pipedawg 0.2.0 → 0.3.1

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: b54013025d872389b0b01408fb78b39c63fcfc9b0d7b06d87559ae3c88e0f538
-  data.tar.gz: 1d0242a83a9dc068accbe107369950d8bdc4d040e0706bd00cd9b1f40e6112de
+  metadata.gz: 041e80c36e4a1f30695c0d60233c8fcc3261ac734dee7d0770dde11ad1e0ac71
+  data.tar.gz: ee48577c9c00e3ef4f76cabe22895d435b26bb10cd6dd4ff5a950dbaebaaf5bc
 SHA512:
-  metadata.gz: b5fb6c7365461b7d70ffdcc96cf18c7fafb686433683f236748735be10916e9f21e7635e3b1b7744d9d4010c2c57497423a0bca645f519f9b2bd968dbdaf6394
-  data.tar.gz: 338a5bb1a1fa767fc5610ee92a534eb37e41289e39c18106c8ae3b549011e09f198fc936cf2dded73fe96c50c4dbdaf84f4d96e02b5020aaab5f84bba3b87856
+  metadata.gz: 83e2ef040fbdbec747968ca61d58079e720dd32cea77fd0dc0b39f451dab618e247cf85617f6f6f6dbaf881263e90c4b2f7b90b3df96d5c60e6a338db5b007d1
+  data.tar.gz: 34cccd812da30055338afc7368a5f62f46c0df7ba8e7dc7c21e9590fdcd4a5d398df30be22f0e5aac6c7a9a3944f4683b1b96be79da9b75276aca89ee13e8d89

data/lib/pipedawg/helm_copy_job.rb

@@ -0,0 +1,107 @@
+# frozen_string_literal: true
+
+module Pipedawg
+  # helm_copy_job class
+  class HelmCopyJob < Job
+    attr_accessor :helm_opts
+
+    def initialize(name = 'build', opts = {}, helm_opts = {})
+      @helm_opts = {
+        chart: name,
+        destinations: [{ user: nil, password: nil, url: nil }],
+        helm: 'helm',
+        image: { entrypoint: [''], name: 'alpine/helm' },
+        password: nil, url: nil, user: nil, version: nil
+      }.merge(helm_opts)
+      super name, opts
+      update
+    end
+
+    def update
+      opts[:image] = helm_opts[:image] if helm_opts[:image]
+      opts[:script] = [] + pull + (helm_opts[:destinations].map { |d| push(d) }).flatten(1)
+    end
+
+    private
+
+    def pull
+      case helm_opts[:url]
+      when nil
+        []
+      when %r{^oci://}
+        pull_oci
+      else
+        pull_classic
+      end
+    end
+
+    def push(destination)
+      case destination[:url]
+      when nil
+        []
+      when %r{^oci://}
+        push_oci(destination)
+      else
+        push_classic(destination)
+      end
+    end
+
+    def pull_oci # rubocop:disable Metrics/AbcSize
+      script = []
+      if helm_opts[:url] && helm_opts[:chart] && helm_opts[:version]
+        script = ['export HELM_EXPERIMENTAL_OCI=1']
+        script << login_oci(helm_opts) if helm_opts[:user] && helm_opts[:password]
+        script << "\"#{helm_opts[:helm]}\" pull \"#{helm_opts[:url]}/#{helm_opts[:chart]}\" --version \"#{helm_opts[:version]}\"" # rubocop:disable Layout/LineLength
+      end
+      script
+    end
+
+    def push_oci(destination) # rubocop:disable Metrics/AbcSize
+      script = []
+      if destination[:url] && helm_opts[:chart] && helm_opts[:version]
+        script = ['export HELM_EXPERIMENTAL_OCI=1']
+        script << login_oci(destination) if destination[:user] && destination[:password]
+        script << "\"#{helm_opts[:helm]}\" push \"#{helm_opts[:chart]}-#{helm_opts[:version]}.tgz\" \"#{destination[:url]}\"" # rubocop:disable Layout/LineLength
+      end
+      script
+    end
+
+    def login_oci(login_opts)
+      require 'uri'
+      "echo \"#{login_opts[:password]}\" | \"#{helm_opts[:helm]}\" registry login --username \"#{login_opts[:user]}\" --password-stdin \"#{URI(login_opts[:url]).host}\"" # rubocop:disable Layout/LineLength
+    end
+
+    def pull_classic # rubocop:disable Metrics/AbcSize
+      script = []
+      if helm_opts[:url] && helm_opts[:chart] && helm_opts[:version]
+        suffix = login_classic(helm_opts)
+        script << "\"#{helm_opts[:helm]}\" repo add source \"#{helm_opts[:url]}\"#{suffix}"
+        script << "\"#{helm_opts[:helm]}\" repo update"
+        script << "\"#{helm_opts[:helm]}\" pull \"source/#{helm_opts[:chart]}\" --version \"#{helm_opts[:version]}\""
+      end
+      script
+    end
+
+    def push_classic(destination)
+      script = []
+      if destination[:url] && helm_opts[:chart] && helm_opts[:version]
+        script << plugin_classic
+        suffix = login_classic(destination)
+        script << "\"#{helm_opts[:helm]}\" cm-push \"#{helm_opts[:chart]}-#{helm_opts[:version]}.tgz\" \"#{destination[:url]}\"#{suffix}" # rubocop:disable Layout/LineLength
+      end
+      script
+    end
+
+    def login_classic(login_opts)
+      if login_opts[:user] && login_opts[:password]
+        " --username \"#{login_opts[:user]}\" --password \"#{login_opts[:password]}\""
+      else
+        ''
+      end
+    end
+
+    def plugin_classic
+      "\"#{helm_opts[:helm]}\" plugin list | grep -q cm-push || \"#{helm_opts[:helm]}\" plugin install https://github.com/chartmuseum/helm-push"
+    end
+  end
+end

