npm - @firestartr/cli - Versions diffs - 1.52.0-snapshot-8 → 1.52.0-snapshot-11 - Mend

@firestartr/cli 1.52.0-snapshot-8 → 1.52.0-snapshot-11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (10) hide show

package/build/index.js CHANGED Viewed

@@ -357975,6 +357975,9 @@ const external_node_child_process_namespaceObject = __WEBPACK_EXTERNAL_createReq
                                     type: 'boolean',
                                     description: 'If the webhook is active',
                                 },
+                                secretRef: {
+                                    $ref: 'firestartr.dev://github/GithubComponentClaimSecretRef',
+                                },
                                 events: {
                                     type: 'array',
                                     description: 'List of events that trigger the webhook (e.g., push, pull_request, issues)',
@@ -357983,7 +357986,7 @@ const external_node_child_process_namespaceObject = __WEBPACK_EXTERNAL_createReq
                                     },
                                 },
                             },
-                            required: ['url', 'contentType', 'events'],
+                            required: ['url', 'contentType', 'events', 'secretRef'],
                         },
                     },
                     required: ['orgName', 'webhook'],
@@ -358725,6 +358728,9 @@ async function loadClaim(claimRef, org, defaults = loadClaimDefaults(), patchCla
     try {
         const claimData = await lazyGetClaim(claimRef.split(/-/)[0], claimRef.replace(/^[^-]+-/, ''), org, cwd);
         const claim = patchClaim(catalog_common.io.fromYaml(claimData), defaults);
+        cdk8s_renderer_src_logger.silly(`Patched claim is:
+		 ---
+			${catalog_common.io.toYaml(claim)}`);
         try {
             validateClaim(claim, base[`${claim.kind}Schema`]);
             await optionalValidation(claim);
@@ -358873,6 +358879,56 @@ async function loadVirtualClaim(kind, name, org) {
     VisitedClaims[`${kind}-${name}`] = 'virtual';
 }
+;// CONCATENATED MODULE: ../cdk8s_renderer/src/loader/claimsDefaulter.ts
+/*
+ * Default blocks are objects that cannot be merged but applied as a whole. Meaning:
+ * - If the object is defined at the claim-level it is maintained *AS IT IS* (no merge)
+ * - If the block is missed at the claim-level, the default block is applied
+ */
+const defaultBlocksPaths = ['/providers/terraform/sync'];
+function applyBlockAwareDefaults(claim, defaultClaim) {
+    // we always work with a clone of the original
+    const claimClone = JSON.parse(JSON.stringify(claim));
+    // if the block is claim-level defined we store it here
+    const defaultBlocks = new Map();
+    // we remove the blocks entirely of the claim
+    // to achieve an add copy
+    for (const defaultBlockPath of defaultBlocksPaths) {
+        if (hasDeepPath(claimClone, defaultBlockPath) !== true)
+            continue;
+        const originalValue = fast_json_patch_default().getValueByPointer(claimClone, defaultBlockPath);
+        if (originalValue) {
+            cdk8s_renderer_src_logger.silly(`${claim.kind}/${claim.name}: has an original ${defaultBlockPath}: preserving`);
+            defaultBlocks.set(defaultBlockPath, originalValue);
+            fast_json_patch_default().applyPatch(claimClone, [{ op: 'remove', path: defaultBlockPath }]);
+        }
+    }
+    // if the patch has the same path of a block
+    // and the block was defined at claim-level
+    // we interchange the value with the original value
+    // otherwise we use the default
+    const jsonPatchOps = fast_json_patch_default().compare(claimClone, defaultClaim)
