2018-05-22 21:43:36 +02:00
|
|
|
// Copyright 2016-2018, Pulumi Corporation.
|
|
|
|
|
//
|
|
|
|
|
// Licensed under the Apache License, Version 2.0 (the "License");
|
|
|
|
|
// you may not use this file except in compliance with the License.
|
|
|
|
|
// You may obtain a copy of the License at
|
|
|
|
|
//
|
|
|
|
|
// http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
|
//
|
|
|
|
|
// Unless required by applicable law or agreed to in writing, software
|
|
|
|
|
// distributed under the License is distributed on an "AS IS" BASIS,
|
|
|
|
|
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
|
|
|
// See the License for the specific language governing permissions and
|
|
|
|
|
// limitations under the License.
|
2017-10-05 23:08:46 +02:00
|
|
|
|
|
|
|
|
package engine
|
|
|
|
|
|
|
|
|
|
import (
|
2019-06-11 00:20:44 +02:00
|
|
|
"bytes"
|
2018-03-31 21:08:48 +02:00
|
|
|
"reflect"
|
2018-02-02 06:15:09 +01:00
|
|
|
"time"
|
2017-10-05 23:08:46 +02:00
|
|
|
|
2021-03-17 14:20:05 +01:00
|
|
|
"github.com/pulumi/pulumi/pkg/v3/resource/deploy"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/apitype"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/diag"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/diag/colors"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/resource"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/resource/config"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/resource/plugin"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/tokens"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/util/contract"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/util/deepcopy"
|
|
|
|
|
"github.com/pulumi/pulumi/sdk/v3/go/common/util/logging"
|
2017-10-05 23:08:46 +02:00
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// Event represents an event generated by the engine during an operation. The underlying
|
|
|
|
|
// type for the `Payload` field will differ depending on the value of the `Type` field
|
|
|
|
|
type Event struct {
|
2017-10-21 02:28:35 +02:00
|
|
|
Type EventType
|
2020-07-17 08:52:31 +02:00
|
|
|
payload interface{}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func NewEvent(typ EventType, payload interface{}) Event {
|
|
|
|
|
ok := false
|
|
|
|
|
switch typ {
|
|
|
|
|
case CancelEvent:
|
|
|
|
|
ok = payload == nil
|
|
|
|
|
case StdoutColorEvent:
|
|
|
|
|
_, ok = payload.(StdoutEventPayload)
|
|
|
|
|
case DiagEvent:
|
|
|
|
|
_, ok = payload.(DiagEventPayload)
|
|
|
|
|
case PreludeEvent:
|
|
|
|
|
_, ok = payload.(PreludeEventPayload)
|
|
|
|
|
case SummaryEvent:
|
|
|
|
|
_, ok = payload.(SummaryEventPayload)
|
|
|
|
|
case ResourcePreEvent:
|
|
|
|
|
_, ok = payload.(ResourcePreEventPayload)
|
|
|
|
|
case ResourceOutputsEvent:
|
|
|
|
|
_, ok = payload.(ResourceOutputsEventPayload)
|
|
|
|
|
case ResourceOperationFailed:
|
|
|
|
|
_, ok = payload.(ResourceOperationFailedPayload)
|
|
|
|
|
case PolicyViolationEvent:
|
|
|
|
|
_, ok = payload.(PolicyViolationEventPayload)
|
|
|
|
|
default:
|
|
|
|
|
contract.Failf("unknown event type %v", typ)
|
|
|
|
|
}
|
|
|
|
|
contract.Assertf(ok, "invalid payload of type %T for event type %v", payload, typ)
|
|
|
|
|
return Event{
|
|
|
|
|
Type: typ,
|
|
|
|
|
payload: payload,
|
|
|
|
|
}
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
2017-10-21 02:28:35 +02:00
|
|
|
// EventType is the kind of event being emitted.
|
|
|
|
|
type EventType string
|
|
|
|
|
|
|
|
|
|
const (
|
2018-02-04 10:18:06 +01:00
|
|
|
CancelEvent EventType = "cancel"
|
|
|
|
|
StdoutColorEvent EventType = "stdoutcolor"
|
|
|
|
|
DiagEvent EventType = "diag"
|
|
|
|
|
PreludeEvent EventType = "prelude"
|
|
|
|
|
SummaryEvent EventType = "summary"
|
2018-03-09 18:59:57 +01:00
|
|
|
ResourcePreEvent EventType = "resource-pre"
|
|
|
|
|
ResourceOutputsEvent EventType = "resource-outputs"
|
|
|
|
|
ResourceOperationFailed EventType = "resource-operationfailed"
|
2019-06-11 00:20:44 +02:00
|
|
|
PolicyViolationEvent EventType = "policy-violation"
|
2017-10-21 02:28:35 +02:00
|
|
|
)
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
func (e Event) Payload() interface{} {
|
|
|
|
|
return deepcopy.Copy(e.payload)
|
|
|
|
|
}
|
|
|
|
|
|
2017-10-23 00:52:00 +02:00
|
|
|
func cancelEvent() Event {
|
|
|
|
|
return Event{Type: CancelEvent}
|
|
|
|
|
}
|
|
|
|
|
|
2017-10-05 23:08:46 +02:00
|
|
|
// DiagEventPayload is the payload for an event with type `diag`
|
|
|
|
|
type DiagEventPayload struct {
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
URN resource.URN
|
|
|
|
|
Prefix string
|
|
|
|
|
Message string
|
|
|
|
|
Color colors.Colorization
|
|
|
|
|
Severity diag.Severity
|
|
|
|
|
StreamID int32
|
|
|
|
|
Ephemeral bool
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
2019-06-11 00:20:44 +02:00
|
|
|
// PolicyViolationEventPayload is the payload for an event with type `policy-violation`.
