2018-11-14 22:33:35 +01:00
|
|
|
package deploy
|
|
|
|
|
|
|
|
import (
|
|
|
|
"context"
|
|
|
|
"fmt"
|
2020-04-24 00:52:48 +02:00
|
|
|
"sort"
|
2018-11-14 22:33:35 +01:00
|
|
|
|
2020-11-04 04:13:04 +01:00
|
|
|
uuid "github.com/gofrs/uuid"
|
2018-11-14 22:33:35 +01:00
|
|
|
"github.com/pkg/errors"
|
|
|
|
|
2020-04-14 10:30:25 +02:00
|
|
|
"github.com/pulumi/pulumi/sdk/v2/go/common/resource"
|
|
|
|
"github.com/pulumi/pulumi/sdk/v2/go/common/resource/plugin"
|
|
|
|
"github.com/pulumi/pulumi/sdk/v2/go/common/tokens"
|
|
|
|
"github.com/pulumi/pulumi/sdk/v2/go/common/util/contract"
|
|
|
|
"github.com/pulumi/pulumi/sdk/v2/go/common/workspace"
|
2018-11-14 22:33:35 +01:00
|
|
|
)
|
|
|
|
|
|
|
|
type builtinProvider struct {
|
2020-11-02 22:36:12 +01:00
|
|
|
context context.Context
|
|
|
|
cancel context.CancelFunc
|
|
|
|
|
2018-11-14 22:33:35 +01:00
|
|
|
backendClient BackendClient
|
2020-11-02 22:36:12 +01:00
|
|
|
resources *resourceMap
|
2018-11-14 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
2020-11-02 22:36:12 +01:00
|
|
|
func newBuiltinProvider(backendClient BackendClient, resources *resourceMap) *builtinProvider {
|
2018-11-14 22:33:35 +01:00
|
|
|
ctx, cancel := context.WithCancel(context.Background())
|
|
|
|
return &builtinProvider{
|
|
|
|
context: ctx,
|
|
|
|
cancel: cancel,
|
2020-11-02 22:36:12 +01:00
|
|
|
backendClient: backendClient,
|
|
|
|
resources: resources,
|
2018-11-14 22:33:35 +01:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) Close() error {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) Pkg() tokens.Package {
|
|
|
|
return "pulumi"
|
|
|
|
}
|
|
|
|
|
2020-02-28 01:10:47 +01:00
|
|
|
// GetSchema returns the JSON-serialized schema for the provider.
|
|
|
|
func (p *builtinProvider) GetSchema(version int) ([]byte, error) {
|
|
|
|
return []byte("{}"), nil
|
|
|
|
}
|
|
|
|
|
2018-11-14 22:33:35 +01:00
|
|
|
// CheckConfig validates the configuration for this resource provider.
|
2019-05-20 22:56:27 +02:00
|
|
|
func (p *builtinProvider) CheckConfig(urn resource.URN, olds,
|
2019-05-23 19:54:18 +02:00
|
|
|
news resource.PropertyMap, allowUnknowns bool) (resource.PropertyMap, []plugin.CheckFailure, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
|
|
|
|
return nil, nil, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
// DiffConfig checks what impacts a hypothetical change to this provider's configuration will have on the provider.
