npm - underpost - Versions diffs - 2.8.79 → 2.8.84 - Mend

underpost 2.8.79 → 2.8.84

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (53) hide show

package/.github/workflows/ghpkg.yml +22 -20
package/.github/workflows/npmpkg.yml +15 -10
package/.github/workflows/pwa-microservices-template.page.yml +12 -3
package/.github/workflows/pwa-microservices-template.test.yml +20 -17
package/.vscode/extensions.json +2 -3
package/.vscode/settings.json +2 -42
package/Dockerfile +14 -33
package/README.md +43 -25
package/bin/db.js +1 -0
package/bin/deploy.js +104 -797
package/bin/file.js +18 -1
package/bin/vs.js +18 -3
package/cli.md +367 -207
package/conf.js +4 -0
package/docker-compose.yml +1 -1
package/manifests/deployment/dd-template-development/deployment.yaml +167 -0
package/manifests/deployment/dd-template-development/proxy.yaml +46 -0
package/manifests/deployment/tensorflow/tf-gpu-test.yaml +65 -0
package/manifests/lxd/lxd-admin-profile.yaml +1 -0
package/manifests/lxd/lxd-preseed.yaml +9 -37
package/manifests/lxd/underpost-setup.sh +98 -81
package/manifests/maas/device-scan.sh +43 -0
package/manifests/maas/gpu-diag.sh +19 -0
package/manifests/maas/lxd-preseed.yaml +32 -0
package/manifests/maas/maas-setup.sh +120 -0
package/manifests/maas/nat-iptables.sh +26 -0
package/manifests/maas/snap-clean.sh +26 -0
package/manifests/mariadb/statefulset.yaml +2 -1
package/manifests/mariadb/storage-class.yaml +10 -0
package/manifests/mongodb-4.4/service-deployment.yaml +2 -2
package/manifests/valkey/service.yaml +3 -9
package/manifests/valkey/statefulset.yaml +10 -12
package/package.json +1 -1
package/src/cli/baremetal.js +1280 -0
package/src/cli/cloud-init.js +537 -0
package/src/cli/cluster.js +506 -243
package/src/cli/deploy.js +41 -3
package/src/cli/env.js +2 -2
package/src/cli/image.js +57 -9
package/src/cli/index.js +271 -232
package/src/cli/lxd.js +314 -81
package/src/cli/repository.js +7 -4
package/src/cli/run.js +262 -0
package/src/cli/test.js +1 -1
package/src/index.js +28 -1
package/src/runtime/lampp/Dockerfile +41 -47
package/src/server/conf.js +61 -0
package/src/server/logger.js +3 -3
package/src/server/process.js +16 -19
package/src/server/runtime.js +1 -6
package/src/server/ssl.js +1 -12
package/src/server/valkey.js +3 -3
package/supervisord-openssh-server.conf +0 -5

package/manifests/maas/lxd-preseed.yaml ADDED Viewed

@@ -0,0 +1,32 @@
+config:
+  core.https_address: "[::]:8443"
+  # core.trust_password: password
+networks:
+  - config:
+      ipv4.address: 10.10.10.1/24
+      ipv6.address: none
+    description: ""
+    name: lxdbr0
+    type: ""
+    project: default
+storage_pools:
+  - config:
+      size: 500GB
+    description: ""
+    name: default
+    driver: zfs
+profiles:
+  - config: {}
+    description: ""
+    devices:
+      eth0:
+        name: eth0
+        network: lxdbr0
+        type: nic
+      root:
+        path: /
+        pool: default
+        type: disk
+    name: default
+projects: []
+cluster: null

