npm - @hiiretail/gcp-infra-cli - Versions diffs - 0.104.0 → 1.0.1 - Mend

@hiiretail/gcp-infra-cli 0.104.0 → 1.0.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (217) hide show

package/generators/common-resources/bigquery/templates/schema/schema.json DELETED Viewed

@@ -1,14 +0,0 @@
-[
-    {
-      "name": "id",
-      "type": "STRING",
-      "mode": "NULLABLE",
-      "description": "ID"
-    },
-    {
-      "name": "state",
-      "type": "STRING",
-      "mode": "NULLABLE",
-      "description": "State"
-    }
-]

package/generators/common-resources/budget/generator.json DELETED Viewed

@@ -1,4 +0,0 @@
-{
-  "name": "GCP Budget",
-  "description": "Create a budget and alert notifications"
-}

package/generators/common-resources/budget/index.js DELETED Viewed

@@ -1,89 +0,0 @@
-const path = require('path');
-const chalk = require('chalk');
-const BaseGenerator = require('../../../src/BaseGenerator');
-module.exports = class extends BaseGenerator {
-  prompting() {
-    const prompts = [
-      {
-        type: 'list',
-        name: 'usingGKE',
-        message: 'Is the clan using GKE?',
-        default: 'false',
-        choices: ['true', 'false'],
-      },
-      {
-        type: 'input',
-        name: 'expectedServiceCount',
-        message: 'How many services will eventually be in use simultanously?',
-      },
-      {
-        type: 'list',
-        name: 'usingInternalTraffic',
-        message: 'Is the clan using internal traffic (service to service communication)?',
-        default: 'true',
-        choices: ['true', 'false'],
-      },
-    ];
-    return this.prompt(prompts).then((props) => {
-      this.answers = props;
-    });
-  }
-  writing() {
-    let overheadPercentage = 0.01;
-    if (this.answers.usingInternalTraffic === 'false'
-      && this.answers.usingGKE === 'false'
-      && this.answers.expectedServiceCount < 8) {
-      overheadPercentage = 0.01;
-    } else if (this.answers.usingInternalTraffic === 'true'
-      && this.answers.usingGKE === 'false'
-      && this.answers.expectedServiceCount < 8) {
-      overheadPercentage = 0.03;
-    } else if (this.answers.usingInternalTraffic === 'true'
-      && this.answers.usingGKE === 'false'
-      && this.answers.expectedServiceCount > 8) {
-      overheadPercentage = 0.04;
-    } else if (this.answers.usingInternalTraffic === 'true'
-      && this.answers.usingGKE === 'true'
-      && this.answers.expectedServiceCount < 8) {
-      overheadPercentage = 0.04;
-    } else if (this.answers.usingInternalTraffic === 'true'
-      && this.answers.usingGKE === 'true'
-      && this.answers.expectedServiceCount > 8) {
-      overheadPercentage = 0.05;
-    } else if (this.answers.usingInternalTraffic === 'false'
-      && this.answers.usingGKE === 'false'
-      && this.answers.expectedServiceCount > 8) {
-      overheadPercentage = 0.03;
-    } else if (this.answers.usingInternalTraffic === 'false'
-      && this.answers.usingGKE === 'true'
-      && this.answers.expectedServiceCount < 8) {
-      overheadPercentage = 0.03;
-    } else if (this.answers.usingInternalTraffic === 'false'
-      && this.answers.usingGKE === 'true'
-      && this.answers.expectedServiceCount > 8) {
-      overheadPercentage = 0.04;
-    }
-    ['prod', 'staging'].forEach((env) => {
-      this.copyDir(
-        'budget',
-        path.join('infra', env, 'budget'),
-        {
-          ...this.answers,
-          env,
-          overheadPercentage,
-        },
-      );
-    });
-  }
-  end() {
-    this.log(`
-${chalk.green('Your budget has been created.')}
-${chalk.green('1.')} To finalize your configuration, please continue with manual editing of the generated files.
-${chalk.green('2.')} Push the changes in a feature branch and open a pull request.
-`);
-  }
-};

package/generators/common-resources/budget/templates/budget/terragrunt.hcl DELETED Viewed

