jaggar/iac-cljs-configs
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Setup a complex DSL for service deployment

Browse Source
This commit is contained in:
GigiaJ
2025-10-02 03:50:53 -05:00
parent ac3158f411
commit b9638a3668
1 changed files with 96 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

96
iac/src/main/utils/k8s.cljs Normal file
View File

@@ -0,0 +1,96 @@
(ns utils.k8s
(:require
["@pulumi/kubernetes" :as k8s]
["@pulumi/pulumi" :as pulumi]
["@pulumi/vault" :as vault]
[utils.vault :as vault-utils]
[clojure.string :as str]
[configs :refer [cfg]]))
(defn deploy-stack
"Deploys a versatile stack of K8s resources, including optional Helm charts."
[& args]
(let [[component-kws [options]] (split-with keyword? args)
requested-components (set component-kws)
{:keys [provider vault-provider hostname app-namespace app-name image image-port caddy-snippet vault-load-yaml chart-repo transformations helm-values-fn]
:or {image-port 80 caddy-snippet "" helm-values-fn #(:base-values %)}} options
app-labels {:app app-name}
full-snippet (str "tls {\n dns cloudflare {env.CLOUDFLARE_API_TOKEN}\n}\n" caddy-snippet)
ns (when (requested-components :namespace)
(new (.. k8s -core -v1 -Namespace) app-namespace
(clj->js {:metadata {:name app-namespace}})
(clj->js {:provider provider})))
prepared-vault-data (when (requested-components :vault-secrets)
(vault-utils/prepare {:provider provider
:vault-provider vault-provider
:app-name app-name
:app-namespace app-namespace
:load-yaml vault-load-yaml}))
{:keys [helm-v3 secrets yaml-values bind-secrets]} prepared-vault-data
final-hostname
(cond
(some? hostname) hostname
(some? secrets) (.apply secrets (fn [s] (aget s "host")))
:else nil)
final-helm-values (pulumi/all [secrets bind-secrets yaml-values app-name]
(fn [[yaml-map app-name-str]]
(helm-values-fn {:base-values (or yaml-map {})
:hostname final-hostname
:app-name app-name-str})))
chart (when (requested-components :chart)
(new (.. helm-v3 -Chart) app-name
(clj->js {:chart app-name
:fetchOpts {:repo chart-repo}
:namespace app-namespace
:values final-helm-values})
(clj->js {:provider provider
:dependsOn (vec (filter identity [ns bind-secrets]))
:transformations (vec (filter identity [transformations]))})))
deployment (when (requested-components :deployment)
(new (.. k8s -apps -v1 -Deployment) app-name
(clj->js {:metadata {:namespace app-namespace}
:spec {:selector {:matchLabels app-labels}
:replicas 1
:template {:metadata {:labels app-labels}
:spec {:containers
[{:name app-name
:image image
:ports [{:containerPort image-port}]}]}}}})
(clj->js {:provider provider :dependsOn [ns]})))
service (when (requested-components :service)
(new (.. k8s -core -v1 -Service) app-name
(clj->js {:metadata {:namespace app-namespace}
:spec {:selector app-labels
:ports [{:port 80 :targetPort image-port}]}})
(clj->js {:provider provider :dependsOn [deployment]})))
app-dependency (or service chart bind-secrets)
ingress (when (requested-components :ingress)
(new (.. k8s -networking -v1 -Ingress) app-name
(clj->js
{:metadata {:name app-name
:namespace app-namespace
:annotations {"caddy.ingress.kubernetes.io/snippet" full-snippet}}
:spec
{:ingressClassName "caddy"
:rules [{:host final-hostname
:http {:paths [{:path "/"
:pathType "Prefix"
:backend {:service {:name app-name
:port {:number image-port}}}}]}}]}})
(clj->js {:provider provider :dependsOn [bind-secrets app-dependency]})))]
{:namespace ns, :vault-secrets prepared-vault-data, :chart chart, :deployment deployment, :service service, :ingress ingress, :hostname final-hostname}))