-
Notifications
You must be signed in to change notification settings - Fork 44
/
Copy pathdeploy.sh
executable file
·253 lines (220 loc) · 9.76 KB
/
deploy.sh
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
#!/bin/bash
#--------------------------------------------------------------------------------------------------------------------------
# Usage: ./deploy.sh
#
# This script does the following:
# 0. If "oss" flavor was specified, it changes all kustomize patches to be spinnaker oss compliant
# 1. Installs the latest version of operator if not already installed
# 2. Deploys spinnaker secrets to a Kubernetes secret
# 3. Deploys spinnaker with kustomize patches using "kubectl -k apply"
#
# Full logs are redirected to deploy_log.txt
#--------------------------------------------------------------------------------------------------------------------------
SPIN_FLAVOR=${SPIN_FLAVOR:-armory} # Distribution of spinnaker to deploy (oss or armory)
SPIN_OP_DEPLOY=${SPIN_OP_DEPLOY:-1} # Whether or not to deploy and manage operator (0 or 1)
SPIN_OP_VERSION=${SPIN_OP_VERSION:-latest} # Spinnaker operator version
SPIN_WATCH=${SPIN_WATCH:-1} # Whether or not to watch/wait for Spinnaker to come up (0 or 1)
SPIN_OP_NS=${SPIN_OP_NS:-"spinnaker-operator"} # Distribution Operator namespace
SPIN_OP_MODE=${SPIN_OP_MODE:-"cluster"} # Distribution of operator mode to use (basic or cluser)
ROOT_DIR="$(
cd "$(dirname "$0")" >/dev/null 2>&1 || exit 1
pwd -P
)"
OUT="$ROOT_DIR/deploy_log.txt"
function log() {
RED='\033[0;31m'
GREEN='\033[0;32m'
ORANGE='\033[0;33m'
CYAN='\033[0;36m'
NC='\033[0m'
LEVEL=$1
MSG=$2
case $LEVEL in
"INFO") HEADER_COLOR=$GREEN MSG_COLOR=$NS ;;
"WARN") HEADER_COLOR=$ORANGE MSG_COLOR=$NS ;;
"KUBE") HEADER_COLOR=$ORANGE MSG_COLOR=$CYAN ;;
"ERROR") HEADER_COLOR=$RED MSG_COLOR=$NS ;;
esac
printf "${HEADER_COLOR}[%-5.5s]${NC} ${MSG_COLOR}%b${NC}" "${LEVEL}" "${MSG}"
printf "[%-5.5s] %b" "${LEVEL}" "${MSG}" >>"$OUT"
}
function info() {
log "INFO" "$1"
}
function warn() {
log "WARN" "$1"
}
function error() {
log "ERROR" "$1" && exit 1
}
function handle_generic_kubectl_error() {
error "Error executing command:\n$ERR_OUTPUT"
}
function exec_kubectl_mutating() {
log "KUBE" "$1\n"
ERR_OUTPUT=$({ $1 >>"$OUT"; } 2>&1)
EXIT_CODE=$?
[[ $EXIT_CODE != 0 ]] && $2
}
function change_patch_flavor() {
if ! grep "^$API_VERSION" spinnakerservice.yml >/dev/null; then
info "Changing spinnaker flavor..."
{
echo "API_VERSION: $API_VERSION" >>"$OUT"
# shellcheck disable=SC2044
for f in $(find "$ROOT_DIR" -name '*.yml' -or -name '*.yaml'); do
if ! grep -E "^apiVersion: spinnaker.(armory.)?io/v1alpha2" "$f" >/dev/null 2>&1; then continue; fi
if grep "^$API_VERSION" "$f" >/dev/null 2>&1; then continue; fi
echo "Changing spinnaker apiVersion on file: $f"
sed "s|^apiVersion: spinnaker.\(armory.\)\{0,1\}io/v1alpha2|$API_VERSION|" "$f" >"$f".new
mv "$f.new" "$f"
done
} >>"$OUT" 2>&1
echo -ne "Done\n"
fi
}
function check_prerequisites() {
date >"$OUT"
