feat: automatically generate, create and update library repos (jsonnet-libs#39)

The last bits to automate all of this through Github Actions:

* Create repositories for all libraries with Terraform
* Per library:
  * Clone the repository
  * Remove all but .git
  * Generate the library and docs
  * Add, Commit and Push

Renames s/k8s-alpha/k8s-libsonnet and takes the common approach of the -libsonnet suffix as discussed/voted for in the #tanka channel on Grafana's community Slack.

Author: Duologic

.github/workflows/main.yml

@@ -1,34 +1,110 @@
-# Generated by `make configure`
+# Generated by `make configure`, please do not edit manually.
 "jobs":
-  "libs_cert-manager":
-    "name": "Generate libs/cert-manager Jsonnet library and docs"
+  "cert-manager":
+    "name": "Generate cert-manager Jsonnet library and docs"
+    "needs": "terraform"
     "runs-on": "ubuntu-latest"
     "steps":
     - "uses": "actions/checkout@v2"
-    - "run": "make run INPUT_DIR=${PWD}/libs/cert-manager"
-  "libs_cnrm":
-    "name": "Generate libs/cnrm Jsonnet library and docs"
+    - "if": "${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": |
+        mkdir ~/.ssh
+        echo "${{ secrets.DEPLOY_KEY }}" > ~/.ssh/id_rsa
+        chmod 600 ~/.ssh/id_rsa
+        export GEN_COMMIT=1
+    - "run": "make build libs/cert-manager"
+  "cnrm":
+    "name": "Generate cnrm Jsonnet library and docs"
+    "needs": "terraform"
     "runs-on": "ubuntu-latest"
     "steps":
     - "uses": "actions/checkout@v2"
-    - "run": "make run INPUT_DIR=${PWD}/libs/cnrm"
-  "libs_crossplane":
-    "name": "Generate libs/crossplane Jsonnet library and docs"
+    - "if": "${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": |
+        mkdir ~/.ssh
+        echo "${{ secrets.DEPLOY_KEY }}" > ~/.ssh/id_rsa
+        chmod 600 ~/.ssh/id_rsa
+        export GEN_COMMIT=1
+    - "run": "make build libs/cnrm"
+  "crossplane":
+    "name": "Generate crossplane Jsonnet library and docs"
+    "needs": "terraform"
     "runs-on": "ubuntu-latest"
     "steps":
     - "uses": "actions/checkout@v2"
-    - "run": "make run INPUT_DIR=${PWD}/libs/crossplane"
-  "libs_istio":
-    "name": "Generate libs/istio Jsonnet library and docs"
+    - "if": "${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": |
+        mkdir ~/.ssh
+        echo "${{ secrets.DEPLOY_KEY }}" > ~/.ssh/id_rsa
+        chmod 600 ~/.ssh/id_rsa
+        export GEN_COMMIT=1
+    - "run": "make build libs/crossplane"
+  "debugging":
+    "name": "Debugging Github Action values"
+    "runs-on": "ubuntu-latest"
+    "steps":
+    - "run": "echo isMaster? ${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+    - "run": "echo isPR? ${{ github.ref != 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+    - "run": "echo ${{ github.repository }}"
+    - "run": "echo ${{ github.ref }}"
+    - "run": "echo ${{ github.event_name }}"
+  "istio":
+    "name": "Generate istio Jsonnet library and docs"
+    "needs": "terraform"
+    "runs-on": "ubuntu-latest"
+    "steps":
+    - "uses": "actions/checkout@v2"
+    - "if": "${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": |
+        mkdir ~/.ssh
+        echo "${{ secrets.DEPLOY_KEY }}" > ~/.ssh/id_rsa
+        chmod 600 ~/.ssh/id_rsa
+        export GEN_COMMIT=1
+    - "run": "make build libs/istio"
+  "k8s":
+    "name": "Generate k8s Jsonnet library and docs"
+    "needs": "terraform"
     "runs-on": "ubuntu-latest"
     "steps":
     - "uses": "actions/checkout@v2"
-    - "run": "make run INPUT_DIR=${PWD}/libs/istio"
-  "libs_k8s-alpha":
-    "name": "Generate libs/k8s-alpha Jsonnet library and docs"
+    - "if": "${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": |
+        mkdir ~/.ssh
+        echo "${{ secrets.DEPLOY_KEY }}" > ~/.ssh/id_rsa
+        chmod 600 ~/.ssh/id_rsa
+        export GEN_COMMIT=1
+    - "run": "make build libs/k8s"
+  "terraform":
+    "name": "create repositories"
     "runs-on": "ubuntu-latest"
     "steps":
     - "uses": "actions/checkout@v2"
-    - "run": "make run INPUT_DIR=${PWD}/libs/k8s-alpha"
+    - "uses": "zendesk/setup-jsonnet@v7"
+    - "run": "make tf/main.tf.json"
+    - "uses": "hashicorp/setup-terraform@v1"
+      "with":
+        "cli_config_credentials_token": "${{ secrets.TF_API_TOKEN }}"
+    - "env":
+        "GITHUB_TOKEN": "${{ secrets.GITHUB_TOKEN }}"
+        "TF_IN_AUTOMATION": "1"
+      "run": "terraform init"
+      "working-directory": "tf"
+    - "env":
+        "GITHUB_TOKEN": "${{ secrets.GITHUB_TOKEN }}"
+        "TF_IN_AUTOMATION": "1"
+      "run": "terraform validate -no-color"
+      "working-directory": "tf"
+    - "env":
+        "GITHUB_TOKEN": "${{ secrets.GITHUB_TOKEN }}"
+        "TF_IN_AUTOMATION": "1"
+      "if": "${{ github.ref != 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": "terraform plan -no-color"
+      "working-directory": "tf"
+    - "env":
+        "GITHUB_TOKEN": "${{ secrets.GITHUB_TOKEN }}"
+        "TF_IN_AUTOMATION": "1"
+      "if": "${{ github.ref == 'refs/heads/master' && github.repository == 'jsonnet-libs/k8s' }}"
+      "run": "terraform apply -no-color -auto-approve"
+      "working-directory": "tf"
 "on":
 - "push"

