Build and publish the controller image in the CI (#380)

Fawad Khaliq · web-flow · commit 1f912cc4c348 · 2020-11-04T12:55:43.000-08:00
diff --git a/scripts/install-cert-manager.sh b/scripts/install-cert-manager.sh
@@ -6,6 +6,17 @@
 
 set -Eo pipefail
 
-CERT_MANAGER_VERSION="v0.14.3"
+DEFAULT_CERT_MANAGER_VERSION="v0.14.3"
 
-kubectl apply --validate=false -f https://github.com/jetstack/cert-manager/releases/download/${CERT_MANAGER_VERSION}/cert-manager.yaml
+check_is_installed kubectl "You can install kubectl with the helper scripts/install-kubectl.sh"
+
+__cert_manager_version="$1"
+if [ "z$__cert_manager_version" == "z" ]; then
+    __cert_manager_version=${CERT_MANAGER_VERSION:-$DEFAULT_CERT_MANAGER_VERSION}
+fi
+
+echo -n "installing cert-manager ... "
+__cert_manager_url="https://github.com/jetstack/cert-manager/releases/download/${__cert_manager_version}/cert-manager.yaml"
+echo -n "installing cert-manager from $__cert_manager_url ... "
+kubectl apply --validate=false -f $__cert_manager_url
+echo "ok."
diff --git a/scripts/lib/aws.sh b/scripts/lib/aws.sh
@@ -0,0 +1,32 @@
+#!/usr/bin/env bash
+
+AWS_CLI_VERSION=$(aws --version 2>&1 | cut -d/ -f2 | cut -d. -f1)
+
+# aws_check_credentials() calls the STS::GetCallerIdentity API call and
+# verifies that there is a local identity for running AWS commands
+aws_check_credentials() {
+    echo -n "checking AWS credentials ... "
+    aws sts get-caller-identity --query "Account" >/dev/null ||
+        ( echo "\nFATAL: No AWS credentials found. Please run \`aws configure\` to set up the CLI for your credentials." && exit 1 )
+    echo "ok."
+}
+
+aws_account_id() {
+    JSON=$( aws sts get-caller-identity --output json || exit 1 )
+    echo "${JSON}" | jq --raw-output ".Account"
+}
+
+ecr_login() {
+    echo -n "ecr login ... "
+    local __aws_region=$1
+    local __ecr_url=$2
+    local __err_msg="Failed ECR login. Please make sure you have IAM permissions to access ECR."
+    if [ $AWS_CLI_VERSION -gt 1 ]; then
+        ( aws ecr get-login-password --region $__aws_region | \
+		docker login --username AWS --password-stdin $__ecr_url ) ||
+		( echo "\n$__err_msg" && exit 1 )
+    else
+	    $( aws ecr get-login --no-include-email ) || ( echo "\n$__err_msg" && exit 1 ) 
+    fi
+    echo "ok."
+}
diff --git a/scripts/lib/common.sh b/scripts/lib/common.sh
@@ -35,6 +35,16 @@ is_installed() {
     fi
 }
 
+# vpc_id fetches the vpc id of the GitHub Actions runner/EC2 instance.
+# vpc id is needed for setting up AWS CloudMap namespaces
+vpc_id() {
+    local __md_url="http://169.254.169.254/latest/meta-data/network/interfaces"
+    local __macid=$( curl $__md_url/macs/ || exit 1 )
+    local __vpcid=$( curl $__md_url/macs/${macid}/vpc-id || exit 1 )
+    echo "$__vpcid"
+
+}
+
 DEFAULT_DEBUG_PREFIX="DEBUG: "
 
 # debug_msg prints out a supplied message if the DEBUG environs variable is
diff --git a/scripts/test-with-kind.sh b/scripts/test-with-kind.sh
@@ -10,10 +10,18 @@ SCRIPTS_DIR=$(cd "$(dirname "$0")" || exit 1; pwd)
 ROOT_DIR="$SCRIPTS_DIR/.."
 INT_TEST_DIR="$ROOT_DIR/test/integration"
 
+AWS_ACCOUNT_ID=${AWS_ACCOUNT_ID:-""}
+AWS_REGION=${AWS_REGION:-"us-west-2"}
+IMAGE_NAME=amazon/appmesh-controller
+ECR_URL=${AWS_ACCOUNT_ID}.dkr.ecr.${AWS_REGION}.amazonaws.com
+IMAGE=${ECR_URL}/${IMAGE_NAME}
+
+
 CLUSTER_NAME_BASE="test"
 K8S_VERSION="1.17"
 TMP_DIR=""
 
+source "$SCRIPTS_DIR/lib/aws.sh"
 source "$SCRIPTS_DIR/lib/common.sh"
 
 check_is_installed curl
@@ -36,21 +44,42 @@ function setup_kind_cluster {
 }
 
 function install_crds {
-    make install 
+    echo "installing CRDs ... "
+    make install
+    echo "ok."
 }
 
 function build_and_publish_controller {
-        echo "Not implemented"
+       echo -n "building and publishing appmesh controller  ... "
+       AWS_ACCOUNT=$AWS_ACCOUNT_ID AWS_REGION=$AWS_REGION make docker-build
+       AWS_ACCOUNT=$AWS_ACCOUNT_ID AWS_REGION=$AWS_REGION make docker-push
+       echo "ok."
 }
 
-function install_controller {
-        echo "Not implemented"
+function run_integration_tests {
+       echo "Not implemented"
 }
 
-function run_integration_tests {
-	echo "Not implemented"
+function clean_up {
+    if [ -v "$TMP_DIR" ]; then
+        "${SCRIPTS_DIR}"/delete-kind-cluster.sh -c "$TMP_DIR" || :
+    fi
+    return
 }
 
+trap "clean_up" EXIT
+
+aws_check_credentials
+
+if [ -z "$AWS_ACCOUNT_ID" ]; then
+    AWS_ACCOUNT_ID=$( aws_account_id )
+fi
+
+ecr_login $AWS_REGION $ECR_URL
+
+# Build and publish the controller image
+build_and_publish_controller
+
 setup_kind_cluster
 export KUBECONFIG="${TMP_DIR}/kubeconfig"
 
@@ -60,6 +89,5 @@ install_crds
 # Install cert-manager
 $SCRIPTS_DIR/install-cert-manager.sh
 
-
 # Show the installed CRDs
 kubectl get crds
