pragmatiks-gcp-provider 0.84.0__tar.gz

pragmatiks_gcp_provider-0.84.0/PKG-INFO

@@ -0,0 +1,100 @@
+Metadata-Version: 2.3
+Name: pragmatiks-gcp-provider
+Version: 0.84.0
+Summary: GCP provider for Pragmatiks
+Author: Pragmatiks
+Author-email: Pragmatiks <team@pragmatiks.io>
+Requires-Dist: pragmatiks-sdk>=0.17.1
+Requires-Dist: google-cloud-container>=2.50.0
+Requires-Dist: google-cloud-logging>=3.10.0
+Requires-Dist: google-cloud-secret-manager>=2.20.0
+Requires-Dist: google-api-python-client>=2.150.0
+Requires-Dist: google-auth>=2.35.0
+Requires-Python: >=3.13
+Description-Content-Type: text/markdown
+
+# GCP Provider
+
+GCP provider for Pragmatiks - manage Google Cloud resources declaratively.
+
+## Available Resources
+
+### Secret (gcp/secret)
+
+Manages secrets in GCP Secret Manager using user-provided service account credentials.
+
+```python
+from gcp_provider import Secret, SecretConfig
+
+# Define a secret
+secret = Secret(
+    name="my-api-key",
+    config=SecretConfig(
+        project_id="my-gcp-project",
+        secret_id="api-key",
+        data="super-secret-value",
+        credentials={"type": "service_account", ...},  # or JSON string
+    ),
+)
+```
+
+**Config:**
+- `project_id` - GCP project ID where the secret will be created
+- `secret_id` - Identifier for the secret (must be unique per project)
+- `data` - Secret payload data to store
+- `credentials` - GCP service account credentials (JSON object or string)
+
+**Outputs:**
+- `resource_name` - Full GCP resource name (`projects/{project}/secrets/{id}`)
+- `version_name` - Full version resource name including version number
+- `version_id` - The version number as a string
+
+## Installation
+
+```bash
+pip install pragmatiks-gcp-provider
+```
+
+## Development
+
+### Testing
+
+```bash
+# Install dependencies
+uv sync --dev
+
+# Run tests
+uv run pytest tests/
+```
+
+### Writing Tests
+
+Use `ProviderHarness` to test lifecycle methods:
+
+```python
+from pragma_sdk.provider import ProviderHarness
+from gcp_provider import Secret, SecretConfig
+
+async def test_create_secret():
+    harness = ProviderHarness()
+    result = await harness.invoke_create(
+        Secret,
+        name="test-secret",
+        config=SecretConfig(
+            project_id="test-project",
+            secret_id="my-secret",
+            data="secret-value",
+            credentials=mock_credentials,
+        ),
+    )
+    assert result.success
+    assert result.outputs.resource_name is not None
+```
+
+## Deployment
+
+Push your provider to Pragmatiks platform:
+
+```bash
+pragma provider push
+```