.gitignore

@@ -1,11 +1,10 @@
-swagger.json
-jsonnetfile.json
-jsonnetfile.lock.json
-main.jsonnet
-spec.json
-vendor
-k8s
-.vscode/
+# k8s-gen binary name
+./k8s
+
+# really want to make sure I don't commit that
+id_rsa
+
+# default output directory
 gen/
 
 # autogenerated

Dockerfile

@@ -1,9 +1,4 @@
-FROM bitnami/kubectl:1.21.1 as kubectl
-FROM rancher/k3s:v1.21.1-k3s1 as k3s
-FROM mikefarah/yq:4.9.3 as yq2
-FROM jsonnetlibs/docsonnet:0.0.1 as docsonnet
-
-FROM golang:1.16.4 as base
+FROM golang:1.16 as base
 
 ENV GO111MODULE=on
 WORKDIR /app
@@ -22,27 +17,27 @@ RUN CGO_ENABLED=0 GOOS=linux GOARCH=amd64 \
         -ldflags='-s -w -extldflags "-static"' \
         -o k8s-gen .
 
-FROM golang:1.16.4-alpine3.12 as jsonnet
+FROM golang:1.16-alpine3.14 as jsonnet
 
 RUN apk add --no-cache git
 RUN go get github.com/google/go-jsonnet/cmd/jsonnet
 
-FROM alpine:3.12
+FROM alpine:3.14
 
 WORKDIR /app
 
+RUN apk add --no-cache bash curl git
+
 ENV KUBECONFIG=/app/kubeconfig/kube-config.yaml
 RUN chmod a+w /app
 
