hippo-cli 1.1.0 → 1.1.1

data/cli/package_test.rb

@@ -0,0 +1,21 @@
+# frozen_string_literal: true
+
+command :'package:test' do
+  desc 'Test a package installation'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  option '-p', '--package [NAME]', 'The name of the package' do |value, options|
+    options[:package] = value
+  end
+
+  action do |context|
+    require 'hippo/package'
+    package, cli = Hippo::Package.setup_from_cli_context(context)
+    cli.preflight
+
+    exec(*package.helm('test', package.name, '--logs'))
+  end
+end

data/cli/package_uninstall.rb

@@ -0,0 +1,27 @@
+# frozen_string_literal: true
+
+command :'package:uninstall' do
+  desc 'Uninstall a package'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  option '-p', '--package [NAME]', 'The name of the package' do |value, options|
+    options[:package] = value
+  end
+
+  action do |context|
+    require 'hippo/package'
+    package, cli = Hippo::Package.setup_from_cli_context(context)
+    cli.preflight
+
+    if package.installed?
+      puts "Uninstalling #{package.name} with Helm..."
+      package.uninstall
+      puts "#{package.name} uninstalled successfully"
+    else
+      puts "#{package.name} is not installed."
+    end
+  end
+end

data/cli/package_upgrade.rb

@@ -0,0 +1,30 @@
+# frozen_string_literal: true
+
+command :'package:upgrade' do
+  desc 'Upgrade a package'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  option '-p', '--package [NAME]', 'The name of the package' do |value, options|
+    options[:package] = value
+  end
+
+  action do |context|
+    require 'hippo/package'
+    package, cli = Hippo::Package.setup_from_cli_context(context)
+    cli.preflight
+
+    if package.installed?
+      cli.apply_namespace
+      cli.apply_config
+
+      puts "Upgrading #{package.name} with Helm..."
+      package.upgrade
+      puts "#{package.name} upgraded successfully"
+    else
+      puts "#{package.name} is not installed. You probably want to use package:install first."
+    end
+  end
+end

data/cli/package_values.rb

@@ -0,0 +1,22 @@
+# frozen_string_literal: true
+
+command :'package:values' do
+  desc 'Display the values file that will be used for all packages'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  action do |context|
+    require 'hippo/cli'
+    cli = Hippo::CLI.setup(context)
+    cli.preflight
+
+    cli.stage.packages.values.each do |package|
+      puts "\e[33m#{'=' * 80}"
+      puts package.name
+      puts "#{'=' * 80}\e[0m"
+      puts package.final_values.to_yaml.sub(/\A---\n/, '')
+    end
+  end
+end

data/cli/prepare.rb

@@ -0,0 +1,18 @@
+# frozen_string_literal: true
+
+command :prepare do
+  desc 'Prepare Kubernetes namespace (including installing all packages)'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  action do |context|
+    require 'hippo/cli'
+    cli = Hippo::CLI.setup(context)
+    cli.preflight
+    cli.apply_namespace
+    cli.apply_config
+    cli.install_all_packages
+  end
+end

data/cli/run.rb

@@ -0,0 +1,37 @@
+# frozen_string_literal: true
+
+command :run do
+  desc 'Create and run a pod using the given image'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  option '--command [COMMAND]', 'The command to run (defaults to /bin/bash)' do |value, options|
+    options[:command] = value.to_s
+  end
+
+  action do |context|
+    require 'hippo/cli'
+    cli = Hippo::CLI.setup(context)
+    cli.preflight
+
+    image = cli.stage.images.values.first
+    raise Error, "No image exists at #{image.image_url}" unless image.exists?
+
+    command = context.options[:command] || '/bin/bash'
+
+    pod_name = 'hp-run-' + SecureRandom.hex(4)
+    kubectl_command = cli.stage.kubectl(
+      'run', pod_name,
+      '--restart', 'Never',
+      '--rm',
+      '--attach',
+      '-it',
+      '--image', image.image_url,
+      '--command', '--', command
+    )
+    puts "Starting pod #{pod_name} with #{image.image_url}"
+    exec *kubectl_command
+  end
+end