+        .filter((jp) => jp.op === 'add')
+        .map((jp) => {
+        if (defaultBlocks.has(jp.path)) {
+            return {
+                ...jp,
+                value: defaultBlocks.get(jp.path),
+            };
+        }
+        else {
+            return jp;
+        }
+    });
+    return fast_json_patch_default().applyPatch(claimClone, jsonPatchOps).newDocument;
+}
+function hasDeepPath(data, deepPath) {
+    return lodash_default().has(data, deepPath.replace(/\//g, '.').replace(/^\./, ''));
+}
 ;// CONCATENATED MODULE: ../cdk8s_renderer/src/loader/loader.ts
@@ -359025,11 +359081,7 @@ function loadClaimDefaults() {
  */
 function loader_patchClaim(claim, defaultsClaims) {
     if (defaultsClaims[claim.kind]) {
-        const jsonPatchOps = fast_json_patch_default().compare(claim, defaultsClaims[claim.kind])
-            .filter((jp) => {
-            return jp.op === 'add';
-        });
-        claim = fast_json_patch_default().applyPatch(claim, jsonPatchOps).newDocument;
+        claim = applyBlockAwareDefaults(claim, defaultsClaims[claim.kind]);
     }
     return claim;
 }
@@ -361732,6 +361784,7 @@ function toJson_FirestartrGithubOrgWebhookSpecWebhookSecretRef(obj) {
         return undefined;
     }
     const result = {
+        'kind': obj.kind,
         'name': obj.name,
         'key': obj.key,
     };
@@ -361780,6 +361833,17 @@ function toJson_FirestartrGithubOrgWebhookSpecWriteConnectionSecretToRefOutputs(
     // filter undefined values
     return Object.entries(result).reduce((r, i) => (i[1] === undefined) ? r : ({ ...r, [i[0]]: i[1] }), {});
 }
+/* eslint-enable max-len, @stylistic/max-len, quote-props, @stylistic/quote-props */
+/**
+ * The type of Kubernetes resource to reference.
+ *
+ * @schema FirestartrGithubOrgWebhookSpecWebhookSecretRefKind
+ */
+var FirestartrGithubOrgWebhookSpecWebhookSecretRefKind;
+(function (FirestartrGithubOrgWebhookSpecWebhookSecretRefKind) {
+    /** Secret */
+    FirestartrGithubOrgWebhookSpecWebhookSecretRefKind["SECRET"] = "Secret";
+})(FirestartrGithubOrgWebhookSpecWebhookSecretRefKind || (FirestartrGithubOrgWebhookSpecWebhookSecretRefKind = {}));
 /**
  * Converts an object of type 'FirestartrGithubOrgWebhookSpecContextBackendRef' to JSON representation.
  */
@@ -364233,10 +364297,7 @@ class GithubOrgWebhookChart extends BaseGithubChart {
                 webhook: {
                     url: claim.providers.github.webhook.url,
                     contentType: claim.providers.github.webhook.contentType,
-                    secretRef: {
-                        name: claim.providers.github.webhook.secretRef.name,
-                        key: claim.providers.github.webhook.secretRef.key,
-                    },
+                    secretRef: this.renderSecret(claim.providers.github.webhook.secretRef),
                     active: claim.providers.github.webhook.active,
                     events: claim.providers.github.webhook.events,
                 },
@@ -364247,6 +364308,17 @@ class GithubOrgWebhookChart extends BaseGithubChart {
             },
         };
     }
+    renderSecret(secret) {
+        const parts = secret.split(':');
+        if (parts.length < 4) {
+            throw `GithubOrgWebhookChart: invalid secretRef: ${secret}. Expected format: <provider>:<namespace>:<name>:<key>`;
+        }
+        return {
+            kind: 'Secret',
+            name: parts[2],
+            key: parts[3],
+        };
+    }
     gvk() {
         return FirestartrGithubOrgWebhook.GVK;
     }
@@ -364793,7 +364865,7 @@ class SecretsChart extends BaseSecretsChart {
     gvk() {
         return {
             kind: 'ExternalSecret/PushSecret',
