UNPKG

kubricate

Version:

A TypeScript framework for building reusable, type-safe Kubernetes infrastructure — without the YAML mess.

github.com/thaitype/kubricate/tree/main/packages/kubricate

thaitype/kubricate

52 lines (43 loc) 1.75 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
import c from 'ansis'; import { type BaseLogger } from '@kubricate/core'; import type { KubectlExecutor } from '../executor/kubectl-executor.js'; import { MARK_CHECK } from '../internal/constant.js'; import type { GlobalConfigOptions } from '../internal/types.js'; import type { SecretsOrchestrator } from '../secret/index.js'; // eslint-disable-next-line @typescript-eslint/no-empty-object-type export interface SecretCommandOptions extends GlobalConfigOptions {} export class SecretCommand { constructor( protected options: GlobalConfigOptions, protected logger: BaseLogger, protected kubectl: KubectlExecutor ) {} async validate(orchestrator: SecretsOrchestrator) { this.logger.info('Validating secrets configuration...'); await orchestrator.validate(); this.logger.log(c.green`${MARK_CHECK} All secret managers validated successfully.`); } async apply(orchestrator: SecretsOrchestrator) { await orchestrator.validate(); const effects = await orchestrator.apply(); if (effects.length === 0) { this.logger.warn(`No secrets to apply.`); return; } for (const effect of effects) { if (effect.type === 'kubectl') { const name = effect.value?.metadata?.name ?? 'unnamed'; this.logger.info(`Applying secret: ${name}`); if (this.options.dryRun) { this.logger.log( c.yellow`${MARK_CHECK} [DRY RUN] Would apply: ${name} with kubectl using payload: ${JSON.stringify(effect.value)}` ); } else { await this.kubectl.apply(effect.value); } this.logger.log(c.green`${MARK_CHECK} Applied: ${name}`); } } this.logger.log(c.green`${MARK_CHECK} All secrets applied successfully.`); } }