mirror of
https://github.com/cuigh/swirl
synced 2025-01-07 03:21:29 +00:00
681 lines
18 KiB
Go
681 lines
18 KiB
Go
|
package compose
|
||
|
|
||
|
import (
|
||
|
"fmt"
|
||
|
"os"
|
||
|
"sort"
|
||
|
"strings"
|
||
|
"time"
|
||
|
|
||
|
"context"
|
||
|
|
||
|
"github.com/docker/docker/api/types"
|
||
|
"github.com/docker/docker/api/types/container"
|
||
|
"github.com/docker/docker/api/types/filters"
|
||
|
"github.com/docker/docker/api/types/swarm"
|
||
|
"github.com/docker/docker/api/types/versions"
|
||
|
"github.com/docker/docker/client"
|
||
|
"github.com/pkg/errors"
|
||
|
)
|
||
|
|
||
|
const (
|
||
|
defaultNetwork = "default"
|
||
|
// LabelImage is the label used to store image name provided in the compose file
|
||
|
LabelImage = "com.docker.stack.image"
|
||
|
)
|
||
|
|
||
|
// Services from compose-file types to engine API types
|
||
|
func Services(
|
||
|
namespace Namespace,
|
||
|
config *Config,
|
||
|
client *client.Client,
|
||
|
) (map[string]swarm.ServiceSpec, error) {
|
||
|
result := make(map[string]swarm.ServiceSpec)
|
||
|
|
||
|
services := config.Services
|
||
|
volumes := config.Volumes
|
||
|
networks := config.Networks
|
||
|
|
||
|
for _, service := range services {
|
||
|
secrets, err := convertServiceSecrets(client, namespace, service.Secrets, config.Secrets)
|
||
|
if err != nil {
|
||
|
return nil, errors.Wrapf(err, "service %s", service.Name)
|
||
|
}
|
||
|
configs, err := convertServiceConfigObjs(client, namespace, service.Configs, config.Configs)
|
||
|
if err != nil {
|
||
|
return nil, errors.Wrapf(err, "service %s", service.Name)
|
||
|
}
|
||
|
|
||
|
serviceSpec, err := Service(client.ClientVersion(), namespace, service, networks, volumes, secrets, configs)
|
||
|
if err != nil {
|
||
|
return nil, errors.Wrapf(err, "service %s", service.Name)
|
||
|
}
|
||
|
result[service.Name] = serviceSpec
|
||
|
}
|
||
|
|
||
|
return result, nil
|
||
|
}
|
||
|
|
||
|
// Service converts a ServiceConfig into a swarm ServiceSpec
|
||
|
func Service(
|
||
|
apiVersion string,
|
||
|
namespace Namespace,
|
||
|
service ServiceConfig,
|
||
|
networkConfigs map[string]NetworkConfig,
|
||
|
volumes map[string]VolumeConfig,
|
||
|
secrets []*swarm.SecretReference,
|
||
|
configs []*swarm.ConfigReference,
|
||
|
) (swarm.ServiceSpec, error) {
|
||
|
name := namespace.Scope(service.Name)
|
||
|
|
||
|
endpoint, err := convertEndpointSpec(service.Deploy.EndpointMode, service.Ports)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
mode, err := convertDeployMode(service.Deploy.Mode, service.Deploy.Replicas)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
mounts, err := Volumes(service.Volumes, volumes, namespace)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
resources, err := convertResources(service.Deploy.Resources)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
restartPolicy, err := convertRestartPolicy(
|
||
|
