Gitiles
Code Review Sign In
code.v1.dodo.cloud / pcloud / 9ca4926565efe3be10af21a99f5e0272b4df511b / . / core / installer / welcome / dodo_app.go
blob: 75d12b9648c24231eed81cffc2de4598f2b5c2bc [file] [log] [blame]
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]1package welcome
2
3import (
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]4 "context"
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]5 "encoding/json"
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]6 "errors"
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]7 "fmt"
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]8 "golang.org/x/crypto/bcrypt"
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]9 "io"
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]10 "io/fs"
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]11 "net/http"
12 "strings"
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]13 "sync"
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]14
15 "github.com/giolekva/pcloud/core/installer"
16 "github.com/giolekva/pcloud/core/installer/soft"
gio33059762024-07-05 13:19:07 +0400[diff] [blame]17
18 "github.com/gorilla/mux"
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]19 "github.com/gorilla/securecookie"
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]20)
21
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]22const (
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]23 ConfigRepoName = "config"
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]24 namespacesFile = "/namespaces.json"
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]25 loginPath = "/login"
26 logoutPath = "/logout"
27 sessionCookie = "dodo-app-session"
28 userCtx = "user"
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]29)
30
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]31type DodoAppServer struct {
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]32 l sync.Locker
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]33 st Store
gio33059762024-07-05 13:19:07 +0400[diff] [blame]34 port int
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]35 apiPort int
gio33059762024-07-05 13:19:07 +0400[diff] [blame]36 self string
37 sshKey string
38 gitRepoPublicKey string
39 client soft.Client
40 namespace string
41 env installer.EnvConfig
42 nsc installer.NamespaceCreator
43 jc installer.JobCreator
44 workers map[string]map[string]struct{}
45 appNs map[string]string
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]46 sc *securecookie.SecureCookie
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]47}
48
gio33059762024-07-05 13:19:07 +0400[diff] [blame]49// TODO(gio): Initialize appNs on startup
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]50func NewDodoAppServer(
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]51 st Store,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]52 port int,
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]53 apiPort int,
gio33059762024-07-05 13:19:07 +0400[diff] [blame]54 self string,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]55 sshKey string,
gio33059762024-07-05 13:19:07 +0400[diff] [blame]56 gitRepoPublicKey string,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]57 client soft.Client,
58 namespace string,
gio33059762024-07-05 13:19:07 +0400[diff] [blame]59 nsc installer.NamespaceCreator,
giof8843412024-05-22 16:38:05 +0400[diff] [blame]60 jc installer.JobCreator,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]61 env installer.EnvConfig,
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]62) (*DodoAppServer, error) {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]63 sc := securecookie.New(
64 securecookie.GenerateRandomKey(64),
65 securecookie.GenerateRandomKey(32),
66 )
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]67 s := &DodoAppServer{
68 &sync.Mutex{},
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]69 st,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]70 port,
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]71 apiPort,
gio33059762024-07-05 13:19:07 +0400[diff] [blame]72 self,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]73 sshKey,
gio33059762024-07-05 13:19:07 +0400[diff] [blame]74 gitRepoPublicKey,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]75 client,
