@goldstack/template-hetzner-vps-cli 0.1.2

package/README.md

@@ -0,0 +1,5 @@
+# Goldstack Hetzner VPS CLI
+
+This library provide tools to provision a Hetzner server with various Docker applications running on it.
+
+For more information, see [Hetzner VPS Template](https://docs.goldstack.party/docs/templates/hetzner-vps)

package/bin/template

@@ -0,0 +1,12 @@
+#!/usr/bin/env node
+
+// eslint-disable-next-line @typescript-eslint/no-var-requires
+require('source-map-support').install();
+
+// eslint-disable-next-line @typescript-eslint/no-var-requires
+require('./../dist/src/templateHetznerVPSCli')
+  .run(process.argv)
+  .catch((e) => {
+    console.log(e);
+    process.exit(1);
+  });

package/dist/src/awsCredentials.d.ts

@@ -0,0 +1,13 @@
+import { HetznerVPSDeployment } from '@goldstack/template-hetzner-vps';
+export declare function assertAWSCredentials(params: {
+    deployment: HetznerVPSDeployment;
+}): Promise<void>;
+export declare function assertUserWithReadOnlyS3Access(params: {
+    deployment: HetznerVPSDeployment;
+    bucketName: string;
+}): Promise<void>;
+export declare function deleteUserAndResources(params: {
+    deployment: HetznerVPSDeployment;
+    vpsUserName: string;
+}): Promise<void>;
+//# sourceMappingURL=awsCredentials.d.ts.map

package/dist/src/awsCredentials.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"awsCredentials.d.ts","sourceRoot":"","sources":["../../src/awsCredentials.ts"],"names":[],"mappings":"AAeA,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AAyFvE,wBAAsB,oBAAoB,CAAC,MAAM,EAAE;IACjD,UAAU,EAAE,oBAAoB,CAAC;CAClC,GAAG,OAAO,CAAC,IAAI,CAAC,CA6ChB;AAED,wBAAsB,8BAA8B,CAAC,MAAM,EAAE;IAC3D,UAAU,EAAE,oBAAoB,CAAC;IACjC,UAAU,EAAE,MAAM,CAAC;CACpB,GAAG,OAAO,CAAC,IAAI,CAAC,CA0ChB;AAED,wBAAsB,sBAAsB,CAAC,MAAM,EAAE;IACnD,UAAU,EAAE,oBAAoB,CAAC;IACjC,WAAW,EAAE,MAAM,CAAC;CACrB,iBAkEA"}

package/dist/src/awsCredentials.js

@@ -0,0 +1,211 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.deleteUserAndResources = exports.assertUserWithReadOnlyS3Access = exports.assertAWSCredentials = void 0;
+const client_iam_1 = require("@aws-sdk/client-iam");
+const infra_aws_1 = require("@goldstack/infra-aws");
+const utils_cli_1 = require("@goldstack/utils-cli");
+const utils_sh_1 = require("@goldstack/utils-sh");
+const crypto_1 = __importDefault(require("crypto"));
+const fs_1 = require("fs");
+async function checkIfUserExists(iamClient, userName) {
+    try {
+        const getUserCommand = new client_iam_1.GetUserCommand({ UserName: userName });
+        await iamClient.send(getUserCommand);
+        return true;
+    }
+    catch (error) {
+        if (error.name === 'NoSuchEntityException') {
+            return false;
+        }
+        throw error;
+    }
+}
+async function createUser(iamClient, userName) {
+    (0, utils_cli_1.logger)().info(`Creating user ${userName}...`);
+    const createUserCommand = new client_iam_1.CreateUserCommand({ UserName: userName });
+    const createUserResponse = await iamClient.send(createUserCommand);
+    if (!createUserResponse.User) {
+        throw new Error('User could not be created.');
+    }
+    (0, utils_cli_1.logger)().info(`User ${userName} created.`);
+}
+async function createAccessKey(iamClient, userName) {
+    (0, utils_cli_1.logger)().info(`Creating access key for user ${userName}...`);
+    const createAccessKeyCommand = new client_iam_1.CreateAccessKeyCommand({
+        UserName: userName,
+    });
+    const createAccessKeyResponse = await iamClient.send(createAccessKeyCommand);
+    if (!createAccessKeyResponse.AccessKey) {
+        throw new Error('Cannot create new access key for user.');
+    }
+    (0, utils_cli_1.logger)().info(`Access key created for user ${userName}.`);
+    return {
+        accessKeyId: createAccessKeyResponse.AccessKey.AccessKeyId,
+        secretAccessKey: createAccessKeyResponse.AccessKey.SecretAccessKey,
+    };
+}
+async function attachPolicyToUser(iamClient, userName, bucketName) {
+    var _a, _b;
+    (0, utils_cli_1.logger)().info(`Attaching policy to user ${userName} for bucket ${bucketName}...`);
+    const policy = {
+        Version: '2012-10-17',
+        Statement: [
+            {
+                Effect: 'Allow',
+                Action: ['s3:ListBucket', 's3:GetObject'],
+                Resource: [
+                    `arn:aws:s3:::${bucketName}`,
+                    `arn:aws:s3:::${bucketName}/*`,
+                ],
+            },
+        ],
+    };
+    const createPolicyCommand = new client_iam_1.CreatePolicyCommand({
+        PolicyName: `bucket-access-${bucketName}-${userName}`,
+        PolicyDocument: JSON.stringify(policy),
+    });
+    const createPolicyResponse = await iamClient.send(createPolicyCommand);
+    (0, utils_cli_1.logger)().info(`Policy created successfully: ${(_a = createPolicyResponse.Policy) === null || _a === void 0 ? void 0 : _a.Arn}`);
+    const attachPolicyCommand = new client_iam_1.AttachUserPolicyCommand({
+        PolicyArn: (_b = createPolicyResponse.Policy) === null || _b === void 0 ? void 0 : _b.Arn,
+        UserName: userName,
+    });
+    await iamClient.send(attachPolicyCommand);
+    (0, utils_cli_1.logger)().info(`Policy attached to user ${userName}.`);
+}
+async function assertAWSCredentials(params) {
+    if ((0, fs_1.existsSync)('./dist/credentials/credentials')) {
+        return;
+    }
+    (0, utils_cli_1.logger)().info('AWS credentials for deployment access not found. Creating deleting all existing access keys and creating new access key.');
+    const { deployment } = params;
+    const userName = deployment.configuration.vpsIAMUserName;
+    if (!userName) {
+        throw new Error(`IAM user name for bucket access not defined ${userName}`);
+    }
+    const awsUser = await (0, infra_aws_1.getAWSUser)(deployment.awsUser);
+    const credentials = await (0, infra_aws_1.getAWSCredentials)(awsUser);
+    const iamClient = new client_iam_1.IAMClient({
+        credentials: credentials,
+        region: deployment.awsRegion,
+    });
+    // before creating our new access key, we first delete all existing ones
+    await deleteAllAccessKeys(userName, iamClient);
+    const accessKeys = await createAccessKey(iamClient, userName);
+    (0, utils_cli_1.logger)().info(`Access key created: ${accessKeys.accessKeyId}`);
+    let existingSecrets = {};
+    if ((0, fs_1.existsSync)('./dist/credentials/credentials')) {
+        existingSecrets = JSON.parse((0, utils_sh_1.read)('./dist/credentials/credentials'));
+    }
+    const vpsCredentials = {
+        ...existingSecrets,
+        ...accessKeys,
+        awsRegion: deployment.awsRegion,
+    };
+    (0, utils_sh_1.mkdir)('-p', './dist/credentials');
+    (0, utils_sh_1.write)(JSON.stringify(vpsCredentials, null, 2), './dist/credentials/credentials');
+}
+exports.assertAWSCredentials = assertAWSCredentials;
+async function assertUserWithReadOnlyS3Access(params) {
+    if (!params.deployment.configuration.vpsIAMUserName) {
+        const userHash = crypto_1.default.randomBytes(6).toString('hex');
+        params.deployment.configuration.vpsIAMUserName = `vps-${params.deployment.name}-${params.deployment.configuration.serverName}-${userHash}`;
+        (0, utils_cli_1.logger)().info({
+            userName: params.deployment.configuration.vpsIAMUserName,
+        }, 'No AWS IAM user name defined for deployments bucket access. Generated user name');
+    }
+    const userName = params.deployment.configuration.vpsIAMUserName;
+    const { bucketName, deployment } = params;
+    const awsUser = await (0, infra_aws_1.getAWSUser)(deployment.awsUser);
+    const credentials = await (0, infra_aws_1.getAWSCredentials)(awsUser);
+    const iamClient = new client_iam_1.IAMClient({
+        credentials: credentials,
+        region: deployment.awsRegion,
+    });
+    try {
+        const userExists = await checkIfUserExists(iamClient, userName);
+        if (!userExists) {
+            (0, utils_cli_1.logger)().info('AWS IAM user for deployment bucket access does not exist. Creating user.', { userName });
+            await createUser(iamClient, userName);
+            await attachPolicyToUser(iamClient, userName, bucketName);
+            (0, utils_cli_1.logger)().info('AWS IAM user created.');
+        }
+    }
+    catch (error) {
+        (0, utils_cli_1.logger)().error(`Error creating user or attaching policy: ${error.message}`);
+        throw new Error(`Error creating user or attaching policy: ${error.message}`);
+    }
+    (0, utils_cli_1.logger)().info(`IAM user used for deployments via S3 bucket: ${userName}`);
+}
+exports.assertUserWithReadOnlyS3Access = assertUserWithReadOnlyS3Access;
+async function deleteUserAndResources(params) {
+    const userName = params.vpsUserName;
+    const awsUser = await (0, infra_aws_1.getAWSUser)(params.deployment.awsUser);
+    const credentials = await (0, infra_aws_1.getAWSCredentials)(awsUser);
+    const iamClient = new client_iam_1.IAMClient({
+        credentials: credentials,
+        region: params.deployment.awsRegion,
+    });
+    (0, utils_cli_1.logger)().info(`Deleting user ${userName} and all associated resources.`);
+    try {
+        // Step 1: List and delete all access keys for the user
+        (0, utils_cli_1.logger)().info('Deleting access keys');
+        await deleteAllAccessKeys(userName, iamClient);
+        // Step 2: List and detach all policies attached to the user
+        const listAttachedUserPoliciesCommand = new client_iam_1.ListAttachedUserPoliciesCommand({
+            UserName: userName,
+        });
+        const listAttachedUserPoliciesResponse = await iamClient.send(listAttachedUserPoliciesCommand);
+        if (!listAttachedUserPoliciesResponse.AttachedPolicies) {
+            throw new Error('Cannot read attached policies');
+        }
+        for (const policy of listAttachedUserPoliciesResponse.AttachedPolicies) {
+            const detachUserPolicyCommand = new client_iam_1.DetachUserPolicyCommand({
+                UserName: userName,
+                PolicyArn: policy.PolicyArn,
+            });
+            await iamClient.send(detachUserPolicyCommand);
+            if (!policy.PolicyName) {
+                throw new Error('Could not load policy for detaching it ' + policy.PolicyName);
+            }
+            // Step 3: Delete the policy if it was created by the create function
+            if (policy.PolicyName.startsWith('bucket-access-')) {
+                (0, utils_cli_1.logger)().info(`Deleting policy ${policy.PolicyName}`);
+                const deletePolicyCommand = new client_iam_1.DeletePolicyCommand({
+                    PolicyArn: policy.PolicyArn,
+                });
+                await iamClient.send(deletePolicyCommand);
+            }
+        }
+        // Step 4: Delete the user
+        const deleteUserCommand = new client_iam_1.DeleteUserCommand({ UserName: userName });
+        (0, utils_cli_1.logger)().info('Deleting user');
+        await iamClient.send(deleteUserCommand);
+        (0, utils_cli_1.logger)().info(`User ${userName} and all associated resources have been deleted.`);
+    }
+    catch (error) {
+        (0, utils_cli_1.logger)().error(`Error deleting user or resources: ${error.message}`);
+        throw new Error(`Error deleting user or resources: ${error.message}`);
+    }
+}
+exports.deleteUserAndResources = deleteUserAndResources;
+async function deleteAllAccessKeys(userName, iamClient) {
+    const listAccessKeysCommand = new client_iam_1.ListAccessKeysCommand({
+        UserName: userName,
+    });
+    const listAccessKeysResponse = await iamClient.send(listAccessKeysCommand);
+    if (!listAccessKeysResponse.AccessKeyMetadata) {
+        throw new Error('Cannot read access key metadata');
+    }
+    for (const accessKey of listAccessKeysResponse.AccessKeyMetadata) {
+        const deleteAccessKeyCommand = new client_iam_1.DeleteAccessKeyCommand({
+            UserName: userName,
+            AccessKeyId: accessKey.AccessKeyId,
+        });
+        await iamClient.send(deleteAccessKeyCommand);
+    }
+}
+//# sourceMappingURL=awsCredentials.js.map