data/cli/secrets.rb

@@ -0,0 +1,24 @@
+# frozen_string_literal: true
+
+command :secrets do
+  desc 'Create/edit an encrypted secrets file'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  action do |context|
+    require 'hippo/cli'
+    cli = Hippo::CLI.setup(context)
+    cli.preflight
+
+    manager = cli.stage.secret_manager
+    unless manager.key_available?
+      puts "\e[31mNo key has been published for this stage yet.\e[0m"
+      puts "Use `hippo #{cli.stage.name} key --generate` to generate one."
+      exit 2
+    end
+
+    manager.edit
+  end
+end

data/cli/stages.rb

@@ -0,0 +1,26 @@
+# frozen_string_literal: true
+
+command :stages do
+  desc 'List all stages that are available'
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  action do |context|
+    require 'hippo/manifest'
+    manifest = Hippo::Manifest.load_from_file(context.options[:hippofile] || './Hippofile')
+
+    if manifest.stages.empty?
+      puts 'There are no stages configured yet.'
+      puts 'Use the following command to create one:'
+      puts
+      puts '  hippo [name] create'
+      puts
+      exit 0
+    end
+
+    manifest.stages.each do |_, stage|
+      puts "- #{stage.name}"
+    end
+  end
+end

data/cli/status.rb

@@ -0,0 +1,25 @@
+# frozen_string_literal: true
+
+command :status do
+  desc 'Show current status of the namespace'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  option '--full', 'Include all relevant objects in namespace' do |_value, options|
+    options[:full] = true
+  end
+
+  action do |context|
+    require 'hippo/cli'
+    cli = Hippo::CLI.setup(context)
+    cli.preflight
+
+    objects = %w[pods svc ingress deployments jobs statefulset]
+    objects += %w[secret cm pvc networkpolicy] if context.options[:full]
+
+    command = cli.stage.kubectl('get', objects.join(','))
+    exec *command
+  end
+end

data/cli/vars.rb

@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+
+command :vars do
+  desc 'Show all variables available for use in this stage'
+
+  option '-h', '--hippofile [RECIPE]', 'The path to the Hippofile (defaults: ./Hippofile)' do |value, options|
+    options[:hippofile] = value.to_s
+  end
+
+  action do |context|
+    require 'hippo/cli'
+    cli = Hippo::CLI.setup(context)
+    cli.preflight
+
+    hash = cli.stage.template_vars.to_yaml.gsub(/^(\s*[\w\-]+)\:(.*)/) do
+      "\e[32m#{Regexp.last_match(1)}:\e[0m" + Regexp.last_match(2)
+    end
+    puts hash
+  end
+end

data/cli/version.rb

@@ -0,0 +1,8 @@
+# frozen_string_literal: true
+
+command :version do
+  desc 'Print current Hippo version'
+  action do
+    puts 'Hippo v' + Hippo::VERSION
+  end
+end

data/lib/hippo.rb

@@ -23,4 +23,16 @@ module Hippo
       end
     end
   end
+
+  # Return the current kubectl context
+  #
+  # @return [String]
+  def self.current_kubectl_context
+    stdout, stderr, status = Open3.capture3('kubectl config current-context')
+    unless status.success?
+      raise Error, 'Could not determine current kubectl context'
+    end
+
+    stdout.strip
+  end
 end

data/lib/hippo/bootstrap_parser.rb

@@ -0,0 +1,64 @@
+# frozen_string_literal: true
+
+require 'securerandom'
+require 'secure_random_string'
+
+module Hippo
+  class BootstrapParser
+    def self.parse(source)
+      new(source).parse
+    end
+
+    TYPES = %w[placeholder password].freeze
+
+    def initialize(source)
+      @source = source || {}
+    end
+
+    def parse
+      parse_hash(@source)
+    end
+
+    private
+
+    def parse_hash(hash)
+      hash.each_with_object({}) do |(key, value), hash|
+        new_key = key.sub(/\A_/, '')
+        hash[new_key] = if value.is_a?(Hash) && key[0] == '_'
+                          parse_generator(value)
+                        elsif value.is_a?(Hash)
+                          parse_hash(value)
+                        else
+                          value.to_s
+                        end
+      end
+    end
+
+    def parse_generator(value)
+      case value['type']
+      when 'password'
+        password = SecureRandomString.new(value['length'] || 24).to_s
+        if value['addHashes']
+          {
+            'plain' => password,
+            'sha1' => Digest::SHA1.hexdigest(password),
+            'sha2' => Digest::SHA2.hexdigest(password),
+            'sha256' => Digest::SHA256.hexdigest(password)
+          }
+        else
+          password
+        end
+      when 'placeholder'
+        value['prefix'].to_s + 'xxx' + value['suffix'].to_s
+      when 'hex'
+        SecureRandom.hex(value['size'] ? value['size'].to_i : 16)
+      when 'random'
+        Base64.encode64(SecureRandom.random_bytes(value['size'] ? value['size'].to_i : 16)).strip
+      when nil
+        raise Error, "A 'type' must be provided for each generated item"
+      else
+        raise Error, "Invalid generator type #{value['type']}"
+      end
+    end
+  end
+end

