UNPKG

@axway/axway-central-cli

Version:

Manage APIs, services and publish to the Amplify Marketplace

platform.axway.com

216 lines (192 loc) 7.18 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
"use strict"; Object.defineProperty(exports, "__esModule", { value: true }); exports.istioInstallTemplate = exports.istioAgentsTemplate = exports.IstioValues = void 0; var _types = require("../../../../common/types"); function _defineProperty(e, r, t) { return (r = _toPropertyKey(r)) in e ? Object.defineProperty(e, r, { value: t, enumerable: !0, configurable: !0, writable: !0 }) : e[r] = t, e; } function _toPropertyKey(t) { var i = _toPrimitive(t, "string"); return "symbol" == typeof i ? i : i + ""; } function _toPrimitive(t, r) { if ("object" != typeof t || !t) return t; var e = t[Symbol.toPrimitive]; if (void 0 !== e) { var i = e.call(t, r || "default"); if ("object" != typeof i) return i; throw new TypeError("@@toPrimitive must return a primitive value."); } return ("string" === r ? String : Number)(t); } /** * @description Values for installing the Istio Agents */ class IstioValues { constructor() { _defineProperty(this, "istioAgentValues", void 0); _defineProperty(this, "istioInstallValues", void 0); _defineProperty(this, "centralConfig", void 0); _defineProperty(this, "traceabilityConfig", void 0); this.istioAgentValues = new _types.IstioAgentValues(); this.istioInstallValues = new _types.IstioInstallValues(); this.centralConfig = new _types.CentralAgentConfig(); this.traceabilityConfig = new _types.TraceabilityConfig(); } } /** * @description Generates the override file for the Amplify Istio Agents. */ exports.IstioValues = IstioValues; const istioAgentsTemplate = () => { return `--- # Config for creating the K8S Secret that holds the Amplify Platform service account details as part of the helm chart deployment secret: # Set to true, and provide the following values to enable the creation of the K8S Secret create: false name: "" password: "" publicKey: "" privateKey: "" # Traceability agent config als: enabled: {{istioAgentValues.alsEnabled}} # # Traceability Agent image overrides # image: # fullPath: # registry: docker.repository.axway.com # repository: ampc-beano-docker-prod/2.1 # name: als-traceability-agent # tag: # pullPolicy: IfNotPresent # pullSecret: # Header publishing mode. Set to default or verbose. mode: {{istioAgentValues.alsMode}} # Name of the k8scluster clusterName: {{istioAgentValues.clusterName}} # Name of the secret containing the public & private keys used by the provided service account client ID keysSecretName: {{istioAgentValues.keysSecretName}} # List of namespaces where the ALS Envoy filters should be applied envoyFilterNamespaces: - {{istioAgentValues.envoyFilterNamespace}} publishHeaders: true # Amplify config overrides env: LOG_LEVEL: info CENTRAL_DEPLOYMENT: {{centralConfig.deployment}} CENTRAL_REGION: {{centralConfig.region}} CENTRAL_ORGANIZATIONID: "{{centralConfig.orgId}}" CENTRAL_AUTH_CLIENTID: {{centralConfig.dosaAccount.clientId}} CENTRAL_AGENTNAME: {{centralConfig.taAgentName}} CENTRAL_ENVIRONMENT: {{centralConfig.environment}} CENTRAL_TEAM: "{{centralConfig.ampcTeamName}}" TRACEABILITY_PROTOCOL: {{traceabilityConfig.protocol}} # Discovery agent config da: enabled: {{istioAgentValues.discoveryEnabled}} # # Discovery Agent image overrides # image: # fullPath: # registry: docker.repository.axway.com # repository: ampc-beano-docker-prod/1.1 # name: istio-discovery-agent # tag: # pullPolicy: IfNotPresent # pullSecret: # Name of the secret containing the public & private keys used by the provided service account client ID keysSecretName: {{istioAgentValues.keysSecretName}} # Name of the K8SCluster the agent is connected to clusterName: {{istioAgentValues.clusterName}} # Resource discovery config discovery: # List of http endpoints to discover api specs from virtualService: # List of namespaces that will be used by agent to discover VirtualService resources namespaces: {{#each istioAgentValues.discoveryNamespaces}} - {{this}} {{/each}} # List of labels that will be used by agent to filter VirtualService resources labels: [] requestAuth: # List of namespaces that will be used by agent to discover RequestAuthentication resources namespaces: {{#each istioAgentValues.discoveryNamespaces}} - {{this}} {{/each}} # List of labels that will be used by agent to filter RequestAuthentication resources labels: [] # IDP Provider config idpProviders: # Amplify config overrides env: LOG_LEVEL: info CENTRAL_AGENTNAME: {{centralConfig.daAgentName}} CENTRAL_REGION: {{centralConfig.region}} CENTRAL_AUTH_CLIENTID: {{centralConfig.dosaAccount.clientId}} CENTRAL_ORGANIZATIONID: "{{centralConfig.orgId}}" CENTRAL_ENVIRONMENT: {{centralConfig.environment}} CENTRAL_TEAM: "{{centralConfig.ampcTeamName}}" # Deploy the chart with an optional demo service list: enabled: {{istioAgentValues.demoSvcEnabled}}`; }; /** * @description Generates the override file to install Istio with settings to connect to the Istio Traceability Agent. */ exports.istioAgentsTemplate = istioAgentsTemplate; const istioInstallTemplate = () => { return `--- apiVersion: install.istio.io/v1alpha1 kind: IstioOperator spec: meshConfig: enableTracing: {{istioInstallValues.enableTracing}} enableEnvoyAccessLogService: {{istioInstallValues.enableAls}} defaultConfig: envoyAccessLogService: address: ampc-hybrid-als.{{istioInstallValues.alsNamespace}}.svc.cluster.local:9000 outboundTrafficPolicy: mode: REGISTRY_ONLY {{#if istioInstallValues.isNewInstall}} components: egressGateways: - name: istio-egressgateway enabled: false ingressGateways: - name: istio-ingressgateway enabled: true {{#if istioInstallValues.host}} k8s: replicaCount: 1 service: ports: - port: {{istioInstallValues.port}} targetPort: {{istioInstallValues.targetPort}} name: {{istioInstallValues.protocol}}-{{istioInstallValues.port}} {{/if}} pilot: enabled: true values: telemetry: enabled: true v2: enabled: true gateways: istio-ingressgateway: name: istio-ingressgateway labels: istio: istio-apic-ingress app: apic-ingress resources: {} {{#if istioInstallValues.host}} serviceAnnotations: external-dns.alpha.kubernetes.io/hostname: {{istioInstallValues.host}}. ports: - port: {{istioInstallValues.port}} name: {{istioInstallValues.protocol}}-{{istioInstallValues.port}} {{#if istioInstallValues.certSecretName}} secretVolumes: - name: {{istioInstallValues.certSecretName}} secretName: {{istioInstallValues.certSecretName}} mountPath: /etc/istio/istio-ingressgateway {{/if}} {{/if}} {{else}} values: telemetry: enabled: true v2: enabled: true {{/if}} `; }; exports.istioInstallTemplate = istioInstallTemplate;