|
2019-05-23 19:54:18 +02:00
|
|
|
func (p *builtinProvider) DiffConfig(urn resource.URN, olds, news resource.PropertyMap,
|
2019-07-31 18:39:07 +02:00
|
|
|
allowUnknowns bool, ignoreChanges []string) (plugin.DiffResult, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
return plugin.DiffResult{Changes: plugin.DiffNone}, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) Configure(props resource.PropertyMap) error {
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
const stackReferenceType = "pulumi:pulumi:StackReference"
|
|
|
|
|
|
|
|
func (p *builtinProvider) Check(urn resource.URN, state, inputs resource.PropertyMap,
|
|
|
|
allowUnknowns bool) (resource.PropertyMap, []plugin.CheckFailure, error) {
|
|
|
|
|
|
|
|
typ := urn.Type()
|
|
|
|
if typ != stackReferenceType {
|
|
|
|
return nil, nil, errors.Errorf("unrecognized resource type '%v'", urn.Type())
|
|
|
|
}
|
|
|
|
|
|
|
|
var name resource.PropertyValue
|
|
|
|
for k := range inputs {
|
|
|
|
if k != "name" {
|
|
|
|
return nil, []plugin.CheckFailure{{Property: k, Reason: fmt.Sprintf("unknown property \"%v\"", k)}}, nil
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
name, ok := inputs["name"]
|
|
|
|
if !ok {
|
|
|
|
return nil, []plugin.CheckFailure{{Property: "name", Reason: `missing required property "name"`}}, nil
|
|
|
|
}
|
|
|
|
if !name.IsString() && !name.IsComputed() {
|
|
|
|
return nil, []plugin.CheckFailure{{Property: "name", Reason: `property "name" must be a string`}}, nil
|
|
|
|
}
|
|
|
|
return inputs, nil, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) Diff(urn resource.URN, id resource.ID, state, inputs resource.PropertyMap,
|
2019-07-31 18:39:07 +02:00
|
|
|
allowUnknowns bool, ignoreChanges []string) (plugin.DiffResult, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
|
|
|
|
contract.Assert(urn.Type() == stackReferenceType)
|
|
|
|
|
|
|
|
if !inputs["name"].DeepEquals(state["name"]) {
|
|
|
|
return plugin.DiffResult{
|
|
|
|
Changes: plugin.DiffSome,
|
|
|
|
ReplaceKeys: []resource.PropertyKey{"name"},
|
|
|
|
}, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
return plugin.DiffResult{Changes: plugin.DiffNone}, nil
|
|
|
|
}
|
|
|
|
|
2020-10-09 22:13:55 +02:00
|
|
|
func (p *builtinProvider) Create(urn resource.URN, inputs resource.PropertyMap, timeout float64,
|
|
|
|
preview bool) (resource.ID, resource.PropertyMap, resource.Status, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
|
|
|
|
contract.Assert(urn.Type() == stackReferenceType)
|
|
|
|
|
|
|
|
state, err := p.readStackReference(inputs)
|
|
|
|
if err != nil {
|
|
|
|
return "", nil, resource.StatusUnknown, err
|
|
|
|
}
|
2020-10-09 22:13:55 +02:00
|
|
|
|
|
|
|
var id resource.ID
|
|
|
|
if !preview {
|
2020-11-04 04:13:04 +01:00
|
|
|
// generate a new uuid
|
|
|
|
uuid, err := uuid.NewV4()
|
|
|
|
if err != nil {
|
|
|
|
return "", nil, resource.StatusOK, err
|
|
|
|
}
|
|
|
|
id = resource.ID(uuid.String())
|
2020-10-09 22:13:55 +02:00
|
|
|
}
|
|
|
|
|
2018-11-14 22:33:35 +01:00
|
|
|
return id, state, resource.StatusOK, nil
|
|
|
|
}
|
|
|
|
|
2020-10-09 22:13:55 +02:00
|
|
|
func (p *builtinProvider) Update(urn resource.URN, id resource.ID, state, inputs resource.PropertyMap, timeout float64,
|
|
|
|
ignoreChanges []string, preview bool) (resource.PropertyMap, resource.Status, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
|
|
|
|
contract.Failf("unexpected update for builtin resource %v", urn)
|
|
|
|
contract.Assert(urn.Type() == stackReferenceType)
|
|
|
|
|
|
|
|
return state, resource.StatusOK, errors.New("unexpected update for builtin resource")
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) Delete(urn resource.URN, id resource.ID,
|
Addition of Custom Timeouts (#2885)
* Plumbing the custom timeouts from the engine to the providers
* Plumbing the CustomTimeouts through to the engine and adding test to show this
* Change the provider proto to include individual timeouts
* Plumbing the CustomTimeouts from the engine through to the Provider RPC interface
