首页 发现 帮助
登录
akillibulut
/
porter
镜像自地址 https://github.com/porter-dev/porter
2
0
派生 0
文件 工单管理 0 Wiki
分支: master
分支列表 标签列表
porter
/
workers
/
jobs
/
preview_deployments_ttl_deleter.go

preview_deployments_ttl_deleter.go 6.0 KB
永久链接 文件历史 原始文件

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215 
  1. //go:build ee
    2. 

  2. 

  3. package jobs
    4. 

  4. 

  5. import (
    6. 

  6. 	"context"
    7. 

  7. 	"log"
    8. 

  8. 	"sync"
    9. 

  9. 	"time"
    10. 

  10. 

  11. 	"github.com/porter-dev/porter/api/server/shared/config/env"
    12. 

  12. 	"github.com/porter-dev/porter/ee/integrations/vault"
    13. 

  13. 	"github.com/porter-dev/porter/internal/kubernetes"
    14. 

  14. 	"github.com/porter-dev/porter/internal/models"
    15. 

  15. 	"github.com/porter-dev/porter/internal/oauth"
    16. 

  16. 	"github.com/porter-dev/porter/internal/repository"
    17. 

  17. 	rcreds "github.com/porter-dev/porter/internal/repository/credentials"
    18. 

  18. 	rgorm "github.com/porter-dev/porter/internal/repository/gorm"
    19. 

  19. 	"golang.org/x/oauth2"
    20. 

  20. 	"gorm.io/gorm"
    21. 

  21. 	"k8s.io/apimachinery/pkg/api/errors"
    22. 

  22. )
    23. 

  23. 

  24. /*
    25. 

  25. 

  26.                          === Preview Deployments TTL Deleter Job ===
    27. 

  27. 

  28.    This job goes through every active preview environment in all connected clusters and deletes the
    29. 

  29.    deployments that have exceeded their TTL, corresponding to their respective preview environment.
    30. 

  30. 

  31. */
    32. 

  32. 

  33. const (
    34. 

  34. 	stepSize = 20
    35. 

  35. )
    36. 

  36. 

  37. type previewDeploymentsTTLDeleter struct {
    38. 

  38. 	enqueueTime           time.Time
    39. 

  39. 	db                    *gorm.DB
    40. 

  40. 	doConf                *oauth2.Config
    41. 

  41. 	repo                  repository.Repository
    42. 

  42. 	previewDeploymentsTTL string
    43. 

  43. }
    44. 

  44. 

  45. // PreviewDeploymentsTTLDeleterOpts holds the options required to run this job
    46. 

  46. type PreviewDeploymentsTTLDeleterOpts struct {
    47. 

  47. 	DBConf                *env.DBConf
    48. 

  48. 	ServerURL             string
    49. 

  49. 	DOClientID            string
    50. 

  50. 	DOClientSecret        string
    51. 

  51. 	DOScopes              []string
    52. 

  52. 	PreviewDeploymentsTTL string
    53. 

  53. }
    54. 

  54. 

  55. func NewPreviewDeploymentsTTLDeleter(
    56. 

  56. 	db *gorm.DB,
    57. 

  57. 	enqueueTime time.Time,
    58. 

  58. 	opts *PreviewDeploymentsTTLDeleterOpts,
    59. 

  59. ) (*previewDeploymentsTTLDeleter, error) {
    60. 

  60. 	var credBackend rcreds.CredentialStorage
    61. 

  61. 

  62. 	if opts.DBConf.VaultAPIKey != "" && opts.DBConf.VaultServerURL != "" && opts.DBConf.VaultPrefix != "" {
    63. 

  63. 		credBackend = vault.NewClient(
    64. 

  64. 			opts.DBConf.VaultServerURL,
    65. 

  65. 			opts.DBConf.VaultAPIKey,
    66. 

  66. 			opts.DBConf.VaultPrefix,
    67. 