|
|
|
|
|
type PolicyViolationEventPayload struct {
|
2019-06-14 01:14:48 +02:00
|
|
|
ResourceURN resource.URN
|
|
|
|
|
Message string
|
|
|
|
|
Color colors.Colorization
|
|
|
|
|
PolicyName string
|
|
|
|
|
PolicyPackName string
|
|
|
|
|
PolicyPackVersion string
|
|
|
|
|
EnforcementLevel apitype.EnforcementLevel
|
|
|
|
|
Prefix string
|
2019-06-11 00:20:44 +02:00
|
|
|
}
|
|
|
|
|
|
2017-12-14 20:53:02 +01:00
|
|
|
type StdoutEventPayload struct {
|
|
|
|
|
Message string
|
2017-12-18 20:42:32 +01:00
|
|
|
Color colors.Colorization
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
2018-01-31 22:07:40 +01:00
|
|
|
type PreludeEventPayload struct {
|
|
|
|
|
IsPreview bool // true if this prelude is for a plan operation
|
|
|
|
|
Config map[string]string // the keys and values for config. For encrypted config, the values may be blinded
|
|
|
|
|
}
|
|
|
|
|
|
2018-02-02 06:15:09 +01:00
|
|
|
type SummaryEventPayload struct {
|
2019-09-26 03:42:30 +02:00
|
|
|
IsPreview bool // true if this summary is for a plan operation
|
|
|
|
|
MaybeCorrupt bool // true if one or more resources may be corrupt
|
|
|
|
|
Duration time.Duration // the duration of the entire update operation (zero values for previews)
|
|
|
|
|
ResourceChanges ResourceChanges // count of changed resources, useful for reporting
|
|
|
|
|
PolicyPacks map[string]string // {policy-pack: version} for each policy pack applied
|
2018-02-02 06:15:09 +01:00
|
|
|
}
|
|
|
|
|
|
2018-02-04 10:18:06 +01:00
|
|
|
type ResourceOperationFailedPayload struct {
|
2018-03-31 21:08:48 +02:00
|
|
|
Metadata StepEventMetadata
|
2018-02-04 10:18:06 +01:00
|
|
|
Status resource.Status
|
|
|
|
|
Steps int
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type ResourceOutputsEventPayload struct {
|
2018-03-31 21:08:48 +02:00
|
|
|
Metadata StepEventMetadata
|
|
|
|
|
Planning bool
|
|
|
|
|
Debug bool
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type ResourcePreEventPayload struct {
|
2018-03-31 21:08:48 +02:00
|
|
|
Metadata StepEventMetadata
|
|
|
|
|
Planning bool
|
|
|
|
|
Debug bool
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
2019-04-20 22:34:58 +02:00
|
|
|
// StepEventMetadata contains the metadata associated with a step the engine is performing.
|
2018-03-31 21:08:48 +02:00
|
|
|
type StepEventMetadata struct {
|
2019-07-01 21:34:19 +02:00
|
|
|
Op deploy.StepOp // the operation performed by this step.
|
2020-07-09 16:19:12 +02:00
|
|
|
URN resource.URN // the resource URN (for before and after).
|
|
|
|
|
Type tokens.Type // the type affected by this step.
|
2019-07-01 21:34:19 +02:00
|
|
|
Old *StepEventStateMetadata // the state of the resource before performing this step.
|
|
|
|
|
New *StepEventStateMetadata // the state of the resource after performing this step.
|
|
|
|
|
Res *StepEventStateMetadata // the latest state for the resource that is known (worst case, old).
|
|
|
|
|
Keys []resource.PropertyKey // the keys causing replacement (only for CreateStep and ReplaceStep).
|
|
|
|
|
Diffs []resource.PropertyKey // the keys causing diffs
|
|
|
|
|
DetailedDiff map[string]plugin.PropertyDiff // the rich, structured diff
|
|
|
|
|
Logical bool // true if this step represents a logical operation in the program.
|
|
|
|
|
Provider string // the provider that performed this step.
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
2019-04-20 22:34:58 +02:00
|
|
|
// StepEventStateMetadata contains detailed metadata about a resource's state pertaining to a given step.
|
2018-02-04 10:18:06 +01:00
|
|
|
type StepEventStateMetadata struct {
|
2019-04-20 22:34:58 +02:00
|
|
|
// State contains the raw, complete state, for this resource.
|
|
|
|
|
State *resource.State
|
2018-03-31 21:08:48 +02:00
|
|
|
// the resource's type.
|
|
|
|
|
Type tokens.Type
|
|
|
|
|
// the resource's object urn, a human-friendly, unique name for the resource.
|
|
|
|
|
URN resource.URN
|
|
|
|
|
// true if the resource is custom, managed by a plugin.
|
|
|
|
|
Custom bool
|
|
|
|
|
// true if this resource is pending deletion due to a replacement.
|
|
|
|
|
Delete bool
|
|
|
|
|
// the resource's unique ID, assigned by the resource provider (or blank if none/uncreated).
|
|
|
|
|
ID resource.ID
|
|
|
|
|
// an optional parent URN that this resource belongs to.
|
|
|
|
|
Parent resource.URN
|
|
|
|
|
// true to "protect" this resource (protected resources cannot be deleted).
|
|
|
|
|
Protect bool
|
|
|
|
|
// the resource's input properties (as specified by the program). Note: because this will cross
|
|
|
|
|
// over rpc boundaries it will be slightly different than the Inputs found in resource_state.
|
|
|
|
|
// Specifically, secrets will have been filtered out, and large values (like assets) will be
|
|
|
|
|
// have a simple hash-based representation. This allows clients to display this information
|
|
|
|
|
// properly, without worrying about leaking sensitive data, and without having to transmit huge
|
|
|
|
|
// amounts of data.
|
|
|
|
|
Inputs resource.PropertyMap
|
|
|
|
|
// the resource's complete output state (as returned by the resource provider). See "Inputs"
|
|
|
|
|
// for additional details about how data will be transformed before going into this map.
|
|
|
|
|
Outputs resource.PropertyMap
|
Implement first-class providers. (#1695)
### First-Class Providers
These changes implement support for first-class providers. First-class
providers are provider plugins that are exposed as resources via the
Pulumi programming model so that they may be explicitly and multiply
instantiated. Each instance of a provider resource may be configured
differently, and configuration parameters may be source from the
outputs of other resources.
### Provider Plugin Changes
In order to accommodate the need to verify and diff provider
configuration and configure providers without complete configuration
information, these changes adjust the high-level provider plugin
interface. Two new methods for validating a provider's configuration
and diffing changes to the same have been added (`CheckConfig` and
`DiffConfig`, respectively), and the type of the configuration bag
accepted by `Configure` has been changed to a `PropertyMap`.
These changes have not yet been reflected in the provider plugin gRPC
interface. We will do this in a set of follow-up changes. Until then,
these methods are implemented by adapters:
- `CheckConfig` validates that all configuration parameters are string
or unknown properties. This is necessary because existing plugins
only accept string-typed configuration values.