data/lib/hippo/cli.rb

@@ -24,13 +24,12 @@ module Hippo
     # @return [void]
     def verify_image_existence
       missing = 0
-      @manifest.images.each do |_, image|
-        commit = image.commit_ref_for_branch(@stage.branch)
-        if image.exists_for_commit?(commit)
-          puts "Image for #{image.name} exists for #{image.url} (with tag #{commit})"
+      @stage.images.each do |_, image|
+        if image.exists?
+          puts "Image for #{image.name} exists at #{image.image_url}"
         else
           missing += 1
-          puts "No #{image.name} image at #{image.url} (with tag #{commit})"
+          puts "No #{image.name} image at #{image.image_url}"
         end
       end
 
@@ -39,6 +38,21 @@ module Hippo
       end
     end
 
+    # Run any checks that should be performed before running
+    # any optionation which might influence the environment
+    #
+    # @return [void]
+    def preflight
+      if @stage.context.nil?
+        puts "\e[33mStage does not specify a context. The current context specified"
+        puts "by the kubectl config will be used (#{Hippo.current_kubectl_context}).\e[0m"
+        puts
+        puts 'This is not recommended. Add a context name to your stage configuration.'
+        puts
+        exit 0 unless Util.confirm('Do you wish to continue?')
+      end
+    end
+
     # Apply the namespace configuration
     #
     # @return [void]
@@ -59,13 +73,28 @@ module Hippo
     # @return [void]
     def apply_config
       apply(@stage.configs, 'configuration')
+    end
 
-      if @stage.secret_manager.key_available?
-        secrets = @stage.secret_manager.secrets.map(&:applyable_yaml).flatten
-        apply(secrets, 'secret')
-      else
-        puts 'Not applying secrets because no key is available to decrypt them.'
+    # Install all packages
+    #
+    # @return [void]
+    def install_all_packages
+      if @stage.packages.empty?
+        puts 'There are no packages to install'
+        return
       end
+
+      @stage.packages.values.each do |package|
+        if package.installed?
+          puts "#{package.name} is already installed. Upgrading..."
+          package.upgrade
+        else
+          puts "Installing #{package.name} using Helm..."
+          package.install
+        end
+      end
+
+      puts "Finished with #{@stage.packages.size} #{@stage.packages.size == 1 ? 'package' : 'packages'}"
     end
 
     # Apply all services, ingresses and policies
@@ -96,7 +125,7 @@ module Hippo
       deployment_id = SecureRandom.hex(6)
       deployments = @stage.deployments
       if deployments.empty?
-        puts 'There are no deployment objects defined.'
+        puts 'There are no deployment objects defined'
         return true
       end
 
@@ -141,8 +170,12 @@ module Hippo
     private
 
     def apply(objects, type)
-      puts "Applying #{objects.size} #{type} #{objects.size == 1 ? 'object' : 'objects'}"
-      @stage.apply(objects)
+      if objects.empty?
+        puts "No #{type} objects found to apply"
+      else
+        puts "Applying #{objects.size} #{type} #{objects.size == 1 ? 'object' : 'objects'}"
+        @stage.apply(objects)
+      end
     end
 
     def run_jobs(type)
@@ -188,7 +221,7 @@ module Hippo
                else
                  '❌'
                end
-        puts "  #{icon}  " + @stage.kubectl("logs job/#{job.name}").join(' ')
+        puts "  #{icon}  hippo #{@stage.name} kubectl -- logs job/#{job.name}"
       end
       puts
       result