service.Restart, service.Deploy.RestartPolicy)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
healthcheck, err := convertHealthcheck(service.HealthCheck)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
networks, err := convertServiceNetworks(service.Networks, networkConfigs, namespace, service.Name)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
dnsConfig, err := convertDNSConfig(service.DNS, service.DNSSearch)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
var privileges swarm.Privileges
|
||
|
privileges.CredentialSpec, err = convertCredentialSpec(service.CredentialSpec)
|
||
|
if err != nil {
|
||
|
return swarm.ServiceSpec{}, err
|
||
|
}
|
||
|
|
||
|
var logDriver *swarm.Driver
|
||
|
if service.Logging != nil {
|
||
|
logDriver = &swarm.Driver{
|
||
|
Name: service.Logging.Driver,
|
||
|
Options: service.Logging.Options,
|
||
|
}
|
||
|
}
|
||
|
|
||
|
serviceSpec := swarm.ServiceSpec{
|
||
|
Annotations: swarm.Annotations{
|
||
|
Name: name,
|
||
|
Labels: AddStackLabel(namespace, service.Deploy.Labels),
|
||
|
},
|
||
|
TaskTemplate: swarm.TaskSpec{
|
||
|
ContainerSpec: &swarm.ContainerSpec{
|
||
|
Image: service.Image,
|
||
|
Command: service.Entrypoint,
|
||
|
Args: service.Command,
|
||
|
Hostname: service.Hostname,
|
||
|
Hosts: sortStrings(convertExtraHosts(service.ExtraHosts)),
|
||
|
DNSConfig: dnsConfig,
|
||
|
Healthcheck: healthcheck,
|
||
|
Env: sortStrings(convertEnvironment(service.Environment)),
|
||
|
Labels: AddStackLabel(namespace, service.Labels),
|
||
|
Dir: service.WorkingDir,
|
||
|
User: service.User,
|
||
|
Mounts: mounts,
|
||
|
StopGracePeriod: service.StopGracePeriod,
|
||
|
StopSignal: service.StopSignal,
|
||
|
TTY: service.Tty,
|
||
|
OpenStdin: service.StdinOpen,
|
||
|
Secrets: secrets,
|
||
|
Configs: configs,
|
||
|
ReadOnly: service.ReadOnly,
|
||
|
Privileges: &privileges,
|
||
|
},
|
||
|
LogDriver: logDriver,
|
||
|
Resources: resources,
|
||
|
RestartPolicy: restartPolicy,
|
||
|
Placement: &swarm.Placement{
|
||
|
Constraints: service.Deploy.Placement.Constraints,
|
||
|
Preferences: getPlacementPreference(service.Deploy.Placement.Preferences),
|
||
|
},
|
||
|
},
|
||
|
EndpointSpec: endpoint,
|
||
|
Mode: mode,
|
||
|
UpdateConfig: convertUpdateConfig(service.Deploy.UpdateConfig),
|
||
|
}
|
||
|
|
||
|
// add an image label to serviceSpec
|
||
|
serviceSpec.Labels[LabelImage] = service.Image
|
||
|
|
||
|
// ServiceSpec.Networks is deprecated and should not have been used by
|
||
|
// this package. It is possible to update TaskTemplate.Networks, but it
|
||
|
// is not possible to update ServiceSpec.Networks. Unfortunately, we
|
||
|
// can't unconditionally start using TaskTemplate.Networks, because that
|
||
|
// will break with older daemons that don't support migrating from
|
||
|
// ServiceSpec.Networks to TaskTemplate.Networks. So which field to use
|
||
|
// is conditional on daemon version.