-COPY --from=kubectl /opt/bitnami/kubectl/bin/kubectl /usr/local/bin/
-COPY --from=k3s /bin/k3s /usr/local/bin/
-COPY --from=yq2 /usr/bin/yq /usr/local/bin/yq2
-COPY --from=docsonnet /usr/local/bin/docsonnet /usr/local/bin/
+COPY --from=mikefarah/yq:4.9.6 /usr/bin/yq /usr/local/bin/yq2
+COPY --from=bitnami/kubectl:1.21.2 /opt/bitnami/kubectl/bin/kubectl /usr/local/bin/
+COPY --from=rancher/k3s:v1.21.2-k3s1 /bin/k3s /usr/local/bin/
+COPY --from=jsonnetlibs/docsonnet:0.0.3 /usr/local/bin/docsonnet /usr/local/bin/
 COPY --from=builder /app/k8s-gen /usr/local/bin/
 COPY --from=jsonnet /go/bin/jsonnet /usr/local/bin/
 
-RUN apk add --no-cache bash curl
-
 COPY scripts .
 COPY jsonnet jsonnet
 COPY LICENSE .

Makefile

@@ -1,46 +1,51 @@
-.PHONY: configure debug run build test push push-image
-
 IMAGE_NAME ?= k8s-gen
 IMAGE_PREFIX ?= jsonnetlibs
-IMAGE_TAG ?= 0.0.1
+IMAGE_TAG ?= 0.0.3
 
-INPUT_DIR ?= ${PWD}/libs/k8s-alpha
 OUTPUT_DIR ?= ${PWD}/gen
-
-ABS_INPUT_DIR := $(shell realpath $(INPUT_DIR))
 ABS_OUTPUT_DIR := $(shell realpath $(OUTPUT_DIR))
 
-LIBS=$(shell echo libs/* | sed "s/ /,/g")
+IMPORTS=$(shell find libs -name config.jsonnet | xargs -I {} echo "(import '{}'),")
+
+.DEFAULT_GOAL: default
+default:
 
 ## Requires go-jsonnet for -c flag
-configure:
-	jsonnet -c -m . -A "libs=$(LIBS)" -S jsonnet/github_action.jsonnet
+.PHONY: .github/workflows/main.yml
+.github/workflows/main.yml:
+	jsonnet -c -m . -S -J . --tla-code "libs=[$(IMPORTS)]" jsonnet/github_action.jsonnet
+
+## Requires go-jsonnet for -c flag
+.PHONY: tf/main.tf.json
+tf/main.tf.json:
+	jsonnet -c -m . -S -J . --tla-code "libs=[$(IMPORTS)]" jsonnet/terraform.jsonnet
+
+clean:
+	rm -f .github/workflows/main.yml:
+	rm -f tf/main.tf.json
+
+configure: clean .github/workflows/main.yml tf/main.tf.json
 
 debug: build
-	mkdir -p $(ABS_OUTPUT_DIR) && \
-	DEBUG=true bash bin/docker.sh \
-		-v $(ABS_INPUT_DIR):/config \
-		-v $(ABS_OUTPUT_DIR):/output \
-		$(IMAGE_PREFIX)/$(IMAGE_NAME):$(IMAGE_TAG)
+	make $@ DEBUG=true
 
-run: build
+all: build libs/*
+
+libs/*:
 	mkdir -p $(ABS_OUTPUT_DIR) && \
 	bash bin/docker.sh \
-		-v $(ABS_INPUT_DIR):/config \
+		-v $(shell realpath $@):/config \
 		-v $(ABS_OUTPUT_DIR):/output \
+		-e GEN_COMMIT=${GEN_COMMIT} \
 		$(IMAGE_PREFIX)/$(IMAGE_NAME):$(IMAGE_TAG) /config /output
 
-all:
-	bash bin/all.sh $(ABS_OUTPUT_DIR)
-
-
 build:
 	docker build -t $(IMAGE_PREFIX)/$(IMAGE_NAME):$(IMAGE_TAG) .
 
-test: build
-
-push: build test push-image
+push: build push-image
 
 push-image:
 	docker push $(IMAGE_PREFIX)/$(IMAGE_NAME):$(IMAGE_TAG)
 	docker push $(IMAGE_PREFIX)/$(IMAGE_NAME):latest
+
+.PHONY: clean configure debug run all libs/* build push push-image