package/dist/src/awsCredentials.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"awsCredentials.js","sourceRoot":"","sources":["../../src/awsCredentials.ts"],"names":[],"mappings":";;;;;;AAAA,oDAa6B;AAC7B,oDAAqE;AAErE,oDAA8C;AAC9C,kDAAyD;AAEzD,oDAA4B;AAC5B,2BAAgC;AAEhC,KAAK,UAAU,iBAAiB,CAAC,SAAoB,EAAE,QAAgB;IACrE,IAAI;QACF,MAAM,cAAc,GAAG,IAAI,2BAAc,CAAC,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;QAClE,MAAM,SAAS,CAAC,IAAI,CAAC,cAAc,CAAC,CAAC;QACrC,OAAO,IAAI,CAAC;KACb;IAAC,OAAO,KAAK,EAAE;QACd,IAAI,KAAK,CAAC,IAAI,KAAK,uBAAuB,EAAE;YAC1C,OAAO,KAAK,CAAC;SACd;QACD,MAAM,KAAK,CAAC;KACb;AACH,CAAC;AAED,KAAK,UAAU,UAAU,CAAC,SAAoB,EAAE,QAAgB;IAC9D,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,iBAAiB,QAAQ,KAAK,CAAC,CAAC;IAC9C,MAAM,iBAAiB,GAAG,IAAI,8BAAiB,CAAC,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;IACxE,MAAM,kBAAkB,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;IACnE,IAAI,CAAC,kBAAkB,CAAC,IAAI,EAAE;QAC5B,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;KAC/C;IACD,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,QAAQ,QAAQ,WAAW,CAAC,CAAC;AAC7C,CAAC;AAED,KAAK,UAAU,eAAe,CAAC,SAAoB,EAAE,QAAgB;IACnE,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,gCAAgC,QAAQ,KAAK,CAAC,CAAC;IAC7D,MAAM,sBAAsB,GAAG,IAAI,mCAAsB,CAAC;QACxD,QAAQ,EAAE,QAAQ;KACnB,CAAC,CAAC;IACH,MAAM,uBAAuB,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;IAC7E,IAAI,CAAC,uBAAuB,CAAC,SAAS,EAAE;QACtC,MAAM,IAAI,KAAK,CAAC,wCAAwC,CAAC,CAAC;KAC3D;IACD,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,+BAA+B,QAAQ,GAAG,CAAC,CAAC;IAC1D,OAAO;QACL,WAAW,EAAE,uBAAuB,CAAC,SAAS,CAAC,WAAW;QAC1D,eAAe,EAAE,uBAAuB,CAAC,SAAS,CAAC,eAAe;KACnE,CAAC;AACJ,CAAC;AAED,KAAK,UAAU,kBAAkB,CAC/B,SAAoB,EACpB,QAAgB,EAChB,UAAkB;;IAElB,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,4BAA4B,QAAQ,eAAe,UAAU,KAAK,CACnE,CAAC;IAEF,MAAM,MAAM,GAAG;QACb,OAAO,EAAE,YAAY;QACrB,SAAS,EAAE;YACT;gBACE,MAAM,EAAE,OAAO;gBACf,MAAM,EAAE,CAAC,eAAe,EAAE,cAAc,CAAC;gBACzC,QAAQ,EAAE;oBACR,gBAAgB,UAAU,EAAE;oBAC5B,gBAAgB,UAAU,IAAI;iBAC/B;aACF;SACF;KACF,CAAC;IAEF,MAAM,mBAAmB,GAAG,IAAI,gCAAmB,CAAC;QAClD,UAAU,EAAE,iBAAiB,UAAU,IAAI,QAAQ,EAAE;QACrD,cAAc,EAAE,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC;KACvC,CAAC,CAAC;IAEH,MAAM,oBAAoB,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IACvE,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,gCAAgC,MAAA,oBAAoB,CAAC,MAAM,0CAAE,GAAG,EAAE,CACnE,CAAC;IAEF,MAAM,mBAAmB,GAAG,IAAI,oCAAuB,CAAC;QACtD,SAAS,EAAE,MAAA,oBAAoB,CAAC,MAAM,0CAAE,GAAG;QAC3C,QAAQ,EAAE,QAAQ;KACnB,CAAC,CAAC;IAEH,MAAM,SAAS,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;IAE1C,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,2BAA2B,QAAQ,GAAG,CAAC,CAAC;AACxD,CAAC;AAEM,KAAK,UAAU,oBAAoB,CAAC,MAE1C;IACC,IAAI,IAAA,eAAU,EAAC,gCAAgC,CAAC,EAAE;QAChD,OAAO;KACR;IAED,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,0HAA0H,CAC3H,CAAC;IAEF,MAAM,EAAE,UAAU,EAAE,GAAG,MAAM,CAAC;IAC9B,MAAM,QAAQ,GAAG,UAAU,CAAC,aAAa,CAAC,cAAc,CAAC;IACzD,IAAI,CAAC,QAAQ,EAAE;QACb,MAAM,IAAI,KAAK,CAAC,+CAA+C,QAAQ,EAAE,CAAC,CAAC;KAC5E;IACD,MAAM,OAAO,GAAG,MAAM,IAAA,sBAAU,EAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IACrD,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAiB,EAAC,OAAO,CAAC,CAAC;IAErD,MAAM,SAAS,GAAG,IAAI,sBAAS,CAAC;QAC9B,WAAW,EAAE,WAAW;QACxB,MAAM,EAAE,UAAU,CAAC,SAAS;KAC7B,CAAC,CAAC;IAEH,wEAAwE;IACxE,MAAM,mBAAmB,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;IAE/C,MAAM,UAAU,GAAG,MAAM,eAAe,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;IAE9D,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,uBAAuB,UAAU,CAAC,WAAW,EAAE,CAAC,CAAC;IAE/D,IAAI,eAAe,GAAG,EAAE,CAAC;IACzB,IAAI,IAAA,eAAU,EAAC,gCAAgC,CAAC,EAAE;QAChD,eAAe,GAAG,IAAI,CAAC,KAAK,CAAC,IAAA,eAAI,EAAC,gCAAgC,CAAC,CAAC,CAAC;KACtE;IAED,MAAM,cAAc,GAAG;QACrB,GAAG,eAAe;QAClB,GAAG,UAAU;QACb,SAAS,EAAE,UAAU,CAAC,SAAS;KAChC,CAAC;IAEF,IAAA,gBAAK,EAAC,IAAI,EAAE,oBAAoB,CAAC,CAAC;IAClC,IAAA,gBAAK,EACH,IAAI,CAAC,SAAS,CAAC,cAAc,EAAE,IAAI,EAAE,CAAC,CAAC,EACvC,gCAAgC,CACjC,CAAC;AACJ,CAAC;AA/CD,oDA+CC;AAEM,KAAK,UAAU,