package/manifests/maas/maas-setup.sh ADDED Viewed

@@ -0,0 +1,120 @@
+#!/bin/bash
+set -euo pipefail
+# Install jq for JSON parsing
+sudo snap install jq
+# Install MAAS
+sudo snap install maas
+# Get default interface and IP address
+INTERFACE=$(ip route | grep default | awk '{print $5}')
+IP_ADDRESS=$(ip -4 addr show dev "$INTERFACE" | grep -oP '(?<=inet\s)\d+(\.\d+){3}')
+# Change to the engine directory (assuming this is where your MAAS related configs are)
+cd /home/dd/engine
+# Load secrets for MAAS database and admin credentials
+underpost secret underpost --create-from-file /home/dd/engine/engine-private/conf/dd-cron/.env.production
+# Extract configuration values from secrets
+DB_PG_MAAS_USER=$(node bin config get --plain DB_PG_MAAS_USER)
+DB_PG_MAAS_PASS=$(node bin config get --plain DB_PG_MAAS_PASS)
+DB_PG_MAAS_HOST=$(node bin config get --plain DB_PG_MAAS_HOST)
+DB_PG_MAAS_NAME=$(node bin config get --plain DB_PG_MAAS_NAME)
+MAAS_ADMIN_USERNAME=$(node bin config get --plain MAAS_ADMIN_USERNAME)
+MAAS_ADMIN_EMAIL=$(node bin config get --plain MAAS_ADMIN_EMAIL)
+MAAS_ADMIN_PASS=$(node bin config get --plain MAAS_ADMIN_PASS)
+# Initialize MAAS region+rack controller
+maas init region+rack \
+    --database-uri "postgres://${DB_PG_MAAS_USER}:${DB_PG_MAAS_PASS}@${DB_PG_MAAS_HOST}/${DB_PG_MAAS_NAME}" \
+    --maas-url http://${IP_ADDRESS}:5240/MAAS
+# Allow MAAS to initialize (wait for services to come up)
+echo "Waiting for MAAS to initialize..."
+sleep 30
+# Create MAAS administrator account
+maas createadmin \
+    --username "$MAAS_ADMIN_USERNAME" \
+    --password "$MAAS_ADMIN_PASS" \
+    --email "$MAAS_ADMIN_EMAIL"
+# Get the API key for the admin user
+APIKEY=$(maas apikey --username "$MAAS_ADMIN_USERNAME")
+# Login to MAAS using the admin profile
+echo "Logging into MAAS..."
+maas login "$MAAS_ADMIN_USERNAME" "http://localhost:5240/MAAS/" "$APIKEY"
+# Set upstream DNS for MAAS
+echo "Setting upstream DNS to 8.8.8.8..."
+maas "$MAAS_ADMIN_USERNAME" maas set-config name=upstream_dns value=8.8.8.8
+# echo "Downloading Ubuntu Noble amd64/ga-24.04 image..."
+# maas $MAAS_ADMIN_USERNAME boot-source-selections create 1 \
+#     os="ubuntu" release="noble" arches="amd64" \
+#     subarches="ga-24.04" labels="*"
+# echo "Downloading Ubuntu Noble arm64/ga-24.04 image..."
+# maas $MAAS_ADMIN_USERNAME boot-source-selections create 1 \
+#     os="ubuntu" release="noble" arches="arm64" \
+#     subarches="ga-24.04" labels="*"
+# Import the newly selected boot images
+# echo "Importing boot images (this may take some time)..."
+# maas "$MAAS_ADMIN_USERNAME" boot-resources import
+# Disable the MAAS HTTP proxy
+echo "Disabling MAAS HTTP proxy..."
+maas "$MAAS_ADMIN_USERNAME" maas set-config name=enable_http_proxy value=false
+# Disable DNSSEC validation
+echo "Disabling DNSSEC validation..."
+maas "$MAAS_ADMIN_USERNAME" maas set-config name=dnssec_validation value=no
+# Set network discovery interval to 10 minutes (600 seconds)
+echo "Setting network discovery interval to 10 minutes..."
+maas "$MAAS_ADMIN_USERNAME" maas set-config name=active_discovery_interval value=600
+SSH_KEY=$(cat ~/.ssh/id_rsa.pub)
+maas $MAAS_ADMIN_USERNAME sshkeys create "key=$SSH_KEY"
+echo "MAAS setup script completed with new configurations."
+# maas $MAAS_ADMIN_USERNAME maas set-config name=default_storage_layout value=lvm
+# maas $MAAS_ADMIN_USERNAME maas set-config name=network_discovery value=disabled
+# maas $MAAS_ADMIN_USERNAME maas set-config name=enable_analytics value=false
+# maas $MAAS_ADMIN_USERNAME maas set-config name=enable_third_party_drivers value=false
+# maas $MAAS_ADMIN_USERNAME maas set-config name=curtin_verbose value=true
+echo "Configuring DHCP for fabric-1 (untagged VLAN)..."
+# Get the FABRIC_ID for "fabric-1"
+SUBNET_CIDR="192.168.1.0/24"
+SUBNET_ID=$(maas "$MAAS_ADMIN_USERNAME" subnets read | jq -r '.[] | select(.cidr == "'"$SUBNET_CIDR"'") | .id')
+FABRIC_ID=$(maas "$MAAS_ADMIN_USERNAME" fabrics read | jq -r '.[] | select(.name == "fabric-1") | .id')
+RACK_CONTROLLER_ID=$(maas "$MAAS_ADMIN_USERNAME" rack-controllers read | jq -r '.[] | select(.ip_addresses[] == "'"$IP_ADDRESS"'") | .system_id')
+START_IP="192.168.1.191"
+END_IP="192.168.1.254"
+if [ -z "$FABRIC_ID" ]; then
+    echo "Error: Could not find FABRIC_ID for 'fabric-1'. Please ensure 'fabric-1' exists in MAAS."
+    exit 1
+fi
+# Create a Dynamic IP Range for enlistment, commissioning, and deployment
+echo "Creating dynamic IP range from $START_IP to $END_IP..."
+maas "$MAAS_ADMIN_USERNAME" ipranges create type=dynamic start_ip="$START_IP" end_ip="$END_IP"
+# Enable DHCP on the untagged VLAN (VLAN tag 0)
+echo "Enabling DHCP on VLAN 0 for fabric-1 (ID: $FABRIC_ID)..."
+maas "$MAAS_ADMIN_USERNAME" vlan update "$FABRIC_ID" 0 dhcp_on=true primary_rack="$RACK_CONTROLLER_ID"
+echo "Setting gateway IP for subnet $SUBNET_CIDR (ID: $SUBNET_ID) to $IP_ADDRESS..."
+maas "$MAAS_ADMIN_USERNAME" subnet update $SUBNET_ID gateway_ip=$IP_ADDRESS