76 namespace,
77 env,
gio33059762024-07-05 13:19:07 +0400[diff] [blame]78 nsc,
giof8843412024-05-22 16:38:05 +0400[diff] [blame]79 jc,
gio266c04f2024-07-03 14:18:45 +0400[diff] [blame]80 map[string]map[string]struct{}{},
gio33059762024-07-05 13:19:07 +0400[diff] [blame]81 map[string]string{},
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]82 sc,
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]83 }
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]84 config, err := client.GetRepo(ConfigRepoName)
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]85 if err != nil {
86 return nil, err
87 }
88 r, err := config.Reader(namespacesFile)
89 if err == nil {
90 defer r.Close()
91 if err := json.NewDecoder(r).Decode(&s.appNs); err != nil {
92 return nil, err
93 }
94 } else if !errors.Is(err, fs.ErrNotExist) {
95 return nil, err
96 }
97 return s, nil
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]98}
99
100func (s *DodoAppServer) Start() error {
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]101 e := make(chan error)
102 go func() {
103 r := mux.NewRouter()
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]104 r.Use(s.mwAuth)
105 r.HandleFunc(logoutPath, s.handleLogout).Methods(http.MethodGet)
106 r.HandleFunc("/{app-name}"+loginPath, s.handleLoginForm).Methods(http.MethodGet)
107 r.HandleFunc("/{app-name}"+loginPath, s.handleLogin).Methods(http.MethodPost)
108 r.HandleFunc("/{app-name}", s.handleAppStatus).Methods(http.MethodGet)
109 r.HandleFunc("/", s.handleStatus).Methods(http.MethodGet)
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]110 e <- http.ListenAndServe(fmt.Sprintf(":%d", s.port), r)
111 }()
112 go func() {
113 r := mux.NewRouter()
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]114 r.HandleFunc("/update", s.handleApiUpdate)
115 r.HandleFunc("/api/apps/{app-name}/workers", s.handleApiRegisterWorker).Methods(http.MethodPost)
116 r.HandleFunc("/api/apps", s.handleApiCreateApp).Methods(http.MethodPost)
117 r.HandleFunc("/api/add-admin-key", s.handleApiAddAdminKey).Methods(http.MethodPost)
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]118 e <- http.ListenAndServe(fmt.Sprintf(":%d", s.apiPort), r)
119 }()
120 return <-e
121}
122
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]123func (s *DodoAppServer) mwAuth(next http.Handler) http.Handler {
124 return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
125 if strings.HasSuffix(r.URL.Path, loginPath) || strings.HasPrefix(r.URL.Path, logoutPath) {
126 next.ServeHTTP(w, r)
127 return
128 }
129 cookie, err := r.Cookie(sessionCookie)
130 if err != nil {
131 vars := mux.Vars(r)
132 appName, ok := vars["app-name"]
133 if !ok || appName == "" {
134 http.Error(w, "missing app-name", http.StatusBadRequest)
135 return
136 }
137 http.Redirect(w, r, fmt.Sprintf("/%s%s", appName, loginPath), http.StatusSeeOther)
138 return
139 }
140 var user string
141 if err := s.sc.Decode(sessionCookie, cookie.Value, &user); err != nil {
142 http.Error(w, "unauthorized", http.StatusUnauthorized)
143 return
144 }
145 next.ServeHTTP(w, r.WithContext(context.WithValue(r.Context(), userCtx, user)))
146 })
147}
148
149func (s *DodoAppServer) handleLogout(w http.ResponseWriter, r *http.Request) {
150 http.SetCookie(w, &http.Cookie{
151 Name: sessionCookie,
152 Value: "",
153 Path: "/",
154 HttpOnly: true,
155 Secure: true,
156 })
157 http.Redirect(w, r, "/", http.StatusSeeOther)
158}
159
160func (s *DodoAppServer) handleLoginForm(w http.ResponseWriter, r *http.Request) {
161 vars := mux.Vars(r)
162 appName, ok := vars["app-name"]
163 if !ok || appName == "" {
164 http.Error(w, "missing app-name", http.StatusBadRequest)
165 return
166 }
167 fmt.Fprint(w, `
168<!DOCTYPE html>
169<html lang='en'>
170 <head>
171 <title>dodo: app - login</title>
172 <meta charset='utf-8'>
173 </head>
174 <body>
175 <form action="" method="POST">
176 <input type="password" placeholder="Password" name="password" required />
177 <button type="submit">Login</button>
178 </form>
179 </body>
180</html>
181`)
182}
183
184func (s *DodoAppServer) handleLogin(w http.ResponseWriter, r *http.Request) {
185 vars := mux.Vars(r)
186 appName, ok := vars["app-name"]
187 if !ok || appName == "" {
188 http.Error(w, "missing app-name", http.StatusBadRequest)
