-
Notifications
You must be signed in to change notification settings - Fork 6
Expand file tree
/
Copy pathbeokay.py
More file actions
executable file
·266 lines (221 loc) · 10.7 KB
/
beokay.py
File metadata and controls
executable file
·266 lines (221 loc) · 10.7 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
#!/usr/bin/env python3
"""
It'll all beokay.
Manage Kayobe configuration environments.
"""
import argparse
try:
from argparse import BooleanOptionalAction
except ImportError:
# Introduced in Python 3.9.
BooleanOptionalAction = "store_true"
import os
import os.path
import shlex
import shutil
import subprocess
import sys
def parse_args():
description = "Manage Kayobe deployment environments"
parser = argparse.ArgumentParser(description=description)
subparsers = parser.add_subparsers(help="Actions", dest="action")
create_parser = subparsers.add_parser("create",
help="Create a Kayobe environment")
create_parser.add_argument("--base-path", default=os.getcwd(),
help="Path to base of Kayobe environment")
create_parser.add_argument("--git-ssh-key", default=None,
help="Path to an SSH key to use for Git pulls")
create_parser.add_argument("--kayobe-in-requirements", default=False,
action=BooleanOptionalAction,
help="Install Kayobe using requirements.txt in "
"kayobe configuration")
create_parser.add_argument("--no-bootstrap", action='store_true',
help="Don't run kayobe control host bootstrap")
create_parser.add_argument("--kayobe-repo",
default="https://github.com/openstack/kayobe",
help="Kayobe repository")
create_parser.add_argument("--kayobe-branch", default="master",
help="Kayobe branch")
create_parser.add_argument("--kayobe-config-repo", required=True,
help="Kayobe configuration repository")
create_parser.add_argument("--kayobe-config-branch", default="master",
help="Kayobe configuration branch")
create_parser.add_argument("--kayobe-config-env", default="kayobe-env",
help="Kayobe configuration environment file to "
"source")
create_parser.add_argument("--kayobe-config-env-name", default=None,
help="Kayobe configuration environment name to "
"use")
create_parser.add_argument("--python", default="python3", help="Python "
"executable to use to create the Kayobe "
"virtual environment")
create_vault_password_group = create_parser.add_mutually_exclusive_group()
create_vault_password_group.add_argument("--vault-password-file",
help="Path to an Ansible Vault "
"password file used to "
"encrypt secrets")
create_vault_password_group.add_argument("--vault-password-script",
help="Path to a script that "
"prints the Ansible Vault "
"password to stdout")
destroy_parser = subparsers.add_parser("destroy",
help="Destroy a Kayobe environment")
destroy_parser.add_argument("--base-path", default=os.getcwd(),
help="Path to base of Kayobe environment")
run_parser = subparsers.add_parser("run",
help="Run a Kayobe command")
run_parser.add_argument("command", nargs="+")
run_parser.add_argument("--base-path", default=os.getcwd(),
help="Path to base of Kayobe environment")
run_parser.add_argument("--kayobe-config-env", default="kayobe-env",
help="Kayobe configuration environment file to "
"source")
run_parser.add_argument("--kayobe-config-env-name", default=None,
help="Kayobe configuration environment name to "
"use")
run_vault_password_group = run_parser.add_mutually_exclusive_group()
run_vault_password_group.add_argument("--vault-password-file",
help="Path to an Ansible Vault "
"password file used to encrypt "
"secrets")
run_vault_password_group.add_argument("--vault-password-script",
help="Path to a script that "
"prints the Ansible Vault "
"password to stdout")
parsed_args = parser.parse_args()
if parsed_args.action == None:
parser.print_help()
sys.exit(1)
return parsed_args
def get_path(parsed_args, *args):
"""Return an absolute path, given a path relative to the base."""
base_path = os.path.abspath(parsed_args.base_path)
return os.path.join(base_path, *args)
def get_env_name(parsed_args):
"""Return the kayobe environment to use, if specified"""
return (f" --environment {parsed_args.kayobe_config_env_name}"
if parsed_args.kayobe_config_env_name else "")
def ensure_paths(parsed_args):
mode = 0o700
base_path = get_path(parsed_args)
if os.path.exists(base_path):
overwrite = input(f"'{base_path}' already exists. Do you want to overwrite it? [Y/N]: ")
if overwrite.lower() not in ['y', 'yes']:
print("Exiting due to existing directory.")
