pepr 0.13.4 → 0.14.0

package/src/lib/validate-request.ts

@@ -3,9 +3,11 @@
 
 /* eslint-disable class-methods-use-this */
 
+import { KubernetesObject } from "kubernetes-fluent-client";
+
 import { clone } from "ramda";
-import { KubernetesObject, Operation, Request } from "./k8s/types";
-import { ValidateResponse } from "./types";
+import { Operation, AdmissionRequest } from "./k8s";
+import { ValidateActionResponse } from "./types";
 
 /**
  * The RequestWrapper class provides methods to modify Kubernetes objects in the context
@@ -14,7 +16,7 @@ import { ValidateResponse } from "./types";
 export class PeprValidateRequest<T extends KubernetesObject> {
   Raw: T;
 
-  #input: Request<T>;
+  #input: AdmissionRequest<T>;
 
   /**
    * Provides access to the old resource in the request if available.
@@ -36,15 +38,9 @@ export class PeprValidateRequest<T extends KubernetesObject> {
    * Creates a new instance of the Action class.
    * @param input - The request object containing the Kubernetes resource to modify.
    */
-  constructor(input: Request<T>) {
+  constructor(input: AdmissionRequest<T>) {
     this.#input = input;
 
-    // Bind public methods to this instance
-    this.HasLabel = this.HasLabel.bind(this);
-    this.HasAnnotation = this.HasAnnotation.bind(this);
-    this.Approve = this.Approve.bind(this);
-    this.Deny = this.Deny.bind(this);
-
     // If this is a DELETE operation, use the oldObject instead
     if (input.operation.toUpperCase() === Operation.DELETE) {
       this.Raw = clone(input.oldObject as T);
@@ -54,7 +50,7 @@ export class PeprValidateRequest<T extends KubernetesObject> {
     }
 
     if (!this.Raw) {
-      throw new Error("unable to load the request object into PeprRequest.RawP");
+      throw new Error("unable to load the request object into PeprRequest.Raw");
     }
   }
 
@@ -64,9 +60,9 @@ export class PeprValidateRequest<T extends KubernetesObject> {
    * @param key the label key to check
    * @returns
    */
-  HasLabel(key: string) {
+  HasLabel = (key: string) => {
     return this.Raw.metadata?.labels?.[key] !== undefined;
-  }
+  };
 
   /**
    * Check if an annotation exists on the Kubernetes resource.
@@ -74,20 +70,20 @@ export class PeprValidateRequest<T extends KubernetesObject> {
    * @param key the annotation key to check
    * @returns
    */
-  HasAnnotation(key: string) {
+  HasAnnotation = (key: string) => {
     return this.Raw.metadata?.annotations?.[key] !== undefined;
-  }
+  };
 
   /**
    * Create a validation response that allows the request.
    *
    * @returns The validation response.
    */
-  Approve(): ValidateResponse {
+  Approve = (): ValidateActionResponse => {
     return {
       allowed: true,
     };
-  }
+  };
 
   /**
    * Create a validation response that denies the request.
@@ -96,11 +92,11 @@ export class PeprValidateRequest<T extends KubernetesObject> {
    * @param statusCode Optional status code to return to the user.
    * @returns The validation response.
    */
-  Deny(statusMessage?: string, statusCode?: number): ValidateResponse {
+  Deny = (statusMessage?: string, statusCode?: number): ValidateActionResponse => {
     return {
       allowed: false,
       statusCode,
       statusMessage,
     };
-  }
+  };
 }