189 return
190 }
191 password := r.FormValue("password")
192 if password == "" {
193 http.Error(w, "missing password", http.StatusBadRequest)
194 return
195 }
196 user, err := s.st.GetAppOwner(appName)
197 if err != nil {
198 http.Error(w, err.Error(), http.StatusInternalServerError)
199 return
200 }
201 hashed, err := s.st.GetUserPassword(user)
202 if err != nil {
203 http.Error(w, err.Error(), http.StatusInternalServerError)
204 return
205 }
206 if err := bcrypt.CompareHashAndPassword(hashed, []byte(password)); err != nil {
207 http.Redirect(w, r, r.URL.Path, http.StatusSeeOther)
208 return
209 }
210 if encoded, err := s.sc.Encode(sessionCookie, user); err == nil {
211 cookie := &http.Cookie{
212 Name: sessionCookie,
213 Value: encoded,
214 Path: "/",
215 Secure: true,
216 HttpOnly: true,
217 }
218 http.SetCookie(w, cookie)
219 }
220 http.Redirect(w, r, fmt.Sprintf("/%s", appName), http.StatusSeeOther)
221}
222
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]223func (s *DodoAppServer) handleStatus(w http.ResponseWriter, r *http.Request) {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]224 user := r.Context().Value(userCtx)
225 if user == nil {
226 http.Error(w, "unauthorized", http.StatusUnauthorized)
227 return
228 }
229 apps, err := s.st.GetUserApps(user.(string))
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]230 if err != nil {
231 http.Error(w, err.Error(), http.StatusInternalServerError)
232 return
233 }
234 for _, a := range apps {
235 fmt.Fprintf(w, "%s\n", a)
236 }
237}
238
239func (s *DodoAppServer) handleAppStatus(w http.ResponseWriter, r *http.Request) {
240 vars := mux.Vars(r)
241 appName, ok := vars["app-name"]
242 if !ok || appName == "" {
243 http.Error(w, "missing app-name", http.StatusBadRequest)
244 return
245 }
246 commits, err := s.st.GetCommitHistory(appName)
247 if err != nil {
248 http.Error(w, err.Error(), http.StatusInternalServerError)
249 return
250 }
251 for _, c := range commits {
252 fmt.Fprintf(w, "%s %s\n", c.Hash, c.Message)
253 }
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]254}
255
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]256type apiUpdateReq struct {
gio266c04f2024-07-03 14:18:45 +0400[diff] [blame]257 Ref string `json:"ref"`
258 Repository struct {
259 Name string `json:"name"`
260 } `json:"repository"`
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]261 After string `json:"after"`
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]262}
263
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]264func (s *DodoAppServer) handleApiUpdate(w http.ResponseWriter, r *http.Request) {
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]265 fmt.Println("update")
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]266 var req apiUpdateReq
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]267 var contents strings.Builder
268 io.Copy(&contents, r.Body)
269 c := contents.String()
270 fmt.Println(c)
271 if err := json.NewDecoder(strings.NewReader(c)).Decode(&req); err != nil {
272 fmt.Println(err)
273 return
274 }
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]275 if req.Ref != "refs/heads/master" || req.Repository.Name == ConfigRepoName {
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]276 return
277 }
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]278 // TODO(gio): Create commit record on app init as well
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]279 go func() {
gio33059762024-07-05 13:19:07 +0400[diff] [blame]280 if err := s.updateDodoApp(req.Repository.Name, s.appNs[req.Repository.Name]); err != nil {
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]281 if err := s.st.CreateCommit(req.Repository.Name, req.After, err.Error()); err != nil {
282 fmt.Printf("Error: %s\n", err.Error())
283 return
284 }
285 }
286 if err := s.st.CreateCommit(req.Repository.Name, req.After, "OK"); err != nil {
287 fmt.Printf("Error: %s\n", err.Error())
288 }
289 for addr, _ := range s.workers[req.Repository.Name] {
290 go func() {
291 // TODO(gio): make port configurable
292 http.Get(fmt.Sprintf("http://%s/update", addr))
293 }()
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]294 }
295 }()
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]296}
297
