maxmustermann/pulumi
1
0
Fork 0
Code Issues Pull requests Projects Releases Wiki Activity
pulumi/cmd/update.go

305 lines
9.4 KiB
Go
Raw Normal View History

Clarify aspects of using the DCO
2017-06-26 23:46:34 +02:00
// Copyright 2016-2017, Pulumi Corporation. All rights reserved.
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
Rename pulumi-fabric to pulumi This includes a few changes: * The repo name -- and hence the Go modules -- changes from pulumi-fabric to pulumi. * The Node.js SDK package changes from @pulumi/pulumi-fabric to just pulumi. * The CLI is renamed from lumi to pulumi.
2017-09-22 04:18:21 +02:00
package cmd
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
import (
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
"fmt"
"os"
"path/filepath"
"time"
"github.com/pkg/errors"
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
"github.com/spf13/cobra"
Make major commands more pleasant This change eliminates the need to constantly type in the environment name when performing major commands like configuration, planning, and deployment. It's probably due to my age, however, I keep fat-fingering simple commands in front of investors and I am embarrassed! In the new model, there is a notion of a "current environment", and I have modeled it kinda sorta just like Git's notion of "current branch." By default, the current environment is set when you `init` something. Otherwise, there is the `coco env select <env>` command to change it. (Running this command w/out a new <env> will show you the current one.) The major commands `config`, `plan`, `deploy`, and `destroy` will prefer to use the current environment, unless it is overridden by using the --env flag. All of the `coco env <cmd> <env>` commands still require the explicit passing of an environment which seems reasonable since they are, after all, about manipulating environments. As part of this, I've overhauled the aging workspace settings cruft, which had fallen into disrepair since the initial prototype.
2017-03-22 03:23:32 +01:00
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
"github.com/pulumi/pulumi/pkg/apitype"
"github.com/pulumi/pulumi/pkg/diag/colors"
Rename pulumi-fabric to pulumi This includes a few changes: * The repo name -- and hence the Go modules -- changes from pulumi-fabric to pulumi. * The Node.js SDK package changes from @pulumi/pulumi-fabric to just pulumi. * The CLI is renamed from lumi to pulumi.
2017-09-22 04:18:21 +02:00
"github.com/pulumi/pulumi/pkg/engine"
Update API types to match HEAD (#509) Add `Name` (Pulumi project name) and `Runtime` (Pulumi runtime, e.g. "nodejs") properties to `UpdateProgramRequest`; as they are now required. The long story is that as part of the PPC enabling destroy operations, data that was previously obtained from `Pulumi.yaml` is now required as part of the update request. This PR simply provides that data from the CLI. This is the final step of a line of breaking changes. pulumi-ppc https://github.com/pulumi/pulumi-ppc/commit/8ddce15b29be9e90a2701521de1cd38d332eb081 pulumi-service https://github.com/pulumi/pulumi-service/commit/8941431d57ce2fe0b6bac0578562260ff20cc9fc#diff-05a07bc54b30a35b10afe9674747fe53
2017-10-31 23:03:07 +01:00
"github.com/pulumi/pulumi/pkg/pack"
Encrypt secrets in Pulumi.yaml We now encrypt secrets at rest based on a key derived from a user suplied passphrase. The system is designed in a way such that we should be able to have a different decrypter (either using a local key or some remote service in the Pulumi.com case in the future). Care is taken to ensure that we do not leak decrypted secrets into the "info" section of the checkpoint file (since we currently store the config there). In addtion, secrets are "pay for play", a passphrase is only needed when dealing with a value that's encrypted. If secure config values are not used, `pulumi` will never prompt you for a passphrase. Otherwise, we only prompt if we know we are going to need to decrypt the value. For example, `pulumi config <key>` only prompts if `<key>` is encrypted and `pulumi deploy` and friends only prompt if you are targeting a stack that has secure configuration assoicated with it. Secure values show up as unecrypted config values inside the language hosts and providers.
2017-10-19 00:37:18 +02:00
"github.com/pulumi/pulumi/pkg/resource/config"
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
"github.com/pulumi/pulumi/pkg/tokens"
"github.com/pulumi/pulumi/pkg/util/archive"
Rename pulumi-fabric to pulumi This includes a few changes: * The repo name -- and hence the Go modules -- changes from pulumi-fabric to pulumi. * The Node.js SDK package changes from @pulumi/pulumi-fabric to just pulumi. * The CLI is renamed from lumi to pulumi.
2017-09-22 04:18:21 +02:00
"github.com/pulumi/pulumi/pkg/util/cmdutil"
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
"github.com/pulumi/pulumi/pkg/workspace"
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
)
`push` is dead; long live `update`. After discussion with Joe and Luke, we've decided to use `update` instead of `push` as it more intuitively fits the operation being performed.
2017-09-23 02:23:40 +02:00
func newUpdateCmd() *cobra.Command {
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
// Swap out which update command to use based on whether or not the Console API is available.
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
if usePulumiCloudCommands() {
return newCloudUpdateCmd()
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
}
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
return newFAFUpdateCmd()
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
}
// newFAFUpdateCmd returns the fire-and-forget version of the update command.
func newFAFUpdateCmd() *cobra.Command {
Add the ability to specify analyzers This change adds the ability to specify analyzers in two ways: 1) By listing them in the project file, for example: analyzers: - acmecorp/security - acmecorp/gitflow 2) By explicitly listing them on the CLI, as a "one off": $ coco deploy <env> \ --analyzer=acmecorp/security \ --analyzer=acmecorp/gitflow This closes out pulumi/coconut#119.