8BAA8B,CAAC,MAGpD;IACC,IAAI,CAAC,MAAM,CAAC,UAAU,CAAC,aAAa,CAAC,cAAc,EAAE;QACnD,MAAM,QAAQ,GAAG,gBAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QACvD,MAAM,CAAC,UAAU,CAAC,aAAa,CAAC,cAAc,GAAG,OAAO,MAAM,CAAC,UAAU,CAAC,IAAI,IAAI,MAAM,CAAC,UAAU,CAAC,aAAa,CAAC,UAAU,IAAI,QAAQ,EAAE,CAAC;QAC3I,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX;YACE,QAAQ,EAAE,MAAM,CAAC,UAAU,CAAC,aAAa,CAAC,cAAc;SACzD,EACD,iFAAiF,CAClF,CAAC;KACH;IAED,MAAM,QAAQ,GAAG,MAAM,CAAC,UAAU,CAAC,aAAa,CAAC,cAAc,CAAC;IAChE,MAAM,EAAE,UAAU,EAAE,UAAU,EAAE,GAAG,MAAM,CAAC;IAC1C,MAAM,OAAO,GAAG,MAAM,IAAA,sBAAU,EAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IACrD,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAiB,EAAC,OAAO,CAAC,CAAC;IAErD,MAAM,SAAS,GAAG,IAAI,sBAAS,CAAC;QAC9B,WAAW,EAAE,WAAW;QACxB,MAAM,EAAE,UAAU,CAAC,SAAS;KAC7B,CAAC,CAAC;IAEH,IAAI;QACF,MAAM,UAAU,GAAG,MAAM,iBAAiB,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;QAEhE,IAAI,CAAC,UAAU,EAAE;YACf,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,0EAA0E,EAC1E,EAAE,QAAQ,EAAE,CACb,CAAC;YACF,MAAM,UAAU,CAAC,SAAS,EAAE,QAAQ,CAAC,CAAC;YACtC,MAAM,kBAAkB,CAAC,SAAS,EAAE,QAAQ,EAAE,UAAU,CAAC,CAAC;YAC1D,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;SACxC;KACF;IAAC,OAAO,KAAK,EAAE;QACd,IAAA,kBAAM,GAAE,CAAC,KAAK,CAAC,4CAA4C,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QAC5E,MAAM,IAAI,KAAK,CACb,4CAA4C,KAAK,CAAC,OAAO,EAAE,CAC5D,CAAC;KACH;IAED,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,gDAAgD,QAAQ,EAAE,CAAC,CAAC;AAC5E,CAAC;AA7CD,wEA6CC;AAEM,KAAK,UAAU,sBAAsB,CAAC,MAG5C;IACC,MAAM,QAAQ,GAAG,MAAM,CAAC,WAAW,CAAC;IACpC,MAAM,OAAO,GAAG,MAAM,IAAA,sBAAU,EAAC,MAAM,CAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IAC5D,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAiB,EAAC,OAAO,CAAC,CAAC;IAErD,MAAM,SAAS,GAAG,IAAI,sBAAS,CAAC;QAC9B,WAAW,EAAE,WAAW;QACxB,MAAM,EAAE,MAAM,CAAC,UAAU,CAAC,SAAS;KACpC,CAAC,CAAC;IAEH,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,iBAAiB,QAAQ,gCAAgC,CAAC,CAAC;IAEzE,IAAI;QACF,uDAAuD;QACvD,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;QACtC,MAAM,mBAAmB,CAAC,QAAQ,EAAE,SAAS,CAAC,CAAC;QAE/C,4DAA4D;QAC5D,MAAM,+BAA+B,GAAG,IAAI,4CAA+B,CACzE;YACE,QAAQ,EAAE,QAAQ;SACnB,CACF,CAAC;QACF,MAAM,gCAAgC,GAAG,MAAM,SAAS,CAAC,IAAI,CAC3D,+BAA+B,CAChC,CAAC;QAEF,IAAI,CAAC,gCAAgC,CAAC,gBAAgB,EAAE;YACtD,MAAM,IAAI,KAAK,CAAC,+BAA+B,CAAC,CAAC;SAClD;QAED,KAAK,MAAM,MAAM,IAAI,gCAAgC,CAAC,gBAAgB,EAAE;YACtE,MAAM,uBAAuB,GAAG,IAAI,oCAAuB,CAAC;gBAC1D,QAAQ,EAAE,QAAQ;gBAClB,SAAS,EAAE,MAAM,CAAC,SAAS;aAC5B,CAAC,CAAC;YACH,MAAM,SAAS,CAAC,IAAI,CAAC,uBAAuB,CAAC,CAAC;YAE9C,IAAI,CAAC,MAAM,CAAC,UAAU,EAAE;gBACtB,MAAM,IAAI,KAAK,CACb,yCAAyC,GAAG,MAAM,CAAC,UAAU,CAC9D,CAAC;aACH;YAED,qEAAqE;YACrE,IAAI,MAAM,CAAC,UAAU,CAAC,UAAU,CAAC,gBAAgB,CAAC,EAAE;gBAClD,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,mBAAmB,MAAM,CAAC,UAAU,EAAE,CAAC,CAAC;gBACtD,MAAM,mBAAmB,GAAG,IAAI,gCAAmB,CAAC;oBAClD,SAAS,EAAE,MAAM,CAAC,SAAS;iBAC5B,CAAC,CAAC;gBACH,MAAM,SAAS,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;aAC3C;SACF;QAED,0BAA0B;QAC1B,MAAM,iBAAiB,GAAG,IAAI,8BAAiB,CAAC,EAAE,QAAQ,EAAE,QAAQ,EAAE,CAAC,CAAC;QACxE,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,eAAe,CAAC,CAAC;QAC/B,MAAM,SAAS,CAAC,IAAI,CAAC,iBAAiB,CAAC,CAAC;QAExC,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,QAAQ,QAAQ,kDAAkD,CACnE,CAAC;KACH;IAAC,OAAO,KAAK,EAAE;QACd,IAAA,kBAAM,GAAE,CAAC,KAAK,CAAC,qCAAqC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;QACrE,MAAM,IAAI,KAAK,CAAC,qCAAqC,KAAK,CAAC,OAAO,EAAE,CAAC,CAAC;KACvE;AACH,CAAC;AArED,wDAqEC;AACD,KAAK,UAAU,mBAAmB,CAAC,QAAgB,EAAE,SAAoB;IACvE,MAAM,qBAAqB,GAAG,IAAI,kCAAqB,CAAC;QACtD,QAAQ,EAAE,QAAQ;KACnB,CAAC,CAAC;IACH,MAAM,sBAAsB,GAAG,MAAM,SAAS,CAAC,IAAI,CAAC,qBAAqB,CAAC,CAAC;IAE3E,IAAI,CAAC,sBAAsB,CAAC,iBAAiB,EAAE;QAC7C,MAAM,IAAI,KAAK,CAAC,iCAAiC,CAAC,CAAC;KACpD;IAED,KAAK,MAAM,SAAS,IAAI,sBAAsB,CAAC,iBAAiB,EAAE;QAChE,MAAM,sBAAsB,GAAG,IAAI,mCAAsB,CAAC;YACxD,QAAQ,EAAE,QAAQ;YAClB,WAAW,EAAE,SAAS,CAAC,WAAW;SACnC,CAAC,CAAC;QACH,MAAM,SAAS,CAAC,IAAI,CAAC,sBAAsB,CAAC,CAAC;KAC9C;AACH,CAAC"}