|
||
|
if versions.LessThan(apiVersion, "1.29") {
|
||
|
serviceSpec.Networks = networks
|
||
|
} else {
|
||
|
serviceSpec.TaskTemplate.Networks = networks
|
||
|
}
|
||
|
return serviceSpec, nil
|
||
|
}
|
||
|
|
||
|
func getPlacementPreference(preferences []PlacementPreferences) []swarm.PlacementPreference {
|
||
|
result := []swarm.PlacementPreference{}
|
||
|
for _, preference := range preferences {
|
||
|
spreadDescriptor := preference.Spread
|
||
|
result = append(result, swarm.PlacementPreference{
|
||
|
Spread: &swarm.SpreadOver{
|
||
|
SpreadDescriptor: spreadDescriptor,
|
||
|
},
|
||
|
})
|
||
|
}
|
||
|
return result
|
||
|
}
|
||
|
|
||
|
func sortStrings(strs []string) []string {
|
||
|
sort.Strings(strs)
|
||
|
return strs
|
||
|
}
|
||
|
|
||
|
type byNetworkTarget []swarm.NetworkAttachmentConfig
|
||
|
|
||
|
func (a byNetworkTarget) Len() int { return len(a) }
|
||
|
func (a byNetworkTarget) Swap(i, j int) { a[i], a[j] = a[j], a[i] }
|
||
|
func (a byNetworkTarget) Less(i, j int) bool { return a[i].Target < a[j].Target }
|
||
|
|
||
|
func convertServiceNetworks(
|
||
|
networks map[string]*ServiceNetworkConfig,
|
||
|
networkConfigs networkMap,
|
||
|
namespace Namespace,
|
||
|
name string,
|
||
|
) ([]swarm.NetworkAttachmentConfig, error) {
|
||
|
if len(networks) == 0 {
|
||
|
networks = map[string]*ServiceNetworkConfig{
|
||
|
defaultNetwork: {},
|
||
|
}
|
||
|
}
|
||
|
|
||
|
nets := []swarm.NetworkAttachmentConfig{}
|
||
|
for networkName, network := range networks {
|
||
|
networkConfig, ok := networkConfigs[networkName]
|
||
|
if !ok && networkName != defaultNetwork {
|
||
|
return nil, errors.Errorf("undefined network %q", networkName)
|
||
|
}
|
||
|
var aliases []string
|
||
|
if network != nil {
|
||
|
aliases = network.Aliases
|
||
|
}
|
||
|
target := namespace.Scope(networkName)
|
||
|
if networkConfig.External.External {
|
||
|
target = networkConfig.External.Name
|
||
|
}
|
||
|
netAttachConfig := swarm.NetworkAttachmentConfig{
|
||
|
Target: target,
|
||
|
Aliases: aliases,
|
||
|
}
|
||
|
// Only add default aliases to user defined networks. Other networks do
|
||
|
// not support aliases.
|
||
|
if container.NetworkMode(target).IsUserDefined() {
|
||
|
netAttachConfig.Aliases = append(netAttachConfig.Aliases, name)
|
||
|
}
|
||
|
nets = append(nets, netAttachConfig)
|
||
|
}
|
||
|
|
||
|
sort.Sort(byNetworkTarget(nets))
|
||
|
return nets, nil
|
||
|
}
|
||
|
|
||
|
// TODO: fix secrets API so that SecretAPIClient is not required here
|
||
|
func convertServiceSecrets(
|
||
|
client *client.Client,
|
||
|
namespace Namespace,
|
||
|
secrets []ServiceSecretConfig,
|
||
|
secretSpecs map[string]SecretConfig,
|
||
|
) ([]*swarm.SecretReference, error) {
|
||
|
refs := []*swarm.SecretReference{}
|
||
|
for _, secret := range secrets {
|
||
|
target := secret.Target
|
||
|
if target == "" {
|
||
|
target = secret.Source
|
||
|
}
|
||
|
|
||
|
secretSpec, exists := secretSpecs[secret.Source]
|
||
|
if !exists {
|
||
|
return nil, errors.Errorf("undefined secret %q", secret.Source)
|
||
|
}
|
||
|
|
||
|