package/src/lib/watch-processor.ts

@@ -0,0 +1,55 @@
+// SPDX-License-Identifier: Apache-2.0
+// SPDX-FileCopyrightText: 2023-Present The Pepr Authors
+
+import { K8s } from "kubernetes-fluent-client";
+import { WatchPhase } from "kubernetes-fluent-client/dist/fluent/types";
+
+import { WatchCfg } from "kubernetes-fluent-client/dist/fluent/watch";
+import { Capability } from "./capability";
+import Log from "./logger";
+import { Binding, Event } from "./types";
+
+export function setupWatch(capabilities: Capability[]) {
+  capabilities
+    .flatMap(c => c.bindings)
+    .filter(binding => binding.isWatch)
+    .forEach(runBinding);
+}
+
+async function runBinding(binding: Binding) {
+  // Map the event to the watch phase
+  const eventToPhaseMap = {
+    [Event.Create]: [WatchPhase.Added],
+    [Event.Update]: [WatchPhase.Modified],
+    [Event.CreateOrUpdate]: [WatchPhase.Added, WatchPhase.Modified],
+    [Event.Delete]: [WatchPhase.Deleted],
+    [Event.Any]: [WatchPhase.Added, WatchPhase.Modified, WatchPhase.Deleted],
+  };
+
+  // Get the phases to match, default to any
+  const phaseMatch: WatchPhase[] = eventToPhaseMap[binding.event] || eventToPhaseMap[Event.Any];
+
+  const watchCfg: WatchCfg = {
+    retryMax: 3,
+    retryDelaySec: 5,
+    retryFail(e) {
+      // If failure continues, log and exit
+      Log.error(e, "Watch failed after 3 attempts, giving up");
+      process.exit(1);
+    },
+  };
+
+  // Watch the resource
+  await K8s(binding.model, binding.filters).Watch((obj, type) => {
+    // If the type matches the phase, call the watch callback
+    if (phaseMatch.includes(type)) {
+      try {
+        // This may be a promise, but we don't need to wait for it
+        void binding.watchCallback?.(obj, type);
+      } catch (e) {
+        // Errors in the watch callback should not crash the controller
+        Log.error(e, "Error executing watch callback");
+      }
+    }
+  }, watchCfg);
+}

package/src/lib.ts

@@ -1,9 +1,7 @@
-import * as k8s from "@kubernetes/client-node";
-import { StatusCodes as fetchStatus } from "http-status-codes";
+import { K8s, RegisterKind, fetch, kind, kind as a, fetchStatus } from "kubernetes-fluent-client";
 import * as R from "ramda";
+
 import { Capability } from "./lib/capability";
-import { fetch, fetchRaw } from "./lib/fetch";
-import { RegisterKind, a } from "./lib/k8s/index";
 import Log from "./lib/logger";
 import { PeprModule } from "./lib/module";
 import { PeprMutateRequest } from "./lib/mutate-request";
@@ -11,26 +9,24 @@ import { PeprValidateRequest } from "./lib/validate-request";
 import * as PeprUtils from "./lib/utils";
 
 // Import type information for external packages
-import type * as K8sTypes from "@kubernetes/client-node";
 import type * as RTypes from "ramda";
 
 export {
   a,
+  kind,
   /** PeprModule is used to setup a complete Pepr Module: `new PeprModule(cfg, {...capabilities})` */
   PeprModule,
   PeprMutateRequest,
   PeprValidateRequest,
   PeprUtils,
   RegisterKind,
+  K8s,
   Capability,
   Log,
   R,
   fetch,
-  fetchRaw,
   fetchStatus,
-  k8s,
 
   // Export the imported type information for external packages
   RTypes,
-  K8sTypes,
 };

package/src/templates/capabilities/hello-pepr.ts

@@ -1,11 +1,13 @@
 import {
   Capability,
+  K8s,
   Log,
   PeprMutateRequest,
   RegisterKind,
   a,
   fetch,
   fetchStatus,
+  kind,
 } from "pepr";
 
 /**
@@ -19,8 +21,8 @@ export const HelloPepr = new Capability({
   namespaces: ["pepr-demo", "pepr-demo-2"],
 });
 
-// Use the 'When' function to create a new Action
-const { When } = HelloPepr;
+// Use the 'When' function to create a new action, use 'Store' to persist data
+const { When, Store } = HelloPepr;
 
 /**
  * ---------------------------------------------------------------------------------------------------
@@ -35,6 +37,36 @@ When(a.Namespace)
   .IsCreated()
   .Mutate(ns => ns.RemoveLabel("remove-me"));
 
+/**
+ * ---------------------------------------------------------------------------------------------------
+ *                                   Watch Action with K8s SSA (Namespace)                           *
+ * ---------------------------------------------------------------------------------------------------
+ *
+ * This action watches for the `pepr-demo-2` namespace to be created, then creates a ConfigMap with
+ * the name `pepr-ssa-demo` and adds the namespace UID to the ConfigMap data. Because Pepr uses
+ * server-side apply for this operation, the ConfigMap will be created or updated if it already exists.
+ */
+When(a.Namespace)
+  .IsCreated()
+  .WithName("pepr-demo-2")
+  .Watch(async ns => {
+    Log.info("Namespace pepr-demo-2 was created.");
+
+    // You can share data between actions using the Store, including between different types of actions
+    Store.setItem("watch-data", "This data was stored by a Watch Action.");
+
+    // Apply the ConfigMap using K8s server-side apply
+    await K8s(kind.ConfigMap).Apply({
+      metadata: {
+        name: "pepr-ssa-demo",
+        namespace: "pepr-demo-2",
+      },
+      data: {
+        "ns-uid": ns.metadata.uid,
+      },
+    });
+  });
+
 /**
  * ---------------------------------------------------------------------------------------------------
  *                                   Mutate Action (CM Example 1)                                *
@@ -54,6 +86,12 @@ When(a.ConfigMap)
     request
       .SetLabel("pepr", "was-here")
       .SetAnnotation("pepr.dev", "annotations-work-too");
+
+    // Use the Store to persist data between requests and Pepr controller pods
+    Store.setItem("example-1", "was-here");
+
+    // This data is written asynchronously and can be read back via `Store.getItem()` or `Store.subscribe()`
+    Store.setItem("example-1-data", JSON.stringify(request.Raw.data));
   });
 