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]298type apiRegisterWorkerReq struct {
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]299 Address string `json:"address"`
300}
301
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]302func (s *DodoAppServer) handleApiRegisterWorker(w http.ResponseWriter, r *http.Request) {
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]303 vars := mux.Vars(r)
304 appName, ok := vars["app-name"]
305 if !ok || appName == "" {
306 http.Error(w, "missing app-name", http.StatusBadRequest)
307 return
308 }
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]309 var req apiRegisterWorkerReq
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]310 if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
311 http.Error(w, err.Error(), http.StatusInternalServerError)
312 return
313 }
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]314 if _, ok := s.workers[appName]; !ok {
315 s.workers[appName] = map[string]struct{}{}
gio266c04f2024-07-03 14:18:45 +0400[diff] [blame]316 }
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]317 s.workers[appName][req.Address] = struct{}{}
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]318}
319
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]320type apiCreateAppReq struct {
gio33059762024-07-05 13:19:07 +0400[diff] [blame]321 AdminPublicKey string `json:"adminPublicKey"`
322}
323
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]324type apiCreateAppResp struct {
325 AppName string `json:"appName"`
326 Password string `json:"password"`
gio33059762024-07-05 13:19:07 +0400[diff] [blame]327}
328
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]329func (s *DodoAppServer) handleApiCreateApp(w http.ResponseWriter, r *http.Request) {
330 var req apiCreateAppReq
gio33059762024-07-05 13:19:07 +0400[diff] [blame]331 if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
332 http.Error(w, err.Error(), http.StatusBadRequest)
333 return
334 }
335 g := installer.NewFixedLengthRandomNameGenerator(3)
336 appName, err := g.Generate()
337 if err != nil {
338 http.Error(w, err.Error(), http.StatusInternalServerError)
339 return
340 }
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]341 password, err := s.CreateApp(appName, req.AdminPublicKey)
342 if err != nil {
gio33059762024-07-05 13:19:07 +0400[diff] [blame]343 http.Error(w, err.Error(), http.StatusInternalServerError)
344 return
345 }
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]346 resp := apiCreateAppResp{
347 AppName: appName,
348 Password: password,
349 }
gio33059762024-07-05 13:19:07 +0400[diff] [blame]350 if err := json.NewEncoder(w).Encode(resp); err != nil {
351 http.Error(w, err.Error(), http.StatusInternalServerError)
352 return
353 }
354}
355
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]356func (s *DodoAppServer) CreateApp(appName, adminPublicKey string) (string, error) {
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]357 s.l.Lock()
358 defer s.l.Unlock()
gio33059762024-07-05 13:19:07 +0400[diff] [blame]359 fmt.Printf("Creating app: %s\n", appName)
360 if ok, err := s.client.RepoExists(appName); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]361 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]362 } else if ok {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]363 return "", nil
gio33059762024-07-05 13:19:07 +0400[diff] [blame]364 }
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]365 user, err := s.client.FindUser(adminPublicKey)
366 if err != nil {
367 return "", err
368 }
369 if user != "" {
370 if err := s.client.AddPublicKey(user, adminPublicKey); err != nil {
371 return "", err
372 }
373 } else {
374 user = appName
375 if err := s.client.AddUser(user, adminPublicKey); err != nil {
376 return "", err
377 }
378 }
379 password := generatePassword()
380 // TODO(gio): take admin password for initial application as input
381 if appName == "app" {
382 password = "app"
383 }
384 hashed, err := bcrypt.GenerateFromPassword([]byte(password), bcrypt.DefaultCost)
385 if err != nil {
386 return "", err
387 }
388 if err := s.st.CreateUser(user, hashed); err != nil {
389 if !errors.Is(err, ErrorAlreadyExists) {
390 return "", err
391 } else {
392 password = ""
393 }
394 }
395 if err := s.st.CreateApp(appName, user); err != nil {