package/dist/src/createZip.d.ts

@@ -0,0 +1,2 @@
+export declare function createZip(): Promise<void>;
+//# sourceMappingURL=createZip.d.ts.map

package/dist/src/createZip.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"createZip.d.ts","sourceRoot":"","sources":["../../src/createZip.ts"],"names":[],"mappings":"AAIA,wBAAsB,SAAS,kBAwB9B"}

package/dist/src/createZip.js

@@ -0,0 +1,27 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.createZip = void 0;
+const utils_sh_1 = require("@goldstack/utils-sh");
+const crypto_1 = require("crypto");
+const fs_1 = require("fs");
+async function createZip() {
+    (0, utils_sh_1.mkdir)('-p', './dist/app');
+    (0, utils_sh_1.rm)('-f', './dist/app/server.zip');
+    await (0, utils_sh_1.zip)({
+        directory: './server',
+        target: './dist/app/server.zip',
+    });
+    const hash = (0, crypto_1.createHash)('sha256');
+    const zipFilePath = './dist/app/server.zip';
+    const zipFileContent = (0, fs_1.readFileSync)(zipFilePath);
+    hash.update(zipFileContent);
+    let hashValue = hash.digest('hex');
+    const credentialsHash = (0, crypto_1.createHash)('sha256');
+    const credentialsFilePath = './dist/credentials/credentials';
+    const credentialsFileContent = (0, fs_1.readFileSync)(credentialsFilePath);
+    credentialsHash.update(credentialsFileContent);
+    hashValue += credentialsHash.digest('hex');
+    (0, fs_1.writeFileSync)('./dist/app/current', hashValue);
+}
+exports.createZip = createZip;
+//# sourceMappingURL=createZip.js.map

package/dist/src/createZip.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"createZip.js","sourceRoot":"","sources":["../../src/createZip.ts"],"names":[],"mappings":";;;AAAA,kDAA2D;AAC3D,mCAAoC;AACpC,2BAAiD;AAE1C,KAAK,UAAU,SAAS;IAC7B,IAAA,gBAAK,EAAC,IAAI,EAAE,YAAY,CAAC,CAAC;IAE1B,IAAA,aAAE,EAAC,IAAI,EAAE,uBAAuB,CAAC,CAAC;IAElC,MAAM,IAAA,cAAG,EAAC;QACR,SAAS,EAAE,UAAU;QACrB,MAAM,EAAE,uBAAuB;KAChC,CAAC,CAAC;IAEH,MAAM,IAAI,GAAG,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC;IAClC,MAAM,WAAW,GAAG,uBAAuB,CAAC;IAC5C,MAAM,cAAc,GAAG,IAAA,iBAAY,EAAC,WAAW,CAAC,CAAC;IACjD,IAAI,CAAC,MAAM,CAAC,cAAc,CAAC,CAAC;IAE5B,IAAI,SAAS,GAAG,IAAI,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAEnC,MAAM,eAAe,GAAG,IAAA,mBAAU,EAAC,QAAQ,CAAC,CAAC;IAC7C,MAAM,mBAAmB,GAAG,gCAAgC,CAAC;IAC7D,MAAM,sBAAsB,GAAG,IAAA,iBAAY,EAAC,mBAAmB,CAAC,CAAC;IACjE,eAAe,CAAC,MAAM,CAAC,sBAAsB,CAAC,CAAC;IAC/C,SAAS,IAAI,eAAe,CAAC,MAAM,CAAC,KAAK,CAAC,CAAC;IAE3C,IAAA,kBAAa,EAAC,oBAAoB,EAAE,SAAS,CAAC,CAAC;AACjD,CAAC;AAxBD,8BAwBC"}

package/dist/src/deploymentsS3Bucket.d.ts

@@ -0,0 +1,13 @@
+import { HetznerVPSDeployment, HetznerVPSPackage } from '@goldstack/template-hetzner-vps';
+import { PackageConfig } from '@goldstack/utils-package-config';
+export interface DeploymentsS3BucketParams {
+    deployment: string;
+    packageConfig: PackageConfig<HetznerVPSPackage, HetznerVPSDeployment>;
+}
+export declare function assertDeploymentsS3Bucket(params: DeploymentsS3BucketParams): Promise<void>;
+export interface DeleteDeploymentsS3BucketParams {
+    deployment: string;
+    packageConfig: PackageConfig<HetznerVPSPackage, HetznerVPSDeployment>;
+}
+export declare function deleteDeploymentsS3Bucket(params: DeleteDeploymentsS3BucketParams): Promise<void>;
+//# sourceMappingURL=deploymentsS3Bucket.d.ts.map

package/dist/src/deploymentsS3Bucket.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"deploymentsS3Bucket.d.ts","sourceRoot":"","sources":["../../src/deploymentsS3Bucket.ts"],"names":[],"mappings":"AAAA,OAAO,EACL,oBAAoB,EACpB,iBAAiB,EAClB,MAAM,iCAAiC,CAAC;AACzC,OAAO,EAAE,aAAa,EAAE,MAAM,iCAAiC,CAAC;AAchE,MAAM,WAAW,yBAAyB;IACxC,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,aAAa,CAAC,iBAAiB,EAAE,oBAAoB,CAAC,CAAC;CACvE;AAED,wBAAsB,yBAAyB,CAC7C,MAAM,EAAE,yBAAyB,iBAgClC;AAED,MAAM,WAAW,+BAA+B;IAC9C,UAAU,EAAE,MAAM,CAAC;IACnB,aAAa,EAAE,aAAa,CAAC,iBAAiB,EAAE,oBAAoB,CAAC,CAAC;CACvE;AAED,wBAAsB,yBAAyB,CAC7C,MAAM,EAAE,+BAA+B,iBAyBxC"}

package/dist/src/deploymentsS3Bucket.js

@@ -0,0 +1,103 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.deleteDeploymentsS3Bucket = exports.assertDeploymentsS3Bucket = void 0;
+const crypto_1 = __importDefault(require("crypto"));
+const client_s3_1 = require("@aws-sdk/client-s3");
+const infra_aws_1 = require("@goldstack/infra-aws");
+const utils_cli_1 = require("@goldstack/utils-cli");
+async function assertDeploymentsS3Bucket(params) {
+    const deployment = params.packageConfig.getDeployment(params.deployment);
+    const awsUser = await (0, infra_aws_1.getAWSUser)(deployment.awsUser);
+    const credentials = await (0, infra_aws_1.getAWSCredentials)(awsUser);
+    const s3Client = new client_s3_1.S3Client({
+        credentials: credentials,
+        region: deployment.awsRegion,
+    });
+    if (!deployment.configuration.deploymentsS3Bucket) {
+        const projectHash = crypto_1.default.randomBytes(6).toString('hex');
+        deployment.configuration.deploymentsS3Bucket = `goldstack-deployments-${deployment.name}-${deployment.configuration.serverName}-${projectHash}`;
+        (0, utils_cli_1.logger)().info('Deployments bucket does not exist. Generating bucket name.', {
+            bucketName: deployment.configuration.deploymentsS3Bucket,
+        });
+    }
+    await assertS3Bucket({
+        s3: s3Client,
+        bucketName: deployment.configuration.deploymentsS3Bucket,
+    });
+    (0, utils_cli_1.logger)().info(`S3 bucket used for deployments: ${deployment.configuration.deploymentsS3Bucket}`);
+}
+exports.assertDeploymentsS3Bucket = assertDeploymentsS3Bucket;
+async function deleteDeploymentsS3Bucket(params) {
+    const deployment = params.packageConfig.getDeployment(params.deployment);
+    const awsUser = await (0, infra_aws_1.getAWSUser)(deployment.awsUser);
+    const credentials = await (0, infra_aws_1.getAWSCredentials)(awsUser);
+    const s3Client = new client_s3_1.S3Client({
+        credentials: credentials,
+        region: deployment.awsRegion,
+    });
+    if (!deployment.configuration.deploymentsS3Bucket) {
+        (0, utils_cli_1.logger)().warn('No deployments S3 bucket was destroyed since S3 bucket name not specified. This could be due to the S3 bucket not having been created yet.');
+        return;
+    }
+    (0, utils_cli_1.logger)().info(`Deleting S3 bucket: ${deployment.configuration.deploymentsS3Bucket}`);
+    await deleteS3Bucket({
+        s3: s3Client,
+        bucketName: deployment.configuration.deploymentsS3Bucket,
+    });
+    (0, utils_cli_1.logger)().info('S3 bucket deleted');
+}
+exports.deleteDeploymentsS3Bucket = deleteDeploymentsS3Bucket;
+const assertS3Bucket = async (params) => {
+    const bucketParams = {
+        Bucket: params.bucketName,
+    };
+    try {
+        await params.s3.send(new client_s3_1.CreateBucketCommand(bucketParams));
+        (0, utils_cli_1.logger)().info('S3 bucket created', { bucketName: bucketParams.Bucket });
+    }
+    catch (e) {
+        // if bucket already exists, ignore error
+        if (!(e instanceof client_s3_1.BucketAlreadyOwnedByYou)) {
+            (0, utils_cli_1.logger)().error('Cannot create bucket ', params.bucketName, ' error code', e.code);
+            throw new Error('Cannot create S3 state bucket: ' + e.message);
+        }
+    }
+};
+const deleteAllObjectsFromBucket = async (s3, bucketName) => {
+    let continuationToken = undefined;
+    do {
+        // List objects in the bucket
+        const listResponse = await s3.send(new client_s3_1.ListObjectsV2Command({
+            Bucket: bucketName,
+            ContinuationToken: continuationToken,
+        }));
+        // Check if there are any objects to delete
+        if (listResponse.Contents && listResponse.Contents.length > 0) {
+            // Delete listed objects
+            const deleteParams = {
+                Bucket: bucketName,
+                Delete: {
+                    Objects: listResponse.Contents.map((object) => ({ Key: object.Key })),
+                },
+            };
+            await s3.send(new client_s3_1.DeleteObjectsCommand(deleteParams));
+        }
+        // Check if more objects are to be listed (pagination)
+        continuationToken = listResponse.NextContinuationToken;
+    } while (continuationToken);
+};
+const deleteS3Bucket = async (params) => {
+    try {
+        // First, delete all objects from the bucket
+        await deleteAllObjectsFromBucket(params.s3, params.bucketName);
+        // Then, delete the empty bucket
+        await params.s3.send(new client_s3_1.DeleteBucketCommand({ Bucket: params.bucketName }));
+    }
+    catch (e) {
+        throw e; // Rethrow the error to handle it in the calling code if necessary
+    }
+};
+//# sourceMappingURL=deploymentsS3Bucket.js.map

