use the domain or first tenant to create the 443 listener

stevethomas · stevethomas · commit aaf37c41f01e · 2024-11-12T17:22:57.000+10:00
diff --git a/src/Commands/SyncComputeCommand.php b/src/Commands/SyncComputeCommand.php
@@ -15,11 +15,18 @@ class SyncComputeCommand extends Command
     protected array $steps = [
         Steps\Compute\SyncLaunchTemplateStep::class,
         Steps\Compute\SyncApplicationLoadBalancerStep::class,
-        Steps\Compute\AttachSslCertificateToLoadBalancerListenerStep::class,
-        Steps\Compute\AttachMultitenancySslCertificateToLoadBalancerListenerStep::class,
         Steps\Compute\SyncTargetGroupStep::class,
         Steps\Compute\SyncListenerOnPort80Step::class,
+
+        // domain
         Steps\Compute\SyncListenerOnPort443Step::class,
+        Steps\Compute\AttachSslCertificateToLoadBalancerListenerStep::class,
+
+        // multitenancy
+        Steps\Compute\SyncMultitenancyListenerOnPort443Step::class,
+        Steps\Compute\AttachMultitenancySslCertificateToLoadBalancerListenerStep::class,
+
+        // transcoder
         Steps\Compute\SyncElasticTranscoderPipelineStep::class,
         Steps\Compute\SyncElasticTranscoderPresetStep::class,
     ];
diff --git a/src/Steps/Compute/SyncListenerOnPort443Step.php b/src/Steps/Compute/SyncListenerOnPort443Step.php
@@ -5,12 +5,13 @@
 use Codinglabs\Yolo\Aws;
 use Illuminate\Support\Arr;
 use Codinglabs\Yolo\Helpers;
+use Codinglabs\Yolo\Manifest;
 use Codinglabs\Yolo\AwsResources;
-use Codinglabs\Yolo\Contracts\Step;
 use Codinglabs\Yolo\Enums\StepResult;
+use Codinglabs\Yolo\Contracts\ExecutesDomainStep;
 use Codinglabs\Yolo\Exceptions\ResourceDoesNotExistException;
 
-class SyncListenerOnPort443Step implements Step
+class SyncListenerOnPort443Step implements ExecutesDomainStep
 {
     public function __invoke(array $options): StepResult
     {
@@ -23,15 +24,19 @@ public function __invoke(array $options): StepResult
                     'LoadBalancerArn' => AwsResources::loadBalancer()['LoadBalancerArn'],
                     'Protocol' => 'HTTPS',
                     'Port' => 443,
-                    'Certificates' => [], // todo: cannot create this without any certificates
+                    'Certificates' => [
+                        [
+                            'CertificateArn' => AwsResources::certificate(Manifest::apex())['CertificateArn'],
+                        ],
+                    ],
                     'DefaultActions' => [
                         [
                             'Type' => 'forward',
                             'TargetGroupArn' => AwsResources::targetGroup()['TargetGroupArn'],
                         ],
                     ],
                     ...Aws::tags([
-                        'Name' => Helpers::keyedResourceName(exclusive: false)
+                        'Name' => Helpers::keyedResourceName('https', exclusive: false)
                     ]),
                 ]);
 
diff --git a/src/Steps/Compute/SyncListenerOnPort80Step.php b/src/Steps/Compute/SyncListenerOnPort80Step.php
@@ -30,7 +30,7 @@ public function __invoke(array $options): StepResult
                         ],
                     ],
                     ...Aws::tags([
-                        'Name' => Helpers::keyedResourceName(exclusive: false)
+                        'Name' => Helpers::keyedResourceName('http', exclusive: false)
                     ]),
                 ]);
 
diff --git a/src/Steps/Compute/SyncMultitenancyListenerOnPort443Step.php b/src/Steps/Compute/SyncMultitenancyListenerOnPort443Step.php
@@ -0,0 +1,49 @@
+<?php
+
+namespace Codinglabs\Yolo\Steps\Compute;
+
+use Codinglabs\Yolo\Aws;
+use Illuminate\Support\Arr;
+use Codinglabs\Yolo\Helpers;
+use Codinglabs\Yolo\Manifest;
+use Codinglabs\Yolo\AwsResources;
+use Codinglabs\Yolo\Enums\StepResult;
+use Codinglabs\Yolo\Contracts\ExecutesMultitenancyStep;
+use Codinglabs\Yolo\Exceptions\ResourceDoesNotExistException;
+
+class SyncMultitenancyListenerOnPort443Step implements ExecutesMultitenancyStep
+{
+    public function __invoke(array $options): StepResult
+    {
+        try {
+            AwsResources::loadBalancerListenerOnPort(443);
+            return StepResult::SYNCED;
+        } catch (ResourceDoesNotExistException) {
+            if (! Arr::get($options, 'dry-run')) {
+                Aws::elasticLoadBalancingV2()->createListener([
+                    'LoadBalancerArn' => AwsResources::loadBalancer()['LoadBalancerArn'],
+                    'Protocol' => 'HTTPS',
+                    'Port' => 443,
+                    'Certificates' => [
+                        [
+                            'CertificateArn' => AwsResources::certificate(Manifest::tenants()[0]['apex'])['CertificateArn'],
+                        ],
+                    ],
+                    'DefaultActions' => [
+                        [
+                            'Type' => 'forward',
+                            'TargetGroupArn' => AwsResources::targetGroup()['TargetGroupArn'],
+                        ],
+                    ],
+                    ...Aws::tags([
+                        'Name' => Helpers::keyedResourceName(exclusive: false)
+                    ]),
+                ]);
+
+                return StepResult::CREATED;
+            }
+
+            return StepResult::WOULD_CREATE;
+        }
+    }
+}