2017-03-11 19:07:34 +01:00
var analyzers []string
Add a --debug option to plan, deploy, and destroy This change introduces a --debug option to the plan, deploy, and destroy commands. Unlike --logtostderr, which merely hooks into the copious Glogging that we perform (and is therefore meant for developers of the tools themselves and not end users), --debug hooks into the user-facing debug stream. This now includes any debug messages coming from the resource providers as they perform their tasks.
2017-07-14 02:09:46 +02:00
var debug bool
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
var dryRun bool
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
var stack string
Switch to a --parallel=P flag This change flips the polarity on parallelism: rather than having a --serialize flag, we will have a --parallel=P flag, and by default we will shut off parallelism. We aren't benefiting from it at the moment (until we implement pulumi/pulumi-fabric#106), and there are more hidden dependencies in places like AWS Lambdas and Permissions than I had realized. We may revisit the default, but this allows us to bite off the messiness of dependsOn only when we benefit from it. And in any case, the --parallel=P capability will be useful.
2017-09-17 17:10:46 +02:00
var parallel int
Print configuration variables; etc. This change does a few things: * First and foremost, it tracks configuration variables that are initialized, and optionally prints them out as part of the prelude/header (based on --show-config), both in a dry-run (plan) and in an actual deployment (apply). * It tidies up some of the colorization and messages, and includes nice banners like "Deploying changes:", etc. * Fix an assertion. * Issue a new error "One or more errors occurred while applying X's configuration" just to make it easier to distinguish configuration-specific failures from ordinary ones. * Change config keys to tokens.Token, not tokens.ModuleMember, since it is legal for keys to represent class members (statics).
2017-02-28 19:32:24 +01:00
var showConfig bool
Prettify the CLI in a few places This changes a few things in the CLI, mostly just prettying it up: * Label all steps more clearly with the kind of step. Also unify the way we present this during planning and deployment. * Summarize the changes that *did not* get made just as clearly as those that did. In other words, stuff like this: info: 2 resources changed: +1 resource created -1 resource deleted 5 resources unchanged and info: no resources required 5 resources unchanged * Always print output properties when they are pertinent. This includes creates, replacements, and updates. * Show replacement creates and deletes very distinctly. The create parts show up minty green and the delete parts show up rosey red. These are the "physical" steps, compared to the "logical" step of replacement (which remains marigold). I still don't love where we are here. The asymmetry between planning and deployment bugs me, and could be surprising. ("Hey, my deploy doesn't look like my plan!") I don't know what developers will want to see here and I feel like in general we are spewing far too much into the CLI to make it even useful for anything but diagnosing failures afterwards. I propose that we should do a deep dive on this during the CLI epic, pulumi/pulumi-service#2. This resolves pulumi/pulumi-fabric#305.
2017-08-06 19:05:51 +02:00
var showReplacementSteps bool
Introduce an OpSame planning step This change introduces an OpSame planning step. The reason we need this is so that we can apply the necessary output properties, including the ID, even as we are simply walking the plan (i.e., when we aren't actually performing a deployment). This ensures that the object state evolves as required to let reads of output properties propagate in the ways necessary to reproduce past executions of the program.
2017-06-11 17:09:20 +02:00
var showSames bool
Flip the summarization polarity This change shows detailed output -- resources, their properties, and a full articulation of plan steps -- and permits summarization with the --summary (or -s) flag.
2017-02-25 16:55:22 +01:00
var summary bool
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
var cmd = &cobra.Command{
Add some command hints I sometimes revert back to some ancient version of the system, and I figure with so many other tools using different verbs here, it's worth at least improving our help text with the SuggestFors.
2017-10-21 02:36:47 +02:00
Use: "update",
Aliases: []string{"up"},
SuggestFor: []string{"deploy", "push"},
Short: "Update the resources in an stack",
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
Long: "Update the resources in an stack\n" +
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
"\n" +
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
"This command updates an existing stack whose state is represented by the\n" +
Renames: `plan` -> `preview`, `deploy` -> `push`. Part of #353. These changes also remove all command aliases from the `pulumi` command.
2017-09-23 00:15:42 +02:00
"existing snapshot file. The new desired state is computed by compiling and evaluating an\n" +
Rename the `coco nut` command to `coco pack`
2017-03-09 16:43:28 +01:00
"executable package, and extracting all resource allocations from its resulting object graph.\n" +
Renames: `plan` -> `preview`, `deploy` -> `push`. Part of #353. These changes also remove all command aliases from the `pulumi` command.
2017-09-23 00:15:42 +02:00
"These allocations are then compared against the existing state to determine what operations\n" +
"must take place to achieve the desired state. This command results in a full snapshot of the\n" +
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
"stack's new resource state, so that it may be updated incrementally again later.\n" +
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
"\n" +
Support -C/--cwd instead of path to package Previously, you could pass an explicit path to a Pulumi program when running preview or update and the tool would use that program when planning or deploying, but continue to write state in the cwd. While being able to operate on a specific package without having to cd'd all over over the place is nice, this specific implemntation was a little scary because it made it easier to run two different programs with the same local state (e.g config and checkpoints) which would lead to surprising results. Let's move to a model that some tools have where you can pass a working directory and the tool chdir's to that directory before running. This way any local state that is stored will be stored relative to the package we are operating on instead of whatever the current working directory is. Fixes #398
2017-10-06 17:50:54 +02:00
"The package to execute is loaded from the current directory. Use the `-C` or `--cwd` flag to\n" +
"use a different directory.",
Refactor shared command bits into pkg/cmdutil This paves the way for more Go-based command line tools that can share some of the common utility functions around diagnostics and exit codes.