package/dist/src/deploymentsS3Bucket.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"deploymentsS3Bucket.js","sourceRoot":"","sources":["../../src/deploymentsS3Bucket.ts"],"names":[],"mappings":";;;;;;AAKA,oDAA4B;AAE5B,kDAO4B;AAC5B,oDAAqE;AACrE,oDAA8C;AAOvC,KAAK,UAAU,yBAAyB,CAC7C,MAAiC;IAEjC,MAAM,UAAU,GAAG,MAAM,CAAC,aAAa,CAAC,aAAa,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAEzE,MAAM,OAAO,GAAG,MAAM,IAAA,sBAAU,EAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IAErD,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAiB,EAAC,OAAO,CAAC,CAAC;IACrD,MAAM,QAAQ,GAAG,IAAI,oBAAQ,CAAC;QAC5B,WAAW,EAAE,WAAW;QACxB,MAAM,EAAE,UAAU,CAAC,SAAS;KAC7B,CAAC,CAAC;IAEH,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;QACjD,MAAM,WAAW,GAAG,gBAAM,CAAC,WAAW,CAAC,CAAC,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;QAC1D,UAAU,CAAC,aAAa,CAAC,mBAAmB,GAAG,yBAAyB,UAAU,CAAC,IAAI,IAAI,UAAU,CAAC,aAAa,CAAC,UAAU,IAAI,WAAW,EAAE,CAAC;QAEhJ,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,4DAA4D,EAC5D;YACE,UAAU,EAAE,UAAU,CAAC,aAAa,CAAC,mBAAmB;SACzD,CACF,CAAC;KACH;IAED,MAAM,cAAc,CAAC;QACnB,EAAE,EAAE,QAAQ;QACZ,UAAU,EAAE,UAAU,CAAC,aAAa,CAAC,mBAAmB;KACzD,CAAC,CAAC;IAEH,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,mCAAmC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE,CAClF,CAAC;AACJ,CAAC;AAjCD,8DAiCC;AAOM,KAAK,UAAU,yBAAyB,CAC7C,MAAuC;IAEvC,MAAM,UAAU,GAAG,MAAM,CAAC,aAAa,CAAC,aAAa,CAAC,MAAM,CAAC,UAAU,CAAC,CAAC;IAEzE,MAAM,OAAO,GAAG,MAAM,IAAA,sBAAU,EAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IAErD,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAiB,EAAC,OAAO,CAAC,CAAC;IACrD,MAAM,QAAQ,GAAG,IAAI,oBAAQ,CAAC;QAC5B,WAAW,EAAE,WAAW;QACxB,MAAM,EAAE,UAAU,CAAC,SAAS;KAC7B,CAAC,CAAC;IACH,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;QACjD,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,4IAA4I,CAC7I,CAAC;QACF,OAAO;KACR;IACD,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,uBAAuB,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE,CACtE,CAAC;IACF,MAAM,cAAc,CAAC;QACnB,EAAE,EAAE,QAAQ;QACZ,UAAU,EAAE,UAAU,CAAC,aAAa,CAAC,mBAAmB;KACzD,CAAC,CAAC;IACH,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,mBAAmB,CAAC,CAAC;AACrC,CAAC;AA1BD,8DA0BC;AACD,MAAM,cAAc,GAAG,KAAK,EAAE,MAG7B,EAAiB,EAAE;IAClB,MAAM,YAAY,GAAG;QACnB,MAAM,EAAE,MAAM,CAAC,UAAU;KAC1B,CAAC;IACF,IAAI;QACF,MAAM,MAAM,CAAC,EAAE,CAAC,IAAI,CAAC,IAAI,+BAAmB,CAAC,YAAY,CAAC,CAAC,CAAC;QAC5D,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,mBAAmB,EAAE,EAAE,UAAU,EAAE,YAAY,CAAC,MAAM,EAAE,CAAC,CAAC;KACzE;IAAC,OAAO,CAAC,EAAE;QACV,yCAAyC;QACzC,IAAI,CAAC,CAAC,CAAC,YAAY,mCAAuB,CAAC,EAAE;YAC3C,IAAA,kBAAM,GAAE,CAAC,KAAK,CACZ,uBAAuB,EACvB,MAAM,CAAC,UAAU,EACjB,aAAa,EACb,CAAC,CAAC,IAAI,CACP,CAAC;YACF,MAAM,IAAI,KAAK,CAAC,iCAAiC,GAAG,CAAC,CAAC,OAAO,CAAC,CAAC;SAChE;KACF;AACH,CAAC,CAAC;AAEF,MAAM,0BAA0B,GAAG,KAAK,EACtC,EAAY,EACZ,UAAkB,EACH,EAAE;IACjB,IAAI,iBAAiB,GAAuB,SAAS,CAAC;IACtD,GAAG;QACD,6BAA6B;QAC7B,MAAM,YAAY,GAAG,MAAM,EAAE,CAAC,IAAI,CAChC,IAAI,gCAAoB,CAAC;YACvB,MAAM,EAAE,UAAU;YAClB,iBAAiB,EAAE,iBAAiB;SACrC,CAAC,CACH,CAAC;QAEF,2CAA2C;QAC3C,IAAI,YAAY,CAAC,QAAQ,IAAI,YAAY,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,EAAE;YAC7D,wBAAwB;YACxB,MAAM,YAAY,GAAG;gBACnB,MAAM,EAAE,UAAU;gBAClB,MAAM,EAAE;oBACN,OAAO,EAAE,YAAY,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,MAAM,EAAE,EAAE,CAAC,CAAC,EAAE,GAAG,EAAE,MAAM,CAAC,GAAG,EAAE,CAAC,CAAC;iBACtE;aACF,CAAC;YACF,MAAM,EAAE,CAAC,IAAI,CAAC,IAAI,gCAAoB,CAAC,YAAY,CAAC,CAAC,CAAC;SACvD;QAED,sDAAsD;QACtD,iBAAiB,GAAG,YAAY,CAAC,qBAAqB,CAAC;KACxD,QAAQ,iBAAiB,EAAE;AAC9B,CAAC,CAAC;AAEF,MAAM,cAAc,GAAG,KAAK,EAAE,MAG7B,EAAiB,EAAE;IAClB,IAAI;QACF,4CAA4C;QAC5C,MAAM,0BAA0B,CAAC,MAAM,CAAC,EAAE,EAAE,MAAM,CAAC,UAAU,CAAC,CAAC;QAE/D,gCAAgC;QAChC,MAAM,MAAM,CAAC,EAAE,CAAC,IAAI,CAClB,IAAI,+BAAmB,CAAC,EAAE,MAAM,EAAE,MAAM,CAAC,UAAU,EAAE,CAAC,CACvD,CAAC;KACH;IAAC,OAAO,CAAC,EAAE;QACV,MAAM,CAAC,CAAC,CAAC,kEAAkE;KAC5E;AACH,CAAC,CAAC"}

package/dist/src/initScriptUpdate.d.ts

@@ -0,0 +1,3 @@
+export declare function updateCredentialsUrl(newUrl: string): void;
+export declare function updateS3Bucket(newBucket: string): void;
+//# sourceMappingURL=initScriptUpdate.d.ts.map

package/dist/src/initScriptUpdate.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"initScriptUpdate.d.ts","sourceRoot":"","sources":["../../src/initScriptUpdate.ts"],"names":[],"mappings":"AAEA,wBAAgB,oBAAoB,CAAC,MAAM,EAAE,MAAM,GAAG,IAAI,CAQzD;AAED,wBAAgB,cAAc,CAAC,SAAS,EAAE,MAAM,GAAG,IAAI,CAQtD"}

package/dist/src/initScriptUpdate.js

@@ -0,0 +1,19 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.updateS3Bucket = exports.updateCredentialsUrl = void 0;
+const fs_1 = require("fs");
+function updateCredentialsUrl(newUrl) {
+    const filePath = './infra/aws/cloud-init.yml';
+    const fileContent = (0, fs_1.readFileSync)(filePath, 'utf8');
+    const updatedContent = fileContent.replace(/CREDENTIALS_URL="[^"]*"/, `CREDENTIALS_URL="${newUrl}"`);
+    (0, fs_1.writeFileSync)(filePath, updatedContent, 'utf8');
+}
+exports.updateCredentialsUrl = updateCredentialsUrl;
+function updateS3Bucket(newBucket) {
+    const filePath = './infra/aws/cloud-init.yml';
+    const fileContent = (0, fs_1.readFileSync)(filePath, 'utf8');
+    const updatedContent = fileContent.replace(/S3_BUCKET="[^"]*"/, `S3_BUCKET="${newBucket}"`);
+    (0, fs_1.writeFileSync)(filePath, updatedContent, 'utf8');
+}
+exports.updateS3Bucket = updateS3Bucket;
+//# sourceMappingURL=initScriptUpdate.js.map