pragmatiks_gcp_provider-0.84.0/README.md

@@ -0,0 +1,85 @@
+# GCP Provider
+
+GCP provider for Pragmatiks - manage Google Cloud resources declaratively.
+
+## Available Resources
+
+### Secret (gcp/secret)
+
+Manages secrets in GCP Secret Manager using user-provided service account credentials.
+
+```python
+from gcp_provider import Secret, SecretConfig
+
+# Define a secret
+secret = Secret(
+    name="my-api-key",
+    config=SecretConfig(
+        project_id="my-gcp-project",
+        secret_id="api-key",
+        data="super-secret-value",
+        credentials={"type": "service_account", ...},  # or JSON string
+    ),
+)
+```
+
+**Config:**
+- `project_id` - GCP project ID where the secret will be created
+- `secret_id` - Identifier for the secret (must be unique per project)
+- `data` - Secret payload data to store
+- `credentials` - GCP service account credentials (JSON object or string)
+
+**Outputs:**
+- `resource_name` - Full GCP resource name (`projects/{project}/secrets/{id}`)
+- `version_name` - Full version resource name including version number
+- `version_id` - The version number as a string
+
+## Installation
+
+```bash
+pip install pragmatiks-gcp-provider
+```
+
+## Development
+
+### Testing
+
+```bash
+# Install dependencies
+uv sync --dev
+
+# Run tests
+uv run pytest tests/
+```
+
+### Writing Tests
+
+Use `ProviderHarness` to test lifecycle methods:
+
+```python
+from pragma_sdk.provider import ProviderHarness
+from gcp_provider import Secret, SecretConfig
+
+async def test_create_secret():
+    harness = ProviderHarness()
+    result = await harness.invoke_create(
+        Secret,
+        name="test-secret",
+        config=SecretConfig(
+            project_id="test-project",
+            secret_id="my-secret",
+            data="secret-value",
+            credentials=mock_credentials,
+        ),
+    )
+    assert result.success
+    assert result.outputs.resource_name is not None
+```
+
+## Deployment
+
+Push your provider to Pragmatiks platform:
+
+```bash
+pragma provider push
+```

pragmatiks_gcp_provider-0.84.0/pyproject.toml

@@ -0,0 +1,55 @@
+[project]
+name = "pragmatiks-gcp-provider"
+version = "0.84.0"
+description = "GCP provider for Pragmatiks"
+readme = "README.md"
+requires-python = ">=3.13"
+dependencies = [
+    "pragmatiks-sdk>=0.17.1",
+    "google-cloud-container>=2.50.0",
+    "google-cloud-logging>=3.10.0",
+    "google-cloud-secret-manager>=2.20.0",
+    "google-api-python-client>=2.150.0",
+    "google-auth>=2.35.0",
+]
+
+authors = [
+    { name = "Pragmatiks", email = "team@pragmatiks.io" },
+]
+
+[dependency-groups]
+dev = [
+    "pytest>=8.4.1",
+    "pytest-asyncio>=1.0.0",
+    "pytest-cov>=7.0.0",
+    "pytest-mock>=3.14.0",
+    "ty>=0.0.14",
+]
+
+[tool.pragma]
+# Provider metadata - used by the platform for discovery and deployment
+provider = "gcp"
+package = "gcp_provider"
+
+[tool.pytest.ini_options]
+asyncio_mode = "auto"
+asyncio_default_fixture_loop_scope = "function"
+
+[tool.commitizen]
+name = "cz_conventional_commits"
+version = "0.84.0"
+version_files = ["pyproject.toml:^version"]
+tag_format = "gcp-v$version"
+update_changelog_on_bump = true
+changelog_file = "CHANGELOG.md"
+
+[tool.ruff]
+extend = "../../pyproject.toml"
+line-length = 120
+
+[tool.uv.build-backend]
+module-name = "gcp_provider"
+
+[build-system]
+requires = ["uv_build>=0.9.8,<0.10.0"]
+build-backend = "uv_build"

pragmatiks_gcp_provider-0.84.0/src/gcp_provider/__init__.py

@@ -0,0 +1,53 @@
+"""GCP provider for Pragmatiks.
+
+Provides GCP resources for managing infrastructure in Google Cloud Platform
+using user-provided credentials (multi-tenant SaaS pattern).
+"""
+
+from pragma_sdk import Provider
+
+from gcp_provider.resources import (
+    GKE,
+    Database,
+    DatabaseConfig,
+    DatabaseInstance,
+    DatabaseInstanceConfig,
+    DatabaseInstanceOutputs,
+    DatabaseOutputs,
+    GKEConfig,
+    GKEOutputs,
+    Secret,
+    SecretConfig,
+    SecretOutputs,
+    User,
+    UserConfig,
+    UserOutputs,
+)
+
+
+gcp = Provider(name="gcp")
+
+gcp.resource("cloudsql/database_instance")(DatabaseInstance)
+gcp.resource("cloudsql/database")(Database)
+gcp.resource("cloudsql/user")(User)
+gcp.resource("gke")(GKE)
+gcp.resource("secret")(Secret)
+
+__all__ = [
+    "gcp",
+    "Database",
+    "DatabaseConfig",
+    "DatabaseInstance",
+    "DatabaseInstanceConfig",
+    "DatabaseInstanceOutputs",
+    "DatabaseOutputs",
+    "GKE",
+    "GKEConfig",
+    "GKEOutputs",
+    "Secret",
+    "SecretConfig",
+    "SecretOutputs",
+    "User",
+    "UserConfig",
+    "UserOutputs",
+]