2017-04-12 20:12:25 +02:00
Run: cmdutil.RunFunc(func(cmd *cobra.Command, args []string) error {
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
stackName, err := explicitOrCurrent(stack)
Have the CLI keep track of the current environment Previously, the engine was concered with maintaing information about the currently active environment. Now, the CLI is in charge of this. As part of this change, the engine can now assume that every environment has a non empty name (and I've added asserts on the entrypoints of the engine API to ensure that any consumer of the engine passes a non empty environment name)
2017-10-03 01:37:12 +02:00
if err != nil {
return err
}
Encrypt secrets in Pulumi.yaml We now encrypt secrets at rest based on a key derived from a user suplied passphrase. The system is designed in a way such that we should be able to have a different decrypter (either using a local key or some remote service in the Pulumi.com case in the future). Care is taken to ensure that we do not leak decrypted secrets into the "info" section of the checkpoint file (since we currently store the config there). In addtion, secrets are "pay for play", a passphrase is only needed when dealing with a value that's encrypted. If secure config values are not used, `pulumi` will never prompt you for a passphrase. Otherwise, we only prompt if we know we are going to need to decrypt the value. For example, `pulumi config <key>` only prompts if `<key>` is encrypted and `pulumi deploy` and friends only prompt if you are targeting a stack that has secure configuration assoicated with it. Secure values show up as unecrypted config values inside the language hosts and providers.
2017-10-19 00:37:18 +02:00
cfg, err := getConfiguration(stackName)
if err != nil {
return err
}
var decrypter config.ValueDecrypter = panicCrypter{}
if hasSecureValue(cfg) {
decrypter, err = getSymmetricCrypter()
if err != nil {
return err
}
}
localProvider := localStackProvider{decrypter: decrypter}
pulumiEngine := engine.Engine{Targets: localProvider, Snapshots: localProvider}
Have engine emit "events" instead of writing to streams Previously, the engine would write to io.Writer's to display output. When hosted in `pulumi` these writers were tied to os.Stdout and os.Stderr, but other applications hosting the engine could send them other places (e.g. a log to be sent to an another application later). While much better than just using the ambient streams, this was still not the best. It would be ideal if the engine could just emit strongly typed events and whatever is hosting the engine could care about displaying them. As a first step down that road, we move to a model where operations on the engine now take a `chan engine.Event` and during the course of the operation, events are written to this channel. It is the responsibility of the caller of the method to read from the channel until it is closed (singifying that the operation is complete). The events we do emit are still intermingle presentation with data, which is unfortunate, but can be improved over time. Most of the events today are just colorized in the client and printed to stdout or stderr without much thought.
2017-10-05 23:08:46 +02:00
events := make(chan engine.Event)
done := make(chan bool)
go displayEvents(events, done, debug)
Encrypt secrets in Pulumi.yaml We now encrypt secrets at rest based on a key derived from a user suplied passphrase. The system is designed in a way such that we should be able to have a different decrypter (either using a local key or some remote service in the Pulumi.com case in the future). Care is taken to ensure that we do not leak decrypted secrets into the "info" section of the checkpoint file (since we currently store the config there). In addtion, secrets are "pay for play", a passphrase is only needed when dealing with a value that's encrypted. If secure config values are not used, `pulumi` will never prompt you for a passphrase. Otherwise, we only prompt if we know we are going to need to decrypt the value. For example, `pulumi config <key>` only prompts if `<key>` is encrypted and `pulumi deploy` and friends only prompt if you are targeting a stack that has secure configuration assoicated with it. Secure values show up as unecrypted config values inside the language hosts and providers.
2017-10-19 00:37:18 +02:00
if err = pulumiEngine.Deploy(stackName, events, engine.DeployOptions{
Prettify the CLI in a few places This changes a few things in the CLI, mostly just prettying it up: * Label all steps more clearly with the kind of step. Also unify the way we present this during planning and deployment. * Summarize the changes that *did not* get made just as clearly as those that did. In other words, stuff like this: info: 2 resources changed: +1 resource created -1 resource deleted 5 resources unchanged and info: no resources required 5 resources unchanged * Always print output properties when they are pertinent. This includes creates, replacements, and updates. * Show replacement creates and deletes very distinctly. The create parts show up minty green and the delete parts show up rosey red. These are the "physical" steps, compared to the "logical" step of replacement (which remains marigold). I still don't love where we are here. The asymmetry between planning and deployment bugs me, and could be surprising. ("Hey, my deploy doesn't look like my plan!") I don't know what developers will want to see here and I feel like in general we are spewing far too much into the CLI to make it even useful for anything but diagnosing failures afterwards. I propose that we should do a deep dive on this during the CLI epic, pulumi/pulumi-service#2. This resolves pulumi/pulumi-fabric#305.
