├── .github
    └── workflows
    │   ├── CI_CD_App.yml
    │   ├── CI_CD_Helm.yml
    │   └── CONTR_greetings.yml
├── .gitignore
├── .pylintrc
├── .vscode
    ├── extensions.json
    └── settings.json
├── README.md
├── app
    ├── .version
    ├── Dockerfile
    ├── __init__.py
    ├── app.py
    ├── requirements.txt
    ├── tests
    │   ├── test_dockerapi.py
    │   └── test_helpers.py
    └── utils
    │   ├── __init__.py
    │   ├── config.py
    │   ├── dockerapi.py
    │   ├── general.py
    │   ├── helpers.py
    │   ├── kubernetes.py
    │   ├── model
    │       └── image.py
    │   └── persistence.py
├── artifacthub-repo.yml
├── asset
    ├── .$urunner.drawio.bkp
    ├── logo.png
    ├── urunner-aws.png
    ├── urunner-do.png
    ├── urunner-gitlab.png
    ├── urunner.drawio
    └── urunner.png
└── helm
    └── urunner
        ├── .helmignore
        ├── Chart.yaml
        ├── README.md
        ├── index.yaml
        ├── templates
            ├── NOTES.txt
            ├── _helpers.tpl
            ├── configmap.yaml
            ├── deployment.yaml
            ├── secret.yaml
            └── serviceaccount.yaml
        └── values.yaml


/.github/workflows/CI_CD_App.yml:
--------------------------------------------------------------------------------
  1 | # This workflow uses actions that are not certified by GitHub.
  2 | # They are provided by a third-party and are governed by
  3 | # separate terms of service, privacy policy, and support
  4 | # documentation.
  5 | 
  6 | # GitHub recommends pinning actions to a commit SHA.
  7 | # To get a newer version, you will need to update the SHA.
  8 | # You can also reference a tag or branch, but the action may change without warning.
  9 | 
 10 | name: "[CI/CD] App"
 11 | 
 12 | on:
 13 |   push:
 14 |     branches: ['main']
 15 |     paths:
 16 |     - 'app/**'
 17 |   pull_request:
 18 |     paths:
 19 |     - 'app/**'
 20 | 
 21 | env:
 22 |   REGISTRY: ghcr.io
 23 |   IMAGE_NAME: texano00/urunner
 24 | 
 25 | jobs:
 26 |   build-and-push-image:
 27 |     if: ${{ !contains(github.event.head_commit.message, '#skip-actions') }}
 28 |     runs-on: ubuntu-latest
 29 |     permissions:
 30 |       contents: read
 31 |       packages: write
 32 |     defaults:
 33 |       run:
 34 |         working-directory: app
 35 |     environment: production
 36 | 
 37 |     steps:
 38 |       - name: Checkout repository
 39 |         uses: actions/checkout@v3
 40 | 
 41 |       - name: Set up Python
 42 |         uses: actions/setup-python@v4
 43 |         with:
 44 |           python-version: '3.x'
 45 |           cache: 'pip'
 46 | 
 47 |       - name: Install dependencies
 48 |         run: |
 49 |           python -m pip install --upgrade pip
 50 |           pip install -r requirements.txt
 51 | 
 52 |       - name: Lint
 53 |         run: |
 54 |           pylint $(git ls-files '*.py' | grep -v 'test_') --fail-under=10
 55 | 
 56 |       - name: Tests
 57 |         run: |
 58 |           python -m unittest discover -s tests
 59 | 
 60 |       - name: Get version
 61 |         id: metadata
 62 |         run: |
 63 |             version=$(cat .version)
 64 |             echo "version=${version}" >> $GITHUB_OUTPUT
 65 | 
 66 |       - name: Set up QEMU
 67 |         uses: docker/setup-qemu-action@v3
 68 | 
 69 |       - name: Set up Docker Buildx
 70 |         uses: docker/setup-buildx-action@v3
 71 | 
 72 |       - name: Login to container registry
 73 |         uses: docker/login-action@v3
 74 |         with:
 75 |           username: ${{ secrets.GHCR_USERNAME }}
 76 |           password: ${{ secrets.GHCR_PASSWORD }}
 77 |           registry: ${{ env.REGISTRY }}
 78 | 
 79 |       - name: Check if version already exists
 80 |         id: build_and_push
 81 |         run: |
 82 |           built_image="${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ steps.metadata.outputs.version }}"
 83 | 
 84 |           if docker manifest inspect ${built_image} > /dev/null; then
 85 |             echo "already exist -> do not push"
 86 |             exit 1
 87 |           else
 88 |             echo "does not exist -> going on"
 89 |           fi
 90 | 
 91 |       - name: Build and Push Image
 92 |         if: ${{ github.event_name != 'pull_request' }}
 93 |         uses: docker/build-push-action@v6
 94 |         with:
 95 |           context: app
 96 |           tags: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}:${{ steps.metadata.outputs.version }}
 97 |           platforms: linux/amd64,linux/arm64/v8,linux/arm/v6,linux/arm/v7
 98 |           push: true
 99 | 
100 | 