  67. 		)
    68. 

  68. 	}
    69. 

  69. 

  70. 	doConf := oauth.NewDigitalOceanClient(&oauth.Config{
    71. 

  71. 		ClientID:     opts.DOClientID,
    72. 

  72. 		ClientSecret: opts.DOClientSecret,
    73. 

  73. 		Scopes:       opts.DOScopes,
    74. 

  74. 		BaseURL:      opts.ServerURL,
    75. 

  75. 	})
    76. 

  76. 

  77. 	var key [32]byte
    78. 

  78. 

  79. 	for i, b := range []byte(opts.DBConf.EncryptionKey) {
    80. 

  80. 		key[i] = b
    81. 

  81. 	}
    82. 

  82. 

  83. 	repo := rgorm.NewRepository(db, &key, credBackend)
    84. 

  84. 

  85. 	return &previewDeploymentsTTLDeleter{enqueueTime, db, doConf, repo, opts.PreviewDeploymentsTTL}, nil
    86. 

  86. }
    87. 

  87. 

  88. func (n *previewDeploymentsTTLDeleter) ID() string {
    89. 

  89. 	return "preview-deployments-ttl-deleter"
    90. 

  90. }
    91. 

  91. 

  92. func (n *previewDeploymentsTTLDeleter) EnqueueTime() time.Time {
    93. 

  93. 	return n.enqueueTime
    94. 

  94. }
    95. 

  95. 

  96. func (n *previewDeploymentsTTLDeleter) Run(ctx context.Context) error {
    97. 

  97. 	if n.previewDeploymentsTTL == "" {
    98. 

  98. 		log.Println("no TTL set for preview deployments, skipping job altogether")
    99. 

  99. 		return nil
    100. 

  100. 	}
    101. 

  101. 

  102. 	ttlDuration, err := time.ParseDuration(n.previewDeploymentsTTL)
    103. 

  103. 	if err != nil {
    104. 

  104. 		log.Printf("error parsing preview deployments TTL: %v. skipping job altogether", err)
    105. 

  105. 		return nil
    106. 

  106. 	}
    107. 

  107. 

  108. 	if ttlDuration.Hours() < 24 || ttlDuration.Hours() > 720 {
    109. 

  109. 		log.Printf("preview deployments TTL must be between 24 (1 day) and 720 hours (30 days). skipping job altogether")
    110. 

  110. 		return nil
    111. 

  111. 	}
    112. 

  112. 

  113. 	var count int64
    114. 

  114. 

  115. 	if err := n.db.Model(&models.Cluster{}).Count(&count).Error; err != nil {
    116. 

  116. 		return err
    117. 

  117. 	}
    118. 

  118. 

  119. 	var wg sync.WaitGroup
    120. 

  120. 

  121. 	log.Println("starting deletion of preview deployments based on TTL")
    122. 

  122. 

  123. 	for i := 0; i < (int(count)/stepSize)+1; i++ {
    124. 

  124. 		var clusters []*models.Cluster
    125. 

  125. 

  126. 		if err := n.db.Order("id asc").Offset(i * stepSize).Limit(stepSize).Find(&clusters).
    127. 

  127. 			Error; err != nil {
    128. 

  128. 			return err
    129. 

  129. 		}
    130. 

  130. 

  131. 		for _, cluster := range clusters {
    132. 

  132. 			if !cluster.PreviewEnvsEnabled {
    133. 

  133. 				continue
    134. 

  134. 			}
    135. 

  135. 

  136. 			envs, err := n.repo.Environment().ListEnvironments(cluster.ProjectID, cluster.ID)
    137. 

  137. 			if err != nil {
    138. 

  138. 				log.Printf("error listing environments for cluster %s: %v", cluster.Name, err)
    139. 

  139. 				continue
    140. 

  140. 			}
    141. 

  141. 

  142. 			log.Printf("found %d environments for cluster %s", len(envs), cluster.Name)
    143. 

