|
|
|
package main
|
|
|
|
|
|
|
|
import (
|
|
|
|
"encoding/json"
|
|
|
|
"os"
|
|
|
|
|
|
|
|
"github.com/Sirupsen/logrus"
|
|
|
|
"github.com/joho/godotenv"
|
|
|
|
"github.com/urfave/cli"
|
|
|
|
)
|
|
|
|
|
|
|
|
var revision string // build number set at compile-time
|
|
|
|
|
|
|
|
func main() {
|
|
|
|
app := cli.NewApp()
|
|
|
|
app.Name = "terraform plugin"
|
|
|
|
app.Usage = "terraform plugin"
|
|
|
|
app.Action = run
|
|
|
|
app.Version = revision
|
|
|
|
app.Flags = []cli.Flag{
|
|
|
|
|
|
|
|
//
|
|
|
|
// plugin args
|
|
|
|
//
|
|
|
|
|
|
|
|
cli.StringSliceFlag{
|
|
|
|
Name: "actions",
|
|
|
|
Usage: "a list of actions to have terraform perform",
|
|
|
|
EnvVar: "PLUGIN_ACTIONS",
|
|
|
|
Value: &cli.StringSlice{"validate", "plan", "apply"},
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "ca_cert",
|
|
|
|
Usage: "ca cert to add to your environment to allow terraform to use internal/private resources",
|
|
|
|
EnvVar: "PLUGIN_CA_CERT",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "env-file",
|
|
|
|
Usage: "source env file",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "init_options",
|
|
|
|
Usage: "options for the init command. See https://www.terraform.io/docs/commands/init.html",
|
|
|
|
EnvVar: "PLUGIN_INIT_OPTIONS",
|
|
|
|
},
|
|
|
|
cli.IntFlag{
|
|
|
|
Name: "parallelism",
|
|
|
|
Usage: "The number of concurrent operations as Terraform walks its graph",
|
|
|
|
EnvVar: "PLUGIN_PARALLELISM",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "netrc.machine",
|
|
|
|
Usage: "netrc machine",
|
|
|
|
EnvVar: "DRONE_NETRC_MACHINE",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "netrc.username",
|
|
|
|
Usage: "netrc username",
|
|
|
|
EnvVar: "DRONE_NETRC_USERNAME",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "netrc.password",
|
|
|
|
Usage: "netrc password",
|
|
|
|
EnvVar: "DRONE_NETRC_PASSWORD",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "role_arn_to_assume",
|
|
|
|
Usage: "A role to assume before running the terraform commands",
|
|
|
|
EnvVar: "PLUGIN_ROLE_ARN_TO_ASSUME",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "root_dir",
|
|
|
|
Usage: "The root directory where the terraform files live. When unset, the top level directory will be assumed",
|
|
|
|
EnvVar: "PLUGIN_ROOT_DIR",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "secrets",
|
|
|
|
Usage: "a map of secrets to pass to the Terraform `plan` and `apply` commands. Each value is passed as a `<key>=<ENV>` option",
|
|
|
|
EnvVar: "PLUGIN_SECRETS",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "plugin_dir",
|
|
|
|
Usage: "whether or not to set custom plugin directory path",
|
|
|
|
EnvVar: "PLUGIN_DIR",
|
|
|
|
}
|
|
|
|
cli.BoolFlag{
|
|
|
|
Name: "sensitive",
|
|
|
|
Usage: "whether or not to suppress terraform commands to stdout",
|
|
|
|
EnvVar: "PLUGIN_SENSITIVE",
|
|
|
|
},
|
|
|
|
cli.StringSliceFlag{
|
|
|
|
Name: "targets",
|
|
|
|
Usage: "targets to run apply or plan on",
|
|
|
|
EnvVar: "PLUGIN_TARGETS",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "tf.version",
|
|
|
|
Usage: "terraform version to use",
|
|
|
|
EnvVar: "PLUGIN_TF_VERSION",
|
|
|
|
},
|
|
|
|
cli.StringFlag{
|
|
|
|
Name: "vars",
|
|
|
|
Usage: "a map of variables to pass to the Terraform `plan` and `apply` commands. Each value is passed as a `<key>=<value>` option",
|
|
|
|
EnvVar: "PLUGIN_VARS",
|
|
|
|
},
|
|
|
|
cli.StringSliceFlag{
|
|
|
|
Name: "var_files",
|
|
|
|
Usage: "a list of var files to use. Each value is passed as -var-file=<value>",
|
|
|
|
EnvVar: "PLUGIN_VAR_FILES",
|
|
|
|
},
|
|
|
|
}
|
|
|
|
|
|
|
|
if err := app.Run(os.Args); err != nil {
|
|
|
|
logrus.Fatal(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
func run(c *cli.Context) error {
|
|
|
|
logrus.WithFields(logrus.Fields{
|
|
|
|
"Revision": revision,
|
|
|
|
}).Info("Drone Terraform Plugin Version")
|
|
|
|
|
|
|
|
if c.String("env-file") != "" {
|
|
|
|
_ = godotenv.Load(c.String("env-file"))
|
|
|
|
}
|
|
|
|
|
|
|
|
var vars map[string]string
|
|
|
|
if c.String("vars") != "" {
|
|
|
|
if err := json.Unmarshal([]byte(c.String("vars")), &vars); err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
var secrets map[string]string
|
|
|
|
if c.String("secrets") != "" {
|
|
|
|
if err := json.Unmarshal([]byte(c.String("secrets")), &secrets); err != nil {
|
|
|
|
panic(err)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
initOptions := InitOptions{}
|
|
|
|
json.Unmarshal([]byte(c.String("init_options")), &initOptions)
|
|
|
|
|
|
|
|
plugin := Plugin{
|
|
|
|
Config: Config{
|
|
|
|
Actions: c.StringSlice("actions"),
|
|
|
|
Vars: vars,
|
|
|
|
Secrets: secrets,
|
|
|
|
InitOptions: initOptions,
|
|
|
|
Cacert: c.String("ca_cert"),
|
|
|
|
Sensitive: c.Bool("sensitive"),
|
|
|
|
RoleARN: c.String("role_arn_to_assume"),
|
|
|
|
RootDir: c.String("root_dir"),
|
|
|
|
Parallelism: c.Int("parallelism"),
|
|
|
|
Targets: c.StringSlice("targets"),
|
|
|
|
VarFiles: c.StringSlice("var_files"),
|
|
|
|
PluginDir: c.Bool("plugin_dir"),
|
|
|
|
},
|
|
|
|
Netrc: Netrc{
|
|
|
|
Login: c.String("netrc.username"),
|
|
|
|
Machine: c.String("netrc.machine"),
|
|
|
|
Password: c.String("netrc.password"),
|
|
|
|
},
|
|
|
|
Terraform: Terraform{
|
|
|
|
Version: c.String("tf.version"),
|
|
|
|
},
|
|
|
|
}
|
|
|
|
|
|
|
|
return plugin.Exec()
|
|
|
|
}
|