package/dist/src/initScriptUpdate.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"initScriptUpdate.js","sourceRoot":"","sources":["../../src/initScriptUpdate.ts"],"names":[],"mappings":";;;AAAA,2BAAiD;AAEjD,SAAgB,oBAAoB,CAAC,MAAc;IACjD,MAAM,QAAQ,GAAG,4BAA4B,CAAC;IAC9C,MAAM,WAAW,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IACnD,MAAM,cAAc,GAAG,WAAW,CAAC,OAAO,CACxC,yBAAyB,EACzB,oBAAoB,MAAM,GAAG,CAC9B,CAAC;IACF,IAAA,kBAAa,EAAC,QAAQ,EAAE,cAAc,EAAE,MAAM,CAAC,CAAC;AAClD,CAAC;AARD,oDAQC;AAED,SAAgB,cAAc,CAAC,SAAiB;IAC9C,MAAM,QAAQ,GAAG,4BAA4B,CAAC;IAC9C,MAAM,WAAW,GAAG,IAAA,iBAAY,EAAC,QAAQ,EAAE,MAAM,CAAC,CAAC;IACnD,MAAM,cAAc,GAAG,WAAW,CAAC,OAAO,CACxC,mBAAmB,EACnB,cAAc,SAAS,GAAG,CAC3B,CAAC;IACF,IAAA,kBAAa,EAAC,QAAQ,EAAE,cAAc,EAAE,MAAM,CAAC,CAAC;AAClD,CAAC;AARD,wCAQC"}

package/dist/src/templateHetznerVPSCli.d.ts

@@ -0,0 +1,3 @@
+export { createZip } from './createZip';
+export declare const run: (args: string[]) => Promise<void>;
+//# sourceMappingURL=templateHetznerVPSCli.d.ts.map

package/dist/src/templateHetznerVPSCli.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"templateHetznerVPSCli.d.ts","sourceRoot":"","sources":["../../src/templateHetznerVPSCli.ts"],"names":[],"mappings":"AA+BA,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AAexC,eAAO,MAAM,GAAG,SAAgB,MAAM,EAAE,KAAG,QAAQ,IAAI,CA0HtD,CAAC"}

package/dist/src/templateHetznerVPSCli.js

@@ -0,0 +1,118 @@
+"use strict";
+var __importDefault = (this && this.__importDefault) || function (mod) {
+    return (mod && mod.__esModule) ? mod : { "default": mod };
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.run = exports.createZip = void 0;
+const utils_package_1 = require("@goldstack/utils-package");
+const utils_cli_1 = require("@goldstack/utils-cli");
+const deploymentsS3Bucket_1 = require("./deploymentsS3Bucket");
+const utils_terraform_1 = require("@goldstack/utils-terraform");
+const utils_terraform_aws_1 = require("@goldstack/utils-terraform-aws");
+const utils_terraform_hetzner_1 = require("@goldstack/utils-terraform-hetzner");
+const utils_package_config_1 = require("@goldstack/utils-package-config");
+const yargs_1 = __importDefault(require("yargs"));
+const uploadZip_1 = require("./uploadZip");
+const awsCredentials_1 = require("./awsCredentials");
+var createZip_1 = require("./createZip");
+Object.defineProperty(exports, "createZip", { enumerable: true, get: function () { return createZip_1.createZip; } });
+const utils_sh_1 = require("@goldstack/utils-sh");
+const uploadCredentials_1 = require("./uploadCredentials");
+const initScriptUpdate_1 = require("./initScriptUpdate");
+const createZip_2 = require("./createZip");
+const utils_cli_2 = require("@goldstack/utils-cli");
+const run = async (args) => {
+    await (0, utils_cli_1.wrapCli)(async () => {
+        const argv = await (0, utils_package_1.buildCli)({
+            yargs: yargs_1.default,
+            deployCommands: (0, utils_package_1.buildDeployCommands)(),
+            infraCommands: (0, utils_terraform_1.infraCommands)(),
+        })
+            .help()
+            .parse();
+        const packageConfig = new utils_package_config_1.PackageConfig({
+            packagePath: './',
+        });
+        const config = packageConfig.getConfig();
+        const command = argv._[0];
+        const [, , , ...opArgs] = args;
+        if (command === 'deploy') {
+            (0, utils_cli_2.logger)().info('Starting deployment to Hetzner VPS.');
+            const deployment = packageConfig.getDeployment(opArgs[0]);
+            await (0, createZip_2.createZip)();
+            await (0, uploadCredentials_1.uploadCredentials)({ deployment });
+            await (0, uploadZip_1.uploadZip)({
+                deployment,
+            });
+            (0, utils_cli_2.logger)().info('Deployment to Hetzner VPS completed. Server should restart in a few seconds.');
+            return;
+        }
+        if (command === 'infra') {
+            const deployment = packageConfig.getDeployment(opArgs[1]);
+            const infrastructureOp = opArgs[0];
+            (0, utils_cli_2.logger)().info(`Running infrastructure operation ${infrastructureOp} for ${deployment.name}`);
+            // use remote managed state from Terraform
+            await (0, utils_terraform_aws_1.terraformAwsCli)(['create-state', opArgs[1]]);
+            if (infrastructureOp === 'up' || infrastructureOp === 'apply') {
+                // Ensure S3 Bucket for deployments exist
+                await (0, deploymentsS3Bucket_1.assertDeploymentsS3Bucket)({
+                    packageConfig,
+                    deployment: opArgs[1],
+                });
+                if (!deployment.configuration.deploymentsS3Bucket) {
+                    throw new Error('Expected bucket to have been created');
+                }
+                (0, utils_package_1.writePackageConfig)(config);
+                if (!deployment.configuration.deploymentsS3Bucket) {
+                    throw new Error('Cannot define IAM user since bucket not created.');
+                }
+                await (0, awsCredentials_1.assertUserWithReadOnlyS3Access)({
+                    bucketName: deployment.configuration.deploymentsS3Bucket,
+                    deployment,
+                });
+                (0, utils_package_1.writePackageConfig)(config);
+                await (0, awsCredentials_1.assertAWSCredentials)({
+                    deployment,
+                });
+                await (0, uploadCredentials_1.uploadCredentials)({ deployment });
+                const url = await (0, uploadCredentials_1.generateCredentialsReadOnlyUrl)(deployment);
+                (0, initScriptUpdate_1.updateCredentialsUrl)(url);
+                (0, initScriptUpdate_1.updateS3Bucket)(deployment.configuration.deploymentsS3Bucket);
+                (0, utils_package_1.writePackageConfig)(config);
+            }
+            (0, utils_package_1.writePackageConfig)(config);
+            if (infrastructureOp !== 'destroy') {
+                await (0, createZip_2.createZip)();
+                await (0, uploadCredentials_1.uploadCredentials)({ deployment });
+                await (0, uploadZip_1.uploadZip)({
+                    deployment,
+                });
+            }
+            const { awsProvider } = await (0, utils_terraform_aws_1.initTerraformEnvironment)(opArgs);
+            await (0, utils_terraform_hetzner_1.terraformHetznerCli)(opArgs, awsProvider);
+            (0, initScriptUpdate_1.updateCredentialsUrl)('https://injectedurl.com');
+            (0, initScriptUpdate_1.updateS3Bucket)('injected-s3-bucket');
+            if (infrastructureOp === 'destroy') {
+                if (deployment.configuration.vpsIAMUserName) {
+                    await (0, awsCredentials_1.deleteUserAndResources)({
+                        deployment,
+                        vpsUserName: deployment.configuration.vpsIAMUserName,
+                    });
+                    deployment.configuration.vpsIAMUserName = undefined;
+                    (0, utils_package_1.writePackageConfig)(config);
+                }
+                await (0, deploymentsS3Bucket_1.deleteDeploymentsS3Bucket)({
+                    packageConfig,
+                    deployment: opArgs[1],
+                });
+                deployment.configuration.deploymentsS3Bucket = undefined;
+                (0, utils_package_1.writePackageConfig)(config);
+                (0, utils_sh_1.rm)('-f', './dist/credentials/credentials');
+            }
+            return;
+        }
+        throw new Error('Unknown command: ' + command);
+    });
+};
+exports.run = run;
+//# sourceMappingURL=templateHetznerVPSCli.js.map