 /**
@@ -61,10 +99,10 @@ When(a.ConfigMap)
  *                                   Mutate & Validate Actions (CM Example 2)                                *
  * ---------------------------------------------------------------------------------------------------
  *
- * This combines 2 different types of actions: 'Mutate', and 'Validate'. The order
+ * This combines 3 different types of actions: 'Mutate', 'Validate', and 'Watch'. The order
  * of the actions is required, but each action is optional. In this example, when a ConfigMap is created
- * with the name `example-2`, then add a label and annotation and finally validate that the ConfigMap has the label
- * `pepr`.
+ * with the name `example-2`, then add a label and annotation, validate that the ConfigMap has the label
+ * `pepr`, and log the request.
  */
 When(a.ConfigMap)
   .IsCreated()
@@ -94,6 +132,10 @@ When(a.ConfigMap)
 
     // Otherwise, deny the request with an error message (optional)
     return request.Deny("ConfigMap must have label 'pepr'");
+  })
+  .Watch((cm, phase) => {
+    // This Watch Action will watch the ConfigMap after it has been persisted to the cluster
+    Log.info(cm, `ConfigMap was ${phase} with the name example-2`);
   });
 
 /**
@@ -370,3 +412,10 @@ When(UnicornKind)
       },
     });
   });
+
+/**
+ * A callback function that is called once the Pepr Store is fully loaded.
+ */
+Store.onReady(data => {
+  Log.info(data, "Pepr Store Ready");
+});

package/src/templates/package.json

@@ -6,6 +6,7 @@
     "uuid": "20e17cf6-a2e4-46b2-b626-75d88d96c88b",
     "description": "Development module for pepr",
     "onError": "ignore",
+    "logLevel": "debug",
     "alwaysIgnore": {
       "namespaces": [],
       "labels": []

package/dist/lib/controller.d.ts

@@ -1,10 +0,0 @@
-import { Capability } from "./capability";
-import { MutateResponse, Request } from "./k8s/types";
-import { ModuleConfig } from "./types";
-export declare class Controller {
-    #private;
-    constructor(config: ModuleConfig, capabilities: Capability[], beforeHook?: (req: Request) => void, afterHook?: (res: MutateResponse) => void);
-    /** Start the webhook server */
-    startServer(port: number): void;
-}
-//# sourceMappingURL=controller.d.ts.map

package/dist/lib/controller.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"controller.d.ts","sourceRoot":"","sources":["../../src/lib/controller.ts"],"names":[],"mappings":"AAOA,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAE1C,OAAO,EAAE,cAAc,EAAE,OAAO,EAAoB,MAAM,aAAa,CAAC;AAIxE,OAAO,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAGvC,qBAAa,UAAU;;gBAoBnB,MAAM,EAAE,YAAY,EACpB,YAAY,EAAE,UAAU,EAAE,EAC1B,UAAU,CAAC,EAAE,CAAC,GAAG,EAAE,OAAO,KAAK,IAAI,EACnC,SAAS,CAAC,EAAE,CAAC,GAAG,EAAE,cAAc,KAAK,IAAI;IA4B3C,+BAA+B;IAC/B,WAAW,CAAC,IAAI,EAAE,MAAM;CAyNzB"}

package/dist/lib/fetch.d.ts

@@ -1,23 +0,0 @@
-import f, { RequestInfo, RequestInit } from "node-fetch";
-export declare const fetchRaw: typeof f;
-export type FetchResponse<T> = {
-    data: T;
-    ok: boolean;
-    status: number;
-    statusText: string;
-};
-/**
- * Perform an async HTTP call and return the parsed JSON response, optionally
- * as a specific type.
- *
- * @example
- * ```ts
- * fetch<string[]>("https://example.com/api/foo");
- * ```
- *
- * @param url The URL or Request object to fetch
- * @param init Additional options for the request
- * @returns
- */
-export declare function fetch<T>(url: URL | RequestInfo, init?: RequestInit): Promise<FetchResponse<T>>;
-//# sourceMappingURL=fetch.d.ts.map