* Change how the CustomTimeouts are sent across RPC
These errors were spotted in testing. We can now see that the timeout
information is arriving in the RegisterResourceRequest
```
req=&pulumirpc.RegisterResourceRequest{
Type: "aws:s3/bucket:Bucket",
Name: "my-bucket",
Parent: "urn:pulumi:dev::aws-vpc::pulumi:pulumi:Stack::aws-vpc-dev",
Custom: true,
Object: &structpb.Struct{},
Protect: false,
Dependencies: nil,
Provider: "",
PropertyDependencies: {},
DeleteBeforeReplace: false,
Version: "",
IgnoreChanges: nil,
AcceptSecrets: true,
AdditionalSecretOutputs: nil,
Aliases: nil,
CustomTimeouts: &pulumirpc.RegisterResourceRequest_CustomTimeouts{
Create: 300,
Update: 400,
Delete: 500,
XXX_NoUnkeyedLiteral: struct {}{},
XXX_unrecognized: nil,
XXX_sizecache: 0,
},
XXX_NoUnkeyedLiteral: struct {}{},
XXX_unrecognized: nil,
XXX_sizecache: 0,
}
```
* Changing the design to use strings
* CHANGELOG entry to include the CustomTimeouts work
* Changing custom timeouts to be passed around the engine as converted value
We don't want to pass around strings - the user can provide it but we want
to make the engine aware of the timeout in seconds as a float64
2019-07-15 23:26:28 +02:00
|
|
|
state resource.PropertyMap, timeout float64) (resource.Status, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
|
|
|
|
contract.Assert(urn.Type() == stackReferenceType)
|
|
|
|
|
|
|
|
return resource.StatusOK, nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) Read(urn resource.URN, id resource.ID,
|
2019-03-11 21:50:00 +01:00
|
|
|
inputs, state resource.PropertyMap) (plugin.ReadResult, resource.Status, error) {
|
2018-11-14 22:33:35 +01:00
|
|
|
|
|
|
|
contract.Assert(urn.Type() == stackReferenceType)
|
|
|
|
|
2019-03-11 21:50:00 +01:00
|
|
|
outputs, err := p.readStackReference(state)
|
2018-11-14 22:33:35 +01:00
|
|
|
if err != nil {
|
2019-03-11 21:50:00 +01:00
|
|
|
return plugin.ReadResult{}, resource.StatusUnknown, err
|
2018-11-14 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
2019-03-11 21:50:00 +01:00
|
|
|
return plugin.ReadResult{
|
|
|
|
Inputs: inputs,
|
|
|
|
Outputs: outputs,
|
|
|
|
}, resource.StatusOK, nil
|
2018-11-14 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
Initial support for remote component construction. (#5280)
These changes add initial support for the construction of remote
components. For now, this support is limited to the NodeJS SDK;
follow-up changes will implement support for the other SDKs.
Remote components are component resources that are constructed and
managed by plugins rather than by Pulumi programs. In this sense, they
are a bit like cloud resources, and are supported by the same
distribution and plugin loading mechanisms and described by the same
schema system.
The construction of a remote component is initiated by a
`RegisterResourceRequest` with the new `remote` field set to `true`.
When the resource monitor receives such a request, it loads the plugin
that implements the component resource and calls the `Construct`
method added to the resource provider interface as part of these
changes. This method accepts the information necessary to construct the
component and its children: the component's name, type, resource
options, inputs, and input dependencies. It is responsible for
dispatching to the appropriate component factory to create the
component, then returning its URN, resolved output properties, and
output property dependencies. The dependency information is necessary to
support features such as delete-before-replace, which rely on precise
dependency information for custom resources.
These changes also add initial support for more conveniently
implementing resource providers in NodeJS. The interface used to
implement such a provider is similar to the dynamic provider interface
(and may be unified with that interface in the future).
An example of a NodeJS program constructing a remote component resource
also implemented in NodeJS can be found in
`tests/construct_component/nodejs`.
This is the core of #2430.