pragmatiks_gcp_provider-0.84.0/src/gcp_provider/resources/__init__.py

@@ -0,0 +1,45 @@
+"""Resource definitions for gcp provider.
+
+Import and export your Resource classes here for discovery by the runtime.
+"""
+
+from gcp_provider.resources.cloudsql import (
+    Database,
+    DatabaseConfig,
+    DatabaseInstance,
+    DatabaseInstanceConfig,
+    DatabaseInstanceOutputs,
+    DatabaseOutputs,
+    User,
+    UserConfig,
+    UserOutputs,
+)
+from gcp_provider.resources.gke import (
+    GKE,
+    GKEConfig,
+    GKEOutputs,
+)
+from gcp_provider.resources.secret import (
+    Secret,
+    SecretConfig,
+    SecretOutputs,
+)
+
+
+__all__ = [
+    "Database",
+    "DatabaseConfig",
+    "DatabaseInstance",
+    "DatabaseInstanceConfig",
+    "DatabaseInstanceOutputs",
+    "DatabaseOutputs",
+    "GKE",
+    "GKEConfig",
+    "GKEOutputs",
+    "Secret",
+    "SecretConfig",
+    "SecretOutputs",
+    "User",
+    "UserConfig",
+    "UserOutputs",
+]

pragmatiks_gcp_provider-0.84.0/src/gcp_provider/resources/cloudsql/__init__.py

@@ -0,0 +1,32 @@
+"""GCP Cloud SQL resources for database instances, databases, and users."""
+
+from __future__ import annotations
+
+from gcp_provider.resources.cloudsql.database import (
+    Database,
+    DatabaseConfig,
+    DatabaseOutputs,
+)
+from gcp_provider.resources.cloudsql.database_instance import (
+    DatabaseInstance,
+    DatabaseInstanceConfig,
+    DatabaseInstanceOutputs,
+)
+from gcp_provider.resources.cloudsql.user import (
+    User,
+    UserConfig,
+    UserOutputs,
+)
+
+
+__all__ = [
+    "Database",
+    "DatabaseConfig",
+    "DatabaseInstance",
+    "DatabaseInstanceConfig",
+    "DatabaseInstanceOutputs",
+    "DatabaseOutputs",
+    "User",
+    "UserConfig",
+    "UserOutputs",
+]

