-
Notifications
You must be signed in to change notification settings - Fork 180
/
backend.go
119 lines (95 loc) · 2.56 KB
/
backend.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
package backends
import (
"context"
"fmt"
"os"
"github.com/araddon/gou"
"github.com/cloudfoundry/bbl-state-resource/storage"
"github.com/lytics/cloudstorage"
"github.com/lytics/cloudstorage/awss3"
"github.com/mholt/archiver"
)
type Config struct {
AWSAccessKeyID string
AWSSecretAccessKey string
GCPServiceAccountKey string
Bucket string
Region string
Dest string
}
type Provider interface {
Client(string) (Backend, error)
}
func NewProvider() Provider {
return provider{}
}
type provider struct{}
func (p provider) Client(iaas string) (Backend, error) {
switch iaas {
case "aws":
return cloudStorageBackend{}, nil
case "gcp":
return gcsStateBackend{}, nil
default:
return nil, fmt.Errorf("remote state storage is unsupported for %s environments", iaas)
}
}
type Backend interface {
GetState(Config, string) error
}
type cloudStorageBackend struct{}
func (c cloudStorageBackend) GetState(config Config, name string) error {
awsAuthSettings := make(gou.JsonHelper)
awsAuthSettings[awss3.ConfKeyAccessKey] = config.AWSAccessKeyID
awsAuthSettings[awss3.ConfKeyAccessSecret] = config.AWSSecretAccessKey
csConfig := cloudstorage.Config{
Type: awss3.StoreType,
AuthMethod: awss3.AuthAccessKey,
Bucket: config.Bucket,
Settings: awsAuthSettings,
Region: config.Region,
}
store, err := cloudstorage.NewStore(&csConfig)
if err != nil {
return err
}
tarball, err := store.Get(context.Background(), name)
if err != nil {
return err
}
stateTar, err := tarball.Open(cloudstorage.ReadOnly)
if err != nil {
return err
}
err = archiver.TarGz.Read(stateTar, config.Dest)
if err != nil {
return fmt.Errorf("unable to untar state dir: %s", err)
}
return nil
}
type gcsStateBackend struct{}
func (g gcsStateBackend) GetState(config Config, name string) error {
key, err := g.getGCPServiceAccountKey(config.GCPServiceAccountKey)
if err != nil {
return fmt.Errorf("could not read GCP service account key: %s", err)
}
gcsClient, err := storage.NewStorageClient(key, name, config.Bucket)
if err != nil {
return fmt.Errorf("could not create GCS client: %s", err)
}
_, err = gcsClient.Download(config.Dest)
if err != nil {
return fmt.Errorf("downloading remote state from GCS: %s", err)
}
return nil
}
func (g gcsStateBackend) getGCPServiceAccountKey(key string) (string, error) {
if _, err := os.Stat(key); err != nil {
return key, nil
}
keyBytes, err := os.ReadFile(key)
if err != nil {
return "", fmt.Errorf("Reading key: %v", err)
}
return string(keyBytes), nil
}