travis_dpl_test 2.0.3.beta.4.ror

data/lib/dpl/providers/heroku.rb

@@ -0,0 +1,111 @@
+# frozen_string_literal: true
+
+module Dpl
+  module Providers
+    class Heroku < Provider
+      register :heroku
+
+      abstract
+
+      gem 'faraday', '~> 1'
+      gem 'netrc', '~> 0.11.0'
+      gem 'rendezvous', '~> 0.1.3'
+
+      env :heroku
+
+      opt '--strategy NAME', 'Heroku deployment strategy', default: 'api', enum: %w[api git]
+      opt '--app APP', 'Heroku app name', default: :repo_name
+      opt '--log_level LEVEL', internal: true
+
+      msgs login: 'Authenticating ... ',
+           restart: 'Restarting dynos ... ',
+           validate: 'Checking for app %{app} ... ',
+           run_cmd: 'Running command %s ... ',
+           success: 'success.',
+           api_error: 'API request failed: %s (see %s)'
+
+      URL = 'https://api.heroku.com'
+
+      HEADERS = {
+        'Accept': 'application/vnd.heroku+json; version=3',
+        'User-Agent': user_agent
+      }.freeze
+
+      attr_reader :email
+
+      def login
+        print :login
+        res = http.get('/account')
+        handle_error(res) unless res.success?
+        @email = JSON.parse(res.body)['email']
+        info :success
+      end
+
+      def validate
+        print :validate
+        res = http.get("/apps/#{app}")
+        handle_error(res) unless res.success?
+        info :success
+      end
+
+      def restart
+        print :restart
+        res = http.delete "/apps/#{app}/dynos" do |req|
+          req.headers['Content-Type'] = 'application/json'
+        end
+        handle_error(res) unless res.success?
+        info :success
+      end
+
+      def run_cmd(cmd)
+        print :run_cmd, cmd
+        res = http.post "/apps/#{app}/dynos" do |req|
+          req.headers['Content-Type'] = 'application/json'
+          req.body = { command: cmd, attach: true }.to_json
+        end
+        handle_error(res) unless res.success?
+        rendezvous(JSON.parse(res.body)['attach_url'])
+      end
+
+      private
+
+      def http
+        @http ||= Faraday.new(url: URL, headers:) do |http|
+          http.basic_auth(username, password) if username && password
+          http.response :logger, logger, &method(:filter) if log_level?
+          http.adapter Faraday.default_adapter
+        end
+      end
+
+      def headers
+        return HEADERS.dup if username && password
+
+        HEADERS.merge('Authorization': "Bearer #{api_key}")
+      end
+
+      def filter(logger)
+        logger.filter(/(.*Authorization: ).*/, '\1[REDACTED]')
+      end
+
+      def logger
+        super(log_level)
+      end
+
+      def handle_error(response)
+        body = JSON.parse(response.body)
+        error :api_error, body['message'], body['url']
+      end
+
+      def rendezvous(url)
+        Rendezvous.start(url:)
+      end
+
+      # overwritten in Git, meaningless in Api
+      def username; end
+      def password; end
+    end
+  end
+end
+
+require 'dpl/providers/heroku/api'
+require 'dpl/providers/heroku/git'

