You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
147 lines
5.4 KiB
Clojure
147 lines
5.4 KiB
Clojure
(ns dda.c4k-website.core
|
|
(:require
|
|
[clojure.spec.alpha :as s]
|
|
#?(:clj [orchestra.core :refer [defn-spec]]
|
|
:cljs [orchestra.core :refer-macros [defn-spec]])
|
|
[dda.c4k-common.yaml :as yaml]
|
|
[dda.c4k-common.common :as cm]
|
|
[dda.c4k-common.predicate :as cp]
|
|
[dda.c4k-common.monitoring :as mon]
|
|
[dda.c4k-common.namespace :as ns]
|
|
[dda.c4k-common.ingress :as ing]
|
|
[dda.c4k-website.website :as web]))
|
|
|
|
(s/def ::mon-cfg ::mon/mon-cfg)
|
|
(s/def ::mon-auth ::mon/mon-auth)
|
|
(s/def ::unique-name ::web/unique-name)
|
|
(s/def ::issuer ::web/issuer)
|
|
(s/def ::volume-size ::web/volume-size)
|
|
(s/def ::authtoken ::web/authtoken)
|
|
(s/def ::fqdns ::web/fqdns)
|
|
(s/def ::forgejo-host ::web/forgejo-host)
|
|
(s/def ::repo-user ::web/repo-user)
|
|
(s/def ::forgejo-repo ::web/forgejo-repo)
|
|
(s/def ::branchname ::web/branchname)
|
|
(s/def ::build-cpu-request ::web/build-cpu-request)
|
|
(s/def ::build-memory-request ::web/build-memory-request)
|
|
(s/def ::build-cpu-limit ::web/build-cpu-limit)
|
|
(s/def ::build-memory-limit ::web/build-memory-limit)
|
|
(s/def ::redirect ::web/redirect)
|
|
(s/def ::redirects ::web/redirects)
|
|
|
|
(def websiteconfig? (s/keys :req-un [::unique-name
|
|
::fqdns
|
|
::forgejo-host
|
|
::repo-user
|
|
::forgejo-repo
|
|
::branchname]
|
|
:opt-un [::issuer
|
|
::volume-size
|
|
::build-cpu-request
|
|
::build-cpu-limit
|
|
::build-memory-request
|
|
::build-memory-limit
|
|
::redirects]))
|
|
(def websiteauth? (s/keys :req-un [::unique-name ::authtoken]))
|
|
(s/def ::websiteconfigs (s/coll-of websiteconfig?))
|
|
(s/def ::websiteauths (s/coll-of websiteauth?))
|
|
|
|
(def config? (s/keys :req-un [::websiteconfigs]
|
|
:opt-un [::issuer
|
|
::volume-size
|
|
::mon-cfg]))
|
|
|
|
(def auth? (s/keys :req-un [::websiteauths]
|
|
:opt-un [::mon-auth]))
|
|
|
|
(def config-defaults {:issuer "staging"})
|
|
|
|
|
|
(def website-config-defaults {:build-cpu-request "500m"
|
|
:build-cpu-limit "1700m"
|
|
:build-memory-request "256Mi"
|
|
:build-memory-limit "512Mi"
|
|
:volume-size "3"
|
|
:redirects []})
|
|
|
|
(defn-spec sort-config map?
|
|
[unsorted-config config?]
|
|
(let [sorted-websiteconfigs (into [] (sort-by :unique-name (unsorted-config :websiteconfigs)))]
|
|
(-> unsorted-config
|
|
(assoc-in [:websiteconfigs] sorted-websiteconfigs))))
|
|
|
|
(defn-spec sort-auth map?
|
|
[unsorted-auth auth?]
|
|
(let [sorted-auth (into [] (sort-by :unique-name (unsorted-auth :websiteauths)))]
|
|
(-> unsorted-auth
|
|
(assoc-in [:websiteauths] sorted-auth))))
|
|
|
|
(defn-spec flatten-and-reduce-config map?
|
|
[config config?]
|
|
(let
|
|
[first-entry (first (:websiteconfigs config))]
|
|
(conj first-entry
|
|
(when (contains? config :issuer)
|
|
{:issuer (config :issuer)})
|
|
(when (contains? config :volume-size)
|
|
{:volume-size (config :volume-size)}))))
|
|
|
|
(defn-spec flatten-and-reduce-auth map?
|
|
[auth auth?]
|
|
(-> auth :websiteauths first))
|
|
|
|
(defn-spec generate-ingress seq?
|
|
[config websiteconfig?]
|
|
(let [name (web/replace-dots-by-minus (:unique-name config))
|
|
final-config (merge website-config-defaults
|
|
{:service-name name
|
|
:service-port 80
|
|
:namespace name}
|
|
config)]
|
|
(ing/generate-simple-ingress final-config)))
|
|
|
|
(defn-spec generate seq?
|
|
[config config?
|
|
auth auth?]
|
|
(loop [config (sort-config config)
|
|
sorted-auth (sort-auth auth)
|
|
result []]
|
|
|
|
(if (and (empty? (config :websiteconfigs)) (empty? (sorted-auth :websiteauths)))
|
|
result
|
|
(recur (->
|
|
config
|
|
(assoc-in [:websiteconfigs] (rest (config :websiteconfigs))))
|
|
(->
|
|
auth
|
|
(assoc-in [:websiteauths] (rest (sorted-auth :websiteauths))))
|
|
(let [final-config
|
|
(merge
|
|
website-config-defaults
|
|
(flatten-and-reduce-config config))
|
|
name (web/replace-dots-by-minus (:unique-name final-config))]
|
|
(cm/concat-vec
|
|
result
|
|
(ns/generate (merge {:namespace name} final-config))
|
|
[(web/generate-nginx-deployment final-config)
|
|
(web/generate-nginx-configmap final-config)
|
|
(web/generate-nginx-service final-config)
|
|
(web/generate-content-pvc final-config)
|
|
(web/generate-hash-state-pvc final-config)
|
|
(web/generate-build-cron final-config)
|
|
(web/generate-build-secret final-config
|
|
(flatten-and-reduce-auth auth))]
|
|
(generate-ingress final-config)))))))
|
|
|
|
(defn-spec k8s-objects cp/map-or-seq?
|
|
[config config?
|
|
auth auth?]
|
|
(cm/concat-vec
|
|
(map yaml/to-string
|
|
(filter
|
|
#(not (nil? %))
|
|
(cm/concat-vec
|
|
(generate config auth)
|
|
(when (:contains? config :mon-cfg)
|
|
(mon/generate (:mon-cfg config) (:mon-auth auth))))))))
|