@highstate/k8s 0.4.5

package/dist/shared-hajqPzR4.js

@@ -0,0 +1,64 @@
+import { readdirSync } from 'node:fs';
+import { resolve } from 'node:path';
+import { output, toPromise, resolvePackagePath } from '@highstate/pulumi';
+import { Provider, core } from '@pulumi/kubernetes';
+import { mergeDeep } from 'remeda';
+
+function createProvider(cluster) {
+  const provider = output(cluster).apply((cluster2) => {
+    return new Provider(cluster2.name, {
+      kubeconfig: cluster2.kubeconfig
+    });
+  });
+  return toPromise(provider);
+}
+function createNamespace(name, provider, args = {}) {
+  return new core.v1.Namespace(
+    name,
+    mergeDeep(args, {
+      metadata: {
+        name
+      }
+    }),
+    { provider }
+  );
+}
+const commonExtraArgs = ["name", "namespace", "metadata"];
+function mapMetadata(args, fallbackName) {
+  return {
+    ...args.metadata,
+    name: args.name ?? args.metadata?.name ?? fallbackName,
+    namespace: args.namespace ? mapNamespaceLikeToNamespaceName(args.namespace) : void 0
+  };
+}
+function resolveChartPath(packageName, chartName, parent) {
+  const resolvedChartsPath = resolvePackagePath(packageName, "assets", parent);
+  const files = readdirSync(resolvedChartsPath).filter((file) => file.startsWith(chartName));
+  if (files.length === 0) {
+    throw new Error(`No chart found for ${chartName}`);
+  }
+  if (files.length > 1) {
+    throw new Error(`Multiple charts found for ${chartName}`);
+  }
+  return resolve(resolvedChartsPath, files[0]);
+}
+function mapSelectorLikeToSelector(selector) {
+  if ("matchLabels" in selector || "matchExpressions" in selector) {
+    return selector;
+  }
+  return {
+    matchLabels: selector
+  };
+}
+function mapNamespaceLikeToNamespaceName(namespace) {
+  return core.v1.Namespace.isInstance(namespace) ? namespace.metadata.name : output(namespace);
+}
+function mapNamespaceNameToSelector(namespace) {
+  return {
+    matchLabels: {
+      "kubernetes.io/metadata.name": namespace
+    }
+  };
+}
+
+export { mapSelectorLikeToSelector as a, mapNamespaceNameToSelector as b, commonExtraArgs as c, mapNamespaceLikeToNamespaceName as d, createProvider as e, createNamespace as f, mapMetadata as m, resolveChartPath as r };

package/dist/units/access-point/index.js

@@ -0,0 +1,13 @@
+import { k8s } from '@highstate/library';
+import { forUnit } from '@highstate/pulumi';
+
+const { inputs, outputs } = forUnit(k8s.accessPoint);
+var index = outputs({
+  accessPoint: {
+    dnsProvider: inputs.dnsProvider,
+    gateway: inputs.gateway,
+    tlsIssuer: inputs.tlsIssuer
+  }
+});
+
+export { index as default };

package/dist/units/cert-manager/index.js

@@ -0,0 +1,34 @@
+import { k8s } from '@highstate/library';
+import { forUnit } from '@highstate/pulumi';
+import { helm } from '@pulumi/kubernetes';
+import { e as createProvider, f as createNamespace, r as resolveChartPath } from '../../shared-hajqPzR4.js';
+import 'node:fs';
+import 'node:path';
+import 'remeda';
+
+const { inputs, outputs } = forUnit(k8s.certManager);
+const provider = await createProvider(inputs.k8sCluster);
+const namespace = createNamespace("cert-manager", provider);
+new helm.v4.Chart(
+  "cert-manager",
+  {
+    namespace: namespace.metadata.name,
+    chart: resolveChartPath("@highstate/k8s", "cert-manager", import.meta.url),
+    values: {
+      crds: {
+        enabled: true
+      },
+      config: {
+        apiVersion: "controller.config.cert-manager.io/v1alpha1",
+        kind: "ControllerConfiguration",
+        enableGatewayAPI: true
+      }
+    }
+  },
+  { provider }
+);
+var index = outputs({
+  k8sCluster: inputs.k8sCluster
+});
+
+export { index as default };