data/lib/dpl/providers/lambda.rb

@@ -0,0 +1,211 @@
+# frozen_string_literal: true
+
+require 'dpl/helper/zip'
+
+module Dpl
+  module Providers
+    class Lambda < Provider
+      register :lambda
+
+      status :stable
+
+      full_name 'AWS Lambda'
+
+      description sq(<<-STR)
+        tbd
+      STR
+
+      gem 'aws-sdk-lambda', '~> 1.104.0'
+      gem 'nokogiri', '~> 1.15'
+      gem 'rubyzip', '~> 2.3', require: 'zip'
+
+      env :aws, :lambda
+      config '~/.aws/credentials', '~/.aws/config', prefix: 'aws'
+
+      opt '--access_key_id ID',       'AWS access key id', required: true, secret: true
+      opt '--secret_access_key KEY',  'AWS secret key', required: true, secret: true
+      opt '--region REGION',          'AWS region the Lambda function is running in', default: 'us-east-1'
+      opt '--function_name FUNC',     'Name of the Lambda being created or updated', required: true
+      opt '--role ROLE',              'ARN of the IAM role to assign to the Lambda function', note: 'required when creating a new function'
+      opt '--handler_name NAME',      'Function the Lambda calls to begin execution.', note: 'required when creating a new function'
+      opt '--module_name NAME',       'Name of the module that exports the handler', default: 'index', requires: :handler_name
+      opt '--description DESCR',      'Description of the Lambda being created or updated', interpolate: true
+      opt '--timeout SECS',           'Function execution time (in seconds) at which Lambda should terminate the function', default: 3
+      opt '--memory_size MB',         'Amount of memory in MB to allocate to this Lambda', default: 128
+      opt '--subnet_ids IDS',         'List of subnet IDs to be added to the function', type: :array, note: 'Needs the ec2:DescribeSubnets and ec2:DescribeVpcs permission for the user of the access/secret key to work'
+      opt '--security_group_ids IDS', 'List of security group IDs to be added to the function', type: :array, note: 'Needs the ec2:DescribeSecurityGroups and ec2:DescribeVpcs permission for the user of the access/secret key to work'
+      opt '--environment VARS',       'List of Environment Variables to add to the function', type: :array, format: /[\w-]+=.+/, note: 'Can be encrypted for added security', alias: :environment_variables
+      opt '--runtime NAME',           'Lambda runtime to use', note: 'required when creating a new function', default: 'nodejs12.x', enum: %w[nodejs16.x nodejs14.x nodejs12.x python3.8 python3.7 python3.6 python2.7 ruby2.7 ruby2.5 java11 java8 go1.x dotnetcore2.1]
+      opt '--dead_letter_arn ARN',    'ARN to an SNS or SQS resource used for the dead letter queue.'
+      opt '--kms_key_arn ARN',        'KMS key ARN to use to encrypt environment_variables.'
+      opt '--tracing_mode MODE',      'Tracing mode', default: 'PassThrough', enum: %w[Active PassThrough], note: 'Needs xray:PutTraceSegments xray:PutTelemetryRecords on the role'
+      opt '--layers LAYERS',          'Function layer arns', type: :array
+      opt '--function_tags TAGS',     'List of tags to add to the function', type: :array, format: /[\w-]+=.+/, note: 'Can be encrypted for added security'
+      opt '--publish',                'Create a new version of the code instead of replacing the existing one.'
+      opt '--zip PATH',               'Path to a packaged Lambda, a directory to package, or a single file to package', default: '.'
+      opt '--dot_match',              'Include hidden .* files to the zipped archive'
+
+      msgs login: 'Using Access Key: %{access_key_id}',
+           create_function: 'Creating function %{function_name}.',
+           update_config: 'Updating existing function %{function_name}.',
+           update_tags: 'Updating tags.',
+           update_code: 'Updating code.',
+           description: 'Deploy build %{build_number} to AWS Lambda via Travis CI'
+
+      def login
+        info :login
+      end
+
+      def deploy
+        exists? ? update : create
+      rescue Aws::Errors::ServiceError => e
+        error e.message
+      end
+
+      private
+
+      def exists?
+        !!client.get_function(function_name:)
+      rescue ::Aws::Lambda::Errors::ResourceNotFoundException
+        false
+      end
+
+      def create
+        info :create_function
+        config = function_config
+        config = config.merge(code: { zip_file: function_zip })
+        config = config.merge(tags: function_tags) if function_tags?
+        client.create_function(config)
+      end
+
+      def update
+        arn = update_config
+        client.wait_until(:function_updated, { function_name: })
+        update_tags(arn) if function_tags?
+        client.wait_until(:function_updated, { function_name: })
+        update_code
+      rescue Aws::Waiters::Errors::WaiterFailed
+        error 'Update timed out.'
+      end
+
+      def update_config
+        info :update_config
+        response = client.update_function_configuration(function_config)
+        response.function_arn
+      end
+
+      def update_tags(arn)
+        info :update_tags
+        client.tag_resource(tag_resource(arn))
+      end
+
+      def update_code
+        info :update_code
+        client.update_function_code(function_code)
+      end
+
+      def function_config
+        compact(
+          function_name:,
+          role:,
+          handler:,
+          description:,
+          timeout:,
+          memory_size:,
+          vpc_config:,
+          environment:,
+          runtime:,
+          dead_letter_config: dead_letter_arn,
+          kms_key_arn:,
+          tracing_config:,
+          layers:
+        )
+      end
+
+      def tag_resource(arn)
+        {
+          resource: arn,
+          tags: function_tags
+        }
+      end
+
+      def function_code
+        {
+          function_name:,
+          zip_file: function_zip,
+          publish: publish?
+        }
+      end
+
+      def handler
+        Handler.new(runtime, module_name, handler_name).to_s if handler_name?
+      end
+
+      def function_zip
+        Zip.new(zip, tmp_filename, opts).zip
+      end
+
+      def vpc_config
+        compact(subnet_ids:, security_group_ids:)
+      end
+
+      def environment
+        { variables: split_vars(super) } if environment?
+      end
+
+      def dead_letter_arn
+        { target_arn: super } if dead_letter_arn?
+      end
+
+      def tracing_config
+        { mode: tracing_mode } if tracing_mode?
+      end
+
+      def function_tags
+        split_vars(super) if function_tags?
+      end
+
+      def description
+        interpolate(super || msg(:description), vars:)
+      end
+
+      def client
+        @client ||= Aws::Lambda::Client.new(region:, credentials:)
+      end
+
+      def credentials
+        Aws::Credentials.new(access_key_id, secret_access_key)
+      end
+
+      def split_vars(vars)
+        vars.map { |var| var.split('=', 2) }.to_h
+      end
+
+      def tmp_filename
+        @tmp_filename ||= "#{tmp_dir}/#{repo_name}.zip"
+      end
+
+      class Handler < Struct.new(:runtime, :module_name, :handler_name)
+        SEP = {
+          default: '.',
+          java: '::',
+          dotnet: '::',
+          go: ''
+        }.freeze
+
+        def to_s
+          [go? ? nil : module_name, sep, handler_name].compact.join
+        end
+
+        def sep
+          key = SEP.keys.detect { |key| runtime.start_with?(key.to_s) }
+          SEP[key || :default]
+        end
+
+        def go?
+          runtime.start_with?('go')
+        end
+      end
+    end
+  end
+end