2020-09-08 04:33:55 +02:00
|
|
|
func (p *builtinProvider) Construct(info plugin.ConstructInfo, typ tokens.Type, name tokens.QName, parent resource.URN,
|
|
|
|
inputs resource.PropertyMap, options plugin.ConstructOptions) (plugin.ConstructResult, error) {
|
|
|
|
return plugin.ConstructResult{}, errors.New("builtin resources may not be constructed")
|
|
|
|
}
|
|
|
|
|
2019-11-19 21:51:14 +01:00
|
|
|
const readStackOutputs = "pulumi:pulumi:readStackOutputs"
|
2019-02-15 23:29:55 +01:00
|
|
|
const readStackResourceOutputs = "pulumi:pulumi:readStackResourceOutputs"
|
2020-11-02 22:36:12 +01:00
|
|
|
const getResource = "pulumi:pulumi:getResource"
|
2019-02-15 23:29:55 +01:00
|
|
|
|
2018-11-14 22:33:35 +01:00
|
|
|
func (p *builtinProvider) Invoke(tok tokens.ModuleMember,
|
|
|
|
args resource.PropertyMap) (resource.PropertyMap, []plugin.CheckFailure, error) {
|
2019-02-15 23:29:55 +01:00
|
|
|
|
2019-11-19 21:51:14 +01:00
|
|
|
switch tok {
|
|
|
|
case readStackOutputs:
|
|
|
|
outs, err := p.readStackReference(args)
|
|
|
|
if err != nil {
|
|
|
|
return nil, nil, err
|
|
|
|
}
|
|
|
|
return outs, nil, nil
|
|
|
|
case readStackResourceOutputs:
|
|
|
|
outs, err := p.readStackResourceOutputs(args)
|
|
|
|
if err != nil {
|
|
|
|
return nil, nil, err
|
|
|
|
}
|
|
|
|
return outs, nil, nil
|
2020-11-02 22:36:12 +01:00
|
|
|
case getResource:
|
|
|
|
outs, err := p.getResource(args)
|
|
|
|
if err != nil {
|
|
|
|
return nil, nil, err
|
|
|
|
}
|
|
|
|
return outs, nil, nil
|
2019-11-19 21:51:14 +01:00
|
|
|
default:
|
|
|
|
return nil, nil, errors.Errorf("unrecognized function name: '%v'", tok)
|
2019-02-15 23:29:55 +01:00
|
|
|
}
|
2018-11-14 22:33:35 +01:00
|
|
|
}
|
|
|
|
|
2019-10-22 09:20:26 +02:00
|
|
|
func (p *builtinProvider) StreamInvoke(
|
|
|
|
tok tokens.ModuleMember, args resource.PropertyMap,
|
|
|
|
onNext func(resource.PropertyMap) error) ([]plugin.CheckFailure, error) {
|
|
|
|
|
|
|
|
return nil, fmt.Errorf("the builtin provider does not implement streaming invokes")
|
|
|
|
}
|
|
|
|
|
2018-11-14 22:33:35 +01:00
|
|
|
func (p *builtinProvider) GetPluginInfo() (workspace.PluginInfo, error) {
|
|
|
|
// return an error: this should not be called for the builtin provider
|
|
|
|
return workspace.PluginInfo{}, errors.New("the builtin provider does not report plugin info")
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) SignalCancellation() error {
|
|
|
|
p.cancel()
|
|
|
|
return nil
|
|
|
|
}
|
|
|
|
|
|
|
|
func (p *builtinProvider) readStackReference(inputs resource.PropertyMap) (resource.PropertyMap, error) {
|
|
|
|
name, ok := inputs["name"]
|
|
|
|
contract.Assert(ok)
|
|
|
|
contract.Assert(name.IsString())
|
|
|
|
|
|
|
|
if p.backendClient == nil {
|
|
|
|
return nil, errors.New("no backend client is available")
|
|
|
|
}
|
|
|
|
|
|
|
|
outputs, err := p.backendClient.GetStackOutputs(p.context, name.StringValue())
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
Do not taint all stack outputs as secrets if just one is
When using StackReference, if the stack you reference contains any
secret outputs, we have to mark the entire `outputs` member as a
secret output. This is because we only track secretness on a per
`Output<T>` basis.