source := namespace.Scope(secret.Source)
|
||
|
if secretSpec.External.External {
|
||
|
source = secretSpec.External.Name
|
||
|
}
|
||
|
|
||
|
uid := secret.UID
|
||
|
gid := secret.GID
|
||
|
if uid == "" {
|
||
|
uid = "0"
|
||
|
}
|
||
|
if gid == "" {
|
||
|
gid = "0"
|
||
|
}
|
||
|
mode := secret.Mode
|
||
|
if mode == nil {
|
||
|
mode = uint32Ptr(0444)
|
||
|
}
|
||
|
|
||
|
refs = append(refs, &swarm.SecretReference{
|
||
|
File: &swarm.SecretReferenceFileTarget{
|
||
|
Name: target,
|
||
|
UID: uid,
|
||
|
GID: gid,
|
||
|
Mode: os.FileMode(*mode),
|
||
|
},
|
||
|
SecretName: source,
|
||
|
})
|
||
|
}
|
||
|
|
||
|
secrs, err := ParseSecrets(client, refs)
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
// sort to ensure idempotence (don't restart services just because the entries are in different order)
|
||
|
sort.SliceStable(secrs, func(i, j int) bool { return secrs[i].SecretName < secrs[j].SecretName })
|
||
|
return secrs, err
|
||
|
}
|
||
|
|
||
|
// TODO: fix configs API so that ConfigsAPIClient is not required here
|
||
|
func convertServiceConfigObjs(
|
||
|
client *client.Client,
|
||
|
namespace Namespace,
|
||
|
configs []ServiceConfigObjConfig,
|
||
|
configSpecs map[string]ConfigObjConfig,
|
||
|
) ([]*swarm.ConfigReference, error) {
|
||
|
refs := []*swarm.ConfigReference{}
|
||
|
for _, config := range configs {
|
||
|
target := config.Target
|
||
|
if target == "" {
|
||
|
target = config.Source
|
||
|
}
|
||
|
|
||
|
configSpec, exists := configSpecs[config.Source]
|
||
|
if !exists {
|
||
|
return nil, errors.Errorf("undefined config %q", config.Source)
|
||
|
}
|
||
|
|
||
|
source := namespace.Scope(config.Source)
|
||
|
if configSpec.External.External {
|
||
|
source = configSpec.External.Name
|
||
|
}
|
||
|
|
||
|
uid := config.UID
|
||
|
gid := config.GID
|
||
|
if uid == "" {
|
||
|
uid = "0"
|
||
|
}
|
||
|
if gid == "" {
|
||
|
gid = "0"
|
||
|
}
|
||
|
mode := config.Mode
|
||
|
if mode == nil {
|
||
|
mode = uint32Ptr(0444)
|
||
|
}
|
||
|
|
||
|
refs = append(refs, &swarm.ConfigReference{
|
||
|
File: &swarm.ConfigReferenceFileTarget{
|
||
|
Name: target,
|
||
|
UID: uid,
|
||
|
GID: gid,
|
||
|
Mode: os.FileMode(*mode),
|
||
|
},
|
||
|
ConfigName: source,
|
||
|
})
|
||
|
}
|
||
|
|
||
|
confs, err := ParseConfigs(client, refs)
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
// sort to ensure idempotence (don't restart services just because the entries are in different order)
|
||
|
sort.SliceStable(confs, func(i, j int) bool { return confs[i].ConfigName < confs[j].ConfigName })
|
||
|
return confs, err
|
||
|
}
|
||
|
|
||
|
func uint32Ptr(value uint32) *uint32 {
|
||
|
return &value
|
||
|
}
|
||
|
|
||
|
func convertExtraHosts(extraHosts map[string]string) []string {
|
||
|
hosts := []string{}
|
||
|
for host, ip := range extraHosts {
|
||
|
hosts = append(hosts, fmt.Sprintf("%s %s", ip, host))
|
||
|
}
|
||
|
return hosts
|
||
|
}
|
||
|
|
||
|
func convertHealthcheck(healthcheck *HealthCheckConfig) (*container.HealthConfig, error) {
|
||
|
if healthcheck == nil {
|
||
|
return nil, nil
|
||
|
}
|
||
|
var (
|