package/dist/lib/fetch.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"fetch.d.ts","sourceRoot":"","sources":["../../src/lib/fetch.ts"],"names":[],"mappings":"AAIA,OAAO,CAAC,EAAE,EAAc,WAAW,EAAE,WAAW,EAAE,MAAM,YAAY,CAAC;AAGrE,eAAO,MAAM,QAAQ,UAAI,CAAC;AAE1B,MAAM,MAAM,aAAa,CAAC,CAAC,IAAI;IAC7B,IAAI,EAAE,CAAC,CAAC;IACR,EAAE,EAAE,OAAO,CAAC;IACZ,MAAM,EAAE,MAAM,CAAC;IACf,UAAU,EAAE,MAAM,CAAC;CACpB,CAAC;AAEF;;;;;;;;;;;;GAYG;AACH,wBAAsB,KAAK,CAAC,CAAC,EAAE,GAAG,EAAE,GAAG,GAAG,WAAW,EAAE,IAAI,CAAC,EAAE,WAAW,GAAG,OAAO,CAAC,aAAa,CAAC,CAAC,CAAC,CAAC,CA8CpG"}

package/dist/lib/k8s/index.d.ts

@@ -1,7 +0,0 @@
-import * as kind from "./upstream";
-/** a is a collection of K8s types to be used within a action: `When(a.Configmap)` */
-export { kind as a };
-export { modelToGroupVersionKind, gvkMap, RegisterKind } from "./kinds";
-export declare const isWatchMode: boolean;
-export * from "./types";
-//# sourceMappingURL=index.d.ts.map

package/dist/lib/k8s/index.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"index.d.ts","sourceRoot":"","sources":["../../../src/lib/k8s/index.ts"],"names":[],"mappings":"AAIA,OAAO,KAAK,IAAI,MAAM,YAAY,CAAC;AACnC,qFAAqF;AACrF,OAAO,EAAE,IAAI,IAAI,CAAC,EAAE,CAAC;AAErB,OAAO,EAAE,uBAAuB,EAAE,MAAM,EAAE,YAAY,EAAE,MAAM,SAAS,CAAC;AAGxE,eAAO,MAAM,WAAW,SAAyC,CAAC;AAElE,cAAc,SAAS,CAAC"}

package/dist/lib/k8s/kinds.d.ts

@@ -1,12 +0,0 @@
-import { GenericClass } from "../types";
-import { GroupVersionKind } from "./types";
-export declare const gvkMap: Record<string, GroupVersionKind>;
-export declare function modelToGroupVersionKind(key: string): GroupVersionKind;
-/**
- * Registers a new model and GroupVersionKind with Pepr for use with `When(a.<Kind>)`
- *
- * @param model Used to match the GroupVersionKind and define the type-data for the request
- * @param groupVersionKind Contains the match parameters to determine the request should be handled
- */
-export declare const RegisterKind: (model: GenericClass, groupVersionKind: GroupVersionKind) => void;
-//# sourceMappingURL=kinds.d.ts.map

package/dist/lib/k8s/kinds.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"kinds.d.ts","sourceRoot":"","sources":["../../../src/lib/k8s/kinds.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,YAAY,EAAE,MAAM,UAAU,CAAC;AACxC,OAAO,EAAE,gBAAgB,EAAE,MAAM,SAAS,CAAC;AAE3C,eAAO,MAAM,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,gBAAgB,CAsfnD,CAAC;AAEF,wBAAgB,uBAAuB,CAAC,GAAG,EAAE,MAAM,GAAG,gBAAgB,CAErE;AAED;;;;;GAKG;AACH,eAAO,MAAM,YAAY,UAAW,YAAY,oBAAoB,gBAAgB,SAUnF,CAAC"}

package/dist/lib/k8s/tls.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"tls.d.ts","sourceRoot":"","sources":["../../../src/lib/k8s/tls.ts"],"names":[],"mappings":"AAIA,MAAM,WAAW,MAAM;IACrB,EAAE,EAAE,MAAM,CAAC;IACX,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE,MAAM,CAAC;IACZ,GAAG,EAAE;QACH,EAAE,EAAE,MAAM,CAAC;QACX,GAAG,EAAE,MAAM,CAAC;QACZ,GAAG,EAAE,MAAM,CAAC;KACb,CAAC;CACH;AAED;;;;;GAKG;AACH,wBAAgB,MAAM,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAyC3C"}