package/manifests/maas/nat-iptables.sh ADDED Viewed

@@ -0,0 +1,26 @@
+#!/bin/bash
+set -euo pipefail
+# Disable firewalld
+sudo systemctl disable --now iptables
+sudo systemctl disable --now ufw
+sudo systemctl disable --now firewalld
+# Remove any existing entries, then append exactly one
+sudo sed -i '/^net.ipv4.ip_forward/d' /etc/sysctl.conf
+sudo sed -i '/^net.ipv6.conf.all.forwarding/d' /etc/sysctl.conf
+echo "net.ipv4.ip_forward = 1"               | sudo tee -a /etc/sysctl.conf
+echo "net.ipv6.conf.all.forwarding = 1"       | sudo tee -a /etc/sysctl.conf
+# ---
+sudo sysctl -p
+# Accept all traffic
+sudo iptables -P INPUT ACCEPT
+sudo iptables -P FORWARD ACCEPT
+sudo iptables -P OUTPUT ACCEPT
+# List iptables rules and forwarding flag
+sudo iptables -L -n
+sysctl net.ipv4.ip_forward net.ipv6.conf.all.forwarding

package/manifests/maas/snap-clean.sh ADDED Viewed

@@ -0,0 +1,26 @@
+#!/usr/bin/env bash
+# cleanup-snap.sh
+# Remove all disabled snap revisions to free up disk space.
+set -euo pipefail
+# Ensure we’re running as root
+if [[ $EUID -ne 0 ]]; then
+    echo "Please run this script with sudo or as root."
+    exit 1
+fi
+echo "Gathering list of snaps with disabled revisions..."
+snap list --all \
+| awk '/disabled/ {print $1, $3}' \
+| while read -r pkg rev; do
+    echo "  -> Removing $pkg (revision $rev)..."
+    snap remove "$pkg" --revision="$rev"
+done
+echo "Cleanup complete."
+echo
+echo "Tip: Limit how many revisions Snap retains by setting:"
+echo "  sudo snap set system refresh.retain=2"
+echo "Then apply with:"
+echo "  sudo snap refresh"

