haproxy_cmd_batch() for sending multiple commands in single TCP connection - Optimize server operations: 1 connection instead of 2 per server - Optimize startup restore: All servers in 1 connection (was 2×N) - Update type hints to Python 3.9+ style (built-in generics) - Remove unused imports and functions - Update CLAUDE.md with new structure and performance notes Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>	2026-02-02 03:50:42 +00:00

Author

SHA1

Message

Date

kaffa

46c86b62f2

fix: HAProxy batch commands and improve routing/subdomain handling

- Fix haproxy_cmd_batch to send each command on separate connection
  (HAProxy Runtime API only processes first command on single connection)
- HTTP frontend now routes to backends instead of redirecting to HTTPS
- Add subdomain detection to avoid duplicate wildcard entries
- Add reload verification with retry logic
- Optimize SSL: TLS 1.3 ciphersuites, extended session lifetime
- Add CPU steal monitoring script

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-03 11:46:04 +09:00

kaffa

79254835e9

feat: Zero-downtime certificate management via Runtime API

Changes:
- Replace USR2 signal reload with HAProxy Runtime API for cert updates
  - new ssl cert → set ssl cert → commit ssl cert
  - No connection drops during certificate changes
- Add certificates.json for persistence (domain list only)
- Add haproxy_load_cert tool for manual certificate loading
- Auto-restore certificates on MCP startup
- Update startup sequence to load both servers and certificates

certificates.json format:
{
  "domains": ["inouter.com", "anvil.it.com"]
}

Paths derived from convention:
- Host: /opt/haproxy/certs/{domain}.pem
- Container: /etc/haproxy/certs/{domain}.pem

Total MCP tools: 28 → 29

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-02 04:23:28 +00:00

kaffa

7bee373684

refactor: Modularize MCP server with command batching

- Split monolithic mcp/server.py (1874 lines) into haproxy_mcp/ package:
  - config.py: Configuration constants and environment variables
  - exceptions.py: Custom exception classes
  - validation.py: Input validation functions
  - haproxy_client.py: HAProxy Runtime API client with batch support
  - file_ops.py: Atomic file operations with locking
  - utils.py: CSV parsing utilities
  - tools/: MCP tools organized by function
    - domains.py: Domain management (3 tools)
    - servers.py: Server management (7 tools)
    - health.py: Health checks (3 tools)
    - monitoring.py: Monitoring (4 tools)
    - configuration.py: Config management (4 tools)

- Add haproxy_cmd_batch() for sending multiple commands in single TCP connection
- Optimize server operations: 1 connection instead of 2 per server
- Optimize startup restore: All servers in 1 connection (was 2×N)
- Update type hints to Python 3.9+ style (built-in generics)
- Remove unused imports and functions
- Update CLAUDE.md with new structure and performance notes

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2026-02-02 03:50:42 +00:00

3 Commits