package/dist/lib/k8s/types.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"types.d.ts","sourceRoot":"","sources":["../../../src/lib/k8s/types.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,oBAAoB,EAAE,gBAAgB,EAAE,YAAY,EAAE,MAAM,yBAAyB,CAAC;AAE/F,OAAO,EAAE,oBAAoB,EAAE,gBAAgB,EAAE,CAAC;AAElD,oBAAY,SAAS;IACnB,MAAM,WAAW;IACjB,MAAM,WAAW;IACjB,MAAM,WAAW;IACjB,OAAO,YAAY;CACpB;AAED;;;;GAIG;AACH,qBAAa,WAAW;IACtB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,IAAI,CAAC,EAAE,MAAM,CAAC;IACd,QAAQ,CAAC,EAAE,YAAY,CAAC;IAExB,CAAC,GAAG,EAAE,MAAM,GAAG,GAAG,CAAC;CACpB;AAED;;;IAGI;AACJ,MAAM,WAAW,gBAAgB;IAC/B,yCAAyC;IACzC,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IACtB,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,OAAO,CAAC,EAAE,MAAM,CAAC;IAC1B,6EAA6E;IAC7E,QAAQ,CAAC,MAAM,CAAC,EAAE,MAAM,CAAC;CAC1B;AAED;;;GAGG;AACH,MAAM,WAAW,oBAAoB;IACnC,QAAQ,CAAC,KAAK,EAAE,MAAM,CAAC;IACvB,QAAQ,CAAC,OAAO,EAAE,MAAM,CAAC;IACzB,QAAQ,CAAC,QAAQ,EAAE,MAAM,CAAC;CAC3B;AAED;;GAEG;AACH,MAAM,WAAW,OAAO,CAAC,CAAC,GAAG,gBAAgB;IAC3C,gEAAgE;IAChE,QAAQ,CAAC,GAAG,EAAE,MAAM,CAAC;IAErB,+GAA+G;IAC/G,QAAQ,CAAC,IAAI,EAAE,gBAAgB,CAAC;IAEhC,sFAAsF;IACtF,QAAQ,CAAC,QAAQ,EAAE,oBAAoB,CAAC;IAExC,iGAAiG;IACjG,QAAQ,CAAC,WAAW,CAAC,EAAE,MAAM,CAAC;IAE9B,yHAAyH;IACzH,QAAQ,CAAC,WAAW,CAAC,EAAE,gBAAgB,CAAC;IAExC,0GAA0G;IAC1G,QAAQ,CAAC,eAAe,CAAC,EAAE,oBAAoB,CAAC;IAEhD,qHAAqH;IACrH,QAAQ,CAAC,kBAAkB,CAAC,EAAE,MAAM,CAAC;IAErC;;;OAGG;IACH,QAAQ,CAAC,IAAI,EAAE,MAAM,CAAC;IAEtB,uEAAuE;IACvE,QAAQ,CAAC,SAAS,CAAC,EAAE,MAAM,CAAC;IAE5B;;;OAGG;IACH,QAAQ,CAAC,SAAS,EAAE,SAAS,CAAC;IAE9B,wDAAwD;IACxD,QAAQ,CAAC,QAAQ,EAAE;QACjB,0EAA0E;QAC1E,QAAQ,CAAC,EAAE,MAAM,CAAC;QAElB;;;WAGG;QACH,GAAG,CAAC,EAAE,MAAM,CAAC;QAEb,kDAAkD;QAClD,MAAM,CAAC,EAAE,MAAM,EAAE,CAAC;QAElB,gEAAgE;QAChE,KAAK,CAAC,EAAE;YACN,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,EAAE,CAAC;SACzB,CAAC;KACH,CAAC;IAEF,2FAA2F;IAC3F,QAAQ,CAAC,MAAM,EAAE,CAAC,CAAC;IAEnB,sFAAsF;IACtF,QAAQ,CAAC,SAAS,CAAC,EAAE,CAAC,CAAC;IAEvB,gHAAgH;IAChH,QAAQ,CAAC,MAAM,CAAC,EAAE,OAAO,CAAC;IAE1B;;;;;;OAMG;IAEH,QAAQ,CAAC,OAAO,CAAC,EAAE,GAAG,CAAC;CACxB;AAED,MAAM,WAAW,cAAc;IAC7B,kIAAkI;IAClI,GAAG,EAAE,MAAM,CAAC;IAEZ,4EAA4E;IAC5E,OAAO,EAAE,OAAO,CAAC;IAEjB,6IAA6I;IAC7I,MAAM,CAAC,EAAE,MAAM,CAAC;IAEhB,uFAAuF;IACvF,KAAK,CAAC,EAAE,MAAM,CAAC;IAEf,8DAA8D;IAC9D,SAAS,CAAC,EAAE,WAAW,CAAC;IAExB;;;;OAIG;IACH,gBAAgB,CAAC,EAAE;QACjB,CAAC,GAAG,EAAE,MAAM,GAAG,MAAM,CAAC;KACvB,CAAC;IAEF,qFAAqF;IACrF,QAAQ,CAAC,EAAE,MAAM,EAAE,CAAC;CACrB;AAED,MAAM,WAAW,gBAAiB,SAAQ,cAAc;IACtD,6IAA6I;IAC7I,MAAM,CAAC,EAAE;QACP;yFACiF;QACjF,IAAI,EAAE,MAAM,CAAC;QAEb,oEAAoE;QACpE,OAAO,EAAE,MAAM,CAAC;KACjB,CAAC;CACH;AAED,MAAM,MAAM,aAAa,GAAG;IAC1B;;;;;OAKG;IACH,UAAU,CAAC,EAAE,MAAM,EAAE,CAAC;IACtB;;;;;;;;;OASG;IACH,MAAM,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,EAAE,CAAC;CACnC,CAAC"}