-            apiVersion: 'external-secrets.io/v1',
+            apiVersion: 'external-secrets.io/v1alpha1',
         };
     }
     extraCharts() {
@@ -364801,7 +364873,8 @@ class SecretsChart extends BaseSecretsChart {
         const pushSecrets = this.get('pushSecrets');
         const kind = this.get('claim').kind;
         const name = this.get('claim').name;
-        const concatenated = externalSecrets
+        const concatenated = []
+            .concat(externalSecrets)
             .concat(pushSecrets)
             .filter((el) => el !== undefined);
         return concatenated.map((chart) => {
@@ -364876,7 +364949,7 @@ class SecretsChart extends BaseSecretsChart {
         }
         for (const pushSecret of pushSecretsFromClaim) {
             const k8sResource = {
-                apiVersion: 'external-secrets.io/v1',
+                apiVersion: 'external-secrets.io/v1alpha1',
                 kind: 'PushSecret',
                 metadata: {
                     name: catalog_common.generic.normalizeName(`${pushSecret.secretName}-${claim.name}`),
@@ -366369,12 +366442,7 @@ async function moveCRsAndClaims(crs, org, claimsPath, resourcesPath) {
     const importedResources = [];
     const failedImportedResources = [];
     for (const k of Object.keys(crs)) {
-        if (crs[k].kind === 'FirestartrGithubGroup' &&
-            crs[k].metadata.name === `${org}-all`) {
-            importer_src_logger.info(`⚡ SKIP IMPORT: CR is the all group, skipping import with kind: ${crs[k].kind} and name: ${crs[k].metadata.name}`);
-            continue;
-        }
-        else if (cdk8s_renderer.isCatalogEntity(crs[k])) {
+        if (cdk8s_renderer.isCatalogEntity(crs[k])) {
             importer_src_logger.info(`⚡ SKIP IMPORT: CR is a catalog entity, skipping import with kind: ${crs[k].kind} and name: ${crs[k].metadata.name}`);
             continue;
         }
@@ -369542,7 +369610,7 @@ async function encryptSecret(rss, secretRef, section) {
         name: secretRef.name,
         key: secretRef.key,
     });
-    const v = await github_0.encryption.encryptRepoSecret(process.env.ORG, rss.metadata.name, section, plainTextSecret);
+    const v = await github_0.encryption.encryptRepoSecret(process.env.ORG, rss.resolveRepoExternalName(), section, plainTextSecret);
     return v;
 }
@@ -369558,6 +369626,11 @@ class FirestartrGithubRepositorySecretsSection_FirestartrGithubRepositorySecrets
         const repo = this.resolveRef(this.spec.repositoryTarget.ref);
         await provisionRepositorySecrets(scope, this, repo);
     }
+    resolveRepoExternalName() {
+        const cr = this.deps[`${this.spec.repositoryTarget.ref.kind}-${this.spec.repositoryTarget.ref.name}`].cr;
+        const repoName = cr.metadata.annotations['firestartr.dev/external-name'];
+        return repoName;
+    }
 }
 ;// CONCATENATED MODULE: ../provisioner/src/entities/index.ts
@@ -369859,8 +369932,12 @@ function __calculateTFStatePath(entity) {
 async function runCDKTF(entityPath, action, depsPath, stream) {
+    const args = [action, '--log-level', 'DEBUG', '--auto-approve'];
+    if (process.env.IS_DEV_LOCAL_ENVIRONMENT) {
+        args.push('--app', 'node --loader ts-node/esm --experimental-specifier-resolution=node index.ts');
+    }
     return new Promise((ok, ko) => {
-        const cdktfProcess = (0,external_child_process_.spawn)('cdktf', [action, '--log-level', 'DEBUG', '--auto-approve'], {
+        const cdktfProcess = (0,external_child_process_.spawn)('cdktf', args, {
             stdio: ['inherit', 'pipe', 'pipe'],
             cwd: process.env.IS_DEV_LOCAL_ENVIRONMENT
                 ? '/library/packages/provisioner'