396 return "", err
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]397 }
gio33059762024-07-05 13:19:07 +0400[diff] [blame]398 if err := s.client.AddRepository(appName); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]399 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]400 }
401 appRepo, err := s.client.GetRepo(appName)
402 if err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]403 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]404 }
405 if err := InitRepo(appRepo); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]406 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]407 }
408 apps := installer.NewInMemoryAppRepository(installer.CreateAllApps())
409 app, err := installer.FindEnvApp(apps, "dodo-app-instance")
410 if err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]411 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]412 }
413 suffixGen := installer.NewFixedLengthRandomSuffixGenerator(3)
414 suffix, err := suffixGen.Generate()
415 if err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]416 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]417 }
418 namespace := fmt.Sprintf("%s%s%s", s.env.NamespacePrefix, app.Namespace(), suffix)
419 s.appNs[appName] = namespace
420 if err := s.updateDodoApp(appName, namespace); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]421 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]422 }
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]423 repo, err := s.client.GetRepo(ConfigRepoName)
gio33059762024-07-05 13:19:07 +0400[diff] [blame]424 if err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]425 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]426 }
427 hf := installer.NewGitHelmFetcher()
428 m, err := installer.NewAppManager(repo, s.nsc, s.jc, hf, "/")
429 if err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]430 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]431 }
gio9d66f322024-07-06 13:45:10 +0400[diff] [blame]432 if err := repo.Do(func(fs soft.RepoFS) (string, error) {
433 w, err := fs.Writer(namespacesFile)
434 if err != nil {
435 return "", err
436 }
437 defer w.Close()
438 if err := json.NewEncoder(w).Encode(s.appNs); err != nil {
439 return "", err
440 }
441 if _, err := m.Install(
442 app,
443 appName,
444 "/"+appName,
445 namespace,
446 map[string]any{
447 "repoAddr": s.client.GetRepoAddress(appName),
448 "repoHost": strings.Split(s.client.Address(), ":")[0],
449 "gitRepoPublicKey": s.gitRepoPublicKey,
450 },
451 installer.WithConfig(&s.env),
452 installer.WithNoPublish(),
453 installer.WithNoLock(),
454 ); err != nil {
455 return "", err
456 }
457 return fmt.Sprintf("Installed app: %s", appName), nil
458 }); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]459 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]460 }
461 cfg, err := m.FindInstance(appName)
462 if err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]463 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]464 }
465 fluxKeys, ok := cfg.Input["fluxKeys"]
466 if !ok {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]467 return "", fmt.Errorf("Fluxcd keys not found")
gio33059762024-07-05 13:19:07 +0400[diff] [blame]468 }
469 fluxPublicKey, ok := fluxKeys.(map[string]any)["public"]
470 if !ok {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]471 return "", fmt.Errorf("Fluxcd keys not found")
gio33059762024-07-05 13:19:07 +0400[diff] [blame]472 }
473 if ok, err := s.client.UserExists("fluxcd"); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]474 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]475 } else if ok {
476 if err := s.client.AddPublicKey("fluxcd", fluxPublicKey.(string)); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]477 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]478 }
479 } else {
480 if err := s.client.AddUser("fluxcd", fluxPublicKey.(string)); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]481 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]482 }
483 }
484 if err := s.client.AddReadOnlyCollaborator(appName, "fluxcd"); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]485 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]486 }
487 if err := s.client.AddWebhook(appName, fmt.Sprintf("http://%s/update", s.self), "--active=true", "--events=push", "--content-type=json"); err != nil {