package/dist/src/templateHetznerVPSCli.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"templateHetznerVPSCli.js","sourceRoot":"","sources":["../../src/templateHetznerVPSCli.ts"],"names":[],"mappings":";;;;;;AAAA,4DAIkC;AAClC,oDAA+C;AAE/C,+DAG+B;AAE/B,gEAA2D;AAC3D,wEAGwC;AACxC,gFAAyE;AACzE,0EAAgE;AAKhE,kDAA0B;AAC1B,2CAAwC;AACxC,qDAK0B;AAC1B,yCAAwC;AAA/B,sGAAA,SAAS,OAAA;AAElB,kDAAuD;AACvD,2DAG6B;AAC7B,yDAG4B;AAC5B,2CAAwC;AAExC,oDAA8C;AAEvC,MAAM,GAAG,GAAG,KAAK,EAAE,IAAc,EAAiB,EAAE;IACzD,MAAM,IAAA,mBAAO,EAAC,KAAK,IAAI,EAAE;QACvB,MAAM,IAAI,GAAG,MAAM,IAAA,wBAAQ,EAAC;YAC1B,KAAK,EAAL,eAAK;YACL,cAAc,EAAE,IAAA,mCAAmB,GAAE;YACrC,aAAa,EAAE,IAAA,+BAAa,GAAE;SAC/B,CAAC;aACC,IAAI,EAAE;aACN,KAAK,EAAE,CAAC;QAEX,MAAM,aAAa,GAAG,IAAI,oCAAa,CAGrC;YACA,WAAW,EAAE,IAAI;SAClB,CAAC,CAAC;QACH,MAAM,MAAM,GAAG,aAAa,CAAC,SAAS,EAAE,CAAC;QACzC,MAAM,OAAO,GAAG,IAAI,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;QAC1B,MAAM,CAAC,EAAE,AAAD,EAAG,AAAD,EAAG,GAAG,MAAM,CAAC,GAAG,IAAI,CAAC;QAE/B,IAAI,OAAO,KAAK,QAAQ,EAAE;YACxB,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,qCAAqC,CAAC,CAAC;YACrD,MAAM,UAAU,GAAG,aAAa,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;YAC1D,MAAM,IAAA,qBAAS,GAAE,CAAC;YAElB,MAAM,IAAA,qCAAiB,EAAC,EAAE,UAAU,EAAE,CAAC,CAAC;YACxC,MAAM,IAAA,qBAAS,EAAC;gBACd,UAAU;aACX,CAAC,CAAC;YACH,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,8EAA8E,CAC/E,CAAC;YACF,OAAO;SACR;QAED,IAAI,OAAO,KAAK,OAAO,EAAE;YACvB,MAAM,UAAU,GAAG,aAAa,CAAC,aAAa,CAAC,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC;YAC1D,MAAM,gBAAgB,GAAG,MAAM,CAAC,CAAC,CAAC,CAAC;YACnC,IAAA,kBAAM,GAAE,CAAC,IAAI,CACX,oCAAoC,gBAAgB,QAAQ,UAAU,CAAC,IAAI,EAAE,CAC9E,CAAC;YACF,0CAA0C;YAC1C,MAAM,IAAA,qCAAe,EAAC,CAAC,cAAc,EAAE,MAAM,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC;YAEnD,IAAI,gBAAgB,KAAK,IAAI,IAAI,gBAAgB,KAAK,OAAO,EAAE;gBAC7D,yCAAyC;gBAEzC,MAAM,IAAA,+CAAyB,EAAC;oBAC9B,aAAa;oBACb,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;iBACtB,CAAC,CAAC;gBAEH,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;oBACjD,MAAM,IAAI,KAAK,CAAC,sCAAsC,CAAC,CAAC;iBACzD;gBAED,IAAA,kCAAkB,EAAC,MAAM,CAAC,CAAC;gBAE3B,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;oBACjD,MAAM,IAAI,KAAK,CAAC,kDAAkD,CAAC,CAAC;iBACrE;gBAED,MAAM,IAAA,+CAA8B,EAAC;oBACnC,UAAU,EAAE,UAAU,CAAC,aAAa,CAAC,mBAAmB;oBACxD,UAAU;iBACX,CAAC,CAAC;gBAEH,IAAA,kCAAkB,EAAC,MAAM,CAAC,CAAC;gBAE3B,MAAM,IAAA,qCAAoB,EAAC;oBACzB,UAAU;iBACX,CAAC,CAAC;gBAEH,MAAM,IAAA,qCAAiB,EAAC,EAAE,UAAU,EAAE,CAAC,CAAC;gBAExC,MAAM,GAAG,GAAG,MAAM,IAAA,kDAA8B,EAAC,UAAU,CAAC,CAAC;gBAC7D,IAAA,uCAA+B,EAAC,GAAG,CAAC,CAAC;gBACrC,IAAA,iCAAyB,EAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,CAAC,CAAC;gBACxE,IAAA,kCAAkB,EAAC,MAAM,CAAC,CAAC;aAC5B;YAED,IAAA,kCAAkB,EAAC,MAAM,CAAC,CAAC;YAE3B,IAAI,gBAAgB,KAAK,SAAS,EAAE;gBAClC,MAAM,IAAA,qBAAS,GAAE,CAAC;gBAClB,MAAM,IAAA,qCAAiB,EAAC,EAAE,UAAU,EAAE,CAAC,CAAC;gBACxC,MAAM,IAAA,qBAAS,EAAC;oBACd,UAAU;iBACX,CAAC,CAAC;aACJ;YAED,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,IAAA,8CAAwB,EAAC,MAAM,CAAC,CAAC;YAC/D,MAAM,IAAA,6CAAmB,EAAC,MAAM,EAAE,WAAW,CAAC,CAAC;YAE/C,IAAA,uCAA+B,EAAC,yBAAyB,CAAC,CAAC;YAC3D,IAAA,iCAAyB,EAAC,oBAAoB,CAAC,CAAC;YAEhD,IAAI,gBAAgB,KAAK,SAAS,EAAE;gBAClC,IAAI,UAAU,CAAC,aAAa,CAAC,cAAc,EAAE;oBAC3C,MAAM,IAAA,uCAAsB,EAAC;wBAC3B,UAAU;wBACV,WAAW,EAAE,UAAU,CAAC,aAAa,CAAC,cAAc;qBACrD,CAAC,CAAC;oBACH,UAAU,CAAC,aAAa,CAAC,cAAc,GAAG,SAAS,CAAC;oBACpD,IAAA,kCAAkB,EAAC,MAAM,CAAC,CAAC;iBAC5B;gBAED,MAAM,IAAA,+CAAyB,EAAC;oBAC9B,aAAa;oBACb,UAAU,EAAE,MAAM,CAAC,CAAC,CAAC;iBACtB,CAAC,CAAC;gBACH,UAAU,CAAC,aAAa,CAAC,mBAAmB,GAAG,SAAS,CAAC;gBACzD,IAAA,kCAAkB,EAAC,MAAM,CAAC,CAAC;gBAE3B,IAAA,aAAE,EAAC,IAAI,EAAE,gCAAgC,CAAC,CAAC;aAC5C;YAED,OAAO;SACR;QAED,MAAM,IAAI,KAAK,CAAC,mBAAmB,GAAG,OAAO,CAAC,CAAC;IACjD,CAAC,CAAC,CAAC;AACL,CAAC,CAAC;AA1HW,QAAA,GAAG,OA0Hd"}

package/dist/src/uploadCredentials.d.ts

@@ -0,0 +1,7 @@
+import { HetznerVPSDeployment } from '@goldstack/template-hetzner-vps';
+export interface UploadCredentialsParams {
+    deployment: HetznerVPSDeployment;
+}
+export declare function uploadCredentials({ deployment, }: UploadCredentialsParams): Promise<void>;
+export declare function generateCredentialsReadOnlyUrl(deployment: HetznerVPSDeployment): Promise<string>;
+//# sourceMappingURL=uploadCredentials.d.ts.map

package/dist/src/uploadCredentials.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"uploadCredentials.d.ts","sourceRoot":"","sources":["../../src/uploadCredentials.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AAOvE,MAAM,WAAW,uBAAuB;IACtC,UAAU,EAAE,oBAAoB,CAAC;CAClC;AAED,wBAAsB,iBAAiB,CAAC,EACtC,UAAU,GACX,EAAE,uBAAuB,GAAG,OAAO,CAAC,IAAI,CAAC,CAiBzC;AAED,wBAAsB,8BAA8B,CAClD,UAAU,EAAE,oBAAoB,GAC/B,OAAO,CAAC,MAAM,CAAC,CA2BjB"}

package/dist/src/uploadCredentials.js

@@ -0,0 +1,45 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.generateCredentialsReadOnlyUrl = exports.uploadCredentials = void 0;
+const utils_s3_deployment_1 = require("@goldstack/utils-s3-deployment");
+const client_s3_1 = require("@aws-sdk/client-s3");
+const s3_request_presigner_1 = require("@aws-sdk/s3-request-presigner");
+const infra_aws_1 = require("@goldstack/infra-aws");
+const utils_cli_1 = require("@goldstack/utils-cli");
+async function uploadCredentials({ deployment, }) {
+    const userName = deployment.awsUser;
+    if (!deployment.configuration.deploymentsS3Bucket) {
+        throw new Error('Cannot upload credentials files. Deployments S3 bucket is not defined.');
+    }
+    (0, utils_cli_1.logger)().info('Uploading credentials file to S3 bucket');
+    await (0, utils_s3_deployment_1.upload)({
+        userName,
+        bucketPath: '/credentials/',
+        region: deployment.awsRegion,
+        bucket: deployment.configuration.deploymentsS3Bucket,
+        localPath: './dist/credentials',
+    });
+}
+exports.uploadCredentials = uploadCredentials;
+async function generateCredentialsReadOnlyUrl(deployment) {
+    if (!deployment.configuration.deploymentsS3Bucket) {
+        throw new Error('Cannot generate URL. Deployments S3 bucket is not defined.');
+    }
+    const awsUser = await (0, infra_aws_1.getAWSUser)(deployment.awsUser);
+    const credentials = await (0, infra_aws_1.getAWSCredentials)(awsUser);
+    const s3Client = new client_s3_1.S3Client({
+        credentials,
+        region: deployment.awsRegion,
+    });
+    const bucket = deployment.configuration.deploymentsS3Bucket;
+    const command = new client_s3_1.GetObjectCommand({
+        Bucket: bucket,
+        Key: 'credentials/credentials',
+    });
+    const credentialsUrl = await (0, s3_request_presigner_1.getSignedUrl)(s3Client, command, {
+        expiresIn: 60 * 60,
+    }); // 1 hour
+    return credentialsUrl;
+}
+exports.generateCredentialsReadOnlyUrl = generateCredentialsReadOnlyUrl;
+//# sourceMappingURL=uploadCredentials.js.map