@@ -1,45 +0,0 @@
-# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
-# working directory, into a temporary folder, and execute your Terraform commands in that folder.
-terraform {
-  source = "git::https://github.com/extenda/terraform-google-project-factory//modules/budget?ref=feat/CNP-25"
-}
-# Dependency on the email notification channel(s)
-dependency "notification_channel" {
-  config_path = "../monitoring/notification-channels/"
-  mock_outputs = {
-    notification_channels_email_ids = "notification-channel-dummy-ids"
-  }
-}
-# Include all settings from the root terragrunt.hcl file
-include {
-  path = find_in_parent_folders("terragrunt_root.hcl")
-}
-locals {
-  project_vars = read_terragrunt_config(find_in_parent_folders("project.hcl"))
-  common_vars  = read_terragrunt_config(find_in_parent_folders("common.hcl"))
-}
-# These are the variables we have to pass in to use the module specified in the terragrunt configuration above
-# The amount has a percentage added if one or more of the following is true:
-# - Clan makes use of GKE
-# - Clan makes use of more than 10 services
-# - Clan makes use of service to service communication (internal traffic)
-# where combinations make steps of 3%, 4% or 5% or 1% if none applies
-# If there is no dependency from the notification channels either create it by updating the notification
-# module to atleast 1.0.2 and add atleast one email notification channel.
-# Or if you already know the ID of an email notification channel use that, format would be
-# ["projects/{projectID}/notificationChannels/{ID}"]
-inputs = merge(
-  {
-    projects                         = [local.project_vars.locals.project_id]
-    display_name                     = "${local.project_vars.locals.project_name}-budget"
-    billing_account                  = "01580F-3DD16A-C066A5"
-    amount                           = floor(local.project_vars.locals.amount + (local.project_vars.locals.amount * <%- overheadPercentage %>))
-    monitoring_notification_channels = dependency.notification_channel.outputs.notification_channels_email_ids
-    disable_default_iam_recipients   = true
-    alert_spent_percents             = [0.8, 1.0, 1.2]
-  }
-)

package/generators/common-resources/cloud-armor/generator.json DELETED Viewed

@@ -1,4 +0,0 @@
-{
-  "name": "Cloud Armor",
-  "description": "Create a cloud armor policy"
-}

package/generators/common-resources/cloud-armor/index.js DELETED Viewed

@@ -1,45 +0,0 @@
-const path = require('path');
-const chalk = require('chalk');
-const BaseGenerator = require('../../../src/BaseGenerator');
-const getTribeAndClanName = require('../../init/clan-infra/tribe-clan-repo');
-module.exports = class extends BaseGenerator {
-  prompting() {
-    const prompts = [
-      {
-        type: 'input',
-        name: 'name',
-        default: getTribeAndClanName().clan,
-        message: 'Enter your policy name or leave blank for default',
-      },
-    ];
-    return this.prompt(prompts).then((props) => {
-      this.answers = props;
-    });
-  }
-  writing() {
-    const {
-      name,
-    } = this.answers;
-    const run = (env) => {
-      this.copyDir(
-        path.join(''),
-        path.join('infra', env, 'cloud-armor', name),
-      );
-    };
-    run('staging');
-    run('prod');
-  }
-  end() {
-    const {
-      name,
-    } = this.answers;
-    this.log(`
-${chalk.green(`Your cloud armor policy ${chalk.cyan(name)} has been created. To finalize your configuration, please continue
-with manual editing of the generated files.`)}
-`);
-  }
-};

package/generators/common-resources/cloud-armor/templates/policies.yaml DELETED Viewed