2017-08-06 19:05:51 +02:00
DryRun: dryRun,
Analyzers: analyzers,
Switch to a --parallel=P flag This change flips the polarity on parallelism: rather than having a --serialize flag, we will have a --parallel=P flag, and by default we will shut off parallelism. We aren't benefiting from it at the moment (until we implement pulumi/pulumi-fabric#106), and there are more hidden dependencies in places like AWS Lambdas and Permissions than I had realized. We may revisit the default, but this allows us to bite off the messiness of dependsOn only when we benefit from it. And in any case, the --parallel=P capability will be useful.
2017-09-17 17:10:46 +02:00
Parallel: parallel,
Prettify the CLI in a few places This changes a few things in the CLI, mostly just prettying it up: * Label all steps more clearly with the kind of step. Also unify the way we present this during planning and deployment. * Summarize the changes that *did not* get made just as clearly as those that did. In other words, stuff like this: info: 2 resources changed: +1 resource created -1 resource deleted 5 resources unchanged and info: no resources required 5 resources unchanged * Always print output properties when they are pertinent. This includes creates, replacements, and updates. * Show replacement creates and deletes very distinctly. The create parts show up minty green and the delete parts show up rosey red. These are the "physical" steps, compared to the "logical" step of replacement (which remains marigold). I still don't love where we are here. The asymmetry between planning and deployment bugs me, and could be surprising. ("Hey, my deploy doesn't look like my plan!") I don't know what developers will want to see here and I feel like in general we are spewing far too much into the CLI to make it even useful for anything but diagnosing failures afterwards. I propose that we should do a deep dive on this during the CLI epic, pulumi/pulumi-service#2. This resolves pulumi/pulumi-fabric#305.
2017-08-06 19:05:51 +02:00
ShowConfig: showConfig,
ShowReplacementSteps: showReplacementSteps,
ShowSames: showSames,
Summary: summary,
Fix CLI hangs when errors occur The change to use a Goroutine for pumping output causes a hang when an error occurs. This is because we unconditionally block on the <-done channel, even though the failure means the done will actually never occur. This changes the logic to only wait on the channel if we successfully began the operation in question.
2017-10-21 02:28:35 +02:00
}); err != nil {
return err
}
Have engine emit "events" instead of writing to streams Previously, the engine would write to io.Writer's to display output. When hosted in `pulumi` these writers were tied to os.Stdout and os.Stderr, but other applications hosting the engine could send them other places (e.g. a log to be sent to an another application later). While much better than just using the ambient streams, this was still not the best. It would be ideal if the engine could just emit strongly typed events and whatever is hosting the engine could care about displaying them. As a first step down that road, we move to a model where operations on the engine now take a `chan engine.Event` and during the course of the operation, events are written to this channel. It is the responsibility of the caller of the method to read from the channel until it is closed (singifying that the operation is complete). The events we do emit are still intermingle presentation with data, which is unfortunate, but can be improved over time. Most of the events today are just colorized in the client and printed to stdout or stderr without much thought.
2017-10-05 23:08:46 +02:00
<-done
Fix diag channel errors The event diagnostic goroutines could error out sometimes during early program exits, due to a race between the goroutine writing to the channel and the early exiting goroutine which closed the channel. This change stops closing the channels entirely on the abrupt exit paths, since it's not necessary and we want to exit immediately.
2017-10-23 00:22:15 +02:00
close(events)
close(done)
Fix CLI hangs when errors occur The change to use a Goroutine for pumping output causes a hang when an error occurs. This is because we unconditionally block on the <-done channel, even though the failure means the done will actually never occur. This changes the logic to only wait on the channel if we successfully began the operation in question.
2017-10-21 02:28:35 +02:00
return nil
Properly reap child processes This change reaps child plugin processes before exiting. It also hardens some of the exit paths to avoid os.Exiting from the middle of a callstack.
2017-03-07 14:47:42 +01:00
}),
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
}
Add the ability to specify analyzers This change adds the ability to specify analyzers in two ways: 1) By listing them in the project file, for example: analyzers: - acmecorp/security - acmecorp/gitflow 2) By explicitly listing them on the CLI, as a "one off": $ coco deploy <env> \ --analyzer=acmecorp/security \ --analyzer=acmecorp/gitflow This closes out pulumi/coconut#119.
2017-03-11 19:07:34 +01:00
cmd.PersistentFlags().StringSliceVar(
&analyzers, "analyzer", []string{},
`push` is dead; long live `update`. After discussion with Joe and Luke, we've decided to use `update` instead of `push` as it more intuitively fits the operation being performed.
2017-09-23 02:23:40 +02:00
"Run one or more analyzers as part of this update")
Add a --debug option to plan, deploy, and destroy This change introduces a --debug option to the plan, deploy, and destroy commands. Unlike --logtostderr, which merely hooks into the copious Glogging that we perform (and is therefore meant for developers of the tools themselves and not end users), --debug hooks into the user-facing debug stream. This now includes any debug messages coming from the resource providers as they perform their tasks.
2017-07-14 02:09:46 +02:00
cmd.PersistentFlags().BoolVarP(
&debug, "debug", "d", false,
"Print detailed debugging output during resource operations")
Make major commands more pleasant This change eliminates the need to constantly type in the environment name when performing major commands like configuration, planning, and deployment. It's probably due to my age, however, I keep fat-fingering simple commands in front of investors and I am embarrassed! In the new model, there is a notion of a "current environment", and I have modeled it kinda sorta just like Git's notion of "current branch." By default, the current environment is set when you `init` something. Otherwise, there is the `coco env select <env>` command to change it. (Running this command w/out a new <env> will show you the current one.) The major commands `config`, `plan`, `deploy`, and `destroy` will prefer to use the current environment, unless it is overridden by using the --env flag. All of the `coco env <cmd> <env>` commands still require the explicit passing of an environment which seems reasonable since they are, after all, about manipulating environments. As part of this, I've overhauled the aging workspace settings cruft, which had fallen into disrepair since the initial prototype.