data/lib/dpl/providers/launchpad.rb

@@ -0,0 +1,80 @@
+# frozen_string_literal: true
+
+module Dpl
+  module Providers
+    class Launchpad < Provider
+      register :launchpad
+
+      status :alpha
+
+      description sq(<<-STR)
+        tbd
+      STR
+
+      env :launchpad
+
+      opt '--oauth_token TOKEN', 'Launchpad OAuth token', secret: true
+      opt '--oauth_token_secret SECRET', 'Launchpad OAuth token secret', secret: true
+      opt '--slug SLUG', 'Launchpad project slug', format: %r{^~[^/]+/[^/]+/[^/]+$}, example: '~user-name/project-name/branch-name'
+
+      msgs invalid_credentials: 'Invalid credentials (%s)',
+           unknown_error: 'Error: %s (%s)'
+
+      def deploy
+        handle_response(post)
+      end
+
+      private
+
+      def post
+        req = Net::HTTP::Post.new(path)
+        req['Authorization'] = authorization
+        req.set_form_data(data)
+        http.request(req)
+      end
+
+      def handle_response(res)
+        error :invalid_credentials, res.code if res.code == '401'
+        error :unknown_error, res.body, res.code unless res.is_a?(Net::HTTPSuccess)
+      end
+
+      def http
+        http = Net::HTTP.new('api.launchpad.net', 443)
+        http.use_ssl = true
+        http
+      end
+
+      def path
+        "/1.0/#{slug}/+code-import"
+      end
+
+      def data
+        { 'ws.op' => 'requestImport' }
+      end
+
+      def authorization
+        squish(<<-AUTH)
+            OAuth oauth_consumer_key="Travis%20Deploy",
+            oauth_nonce="#{nonce}",
+            oauth_signature="%26#{oauth_token_secret}",
+            oauth_signature_method="PLAINTEXT",
+            oauth_timestamp="#{now}",
+            oauth_token="#{oauth_token}",
+            oauth_version="1.0"
+        AUTH
+      end
+
+      def nonce
+        rand(36**32).to_s(36)
+      end
+
+      def now
+        Time.now.to_i
+      end
+
+      def squish(str)
+        str.strip.gsub(/\s+/, ' ')
+      end
+    end
+  end
+end

