8da89ddd25
Document completed Terraform provisioning of api-gateway-mfe-dev (IP 10.110.198.250), VCN peering requirements, LB routing plan, updated Variable Group info, and checklist status. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
153 lines
4.4 KiB
Markdown
153 lines
4.4 KiB
Markdown
# OCI API Gateways - Completo
|
|
|
|
## Gateway 1: api-gateway-nexus-dev
|
|
|
|
| Propriedade | Valor |
|
|
|-------------|-------|
|
|
| Nome | api-gateway-nexus-dev |
|
|
| Tipo | PRIVATE |
|
|
| Hostname | `dnqe6ufrommkqxtfp7k2ehrbmu.apigateway.sa-saopaulo-1.oci.customer-oci.com` |
|
|
| IP | 10.6.0.123 |
|
|
| Compartment | cmp-dev-nexus |
|
|
| Estado | ACTIVE |
|
|
|
|
### Deployments
|
|
|
|
| Nome | Endpoint |
|
|
|------|----------|
|
|
| auth | /api/auth |
|
|
| user | /api/user |
|
|
| user-external | /api/user-external |
|
|
| user-internal | /api/user-internal |
|
|
| person | /api/person |
|
|
| role | /api/role |
|
|
| sso | /api/sso |
|
|
| cache | /api/cache |
|
|
| poc | /api/poc |
|
|
| commercial-manager | /api/commercial-manager |
|
|
|
|
---
|
|
|
|
## Gateway 2: api-gateway-insign-dev
|
|
|
|
| Propriedade | Valor |
|
|
|-------------|-------|
|
|
| Nome | api-gateway-insign-dev |
|
|
| Tipo | PRIVATE |
|
|
| Hostname | `oyk5unl6ec7a53aychqlvz5bwa.apigateway.sa-saopaulo-1.oci.customer-oci.com` |
|
|
| IP | 10.6.0.33 |
|
|
| Compartment | cmp-dev-insign |
|
|
| Estado | ACTIVE |
|
|
|
|
### Deployments
|
|
|
|
| Nome | Endpoint |
|
|
|------|----------|
|
|
| insign-deploy-dev | /insign |
|
|
| insing-dev | / |
|
|
| root | / |
|
|
|
|
---
|
|
|
|
## Gateway 3: api-gateway-mfe-dev (Terraform-managed)
|
|
|
|
| Propriedade | Valor |
|
|
|-------------|-------|
|
|
| Nome | api-gateway-mfe-dev |
|
|
| Tipo | PRIVATE |
|
|
| OCID | `ocid1.apigateway.oc1.sa-saopaulo-1.amaaaaaasks3yliabdiquogy2pqyohas4wjopizv2xzgzrclmsvsh4x7ewea` |
|
|
| Hostname | `guhal72tzyekzchzamhhi3lvgi.apigateway.sa-saopaulo-1.oci.customer-oci.com` |
|
|
| IP | 10.110.198.250 |
|
|
| VCN | vcn-oke (10.110.0.0/16) |
|
|
| Subnet | sbn-api-gateway (10.110.192.0/20) |
|
|
| Compartment | DEV (`ocid1.compartment.oc1..aaaaaaaa76x3nykkjwvctpr6px34dysu3pbg7p62h2r65fegt7fvbrioll3a`) |
|
|
| Estado | ACTIVE |
|
|
| Gerenciado por | Terraform (`tf_oci_clusters/modules/api_gateway_mfe`) |
|
|
| Criado em | 2026-02-22 (pipeline build #5964) |
|
|
|
|
### Deployments
|
|
|
|
| Nome | Path | Backend | Descrição |
|
|
|------|------|---------|-----------|
|
|
| deploy-mfe-user-dev | / | Object Storage `nexus-mfe-user-development` | SPA Angular - index.html |
|
|
| deploy-mfe-user-dev | /{path*} | Object Storage `nexus-mfe-user-development` | Arquivos estáticos (JS/CSS/assets) |