sys.exit(0)
shutil.rmtree(base_path)
os.makedirs(base_path, mode)
paths = {"src", "venvs"}
for path in paths:
path = get_path(parsed_args, path)
if not os.path.exists(path):
os.mkdir(path, mode)
def set_vault_password(parsed_args):
if parsed_args.vault_password_file:
with open(parsed_args.vault_password_file) as f:
os.environ["KAYOBE_VAULT_PASSWORD"] = f.read()
elif parsed_args.vault_password_script:
output = subprocess.check_output(parsed_args.vault_password_script,
shell=True, text=True)
os.environ["KAYOBE_VAULT_PASSWORD"] = output
def git_clone(repo, branch, path, ssh_key):
if ssh_key:
os.environ["GIT_SSH_COMMAND"] = f"ssh -i {ssh_key}"
subprocess.check_call(["git", "clone", repo, path, "--branch", branch])
def clone_kayobe_config(parsed_args):
path = get_path(parsed_args, "src", "kayobe-config")
git_clone(parsed_args.kayobe_config_repo, parsed_args.kayobe_config_branch,
path, parsed_args.git_ssh_key)
def clone_kayobe(parsed_args):
path = get_path(parsed_args, "src", "kayobe")
git_clone(parsed_args.kayobe_repo, parsed_args.kayobe_branch, path, parsed_args.git_ssh_key)
def create_venv(parsed_args):
python = parsed_args.python
venv_path = get_path(parsed_args, "venvs", "kayobe")
subprocess.check_call([python, "-m", "venv", venv_path, "--prompt", r"kayobe in ${KAYOBE_ENVIRONMENT:-base}"])
pip_path = os.path.join(venv_path, "bin", "pip")
subprocess.check_call([pip_path, "install", "--upgrade", "pip"])
subprocess.check_call([pip_path, "install", "--upgrade", "setuptools"])
if parsed_args.kayobe_in_requirements:
requirements_path = get_path(parsed_args, "src", "kayobe-config",
"requirements.txt")
subprocess.check_call([pip_path, "install", "-r", requirements_path])
else:
kayobe_path = get_path(parsed_args, "src", "kayobe")
subprocess.check_call([pip_path, "install", kayobe_path])
def activate_venv_cmd(parsed_args):
activate_path = get_path(parsed_args, "venvs", "kayobe", "bin", "activate")
return ["source", activate_path]
def run_kayobe(parsed_args, kayobe_cmd):
cmd = activate_venv_cmd(parsed_args)
env_name = get_env_name(parsed_args)
kayobe_config_path = get_path(parsed_args, "src", "kayobe-config")
if os.path.exists(kayobe_config_path):
env_path = os.path.join(kayobe_config_path,
parsed_args.kayobe_config_env)
cmd += ["&&", "source", f"{env_path}{env_name}"]
cmd += ["&&"]
cmd += kayobe_cmd
subprocess.check_call(" ".join(cmd), shell=True, cwd=kayobe_config_path,
executable="/bin/bash")
def control_host_bootstrap(parsed_args):
cmd = ["kayobe", "control", "host", "bootstrap"]
run_kayobe(parsed_args, cmd)
def create_env_vars_script(parsed_args):
"""Creates an env-vars script for the kayobe environment."""
env_vars_file = os.path.join(get_path(parsed_args), 'env-vars.sh')
env_name = get_env_name(parsed_args)
vault_password = ""
if parsed_args.vault_password_file:
vault_password = ("export KAYOBE_VAULT_PASSWORD=$(cat "
f"{shlex.quote(parsed_args.vault_password_file)})")
elif parsed_args.vault_password_script:
vault_password = ("export KAYOBE_VAULT_PASSWORD=$("
f"{shlex.quote(parsed_args.vault_password_script)})")
lines = [
"#!/bin/bash",
]
if vault_password:
lines.append(vault_password)
lines.extend([
f"source {get_path(parsed_args, 'venvs', 'kayobe', 'bin', 'activate')}",
f"source {get_path(parsed_args, 'src', 'kayobe-config', 'kayobe-env')}{env_name}",
"source <(kayobe complete)",
f"cd {get_path(parsed_args, 'src', 'kayobe-config', 'etc', 'kayobe/')}",
])
content = "\n".join(lines) + "\n"
# Write the script
with open(env_vars_file, "w", encoding="utf-8") as f:
f.write(content)
# Make the env-vars script executable
os.chmod(env_vars_file, 0o755)
print(f"env-vars script created at {env_vars_file}")
def create(parsed_args):
ensure_paths(parsed_args)
clone_kayobe_config(parsed_args)
if not parsed_args.kayobe_in_requirements:
clone_kayobe(parsed_args)
create_venv(parsed_args)
set_vault_password(parsed_args)
create_env_vars_script(parsed_args)
if not parsed_args.no_bootstrap:
control_host_bootstrap(parsed_args)
def destroy(parsed_args):
base_path = get_path(parsed_args)
if os.path.exists(base_path):
shutil.rmtree(base_path)
def run(parsed_args):
set_vault_password(parsed_args)
run_kayobe(parsed_args, parsed_args.command)
def main():
parsed_args = parse_args()
if parsed_args.action == "create":
create(parsed_args)
elif parsed_args.action == "destroy":
destroy(parsed_args)
elif parsed_args.action == "run":
run(parsed_args)
else:
raise Exception("Unknown command")
if __name__ == "__main__":
main()