package/dist/lib/k8s/upstream.d.ts

@@ -1,4 +0,0 @@
-/** a is a collection of K8s types to be used within an action: `When(a.Configmap)` */
-export { V1APIService as APIService, V1CertificateSigningRequest as CertificateSigningRequest, V1ClusterRole as ClusterRole, V1ClusterRoleBinding as ClusterRoleBinding, V1ConfigMap as ConfigMap, V1ControllerRevision as ControllerRevision, V1CronJob as CronJob, V1CSIDriver as CSIDriver, V1CSIStorageCapacity as CSIStorageCapacity, V1CustomResourceDefinition as CustomResourceDefinition, V1DaemonSet as DaemonSet, V1Deployment as Deployment, V1EndpointSlice as EndpointSlice, V1HorizontalPodAutoscaler as HorizontalPodAutoscaler, V1Ingress as Ingress, V1IngressClass as IngressClass, V1Job as Job, V1LimitRange as LimitRange, V1LocalSubjectAccessReview as LocalSubjectAccessReview, V1MutatingWebhookConfiguration as MutatingWebhookConfiguration, V1Namespace as Namespace, V1NetworkPolicy as NetworkPolicy, V1Node as Node, V1PersistentVolume as PersistentVolume, V1PersistentVolumeClaim as PersistentVolumeClaim, V1Pod as Pod, V1PodDisruptionBudget as PodDisruptionBudget, V1PodTemplate as PodTemplate, V1ReplicaSet as ReplicaSet, V1ReplicationController as ReplicationController, V1ResourceQuota as ResourceQuota, V1Role as Role, V1RoleBinding as RoleBinding, V1RuntimeClass as RuntimeClass, V1Secret as Secret, V1SelfSubjectAccessReview as SelfSubjectAccessReview, V1SelfSubjectRulesReview as SelfSubjectRulesReview, V1Service as Service, V1ServiceAccount as ServiceAccount, V1StatefulSet as StatefulSet, V1StorageClass as StorageClass, V1SubjectAccessReview as SubjectAccessReview, V1TokenReview as TokenReview, V1ValidatingWebhookConfiguration as ValidatingWebhookConfiguration, V1VolumeAttachment as VolumeAttachment, } from "@kubernetes/client-node";
-export { GenericKind } from "./types";
-//# sourceMappingURL=upstream.d.ts.map