package/build/packages/cdk8s_renderer/imports/firestartr.dev.d.ts CHANGED Viewed

@@ -711,6 +711,12 @@ export declare enum FirestartrGithubOrgWebhookSpecWebhookContentType {
  * @schema FirestartrGithubOrgWebhookSpecWebhookSecretRef
  */
 export interface FirestartrGithubOrgWebhookSpecWebhookSecretRef {
+    /**
+     * The type of Kubernetes resource to reference.
+     *
+     * @schema FirestartrGithubOrgWebhookSpecWebhookSecretRef#kind
+     */
+    readonly kind: FirestartrGithubOrgWebhookSpecWebhookSecretRefKind;
     /**
      * Secret name
      *
@@ -767,6 +773,15 @@ export interface FirestartrGithubOrgWebhookSpecWriteConnectionSecretToRefOutputs
  * Converts an object of type 'FirestartrGithubOrgWebhookSpecWriteConnectionSecretToRefOutputs' to JSON representation.
  */
 export declare function toJson_FirestartrGithubOrgWebhookSpecWriteConnectionSecretToRefOutputs(obj: FirestartrGithubOrgWebhookSpecWriteConnectionSecretToRefOutputs | undefined): Record<string, any> | undefined;
+/**
+ * The type of Kubernetes resource to reference.
+ *
+ * @schema FirestartrGithubOrgWebhookSpecWebhookSecretRefKind
+ */
+export declare enum FirestartrGithubOrgWebhookSpecWebhookSecretRefKind {
+    /** Secret */
+    SECRET = "Secret"
+}
 /**
  * @schema FirestartrGithubOrgWebhookSpecContextBackendRef
  */

package/build/packages/cdk8s_renderer/src/charts/github/orgWebhookChart.d.ts CHANGED Viewed

@@ -1,8 +1,9 @@
-import { FirestartrGithubOrgWebhook, FirestartrGithubOrgWebhookProps } from '../../../imports/firestartr.dev';
+import { FirestartrGithubOrgWebhook, FirestartrGithubOrgWebhookProps, FirestartrGithubOrgWebhookSpecWebhookSecretRef } from '../../../imports/firestartr.dev';
 import { IUnitializedStateKey } from '../../claims/base';
 import { BaseGithubChart } from './base';
 export declare class GithubOrgWebhookChart extends BaseGithubChart {
     template(): FirestartrGithubOrgWebhookProps | IUnitializedStateKey;
+    renderSecret(secret: string): FirestartrGithubOrgWebhookSpecWebhookSecretRef;
     gvk(): import("cdk8s").GroupVersionKind;
     instanceApiObject(template: any): FirestartrGithubOrgWebhook;
 }

package/build/packages/cdk8s_renderer/src/claims/base/schemas/index.d.ts CHANGED Viewed

@@ -545,6 +545,9 @@ declare const schemas: {
                                     type: string;
                                     description: string;
                                 };
+                                secretRef: {
+                                    $ref: string;
+                                };
                                 events: {
                                     type: string;
                                     description: string;

package/build/packages/cdk8s_renderer/src/claims/github/index.d.ts CHANGED Viewed

@@ -182,6 +182,9 @@ export declare const GithubSchemas: ({
                                 type: string;
                                 description: string;
                             };
+                            secretRef: {
+                                $ref: string;
+                            };
                             events: {
                                 type: string;
                                 description: string;

package/build/packages/cdk8s_renderer/src/claims/github/orgWebhook.d.ts CHANGED Viewed

@@ -8,10 +8,7 @@ export interface IGithubOrgWebhookClaim extends IOrgWebhookClaim {
             webhook: {
                 url: string;
                 contentType: FirestartrGithubOrgWebhookSpecWebhookContentType;
-                secretRef: {
-                    name: string;
-                    key: string;
-                };
+                secretRef: string;
                 active?: boolean;
                 events: string[];
             };

package/build/packages/cdk8s_renderer/src/claims/github/orgwebhook.schema.d.ts CHANGED Viewed

@@ -34,6 +34,9 @@ declare const _default: {
                                 type: string;
                                 description: string;
                             };
+                            secretRef: {
+                                $ref: string;
+                            };
                             events: {
                                 type: string;
                                 description: string;

package/build/packages/cdk8s_renderer/src/loader/claimsDefaulter.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare function applyBlockAwareDefaults(claim: any, defaultClaim: any): any;

package/build/packages/provisioner/src/entities/firestartrgithubrepositorysecretssection/FirestartrGithubRepositorySecretsSection.d.ts CHANGED Viewed

@@ -5,4 +5,5 @@ export declare class FirestartrGithubRepositorySecretsSection extends Entity {
     loadResources(data: {
         scope: Construct;
     }): Promise<void>;
+    resolveRepoExternalName(): string;
 }

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "@firestartr/cli",
-  "version": "1.52.0-snapshot-8",
+  "version": "1.52.0-snapshot-11",
   "private": false,
   "description": "Commandline tool",
   "main": "build/main.js",