Implement resource gitlab_project_runner_enablement to attach specific runners to projects
#1016
Conversation
![github-actions[bot]](https://avatars.githubusercontent.com/in/15368?s=60&v=4){kind=small}
There was a problem hiding this comment.
Welcome @Dutchy- 👋
It looks like this is your first submission to the Terraform GitLab Provider! If you haven’t already done so, please make sure you have checked out our CONTRIBUTING.md guide to make sure your contribution has all the necessary elements in place for a successful approval.
Thanks again, and welcome to the community! 😃
|
Hey @Dutchy- ! 👋 thanks for opening your first PR; Please feel free to check out our CONTRIBUTING.md for tips on helping develop the provider, and let me know if you have any questions! I'm imagining that the workflow for this resource looks like:
Do I have the use-case correct? It makes sense to merge this as a potential new resource, I could certainly see managing project:runner linkage as a very valuable job for terraform where you want to control runners at a more granular level than groups. A couple general notes on the PR:
I've also left a couple comments in your file as well with some targeted suggestions. Thanks for the hard work! |
|
Amazing feedback guys, I'll have a look at it. |
|
Thanks guys, I've pushed a new version. I've also included a context and diagnostics on the errors.
Yes, this is indeed the use case
I'm not yet able to write tests because I am not yet able to start the test environment I see this and it hangs forever on the health check. I also can't connect to localhost:8080.
|
|
Thanks @floh96 I've managed to get it running using gitpod 👍 . Since the test environment indeed does not include a runner, would it make sense to wait for your new resource to register a runner @PatrickRice-KSC ? I'll have a look at registering a runner for the tests through the API directly, but I'm not sure yet how feasible that is. |
|
I'm currently a bit confused on how to approach this, especially in light of the announced deprecation https://docs.gitlab.com/ee/update/deprecations.html#converting-an-instance-shared-runner-to-a-project-specific-runner The current API seems to only support instance level registrations with a registration token I can predict or get programmatically. This can be set using the Setting up the shared instance runner through that environment variable seems to be the functionality that will be deprecated in 15.0 so if there's a better way I would like to know. What's also unclear to me is if these project or group level runners can be shared by multiple projects, e.g. across the group boundary - that's how we are currently using it in our self-hosted setup. I think I can conclude that this is indeed affected by the mentioned deprecation. @PatrickRice-KSC we're in almost opposite timezones, but if you are available on a chatplatform somewhere I'd love to have a chat about this. |
No problem, glad we could help!
Thanks @Dutchy- ! I'll take another review through this here in a couple hours 🙂 . I'm on the Discord Server that's listed in the contributing.md, and happy to chat there! If you drop me a note there we can figure out a time to chat.
I think for the current register runner API (I think, I haven't tested yet since I'm waiting on #1007 to merge before I pick up work on it again) that it will register runners based on the registration token you provide it. If you pass in a registration token for the instance, you'll get an instance runner and be subject to the deprecation. If you register using a registration token for a group, you'd get a group runner and you wouldn't be subject to the deprecation. So that means we would likely want to have a note on this resource in the provider stating that it should only be used with group_runner setups. Essentially, you may want a top level group (or child of that TLG) that holds all your runners, then you can link from there to individual projects.
We've been trying to keep acceptance tests to just the resource being tested, and using the go-gitlab client to register dependent resources. That way when tests fail, it's more clear what resource is actually causing the failure as opposed to just failing by proxy. You can see an example of this here: https://github.com/gitlabhq/terraform-provider-gitlab/blob/main/internal/provider/resource_gitlab_group_project_file_template_test.go#L15 I'd suggest you follow a similar pattern here and create the group, runner, and project in the header of the test, then test your resource individually. That way you're not blocked by my PR as well 🙂 Hopefully that helps! |
|
@PatrickRice-KSC Since a runner/runner container is not included in the setup scripts from what I can tell, should that be added to accommodate this resource + any future resources/data sources? |
@Shocktrooper - Do you think we need one? We don't need to actually run any jobs, we just need the ability to register the resource and bind it to a project. I don't think that requires a runner per se, but maybe I'm missing something 🙂 |
|
Per a conversation earlier with @PatrickRice-KSC we do not need a runner registered to test this resource as it does not do any registering. Another note is that the resource itself should probably be renamed to something like |
Had a chat on discord about this and I'll figure it out how to migrate. So only to decide on the name now
|
The more I think about this, the more I like the
So we don't really benefit from any recognizable "prior art". I'd suggest we have some good description text around what it does, then align to the underlying API. I'm interested in thoughts from others though - Any thoughts @Shocktrooper , @armsnyder , @timofurrer ? |
|
I've renamed the resource per your suggestion, pending consensus. I'll happily rename it again if you decide on something different. |
internal/provider/resource_gitlab_project_runner_enablement_test.go
Outdated
Show resolved
Hide resolved
internal/provider/resource_gitlab_project_runner_enablement_test.go
Outdated
Show resolved
Hide resolved
|
@PatrickRice-KSC I guess enablement might be the best even though its a misnomer for what it actually does. If I were looking to attach a runner with the terraform provider I would probably look at either the GitLab API docs first, see its enable/disable then check the provider to see if there is a matching resource or the other way around and see if the provider docs have something before checking the GitLab API to then go back to the provider |
|
I've processed all the feedback - if there is no further feedback I can squash the commits and the PR is completely ready :) |
…c runners to projects Co-authored-by: Timo Furrer <tuxtimo@gmail.com>
timofurrer
changed the title
gitlab_project_runner_enablement to attach specific runners to projects
|
Looks good to me too, migrating to the GetRunnerDetails API for the read method addresses my concerns about the locking and pagination race condition that's present on the GetProjectRunners API as well, since the runner details API returns all projects. If someone has a runner linked to a ton of projects, this refresh may go a bit more slowly, but importantly it'll be error free. I like it, let's ship it! Nice work @Dutchy- 🎉 |
|
This functionality has been released in v3.14.0 of the Terraform GitLab Provider. Please see the Terraform documentation on provider versioning or reach out if you need any assistance upgrading. For further feature requests or bug reports with this functionality, please create a new GitHub issue. Thank you! |
Description
This new resource
gitlab_project_runnerattaches a specific runner to a project.This modification has been in use by us for years and today I updated it to apply to the latest master. I would like to know if this has the potential to be merged.
PR Checklist Acknowledgement
//lintignorecomments were copied from existing code. (Linter rules are meant to be enforced on new code.)make reviewableI have read the above checklist and I will add the missing parts if the resource in the current form is deemed good enough.