||
|
timeout, interval, startPeriod time.Duration
|
||
|
retries int
|
||
|
)
|
||
|
if healthcheck.Disable {
|
||
|
if len(healthcheck.Test) != 0 {
|
||
|
return nil, errors.Errorf("test and disable can't be set at the same time")
|
||
|
}
|
||
|
return &container.HealthConfig{
|
||
|
Test: []string{"NONE"},
|
||
|
}, nil
|
||
|
|
||
|
}
|
||
|
if healthcheck.Timeout != nil {
|
||
|
timeout = *healthcheck.Timeout
|
||
|
}
|
||
|
if healthcheck.Interval != nil {
|
||
|
interval = *healthcheck.Interval
|
||
|
}
|
||
|
if healthcheck.StartPeriod != nil {
|
||
|
startPeriod = *healthcheck.StartPeriod
|
||
|
}
|
||
|
if healthcheck.Retries != nil {
|
||
|
retries = int(*healthcheck.Retries)
|
||
|
}
|
||
|
return &container.HealthConfig{
|
||
|
Test: healthcheck.Test,
|
||
|
Timeout: timeout,
|
||
|
Interval: interval,
|
||
|
Retries: retries,
|
||
|
StartPeriod: startPeriod,
|
||
|
}, nil
|
||
|
}
|
||
|
|
||
|
func convertRestartPolicy(restart string, source *RestartPolicy) (*swarm.RestartPolicy, error) {
|
||
|
// TODO: log if restart is being ignored
|
||
|
if source == nil {
|
||
|
policy, err := ParseRestartPolicy(restart)
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
switch {
|
||
|
case policy.IsNone():
|
||
|
return nil, nil
|
||
|
case policy.IsAlways(), policy.IsUnlessStopped():
|
||
|
return &swarm.RestartPolicy{
|
||
|
Condition: swarm.RestartPolicyConditionAny,
|
||
|
}, nil
|
||
|
case policy.IsOnFailure():
|
||
|
attempts := uint64(policy.MaximumRetryCount)
|
||
|
return &swarm.RestartPolicy{
|
||
|
Condition: swarm.RestartPolicyConditionOnFailure,
|
||
|
MaxAttempts: &attempts,
|
||
|
}, nil
|
||
|
default:
|
||
|
return nil, errors.Errorf("unknown restart policy: %s", restart)
|
||
|
}
|
||
|
}
|
||
|
return &swarm.RestartPolicy{
|
||
|
Condition: swarm.RestartPolicyCondition(source.Condition),
|
||
|
Delay: source.Delay,
|
||
|
MaxAttempts: source.MaxAttempts,
|
||
|
Window: source.Window,
|
||
|
}, nil
|
||
|
}
|
||
|
|
||
|
func convertUpdateConfig(source *UpdateConfig) *swarm.UpdateConfig {
|
||
|
if source == nil {
|
||
|
return nil
|
||
|
}
|
||
|
parallel := uint64(1)
|
||
|
if source.Parallelism != nil {
|
||
|
parallel = *source.Parallelism
|
||
|
}
|
||
|
return &swarm.UpdateConfig{
|
||
|
Parallelism: parallel,
|
||
|
Delay: source.Delay,
|
||
|
FailureAction: source.FailureAction,
|
||
|
Monitor: source.Monitor,
|
||
|
MaxFailureRatio: source.MaxFailureRatio,
|
||
|
Order: source.Order,
|
||
|
}
|
||
|
}
|
||
|
|
||
|
func convertResources(source Resources) (*swarm.ResourceRequirements, error) {
|
||
|
resources := &swarm.ResourceRequirements{}
|
||
|
var err error
|
||
|
if source.Limits != nil {
|
||
|
var cpus int64
|
||
|
if source.Limits.NanoCPUs != "" {
|
||
|
cpus, err = ParseCPUs(source.Limits.NanoCPUs)
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
}
|
||
|
resources.Limits = &swarm.Resources{
|
||
|
NanoCPUs: cpus,
|
||
|
MemoryBytes: int64(source.Limits.MemoryBytes),
|
||
|
}
|
||
|
}
|
||
|
if source.Reservations != nil {
|
||
|
var cpus int64
|
||
|
if source.Reservations.NanoCPUs != "" {
|
||
|