data/lib/pipedawg/job.rb

@@ -13,7 +13,7 @@ module Pipedawg
         image: { name: 'ruby:2.5' },
         needs: [],
         retry: nil,
-        rules: [],
+        rules: nil,
         script: [],
         stage: 'build',
         tags: []

data/lib/pipedawg/kaniko_job.rb

@@ -9,82 +9,93 @@ module Pipedawg
       @kaniko_opts = {
         build_args: {},
         config: {
-          '$CI_REGISTRY': {
-            username: '$CI_REGISTRY_USER',
-            password: '$CI_REGISTRY_PASSWORD'
-          }
+          '$CI_REGISTRY': { username: '$CI_REGISTRY_USER', password: '$CI_REGISTRY_PASSWORD' }
         },
-        config_file: '/kaniko/.docker/config.json',
-        context: '${CI_PROJECT_DIR}',
-        destinations: [],
-        dockerfile: 'Dockerfile',
-        executor: '/kaniko/executor',
-        external_files: {},
-        flags: [],
-        ignore_paths: [],
-        insecure_registries: [],
-        kaniko_image: {
-          entrypoint: [''],
-          name: 'gcr.io/kaniko-project/executor:debug'
-        },
-        options: {},
-        registry_certificates: {},
-        registry_mirrors: [],
-        skip_tls_verify_registry: [],
-        trusted_ca_cert_source_files: [],
+        config_file: '/kaniko/.docker/config.json', context: '${CI_PROJECT_DIR}',
+        destinations: [], dockerfile: 'Dockerfile', executor: '/kaniko/executor',
+        external_files: {}, flags: [], ignore_paths: [], insecure_registries: [],
+        image: { entrypoint: [''], name: 'gcr.io/kaniko-project/executor:debug' },
+        options: {}, registry_certificates: {}, registry_mirrors: [],
+        skip_tls_verify_registry: [], trusted_ca_cert_source_files: [],
         trusted_ca_cert_target_file: '/kaniko/ssl/certs/ca-certificates.crt'
       }.merge(kaniko_opts)
       super name, opts
       update
     end
 