@@ -1,53 +0,0 @@
-##  This yaml file will configure your cloud armor policies
-##  For more information on how to configure the expressions
-##  Visit https://cloud.google.com/armor/docs/rules-language-reference
-## Logging filter for this policy:
-# resource.type:(http_load_balancer) AND jsonPayload.enforcedSecurityPolicy.name:(<%-name%>)
-description: Cloud armor policy
-default-action: allow ## if no requests match any rules this value will be honored ( allow | deny )
-rules:
-  deny-no-auth-header:
-    action: deny(403)
-    priority: 10 # Priority 1 will be executed before 10 see the language reference for a more detailed explenation.
-    description: Block requests without auth header
-    preview: true ## dry run true | false
-    ## Expression will block any request not containing the authorization header
-    expression: >-
-      !has(request.headers["authorization"])
-  ## Example rules
-  # ban-requests:
-  #   action: rate_based_ban
-  #   priority: 500
-  #   description: ban requests if more then 10 with the same authorization token
-  #   preview: true
-  #   expression: >-
-  #     inIpRange(origin.ip, "0.0.0.0/0") && has(request.headers["authorization"])
-  #   rate_limit_options:
-  #     exceed_action: deny(502)
-  ## Ban if we get more than 10 requests in 10 minutes for 40 minutes
-  #     ban_http_request_count: 10
-  #     ban_http_request_interval_sec: 600
-  #     ban_duration_sec: 2700
-  ## Throttle if we get more than 5 requests every 60 seconds
-  #     rate_limit_http_request_count: 5
-  #     rate_limit_http_request_interval_sec: 60
-  ## Enforce on auth header only
-  #     enforce_on_key_configs:
-  #       - enforce_on_key_type: HTTP_HEADER
-  #         enforce_on_key_name: authorization
-  # throttle-requests:
-  #   action: throttle
-  #   priority: 1000
-  #   description: throttle requests from SE (100/minute)
-  #   preview: true
-  #   expression: >-
-  #     inIpRange(origin.ip, "0.0.0.0/0") && origin.region_code == "SE"
-  #   rate_limit_options:
-  #     exceed_action: deny(429)
-  ## Throttle if we get 100 requests per minute from sweden and the same IP
-  #     rate_limit_http_request_count: 100
-  #     rate_limit_http_request_interval_sec: 60
-  #     enforce_on_key: ALL

package/generators/common-resources/cloud-armor/templates/terragrunt.hcl DELETED Viewed

@@ -1,30 +0,0 @@
-# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
-# working directory, into a temporary folder, and execute your Terraform commands in that folder.
-terraform {
-  source = "git::https://github.com/GoogleCloudPlatform/terraform-google-cloud-armor//?ref=v2.2.0"
-}
-include {
-  path = find_in_parent_folders("terragrunt_root.hcl")
-}
-locals {
-  project_vars = read_terragrunt_config(find_in_parent_folders("project.hcl"))
-  common_vars  = read_terragrunt_config(find_in_parent_folders("common.hcl"))
-  policies     = yamldecode(file("${get_terragrunt_dir()}/policies.yaml"))
-  name         = basename(get_terragrunt_dir())
-}
-inputs = merge(
-  {
-    project_id                           = local.project_vars.locals.project_id
-    name                                 = local.name
-    description                          = local.policies["description"]
-    default_rule_action                  = local.policies["default-action"]
-    type                                 = "CLOUD_ARMOR"
-    layer_7_ddos_defense_enable          = false
-    json_parsing                         = "STANDARD"
-    log_level                            = "VERBOSE"
-    custom_rules                         = local.policies["rules"]
-  }
-)

package/generators/common-resources/cloud-storage/generator.json DELETED Viewed

@@ -1,4 +0,0 @@
-{
-  "name": "Cloud Storage",
-  "description": "Create a Cloud Storage resource"
-}

