2023-07-26 17:29:03 +02:00
|
|
|
/*
|
|
|
|
Copyright (c) Edgeless Systems GmbH
|
|
|
|
SPDX-License-Identifier: AGPL-3.0-only
|
|
|
|
*/
|
|
|
|
|
|
|
|
package cmd
|
|
|
|
|
|
|
|
import (
|
|
|
|
"errors"
|
|
|
|
"fmt"
|
|
|
|
|
|
|
|
"github.com/edgelesssys/constellation/v2/cli/internal/terraform"
|
|
|
|
"github.com/edgelesssys/constellation/v2/cli/internal/upgrade"
|
|
|
|
"github.com/edgelesssys/constellation/v2/internal/api/attestationconfigapi"
|
|
|
|
"github.com/edgelesssys/constellation/v2/internal/cloud/cloudprovider"
|
|
|
|
"github.com/edgelesssys/constellation/v2/internal/config"
|
2023-08-04 13:53:51 +02:00
|
|
|
"github.com/edgelesssys/constellation/v2/internal/constants"
|
2023-07-26 17:29:03 +02:00
|
|
|
"github.com/edgelesssys/constellation/v2/internal/file"
|
|
|
|
"github.com/spf13/afero"
|
|
|
|
"github.com/spf13/cobra"
|
|
|
|
)
|
|
|
|
|
|
|
|
func upgradeRequiresIAMMigration(provider cloudprovider.Provider) bool {
|
|
|
|
switch provider {
|
|
|
|
default:
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func newIAMUpgradeCmd() *cobra.Command {
|
|
|
|
cmd := &cobra.Command{
|
|
|
|
Use: "upgrade",
|
|
|
|
Short: "Find and apply upgrades to your IAM profile",
|
|
|
|
Long: "Find and apply upgrades to your IAM profile.",
|
|
|
|
Args: cobra.ExactArgs(0),
|
|
|
|
}
|
|
|
|
cmd.AddCommand(newIAMUpgradeApplyCmd())
|
|
|
|
return cmd
|
|
|
|
}
|
|
|
|
|
|
|
|
func newIAMUpgradeApplyCmd() *cobra.Command {
|
|
|
|
cmd := &cobra.Command{
|
|
|
|
Use: "apply",
|
|
|
|
Short: "Apply an upgrade to an IAM profile",
|
|
|
|
Long: "Apply an upgrade to an IAM profile.",
|
|
|
|
Args: cobra.NoArgs,
|
|
|
|
RunE: runIAMUpgradeApply,
|
|
|
|
}
|
2023-08-04 13:53:51 +02:00
|
|
|
cmd.Flags().BoolP("yes", "y", false, "run upgrades without further confirmation")
|
2023-07-26 17:29:03 +02:00
|
|
|
return cmd
|
|
|
|
}
|
|
|
|
|
|
|
|
func runIAMUpgradeApply(cmd *cobra.Command, _ []string) error {
|
|
|
|
force, err := cmd.Flags().GetBool("force")
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("parsing force argument: %w", err)
|
|
|
|
}
|
|
|
|
fileHandler := file.NewHandler(afero.NewOsFs())
|
|
|
|
configFetcher := attestationconfigapi.NewFetcher()
|
2023-08-04 13:53:51 +02:00
|
|
|
conf, err := config.New(fileHandler, constants.ConfigFilename, configFetcher, force)
|
2023-07-26 17:29:03 +02:00
|
|
|
var configValidationErr *config.ValidationError
|
|
|
|
if errors.As(err, &configValidationErr) {
|
|
|
|
cmd.PrintErrln(configValidationErr.LongMessage())
|
|
|
|
}
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
2023-08-16 09:59:32 +02:00
|
|
|
|
|
|
|
upgradeID := generateUpgradeID(upgradeCmdKindIAM)
|
2023-08-04 13:53:51 +02:00
|
|
|
iamMigrateCmd, err := upgrade.NewIAMMigrateCmd(cmd.Context(), constants.TerraformIAMWorkingDir, constants.UpgradeDir, upgradeID, conf.GetProvider(), terraform.LogLevelDebug)
|
2023-07-26 17:29:03 +02:00
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("setting up IAM migration command: %w", err)
|
|
|
|
}
|
|
|
|
|
|
|
|
log, err := newCLILogger(cmd)
|
|
|
|
if err != nil {
|
|
|
|
return fmt.Errorf("setting up logger: %w", err)
|
|
|
|
}
|
|
|
|
migrator := &tfMigrationClient{log}
|
|
|
|
|
|
|
|
yes, err := cmd.Flags().GetBool("yes")
|
|
|
|
if err != nil {
|
|
|
|
return err
|
|
|
|
}
|
2023-08-16 09:59:32 +02:00
|
|
|
if err := migrator.applyMigration(cmd, constants.UpgradeDir, file.NewHandler(afero.NewOsFs()), iamMigrateCmd, yes); err != nil {
|
2023-07-26 17:29:03 +02:00
|
|
|
return fmt.Errorf("applying IAM migration: %w", err)
|
|
|
|
}
|
2023-08-16 09:59:32 +02:00
|
|
|
|
2023-07-26 17:29:03 +02:00
|
|
|
cmd.Println("IAM profile successfully applied.")
|
|
|
|
return nil
|
|
|
|
}
|