feat(std/fwlib/blockTypes/kubctl): add new block type w/o proviso

divnix · Jun 27, 2023 · e0cde04 · e0cde04
1 parent bcaec08
commit e0cde04
Show file tree

Hide file tree

Showing 4 changed files with 165 additions and 12 deletions.
diff --git a/src/local/flake.lock b/src/local/flake.lock
diff --git a/src/std/fwlib/blockTypes/kubectl.nix b/src/std/fwlib/blockTypes/kubectl.nix
@@ -0,0 +1,132 @@
+{
+  trivial,
+  root,
+  super,
+}:
+/*
+Use the `kubectl` Blocktype for rendering deployment manifests
+for the Kubernetes Cluster scheduler. Each named attribtute-set under the
+block contains a set of deployment manifests.
+
+Available actions:
+  - render
+  - deploy
+  - explore
+*/
+let
+  inherit (root) mkCommand;
+  inherit (super) addSelectorFunctor askUserToProceedSnippet;
+in
+  name: {
+    __functor = addSelectorFunctor;
+    inherit name;
+    type = "kubectl";
+
+    actions = {
+      currentSystem,
+      fragment,
+      fragmentRelPath,
+      target,
+      inputs,
+    }: let
+      inherit (inputs.nixpkgs) lib;
+      pkgs = inputs.nixpkgs.${currentSystem};
+      triv = trivial.${currentSystem};
+
+      manifest_path = fragmentRelPath;
+
+      checkedRev = inputs.std.std.errors.bailOnDirty ''
+        Will not render manifests from a dirty tree.
+        Otherwise we cannot keep good track of deployment history.''
+      inputs.self.rev;
+
+      augment = target:
+        lib.mapAttrs (_: v: (
+          if v ? metadata && v.metadata ? labels
+          then lib.recursiveUpdate v {metadata.labels.revision = checkedRev;}
+          else v
+        )) (builtins.removeAttrs target ["meta"]);
+
+      # add git revision under metadata.labels.revision, if present
+      manifestsWithGitRevision = target: let
+        render = manifest: v: builtins.toFile "${manifest}.json" (builtins.unsafeDiscardStringContext (builtins.toJSON v));
+      in
+        triv.linkFarm "k8s-manifests" (lib.mapAttrs'
+          (n: v: lib.nameValuePair "${n}.json" (render n v))
+          (augment target));
+
+      render = ''
+        declare manifest_path="$PRJ_DATA_HOME/${manifest_path}"
+        _render() {
+          echo "Buiding manifests..."
+          echo
+          rm -rf "$manifest_path"
+          ln -sf "${manifestsWithGitRevision target}" "$manifest_path"
+          echo
+          echo "Manifests built in: $manifest_path"
+        }
+        render() {
+          local mode="$1"
+          mkdir -p "$manifest_path"
+          if [[ "$mode" == "always" ]]
+          then
+            _render
+          elif [[ "$mode" == "current-revision" ]] \
+            && [[ "$(jq -r '.metadata.labels.revision' "$(find "$manifest_path" | head -n1)")" != "$(git rev-parse --short HEAD)" ]]
+          then
+            _render
+          elif [[ "$mode" == "if-not-exists" ]] && [[ ! -d "$manifest_path" ]]
+          then
+            _render
+          fi
+        }
+      '';
+    in [
+      /*
+      The `render` action will take this Nix manifest descrition, convert it to JSON,
+      inject the git revision validate the manifest, after which it can be run or
+      planned with the kubectl cli or the `deploy` action.
+      */
+      (mkCommand currentSystem "render" "Build the JSON manifests" [] ''
+        ${render}
+        render always
+      '' {})
+      (mkCommand currentSystem "apply" "Apply the manifests to K8s" [pkgs.kubectl pkgs.jq] ''
+        ${render}
+        render if-not-exists
+        render current-revision
+
+        diff() {
+          if ! [[ -v CI ]]; then
+            kubectl diff --server-side=true --field-manager="std-action-in-ci" \
+              --filename $manifest_path --recursive;
+          else
+            kubectl diff --server-side=true --field-manager="std-action-$(whoami)" \
+              --filename $manifest_path --recursive;
+          fi
+        }
+
+        run() {
+          if ! [[ -v CI ]]; then
+            kubectl apply --server-side=true --field-manager="std-action-in-ci" \
+              --filename $manifest_path --recursive;
+          else
+            kubectl apply --server-side=true --field-manager="std-action-$(whoami)" \
+              --filename $manifest_path --recursive;
+          fi
+        }
+
+        if diff; then
+          ${askUserToProceedSnippet "apply" "run"}
+        else
+          echo "Deployment hasn't changed since last deployment, nothing to deploy"
+        fi
+      '' {})
+      (mkCommand currentSystem "explore" "Interactively explore the manifests" [pkgs.fx] ''
+        fx ${
+          builtins.toFile "explore-k8s-manifests.json"
+          (builtins.unsafeDiscardStringContext (builtins.toJSON (augment target)))
+        }
+      '' {})
+    ];
+  }
diff --git a/src/tests/flake.lock b/src/tests/flake.lock
diff --git a/tests/_snapshots/bt-blocktypes b/tests/_snapshots/bt-blocktypes
@@ -164,6 +164,27 @@
     name = "installables";
     type = "installables";
   };
+  kubectl = {
+    actions = [
+      {
+        command = <derivation render>;
+        description = "Build the JSON manifests";
+        name = "render";
+      }
+      {
+        command = <derivation apply>;
+        description = "Apply the manifests to K8s";
+        name = "apply";
+      }
+      {
+        command = <derivation explore>;
+        description = "Interactively explore the manifests";
+        name = "explore";
+      }
+    ];
+    name = "kubectl";
+    type = "kubectl";
+  };
   microvms = {
     actions = [
       {