cpus, err = ParseCPUs(source.Reservations.NanoCPUs)
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
}
|
||
|
resources.Reservations = &swarm.Resources{
|
||
|
NanoCPUs: cpus,
|
||
|
MemoryBytes: int64(source.Reservations.MemoryBytes),
|
||
|
}
|
||
|
}
|
||
|
return resources, nil
|
||
|
}
|
||
|
|
||
|
type byPublishedPort []swarm.PortConfig
|
||
|
|
||
|
func (a byPublishedPort) Len() int { return len(a) }
|
||
|
func (a byPublishedPort) Swap(i, j int) { a[i], a[j] = a[j], a[i] }
|
||
|
func (a byPublishedPort) Less(i, j int) bool { return a[i].PublishedPort < a[j].PublishedPort }
|
||
|
|
||
|
func convertEndpointSpec(endpointMode string, source []ServicePortConfig) (*swarm.EndpointSpec, error) {
|
||
|
portConfigs := []swarm.PortConfig{}
|
||
|
for _, port := range source {
|
||
|
portConfig := swarm.PortConfig{
|
||
|
Protocol: swarm.PortConfigProtocol(port.Protocol),
|
||
|
TargetPort: port.Target,
|
||
|
PublishedPort: port.Published,
|
||
|
PublishMode: swarm.PortConfigPublishMode(port.Mode),
|
||
|
}
|
||
|
portConfigs = append(portConfigs, portConfig)
|
||
|
}
|
||
|
|
||
|
sort.Sort(byPublishedPort(portConfigs))
|
||
|
return &swarm.EndpointSpec{
|
||
|
Mode: swarm.ResolutionMode(strings.ToLower(endpointMode)),
|
||
|
Ports: portConfigs,
|
||
|
}, nil
|
||
|
}
|
||
|
|
||
|
func convertEnvironment(source map[string]*string) []string {
|
||
|
var output []string
|
||
|
|
||
|
for name, value := range source {
|
||
|
switch value {
|
||
|
case nil:
|
||
|
output = append(output, name)
|
||
|
default:
|
||
|
output = append(output, fmt.Sprintf("%s=%s", name, *value))
|
||
|
}
|
||
|
}
|
||
|
|
||
|
return output
|
||
|
}
|
||
|
|
||
|
func convertDeployMode(mode string, replicas *uint64) (swarm.ServiceMode, error) {
|
||
|
serviceMode := swarm.ServiceMode{}
|
||
|
|
||
|
switch mode {
|
||
|
case "global":
|
||
|
if replicas != nil {
|
||
|
return serviceMode, errors.Errorf("replicas can only be used with replicated mode")
|
||
|
}
|
||
|
serviceMode.Global = &swarm.GlobalService{}
|
||
|
case "replicated", "":
|
||
|
serviceMode.Replicated = &swarm.ReplicatedService{Replicas: replicas}
|
||
|
default:
|
||
|
return serviceMode, errors.Errorf("Unknown mode: %s", mode)
|
||
|
}
|
||
|
return serviceMode, nil
|
||
|
}
|
||
|
|
||
|
func convertDNSConfig(DNS []string, DNSSearch []string) (*swarm.DNSConfig, error) {
|
||
|
if DNS != nil || DNSSearch != nil {
|
||
|
return &swarm.DNSConfig{
|
||
|
Nameservers: DNS,
|
||
|
Search: DNSSearch,
|
||
|
}, nil
|
||
|
}
|
||
|
return nil, nil
|
||
|
}
|
||
|
|
||
|
func convertCredentialSpec(spec CredentialSpecConfig) (*swarm.CredentialSpec, error) {
|
||
|
if spec.File == "" && spec.Registry == "" {
|
||
|
return nil, nil
|
||
|
}
|
||
|
if spec.File != "" && spec.Registry != "" {
|
||
|
return nil, errors.New("Invalid credential spec - must provide one of `File` or `Registry`")
|
||
|
}
|
||
|
swarmCredSpec := swarm.CredentialSpec(spec)
|
||
|
return &swarmCredSpec, nil
|
||
|
}
|
||
|
|
||
|
// ParseSecrets retrieves the secrets with the requested names and fills
|
||
|
// secret IDs into the secret references.