2017-03-22 03:23:32 +01:00
cmd.PersistentFlags().StringVarP(
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
&stack, "stack", "s", "",
"Choose an stack other than the currently selected one")
Switch to a --parallel=P flag This change flips the polarity on parallelism: rather than having a --serialize flag, we will have a --parallel=P flag, and by default we will shut off parallelism. We aren't benefiting from it at the moment (until we implement pulumi/pulumi-fabric#106), and there are more hidden dependencies in places like AWS Lambdas and Permissions than I had realized. We may revisit the default, but this allows us to bite off the messiness of dependsOn only when we benefit from it. And in any case, the --parallel=P capability will be useful.
2017-09-17 17:10:46 +02:00
cmd.PersistentFlags().IntVarP(
&parallel, "parallel", "p", 0,
"Allow P resource operations to run in parallel at once (<=1 for no parallelism)")
Print configuration variables; etc. This change does a few things: * First and foremost, it tracks configuration variables that are initialized, and optionally prints them out as part of the prelude/header (based on --show-config), both in a dry-run (plan) and in an actual deployment (apply). * It tidies up some of the colorization and messages, and includes nice banners like "Deploying changes:", etc. * Fix an assertion. * Issue a new error "One or more errors occurred while applying X's configuration" just to make it easier to distinguish configuration-specific failures from ordinary ones. * Change config keys to tokens.Token, not tokens.ModuleMember, since it is legal for keys to represent class members (statics).
2017-02-28 19:32:24 +01:00
cmd.PersistentFlags().BoolVar(
&showConfig, "show-config", false,
"Show configuration keys and variables")
Implement `get` functions on all resources This change implements the `get` function for resources. Per pulumi/lumi#83, this allows Lumi scripts to actually read from the target environment. For example, we can now look up a SecurityGroup from its ARN: let group = aws.ec2.SecurityGroup.get( "arn:aws:ec2:us-west-2:153052954103:security-group:sg-02150d79"); The returned object is a fully functional resource object. So, we can then link it up with an EC2 instance, for example, in the usual ways: let instance = new aws.ec2.Instance(..., { securityGroups: [ group ], }); This didn't require any changes to the RPC or provider model, since we already implement the Get function. There are a few loose ends; two are short term: 1) URNs are not rehydrated. 2) Query is not yet implemented. One is mid-term: 3) We probably want a URN-based lookup function. But we will likely wait until we tackle pulumi/lumi#109 before adding this. And one is long term (and subtle): 4) These amount to I/O and are not repeatable! A change in the target environment may cause a script to generate a different plan intermittently. Most likely we want to apply a different kind of deployment "policy" for such scripts. These are inching towards the scripting model of pulumi/lumi#121, which is an entirely different beast than the repeatable immutable infrastructure deployments. Finally, it is worth noting that with this, we have some of the fundamental underpinnings required to finally tackle "inference" (pulumi/lumi#142).
2017-06-20 02:24:00 +02:00
cmd.PersistentFlags().BoolVar(
Prettify the CLI in a few places This changes a few things in the CLI, mostly just prettying it up: * Label all steps more clearly with the kind of step. Also unify the way we present this during planning and deployment. * Summarize the changes that *did not* get made just as clearly as those that did. In other words, stuff like this: info: 2 resources changed: +1 resource created -1 resource deleted 5 resources unchanged and info: no resources required 5 resources unchanged * Always print output properties when they are pertinent. This includes creates, replacements, and updates. * Show replacement creates and deletes very distinctly. The create parts show up minty green and the delete parts show up rosey red. These are the "physical" steps, compared to the "logical" step of replacement (which remains marigold). I still don't love where we are here. The asymmetry between planning and deployment bugs me, and could be surprising. ("Hey, my deploy doesn't look like my plan!") I don't know what developers will want to see here and I feel like in general we are spewing far too much into the CLI to make it even useful for anything but diagnosing failures afterwards. I propose that we should do a deep dive on this during the CLI epic, pulumi/pulumi-service#2. This resolves pulumi/pulumi-fabric#305.
2017-08-06 19:05:51 +02:00
&showReplacementSteps, "show-replacement-steps", true,
"Show detailed resource replacement creates and deletes instead of a single step")
Add a --show-sames flag This change adds a --show-sames flag to `coco husk deploy`. This is useful as I'm working on updates, to show what resources haven't changed during a deployment.
2017-02-27 19:58:24 +01:00
cmd.PersistentFlags().BoolVar(
Introduce an OpSame planning step This change introduces an OpSame planning step. The reason we need this is so that we can apply the necessary output properties, including the ID, even as we are simply walking the plan (i.e., when we aren't actually performing a deployment). This ensures that the object state evolves as required to let reads of output properties propagate in the ways necessary to reproduce past executions of the program.
2017-06-11 17:09:20 +02:00
&showSames, "show-sames", false,
Rename --show-sames to --show-unchanged Per Eric's feedback.