package/generators/common-resources/cloud-storage/index.js DELETED Viewed

@@ -1,156 +0,0 @@
-const path = require('path');
-const chalk = require('chalk');
-const BaseGenerator = require('../../../src/BaseGenerator');
-const { required } = require('../../../src/validators');
-module.exports = class extends BaseGenerator {
-  prompting() {
-    const prompts = [
-      {
-        type: 'input',
-        name: 'bucketName',
-        message: 'Please provide the Cloud Storage bucket name',
-        validate: required,
-      },
-      {
-        type: 'list',
-        name: 'versioning',
-        message: 'Do you want to enable versioning for the bucket?',
-        default: 'true',
-        choices: ['true', 'false'],
-      },
-      {
-        type: 'input',
-        name: 'prefix',
-        message: 'Please provide the prefix for the bucket name',
-        validate: required,
-      },
-      {
-        type: 'list',
-        name: 'lifecycleRules',
-        message: 'Do you want to set up lifecycle rules for the bucket?',
-        default: 'false',
-        choices: ['true', 'false'],
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true',
-        type: 'list',
-        name: 'action',
-        message: 'Select the action of this Lifecycle Rule',
-        default: 'Delete',
-        choices: ['Delete', 'SetStorageClass'],
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true' && response.action === 'SetStorageClass',
-        type: 'list',
-        name: 'storageClass',
-        message: 'Select the Storage Class for objects in the bucket',
-        default: 'STANDARD',
-        choices: ['STANDARD', 'MULTI_REGIONAL', 'REGIONAL', 'NEARLINE', 'COLDLINE', 'ARCHIVE'],
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true',
-        type: 'input',
-        name: 'age',
-        message: 'Minimum age of an object in days to satisfy the condition. Use null to not set the value',
-        validate: required,
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true',
-        type: 'input',
-        name: 'createdBefore',
-        message: 'A date in format YYYY-MM-DD. This condition is satisfied when an object is created before midnight of the specified date in UTC. Use null to not set the value',
-        validate: required,
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true',
-        type: 'list',
-        name: 'withState',
-        message: 'Match to live and/or archived objects. Unversioned buckets have only live objects. Use null to not set the value',
-        default: 'LIVE',
-        choices: ['LIVE', 'ARCHIVED', 'ANY', 'null'],
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true',
-        type: 'input',
-        name: 'matchesStorageClass',
-        message: 'Specify comma delimited string of Storage Class of objects to satisfy the condition. Supported values: STANDARD, MULTI_REGIONAL, REGIONAL, NEARLINE, COLDLINE, ARCHIVE, DURABLE_REDUCED_AVAILABILITY. Use null to not set the value',
-        validate: required,
-      },
-      {
-        when: (response) => response.lifecycleRules === 'true',
-        type: 'input',
-        name: 'numNewerVersions',
-        message: 'Relevant only for versioned objects. The number of newer versions of an object to satisfy the condition. Use null to not set the value',
-        validate: required,
-      },
-      {
-        type: 'list',
-        name: 'retentionPolicy',
-        message: 'Do you want to set up a retention period for the bucket?',
-        default: 'false',
-        choices: ['true', 'false'],
-      },
-      {
-        when: (response) => response.retentionPolicy === 'true',
-        type: 'input',
-        name: 'retentionPeriod',
-        message: 'The period of time, in seconds, that objects in the bucket must be retained and cannot be deleted, overwritten, or archived. The value must be less than 2147483647 seconds',
-        validate: required,
-      },
-    ];
-    return this.prompt(prompts).then((props) => {
-      this.answers = props;
-    });
-  }
-  writing() {
-    const {
-      bucketName,
-      prefix,
-      lifecycleRules,
-      retentionPolicy,
-      versioning,
-      action,
-      storageClass,
-      age,
-      createdBefore,
-      withState,
-      matchesStorageClass,
-      numNewerVersions,
-      retentionPeriod,
-    } = this.answers;
-    ['prod', 'staging'].forEach((env) => {
-      this.copyDir(
-        'cloud-storage',
-        path.join('infra', env, 'cloud-storage'),
-        {
-          ...this.answers,
-          env,
-          bucketName,
-          prefix,
-          lifecycleRules,
-          retentionPolicy,
-          versioning,
-          action,
-          storageClass,
-          age,
-          createdBefore,
-          withState,
-          matchesStorageClass,
-          numNewerVersions,
-          retentionPeriod,
-        },
-      );
-    });
-  }
-  end() {
-    this.log(`
-${chalk.green('Your Cloud Storage resources have now been created.')}
-${chalk.yellow('Note: Bucket names are globally unique, the staging bucket has the suffix -staging')}
-${chalk.green('1.')} Push this change in a feature branch and open a pull request.`);
-  }
-};