- `DiffConfig` either returns "never replace" if all configuration
values are known or "must replace" if any configuration value is
unknown. The justification for this behavior is given
[here](https://github.com/pulumi/pulumi/pull/1695/files#diff-a6cd5c7f337665f5bb22e92ca5f07537R106)
- `Configure` converts the config bag to a legacy config map and
configures the provider plugin if all config values are known. If any
config value is unknown, the underlying plugin is not configured and
the provider may only perform `Check`, `Read`, and `Invoke`, all of
which return empty results. We justify this behavior becuase it is
only possible during a preview and provides the best experience we
can manage with the existing gRPC interface.
### Resource Model Changes
Providers are now exposed as resources that participate in a stack's
dependency graph. Like other resources, they are explicitly created,
may have multiple instances, and may have dependencies on other
resources. Providers are referred to using provider references, which
are a combination of the provider's URN and its ID. This design
addresses the need during a preview to refer to providers that have not
yet been physically created and therefore have no ID.
All custom resources that are not themselves providers must specify a
single provider via a provider reference. The named provider will be
used to manage that resource's CRUD operations. If a resource's
provider reference changes, the resource must be replaced. Though its
URN is not present in the resource's dependency list, the provider
should be treated as a dependency of the resource when topologically
sorting the dependency graph.
Finally, `Invoke` operations must now specify a provider to use for the
invocation via a provider reference.
### Engine Changes
First-class providers support requires a few changes to the engine:
- The engine must have some way to map from provider references to
provider plugins. It must be possible to add providers from a stack's
checkpoint to this map and to register new/updated providers during
the execution of a plan in response to CRUD operations on provider
resources.
- In order to support updating existing stacks using existing Pulumi
programs that may not explicitly instantiate providers, the engine
must be able to manage the "default" providers for each package
referenced by a checkpoint or Pulumi program. The configuration for
a "default" provider is taken from the stack's configuration data.
The former need is addressed by adding a provider registry type that is
responsible for managing all of the plugins required by a plan. In
addition to loading plugins froma checkpoint and providing the ability
to map from a provider reference to a provider plugin, this type serves
as the provider plugin for providers themselves (i.e. it is the
"provider provider").
The latter need is solved via two relatively self-contained changes to
plan setup and the eval source.
During plan setup, the old checkpoint is scanned for custom resources
that do not have a provider reference in order to compute the set of
packages that require a default provider. Once this set has been
computed, the required default provider definitions are conjured and
prepended to the checkpoint's resource list. Each resource that
requires a default provider is then updated to refer to the default
provider for its package.
While an eval source is running, each custom resource registration,
resource read, and invoke that does not name a provider is trapped
before being returned by the source iterator. If no default provider
for the appropriate package has been registered, the eval source
synthesizes an appropriate registration, waits for it to complete, and
records the registered provider's reference. This reference is injected
into the original request, which is then processed as usual. If a
default provider was already registered, the recorded reference is
used and no new registration occurs.
### SDK Changes
These changes only expose first-class providers from the Node.JS SDK.
- A new abstract class, `ProviderResource`, can be subclassed and used
to instantiate first-class providers.
- A new field in `ResourceOptions`, `provider`, can be used to supply
a particular provider instance to manage a `CustomResource`'s CRUD
operations.
- A new type, `InvokeOptions`, can be used to specify options that
control the behavior of a call to `pulumi.runtime.invoke`. This type
includes a `provider` field that is analogous to
`ResourceOptions.provider`.
2018-08-07 02:50:29 +02:00
|
|
|
// the resource's provider reference
|
|
|
|
|
Provider string
|
Generate empty update steps for partial failures
This commit will greatly improve the experience of dealing with partial
failures by simply re-trying to initialize the relevant resources on
every subsequent `pulumi up`, instead of printing a list of reasons the
resource had previously failed to initialize.
As motivation, consider our behavior in the following common, painful
scenario:
* The user creates a `Service` and a `Deployment`.
* The `Pod`s in the `Deployment` fail to become live. This causes the
`Service` to fail, since it does not target any live `Pod`s.
* The user fixes the `Deployment`. A run of `pulumi up` sees the
`Pod`s successfully initialize.
* Users will expect that the `Service` is now in a state of success,
as the `Pod`s it targets are alive. But, because we don't update the
`Service` by default, it perpetually exists in a state of error.
* The user is now required to change some trivial feature of the
`Service` just to trigger an update, so that we can see it succeed.
There are many situations like this. Another very common one is waiting
for test `Pod`s that are meant to successfully complete when some object
becomes live.
By triggering an empty update step for all resources that have any
initialization errors, we avoid all problems like this.
This commit will implement this empty-update semantics for partial
failures, as well as fix the display UX to correctly render the diff in
these cases.
2018-08-28 23:23:31 +02:00
|
|
|
// InitErrors is the set of errors encountered in the process of initializing resource (i.e.,
|
|
|
|
|
// during create or update).
|
|
|
|
|
InitErrors []string
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
2018-08-23 00:32:54 +02:00
|
|
|
func makeEventEmitter(events chan<- Event, update UpdateInfo) (eventEmitter, error) {
|
2018-03-05 20:39:50 +01:00
|
|
|
target := update.GetTarget()
|
2018-05-16 00:28:00 +02:00
|
|
|
var secrets []string
|
2019-08-12 09:22:42 +02:00
|
|
|
if target != nil && target.Config.HasSecureValue() {
|
2018-08-23 00:32:54 +02:00
|
|
|
for k, v := range target.Config {
|
2018-03-05 20:39:50 +01:00
|
|
|
if !v.Secure() {
|
|
|
|
|
continue
|
|
|
|
|
}
|
2018-03-10 04:33:00 +01:00
|
|
|
|
Support lists and maps in config (#3342)
This change adds support for lists and maps in config. We now allow
lists/maps (and nested structures) in `Pulumi.<stack>.yaml` (or
`Pulumi.<stack>.json`; yes, we currently support that).
For example:
```yaml
config:
proj:blah:
- a
- b
- c
proj:hello: world
proj:outer:
inner: value
proj:servers:
- port: 80
```
While such structures could be specified in the `.yaml` file manually,
we support setting values in maps/lists from the command line.
