bazel: place Terraform provider binaries in local registry path on devbuild (#2714)

Signed-off-by: Daniel Weiße <dw@edgeless.systems>
This commit is contained in:
Daniel Weiße 2023-12-14 08:18:48 +01:00 committed by GitHub
parent fecb1f3e6c
commit 9a4e96905f
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with 52 additions and 12 deletions

View File

@ -6,6 +6,7 @@ sh_template(
data = [
":devbuild_cli_edition",
"//bazel/release:container_sums",
"//bazel/settings:tag",
"//bootstrapper/cmd/bootstrapper:bootstrapper_patched",
"//cli:cli_edition_host",
"//debugd/cmd/cdbg:cdbg_host",
@ -25,8 +26,23 @@ sh_template(
"@@TERRAFORM_PROVIDER@@": "$(rootpath //terraform-provider-constellation:tf_provider)",
"@@TERRAFORM_RC@@": "$(rootpath //terraform-provider-constellation:terraform_rc)",
"@@UPGRADE_AGENT@@": "$(rootpath //upgrade-agent/cmd:upgrade_agent_linux_amd64)",
"@@VERSION_FILE@@": "$(rootpath //bazel/settings:tag)",
"@@YQ@@": "$(rootpath @yq_toolchains//:resolved_toolchain)",
},
} | select({
"@platforms//os:linux": {
"@@GOOS@@": "linux",
},
"@platforms//os:macos": {
"@@GOOS@@": "darwin",
},
}) | select({
"@platforms//cpu:arm64": {
"@@GOARCH@@": "arm64",
},
"@platforms//cpu:x86_64": {
"@@GOARCH@@": "amd64",
},
}),
template = "prepare_developer_workspace.sh.in",
visibility = ["//visibility:public"],
)

View File

@ -14,6 +14,15 @@ if ! source "${lib}"; then
exit 1
fi
if [[ ${BUILD_WORKSPACE_DIRECTORY} == "${BUILD_WORKING_DIRECTORY}" ]]; then
echo "Error: You are trying to run a devbuild in the project root directory."
echo "You probably want to run it in a subdirectory instead:"
echo "mkdir -p build && cd build && bazel run //:devbuild"
exit 1
fi
goos=@@GOOS@@
goarch=@@GOARCH@@
yq=$(realpath @@YQ@@)
stat "${yq}" >> /dev/null
sed=$(realpath @@SED@@)
@ -31,8 +40,11 @@ stat "${container_sums}" >> /dev/null
edition=$(cat @@EDITION@@)
terraform_provider=$(realpath @@TERRAFORM_PROVIDER@@)
stat "${terraform_provider}" >> /dev/null
terraform_rc=$(realpath @@TERRAFORM_RC@@)
stat "${terraform_rc}" >> /dev/null
build_version=$(cat @@VERSION_FILE@@)
if [[ -z ${build_version} ]]; then
echo "Error: version file is empty"
exit 1
fi
cd "${BUILD_WORKING_DIRECTORY}"
@ -68,13 +80,10 @@ ln -sf "$(replace_prefix "${host_cache}" "${builder_cache}" "${cdbg}")" "${workd
ln -sf "$(replace_prefix "${host_cache}" "${builder_cache}" "${container_sums}")" "${workdir}/container_sums.sha256"
ln -sf "$(replace_prefix "${host_cache}" "${builder_cache}" "${cli}")" "${workdir}/constellation"
TF_PROVIDER_DIR="${workdir}/terraform"
mkdir -p "${TF_PROVIDER_DIR}"
ln -sf "$(replace_prefix "${host_cache}" "${builder_cache}" "${terraform_provider}")" "${TF_PROVIDER_DIR}/terraform-provider-constellation"
cp "$(replace_prefix "${host_cache}" "${builder_cache}" "${terraform_rc}")" "${TF_PROVIDER_DIR}/config.tfrc"
${sed} -i "s|@@TERRAFORM_PROVIDER_PATH@@|$(dirname "${terraform_provider}")|g" "${TF_PROVIDER_DIR}/config.tfrc"
terraform_provider_dir=${HOME}/.terraform.d/plugins/registry.terraform.io/edgelesssys/constellation/${build_version#v}/${goos}_${goarch}/
mkdir -p "${terraform_provider_dir}"
ln -sf "${terraform_provider}" "${terraform_provider_dir}/terraform-provider-constellation_${build_version}"
build_version=$("${cli}" version | grep ^Version: | awk '{print $2}')
if [[ ! -f "${workdir}/constellation-conf.yaml" ]]; then
echo "constellation-conf.yaml not present in workspace"
echo "Build version: ${build_version}"

View File

@ -21,9 +21,24 @@ bazel run //bazel/ci:terraform_docgen
## Using the Terraform Provider
The Terraform provider binary can be used with the normal Terraform CLI, by setting a [development override](https://developer.hashicorp.com/terraform/cli/config/config-file#development-overrides-for-provider-developers),
so that the registry path to the provider is replaced with the path to the locally built provider. If using the [`devbuild` target](./build-develop-deploy.md), a `config.tfrc` file with the override set to the path
of the built binary is placed automatically in the `terraform` directory in the current working directory. Otherwise, the file can be also built and copied to the current working directory explicitly via this command:
If using the [`devbuild` target](./build-develop-deploy.md), the Terraform provider binary is automatically copied to your local registry cache
at `${HOME}/.terraform.d/plugins/registry.terraform.io/edgelesssys/constellation/<version>/<os>_<arch>/`.
After running `devbuild`, you can use the provider by simply adding the following to your Terraform configuration:
```hcl
terraform {
required_providers {
constellation = {
source = "edgelesssys/constellation"
version = "<version>"
}
}
}
```
Alternatively, you can configure Terraform to use your binary by setting a [development override](https://developer.hashicorp.com/terraform/cli/config/config-file#development-overrides-for-provider-developers),
so that the registry path to the provider is replaced with the path to the locally built provider.
A `config.tfrc` file containing the necessary configuration can be created with the following commands:
```bash
bazel build //terraform-provider-constellation:terraform_rc