archive-gh-me/gitpod
1
0
Fork 0
mirror of https://github.com/gitpod-io/gitpod.git synced 2025-12-08 17:36:30 +00:00
Code Issues Projects Releases Wiki Activity
gitpod/install/installer/pkg/components/spicedb/schema.go
Milan Pavlik 057494e7b6 [spicedb] Add github action to validate schema
2023-01-31 11:21:38 +01:00

141 lines
3.6 KiB
Go
Raw Blame History

// Copyright (c) 2023 Gitpod GmbH. All rights reserved.
// Licensed under the GNU Affero General Public License (AGPL).
// See License.AGPL.txt in the project root for license information.
package spicedb
import (
"embed"
"fmt"
"io/fs"
"path/filepath"
"sort"
"strings"
"github.com/gitpod-io/gitpod/installer/pkg/common"
"gopkg.in/yaml.v2"
corev1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/apimachinery/pkg/runtime"
)
//go:embed data/*.yaml
var bootstrapFiles embed.FS
func bootstrap(ctx *common.RenderContext) ([]runtime.Object, error) {
files, err := getBootstrapFiles()
if err != nil {
return nil, fmt.Errorf("failed to read bootstrap files: %w", err)
}
cmData := make(map[string]string)
for _, f := range files {
cmData[f.name] = f.data
}
return []runtime.Object{
&corev1.ConfigMap{
TypeMeta: common.TypeMetaConfigmap,
ObjectMeta: metav1.ObjectMeta{
Name: BootstrapConfigMapName,
Namespace: ctx.Namespace,
Labels: common.CustomizeLabel(ctx, Component, common.TypeMetaConfigmap),
Annotations: common.CustomizeAnnotation(ctx, Component, common.TypeMetaConfigmap),
},
Data: cmData,
},
}, nil
}
func getBootstrapConfig(ctx *common.RenderContext) (corev1.Volume, corev1.VolumeMount, []string, error) {
var volume corev1.Volume
var mount corev1.VolumeMount
var paths []string
mountPath := "/bootstrap"
volume = corev1.Volume{
Name: "spicedb-bootstrap",
VolumeSource: corev1.VolumeSource{
ConfigMap: &corev1.ConfigMapVolumeSource{
LocalObjectReference: corev1.LocalObjectReference{
Name: BootstrapConfigMapName,
},
},
},
}
mount = corev1.VolumeMount{
Name: "spicedb-bootstrap",
MountPath: mountPath,
ReadOnly: true,
}
files, err := getBootstrapFiles()
if err != nil {
return corev1.Volume{}, corev1.VolumeMount{}, nil, fmt.Errorf("failed to get bootstrap files: %w", err)
}
for _, f := range files {
paths = append(paths, filepath.Join(mountPath, f.name))
}
return volume, mount, paths, nil
}
type file struct {
name string
data string
}
type SpiceDBSchema struct {
Schema string `yaml:"schema"`
Relationships string `yaml:"relationships"`
}
func getBootstrapFiles() ([]file, error) {
files, err := fs.ReadDir(bootstrapFiles, "data")
if err != nil {
return nil, fmt.Errorf("failed to read bootstrap files: %w", err)
}
var filesWithContents []file
for _, f := range files {
b, err := fs.ReadFile(bootstrapFiles, fmt.Sprintf("%s/%s", "data", f.Name()))
if err != nil {
return nil, err
}
var schema SpiceDBSchema
err = yaml.Unmarshal(b, &schema)
if err != nil {
return nil, fmt.Errorf("failed to parse file %s as yaml: %w", f.Name(), err)
}
data, err := yaml.Marshal(SpiceDBSchema{
Schema: schema.Schema,
})
if err != nil {
return nil, fmt.Errorf("failed to serialize contents: %w", err)
}
// We only want to populate spicedb with the schema - we don't want to persist relationships or other data
// This is because the relationships defined in this schema are used for validation, but can also be used to
// import data into a running instance - we do not want that.
// We cannot split the definitions across multiple files as that would prevent us from performing CI validation,
// and we do not want to duplicate the schema.
filesWithContents = append(filesWithContents, file{
name: f.Name(),
data: string(data),
})
}
// ensure output is stable
sort.Slice(filesWithContents, func(i, j int) bool {
return strings.Compare(filesWithContents[i].name, filesWithContents[j].name) == -1
})
return filesWithContents, nil
}
Reference in New Issue View Git Blame Copy Permalink