data/lib/dpl/providers/netlify.rb

@@ -0,0 +1,38 @@
+# frozen_string_literal: true
+
+module Dpl
+  module Providers
+    class Netlify < Provider
+      register :netlify
+
+      status :stable
+
+      description sq(<<-STR)
+        tbd
+      STR
+
+      node_js '>= 12.0.0'
+
+      npm 'netlify-cli', 'netlify'
+
+      env :netlify
+
+      opt '--site ID',         'A site ID to deploy to', required: true
+      opt '--auth TOKEN',      'An auth token to log in with', required: true, secret: true
+      opt '--dir DIR',         'Specify a folder to deploy'
+      opt '--functions FUNCS', 'Specify a functions folder to deploy'
+      opt '--message MSG',     'A message to include in the deploy log'
+      opt '--prod',            'Deploy to production'
+
+      def deploy
+        shell "netlify deploy #{deploy_opts}"
+      end
+
+      private
+
+      def deploy_opts
+        opts_for(%i[site auth dir functions message prod])
+      end
+    end
+  end
+end

data/lib/dpl/providers/npm.rb

@@ -0,0 +1,130 @@
+# frozen_string_literal: true
+
+module Dpl
+  module Providers
+    class Npm < Provider
+      register :npm
+
+      status :stable
+
+      full_name 'npm'
+
+      description sq(<<-STR)
+        tbd
+      STR
+
+      gem 'json'
+
+      env :npm
+
+      opt '--email EMAIL', 'npm account email'
+      opt '--api_token TOKEN', 'npm api token', alias: :api_key, required: true, secret: true, note: 'can be retrieved from your local ~/.npmrc file', see: 'https://docs.npmjs.com/creating-and-viewing-authentication-tokens'
+      opt '--access ACCESS', 'Access level', enum: %w[public private]
+      opt '--registry URL', 'npm registry url'
+      opt '--src SRC', 'directory or tarball to publish', default: '.'
+      opt '--tag TAGS', 'distribution tags to add'
+      opt '--run_script SCRIPT', 'run the given script from package.json', type: :array, note: 'skips running npm publish'
+      opt '--dry_run', 'performs test run without uploading to registry'
+      opt '--auth_method METHOD', 'Authentication method', enum: %w[auth]
+
+      REGISTRY = 'https://registry.npmjs.org'
+      NPMRC = '~/.npmrc'
+
+      msgs version: 'npm version: %{npm_version}',
+           login: 'Authenticated with API token %{api_token}'
+
+      cmds registry: 'npm config set registry "%{registry}"',
+           publish: 'npm publish %{src} %{publish_opts}',
+           run: 'npm run %{script}'
+
+      errs registry: 'Failed to set registry config',
+           publish: 'Failed to publish',
+           run: 'Failed to run script %{script}'
+
+      def login
+        info :version
+        info :login
+        write_npmrc
+        shell :registry
+      end
+
+      def deploy
+        if run_script?
+          run_scripts
+        else
+          shell :publish
+        end
+      end
+
+      def finish
+        remove_npmrc
+      end
+
+      private
+
+      def run_scripts
+        run_script.each do |script|
+          shell :run, script:
+        end
+      end
+
+      def publish_opts
+        opts_for(%i[access tag dry_run], dashed: true)
+      end
+
+      def write_npmrc
+        write_file(npmrc_path, npmrc)
+        info "#{NPMRC} size: #{file_size(npmrc_path)}"
+      end
+
+      def remove_npmrc
+        rm_f npmrc_path
+      end
+
+      def npmrc_path
+        expand(NPMRC)
+      end
+
+      def npmrc
+        if npm_version =~ /^1/ || auth_method == 'auth'
+          "_auth = #{api_token}\nemail = #{email}"
+        else
+          "//#{auth_endpoint}/:_authToken=#{api_token}"
+        end
+      end
+
+      def auth_endpoint
+        str = registry
+        str = strip_path(str) if str.include?('npm.pkg.github.com')
+        str = strip_protocol(str).sub(%r{/$}, '')
+        str
+      end
+
+      def registry
+        super || registry_from_package_json || REGISTRY
+      end
+
+      def registry_from_package_json
+        return unless data = package_json
+
+        data && data.fetch('publishConfig', {})['registry']
+      end
+
+      def strip_path(url)
+        url.sub(URI(url).path, '')
+      end
+
+      def strip_protocol(url)
+        url.sub("#{URI(url).scheme}://", '')
+      end
+
+      def host(url)
+        URI(url).host
+      end
+
+      def package_json
+        File.exist?('package.json') ? JSON.parse(File.read('package.json')) : {}
+      end
+    end
+  end
+end

