clan-core/pkgs/clan-cli/clan_cli/facts/upload.py

import argparse
import importlib
import logging
from pathlib import Path
from tempfile import TemporaryDirectory

from ..cmd import Log, run
from ..completions import add_dynamic_completer, complete_machines
from ..machines.machines import Machine
from ..nix import nix_shell

log = logging.getLogger(__name__)


def upload_secrets(machine: Machine) -> None:
    secret_facts_module = importlib.import_module(machine.secret_facts_module)
    secret_facts_store = secret_facts_module.SecretStore(machine=machine)

    if secret_facts_store.update_check():
        log.info("Secrets already up to date")
        return
    with TemporaryDirectory() as tempdir:
        secret_facts_store.upload(Path(tempdir))
        host = machine.target_host

        ssh_cmd = host.ssh_cmd()
        run(
            nix_shell(
                ["nixpkgs#rsync"],
                [
                    "rsync",
                    "-e",
                    " ".join(["ssh"] + ssh_cmd[2:]),
                    "-az",
                    "--delete",
                    "--chown=root:root",
                    "--chmod=D700,F600",
                    f"{tempdir!s}/",
                    f"{host.user}@{host.host}:{machine.secrets_upload_directory}/",
                ],
            ),
            log=Log.BOTH,
        )


def upload_command(args: argparse.Namespace) -> None:
    machine = Machine(name=args.machine, flake=args.flake)
    upload_secrets(machine)


def register_upload_parser(parser: argparse.ArgumentParser) -> None:
    machines_parser = parser.add_argument(
        "machine",
        help="The machine to upload secrets to",
    )
    add_dynamic_completer(machines_parser, complete_machines)

    parser.set_defaults(func=upload_command)
clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00			`import argparse`
move secret stores into clan_cli codebase 2024-01-17 17:00:30 +00:00			`import importlib`
API: Added test for inspect_flake 2023-10-03 10:50:47 +00:00			`import logging`
add toplevel machines-json that can deploy all hosts 2023-09-28 12:13:23 +00:00			`from pathlib import Path`
clan-cli secrets upload: secrets are populated into tmpdir 2023-09-29 16:30:11 +00:00			`from tempfile import TemporaryDirectory`
clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00
cmd.py refactor part 6 2024-01-12 16:01:46 +00:00			`from ..cmd import Log, run`
clan: add dynamic completions Add dynamic completion scaffolding to the clan `cli`. Also add a dynamic completion mechanism for machines for commands that have machines as their sole argument. More intricate dynamic completions will be implemented in follow up PR's. 2024-05-30 17:51:53 +00:00			`from ..completions import add_dynamic_completer, complete_machines`
clan_cli: refactor secrets code into Machine class 2023-10-04 13:32:04 +00:00			`from ..machines.machines import Machine`
secrets upload: skip on exit 23, cleanup 2023-10-04 19:29:19 +00:00			`from ..nix import nix_shell`
clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00
API: Added test for inspect_flake 2023-10-03 10:50:47 +00:00			`log = logging.getLogger(__name__)`

clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00
clan_cli: refactor secrets code into Machine class 2023-10-04 13:32:04 +00:00			`def upload_secrets(machine: Machine) -> None:`
refactor secrets & facts -> secret_facts & public_facts 2024-03-23 04:05:31 +00:00			`secret_facts_module = importlib.import_module(machine.secret_facts_module)`
			`secret_facts_store = secret_facts_module.SecretStore(machine=machine)`
WIP: clan-cli secrets: add secret_store as python class 2024-01-15 18:34:04 +00:00
refactor secrets & facts -> secret_facts & public_facts 2024-03-23 04:05:31 +00:00			`if secret_facts_store.update_check():`
upload_secrets: call update_check directly without introspection 2024-02-16 13:57:01 +00:00			`log.info("Secrets already up to date")`
			`return`
WIP: clan-cli secrets: add secret_store as python class 2024-01-15 18:34:04 +00:00			`with TemporaryDirectory() as tempdir:`
refactor secrets & facts -> secret_facts & public_facts 2024-03-23 04:05:31 +00:00			`secret_facts_store.upload(Path(tempdir))`
rename machine.host to machine.target_host 2024-02-06 14:55:34 +00:00			`host = machine.target_host`
WIP: clan-cli secrets: add secret_store as python class 2024-01-15 18:34:04 +00:00
			`ssh_cmd = host.ssh_cmd()`
			`run(`
			`nix_shell(`
			`["nixpkgs#rsync"],`
			`[`
			`"rsync",`
			`"-e",`
			`" ".join(["ssh"] + ssh_cmd[2:]),`
			`"-az",`
			`"--delete",`
clan_cli secrets_upload: fix permissions 2024-06-02 17:10:48 +00:00			`"--chown=root:root",`
			`"--chmod=D700,F600",`
WIP: clan-cli secrets: add secret_store as python class 2024-01-15 18:34:04 +00:00			`f"{tempdir!s}/",`
			`f"{host.user}@{host.host}:{machine.secrets_upload_directory}/",`
			`],`
			`),`
			`log=Log.BOTH,`
			`)`
clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00

			`def upload_command(args: argparse.Namespace) -> None:`
machines.Machine: refactor flake_dir -> flake; use Machine class in vm 2024-01-19 13:37:30 +00:00			`machine = Machine(name=args.machine, flake=args.flake)`
clan_cli: refactor secrets code into Machine class 2023-10-04 13:32:04 +00:00			`upload_secrets(machine)`
clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00

			`def register_upload_parser(parser: argparse.ArgumentParser) -> None:`
clan: add dynamic completions Add dynamic completion scaffolding to the clan `cli`. Also add a dynamic completion mechanism for machines for commands that have machines as their sole argument. More intricate dynamic completions will be implemented in follow up PR's. 2024-05-30 17:51:53 +00:00			`machines_parser = parser.add_argument(`
clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00			`"machine",`
			`help="The machine to upload secrets to",`
			`)`
clan: add dynamic completions Add dynamic completion scaffolding to the clan `cli`. Also add a dynamic completion mechanism for machines for commands that have machines as their sole argument. More intricate dynamic completions will be implemented in follow up PR's. 2024-05-30 17:51:53 +00:00			`add_dynamic_completer(machines_parser, complete_machines)`

clan-cli secrets: deploy -> upload 2023-09-14 11:49:20 +00:00			`parser.set_defaults(func=upload_command)`