package/dist/src/uploadCredentials.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"uploadCredentials.js","sourceRoot":"","sources":["../../src/uploadCredentials.ts"],"names":[],"mappings":";;;AACA,wEAAwD;AACxD,kDAAgE;AAChE,wEAA6D;AAC7D,oDAAqE;AACrE,oDAA8C;AAMvC,KAAK,UAAU,iBAAiB,CAAC,EACtC,UAAU,GACc;IACxB,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,CAAC;IAEpC,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;QACjD,MAAM,IAAI,KAAK,CACb,wEAAwE,CACzE,CAAC;KACH;IAED,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,yCAAyC,CAAC,CAAC;IACzD,MAAM,IAAA,4BAAM,EAAC;QACX,QAAQ;QACR,UAAU,EAAE,eAAe;QAC3B,MAAM,EAAE,UAAU,CAAC,SAAS;QAC5B,MAAM,EAAE,UAAU,CAAC,aAAa,CAAC,mBAAmB;QACpD,SAAS,EAAE,oBAAoB;KAChC,CAAC,CAAC;AACL,CAAC;AAnBD,8CAmBC;AAEM,KAAK,UAAU,8BAA8B,CAClD,UAAgC;IAEhC,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;QACjD,MAAM,IAAI,KAAK,CACb,4DAA4D,CAC7D,CAAC;KACH;IAED,MAAM,OAAO,GAAG,MAAM,IAAA,sBAAU,EAAC,UAAU,CAAC,OAAO,CAAC,CAAC;IACrD,MAAM,WAAW,GAAG,MAAM,IAAA,6BAAiB,EAAC,OAAO,CAAC,CAAC;IAErD,MAAM,QAAQ,GAAG,IAAI,oBAAQ,CAAC;QAC5B,WAAW;QACX,MAAM,EAAE,UAAU,CAAC,SAAS;KAC7B,CAAC,CAAC;IAEH,MAAM,MAAM,GAAG,UAAU,CAAC,aAAa,CAAC,mBAAmB,CAAC;IAE5D,MAAM,OAAO,GAAG,IAAI,4BAAgB,CAAC;QACnC,MAAM,EAAE,MAAM;QACd,GAAG,EAAE,yBAAyB;KAC/B,CAAC,CAAC;IAEH,MAAM,cAAc,GAAG,MAAM,IAAA,mCAAY,EAAC,QAAQ,EAAE,OAAO,EAAE;QAC3D,SAAS,EAAE,EAAE,GAAG,EAAE;KACnB,CAAC,CAAC,CAAC,SAAS;IAEb,OAAO,cAAc,CAAC;AACxB,CAAC;AA7BD,wEA6BC"}

package/dist/src/uploadZip.d.ts

@@ -0,0 +1,6 @@
+import { HetznerVPSDeployment } from '@goldstack/template-hetzner-vps';
+export interface UploadZipParams {
+    deployment: HetznerVPSDeployment;
+}
+export declare function uploadZip({ deployment }: UploadZipParams): Promise<void>;
+//# sourceMappingURL=uploadZip.d.ts.map

package/dist/src/uploadZip.d.ts.map

@@ -0,0 +1 @@
+{"version":3,"file":"uploadZip.d.ts","sourceRoot":"","sources":["../../src/uploadZip.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,oBAAoB,EAAE,MAAM,iCAAiC,CAAC;AAIvE,MAAM,WAAW,eAAe;IAC9B,UAAU,EAAE,oBAAoB,CAAC;CAClC;AAED,wBAAsB,SAAS,CAAC,EAAE,UAAU,EAAE,EAAE,eAAe,iBAkB9D"}

package/dist/src/uploadZip.js

@@ -0,0 +1,21 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.uploadZip = void 0;
+const utils_cli_1 = require("@goldstack/utils-cli");
+const utils_s3_deployment_1 = require("@goldstack/utils-s3-deployment");
+async function uploadZip({ deployment }) {
+    const userName = deployment.awsUser;
+    if (!deployment.configuration.deploymentsS3Bucket) {
+        throw new Error('Cannot upload server files. Deployments S3 bucket is not defined.');
+    }
+    (0, utils_cli_1.logger)().info('Uploading application files to S3 bucket');
+    await (0, utils_s3_deployment_1.upload)({
+        userName,
+        bucketPath: '/server/',
+        region: deployment.awsRegion,
+        bucket: deployment.configuration.deploymentsS3Bucket,
+        localPath: './dist/app',
+    });
+}
+exports.uploadZip = uploadZip;
+//# sourceMappingURL=uploadZip.js.map

package/dist/src/uploadZip.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"uploadZip.js","sourceRoot":"","sources":["../../src/uploadZip.ts"],"names":[],"mappings":";;;AACA,oDAA8C;AAC9C,wEAAwD;AAMjD,KAAK,UAAU,SAAS,CAAC,EAAE,UAAU,EAAmB;IAC7D,MAAM,QAAQ,GAAG,UAAU,CAAC,OAAO,CAAC;IAEpC,IAAI,CAAC,UAAU,CAAC,aAAa,CAAC,mBAAmB,EAAE;QACjD,MAAM,IAAI,KAAK,CACb,mEAAmE,CACpE,CAAC;KACH;IAED,IAAA,kBAAM,GAAE,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAC;IAE1D,MAAM,IAAA,4BAAM,EAAC;QACX,QAAQ;QACR,UAAU,EAAE,UAAU;QACtB,MAAM,EAAE,UAAU,CAAC,SAAS;QAC5B,MAAM,EAAE,UAAU,CAAC,aAAa,CAAC,mBAAmB;QACpD,SAAS,EAAE,YAAY;KACxB,CAAC,CAAC;AACL,CAAC;AAlBD,8BAkBC"}

package/package.json

@@ -0,0 +1,76 @@
+{
+  "name": "@goldstack/template-hetzner-vps-cli",
+  "version": "0.1.2",
+  "description": "Utilities for packages that allows provisioning a Hetzner server with Docker",
+  "keywords": [
+    "goldstack",
+    "utility",
+    "infrastructure",
+    "IaC",
+    "aws",
+    "SES",
+    "email",
+    "configuration"
+  ],
+  "homepage": "https://goldstack.party",
+  "bugs": {
+    "url": "https://github.com/goldstack/goldstack/issues"
+  },
+  "repository": {
+    "type": "git",
+    "url": "https://github.com/goldstack/goldstack.git"
+  },
+  "license": "MIT",
+  "author": "Max Rohde",
+  "sideEffects": false,
+  "main": "dist/src/templateHetznerVPSCli.js",
+  "bin": {
+    "template": "./bin/template",
+    "template-email-send": "./bin/template"
+  },
+  "scripts": {
+    "build": "yarn clean && yarn compile",
+    "clean": "rimraf ./dist",
+    "compile": "tsc -p tsconfig.json",
+    "coverage": "jest --collect-coverage --passWithNoTests --config=./jest.config.js --runInBand",
+    "prepublishOnly": "yarn run build",
+    "publish": "utils-git changed --exec \"yarn npm publish $@\"",
+    "test": "GOLDSTACK_DEPLOYMENT=local jest --watch --config=./jest.config.js --runInBand",
+    "test-ci": "GOLDSTACK_DEPLOYMENT=local jest --passWithNoTests --config=./jest.config.js --runInBand ",
+    "version:apply": "utils-git changed --exec \"yarn version $@ && yarn version apply\"",
+    "version:apply:force": "yarn version $@ && yarn version apply"
+  },
+  "dependencies": {
+    "@aws-sdk/client-iam": "^3.645.0",
+    "@aws-sdk/client-s3": "3.620.0",
+    "@aws-sdk/s3-request-presigner": "^3.645.0",
+    "@goldstack/infra-aws": "0.4.18",
+    "@goldstack/template-hetzner-vps": "0.1.2",
+    "@goldstack/utils-cli": "0.3.10",
+    "@goldstack/utils-package": "0.4.10",
+    "@goldstack/utils-package-config": "0.4.10",
+    "@goldstack/utils-s3-deployment": "0.5.20",
+    "@goldstack/utils-sh": "0.5.9",
+    "@goldstack/utils-terraform": "0.4.20",
+    "@goldstack/utils-terraform-aws": "0.4.23",
+    "@goldstack/utils-terraform-hetzner": "0.1.2",
+    "source-map-support": "^0.5.21",
+    "yargs": "^17.5.1"
+  },
+  "devDependencies": {
+    "@goldstack/utils-git": "0.2.9",
+    "@goldstack/utils-package-config-generate": "0.3.9",
+    "@swc/core": "^1.3.74",
+    "@swc/jest": "^0.2.27",
+    "@types/jest": "^29.0.1",
+    "@types/node": "^18.7.13",
+    "@types/yargs": "^17.0.10",
+    "jest": "^29.3.1",
+    "rimraf": "^3.0.2",
+    "ts-node": "^10.9.1",
+    "typescript": "^4.8.4"
+  },
+  "publishConfig": {
+    "main": "dist/src/templateHetznerVPSCli.js"
+  }
+}