package/manifests/mariadb/statefulset.yaml CHANGED Viewed

@@ -49,7 +49,8 @@ spec:
     - metadata:
         name: mariadb-storage
       spec:
-        accessModes: ['ReadWriteOnce']
+        accessModes: ["ReadWriteOnce"]
+        storageClassName: mariadb-storage-class
         resources:
           requests:
             storage: 1Gi

package/manifests/mariadb/storage-class.yaml ADDED Viewed

@@ -0,0 +1,10 @@
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: mariadb-storage-class # Renamed for clarity
+  annotations:
+    # Set this to "true" if you want this to be the default StorageClass
+    # storageclass.kubernetes.io/is-default-class: "true"
+provisioner: rancher.io/local-path # Ensure this provisioner is installed in your cluster
+reclaimPolicy: Retain # Or Delete, depending on your data retention policy
+volumeBindingMode: WaitForFirstConsumer

package/manifests/mongodb-4.4/service-deployment.yaml CHANGED Viewed

@@ -13,11 +13,11 @@ spec:
       labels:
         app: mongodb
     spec:
-      hostname: mongo
+      hostname: mongodb-service
       containers:
         - name: mongodb
           image: mongo:4.4
-          command: ['mongod', '--replSet', 'rs0', '--bind_ip_all']
+          command: ["mongod", "--replSet", "rs0", "--bind_ip_all"]
           # -- bash
           # mongo
           # use admin

package/manifests/valkey/service.yaml CHANGED Viewed

@@ -1,17 +1,11 @@
----
 apiVersion: v1
 kind: Service
 metadata:
-  name: service-valkey
+  name: valkey-service
   namespace: default
 spec:
+  selector:
+    app: valkey-service
   ports:
     - port: 6379
       targetPort: 6379
-  selector:
-    app: service-valkey
-  ipFamilyPolicy: PreferDualStack
-  ipFamilies:
-    - IPv4
-    # - IPv6
-  type: ClusterIP

package/manifests/valkey/statefulset.yaml CHANGED Viewed

@@ -1,40 +1,38 @@
 apiVersion: apps/v1
 kind: StatefulSet
 metadata:
-  name: service-valkey
+  name: valkey-service
   namespace: default
 spec:
-  serviceName: service-valkey
+  serviceName: valkey-service
   replicas: 1
   selector:
     matchLabels:
-      app: service-valkey
+      app: valkey-service
   template:
     metadata:
       labels:
-        app: service-valkey
+        app: valkey-service
     spec:
-      # Prevent automatic token mounting if you're not using the default ServiceAccount
       automountServiceAccountToken: false
       containers:
-        - name: service-valkey
+        - name: valkey-service
           image: docker.io/valkey/valkey:latest
           imagePullPolicy: IfNotPresent
-          env:
-            - name: TZ
-              value: Europe/Zurich
+          command: ["valkey-server"]
+          args: ["--port", "6379"]
           ports:
             - containerPort: 6379
           startupProbe:
             tcpSocket:
               port: 6379
-            failureThreshold: 30
             periodSeconds: 5
             timeoutSeconds: 5
+            failureThreshold: 30
           livenessProbe:
             tcpSocket:
               port: 6379
-            failureThreshold: 2
+            initialDelaySeconds: 10
             periodSeconds: 30
             timeoutSeconds: 5
+            failureThreshold: 2

package/package.json CHANGED Viewed

@@ -2,7 +2,7 @@
     "type": "module",
     "main": "src/index.js",
     "name": "underpost",
-    "version": "2.8.79",
+    "version": "2.8.84",
     "description": "pwa api rest template",
     "scripts": {
         "start": "env-cmd -f .env.production node --max-old-space-size=8192 src/server",