3d053e32ee
* Use Nginx + Basic Auth to secure OSS Airbyte * use local passwords * Use gradle builds * K8s setup and source values from ENV * note about disabling * add back defaults * custom 401 page * update http message * update docs * remove kube files * additional doc updates * Add a test suite * fix failure exit codes * doc updates * Add docs * bump to re-test * add more sleep in tests for CI * better sleep in test * Update docs/operator-guides/security.md Co-authored-by: Davin Chia <davinchia@gmail.com> * PR updates * test comment * change test host on CI * update tests and nginx to boot without backend * proxy updates for docker DNS * simpler test for uptime * acceptance test skips PWs * remove resolver madness * fixup tests * more proxy_pass revert * update acceptance test exit codes * relax test expectations * add temporal mount back for testing * Update docs/operator-guides/security.md Co-authored-by: swyx <shawnthe1@gmail.com> * Update airbyte-proxy/401.html Co-authored-by: swyx <shawnthe1@gmail.com> * more doc updates * Octavia CLI uses Basic Auth (#17982) * [WIP] Octavia CLI uses Basic Auth * readme * augustin: add basic auth headers to clien * augustin: add basic auth headers to client * tests passing * lint * docs * Move monkey patch to test * coerce headers into strings * monkey patch get_basic_auth_token Co-authored-by: alafanechere <augustin.lafanechere@gmail.com> * fix launch permissions * Keep worker port internal * more readme Co-authored-by: Davin Chia <davinchia@gmail.com> Co-authored-by: swyx <shawnthe1@gmail.com> Co-authored-by: alafanechere <augustin.lafanechere@gmail.com>
187 lines
7.2 KiB
Python
187 lines
7.2 KiB
Python
#
|
|
# Copyright (c) 2022 Airbyte, Inc., all rights reserved.
|
|
#
|
|
|
|
from typing import List, Optional, Tuple
|
|
|
|
import airbyte_api_client
|
|
import click
|
|
import pkg_resources
|
|
from airbyte_api_client.api import workspace_api
|
|
from airbyte_api_client.model.workspace_id_request_body import WorkspaceIdRequestBody
|
|
|
|
from ._import import commands as import_commands
|
|
from .api_http_headers import ApiHttpHeader, merge_api_headers, set_api_headers_on_api_client
|
|
from .apply import commands as apply_commands
|
|
from .check_context import check_api_health, check_is_initialized, check_workspace_exists
|
|
from .generate import commands as generate_commands
|
|
from .get import commands as get_commands
|
|
from .init import commands as init_commands
|
|
from .list import commands as list_commands
|
|
from .telemetry import TelemetryClient, build_user_agent
|
|
|
|
AVAILABLE_COMMANDS: List[click.Command] = [
|
|
list_commands._list,
|
|
get_commands.get,
|
|
import_commands._import,
|
|
init_commands.init,
|
|
generate_commands.generate,
|
|
apply_commands.apply,
|
|
]
|
|
|
|
|
|
def set_context_object(
|
|
ctx: click.Context,
|
|
airbyte_url: str,
|
|
airbyte_username: str,
|
|
airbyte_password: str,
|
|
workspace_id: str,
|
|
enable_telemetry: bool,
|
|
option_based_api_http_headers: Optional[List[Tuple[str, str]]],
|
|
api_http_headers_file_path: Optional[str],
|
|
) -> click.Context:
|
|
"""Fill the context object with resources that will be reused by other commands.
|
|
Performs check and telemetry sending in case of error.
|
|
|
|
Args:
|
|
ctx (click.Context): Current command context.
|
|
airbyte_url (str): The airbyte instance url.
|
|
airbyte_username (str): The OSS airbyte instance username.
|
|
airbyte_password (str): The OSS airbyte instance password.
|
|
workspace_id (str): The user_defined workspace id.
|
|
enable_telemetry (bool): Whether the telemetry should send data.
|
|
option_based_api_http_headers (Optional[List[Tuple[str, str]]]): Option based headers.
|
|
api_http_headers_file_path (Optional[str]): Path to the YAML file with http headers.
|
|
|
|
Raises:
|
|
e: Raise whatever error that might happen during the execution.
|
|
|
|
Returns:
|
|
click.Context: The context with it's updated object.
|
|
"""
|
|
telemetry_client = TelemetryClient(enable_telemetry)
|
|
|
|
try:
|
|
ctx.ensure_object(dict)
|
|
ctx.obj["OCTAVIA_VERSION"] = pkg_resources.require("octavia-cli")[0].version
|
|
ctx.obj["TELEMETRY_CLIENT"] = telemetry_client
|
|
user_agent = build_user_agent(ctx.obj["OCTAVIA_VERSION"])
|
|
api_http_headers = merge_api_headers(option_based_api_http_headers, api_http_headers_file_path)
|
|
api_client = get_api_client(airbyte_url, airbyte_username, airbyte_password, user_agent, api_http_headers)
|
|
ctx.obj["WORKSPACE_ID"] = get_workspace_id(api_client, workspace_id)
|
|
ctx.obj["ANONYMOUS_DATA_COLLECTION"] = get_anonymous_data_collection(api_client, ctx.obj["WORKSPACE_ID"])
|
|
ctx.obj["API_CLIENT"] = api_client
|
|
ctx.obj["PROJECT_IS_INITIALIZED"] = check_is_initialized()
|
|
except Exception as e:
|
|
telemetry_client.send_command_telemetry(ctx, error=e)
|
|
raise e
|
|
return ctx
|
|
|
|
|
|
@click.group()
|
|
@click.option("--airbyte-url", envvar="AIRBYTE_URL", default="http://localhost:8000", help="The URL of your Airbyte instance.")