As always, you can specify single values with:
```shell
$ pulumi config set hello world
```
Which results in the following YAML:
```yaml
proj:hello world
```
And single value secrets via:
```shell
$ pulumi config set --secret token shhh
```
Which results in the following YAML:
```yaml
proj:token:
secure: v1:VZAhuroR69FkEPTk:isKafsoZVMWA9pQayGzbWNynww==
```
Values in a list can be set from the command line using the new
`--path` flag, which indicates the config key contains a path to a
property in a map or list:
```shell
$ pulumi config set --path names[0] a
$ pulumi config set --path names[1] b
$ pulumi config set --path names[2] c
```
Which results in:
```yaml
proj:names
- a
- b
- c
```
Values can be obtained similarly:
```shell
$ pulumi config get --path names[1]
b
```
Or setting values in a map:
```shell
$ pulumi config set --path outer.inner value
```
Which results in:
```yaml
proj:outer:
inner: value
```
Of course, setting values in nested structures is supported:
```shell
$ pulumi config set --path servers[0].port 80
```
Which results in:
```yaml
proj:servers:
- port: 80
```
If you want to include a period in the name of a property, it can be
specified as:
```
$ pulumi config set --path 'nested["foo.bar"]' baz
```
Which results in:
```yaml
proj:nested:
foo.bar: baz
```
Examples of valid paths:
- root
- root.nested
- 'root["nested"]'
- root.double.nest
- 'root["double"].nest'
- 'root["double"]["nest"]'
- root.array[0]
- root.array[100]
- root.array[0].nested
- root.array[0][1].nested
- root.nested.array[0].double[1]
- 'root["key with \"escaped\" quotes"]'
- 'root["key with a ."]'
- '["root key with \"escaped\" quotes"].nested'
- '["root key with a ."][100]'
Note: paths that contain quotes can be surrounded by single quotes.
When setting values with `--path`, if the value is `"false"` or
`"true"`, it will be saved as the boolean value, and if it is
convertible to an integer, it will be saved as an integer.
Secure values are supported in lists/maps as well:
```shell
$ pulumi config set --path --secret tokens[0] shh
```
Will result in:
```yaml
proj:tokens:
- secure: v1:wpZRCe36sFg1RxwG:WzPeQrCn4n+m4Ks8ps15MxvFXg==
```
Note: maps of length 1 with a key of “secure” and string value are
reserved for storing secret values. Attempting to create such a value
manually will result in an error:
```shell
$ pulumi config set --path parent.secure foo
error: "secure" key in maps of length 1 are reserved
```
**Accessing config values from the command line with JSON**
```shell
$ pulumi config --json
```
Will output:
```json
{
"proj:hello": {
"value": "world",
"secret": false,
"object": false
},
"proj:names": {
"value": "[\"a\",\"b\",\"c\"]",
"secret": false,
"object": true,
"objectValue": [
"a",
"b",
"c"
]
},
"proj:nested": {
"value": "{\"foo.bar\":\"baz\"}",
"secret": false,
"object": true,
"objectValue": {
"foo.bar": "baz"
}
},
"proj:outer": {
"value": "{\"inner\":\"value\"}",
"secret": false,
"object": true,
"objectValue": {
"inner": "value"
}
},
"proj:servers": {
"value": "[{\"port\":80}]",
"secret": false,
"object": true,
"objectValue": [
{
"port": 80
}
]
},
"proj:token": {
"secret": true,
"object": false
},
"proj:tokens": {
"secret": true,
"object": true
}
}
```
If the value is a map or list, `"object"` will be `true`. `"value"` will
contain the object as serialized JSON and a new `"objectValue"` property
will be available containing the value of the object.
If the object contains any secret values, `"secret"` will be `true`, and
just like with scalar values, the value will not be outputted unless
`--show-secrets` is specified.
**Accessing config values from Pulumi programs**
Map/list values are available to Pulumi programs as serialized JSON, so
the existing
`getObject`/`requireObject`/`getSecretObject`/`requireSecretObject`
functions can be used to retrieve such values, e.g.:
```typescript
import * as pulumi from "@pulumi/pulumi";
interface Server {
port: number;
}
const config = new pulumi.Config();
const names = config.requireObject<string[]>("names");
for (const n of names) {
console.log(n);
}
const servers = config.requireObject<Server[]>("servers");
for (const s of servers) {
console.log(s.port);
}
```
2019-11-01 21:41:27 +01:00
|
|
|
secureValues, err := v.SecureValues(target.Decrypter)
|
2018-08-23 00:32:54 +02:00
|
|
|
if err != nil {
|
|
|
|
|
return eventEmitter{}, DecryptError{
|
|
|
|
|
Key: k,
|
|
|
|
|
Err: err,
|
|
|
|
|
}
|
|
|
|
|
}
|
Support lists and maps in config (#3342)
This change adds support for lists and maps in config. We now allow
lists/maps (and nested structures) in `Pulumi.<stack>.yaml` (or
`Pulumi.<stack>.json`; yes, we currently support that).
For example:
```yaml
config:
proj:blah:
- a
- b
- c
proj:hello: world
proj:outer:
inner: value
proj:servers:
- port: 80
```
While such structures could be specified in the `.yaml` file manually,
we support setting values in maps/lists from the command line.
As always, you can specify single values with:
```shell
$ pulumi config set hello world
```
Which results in the following YAML:
```yaml
proj:hello world
```
And single value secrets via:
```shell
$ pulumi config set --secret token shhh
```
Which results in the following YAML:
```yaml
proj:token:
secure: v1:VZAhuroR69FkEPTk:isKafsoZVMWA9pQayGzbWNynww==
```
Values in a list can be set from the command line using the new
`--path` flag, which indicates the config key contains a path to a
property in a map or list:
```shell
$ pulumi config set --path names[0] a
$ pulumi config set --path names[1] b
$ pulumi config set --path names[2] c
```
Which results in:
```yaml
proj:names
- a
- b
- c
```
Values can be obtained similarly:
```shell
$ pulumi config get --path names[1]
b
```
Or setting values in a map:
```shell
$ pulumi config set --path outer.inner value
```
Which results in:
```yaml
proj:outer:
inner: value
```
Of course, setting values in nested structures is supported:
```shell
$ pulumi config set --path servers[0].port 80
```
Which results in:
```yaml
proj:servers:
- port: 80
```
If you want to include a period in the name of a property, it can be
specified as:
```
$ pulumi config set --path 'nested["foo.bar"]' baz
```
Which results in:
```yaml
proj:nested:
foo.bar: baz
```
Examples of valid paths:
- root
- root.nested
- 'root["nested"]'
- root.double.nest
- 'root["double"].nest'
- 'root["double"]["nest"]'
- root.array[0]
- root.array[100]
- root.array[0].nested
- root.array[0][1].nested
- root.nested.array[0].double[1]
- 'root["key with \"escaped\" quotes"]'
- 'root["key with a ."]'
- '["root key with \"escaped\" quotes"].nested'
- '["root key with a ."][100]'
Note: paths that contain quotes can be surrounded by single quotes.