--------------------------------------------------------------------------------
/.github/workflows/CI_CD_Helm.yml:
--------------------------------------------------------------------------------
 1 | # This workflow uses actions that are not certified by GitHub.
 2 | # They are provided by a third-party and are governed by
 3 | # separate terms of service, privacy policy, and support
 4 | # documentation.
 5 | 
 6 | # GitHub recommends pinning actions to a commit SHA.
 7 | # To get a newer version, you will need to update the SHA.
 8 | # You can also reference a tag or branch, but the action may change without warning.
 9 | 
10 | name: "[CI/CD] Helm"
11 | 
12 | on:
13 |   push:
14 |     branches: ['main']
15 |     paths:
16 |     - 'helm/**'
17 | env:
18 |   REGISTRY: ghcr.io
19 |   OCI_CHART_NAME: texano00/urunner/helm
20 | 
21 | jobs:
22 |   build-and-push-image:
23 |     if: ${{ !contains(github.event.head_commit.message, '#skip-actions') }}
24 |     runs-on: ubuntu-latest
25 |     permissions:
26 |       contents: read
27 |       packages: write
28 |     defaults:
29 |       run:
30 |         working-directory: helm/urunner
31 |     environment: production
32 | 
33 |     steps:
34 |       - name: Checkout repository
35 |         uses: actions/checkout@v3
36 | 
37 |       - name: Helm lint
38 |         run: |
39 |           helm lint
40 | 
41 |       - name: Helm lint
42 |         run: |
43 |           helm lint
44 | 
45 |       - name: Helm pack and push
46 |         run: |
47 |           helm package .
48 |           helm registry login ${{ env.REGISTRY }} -u ${{ secrets.GHCR_USERNAME }} -p ${{ secrets.GHCR_PASSWORD }}
49 |           helm push *.tgz oci://${{ env.REGISTRY }}/${{ env.OCI_CHART_NAME }}
50 |           


--------------------------------------------------------------------------------
/.github/workflows/CONTR_greetings.yml:
--------------------------------------------------------------------------------
 1 | name: "[Support] Greetings"
 2 | 
 3 | on: [pull_request_target, issues]
 4 | 
 5 | jobs:
 6 |   greeting:
 7 |     runs-on: ubuntu-latest
 8 |     permissions:
 9 |       issues: write
10 |       pull-requests: write
11 |     steps:
12 |     - uses: actions/first-interaction@v1
13 |       with:
14 |         repo-token: ${{ secrets.GITHUB_TOKEN }}
15 |         issue-message: "Thanks for your first issue on Urunner!"
16 |         pr-message: "Thanks for your first PR on Urunner!"
17 | 