pragmatiks_gcp_provider-0.84.0/src/gcp_provider/resources/cloudsql/database.py

@@ -0,0 +1,155 @@
+"""GCP Cloud SQL database resource."""
+
+from __future__ import annotations
+
+from typing import Any, ClassVar
+
+from pragma_sdk import Config, Dependency, Outputs, Resource
+from pydantic import Field
+
+from gcp_provider.resources.cloudsql.database_instance import DatabaseInstance
+from gcp_provider.resources.cloudsql.helpers import (
+    connection_info,
+    execute,
+    extract_ips,
+    get_credentials,
+    get_sqladmin_service,
+)
+
+
+class DatabaseConfig(Config):
+    """Configuration for a Cloud SQL database.
+
+    Attributes:
+        instance: The Cloud SQL instance that hosts this database.
+        database_name: Name of the database to create.
+    """
+
+    instance: Dependency[DatabaseInstance]
+    database_name: str = Field(json_schema_extra={"immutable": True})
+
+
+class DatabaseOutputs(Outputs):
+    """Outputs from Cloud SQL database creation.
+
+    Attributes:
+        database_name: Name of the created database.
+        instance_name: Name of the hosting instance.
+        host: Database host (IP address or connection name).
+        port: Database port (5432 for postgres, 3306 for mysql).
+        url: Connection URL format (without credentials).
+    """
+
+    database_name: str
+    instance_name: str
+    host: str
+    port: int
+    url: str
+
+
+class Database(Resource[DatabaseConfig, DatabaseOutputs]):
+    """GCP Cloud SQL database resource.
+
+    Creates and manages databases within a Cloud SQL instance.
+    Changing the instance triggers replacement (delete from old, create in new).
+    """
+
+    provider: ClassVar[str] = "gcp"
+    resource: ClassVar[str] = "cloudsql/database"
+
+    async def on_create(self) -> DatabaseOutputs:
+        """Create database in the Cloud SQL instance.
+
+        Idempotent: If database already exists, returns its current state.
+
+        Returns:
+            DatabaseOutputs with database details.
+        """
+        instance_resource = await self.config.instance.resolve()
+        inst = instance_resource.config
+        service = get_sqladmin_service(get_credentials(inst.credentials))
+
+        await execute(
+            service.databases().insert(
+                project=inst.project_id,
+                instance=inst.instance_name,
+                body={
+                    "name": self.config.database_name,
+                    "project": inst.project_id,
+                    "instance": inst.instance_name,
+                },
+            ),
+            ignore_exists=True,
+        )
+
+        return await self._build_outputs(inst, service)
+
+    async def on_update(self, previous_config: DatabaseConfig) -> DatabaseOutputs:
+        """Handle database updates.
+
+        If instance changed, delete from old instance and create in new one.
+        database_name cannot be changed (truly immutable).
+
+        Returns:
+            DatabaseOutputs with database details.
+
+        Raises:
+            ValueError: If database_name changed (immutable field).
+        """
+        if previous_config.database_name != self.config.database_name:
+            msg = "Cannot change database_name; delete and recreate resource"
+            raise ValueError(msg)
+
+        if previous_config.instance != self.config.instance:
+            await self._delete(previous_config)
+            return await self.on_create()
+
+        instance_resource = await self.config.instance.resolve()
+        inst = instance_resource.config
+        service = get_sqladmin_service(get_credentials(inst.credentials))
+
+        return await self._build_outputs(inst, service)
+
+    async def on_delete(self) -> None:
+        """Delete database. Idempotent: succeeds if database doesn't exist."""
+        await self._delete(self.config)
+
+    async def _delete(self, config: DatabaseConfig) -> None:
+        """Delete database from instance. Idempotent: succeeds if not found."""
+        instance_resource = await config.instance.resolve()
+        inst = instance_resource.config
+        service = get_sqladmin_service(get_credentials(inst.credentials))
+
+        await execute(
+            service.databases().delete(
+                project=inst.project_id,
+                instance=inst.instance_name,
+                database=config.database_name,
+            ),
+            ignore_404=True,
+        )
+
+    async def _build_outputs(self, inst: Any, service: Any) -> DatabaseOutputs:
+        """Fetch instance info and build outputs.
+
+        Returns:
+            DatabaseOutputs with connection details.
+        """
+        instance = await execute(
+            service.instances().get(
+                project=inst.project_id,
+                instance=inst.instance_name,
+            )
+        )
+
+        public_ip, private_ip = extract_ips(instance)
+        db_type, db_port = connection_info(instance.get("databaseVersion", "POSTGRES_15"))
+        host = public_ip or private_ip or f"{inst.project_id}:{instance.get('region')}:{inst.instance_name}"
+
+        return DatabaseOutputs(
+            database_name=self.config.database_name,
+            instance_name=inst.instance_name,
+            host=host,
+            port=int(db_port),
+            url=f"{db_type}://{host}:{db_port}/{self.config.database_name}",
+        )