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]488 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]489 }
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]490 if err := s.client.AddReadWriteCollaborator(appName, user); err != nil {
491 return "", err
gio33059762024-07-05 13:19:07 +0400[diff] [blame]492 }
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]493 return password, nil
gio33059762024-07-05 13:19:07 +0400[diff] [blame]494}
495
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]496type apiAddAdminKeyReq struct {
gio70be3e52024-06-26 18:27:19 +0400[diff] [blame]497 Public string `json:"public"`
498}
499
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]500func (s *DodoAppServer) handleApiAddAdminKey(w http.ResponseWriter, r *http.Request) {
501 var req apiAddAdminKeyReq
gio70be3e52024-06-26 18:27:19 +0400[diff] [blame]502 if err := json.NewDecoder(r.Body).Decode(&req); err != nil {
503 http.Error(w, err.Error(), http.StatusBadRequest)
504 return
505 }
506 if err := s.client.AddPublicKey("admin", req.Public); err != nil {
507 http.Error(w, err.Error(), http.StatusInternalServerError)
508 return
509 }
510}
511
gio33059762024-07-05 13:19:07 +0400[diff] [blame]512func (s *DodoAppServer) updateDodoApp(name, namespace string) error {
513 repo, err := s.client.GetRepo(name)
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]514 if err != nil {
515 return err
516 }
giof8843412024-05-22 16:38:05 +0400[diff] [blame]517 hf := installer.NewGitHelmFetcher()
gio33059762024-07-05 13:19:07 +0400[diff] [blame]518 m, err := installer.NewAppManager(repo, s.nsc, s.jc, hf, "/.dodo")
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]519 if err != nil {
520 return err
521 }
522 appCfg, err := soft.ReadFile(repo, "app.cue")
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]523 if err != nil {
524 return err
525 }
526 app, err := installer.NewDodoApp(appCfg)
527 if err != nil {
528 return err
529 }
giof8843412024-05-22 16:38:05 +0400[diff] [blame]530 lg := installer.GitRepositoryLocalChartGenerator{"app", namespace}
giof71a0832024-06-27 14:45:45 +0400[diff] [blame]531 if _, err := m.Install(
532 app,
533 "app",
534 "/.dodo/app",
535 namespace,
536 map[string]any{
gioa60f0de2024-07-08 10:49:48 +0400[diff] [blame]537 "repoAddr": repo.FullAddress(),
538 "managerAddr": fmt.Sprintf("http://%s", s.self),
539 "appId": name,
540 "sshPrivateKey": s.sshKey,
giof71a0832024-06-27 14:45:45 +0400[diff] [blame]541 },
gio33059762024-07-05 13:19:07 +0400[diff] [blame]542 installer.WithConfig(&s.env),
giof71a0832024-06-27 14:45:45 +0400[diff] [blame]543 installer.WithLocalChartGenerator(lg),
544 installer.WithBranch("dodo"),
545 installer.WithForce(),
546 ); err != nil {
gio0eaf2712024-04-14 13:08:46 +0400[diff] [blame]547 return err
548 }
549 return nil
550}
gio33059762024-07-05 13:19:07 +0400[diff] [blame]551
552const goMod = `module dodo.app
553
554go 1.18
555`
556
557const mainGo = `package main
558
559import (
560 "flag"
561 "fmt"
562 "log"
563 "net/http"
564)
565
566var port = flag.Int("port", 8080, "Port to listen on")
567
568func handler(w http.ResponseWriter, r *http.Request) {
569 fmt.Fprintln(w, "Hello from Dodo App!")
570}
571
572func main() {
573 flag.Parse()
574 http.HandleFunc("/", handler)
575 log.Fatal(http.ListenAndServe(fmt.Sprintf(":%d", *port), nil))
576}
577`
578
579const appCue = `app: {
580 type: "golang:1.22.0"
581 run: "main.go"
582 ingress: {
583 network: "Private" // or Public
584 subdomain: "testapp"
585 auth: enabled: false
586 }
587}
588`
589
590func InitRepo(repo soft.RepoIO) error {
591 return repo.Do(func(fs soft.RepoFS) (string, error) {
592 {
593 w, err := fs.Writer("go.mod")
594 if err != nil {
595 return "", err
596 }
597 defer w.Close()
598 fmt.Fprint(w, goMod)
599 }
600 {
601 w, err := fs.Writer("main.go")
602 if err != nil {
603 return "", err
604 }
605 defer w.Close()
606 fmt.Fprintf(w, "%s", mainGo)
607 }
608 {
609 w, err := fs.Writer("app.cue")
610 if err != nil {
611 return "", err
612 }
613 defer w.Close()
614 fmt.Fprint(w, appCue)
615 }
616 return "go web app template", nil
617 })
618}
gio81246f02024-07-10 12:02:15 +0400[diff] [blame]619
620func generatePassword() string {
621 return "foo"
622}