When setting values with `--path`, if the value is `"false"` or
`"true"`, it will be saved as the boolean value, and if it is
convertible to an integer, it will be saved as an integer.
Secure values are supported in lists/maps as well:
```shell
$ pulumi config set --path --secret tokens[0] shh
```
Will result in:
```yaml
proj:tokens:
- secure: v1:wpZRCe36sFg1RxwG:WzPeQrCn4n+m4Ks8ps15MxvFXg==
```
Note: maps of length 1 with a key of “secure” and string value are
reserved for storing secret values. Attempting to create such a value
manually will result in an error:
```shell
$ pulumi config set --path parent.secure foo
error: "secure" key in maps of length 1 are reserved
```
**Accessing config values from the command line with JSON**
```shell
$ pulumi config --json
```
Will output:
```json
{
"proj:hello": {
"value": "world",
"secret": false,
"object": false
},
"proj:names": {
"value": "[\"a\",\"b\",\"c\"]",
"secret": false,
"object": true,
"objectValue": [
"a",
"b",
"c"
]
},
"proj:nested": {
"value": "{\"foo.bar\":\"baz\"}",
"secret": false,
"object": true,
"objectValue": {
"foo.bar": "baz"
}
},
"proj:outer": {
"value": "{\"inner\":\"value\"}",
"secret": false,
"object": true,
"objectValue": {
"inner": "value"
}
},
"proj:servers": {
"value": "[{\"port\":80}]",
"secret": false,
"object": true,
"objectValue": [
{
"port": 80
}
]
},
"proj:token": {
"secret": true,
"object": false
},
"proj:tokens": {
"secret": true,
"object": true
}
}
```
If the value is a map or list, `"object"` will be `true`. `"value"` will
contain the object as serialized JSON and a new `"objectValue"` property
will be available containing the value of the object.
If the object contains any secret values, `"secret"` will be `true`, and
just like with scalar values, the value will not be outputted unless
`--show-secrets` is specified.
**Accessing config values from Pulumi programs**
Map/list values are available to Pulumi programs as serialized JSON, so
the existing
`getObject`/`requireObject`/`getSecretObject`/`requireSecretObject`
functions can be used to retrieve such values, e.g.:
```typescript
import * as pulumi from "@pulumi/pulumi";
interface Server {
port: number;
}
const config = new pulumi.Config();
const names = config.requireObject<string[]>("names");
for (const n of names) {
console.log(n);
}
const servers = config.requireObject<Server[]>("servers");
for (const s of servers) {
console.log(s.port);
}
```
2019-11-01 21:41:27 +01:00
|
|
|
secrets = append(secrets, secureValues...)
|
2018-03-10 04:33:00 +01:00
|
|
|
}
|
2018-03-05 20:39:50 +01:00
|
|
|
}
|
|
|
|
|
|
2018-05-16 01:09:15 +02:00
|
|
|
logging.AddGlobalFilter(logging.CreateFilter(secrets, "[secret]"))
|
2018-05-16 00:28:00 +02:00
|
|
|
|
2019-10-16 00:47:40 +02:00
|
|
|
buffer, done := make(chan Event), make(chan bool)
|
2019-10-22 21:04:22 +02:00
|
|
|
go queueEvents(events, buffer, done)
|
2019-10-16 00:47:40 +02:00
|
|
|
|
2018-03-05 20:39:50 +01:00
|
|
|
return eventEmitter{
|
2019-10-16 00:47:40 +02:00
|
|
|
done: done,
|
|
|
|
|
ch: buffer,
|
2018-08-23 00:32:54 +02:00
|
|
|
}, nil
|
2018-03-05 20:39:50 +01:00
|
|
|
}
|
|
|
|
|
|
2019-08-12 09:22:42 +02:00
|
|
|
func makeQueryEventEmitter(events chan<- Event) (eventEmitter, error) {
|
2019-10-22 21:04:22 +02:00
|
|
|
buffer, done := make(chan Event), make(chan bool)
|
|
|
|
|
|
|
|
|
|
go queueEvents(events, buffer, done)
|
|
|
|
|
|
2019-08-12 09:22:42 +02:00
|
|
|
return eventEmitter{
|
2019-10-22 21:04:22 +02:00
|
|
|
done: done,
|
|
|
|
|
ch: buffer,
|
2019-08-12 09:22:42 +02:00
|
|
|
}, nil
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-05 20:39:50 +01:00
|
|
|
type eventEmitter struct {
|
2019-10-16 00:47:40 +02:00
|
|
|
done <-chan bool
|
|
|
|
|
ch chan<- Event
|
2018-03-05 20:39:50 +01:00
|
|
|
}
|
|
|
|
|
|
2019-10-22 21:04:22 +02:00
|
|
|
func queueEvents(events chan<- Event, buffer chan Event, done chan bool) {
|
|
|
|
|
// Instead of sending to the source channel directly, buffer events to account for slow receivers.
|
|
|
|
|
//
|
|
|
|
|
// Buffering is done by a goroutine that concurrently receives from the senders and attempts to send events to the
|
|
|
|
|
// receiver. Events that are received while waiting for the receiver to catch up are buffered in a slice.
|
|
|
|
|
//
|
|
|
|
|
// We do not use a buffered channel because it is empirically less likely that the goroutine reading from a
|
|
|
|
|
// buffered channel will be scheduled when new data is placed in the channel.
|
|
|
|
|
|
|
|
|
|
defer close(done)
|
|
|
|
|
|
|
|
|
|
var queue []Event
|
|
|
|
|
for {
|
|
|
|
|
contract.Assert(buffer != nil)
|
|
|
|
|
|
|
|
|
|
e, ok := <-buffer
|
|
|
|
|
if !ok {
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
queue = append(queue, e)
|
|
|
|
|
|
|
|
|
|
// While there are events in the queue, attempt to send them to the waiting receiver. If the receiver is
|
|
|
|
|
// blocked and an event is received from the event senders, stick that event in the queue.
|
|
|
|
|
for len(queue) > 0 {
|
|
|
|
|
select {
|
|
|
|
|
case e, ok := <-buffer:
|
|
|
|
|
if !ok {
|
|
|
|
|
// If the event source has been closed, flush the queue.