# TODO dogonthehorizon: this can be removed once the operator can be pulled
# in via git ref as a component.
case $SPIN_FLAVOR in
"oss")
OP_API_GROUP=spinnakerservices.spinnaker.io
if [[ $SPIN_OP_VERSION == "latest" ]]; then SPIN_OP_VERSION=`curl -s https://github.com/armory/spinnaker-operator/releases/latest | cut -d'"' -f2 | awk '{gsub(".*/v","")}1'`; fi
OP_URL=https://github.com/armory/spinnaker-operator/releases/download/v${SPIN_OP_VERSION}/manifests.tgz
OP_IMAGE_BASE="armory/spinnaker-operator"
API_VERSION="apiVersion: spinnaker.io/v1alpha2"
;;
"armory")
OP_API_GROUP=spinnakerservices.spinnaker.armory.io
if [[ $SPIN_OP_VERSION == "latest" ]]; then SPIN_OP_VERSION=`curl -s https://github.com/armory-io/spinnaker-operator/releases/latest | cut -d'"' -f2 | awk '{gsub(".*/v","")}1'`; fi
OP_URL=https://github.com/armory-io/spinnaker-operator/releases/download/v${SPIN_OP_VERSION}/manifests.tgz
OP_IMAGE_BASE="armory/armory-operator"
API_VERSION="apiVersion: spinnaker.armory.io/v1alpha2"
;;
*) error "Invalid spinnaker flavor: $SPIN_FLAVOR. Valid values: armory, oss\n" ;;
esac
info "Spinnaker Operator Version: $SPIN_OP_VERSION\n"
info "Spinnaker flavor: $SPIN_FLAVOR\n"
if ! kubectl get ns >/dev/null 2>&1; then
error "Unable to list namespaces of the kubernetes cluster:\n$(kubectl get ns)"
fi
if ! command -v jq &>/dev/null; then
error "'jq' is not installed."
fi
change_patch_flavor
KUST_OUT=$(kubectl kustomize . 2>&1)
[[ $? != 0 ]] && error "\"kubectl kustomize .\" returned an error:\n$KUST_OUT\n"
if ! command -v watch &>/dev/null; then
HAS_WATCH=0
else
HAS_WATCH=1
fi
}
function find_current_operator_details() {
kubectl get crd "$OP_API_GROUP" >>"$OUT" 2>&1 && CRD_READY=1 || CRD_READY=0
CURRENT_OP_NS=$({ kubectl get deployment --all-namespaces -o json | jq -r '.items[] | select(.metadata.name == "spinnaker-operator") | .metadata.namespace'; } 2>>"$OUT")
[[ $(echo "$CURRENT_OP_NS" | wc -l | awk '{print $1}') -gt 1 ]] && error "More than one deployment named \"spinnaker-operator\" found in the cluster"
if [[ "$CURRENT_OP_NS" != "" ]] ; then
CURRENT_OP_IMAGE=$(kubectl -n $CURRENT_OP_NS get deployment spinnaker-operator -o json | jq -r '.spec.template.spec.containers | .[] | select(.name | contains("spinnaker-operator")) | .image')
else
CURRENT_OP_IMAGE=""
fi
}
function delete_operator() {
info "Deleting operator\n"
exec_kubectl_mutating "kubectl -n $SPIN_OP_NS delete deployment spinnaker-operator" handle_generic_kubectl_error
}
function check_operator_deployment() {
OP_READY_REP=$({ kubectl -n $SPIN_OP_NS get deployment spinnaker-operator -o json | jq '.status.readyReplicas'; } 2>>"$OUT")
[[ "$OP_READY_REP" == "1" ]] && OP_READY=1 || OP_READY=0
}
function deploy_operator() {
info "Deploying $SPIN_FLAVOR operator...\n"
{
rm -rf "$ROOT_DIR/operator/deploy"
cd "$ROOT_DIR/operator" || exit 1
} >>"$OUT" 2>&1
info "Downloading operator from $OP_URL\n"
{ curl -L $OP_URL | tar -xz; } >>"$OUT" 2>&1
exec_kubectl_mutating "kubectl apply -f $ROOT_DIR/operator/deploy/crds/" handle_generic_kubectl_error
if ! kubectl get ns "$SPIN_OP_NS" >/dev/null 2>&1; then
exec_kubectl_mutating "kubectl create ns $SPIN_OP_NS" handle_generic_kubectl_error
fi
if [ "$SPIN_OP_MODE" == "helm" ]; then
error "Helm deployment isn't support with this script right now, you should try the \"basic\" or \"cluster\" mode.\nOr you can try to deploy Helm Operator manually and set env var SPIN_OP_DEPLOY=0 to skip the overriding from this script.\n We will update helm suport in this script soon"
fi
exec_kubectl_mutating "kubectl -n $SPIN_OP_NS apply -f $ROOT_DIR/operator/deploy/operator/$SPIN_OP_MODE" handle_generic_kubectl_error
info "Waiting for operator to start."