package/dist/units/dns01-issuer/index.js

@@ -0,0 +1,51 @@
+import { k8s } from '@highstate/library';
+import { toPromise, forUnit, unsecret } from '@highstate/pulumi';
+import { cert_manager } from '@highstate/cert-manager';
+import { e as createProvider } from '../../shared-hajqPzR4.js';
+import { capitalize } from 'remeda';
+import 'node:fs';
+import 'node:path';
+import '@pulumi/kubernetes';
+
+async function createDns01Solver(dnsProviderInput, provider) {
+  const dnsProvider = await toPromise(dnsProviderInput);
+  const implName = `create${capitalize(dnsProvider.type)}Dns01Solver`;
+  const implModule = await import(`@highstate/${dnsProvider.type}`);
+  const implFunction = implModule[implName];
+  return implFunction(dnsProvider, provider);
+}
+
+const { name, inputs, outputs } = forUnit(k8s.dns01TlsIssuer);
+const provider = await createProvider(inputs.k8sCluster);
+const dns01Solver = await createDns01Solver(inputs.dnsProvider, provider);
+new cert_manager.v1.ClusterIssuer(
+  name,
+  {
+    metadata: {
+      name
+    },
+    spec: {
+      acme: {
+        server: "https://acme-v02.api.letsencrypt.org/directory",
+        solvers: [
+          {
+            dns01: dns01Solver,
+            selector: { dnsZones: [inputs.dnsProvider.domain] }
+          }
+        ],
+        privateKeySecretRef: {
+          name
+        }
+      }
+    }
+  },
+  { provider }
+);
+var index = outputs({
+  tlsIssuer: {
+    clusterName: unsecret(inputs.k8sCluster.name),
+    clusterIssuerName: name
+  }
+});
+
+export { index as default };

package/dist/units/existing-cluster/index.js

@@ -0,0 +1,38 @@
+import { text } from '@highstate/contract';
+import { k8s } from '@highstate/library';
+import { forUnit } from '@highstate/pulumi';
+
+const { name, secrets, outputs } = forUnit(k8s.existingCluster);
+const kubeconfig = secrets.kubeconfig.apply(JSON.stringify);
+var index = outputs({
+  cluster: {
+    name,
+    kubeconfig,
+    // TODO: detect CNI
+    cni: "unknown"
+  },
+  $terminals: {
+    management: {
+      title: "Cluster Management",
+      image: "ghcr.io/exeteres/highstate/terminal-kubectl",
+      command: ["bash", "/welcome.sh"],
+      files: {
+        "/kubeconfig": kubeconfig,
+        "/welcome.sh": text`
+          echo "Connecting to the cluster..."
+          kubectl cluster-info
+
+          echo "Use 'kubectl' and 'helm' to manage the cluster."
+          echo
+
+          exec script -q -c bash /dev/null
+        `
+      },
+      env: {
+        KUBECONFIG: "/kubeconfig"
+      }
+    }
+  }
+});
+
+export { index as default };

package/package.json

@@ -0,0 +1,47 @@
+{
+  "name": "@highstate/k8s",
+  "version": "0.4.5",
+  "type": "module",
+  "module": "dist/index.js",
+  "types": "dist/index.d.ts",
+  "files": [
+    "dist"
+  ],
+  "exports": {
+    ".": {
+      "default": "./dist/index.js",
+      "types": "./dist/index.d.ts"
+    },
+    "./access-point": "./dist/units/access-point/index.js",
+    "./cert-manager": "./dist/units/cert-manager/index.js",
+    "./dns01-issuer": "./dist/units/dns01-issuer/index.js",
+    "./existing-cluster": "./dist/units/existing-cluster/index.js"
+  },
+  "publishConfig": {
+    "access": "public"
+  },
+  "scripts": {
+    "build": "pkgroll --tsconfig=tsconfig.build.json",
+    "update-assets": "./scripts/update-assets.sh",
+    "generate-crds": "./scripts/generate-crds.sh"
+  },
+  "dependencies": {
+    "@highstate/cert-manager": "^0.4.5",
+    "@highstate/common": "^0.4.5",
+    "@highstate/contract": "^0.4.5",
+    "@highstate/gateway-api": "^0.4.5",
+    "@highstate/pulumi": "^0.4.5",
+    "@pulumi/command": "^1.0.2",
+    "@pulumi/kubernetes": "^4.18.0",
+    "@pulumi/pulumi": "^3.152.0",
+    "deepmerge-ts": "^7.1.5",
+    "remeda": "^2.21.0"
+  },
+  "peerDependencies": {
+    "@highstate/library": "workspace:^0.4.4"
+  },
+  "devDependencies": {
+    "pkgroll": "^2.5.1"
+  },
+  "gitHead": "afd601fdade1bcf31af58072eea3c08ee26349b8"
+}