-    def update # rubocop:disable Metrics/AbcSize, Metrics/CyclomaticComplexity, Metrics/MethodLength, Metrics/PerceivedComplexity
+    def update # rubocop:disable Metrics/AbcSize
       require 'json'
-      opts[:image] = kaniko_opts[:image]
-      script = ["echo #{kaniko_opts[:config].to_json.inspect} > \"#{kaniko_opts[:config_file]}\""]
-      cert_copies = Array(kaniko_opts[:trusted_ca_cert_source_files]).map do |cert|
+      opts[:image] = kaniko_opts[:image] if kaniko_opts[:image]
+      opts[:script] = config + cert_copies + file_copies + Array(kaniko_cmd)
+    end
+
+    private
+
+    def config
+      ["echo #{kaniko_opts[:config].to_json.inspect} > \"#{kaniko_opts[:config_file]}\""]
+    end
+
+    def cert_copies
+      Array(kaniko_opts[:trusted_ca_cert_source_files]).map do |cert|
         "cat \"#{cert}\" >> \"#{kaniko_opts[:trusted_ca_cert_target_file]}\""
       end
-      script.concat cert_copies
-      file_copies = kaniko_opts[:external_files].map do |source, dest|
+    end
+
+    def file_copies
+      kaniko_opts[:external_files].map do |source, dest|
         "cp \"#{source}\" \"#{kaniko_opts[:context]}/#{dest}\""
       end
-      script.concat file_copies
+    end
+
+    def kaniko_cmd # rubocop:disable Metrics/AbcSize
+      ["\"#{kaniko_opts[:executor]}\" --context \"#{kaniko_opts[:context]}\"",
+       "--dockerfile \"#{kaniko_opts[:dockerfile]}\"", flags, options, build_args,
+       ignore_paths, insecure_registries, registry_certificates, registry_mirrors,
+       destinations, skip_tls_verify_registries].reject(&:empty?).join(' ')
+    end
+
+    def flags
       flags = kaniko_opts[:flags].clone
       flags << 'no-push' if kaniko_opts[:destinations].empty?
-      flags_cli = flags.uniq.map { |f| "--#{f}" }.join(' ')
-      options_cli =  kaniko_opts[:options].map { |k, v| "--#{k}=\"#{v}\"" }.join(' ')
-      build_args_cli = kaniko_opts[:build_args].map { |k, v| "--build-arg #{k}=\"#{v}\"" }.join(' ')
-      ignore_paths_cli = Array(kaniko_opts[:ignore_paths]).map { |p| "--ignore-path #{p}" }.join(' ')
-      insecure_registries_cli = Array(kaniko_opts[:insecure_registries]).map do |r|
+      flags.uniq.map { |f| "--#{f}" }.join(' ')
+    end
+
+    def options
+      kaniko_opts[:options].map { |k, v| "--#{k}=\"#{v}\"" }.join(' ')
+    end
+
+    def build_args
+      kaniko_opts[:build_args].map { |k, v| "--build-arg #{k}=\"#{v}\"" }.join(' ')
+    end
+
+    def ignore_paths
+      Array(kaniko_opts[:ignore_paths]).map { |p| "--ignore-path #{p}" }.join(' ')
+    end
+
+    def insecure_registries
+      Array(kaniko_opts[:insecure_registries]).map do |r|
         "--insecure-registry #{r}"
       end.join(' ')
-      registry_certificates_cli = kaniko_opts[:registry_certificates].map do |k, v|
-        "----registry-certificate #{k}=\"#{v}\""
+    end
+
+    def registry_certificates
+      kaniko_opts[:registry_certificates].map do |k, v|
+        "--registry-certificate #{k}=\"#{v}\""
       end.join(' ')
-      registry_mirrors_cli = Array(kaniko_opts[:registry_mirrors]).map { |r| "--registry-mirror #{r}" }.join(' ')
-      skip_tls_verify_registrys_cli = Array(kaniko_opts[:skip_tls_verify_registry]).map do |r|
+    end
+
+    def registry_mirrors
+      Array(kaniko_opts[:registry_mirrors]).map { |r| "--registry-mirror #{r}" }.join(' ')
+    end
+
+    def destinations
+      kaniko_opts[:destinations].map { |d| "--destination #{d}" }.join(' ')
+    end
+
+    def skip_tls_verify_registries
+      Array(kaniko_opts[:skip_tls_verify_registry]).map do |r|
         "--skip-tls-verify-registry #{r}"
       end.join(' ')
-      destinations_cli = kaniko_opts[:destinations].map { |d| "--destination #{d}" }.join(' ')
-      kaniko_cmds = [
-        "\"#{kaniko_opts[:executor]}\"",
-        '--context',
-        "\"#{kaniko_opts[:context]}\"",
-        '--dockerfile',
-        "\"#{kaniko_opts[:dockerfile]}\"",
-        flags_cli,
-        options_cli,
-        build_args_cli,
-        ignore_paths_cli,
-        insecure_registries_cli,
-        registry_certificates_cli,
-        registry_mirrors_cli,
-        destinations_cli,
-        skip_tls_verify_registrys_cli
-      ].reject(&:empty?)
-      script << kaniko_cmds.join(' ')
-      opts[:script] = script
     end
   end
 end

data/lib/pipedawg/pipeline.rb

@@ -10,7 +10,7 @@ module Pipedawg
       @opts = {
         jobs: [Pipedawg::Job.new],
         stages: ['build'],
-        workflow: {}
+        workflow: nil
       }.merge(opts)
       update
     end

data/lib/pipedawg/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Pipedawg
-  VERSION = '0.2.0'
+  VERSION = '0.3.1'
 end

data/lib/pipedawg.rb

@@ -1,6 +1,7 @@
 # frozen_string_literal: true
 
 require 'pipedawg/job'
+require 'pipedawg/helm_copy_job'
 require 'pipedawg/kaniko_job'
 require 'pipedawg/pipeline'
 require 'pipedawg/version'

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: pipedawg
 version: !ruby/object:Gem::Version
-  version: 0.2.0
+  version: 0.3.1
 platform: ruby
 authors:
 - harbottle
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2022-01-28 00:00:00.000000000 Z
+date: 2022-02-08 00:00:00.000000000 Z
 dependencies: []
 description: Generate GitLab CI pipelines.
 email:
@@ -20,6 +20,7 @@ files:
 - LICENSE.txt
 - README.md
 - lib/pipedawg.rb
+- lib/pipedawg/helm_copy_job.rb
 - lib/pipedawg/job.rb
 - lib/pipedawg/kaniko_job.rb
 - lib/pipedawg/pipeline.rb
@@ -46,7 +47,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.0.3
+rubygems_version: 3.1.2
 signing_key: 
 specification_version: 4
 summary: Generate GitLab CI pipelines.