|
|
|
|
### Acesso
|
|
|
|
| Tipo | URL |
|
|
|------|-----|
|
|
| Direto (privado) | `https://guhal72tzyekzchzamhhi3lvgi.apigateway.sa-saopaulo-1.oci.customer-oci.com/` |
|
|
| Planejado (DNS) | `https://mfe-user-dev.invista.com.br` (pendente VCN peering + LB + Cloudflare) |
|
|
|
|
### Terraform
|
|
|
|
```hcl
|
|
# environments/dev/api_gateway_mfe.tf
|
|
module "api_gateway_mfe" {
|
|
source = "../../modules/api_gateway_mfe"
|
|
compartment_id = local.compartment_id
|
|
subnet_id = module.network.api_gateway_subnet_id
|
|
env_name = var.env_name
|
|
display_name = "api-gateway-mfe"
|
|
mfe_deployments = [{
|
|
name = "mfe-user"
|
|
bucket_name = "nexus-mfe-user-development"
|
|
region = "sa-saopaulo-1"
|
|
object_namespace = var.mfe_object_namespace # grbb7qzeuoag
|
|
}]
|
|
}
|
|
```
|
|
|
|
### Pendencias
|
|
|
|
- [ ] VCN Peering: Attach dev VCN ao DRG-Invista-Shared
|
|
- [ ] Rota no LB Test_Crivo_Dev: backend set apontando para 10.110.198.250:443
|
|
- [ ] Routing policy: hostname `mfe-user-dev.invista.com.br`
|
|
- [ ] DNS Cloudflare: CNAME `mfe-user-dev` -> LB IP (via Cloudflare proxy)
|
|
|
|
---
|
|
|
|
## Frontends Estaticos (Buckets)
|
|
|
|
| Bucket | URL | Descricao |
|
|
|--------|-----|-----------|
|
|
| app-front-insign-teste | Cloudflare + OCI | Site estatico de teste |
|
|
| front | - | Icones SVG |
|
|
| nexus-mfe-shell-development | - | Shell MFE Angular |
|
|
| nexus-mfe-auth-development | - | MFE Auth |
|
|
| nexus-mfe-user-development | API Gateway MFE dev | MFE User (servido via api-gateway-mfe-dev) |
|
|
| nexus-mfe-person-development | - | MFE Person |
|
|
|
|
---
|
|
|
|
## Conectividade de Rede
|
|
|
|
### VCNs envolvidas
|
|
|
|
| VCN | CIDR | Componentes |
|
|
|-----|------|-------------|
|
|
| VCN-Shared | 10.8.0.0/16 | LB Test_Crivo_Dev (10.8.4.127) |
|
|
| vcn-oke (dev) | 10.110.0.0/16 | API Gateway MFE (10.110.198.250), OKE clusters |
|
|
|
|
### DRG (Dynamic Routing Gateway)
|
|
|
|
| Propriedade | Valor |
|
|
|-------------|-------|
|
|
| Nome | DRG-Invista-Shared |
|
|
| OCID | `ocid1.drg.oc1.sa-saopaulo-1.aaaaaaaazuiluiavm3zcrzelqs2f3k3sdy3fka5yytwjua37a2ksn446deza` |
|
|
| VCN-Shared | Attached |
|
|
| vcn-oke (dev) | **Pendente** - necessario para LB acessar API Gateway |
|
|
|
|
### Fluxo de rede planejado
|
|
|
|
```
|
|
Browser -> Cloudflare (mfe-user-dev.invista.com.br)
|
|
-> LB Test_Crivo_Dev (10.8.4.127, VCN-Shared)
|
|
-> DRG-Invista-Shared (VCN peering)
|
|
-> API Gateway MFE (10.110.198.250, vcn-oke)
|
|
-> Object Storage (nexus-mfe-user-development)
|
|
```
|
|
|
|
---
|
|
|
|
*Atualizado em: 2026-02-23*
|