For `getSecret` and friends, however, we know the name of the output
you are looking up and we can be smarter about if the returned
`Output<T>` should be treated as a secret or not.
This change augments the provider for StackReference such that it also
returns a list of top level stack output names who's values contain
secrets. In the language SDKs, we use this information, when present,
to decide if we should return an `Output<T>` that is marked as a
secret or not. Since the SDK and CLI are independent components, care
is taken to ensure that when the CLI does not return this information,
we behave as we did before (i.e. if any output is a secret, we treat
every output as a secret).
Fixes #2744
2019-08-13 02:02:30 +02:00
|
|
|
secretOutputs := make([]resource.PropertyValue, 0)
|
|
|
|
for k, v := range outputs {
|
|
|
|
if v.ContainsSecrets() {
|
|
|
|
secretOutputs = append(secretOutputs, resource.NewStringProperty(string(k)))
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2020-04-25 21:37:05 +02:00
|
|
|
// Sort the secret outputs so the order is deterministic, to avoid spurious diffs during updates.
|
2020-04-24 00:52:48 +02:00
|
|
|
sort.Slice(secretOutputs, func(i, j int) bool {
|
|
|
|
return secretOutputs[i].String() < secretOutputs[j].String()
|
|
|
|
})
|
|
|
|
|
2018-11-14 22:33:35 +01:00
|
|
|
return resource.PropertyMap{
|
2019-08-14 21:12:23 +02:00
|
|
|
"name": name,
|
|
|
|
"outputs": resource.NewObjectProperty(outputs),
|
|
|
|
"secretOutputNames": resource.NewArrayProperty(secretOutputs),
|
2018-11-14 22:33:35 +01:00
|
|
|
}, nil
|
|
|
|
}
|
2019-02-15 23:29:55 +01:00
|
|
|
|
|
|
|
func (p *builtinProvider) readStackResourceOutputs(inputs resource.PropertyMap) (resource.PropertyMap, error) {
|
|
|
|
name, ok := inputs["stackName"]
|
|
|
|
contract.Assert(ok)
|
|
|
|
contract.Assert(name.IsString())
|
|
|
|
|
|
|
|
if p.backendClient == nil {
|
|
|
|
return nil, errors.New("no backend client is available")
|
|
|
|
}
|
|
|
|
|
|
|
|
outputs, err := p.backendClient.GetStackResourceOutputs(p.context, name.StringValue())
|
|
|
|
if err != nil {
|
|
|
|
return nil, err
|
|
|
|
}
|
|
|
|
|
|
|
|
return resource.PropertyMap{
|
|
|
|
"name": name,
|
|
|
|
"outputs": resource.NewObjectProperty(outputs),
|
|
|
|
}, nil
|
|
|
|
}
|
2020-11-02 22:36:12 +01:00
|
|
|
|
|
|
|
func (p *builtinProvider) getResource(inputs resource.PropertyMap) (resource.PropertyMap, error) {
|
|
|
|
urn, ok := inputs["urn"]
|
|
|
|
contract.Assert(ok)
|
|
|
|
contract.Assert(urn.IsString())
|
|
|
|
|
2020-11-20 22:13:23 +01:00
|
|
|
// #5803: track secret outputs in the resource map. This is necessary to ensure that the
|
|
|
|
// `additionalSecretOutputs` option that was provided when the resource was registered is properly respected by
|
|
|
|
// `getResource`.
|
|
|
|
|
2020-11-02 22:36:12 +01:00
|
|
|
state, ok := p.resources.get(resource.URN(urn.StringValue()))
|
|
|
|
if !ok {
|
|
|
|
return nil, errors.Errorf("unknown resource %v", urn.StringValue())
|
|
|
|
}
|
|
|
|
|
|
|
|
return resource.PropertyMap{
|
|
|
|
"urn": urn,
|
|
|
|
"id": resource.NewStringProperty(string(state.ID)),
|
|
|
|
"state": resource.NewObjectProperty(state.Outputs),
|
|
|
|
}, nil
|
|
|
|
}
|