|
|
|
|
|
for _, e := range queue {
|
|
|
|
|
events <- e
|
|
|
|
|
}
|
|
|
|
|
return
|
|
|
|
|
}
|
|
|
|
|
queue = append(queue, e)
|
|
|
|
|
case events <- queue[0]:
|
|
|
|
|
queue = queue[1:]
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-08-23 02:52:46 +02:00
|
|
|
func makeStepEventMetadata(op deploy.StepOp, step deploy.Step, debug bool) StepEventMetadata {
|
|
|
|
|
contract.Assert(op == step.Op() || step.Op() == deploy.OpRefresh)
|
2018-03-31 21:08:48 +02:00
|
|
|
|
2019-03-07 01:41:19 +01:00
|
|
|
var keys, diffs []resource.PropertyKey
|
|
|
|
|
if keyer, hasKeys := step.(interface{ Keys() []resource.PropertyKey }); hasKeys {
|
|
|
|
|
keys = keyer.Keys()
|
|
|
|
|
}
|
|
|
|
|
if differ, hasDiffs := step.(interface{ Diffs() []resource.PropertyKey }); hasDiffs {
|
|
|
|
|
diffs = differ.Diffs()
|
2018-03-31 21:08:48 +02:00
|
|
|
}
|
|
|
|
|
|
2019-07-01 21:34:19 +02:00
|
|
|
var detailedDiff map[string]plugin.PropertyDiff
|
|
|
|
|
if detailedDiffer, hasDetailedDiff := step.(interface {
|
|
|
|
|
DetailedDiff() map[string]plugin.PropertyDiff
|
|
|
|
|
}); hasDetailedDiff {
|
|
|
|
|
detailedDiff = detailedDiffer.DetailedDiff()
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-31 21:08:48 +02:00
|
|
|
return StepEventMetadata{
|
2019-07-01 21:34:19 +02:00
|
|
|
Op: op,
|
2020-07-09 16:19:12 +02:00
|
|
|
URN: step.URN(),
|
|
|
|
|
Type: step.Type(),
|
2019-07-01 21:34:19 +02:00
|
|
|
Keys: keys,
|
|
|
|
|
Diffs: diffs,
|
|
|
|
|
DetailedDiff: detailedDiff,
|
|
|
|
|
Old: makeStepEventStateMetadata(step.Old(), debug),
|
|
|
|
|
New: makeStepEventStateMetadata(step.New(), debug),
|
|
|
|
|
Res: makeStepEventStateMetadata(step.Res(), debug),
|
|
|
|
|
Logical: step.Logical(),
|
|
|
|
|
Provider: step.Provider(),
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-05-16 01:09:15 +02:00
|
|
|
func makeStepEventStateMetadata(state *resource.State, debug bool) *StepEventStateMetadata {
|
2018-02-04 10:18:06 +01:00
|
|
|
if state == nil {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return &StepEventStateMetadata{
|
2019-04-20 22:34:58 +02:00
|
|
|
State: state,
|
Generate empty update steps for partial failures
This commit will greatly improve the experience of dealing with partial
failures by simply re-trying to initialize the relevant resources on
every subsequent `pulumi up`, instead of printing a list of reasons the
resource had previously failed to initialize.
As motivation, consider our behavior in the following common, painful
scenario:
* The user creates a `Service` and a `Deployment`.
* The `Pod`s in the `Deployment` fail to become live. This causes the
`Service` to fail, since it does not target any live `Pod`s.
* The user fixes the `Deployment`. A run of `pulumi up` sees the
`Pod`s successfully initialize.
* Users will expect that the `Service` is now in a state of success,
as the `Pod`s it targets are alive. But, because we don't update the
`Service` by default, it perpetually exists in a state of error.
* The user is now required to change some trivial feature of the
`Service` just to trigger an update, so that we can see it succeed.
There are many situations like this. Another very common one is waiting
for test `Pod`s that are meant to successfully complete when some object
becomes live.
By triggering an empty update step for all resources that have any
initialization errors, we avoid all problems like this.
This commit will implement this empty-update semantics for partial
failures, as well as fix the display UX to correctly render the diff in
these cases.
2018-08-28 23:23:31 +02:00
|
|
|
Type: state.Type,
|
|
|
|
|
URN: state.URN,
|
|
|
|
|
Custom: state.Custom,
|
|
|
|
|
Delete: state.Delete,
|
|
|
|
|
ID: state.ID,
|
|
|
|
|
Parent: state.Parent,
|
|
|
|
|
Protect: state.Protect,
|
|
|
|
|
Inputs: filterPropertyMap(state.Inputs, debug),
|
|
|
|
|
Outputs: filterPropertyMap(state.Outputs, debug),
|
|
|
|
|
Provider: state.Provider,
|
|
|
|
|
InitErrors: state.InitErrors,
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2018-05-16 01:09:15 +02:00
|
|
|
func filterPropertyMap(propertyMap resource.PropertyMap, debug bool) resource.PropertyMap {
|
2018-03-31 21:08:48 +02:00
|
|
|
mappable := propertyMap.Mappable()
|
|
|
|
|
|
|
|
|
|
var filterValue func(v interface{}) interface{}
|
|
|
|
|
|
|
|
|
|
filterPropertyValue := func(pv resource.PropertyValue) resource.PropertyValue {
|
|
|
|
|
return resource.NewPropertyValue(filterValue(pv.Mappable()))
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// filter values walks unwrapped (i.e. non-PropertyValue) values and applies the filter function
|
|
|
|
|
// to them recursively. The only thing the filter actually applies to is strings.
|
|
|
|
|
//
|
|
|
|
|
// The return value of this function should have the same type as the input value.
|
|
|
|
|
filterValue = func(v interface{}) interface{} {
|
|
|
|
|
if v == nil {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Else, check for some known primitive types.
|
|
|
|
|
switch t := v.(type) {
|
|
|
|
|
case bool, int, uint, int32, uint32,
|
|
|
|
|
int64, uint64, float32, float64:
|
|
|
|
|
// simple types. map over as is.
|
|
|
|
|
return v
|
|
|
|
|
case string:
|
|
|
|
|
// have to ensure we filter out secrets.
|
2018-05-16 01:09:15 +02:00
|
|
|
return logging.FilterString(t)
|
2018-03-31 21:08:48 +02:00
|
|
|
case *resource.Asset:
|
|
|
|
|
text := t.Text
|
|
|
|
|
if text != "" {
|
|
|
|
|
// we don't want to include the full text of an asset as we serialize it over as
|
|
|
|
|
// events. They represent user files and are thus are unbounded in size. Instead,
|
|
|
|
|
// we only include the text if it represents a user's serialized program code, as
|
|
|
|
|
// that is something we want the receiver to see to display as part of
|
|
|
|
|
// progress/diffs/etc.
|
|
|
|
|
if t.IsUserProgramCode() {
|
|
|
|
|
// also make sure we filter this in case there are any secrets in the code.