data/lib/dpl/providers/nuget.rb

@@ -0,0 +1,41 @@
+# frozen_string_literal: true
+
+module Dpl
+  module Providers
+    class Nuget < Provider
+      status :alpha
+
+      full_name 'nuget'
+
+      description sq(<<-STR)
+        tbd
+      STR
+
+      env :nuget, :dotnet
+
+      opt '--api_key KEY', 'NuGet registry API key', required: true, secret: true, note: 'can be retrieved from your NuGet registry provider', see: 'https://docs.npmjs.com/creating-and-viewing-authentication-tokens'
+      opt '--registry URL', 'NuGet registry url', required: true, eg: 'https://www.myget.org/F/org-name/api/v2/package'
+      opt '--src SRC', 'The nupkg file(s) to publish', default: '*.nupkg'
+      opt '--no_symbols', 'Do not push symbols, even if present'
+      opt '--skip_duplicate', 'Do not overwrite existing packages'
+
+      msgs login: 'Authenticating with API key %{api_key}',
+           push: 'Pushing package %{src} to %{registry}'
+
+      cmds push: 'dotnet nuget push %{src} -k %{api_key} -s %{registry} %{push_opts}'
+
+      errs push: 'Failed to push'
+
+      def deploy
+        info :login
+        shell :push
+      end
+
+      private
+
+      def push_opts
+        opts_for(%i[no_symbols skip_duplicate], dashed: true)
+      end
+    end
+  end
+end

data/lib/dpl/providers/openshift.rb

@@ -0,0 +1,52 @@
+# frozen_string_literal: true
+
+module Dpl
+  module Providers
+    class Openshift < Provider
+      register :openshift
+
+      status :stable
+
+      full_name 'OpenShift'
+
+      description sq(<<-STR)
+        tbd
+      STR
+
+      env :openshift
+
+      opt '--server SERVER',   'OpenShift server', required: true
+      opt '--token TOKEN',     'OpenShift token', required: true, secret: true
+      opt '--project PROJECT', 'OpenShift project', required: true
+      opt '--app APP',         'OpenShift application', default: :repo_name
+
+      cmds install: 'curl %{URL} | tar xz',
+           login: './oc login --token=%{token} --server=%{server}',
+           prepare: './oc project %{project}',
+           deploy: './oc start-build %{app} --follow --commit %{git_sha}'
+
+      errs install: 'CLI tool installation failed',
+           login: 'Authentication failed',
+           prepare: 'Unable to select project %{project}',
+           deploy: 'Deployment failed'
+
+      URL = 'https://mirror.openshift.com/pub/openshift-v4/clients/oc/4.1/linux/oc.tar.gz'
+
+      def install
+        shell :install
+      end
+
+      def login
+        shell :login
+      end
+
+      def prepare
+        shell :prepare
+      end
+
+      def deploy
+        shell :deploy
+      end
+    end
+  end
+end