package/generators/common-resources/cloud-storage/templates/cloud-storage/storage.yaml DELETED Viewed

@@ -1,26 +0,0 @@
-names:
-  - "<%-bucketName%><% if (env == 'staging') { %>-staging<% } %>"
-prefix: "<%-prefix%>"
-storage_class: "STANDARD" <% if (env == 'prod') { %>
-location: "EU" <% } else { %>
-location: "EUROPE-WEST1"<% } %>
-versioning:
-  "<%-bucketName%>": <%-versioning%>
-set_viewer_roles: true <% if (lifecycleRules == 'true') { %>
-lifecycle_rules:
-  - action:
-      type: "<%-action%>" <% if (action == 'SetStorageClass') { %>
-      storage_class: "<%-storageClass%>" <% } else { %>
-      storage_class: null <% } %>
-    condition:
-      age: <%-age%> <% if (createdBefore != 'null') { %>
-      created_before: "<%-createdBefore%>" <% } else { %>
-      created_before: null <% } %> <% if (withState != 'null') { %>
-      with_state: "<%-withState%>" <% } else { %>
-      with_state: null <% } %> <% if (matchesStorageClass != 'null') { %>
-      matches_storage_class: "<%-matchesStorageClass%>" <% } else { %>
-      matches_storage_class: null <% } %>
-      num_newer_versions: <%-numNewerVersions%> <% } %> <% if (retentionPolicy == 'true') { %>
-retention_policy:
-  "<%-bucketName%><% if (env == 'staging') { %>-staging<% } %>":
-    retention_period: <%-retentionPeriod%> <% } %>

package/generators/common-resources/cloud-storage/templates/cloud-storage/terragrunt.hcl DELETED Viewed

@@ -1,32 +0,0 @@
-# Terragrunt will copy the Terraform configurations specified by the source parameter, along with any files in the
-# working directory, into a temporary folder, and execute your Terraform commands in that folder.
-terraform {
-  source = "git::https://github.com/terraform-google-modules/terraform-google-cloud-storage//?ref=v6.0.1"
-}
-# Include all settings from the root terragrunt.hcl file
-include {
-  path = find_in_parent_folders("terragrunt_root.hcl")
-}
-locals {
-  project_vars = read_terragrunt_config(find_in_parent_folders("project.hcl"))
-  common_vars  = read_terragrunt_config(find_in_parent_folders("common.hcl"))
-  labels = merge(local.common_vars.locals.default_user_labels, local.project_vars.locals.default_user_labels, {
-    component    = local.common_vars.locals.component
-    product      = local.common_vars.locals.product
-    tenant-alias = local.common_vars.locals.tenant_alias
-  })
-}
-# These are the variables we have to pass in to use the module specified in the terragrunt configuration above
-inputs = merge(
-  yamldecode(file("${get_terragrunt_dir()}/storage.yaml")),
-  local.project_vars.locals,
-  {
-    project_id = local.project_vars.locals.project_id
-    # IAM-style members who will be granted roles/storage.objectViewer on all buckets.
-    viewers = ["group:${local.common_vars.locals.clan_group_email}"]
-    labels  = local.labels,
-  }
-)