|
2018-05-16 01:09:15 +02:00
|
|
|
text = logging.FilterString(resource.MassageIfUserProgramCodeAsset(t, debug).Text)
|
2018-03-31 21:08:48 +02:00
|
|
|
} else {
|
|
|
|
|
// We need to have some string here so that we preserve that this is a
|
|
|
|
|
// text-asset
|
|
|
|
|
text = "<stripped>"
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return &resource.Asset{
|
|
|
|
|
Sig: t.Sig,
|
|
|
|
|
Hash: t.Hash,
|
|
|
|
|
Text: text,
|
|
|
|
|
Path: t.Path,
|
|
|
|
|
URI: t.URI,
|
|
|
|
|
}
|
|
|
|
|
case *resource.Archive:
|
|
|
|
|
return &resource.Archive{
|
|
|
|
|
Sig: t.Sig,
|
|
|
|
|
Hash: t.Hash,
|
|
|
|
|
Path: t.Path,
|
|
|
|
|
URI: t.URI,
|
|
|
|
|
Assets: filterValue(t.Assets).(map[string]interface{}),
|
|
|
|
|
}
|
2019-04-12 23:29:08 +02:00
|
|
|
case resource.Secret:
|
|
|
|
|
return "[secret]"
|
2018-03-31 21:08:48 +02:00
|
|
|
case resource.Computed:
|
|
|
|
|
return resource.Computed{
|
|
|
|
|
Element: filterPropertyValue(t.Element),
|
|
|
|
|
}
|
|
|
|
|
case resource.Output:
|
|
|
|
|
return resource.Output{
|
|
|
|
|
Element: filterPropertyValue(t.Element),
|
|
|
|
|
}
|
2020-10-27 18:12:12 +01:00
|
|
|
case resource.ResourceReference:
|
|
|
|
|
return resource.ResourceReference{
|
|
|
|
|
URN: resource.URN(filterValue(string(t.URN)).(string)),
|
2021-01-22 00:40:27 +01:00
|
|
|
ID: resource.PropertyValue{V: filterValue(t.ID.V)},
|
2020-10-27 18:12:12 +01:00
|
|
|
PackageVersion: filterValue(t.PackageVersion).(string),
|
|
|
|
|
}
|
2018-03-31 21:08:48 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Next, see if it's an array, slice, pointer or struct, and handle each accordingly.
|
|
|
|
|
rv := reflect.ValueOf(v)
|
|
|
|
|
switch rk := rv.Type().Kind(); rk {
|
|
|
|
|
case reflect.Array, reflect.Slice:
|
|
|
|
|
// If an array or slice, just create an array out of it.
|
|
|
|
|
var arr []interface{}
|
|
|
|
|
for i := 0; i < rv.Len(); i++ {
|
|
|
|
|
arr = append(arr, filterValue(rv.Index(i).Interface()))
|
|
|
|
|
}
|
|
|
|
|
return arr
|
|
|
|
|
case reflect.Ptr:
|
|
|
|
|
if rv.IsNil() {
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
v1 := filterValue(rv.Elem().Interface())
|
|
|
|
|
return &v1
|
|
|
|
|
case reflect.Map:
|
|
|
|
|
obj := make(map[string]interface{})
|
|
|
|
|
for _, key := range rv.MapKeys() {
|
|
|
|
|
k := key.Interface().(string)
|
|
|
|
|
v := rv.MapIndex(key).Interface()
|
|
|
|
|
obj[k] = filterValue(v)
|
|
|
|
|
}
|
|
|
|
|
return obj
|
|
|
|
|
default:
|
|
|
|
|
contract.Failf("Unrecognized value type: type=%v kind=%v", rv.Type(), rk)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return resource.NewPropertyMapFromMapRepl(
|
|
|
|
|
mappable, nil, /*replk*/
|
|
|
|
|
func(v interface{}) (resource.PropertyValue, bool) {
|
|
|
|
|
return resource.NewPropertyValue(filterValue(v)), true
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
|
2019-10-16 00:47:40 +02:00
|
|
|
func (e *eventEmitter) Close() {
|
|
|
|
|
close(e.ch)
|
|
|
|
|
<-e.done
|
|
|
|
|
}
|
|
|
|
|
|
2018-03-31 21:08:48 +02:00
|
|
|
func (e *eventEmitter) resourceOperationFailedEvent(
|
|
|
|
|
step deploy.Step, status resource.Status, steps int, debug bool) {
|
|
|
|
|
|
2018-03-05 20:39:50 +01:00
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(ResourceOperationFailed, ResourceOperationFailedPayload{
|
|
|
|
|
Metadata: makeStepEventMetadata(step.Op(), step, debug),
|
|
|
|
|
Status: status,
|
|
|
|
|
Steps: steps,
|
|
|
|
|
})
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
2018-08-23 02:52:46 +02:00
|
|
|
func (e *eventEmitter) resourceOutputsEvent(op deploy.StepOp, step deploy.Step, planning bool, debug bool) {
|
2018-03-05 20:39:50 +01:00
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(ResourceOutputsEvent, ResourceOutputsEventPayload{
|
|
|
|
|
Metadata: makeStepEventMetadata(op, step, debug),
|
|
|
|
|
Planning: planning,
|
|
|
|
|
Debug: debug,
|
|
|
|
|
})
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
2018-03-31 21:08:48 +02:00
|
|
|
func (e *eventEmitter) resourcePreEvent(
|
|
|
|
|
step deploy.Step, planning bool, debug bool) {
|
|
|
|
|
|
2018-03-05 20:39:50 +01:00
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(ResourcePreEvent, ResourcePreEventPayload{
|
|
|
|
|
Metadata: makeStepEventMetadata(step.Op(), step, debug),
|
|
|
|
|
Planning: planning,
|
|
|
|
|
Debug: debug,
|
|
|
|
|
})
|
2018-02-04 10:18:06 +01:00
|
|
|
}
|
|
|
|
|
|
2018-03-05 20:39:50 +01:00
|
|
|
func (e *eventEmitter) preludeEvent(isPreview bool, cfg config.Map) {
|
|
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
2018-01-31 22:07:40 +01:00
|
|
|
configStringMap := make(map[string]string, len(cfg))
|
|
|
|
|
for k, v := range cfg {
|
|
|
|
|
keyString := k.String()
|
|
|
|
|
valueString, err := v.Value(config.NewBlindingDecrypter())
|
|
|
|
|
contract.AssertNoError(err)
|
|
|
|
|
configStringMap[keyString] = valueString
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(PreludeEvent, PreludeEventPayload{
|
|
|
|
|
IsPreview: isPreview,
|
|
|
|
|
Config: configStringMap,
|
|
|
|
|
})
|
2018-01-31 22:07:40 +01:00
|
|
|
}
|
|
|
|
|
|
2020-11-18 20:16:30 +01:00
|
|
|
func (e *eventEmitter) summaryEvent(preview, maybeCorrupt bool, duration time.Duration, resourceChanges ResourceChanges,
|
|
|
|
|
policyPacks map[string]string) {
|
2018-02-02 06:15:09 +01:00
|
|
|
|
2018-03-05 20:39:50 +01:00
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(SummaryEvent, SummaryEventPayload{
|
2020-11-18 20:16:30 +01:00
|
|
|
IsPreview: preview,
|
2020-07-17 08:52:31 +02:00
|
|
|
MaybeCorrupt: maybeCorrupt,
|
|
|
|
|
Duration: duration,
|
|
|
|
|
ResourceChanges: resourceChanges,
|
|
|
|
|
PolicyPacks: policyPacks,
|
|
|
|
|
})
|
2018-02-02 06:15:09 +01:00
|
|
|
}
|
|
|
|
|
|
2019-06-11 00:20:44 +02:00
|
|
|
func (e *eventEmitter) policyViolationEvent(urn resource.URN, d plugin.AnalyzeDiagnostic) {
|
|
|
|
|
|
|
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
|
|
|
|
// Write prefix.
