PyPI - raijin-server - Versions diffs - 0.2.39__tar.gz → 0.2.40__tar.gz - Mend

raijin-server 0.2.39tar.gz → 0.2.40tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (54) hide show

{raijin_server-0.2.39/src/raijin_server.egg-info → raijin_server-0.2.40}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: raijin-server
-Version: 0.2.39
+Version: 0.2.40
 Summary: CLI para automacao de setup e hardening de servidores Ubuntu Server.
 Home-page: https://example.com/raijin-server
 Author: Equipe Raijin

{raijin_server-0.2.39 → raijin_server-0.2.40}/setup.cfg RENAMED Viewed

@@ -1,6 +1,6 @@
 [metadata]
 name = raijin-server
-version = 0.2.39
+version = 0.2.40
 description = CLI para automacao de setup e hardening de servidores Ubuntu Server.
 long_description = file: README.md
 long_description_content_type = text/markdown

raijin_server-0.2.40/src/raijin_server/__init__.py ADDED Viewed

@@ -0,0 +1,5 @@
+"""Pacote principal do CLI Raijin Server."""
+__version__ = "0.2.40"
+__all__ = ["__version__"]

{raijin_server-0.2.39 → raijin_server-0.2.40}/src/raijin_server/modules/minio.py RENAMED Viewed

