-
Notifications
You must be signed in to change notification settings - Fork 90
Expand file tree
/
Copy pathargocd_sync.py
More file actions
387 lines (328 loc) · 13.2 KB
/
argocd_sync.py
File metadata and controls
387 lines (328 loc) · 13.2 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
from gql import Client, gql
from gql.transport.requests import RequestsHTTPTransport
from gql.transport.exceptions import TransportQueryError
import os
import logging
import time
import sys
import json
import re
PAGE_SIZE = 10
RUNTIME = os.getenv('RUNTIME')
APPLICATION = os.getenv('APPLICATION')
APP_NAMESPACE = os.getenv('APP_NAMESPACE')
APP_DICTIONARY = {
"applicationName": APPLICATION,
}
if APP_NAMESPACE is not None:
APP_DICTIONARY["applicationNamespace"] = APP_NAMESPACE
# Wait and Rollback options
WAIT_HEALTHY = True if os.getenv('WAIT_HEALTHY', "false").lower() == "true" else False
INTERVAL = int(os.getenv('INTERVAL'))
MAX_CHECKS = int(os.getenv('MAX_CHECKS'))
WAIT_ROLLBACK = True if os.getenv('WAIT_ROLLBACK', "false").lower() == "true" else False
ROLLBACK = True if os.getenv('ROLLBACK', "false").lower() == "true" else False
if WAIT_ROLLBACK: ROLLBACK = True
CF_URL = os.getenv('CF_URL', 'https://g.codefresh.io')
CF_API_KEY = os.getenv('CF_API_KEY')
CF_STEP_NAME = os.getenv('CF_STEP_NAME', 'STEP_NAME')
LOG_LEVEL = os.getenv('LOG_LEVEL', "error")
# Check the certificate or not accessing the API endpoint
VERIFY = True if os.getenv('INSECURE', "False").lower() == "false" else False
CA_BUNDLE = os.getenv('CA_BUNDLE')
if CA_BUNDLE != None:
VERIFY='/root/bundle.pem'
#######################################################################
def main():
log_format = "%(asctime)s:%(levelname)s:%(name)s.%(funcName)s: %(message)s"
logging.basicConfig(format = log_format, level = LOG_LEVEL.upper())
logging.debug("RUNTIME: %s", RUNTIME)
logging.debug("APPLICATION: %s", APPLICATION)
logging.debug("NAMESPACE: %s", NAMESPACE)
logging.debug("WAIT: %s", WAIT_HEALTHY)
logging.debug("INTERVAL: %d", INTERVAL)
logging.debug("MAX CHECKS: %s", MAX_CHECKS)
logging.debug("ROLLBACK: %s", ROLLBACK)
logging.debug("VERIFY: %s", VERIFY)
logging.debug("BUNDLE: %s", CA_BUNDLE)
## Generating link to the Apps Dashboard
CF_OUTPUT_URL_VAR = CF_STEP_NAME + '_CF_OUTPUT_URL'
link_to_app = get_link_to_apps_dashboard()
export_variable(CF_OUTPUT_URL_VAR, link_to_app)
ingress_host = get_runtime_ingress_host()
# Does the app exist
# if not let's wait it has been recorded
# but not too long in case of simple misspelling
is_app_real=application_exist(ingress_host)
count=1
while count <3 and is_app_real == False:
logging.debug("App does not exist yet %d", count)
time.sleep(INTERVAL)
count += 1
is_app_real=application_exist(ingress_host)
if application_exist(ingress_host) == False:
print(f"ERROR application {APPLICATION} does not seem to exist")
sys.exit(3)
if application_autosync(ingress_host) == False:
execute_argocd_sync(ingress_host)
else:
logging.info("Skipping synchronization as Application is in auto-sync mode")
namespace = get_runtime_ns()
health, sync = get_app_status(ingress_host)
if WAIT_HEALTHY:
health, sync = waitHealthy (ingress_host)
# if Wait failed, it's time for rollback
# Failed: Not healthy or out of sync
if ((health != "HEALTHY") or (sync == 'OUT_OF_SYNC')) and ROLLBACK:
logging.info("Application '%s' did not sync properly. Initiating rollback ", APPLICATION)
revision = getRevision(namespace)
logging.info("Latest healthy revision is %d", revision)
rollback(ingress_host, namespace, revision)
if WAIT_ROLLBACK:
logging.info("Waiting for rollback to happen")
health, sync = waitHealthy (ingress_host)
else:
time.sleep(INTERVAL)
health, sync = get_app_status(ingress_host)
else:
export_variable('ROLLBACK_EXECUTED', "false")
#
# We care about those only if we want a HEALTH app
#
if health != "HEALTHY":
logging.error("Health Status is not HEALTHY. Exiting with error.")