check_operator_deployment
while [[ $OP_READY != 1 ]]; do
echo -ne "."
sleep 2
check_operator_deployment
done
echo -ne "Done\n"
cd "$ROOT_DIR" || exit 1
}
function assert_operator() {
[[ $SPIN_OP_DEPLOY = 0 ]] && info "Not manging operator\n" && return
find_current_operator_details
info "Resolved operator namespace: $SPIN_OP_NS\n"
check_operator_deployment
if [[ "$CURRENT_OP_NS" != "" && "$CURRENT_OP_NS" != "$SPIN_OP_NS" ]]; then
error "There is already a spinnaker operator in the cluster at namespace \"$CURRENT_OP_NS\", and doesn't match the desired namespace \"$SPIN_OP_NS\". Change desired namespace with env var \"export SPIN_OP_NS=\", or delete the existing operator, or set the env var SPIN_OP_DEPLOY=0 to ignore this error.\n"
elif [[ $CURRENT_OP_IMAGE != "" && ${CURRENT_OP_IMAGE//:*/} != "$OP_IMAGE_BASE" ]]; then
warn "There is a different operator in namespace \"$SPIN_OP_NS\" (expected: \"$OP_IMAGE_BASE\", actual: \"${CURRENT_OP_IMAGE//:*/}\"). Do you want to delete it? (y/n)\n"
read -r del_choice
[[ "$del_choice" != "y" ]] && exit 0
delete_operator
deploy_operator
elif [[ $CRD_READY == 0 || $OP_READY != 1 ]]; then
deploy_operator
fi
OP_IMAGE=$(kubectl -n $SPIN_OP_NS get deployment spinnaker-operator -o json | jq '.spec.template.spec.containers | .[] | select(.name | contains("spinnaker-operator")) | .image')
info "Operator version: $OP_IMAGE\n"
}
function deploy_secrets() {
SPIN_NS=$(grep "^namespace:" "$ROOT_DIR"/kustomization.yml | awk '{print $2}')
[[ "x$SPIN_NS" == "x" ]] && SPIN_NS=spinnaker
info "Resolved spinnaker namespace: $SPIN_NS\n"
info "Deploying secrets...\n"
if ! kubectl get ns "$SPIN_NS" >/dev/null 2>&1; then
exec_kubectl_mutating "kubectl create ns $SPIN_NS" handle_generic_kubectl_error
fi
if kubectl -n "$SPIN_NS" get secret spin-secrets > /dev/null 2>&1 ; then
exec_kubectl_mutating "kubectl -n $SPIN_NS delete secret spin-secrets" handle_generic_kubectl_error
fi
log "KUBE" "kubectl -n $SPIN_NS create secret generic spin-secrets [REDACTED]\n"
{
"$ROOT_DIR"/secrets/create-secrets.sh
} >>"$OUT" 2>&1
}
function handle_spin_deploy_error {
echo -ne "$ERR_OUTPUT" >>"$OUT"
if echo "$ERR_OUTPUT" | grep "SpinnakerService validation failed" >/dev/null 2>&1; then
PRETTY_ERR=$(echo "$ERR_OUTPUT" | sed -n -e '/SpinnakerService validation failed/,$p' | sed -e '/):.*/,$d')
else
PRETTY_ERR=$ERR_OUTPUT
fi
error "Error deploying spinnaker, see deploy_log.txt for full output:\n$PRETTY_ERR\n"
}
function deploy_spinnaker() {
info "Deploying spinnaker...\n"
exec_kubectl_mutating "kubectl -n $SPIN_NS apply -k $ROOT_DIR" handle_spin_deploy_error
info "Spinnaker deployed\n"
}
check_prerequisites
assert_operator
deploy_secrets
deploy_spinnaker
if [[ $SPIN_WATCH == 1 ]]; then
if [[ $HAS_WATCH == 1 ]]; then
watch "kubectl -n $SPIN_NS get spinsvc && echo "" && kubectl -n $SPIN_NS get pods"
else
info "=== Consider installing \"watch\" command to monitor installation progress"
kubectl -n $SPIN_NS get spinsvc && echo "" && kubectl -n $SPIN_NS get pods
fi
else
info "Skipping watch of Spinnaker "
fi