2017-02-27 20:08:14 +01:00
"Show resources that needn't be updated because they haven't changed, alongside those that do")
Use `Stack` over `Environment` to describe a deployment target Previously we used the word "Environment" as the term for a deployment target, but since then we've started to use the term Stack. Adopt this across the CLI. From a user's point of view, there are a few changes: 1. The `env` verb has been renamed to `stack` 2. The `-e` and `--env` options to commands which operate on an environment now take `-s` or `--stack` instead. 3. Becase of (2), the commands that used `-s` to display a summary now only support passing the full option name (`--summary`). On the local file system, we still store checkpoint data in the `env` sub-folder under `.pulumi` (so we can reuse existing checkpoint files that were written to the old folder)
2017-10-16 21:04:35 +02:00
cmd.PersistentFlags().BoolVar(
&summary, "summary", false,
Renames: `plan` -> `preview`, `deploy` -> `push`. Part of #353. These changes also remove all command aliases from the `pulumi` command.
2017-09-23 00:15:42 +02:00
"Only display summarization of resources and operations")
Repivot plan/apply commands; prepare for updates This change repivots the plan/apply commands slightly. This is largely in preparation for performing deletes and updates of existing environments. The old way was slightly confusing and made things appear more "magical" than they actually are. Namely, different things are needed for different kinds of deployment operations, and trying to present them each underneath a single pair of CLI commands just leads to weird modality and options. The new way is to offer three commands: create, update, and delete. Each does what it says on the tin: create provisions a new environment, update makes resource updates to an existing one, and delete tears down an existing one entirely. The arguments are what make this interesting: create demands a MuPackage to evaluate (producing the new desired state snapshot), update takes *both* an existing snapshot file plus a MuPackage to evaluate (producing the new desired state snapshot to diff against the existing one), and delete merely takes an existing snapshot file and no MuPackage, since all it must do is tear down an existing known environment. Replacing the plan functionality is the --dry-run (-n) flag that may be passed to any of the above commands. This will print out the plan without actually performing any opterations. All commands produce serializable resource files in the MuGL file format, and attempt to do smart things with respect to backups, etc., to support the intended "Git-oriented" workflow of the pure CLI dev experience.
2017-02-22 20:21:26 +01:00
return cmd
}
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
func newCloudUpdateCmd() *cobra.Command {
var stack string
var cmd = &cobra.Command{
Use: "update",
Aliases: []string{"up"},
SuggestFor: []string{"deploy", "push"},
Short: "Update the resources in an stack",
Long: "Update a Pulumi Program\n" +
"\n" +
"This command creates or updates a Stack hosted in a Pulumi Cloud.",
Run: cmdutil.RunFunc(func(cmd *cobra.Command, args []string) error {
Remove args we can now get from the repository and package (#501) This PR removes three command line parameters from Cloud-enabled Pulumi commands (`update` and `stack init`). Previously we required users to pass in `--organization`, `--repository`, and `--project`. But with the recent "Pulumi repository" changes, we can now get that from the Pulumi workspace. And the project name from the `Pulumi.yaml`. This PR also fixes a bugs that block the Cloud-enabled CLI path: `update` was getting the stack name via `explicitOrCurrent`, but that fails if the current stack (e.g. the one just initialized in the cloud) doesn't exist on the local disk. As for better handling of "current stack" and and Cloud-enabled commands, https://github.com/pulumi/pulumi/pull/493 and the PR to enable `stack select`, `stack rm`, and `stack ls` do a better job of handling situations like this.
2017-10-31 01:47:12 +01:00
// Look up the owner, repository, and project from the workspace and nearest package.
w, err := newWorkspace()
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
if err != nil {
return err
}
Remove args we can now get from the repository and package (#501) This PR removes three command line parameters from Cloud-enabled Pulumi commands (`update` and `stack init`). Previously we required users to pass in `--organization`, `--repository`, and `--project`. But with the recent "Pulumi repository" changes, we can now get that from the Pulumi workspace. And the project name from the `Pulumi.yaml`. This PR also fixes a bugs that block the Cloud-enabled CLI path: `update` was getting the stack name via `explicitOrCurrent`, but that fails if the current stack (e.g. the one just initialized in the cloud) doesn't exist on the local disk. As for better handling of "current stack" and and Cloud-enabled commands, https://github.com/pulumi/pulumi/pull/493 and the PR to enable `stack select`, `stack rm`, and `stack ls` do a better job of handling situations like this.
2017-10-31 01:47:12 +01:00
projID, err := getCloudProjectIdentifier(w)
if err != nil {
return err
}
// Default to the workspace settings if stack isn't provided.
stackName := tokens.QName(stack)
if stackName == "" {
stackName = w.Settings().Stack
}
if stackName == "" {
return errors.New("stack argument not set and workspace does not have selected stack")
}
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
// Zip up the Pulumi program's directory, which may be a parent of CWD.
