Domovská stránka Prehľadávať Pomoc
Prihlásiť sa
akillibulut
/
porter
zrkadlo https://github.com/porter-dev/porter
2
0
Fork 0
Súbory Issues 0 Wiki
Strom: 3732ea2c23
Branche Tagy
porter
/
cmd
/
migrate
/
main.go

main.go 2.2 KB
História Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. package main
    2. 

  2. 

  3. import (
    4. 

  4. 	"log"
    5. 

  5. 

  6. 	"github.com/porter-dev/porter/api/server/shared/config/envloader"
    7. 

  7. 	"github.com/porter-dev/porter/cmd/migrate/keyrotate"
    8. 

  8. 

  9. 	adapter "github.com/porter-dev/porter/internal/adapter"
    10. 

  10. 	"github.com/porter-dev/porter/internal/repository/gorm"
    11. 

  11. 	lr "github.com/porter-dev/porter/pkg/logger"
    12. 

  12. 

  13. 	"github.com/joeshaw/envdecode"
    14. 

  14. )
    15. 

  15. 

  16. func main() {
    17. 

  17. 	logger := lr.NewConsole(true)
    18. 

  18. 	logger.Info().Msg("running migrations")
    19. 

  19. 

  20. 	envConf, err := envloader.FromEnv()
    21. 

  21. 

  22. 	if err != nil {
    23. 

  23. 		logger.Fatal().Err(err).Msg("could not load env conf")
    24. 

  24. 		return
    25. 

  25. 	}
    26. 

  26. 

  27. 	db, err := adapter.New(envConf.DBConf)
    28. 

  28. 

  29. 	if err != nil {
    30. 

  30. 		logger.Fatal().Err(err).Msg("could not connect to the database")
    31. 

  31. 		return
    32. 

  32. 	}
    33. 

  33. 

  34. 	err = gorm.AutoMigrate(db, envConf.ServerConf.Debug)
    35. 

  35. 

  36. 	if err != nil {
    37. 

  37. 		logger.Fatal().Err(err).Msg("gorm auto-migration failed")
    38. 

  38. 		return
    39. 

  39. 	}
    40. 

  40. 

  41. 	if err := db.Raw("ALTER TABLE clusters DROP CONSTRAINT IF EXISTS fk_cluster_token_caches").Error; err != nil {
    42. 

  42. 		logger.Fatal().Err(err).Msg("failed to drop cluster token cache constraint")
    43. 

  43. 		return
    44. 

  44. 	}
    45. 

  45. 	if err := db.Raw("ALTER TABLE cluster_token_caches DROP CONSTRAINT IF EXISTS fk_clusters_token_cache").Error; err != nil {
    46. 

  46. 		logger.Fatal().Err(err).Msg("failed to drop clusters token cache constraint")
    47. 

  47. 		return
    48. 

  48. 	}
    49. 

  49. 

  50. 	if shouldRotate, oldKeyStr, newKeyStr := shouldKeyRotate(); shouldRotate {
    51. 

  51. 		oldKey := [32]byte{}
    52. 

  52. 		newKey := [32]byte{}
    53. 

  53. 

  54. 		copy(oldKey[:], []byte(oldKeyStr))
    55. 

  55. 		copy(newKey[:], []byte(newKeyStr))
    56. 

  56. 

  57. 		err := keyrotate.Rotate(db, &oldKey, &newKey)
    58. 

  58. 

  59. 		if err != nil {
    60. 

  60. 			logger.Fatal().Err(err).Msg("key rotation failed")
    61. 

  61. 		}
    62. 

  62. 	}
    63. 

  63. 

  64. 	if err := InstanceMigrate(db, envConf.DBConf); err != nil {
    65. 

  65. 		logger.Fatal().Err(err).Msg("vault migration failed")
    66. 

  66. 	}
    67. 

  67. }
    68. 

  68. 

  69. type RotateConf struct {
    70. 

  70. 	// we add a dummy field to avoid empty struct issue with envdecode
    71. 

  71. 	DummyField       string `env:"ASDF,default=asdf"`
    72. 

  72. 	OldEncryptionKey string `env:"OLD_ENCRYPTION_KEY"`
    73. 

  73. 	NewEncryptionKey string `env:"NEW_ENCRYPTION_KEY"`
    74. 

  74. }
    75. 

  75. 

  76. func shouldKeyRotate() (bool, string, string) {
    77. 

  77. 	var c RotateConf
    78. 

  78. 

  79. 	if err := envdecode.StrictDecode(&c); err != nil {
    80. 

  80. 		log.Fatalf("Failed to decode migration conf: %s", err)
    81. 

  81. 		return false, "", ""
    82. 

  82. 	}
    83. 

  83. 

  84. 	return c.OldEncryptionKey != "" && c.NewEncryptionKey != "", c.OldEncryptionKey, c.NewEncryptionKey
    85. 

  85. }
    86.