-
Notifications
You must be signed in to change notification settings - Fork 54
/
Copy pathMakefile
131 lines (108 loc) · 4.24 KB
/
Makefile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
CURRENT_WORKING_DIR=$(shell pwd)
WHO_AM_I=$(shell whoami)
TIMESTAMP=$(shell date)
KUBESEAL_VERSION = v0.12.1
YQ_VERSION = 3.3.2
pad=$(printf '%0.1s' "-"{1..80})
define print-prompt =
printf "\e[96m➜ \e[0m"
endef
define print-header =
printf "\n%-50s\n" $1 | tr ' ~' '- '
endef
ccloud:
@echo "Installing ccloud"
@curl -L -s --http1.1 https://cnfl.io/ccloud-cli | sh -s -- -b .
@sudo install -m 755 ccloud /usr/local/bin/ccloud
@rm -f ccloud
@echo ""
kubeseal:
@echo "Installing kubeseal"
@wget -q https://github.com/bitnami-labs/sealed-secrets/releases/download/${KUBESEAL_VERSION}/kubeseal-darwin-amd64
@sudo install -m 755 kubeseal-darwin-amd64 /usr/local/bin/kubeseal
@rm -f kubeseal-darwin-amd64
@echo ""
yq:
@echo "Installing yq"
@wget -q https://github.com/mikefarah/yq/releases/download/${YQ_VERSION}/yq_darwin_amd64
@sudo install -m 755 yq_darwin_amd64 /usr/local/bin/yq
@rm -f yq_darwin_amd64
@echo ""
install-deps: ccloud kubeseal yq
@brew bundle
cluster:
@$(call print-header,"creating new k3d cluster")
@$(call print-prompt)
k3d cluster create streaming-ops --servers 4 --volume $(PWD)/.data:/var/lib/host --wait
destroy-cluster:
@$(call print-header,"deleting k3d cluster")
@$(call print-prompt)
-(k3d cluster list | grep streaming-ops) && k3d cluster delete streaming-ops
install-bitnami-secret-controller:
@$(call print-header,"Installing bitnami secret controller")
@$(call print-prompt)
kubectl apply -f https://github.com/bitnami-labs/sealed-secrets/releases/download/v0.12.4/controller.yaml
wait-for-secret-controller:
@$(call print-header,"Waiting for secret controller")
@$(call print-prompt)
./scripts/wait-for-secret-controller.sh
install-flux-%:
@$(call print-header,"Installing flux")
@$(call print-prompt)
ENVIRONMENT=$* ./scripts/flux-init.sh
FLUX_KEY=$(shell fluxctl identity --k8s-fwd-ns flux)
create-secrets-%:
@$(call print-header,"Creating secrets")
@$(call print-prompt)
# TODO Rename these secrets, they are DB specific, not connect specific.. connect just uses them
kubectl create secret generic connect-operator-secrets --namespace=default --from-env-file=./secrets/example-connect-operator-secrets.props --dry-run=client -o yaml > secrets/local-toseal/$*/default-connect-operator-secrets.yaml && echo "ready to seal: secrets/local-toseal/$*/default-connect-operator-secrets.yaml"
@printf "\n"
@$(call print-prompt)
kubectl create secret generic cc.ccloud-secrets --namespace=default --from-env-file=$(CCLOUD_SECRET_FILE) --dry-run=client -o yaml > secrets/local-toseal/$*/default-cc.ccloud-secrets.yaml && echo "ready to seal: secrets/local-toseal/$*/default-cc.ccloud-secrets.yaml"
seal-secrets-%:
@$(call print-header,"Sealing secrets")
@$(call print-prompt)
./scripts/seal-secrets.sh $*
get-public-key-%:
@$(call print-header,"Fetching bitnami controller public key")
@$(call print-prompt)
kubeseal --fetch-cert > secrets/keys/$*.crt
gh-deploy-key:
ifndef GH_TOKEN
$(error GH_TOKEN is not set)
endif
@$(call print-header,"deploying flux deploy key to GitHub")
@$(call print-prompt)
@KEY="$(FLUX_KEY)" NAME="streaming-ops-flux" ./scripts/create-deploy-key.sh
sync:
@$(call print-header,"Flux sync")
@$(call print-prompt)
fluxctl sync --k8s-fwd-ns flux
demo-%:
ifndef GH_TOKEN
$(error GH_TOKEN is not set)
endif
@-make --no-print-directory destroy-cluster
@sleep 30
@make --no-print-directory cluster
@make --no-print-directory install-bitnami-secret-controller
@make --no-print-directory wait-for-secret-controller
@make --no-print-directory get-public-key-$*
@make --no-print-directory create-secrets-$*
@make --no-print-directory seal-secrets-$*
@$(call print-header,"pushing new secrets to git repo")
git add secrets/sealed/$*/.
git commit -m "demo-$*: $(WHO_AM_I): $(TIMESTAMP)"'\n\n[ci skip]'
git push origin main
@make --no-print-directory install-flux-dev WAIT_FOR_DEPLOY=false
@make --no-print-directory gh-deploy-key
prompt:
@$(call print-header,"Launching util pod")
@$(call print-prompt)
kubectl run --tty -i --rm util --image=cnfldemos/util:0.0.5 --restart=Never --serviceaccount=in-cluster-sa --namespace=default
test-%:
@$(call print-header,"Testing $* with Kustomize")
@$(call print-prompt)
kustomize build environments/$* > .test/$*.yaml
@echo
@echo The output can be found at .test/$*.yaml