@@ -1,5 +1,6 @@
 """Deploy do MinIO via Helm com configuracoes production-ready."""
+import json
 import secrets
 import socket
 import tempfile
@@ -107,6 +108,102 @@ def _list_storage_classes(ctx: ExecutionContext) -> list:
     return []
+def _patch_local_path_provisioner_tolerations(ctx: ExecutionContext) -> None:
+    """Adiciona tolerations ao local-path-provisioner para rodar em control-plane."""
+    typer.echo("  Configurando tolerations no local-path-provisioner...")
+    # Patch no deployment para tolerar control-plane
+    patch_deployment = textwrap.dedent(
+        """
+        spec:
+          template:
+            spec:
+              tolerations:
+              - key: node-role.kubernetes.io/control-plane
+                operator: Exists
+                effect: NoSchedule
+              - key: node-role.kubernetes.io/master
+                operator: Exists
+                effect: NoSchedule
+        """
+    ).strip()
+    result = run_cmd(
+        [
+            "kubectl", "-n", "local-path-storage", "patch", "deployment",
+            "local-path-provisioner", "--patch", patch_deployment,
+        ],
+        ctx,
+        check=False,
+    )
+    if result.returncode == 0:
+        typer.secho("    ✓ Deployment patched com tolerations.", fg=typer.colors.GREEN)
+    # Patch no ConfigMap para os helper pods (que criam os dirs no node)
+    # O local-path-provisioner usa um ConfigMap com helperPod template
+    helper_pod_config = {
+        "nodePathMap": [
+            {
+                "node": "DEFAULT_PATH_FOR_NON_LISTED_NODES",
+                "paths": ["/opt/local-path-provisioner"]
+            }
+        ],
+        "setupCommand": None,
+        "teardownCommand": None,
+        "helperPod": {
+            "apiVersion": "v1",
+            "kind": "Pod",
+            "metadata": {},
+            "spec": {
+                "tolerations": [
+                    {"key": "node-role.kubernetes.io/control-plane", "operator": "Exists", "effect": "NoSchedule"},
+                    {"key": "node-role.kubernetes.io/master", "operator": "Exists", "effect": "NoSchedule"}
+                ],
+                "containers": [
+                    {
+                        "name": "helper-pod",
+                        "image": "busybox:stable",
+                        "imagePullPolicy": "IfNotPresent"
+                    }
+                ]
+            }
+        }
+    }
+    # Converte para JSON string para o patch
+    config_json_str = json.dumps(helper_pod_config)
+    patch_data = json.dumps({"data": {"config.json": config_json_str}})
+    # Aplica via patch no ConfigMap
+    result = run_cmd(
+        [
+            "kubectl", "-n", "local-path-storage", "patch", "configmap",
+            "local-path-config", "--type=merge", "-p", patch_data,
+        ],
+        ctx,
+        check=False,
+    )
+    if result.returncode == 0:
+        typer.secho("    ✓ ConfigMap patched para helper pods.", fg=typer.colors.GREEN)
+    # Reinicia o deployment para aplicar as mudanças
+    run_cmd(
+        ["kubectl", "-n", "local-path-storage", "rollout", "restart", "deployment/local-path-provisioner"],
+        ctx,
+        check=False,
+    )
+    # Aguarda rollout
+    run_cmd(
+        [
+            "kubectl", "-n", "local-path-storage", "rollout", "status",
+            "deployment/local-path-provisioner", "--timeout=60s",
+        ],
+        ctx,
+        check=False,
+    )
 def _install_local_path_provisioner(ctx: ExecutionContext) -> bool:
     """Instala local-path-provisioner para usar storage local (NVMe/SSD)."""
     typer.echo("Instalando local-path-provisioner para storage local...")
@@ -120,7 +217,7 @@ def _install_local_path_provisioner(ctx: ExecutionContext) -> bool:
         typer.secho("  Falha ao instalar local-path-provisioner.", fg=typer.colors.RED)
         return False
-    # Aguarda deployment ficar pronto
+    # Aguarda deployment ficar pronto inicialmente
     typer.echo("  Aguardando local-path-provisioner ficar Ready...")
     run_cmd(
         [
@@ -131,7 +228,10 @@ def _install_local_path_provisioner(ctx: ExecutionContext) -> bool:
         check=False,
     )
-    typer.secho("  ✓ local-path-provisioner instalado.", fg=typer.colors.GREEN)
+    # Aplica tolerations para control-plane (single-node clusters)
+    _patch_local_path_provisioner_tolerations(ctx)
+    typer.secho("  ✓ local-path-provisioner instalado e configurado.", fg=typer.colors.GREEN)
     return True
@@ -172,9 +272,12 @@ def _ensure_storage_class(ctx: ExecutionContext) -> str:
     # Se ja houver StorageClass dedicada do Raijin, usa ela
     if default_sc == RAIJIN_LOCAL_PATH_SC_NAME:
         typer.echo(f"StorageClass default detectada: {default_sc}")
+        # Garante que o provisioner tem tolerations (pode ter sido instalado antes do fix)
+        _patch_local_path_provisioner_tolerations(ctx)
         return default_sc
     if RAIJIN_LOCAL_PATH_SC_NAME in available:
         typer.echo(f"StorageClass '{RAIJIN_LOCAL_PATH_SC_NAME}' detectada.")
+        _patch_local_path_provisioner_tolerations(ctx)
         _set_default_storage_class(ctx, RAIJIN_LOCAL_PATH_SC_NAME)
         return RAIJIN_LOCAL_PATH_SC_NAME
@@ -185,6 +288,8 @@ def _ensure_storage_class(ctx: ExecutionContext) -> str:
     # Se local-path estiver disponivel (default ou nao), cria uma classe dedicada com binding imediato
     if "local-path" in available or default_sc == "local-path":
+        # Garante tolerations no provisioner existente
+        _patch_local_path_provisioner_tolerations(ctx)
         if _create_raijin_local_path_sc(ctx):
             _set_default_storage_class(ctx, RAIJIN_LOCAL_PATH_SC_NAME)
             return RAIJIN_LOCAL_PATH_SC_NAME

{raijin_server-0.2.39 → raijin_server-0.2.40/src/raijin_server.egg-info}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: raijin-server
-Version: 0.2.39
+Version: 0.2.40
 Summary: CLI para automacao de setup e hardening de servidores Ubuntu Server.
 Home-page: https://example.com/raijin-server
 Author: Equipe Raijin