|
|
@click.option("--airbyte-username", envvar="AIRBYTE_USERNAME", default="airbyte", help="The username for your Airbyte OSS instance.")
|
|
@click.option("--airbyte-password", envvar="AIRBYTE_PASSWORD", default="password", help="The password for your Airbyte OSS instance.")
|
|
@click.option(
|
|
"--workspace-id",
|
|
envvar="AIRBYTE_WORKSPACE_ID",
|
|
default=None,
|
|
help="The id of the workspace on which you want octavia-cli to work. Defaults to the first one found on your Airbyte instance.",
|
|
)
|
|
@click.option(
|
|
"--enable-telemetry/--disable-telemetry",
|
|
envvar="OCTAVIA_ENABLE_TELEMETRY",
|
|
default=True,
|
|
help="Enable or disable telemetry for product improvement.",
|
|
type=bool,
|
|
)
|
|
@click.option(
|
|
"--api-http-header",
|
|
"-ah",
|
|
"option_based_api_http_headers",
|
|
help='Additional HTTP header name and header value pairs to pass to use when calling Airbyte\'s API ex. --api-http-header "Authorization" "Basic dXNlcjpwYXNzd29yZA=="',
|
|
multiple=True,
|
|
nargs=2,
|
|
type=click.Tuple([str, str]),
|
|
)
|
|
@click.option(
|
|
"--api-http-headers-file-path",
|
|
help=f"Path to the Yaml file with API HTTP headers. Please check the {init_commands.API_HTTP_HEADERS_TARGET_PATH} file.",
|
|
type=click.Path(exists=True, readable=True),
|
|
)
|
|
@click.pass_context
|
|
def octavia(
|
|
ctx: click.Context,
|
|
airbyte_url: str,
|
|
airbyte_username: str,
|
|
airbyte_password: str,
|
|
workspace_id: str,
|
|
enable_telemetry: bool,
|
|
option_based_api_http_headers: Optional[List[Tuple[str, str]]] = None,
|
|
api_http_headers_file_path: Optional[str] = None,
|
|
) -> None:
|
|
|
|
ctx = set_context_object(
|
|
ctx,
|
|
airbyte_url,
|
|
airbyte_username,
|
|
airbyte_password,
|
|
workspace_id,
|
|
enable_telemetry,
|
|
option_based_api_http_headers,
|
|
api_http_headers_file_path,
|
|
)
|
|
|
|
click.echo(
|
|
click.style(
|
|
f"🐙 - Octavia is targetting your Airbyte instance running at {airbyte_url} on workspace {ctx.obj['WORKSPACE_ID']}.", fg="green"
|
|
)
|
|
)
|
|
if not ctx.obj["PROJECT_IS_INITIALIZED"]:
|
|
click.echo(click.style("🐙 - Project is not yet initialized.", fg="red", bold=True))
|
|
|
|
|
|
def get_api_client(
|
|
airbyte_url: str, airbyte_username: str, airbyte_password: str, user_agent: str, api_http_headers: Optional[List[ApiHttpHeader]]
|
|
):
|
|
client_configuration = airbyte_api_client.Configuration(host=f"{airbyte_url}/api", username=airbyte_username, password=airbyte_password)
|
|
api_client = airbyte_api_client.ApiClient(client_configuration)
|
|
api_client.user_agent = user_agent
|
|
api_http_headers = api_http_headers if api_http_headers else []
|
|
has_existing_authorization_headers = bool([header for header in api_http_headers if header.name.lower() == "authorization"])
|
|
if not has_existing_authorization_headers:
|
|
basic_auth_token = client_configuration.get_basic_auth_token()
|
|
api_http_headers.append(ApiHttpHeader("Authorization", basic_auth_token))
|
|
set_api_headers_on_api_client(api_client, api_http_headers)
|
|
check_api_health(api_client)
|
|
return api_client
|
|
|
|
|
|
def get_workspace_id(api_client, user_defined_workspace_id):
|
|
if user_defined_workspace_id:
|
|
check_workspace_exists(api_client, user_defined_workspace_id)
|
|
return user_defined_workspace_id
|
|
else:
|
|
api_instance = workspace_api.WorkspaceApi(api_client)
|
|
api_response = api_instance.list_workspaces(_check_return_type=False)
|
|
return api_response.workspaces[0]["workspaceId"]
|
|
|
|
|
|
def get_anonymous_data_collection(api_client, workspace_id):
|
|
api_instance = workspace_api.WorkspaceApi(api_client)
|
|
api_response = api_instance.get_workspace(WorkspaceIdRequestBody(workspace_id), _check_return_type=False)
|
|
return api_response.get("anonymous_data_collection", True)
|
|
|
|
|
|
def add_commands_to_octavia():
|
|
for command in AVAILABLE_COMMANDS:
|
|
octavia.add_command(command)
|
|
|
|
|
|
@octavia.command(help="[NOT IMPLEMENTED] Delete resources")
|
|
def delete() -> None:
|
|
raise click.ClickException("The delete command is not yet implemented.")
|
|
|
|
|
|
add_commands_to_octavia()
|