-
Notifications
You must be signed in to change notification settings - Fork 170
/
Copy pathexec.go
135 lines (113 loc) · 4.06 KB
/
exec.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
package cmd
import (
"errors"
"fmt"
"log/slog"
"os"
"strings"
analytics "github.com/segmentio/analytics-go/v3"
"github.com/segmentio/chamber/v3/environ"
"github.com/spf13/cobra"
)
// When true, only use variables retrieved from the backend, do not inherit existing environment variables
var pristine bool
// When true, enable strict mode, which checks that all secrets replace env vars with a special sentinel value
var strict bool
// Value to expect in strict mode
var strictValue string
// Default value to expect in strict mode
const strictValueDefault = "chamberme"
// execCmd represents the exec command
var execCmd = &cobra.Command{
Use: "exec <service...> -- <command> [<arg...>]",
Short: "Executes a command with secrets loaded into the environment",
Args: func(cmd *cobra.Command, args []string) error {
dashIx := cmd.ArgsLenAtDash()
if dashIx == -1 {
return errors.New("please separate services and command with '--'. See usage")
}
if err := cobra.MinimumNArgs(1)(cmd, args[:dashIx]); err != nil {
return fmt.Errorf("at least one service must be specified: %w", err)
}
if err := cobra.MinimumNArgs(1)(cmd, args[dashIx:]); err != nil {
return fmt.Errorf("must specify command to run. See usage: %w", err)
}
return nil
},
RunE: execRun,
Example: `
Given a secret store like this:
$ echo '{"db_username": "root", "db_password": "hunter22"}' | chamber import -
--strict will fail with unfilled env vars
$ HOME=/tmp DB_USERNAME=chamberme DB_PASSWORD=chamberme EXTRA=chamberme chamber exec --strict service exec -- env
chamber: extra unfilled env var EXTRA
exit 1
--pristine takes effect after checking for --strict values
$ HOME=/tmp DB_USERNAME=chamberme DB_PASSWORD=chamberme chamber exec --strict --pristine service exec -- env
DB_USERNAME=root
DB_PASSWORD=hunter22
`,
}
func init() {
execCmd.Flags().BoolVar(&pristine, "pristine", false, "only use variables retrieved from the backend; do not inherit existing environment variables")
execCmd.Flags().BoolVar(&strict, "strict", false, `enable strict mode:
only inject secrets for which there is a corresponding env var with value
<strict-value>, and fail if there are any env vars with that value missing
from secrets`)
execCmd.Flags().StringVar(&strictValue, "strict-value", strictValueDefault, "value to expect in --strict mode")
RootCmd.AddCommand(execCmd)
}
func execRun(cmd *cobra.Command, args []string) error {
dashIx := cmd.ArgsLenAtDash()
services, command, commandArgs := args[:dashIx], args[dashIx], args[dashIx+1:]
if analyticsEnabled && analyticsClient != nil {
_ = analyticsClient.Enqueue(analytics.Track{
UserId: username,
Event: "Ran Command",
Properties: analytics.NewProperties().
Set("command", "exec").
Set("chamber-version", chamberVersion).
Set("services", services).
Set("backend", backend),
})
}
for _, service := range services {
if err := validateServiceWithLabel(service); err != nil {
return fmt.Errorf("Failed to validate service: %w", err)
}
}
secretStore, err := getSecretStore(cmd.Context())
if err != nil {
return fmt.Errorf("Failed to get secret store: %w", err)
}
if pristine {
slog.Debug("chamber: pristine mode engaged")
}
var env environ.Environ
if strict {
slog.Debug("chamber: strict mode engaged")
var err error
env = environ.Environ(os.Environ())
err = env.LoadStrict(cmd.Context(), secretStore, strictValue, pristine, services...)
if err != nil {
return err
}
} else {
if !pristine {
env = environ.Environ(os.Environ())
}
for _, service := range services {
collisions := make([]string, 0)
// TODO: these interfaces should look the same as Strict*, so move pristine in there
err := env.Load(cmd.Context(), secretStore, service, &collisions)
if err != nil {
return fmt.Errorf("Failed to list store contents: %w", err)
}
for _, c := range collisions {
fmt.Fprintf(os.Stderr, "warning: service %s overwriting environment variable %s\n", service, c)
}
}
}
slog.Debug(fmt.Sprintf("info: With environment %s\n", strings.Join(env, ",")))
return exec(command, commandArgs, env)
}