|
||
|
func ParseSecrets(client *client.Client, requestedSecrets []*swarm.SecretReference) ([]*swarm.SecretReference, error) {
|
||
|
if len(requestedSecrets) == 0 {
|
||
|
return []*swarm.SecretReference{}, nil
|
||
|
}
|
||
|
|
||
|
secretRefs := make(map[string]*swarm.SecretReference)
|
||
|
ctx := context.Background()
|
||
|
|
||
|
for _, secret := range requestedSecrets {
|
||
|
if _, exists := secretRefs[secret.File.Name]; exists {
|
||
|
return nil, errors.Errorf("duplicate secret target for %s not allowed", secret.SecretName)
|
||
|
}
|
||
|
secretRef := new(swarm.SecretReference)
|
||
|
*secretRef = *secret
|
||
|
secretRefs[secret.File.Name] = secretRef
|
||
|
}
|
||
|
|
||
|
args := filters.NewArgs()
|
||
|
for _, s := range secretRefs {
|
||
|
args.Add("name", s.SecretName)
|
||
|
}
|
||
|
|
||
|
secrets, err := client.SecretList(ctx, types.SecretListOptions{
|
||
|
Filters: args,
|
||
|
})
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
|
||
|
foundSecrets := make(map[string]string)
|
||
|
for _, secret := range secrets {
|
||
|
foundSecrets[secret.Spec.Annotations.Name] = secret.ID
|
||
|
}
|
||
|
|
||
|
addedSecrets := []*swarm.SecretReference{}
|
||
|
|
||
|
for _, ref := range secretRefs {
|
||
|
id, ok := foundSecrets[ref.SecretName]
|
||
|
if !ok {
|
||
|
return nil, errors.Errorf("secret not found: %s", ref.SecretName)
|
||
|
}
|
||
|
|
||
|
// set the id for the ref to properly assign in swarm
|
||
|
// since swarm needs the ID instead of the name
|
||
|
ref.SecretID = id
|
||
|
addedSecrets = append(addedSecrets, ref)
|
||
|
}
|
||
|
|
||
|
return addedSecrets, nil
|
||
|
}
|
||
|
|
||
|
// ParseConfigs retrieves the configs from the requested names and converts
|
||
|
// them to config references to use with the spec
|
||
|
func ParseConfigs(client client.ConfigAPIClient, requestedConfigs []*swarm.ConfigReference) ([]*swarm.ConfigReference, error) {
|
||
|
if len(requestedConfigs) == 0 {
|
||
|
return []*swarm.ConfigReference{}, nil
|
||
|
}
|
||
|
|
||
|
configRefs := make(map[string]*swarm.ConfigReference)
|
||
|
ctx := context.Background()
|
||
|
|
||
|
for _, config := range requestedConfigs {
|
||
|
if _, exists := configRefs[config.File.Name]; exists {
|
||
|
return nil, errors.Errorf("duplicate config target for %s not allowed", config.ConfigName)
|
||
|
}
|
||
|
|
||
|
configRef := new(swarm.ConfigReference)
|
||
|
*configRef = *config
|
||
|
configRefs[config.File.Name] = configRef
|
||
|
}
|
||
|
|
||
|
args := filters.NewArgs()
|
||
|
for _, s := range configRefs {
|
||
|
args.Add("name", s.ConfigName)
|
||
|
}
|
||
|
|
||
|
configs, err := client.ConfigList(ctx, types.ConfigListOptions{
|
||
|
Filters: args,
|
||
|
})
|
||
|
if err != nil {
|
||
|
return nil, err
|
||
|
}
|
||
|
|
||
|
foundConfigs := make(map[string]string)
|
||
|
for _, config := range configs {
|
||
|
foundConfigs[config.Spec.Annotations.Name] = config.ID
|
||
|
}
|
||
|
|
||
|
addedConfigs := []*swarm.ConfigReference{}
|
||
|
|
||
|
for _, ref := range configRefs {
|
||
|
id, ok := foundConfigs[ref.ConfigName]
|
||
|
if !ok {
|
||
|
return nil, errors.Errorf("config not found: %s", ref.ConfigName)
|
||
|
}
|
||
|
|
||
|
// set the id for the ref to properly assign in swarm
|
||
|
// since swarm needs the ID instead of the name
|
||
|
ref.ConfigID = id
|
||
|
addedConfigs = append(addedConfigs, ref)
|
||
|
}
|
||
|
|
||
|
return addedConfigs, nil
|
||
|
}
|