cwd, err := os.Getwd()
if err != nil {
return fmt.Errorf("getting working directory: %v", err)
}
Update API types to match HEAD (#509) Add `Name` (Pulumi project name) and `Runtime` (Pulumi runtime, e.g. "nodejs") properties to `UpdateProgramRequest`; as they are now required. The long story is that as part of the PPC enabling destroy operations, data that was previously obtained from `Pulumi.yaml` is now required as part of the update request. This PR simply provides that data from the CLI. This is the final step of a line of breaking changes. pulumi-ppc https://github.com/pulumi/pulumi-ppc/commit/8ddce15b29be9e90a2701521de1cd38d332eb081 pulumi-service https://github.com/pulumi/pulumi-service/commit/8941431d57ce2fe0b6bac0578562260ff20cc9fc#diff-05a07bc54b30a35b10afe9674747fe53
2017-10-31 23:03:07 +01:00
packagePath, err := workspace.DetectPackage(cwd)
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
if err != nil {
return fmt.Errorf("looking for Pulumi package: %v", err)
}
Update API types to match HEAD (#509) Add `Name` (Pulumi project name) and `Runtime` (Pulumi runtime, e.g. "nodejs") properties to `UpdateProgramRequest`; as they are now required. The long story is that as part of the PPC enabling destroy operations, data that was previously obtained from `Pulumi.yaml` is now required as part of the update request. This PR simply provides that data from the CLI. This is the final step of a line of breaking changes. pulumi-ppc https://github.com/pulumi/pulumi-ppc/commit/8ddce15b29be9e90a2701521de1cd38d332eb081 pulumi-service https://github.com/pulumi/pulumi-service/commit/8941431d57ce2fe0b6bac0578562260ff20cc9fc#diff-05a07bc54b30a35b10afe9674747fe53
2017-10-31 23:03:07 +01:00
if packagePath == "" {
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
return fmt.Errorf("no Pulumi package found")
}
Update API types to match HEAD (#509) Add `Name` (Pulumi project name) and `Runtime` (Pulumi runtime, e.g. "nodejs") properties to `UpdateProgramRequest`; as they are now required. The long story is that as part of the PPC enabling destroy operations, data that was previously obtained from `Pulumi.yaml` is now required as part of the update request. This PR simply provides that data from the CLI. This is the final step of a line of breaking changes. pulumi-ppc https://github.com/pulumi/pulumi-ppc/commit/8ddce15b29be9e90a2701521de1cd38d332eb081 pulumi-service https://github.com/pulumi/pulumi-service/commit/8941431d57ce2fe0b6bac0578562260ff20cc9fc#diff-05a07bc54b30a35b10afe9674747fe53
2017-10-31 23:03:07 +01:00
// packagePath is the path to the pulumi.yaml file. Need its parent folder.
packageFolder := filepath.Dir(packagePath)
archive, err := archive.EncodePath(packageFolder)
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
if err != nil {
return fmt.Errorf("creating archive: %v", err)
}
Update API types to match HEAD (#509) Add `Name` (Pulumi project name) and `Runtime` (Pulumi runtime, e.g. "nodejs") properties to `UpdateProgramRequest`; as they are now required. The long story is that as part of the PPC enabling destroy operations, data that was previously obtained from `Pulumi.yaml` is now required as part of the update request. This PR simply provides that data from the CLI. This is the final step of a line of breaking changes. pulumi-ppc https://github.com/pulumi/pulumi-ppc/commit/8ddce15b29be9e90a2701521de1cd38d332eb081 pulumi-service https://github.com/pulumi/pulumi-service/commit/8941431d57ce2fe0b6bac0578562260ff20cc9fc#diff-05a07bc54b30a35b10afe9674747fe53
2017-10-31 23:03:07 +01:00
// Load the package, since we now require passing the Runtime with the update request.
pkg, err := pack.Load(packagePath)
if err != nil {
return err
}
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
// Gather up configuration.
// TODO(pulumi-service/issues/221): Have pulumi.com handle the encryption/decryption.
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
textConfig, err := getDecryptedConfig(stackName)
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
if err != nil {
return errors.Wrap(err, "getting decrypted configuration")
}
// Update the program in the Pulumi Cloud
updateRequest := apitype.UpdateProgramRequest{
Update API types to match HEAD (#509) Add `Name` (Pulumi project name) and `Runtime` (Pulumi runtime, e.g. "nodejs") properties to `UpdateProgramRequest`; as they are now required. The long story is that as part of the PPC enabling destroy operations, data that was previously obtained from `Pulumi.yaml` is now required as part of the update request. This PR simply provides that data from the CLI. This is the final step of a line of breaking changes. pulumi-ppc https://github.com/pulumi/pulumi-ppc/commit/8ddce15b29be9e90a2701521de1cd38d332eb081 pulumi-service https://github.com/pulumi/pulumi-service/commit/8941431d57ce2fe0b6bac0578562260ff20cc9fc#diff-05a07bc54b30a35b10afe9674747fe53
2017-10-31 23:03:07 +01:00
Name: pkg.Name,
Runtime: pkg.Runtime,
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
ProgramArchive: archive,
Config: textConfig,
}
var updateResponse apitype.UpdateProgramResponse
Remove args we can now get from the repository and package (#501) This PR removes three command line parameters from Cloud-enabled Pulumi commands (`update` and `stack init`). Previously we required users to pass in `--organization`, `--repository`, and `--project`. But with the recent "Pulumi repository" changes, we can now get that from the Pulumi workspace. And the project name from the `Pulumi.yaml`. This PR also fixes a bugs that block the Cloud-enabled CLI path: `update` was getting the stack name via `explicitOrCurrent`, but that fails if the current stack (e.g. the one just initialized in the cloud) doesn't exist on the local disk. As for better handling of "current stack" and and Cloud-enabled commands, https://github.com/pulumi/pulumi/pull/493 and the PR to enable `stack select`, `stack rm`, and `stack ls` do a better job of handling situations like this.