package/dist/lib/k8s/upstream.d.ts.map

@@ -1 +0,0 @@
-{"version":3,"file":"upstream.d.ts","sourceRoot":"","sources":["../../../src/lib/k8s/upstream.ts"],"names":[],"mappings":"AAGA,sFAAsF;AACtF,OAAO,EACL,YAAY,IAAI,UAAU,EAC1B,2BAA2B,IAAI,yBAAyB,EACxD,aAAa,IAAI,WAAW,EAC5B,oBAAoB,IAAI,kBAAkB,EAC1C,WAAW,IAAI,SAAS,EACxB,oBAAoB,IAAI,kBAAkB,EAC1C,SAAS,IAAI,OAAO,EACpB,WAAW,IAAI,SAAS,EACxB,oBAAoB,IAAI,kBAAkB,EAC1C,0BAA0B,IAAI,wBAAwB,EACtD,WAAW,IAAI,SAAS,EACxB,YAAY,IAAI,UAAU,EAC1B,eAAe,IAAI,aAAa,EAChC,yBAAyB,IAAI,uBAAuB,EACpD,SAAS,IAAI,OAAO,EACpB,cAAc,IAAI,YAAY,EAC9B,KAAK,IAAI,GAAG,EACZ,YAAY,IAAI,UAAU,EAC1B,0BAA0B,IAAI,wBAAwB,EACtD,8BAA8B,IAAI,4BAA4B,EAC9D,WAAW,IAAI,SAAS,EACxB,eAAe,IAAI,aAAa,EAChC,MAAM,IAAI,IAAI,EACd,kBAAkB,IAAI,gBAAgB,EACtC,uBAAuB,IAAI,qBAAqB,EAChD,KAAK,IAAI,GAAG,EACZ,qBAAqB,IAAI,mBAAmB,EAC5C,aAAa,IAAI,WAAW,EAC5B,YAAY,IAAI,UAAU,EAC1B,uBAAuB,IAAI,qBAAqB,EAChD,eAAe,IAAI,aAAa,EAChC,MAAM,IAAI,IAAI,EACd,aAAa,IAAI,WAAW,EAC5B,cAAc,IAAI,YAAY,EAC9B,QAAQ,IAAI,MAAM,EAClB,yBAAyB,IAAI,uBAAuB,EACpD,wBAAwB,IAAI,sBAAsB,EAClD,SAAS,IAAI,OAAO,EACpB,gBAAgB,IAAI,cAAc,EAClC,aAAa,IAAI,WAAW,EAC5B,cAAc,IAAI,YAAY,EAC9B,qBAAqB,IAAI,mBAAmB,EAC5C,aAAa,IAAI,WAAW,EAC5B,gCAAgC,IAAI,8BAA8B,EAClE,kBAAkB,IAAI,gBAAgB,GACvC,MAAM,yBAAyB,CAAC;AAEjC,OAAO,EAAE,WAAW,EAAE,MAAM,SAAS,CAAC"}

package/jest.config.json

@@ -1,4 +0,0 @@
-{
-  "preset": "ts-jest",
-  "testEnvironment": "node"
-}

package/journey/before.ts

@@ -1,21 +0,0 @@
-// SPDX-License-Identifier: Apache-2.0
-// SPDX-FileCopyrightText: 2023-Present The Pepr Authors
-
-import { promises as fs } from "fs";
-import { resolve } from "path";
-
-import { cwd } from "./entrypoint.test";
-
-export async function before() {
-  const dir = resolve(cwd);
-
-  try {
-    await fs.access(dir);
-    await fs.rm(dir, { recursive: true, force: true });
-  } catch (err) {
-    if (err.code !== "ENOENT") {
-      throw err;
-      // The directory does not exist, do nothing
-    }
-  }
-}