sys.exit(1)
if sync == 'OUT_OF_SYNC':
logging.error("Sync Status is OUT OF SYNC. Exiting with error.")
sys.exit(1)
else:
export_variable('ROLLBACK_EXECUTED', "false")
export_variable('HEALTH_STATUS', health)
#######################################################################
def getRevision(namespace):
logging.debug ("Entering getRevision(%s)", namespace)
## Get the latest healthy release
gql_api_endpoint = CF_URL + '/2.0/api/graphql'
transport = RequestsHTTPTransport(
url=gql_api_endpoint,
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('getReleases') ## gets gql query
variables = {
"filters": {
"namespace": namespace,
"runtime": RUNTIME,
"name": APPLICATION
},
"pagination": {
"first": PAGE_SIZE
}
}
result = client.execute(query, variable_values=variables)
logging.debug("getRevision result: %s", result)
loop=0
revision = -1
for edge in result['gitopsReleases']['edges']:
revision=edge['node']['argoHistoryId']
health=edge['node']['application']['status']['healthStatus']
logging.debug("\nEdge %d\n current:%s\n revision: %d\n health: %s",
loop, edge['node']['current'], revision, health)
if (health == "HEALTHY"):
logging.info("Revision %d is HEALTHY", revision)
return revision
loop += 1
# we did not find a HEALTHY one in our page
export_variable('ROLLBACK_EXECUTED', "false")
logging.error("Did not find a HEALTHY release among the last %d", PAGE_SIZE)
sys.exit(1)
def waitHealthy (ingress_host):
logging.debug ("Entering waitHealthy (host: %s)", ingress_host)
time.sleep(INTERVAL)
health, sync = get_app_status(ingress_host)
logging.info("App health: %s and sync: %s", health, sync)
loop=0
while ((health != "HEALTHY") or (sync == 'OUT_OF_SYNC')) and loop < MAX_CHECKS:
logging.info("App health: %s and sync: %s after %d checks", health, sync, loop)
time.sleep(INTERVAL)
health, sync=get_app_status(ingress_host)
loop += 1
logging.debug ("Returning waitHealthy with health: '%s' and sync: '%s'", health, sync)
return health, sync
def rollback(ingress_host, namespace, revision):
logging.debug ("Entering rollback(%s, %s, %s)", ingress_host, namespace, revision)
runtime_api_endpoint = ingress_host + '/app-proxy/api/graphql'
transport = RequestsHTTPTransport(
url=runtime_api_endpoint,
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('rollback') ## gets gql query
variables = {
"appName": APPLICATION,
"appNamespace": namespace,
"historyId": revision,
"dryRun": False,
"prune": True
}
logging.debug("Rollback variables: %s", variables)
result = client.execute(query, variable_values=variables)
logging.debug("Rollback result: %s", result)
export_variable('ROLLBACK_EXECUTED', "true")
def get_app_status(ingress_host):
## Get the health and sync status of the app
# Health: HEALTHY, PROGRESSING
# Sync: OUT_OF_SYNC, SYNCED
gql_api_endpoint = ingress_host + '/app-proxy/api/graphql'
transport = RequestsHTTPTransport(
url=gql_api_endpoint,
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('get_app_status') ## gets gql query
variables = {**APP_DICTIONARY}
result = client.execute(query, variable_values=variables)
logging.debug("App Status result: %s", result)
health = result['applicationProxyQuery']['status']['health']['status']
sync = result['applicationProxyQuery']['status']['sync']['status']
return health, sync
def get_query(query_name):
## To do: get query content from a variable, failback to a file
with open('queries/'+query_name+'.graphql', 'r') as file:
query_content = file.read()
return gql(query_content)
def get_runtime():
transport = RequestsHTTPTransport(
url = CF_URL + '/2.0/api/graphql',
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('getRuntime') ## gets gql query
variables = {
"runtime": RUNTIME
}
runtime = client.execute(query, variable_values=variables)