2017-10-31 01:47:12 +01:00
path := fmt.Sprintf("/orgs/%s/programs/%s/%s/stacks/%s/update",
projID.Owner, projID.Repository, projID.Project, string(stackName))
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
if err = pulumiRESTCall("POST", path, &updateRequest, &updateResponse); err != nil {
return err
}
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
fmt.Printf("Updating Stack '%s' to version %d...\n", string(stackName), updateResponse.Version)
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
// Wait for the update to complete.
status, err := waitForUpdate(path)
Add newline after update completes (#487) The last status message from the PPC doesn't include a newline. So the `pulumi` CLI renders any error messages on the same line as the last diagnostic message. Not ideal.
2017-10-28 00:40:15 +02:00
fmt.Println() // The PPC's final message we print to STDOUT doesn't include a newline.
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
if err != nil {
return fmt.Errorf("waiting for update: %v", err)
}
if status == apitype.StatusSucceeded {
Fix panic from incorrect assumption (#473) Fixes panic when the output from the PPC doesn't have a "text" property. (Still need to unify the way the PPC emits event data with the types that the Pulumi codebase uses internally.)
2017-10-26 00:28:29 +02:00
fmt.Println("Update completed successfully.")
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
return nil
}
return fmt.Errorf("update unsuccessful: status %v", status)
}),
}
Enable 'pulumi stack init' to the Cloud (#480) This PR enables the `pulumi stack init` to work against the Pulumi Cloud. Of note, I using the approach described in https://github.com/pulumi/pulumi-service/issues/240. The command takes an optional `--cloud` parameter, but otherwise will use the "default cloud" for the target organization. I also went back and revised `pulumi update` to do this as well. (Removing the `--cloud` parameter.) Note that neither of the commands will not work against `pulumi-service` head, as they require some API refactorings I'm working on right now.
2017-10-27 07:14:56 +02:00
cmd.PersistentFlags().StringVarP(
&stack, "stack", "s", "",
"Choose an stack other than the currently selected one")
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
return cmd
}
// waitForUpdate waits for the current update of a Pulumi program to reach a terminal state. Returns the
// final state. "path" is the URL endpoint to poll for updates.
func waitForUpdate(path string) (apitype.UpdateStatus, error) {
time.Sleep(5 * time.Second)
// Events occur in sequence, filter out all the ones we have seen before in each request.
eventIndex := 0
for {
time.Sleep(2 * time.Second)
var updateResults apitype.UpdateResults
pathWithIndex := fmt.Sprintf("%s?afterIndex=%d", path, eventIndex)
if err := pulumiRESTCall("GET", pathWithIndex, nil, &updateResults); err != nil {
return "", err
}
for _, event := range updateResults.Events {
printEvent(event)
eventIndex = event.Index
}
// Check if in termal state.
updateStatus := apitype.UpdateStatus(updateResults.Status)
switch updateStatus {
case apitype.StatusFailed:
fallthrough
case apitype.StatusSucceeded:
return updateStatus, nil
}
}
}
func printEvent(event apitype.UpdateEvent) {
stream := os.Stdout // Ignoring event.Kind which could be StderrEvent.
Fix panic from incorrect assumption (#473) Fixes panic when the output from the PPC doesn't have a "text" property. (Still need to unify the way the PPC emits event data with the types that the Pulumi codebase uses internally.)
2017-10-26 00:28:29 +02:00
rawEntry, ok := event.Fields["text"]
if !ok {
return
}
text := rawEntry.(string)
Enable `pulumi update` to target the Console (#461) Adds `pulumi update` so you can deploy to the Pulumi Console (via PPC on the backend). As per an earlier discussion (now lost because I rebased/squashed the commits), we want to be more deliberate about how to bifurcate "local" and "cloud" versions of every Pulumi command. We can block this PR until we do the refactoring to have `pulumi` commands go through a generic "PulumiCloud" interface. But it would be nice to commit this so I can do more refining of the `pulumi` -> Console -> PPC workflow. Another known area that will need to be revisited is how we render the PPC events on the CLI. Update events from the PPC are generated in a different format than the `engine.Event`, and we'll probably want to change the PPC to emit messages in the same format. (e.g. how we handle coloring, etc.)
2017-10-25 19:46:05 +02:00
if colorize, ok := event.Fields["colorize"].(bool); ok && colorize {
text = colors.ColorizeText(text)
}
fmt.Fprint(stream, text)
}
// getDecryptedConfig returns the stack's configuration with any secrets in plain-text.
func getDecryptedConfig(stackName tokens.QName) (map[tokens.ModuleMember]string, error) {
cfg, err := getConfiguration(stackName)
if err != nil {
return nil, errors.Wrap(err, "getting configuration")
}
var decrypter config.ValueDecrypter = panicCrypter{}
if hasSecureValue(cfg) {
decrypter, err = getSymmetricCrypter()
if err != nil {
return nil, errors.Wrap(err, "getting symmetric crypter")
}
}
textConfig := make(map[tokens.ModuleMember]string)
for key := range cfg {
decrypted, err := cfg[key].Value(decrypter)
if err != nil {
return nil, errors.Wrap(err, "could not decrypt configuration value")
}
textConfig[key] = decrypted
}
return textConfig, nil
}
Reference in a new issue Copy permalink