package/journey/k8s.ts

@@ -1,100 +0,0 @@
-// SPDX-License-Identifier: Apache-2.0
-// SPDX-FileCopyrightText: 2023-Present The Pepr Authors
-
-import { AppsV1Api, CoreV1Api, KubeConfig, V1ConfigMap } from "@kubernetes/client-node";
-
-const kc = new KubeConfig();
-kc.loadFromDefault();
-
-const k8sApi = kc.makeApiClient(AppsV1Api);
-const k8sCoreApi = kc.makeApiClient(CoreV1Api);
-
-function delay2Secs() {
-  return new Promise(resolve => setTimeout(resolve, 2000));
-}
-
-export async function createOrReplaceConfigMap(cm: V1ConfigMap) {
-  const ns = cm.metadata?.namespace || "default";
-  try {
-    const resp = await k8sCoreApi.createNamespacedConfigMap(ns, cm);
-    return resp.body;
-  } catch (error) {
-    const resp = await k8sCoreApi.replaceNamespacedConfigMap(cm.metadata?.name || "", ns, cm);
-    return resp.body;
-  }
-}
-
-export async function deleteConfigMap(namespace: string, name: string) {
-  try {
-    await k8sCoreApi.deleteNamespacedConfigMap(name, namespace);
-  } catch (error) {
-    // Do nothing
-  }
-}
-
-export async function waitForDeploymentReady(namespace: string, name: string) {
-  const deployment = await k8sApi.readNamespacedDeployment(name, namespace);
-  const replicas = deployment.body.spec?.replicas || 1;
-  const readyReplicas = deployment.body.status?.readyReplicas || 0;
-
-  if (replicas !== readyReplicas) {
-    await delay2Secs();
-    return waitForDeploymentReady(namespace, name);
-  }
-}
-
-export async function waitForNamespace(namespace: string) {
-  try {
-    const resp = await k8sCoreApi.readNamespace(namespace);
-    return resp.body;
-  } catch (error) {
-    await delay2Secs();
-    return waitForNamespace(namespace);
-  }
-}
-
-export async function waitForConfigMap(namespace: string, name: string) {
-  try {
-    const resp = await k8sCoreApi.readNamespacedConfigMap(name, namespace);
-    return resp.body;
-  } catch (error) {
-    await delay2Secs();
-    return waitForConfigMap(namespace, name);
-  }
-}
-
-export async function waitForSecret(namespace: string, name: string) {
-  try {
-    const resp = await k8sCoreApi.readNamespacedSecret(name, namespace);
-    return resp.body;
-  } catch (error) {
-    await delay2Secs();
-    return waitForSecret(namespace, name);
-  }
-}
-
-export async function getPodLogs(namespace: string, labelSelector: string) {
-  let allLogs = "";
-
-  try {
-    const res = await k8sCoreApi.listNamespacedPod(
-      namespace,
-      undefined,
-      undefined,
-      undefined,
-      undefined,
-      labelSelector,
-    );
-    const pods = res.body.items;
-
-    for (const pod of pods) {
-      const podName = pod.metadata?.name || "unknown";
-      const log = await k8sCoreApi.readNamespacedPodLog(podName, namespace);
-      allLogs += log.body;
-    }
-  } catch (err) {
-    console.error("Error: ", err);
-  }
-
-  return allLogs;
-}

package/journey/pepr-build.ts

@@ -1,69 +0,0 @@
-// SPDX-License-Identifier: Apache-2.0
-// SPDX-FileCopyrightText: 2023-Present The Pepr Authors
-
-import { expect, it } from "@jest/globals";
-import { loadYaml } from "@kubernetes/client-node";
-import { execSync } from "child_process";
-import { promises as fs } from "fs";
-import { resolve } from "path";
-
-import { cwd } from "./entrypoint.test";
-
-export function peprBuild() {
-  it("should successfully build the Pepr project", async () => {
-    execSync("npx pepr build", { cwd: cwd, stdio: "inherit" });
-  });
-
-  it("should generate produce the K8s yaml file", async () => {
-    await fs.access(resolve(cwd, "dist", "pepr-module-static-test.yaml"));
-  });
-
-  it("should generate the zarf.yaml f", async () => {
-    await fs.access(resolve(cwd, "dist", "zarf.yaml"));
-    await validateZarfYaml();
-  });
-}
-
-async function validateZarfYaml() {
-  // Get the version of the pepr binary
-  const peprVer = execSync("npx pepr --version", { cwd }).toString().trim();
-
-  // Read the generated yaml files
-  const k8sYaml = await fs.readFile(resolve(cwd, "dist", "pepr-module-static-test.yaml"), "utf8");
-  const zarfYAML = await fs.readFile(resolve(cwd, "dist", "zarf.yaml"), "utf8");
-
-  // The expected image name
-  const expectedImage = `ghcr.io/defenseunicorns/pepr/controller:v${peprVer}`;
-
-  // The expected zarf yaml contents
-  const expectedZarfYaml = {
-    kind: "ZarfPackageConfig",
-    metadata: {
-      name: "pepr-static-test",
-      description: "Pepr Module: A test module for Pepr",
-      url: "https://github.com/defenseunicorns/pepr",
-      version: "0.0.1",
-    },
-    components: [
-      {
-        name: "module",
-        required: true,
-        manifests: [
-          {
-            name: "module",
-            namespace: "pepr-system",
-            files: ["pepr-module-static-test.yaml"],
-          },
-        ],
-        images: [expectedImage],
-      },
-    ],
-  };
-
-  // Check the generated zarf yaml
-  const actualZarfYaml = loadYaml(zarfYAML);
-  expect(actualZarfYaml).toEqual(expectedZarfYaml);
-
-  // Check the generated k8s yaml
-  expect(k8sYaml).toMatch(`image: ${expectedImage}`);
-}