return runtime
def get_runtime_ingress_host():
ingress_host = None
runtime = get_runtime()
ingress_host = runtime['runtime']['ingressHost']
return ingress_host
def get_link_to_apps_dashboard():
runtime = get_runtime()
runtime_ns = runtime['runtime']['metadata']['namespace']
url_to_app = CF_URL+'/2.0/applications-dashboard/'+ runtime_ns +'/'+ RUNTIME +'/'+APPLICATION+'/timeline'
return url_to_app
def get_runtime_ns():
runtime = get_runtime()
runtime_ns = runtime['runtime']['metadata']['namespace']
logging.debug("Runtime Namespace: %s", runtime_ns)
return runtime_ns
def execute_argocd_sync(ingress_host):
runtime_api_endpoint = ingress_host + '/app-proxy/api/graphql'
transport = RequestsHTTPTransport(
url=runtime_api_endpoint,
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('argocd_sync') ## gets gql query
variables = {
**APP_DICTIONARY,
"options": {
"prune": True
}
}
try:
result = client.execute(query, variable_values=variables)
except TransportQueryError as err:
if "NOT_FOUND_ERROR" in str(err):
print(f"ERROR: Application {APPLICATION} does not exist")
else:
print(f"ERROR: cannot sync Application {APPLICATION}")
logging.debug("Syncing App result: %s", err)
sys.exit(2)
except Exception as err:
print(f"ERROR: cannot sync Application {APPLICATION}")
logging.debug("Syncing App result: %s", err)
sys.exit(1)
#
# Check for application existence
# if it does not exist, it will return 403 error
#
# Return True or False
#
def application_exist(ingress_host):
runtime_api_endpoint = ingress_host + '/app-proxy/api/graphql'
transport = RequestsHTTPTransport(
url=runtime_api_endpoint,
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('get_app_existence') ## gets gql query
variables = {**APP_DICTIONARY}
try:
result = client.execute(query, variable_values=variables)
except TransportQueryError as err:
data = json.loads(re.sub('\'','\"', str(err)))
if (data["message"] == "Forbidden") and (data["extensions"] == 403):
return False
else:
print(f"ERROR: cannot test Application {APPLICATION}")
logging.error("Existence App result: %s", err)
sys.exit(1)
except Exception as err:
print(f"ERROR: cannot test Application {APPLICATION}")
logging.error("Existence App result: %s", err)
sys.exit(1)
return True
#
# Check if app is in auto-sync mode
#
# Return True or False
#
def application_autosync(ingress_host):
runtime_api_endpoint = ingress_host + '/app-proxy/api/graphql'
transport = RequestsHTTPTransport(
url=runtime_api_endpoint,
headers={'authorization': CF_API_KEY},
verify=VERIFY,
retries=3,
)
client = Client(transport=transport, fetch_schema_from_transport=False)
query = get_query('get_app_autosync') ## gets gql query
variables = {**APP_DICTIONARY}
try:
result = client.execute(query, variable_values=variables)
except Exception as err:
print(f"ERROR: cannot get sync policy from Application {APPLICATION}")
logging.debug("Application Sync policy result: %s", err)
sys.exit(1)
logging.debug("App sync Policy: ", result['applicationProxyQuery']['spec']['syncPolicy']['automated'])
if result['applicationProxyQuery']['spec']['syncPolicy']['automated'] == None:
return False
else:
return True
def export_variable(var_name, var_value):
path = os.getenv('CF_VOLUME_PATH') if os.getenv('CF_VOLUME_PATH') != None else './'
with open(path+'/env_vars_to_export', 'a') as a_writer:
a_writer.write(var_name + "=" + var_value+'\n')
if os.getenv('CF_BUILD_ID') != None:
if os.getenv('CF_VOLUME_PATH') == None: os.mkdir('/meta')
with open('/meta/env_vars_to_export', 'a') as a_writer:
a_writer.write(var_name + "=" + var_value+'\n')
logging.debug("Exporting variable: %s=%s", var_name, var_value)
##############################################################
if __name__ == "__main__":
main()