|
|
|
|
|
var prefix bytes.Buffer
|
|
|
|
|
switch d.EnforcementLevel {
|
|
|
|
|
case apitype.Mandatory:
|
|
|
|
|
prefix.WriteString(colors.SpecError)
|
2019-06-24 04:02:37 +02:00
|
|
|
case apitype.Advisory:
|
2019-06-11 00:20:44 +02:00
|
|
|
prefix.WriteString(colors.SpecWarning)
|
|
|
|
|
default:
|
|
|
|
|
contract.Failf("Unrecognized diagnostic severity: %v", d)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
prefix.WriteString(string(d.EnforcementLevel))
|
|
|
|
|
prefix.WriteString(": ")
|
|
|
|
|
prefix.WriteString(colors.Reset)
|
|
|
|
|
|
|
|
|
|
// Write the message itself.
|
|
|
|
|
var buffer bytes.Buffer
|
|
|
|
|
buffer.WriteString(colors.SpecNote)
|
|
|
|
|
|
|
|
|
|
buffer.WriteString(d.Message)
|
|
|
|
|
|
|
|
|
|
buffer.WriteString(colors.Reset)
|
|
|
|
|
buffer.WriteRune('\n')
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(PolicyViolationEvent, PolicyViolationEventPayload{
|
|
|
|
|
ResourceURN: urn,
|
|
|
|
|
Message: logging.FilterString(buffer.String()),
|
|
|
|
|
Color: colors.Raw,
|
|
|
|
|
PolicyName: d.PolicyName,
|
|
|
|
|
PolicyPackName: d.PolicyPackName,
|
|
|
|
|
PolicyPackVersion: d.PolicyPackVersion,
|
|
|
|
|
EnforcementLevel: d.EnforcementLevel,
|
|
|
|
|
Prefix: logging.FilterString(prefix.String()),
|
|
|
|
|
})
|
2019-06-11 00:20:44 +02:00
|
|
|
}
|
|
|
|
|
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
func diagEvent(e *eventEmitter, d *diag.Diag, prefix, msg string, sev diag.Severity,
|
|
|
|
|
ephemeral bool) {
|
2018-03-05 20:39:50 +01:00
|
|
|
contract.Requiref(e != nil, "e", "!= nil")
|
|
|
|
|
|
2020-07-17 08:52:31 +02:00
|
|
|
e.ch <- NewEvent(DiagEvent, DiagEventPayload{
|
|
|
|
|
URN: d.URN,
|
|
|
|
|
Prefix: logging.FilterString(prefix),
|
|
|
|
|
Message: logging.FilterString(msg),
|
|
|
|
|
Color: colors.Raw,
|
|
|
|
|
Severity: sev,
|
|
|
|
|
StreamID: d.StreamID,
|
|
|
|
|
Ephemeral: ephemeral,
|
|
|
|
|
})
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
func (e *eventEmitter) diagDebugEvent(d *diag.Diag, prefix, msg string, ephemeral bool) {
|
|
|
|
|
diagEvent(e, d, prefix, msg, diag.Debug, ephemeral)
|
2018-04-10 02:20:55 +02:00
|
|
|
}
|
2018-03-05 20:39:50 +01:00
|
|
|
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
func (e *eventEmitter) diagInfoEvent(d *diag.Diag, prefix, msg string, ephemeral bool) {
|
|
|
|
|
diagEvent(e, d, prefix, msg, diag.Info, ephemeral)
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
func (e *eventEmitter) diagInfoerrEvent(d *diag.Diag, prefix, msg string, ephemeral bool) {
|
|
|
|
|
diagEvent(e, d, prefix, msg, diag.Infoerr, ephemeral)
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
func (e *eventEmitter) diagErrorEvent(d *diag.Diag, prefix, msg string, ephemeral bool) {
|
|
|
|
|
diagEvent(e, d, prefix, msg, diag.Error, ephemeral)
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
|
|
|
|
|
Implement status sinks
This commit reverts most of #1853 and replaces it with functionally
identical logic, using the notion of status message-specific sinks.
In other words, where the original commit implemented ephemeral status
messages by adding an `isStatus` parameter to most of the logging
methdos in pulumi/pulumi, this implements ephemeral status messages as a
parallel logging sink, which emits _only_ ephemeral status messages.
The original commit message in that PR was:
> Allow log events to be marked "status" events
>
> This commit will introduce a field, IsStatus to LogRequest. A "status"
> logging event will be displayed in the Info column of the main
> display, but will not be printed out at the end, when resource
> operations complete.
>
> For example, for complex resource initialization, we'd like to display
> a series of intermediate results: [1/4] Service object created, for
> example. We'd like these to appear in the Info column, but not at the
> end, where they are not helpful to the user.
2018-08-31 22:12:40 +02:00
|
|
|
func (e *eventEmitter) diagWarningEvent(d *diag.Diag, prefix, msg string, ephemeral bool) {
|
|
|
|
|
diagEvent(e, d, prefix, msg, diag.Warning, ephemeral)
|
2017-10-05 23:08:46 +02:00
|
|
|
}
|