package/generators/common-resources/cloudsql/generator.json DELETED Viewed

@@ -1,4 +0,0 @@
-{
-  "name": "Cloud SQL",
-  "description": "Create a Cloud SQL resource"
-}

package/generators/common-resources/cloudsql/index.js DELETED Viewed

@@ -1,106 +0,0 @@
-const path = require('path');
-const chalk = require('chalk');
-const BaseGenerator = require('../../../src/BaseGenerator');
-module.exports = class extends BaseGenerator {
-  prompting() {
-    const prompts = [
-      {
-        type: 'list',
-        name: 'instanceType',
-        message: 'Select Cloud SQL database instance type',
-        store: true,
-        default: 'postgres-clan',
-        choices: ['postgres-clan', 'mysql', 'mssql'],
-      },
-      {
-        type: 'list',
-        name: 'instanceDatabaseVersion',
-        message: 'Select Database Version',
-        store: true,
-        default: (response) => {
-          const defaultTypes = {
-            'postgres-clan': 'POSTGRES_16',
-            mysql: 'MYSQL_5_7',
-            mssql: 'SQLSERVER_2017_STANDARD',
-          };
-          return defaultTypes[response.instanceType];
-        },
-        choices: (response) => {
-          const tierTypes = {
-            'postgres-clan': ['POSTGRES_13', 'POSTGRES_14', 'POSTGRES_15', 'POSTGRES_16'],
-            mysql: ['MYSQL_5_6', 'MYSQL_5_7'],
-            mssql: ['SQLSERVER_2017_STANDARD', 'SQLSERVER_2017_ENTERPRISE', 'SQLSERVER_2017_EXPRESS', 'SQLSERVER_2017_WEB'],
-          };
-          return tierTypes[response.instanceType];
-        },
-      },
-      {
-        type: 'number',
-        name: 'diskSize',
-        message: 'Enter the disk size for the instance, in GB',
-        store: true,
-        default: 10,
-      },
-      {
-        type: 'list',
-        name: 'enableBackups',
-        message: 'Enable Databases backup?',
-        default: 'true',
-        choices: ['true', 'false'],
-      },
-    ];
-    return this.prompt(prompts).then((props) => {
-      this.answers = props;
-    });
-  }
-  writing() {
-    const {
-      instanceType,
-    } = this.answers;
-    // CloudSQL Instance
-    ['prod', 'staging'].forEach((env) => {
-      this.copyDir(
-        path.join(instanceType, 'instance'),
-        path.join('infra', env, 'cloud-sql', instanceType, 'instance'),
-        {
-          ...this.answers,
-          env,
-        },
-      );
-    });
-    // CloudSQL Instance secrets
-    ['prod', 'staging'].forEach((env) => {
-      this.copyDir(
-        path.join(instanceType, 'instance-secrets'),
-        path.join('infra', env, 'cloud-sql', instanceType, 'secrets'),
-        {
-          ...this.answers,
-          env,
-        },
-      );
-    });
-  }
-  end() {
-    const {
-      instanceType,
-    } = this.answers;
-    const specStageFile = path.join('infra', 'staging', 'cloud-sql', instanceType, 'instance', 'spec.hcl');
-    const specProdFile = path.join('infra', 'prod', 'cloud-sql', instanceType, 'instance', 'spec.hcl');
-    this.log(`
-${chalk.green(`Your CloudSQL ${chalk.cyan(instanceType)} instance have now been created. To finalize your configuration, please continue
-with manual editing of the generated files.`)}
-${chalk.green('1.')} Review and change specs if needed.
-   \u2192 ${chalk.cyan(specStageFile)}
-   \u2192 ${chalk.cyan(specProdFile)}
-${chalk.green('2.')} Push this change in a feature branch and open a pull request.
-`);
-  }
-};