corteza/server/pkg/provision/config.go

package provision

import (
	"context"
	"fmt"
	"github.com/cortezaproject/corteza/server/pkg/dal"
	"path/filepath"
	"strings"

	"github.com/cortezaproject/corteza/server/pkg/rbac"

	"github.com/cortezaproject/corteza/server/pkg/envoy"
	"github.com/cortezaproject/corteza/server/pkg/envoy/directory"
	"github.com/cortezaproject/corteza/server/pkg/envoy/resource"
	es "github.com/cortezaproject/corteza/server/pkg/envoy/store"
	"github.com/cortezaproject/corteza/server/pkg/envoy/yaml"
	"github.com/cortezaproject/corteza/server/store"
	"go.uber.org/zap"
)

// imports configuration files from path(s)
//
// paths can be colon delimited list of absolute or relative paths and/or with glob pattern
func importConfig(ctx context.Context, log *zap.Logger, s store.Storer, paths string) error {
	canImportFull, err := canImportConfig(ctx, s)
	if !canImportFull {
		log.Info("already provisioned, skipping full config import")
	} else if err != nil {
		return fmt.Errorf("failed to check if config import can be done: %w", err)
	}

	var (
		yd = yaml.Decoder()
		nn = make([]resource.Interface, 0, 200)
		// @todo
		se  = es.NewStoreEncoder(s, dal.Service(), &es.EncoderConfig{OnExisting: resource.MergeLeft})
		bld = envoy.NewBuilder(se)

		sources = make([]string, 0, 16)
	)

	// verify all paths before doing the actual import
	for _, path := range strings.Split(paths, ":") {
		if aux, err := filepath.Glob(path); err != nil {
			return err
		} else {
			sources = append(sources, aux...)
		}
	}

	if canImportFull {
		log.Info("importing all configs", zap.String("paths", paths))
		for _, path := range sources {
			log.Info("provisioning from path", zap.String("path", path))
			if mm, err := directory.Decode(ctx, path, yd); err != nil {
				return err
			} else {
				nn = append(nn, mm...)
			}
		}
	} else {
		nn, err = collectUnimportedConfigs(ctx, log, s, sources, yd)
		if err != nil {
			return err
		}
	}

	if g, err := bld.Build(ctx, nn...); err != nil {
		return err
	} else if err = envoy.Encode(ctx, g, se); err != nil {
		return err
	}

	return nil
}

// canImportConfig checks state of the store and
// verifies if Corteza should be provisioned (ie config should be imported)
func canImportConfig(ctx context.Context, s store.Storer) (bool, error) {
	rr, _, err := store.SearchRbacRules(ctx, s, rbac.RuleFilter{})
	return len(rr) == 0, err
}

func collectUnimportedConfigs(ctx context.Context, log *zap.Logger, s store.Storer, sources []string, dec directory.Decoder) (nn []resource.Interface, err error) {
	var (
		searchPartialDirectories = []uConfig{
			{dir: "000_base", fn: nil},
			{dir: "002_templates", fn: provisionPartialTemplates},
			{dir: "003_auth", fn: provisionPartialAuthClients},
			{dir: "200_federation", fn: nil},
			{dir: "300_automation", fn: nil},
		}
	)

	return nn, store.Tx(ctx, s, func(ctx context.Context, s store.Storer) (err error) {
		for _, d := range searchPartialDirectories {
			// first, check if we need to import at all
			if d.fn != nil && !d.fn(ctx, s, log) {
				log.Debug("skipping partial config import, no changes", zap.String("dir", d.dir))
				continue
			}

			if list, e := decodeDirectory(ctx, sources, d.dir, dec); e != nil {
				return fmt.Errorf("failed to decode  configs: %w", err)
			} else if len(list) == 0 {
				log.Error("failed to execute partial config import, directory not found or no configs", zap.String("dir", d.dir))
				return
			} else {
				log.Debug("partial import ready", zap.String("dir", d.dir))
				nn = append(nn, list...)
			}
		}

		return
	})
}

func hasSourceDir(sources []string, dir string) (string, bool) {
	for _, source := range sources {
		if strings.HasSuffix(source, dir) {
			return source, true
		}
	}
	return "", false
}

func decodeDirectory(ctx context.Context, sources []string, dir string, dec directory.Decoder) (res []resource.Interface, err error) {
	if source, has := hasSourceDir(sources, dir); has {
		res, err = directory.Decode(ctx, source, dec)
	}

	return
}