  143. 

  144. 			for _, env := range envs {
    145. 

  145. 				wg.Add(1)
    146. 

  146. 

  147. 				go func(env *models.Environment, cluster *models.Cluster) {
    148. 

  148. 					defer wg.Done()
    149. 

  149. 

  150. 					depls, err := n.repo.Environment().ListDeployments(env.ID)
    151. 

  151. 					if err != nil {
    152. 

  152. 						log.Printf("error listing deployments for %s/%s: %v", env.GitRepoOwner, env.GitRepoName, err)
    153. 

  153. 						return
    154. 

  154. 					}
    155. 

  155. 

  156. 					log.Printf("found %d deployments for %s/%s", len(depls), env.GitRepoOwner, env.GitRepoName)
    157. 

  157. 

  158. 					log.Printf("deleting preview deployments based on TTL %s for %s/%s",
    159. 

  159. 						n.previewDeploymentsTTL, env.GitRepoOwner, env.GitRepoName)
    160. 

  160. 

  161. 					k8sAgent, err := kubernetes.GetAgentOutOfClusterConfig(ctx, &kubernetes.OutOfClusterConfig{
    162. 

  162. 						Cluster:                   cluster,
    163. 

  163. 						Repo:                      n.repo,
    164. 

  164. 						DigitalOceanOAuth:         n.doConf,
    165. 

  165. 						AllowInClusterConnections: false,
    166. 

  166. 						Timeout:                   10 * time.Second,
    167. 

  167. 					})
    168. 

  168. 					if err != nil {
    169. 

  169. 						log.Printf("error getting k8s agent for cluster %s: %v", cluster.Name, err)
    170. 

  170. 						return
    171. 

  171. 					}
    172. 

  172. 

  173. 					for _, depl := range depls {
    174. 

  174. 						// delete the deployment if it has been inactive for longer than the set TTL
    175. 

  175. 						if depl.UpdatedAt.Add(ttlDuration).Before(time.Now()) {
    176. 

  176. 							if depl.Namespace != "" {
    177. 

  177. 								log.Printf("deleting namespace for deployment '%s'", depl.PRName)
    178. 

  178. 

  179. 								_, err := k8sAgent.GetNamespace(depl.Namespace)
    180. 

  180. 

  181. 								if err == nil {
    182. 

  182. 									err := k8sAgent.DeleteNamespace(depl.Namespace)
    183. 

  183. 									if err != nil {
    184. 

  184. 										log.Printf("error deleting namespace for deployment '%s': %v. skipping ...",
    185. 

  185. 											depl.PRName, err)
    186. 

  186. 										continue
    187. 

  187. 									}
    188. 

  188. 								} else if !errors.IsNotFound(err) {
    189. 

  189. 									log.Printf("error getting k8s namespace for deployment '%s': %v. skipping ...",
    190. 

  190. 										depl.PRName, err)
    191. 

  191. 									continue
    192. 

  192. 								}
    193. 

  193. 							}
    194. 

  194. 

  195. 							log.Printf("deleting deployment '%s'", depl.PRName)
    196. 

  196. 

  197. 							_, err := n.repo.Environment().DeleteDeployment(depl)
    198. 

  198. 							if err != nil {
    199. 

  199. 								log.Printf("error deleting deployment '%s': %v", depl.PRName, err)
    200. 

  200. 							}
    201. 

  201. 						}
    202. 

  202. 					}
    203. 

  203. 				}(env, cluster)
    204. 

  204. 			}
    205. 

  205. 

  206. 			wg.Wait()
    207. 

  207. 		}
    208. 

  208. 	}
    209. 

  209. 

  210. 	log.Println("finished deletion of preview deployments based on TTL")
    211. 

  211. 

  212. 	return nil
    213. 

  213. }
    214. 

  214. 

  215. func (n *previewDeploymentsTTLDeleter) SetData([]byte) {}
    216.