--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
  1 | # Byte-compiled / optimized / DLL files
  2 | __pycache__/
  3 | *.py[cod]
  4 | *$py.class
  5 | 
  6 | # C extensions
  7 | *.so
  8 | 
  9 | # Distribution / packaging
 10 | .Python
 11 | build/
 12 | develop-eggs/
 13 | dist/
 14 | downloads/
 15 | eggs/
 16 | .eggs/
 17 | lib/
 18 | lib64/
 19 | parts/
 20 | sdist/
 21 | var/
 22 | wheels/
 23 | pip-wheel-metadata/
 24 | share/python-wheels/
 25 | *.egg-info/
 26 | .installed.cfg
 27 | *.egg
 28 | MANIFEST
 29 | 
 30 | # PyInstaller
 31 | #  Usually these files are written by a python script from a template
 32 | #  before PyInstaller builds the exe, so as to inject date/other infos into it.
 33 | *.manifest
 34 | *.spec
 35 | 
 36 | # Installer logs
 37 | pip-log.txt
 38 | pip-delete-this-directory.txt
 39 | 
 40 | # Unit test / coverage reports
 41 | htmlcov/
 42 | .tox/
 43 | .nox/
 44 | .coverage
 45 | .coverage.*
 46 | .cache
 47 | nosetests.xml
 48 | coverage.xml
 49 | *.cover
 50 | *.py,cover
 51 | .hypothesis/
 52 | .pytest_cache/
 53 | 
 54 | # Translations
 55 | *.mo
 56 | *.pot
 57 | 
 58 | # Django stuff:
 59 | *.log
 60 | local_settings.py
 61 | db.sqlite3
 62 | db.sqlite3-journal
 63 | 
 64 | # Flask stuff:
 65 | instance/
 66 | .webassets-cache
 67 | 
 68 | # Scrapy stuff:
 69 | .scrapy
 70 | 
 71 | # Sphinx documentation
 72 | docs/_build/
 73 | 
 74 | # PyBuilder
 75 | target/
 76 | 
 77 | # Jupyter Notebook
 78 | .ipynb_checkpoints
 79 | 
 80 | # IPython
 81 | profile_default/
 82 | ipython_config.py
 83 | 
 84 | # pyenv
 85 | .python-version
 86 | 
 87 | # pipenv
 88 | #   According to pypa/pipenv#598, it is recommended to include Pipfile.lock in version control.
 89 | #   However, in case of collaboration, if having platform-specific dependencies or dependencies
 90 | #   having no cross-platform support, pipenv may install dependencies that don't work, or not
 91 | #   install all needed dependencies.
 92 | #Pipfile.lock
 93 | 
 94 | # PEP 582; used by e.g. github.com/David-OConnor/pyflow
 95 | __pypackages__/
 96 | 
 97 | # Celery stuff
 98 | celerybeat-schedule
 99 | celerybeat.pid
100 | 
101 | # SageMath parsed files
102 | *.sage.py
103 | 
104 | # Environments
105 | .env
106 | .venv
107 | env/
108 | venv/
109 | ENV/
110 | env.bak/
111 | venv.bak/
112 | myenv
113 | .myenv
114 | 
115 | # Spyder project settings
116 | .spyderproject
117 | .spyproject
118 | 
119 | # Rope project settings
120 | .ropeproject
121 | 
122 | # mkdocs documentation
123 | /site
124 | 
125 | # mypy
126 | .mypy_cache/
127 | .dmypy.json
128 | dmypy.json
129 | 
130 | # Pyre type checker
131 | .pyre/
132 | *.db
133 | docker/test.py
134 | 
135 | # General files for the project
136 | pkg/*
137 | *.pyc
138 | bin/*
139 | .project
140 | /.bin
141 | /_test/secrets/*.json
142 | 
143 | # OSX leaves these everywhere on SMB shares
144 | ._*
145 | 
146 | # OSX trash
147 | .DS_Store
148 | 
149 | # Files generated by JetBrains IDEs, e.g. IntelliJ IDEA
150 | .idea/
151 | *.iml
152 | 
153 | # Vscode files
154 | .vscode
155 | 
156 | # Emacs save files
157 | *~
158 | \#*\#
159 | .\#*
160 | 
161 | # Vim-related files
162 | [._]*.s[a-w][a-z]
163 | [._]s[a-w][a-z]
164 | *.un~
165 | Session.vim
166 | .netrwhist
167 | 
168 | # Chart dependencies
169 | **/charts/*.tgz
170 | 
171 | .history
172 | helm/urunner/test-values-*.yaml
173 | 


--------------------------------------------------------------------------------
/.pylintrc:
--------------------------------------------------------------------------------
 1 | [MASTER]
 2 | init-hook='import sys; sys.path.append(".")'
 3 | max-line-length=120
 4 | 
 5 | [MESSAGES CONTROL]
 6 | 
 7 | # Enable the message, report, category or checker with the given id(s). You can
 8 | # either give multiple identifier separated by comma (,) or put this option
 9 | # multiple time.
10 | #enable=
11 | 
12 | # Disable the message, report, category or checker with the given id(s). You
13 | # can either give multiple identifier separated by comma (,) or put this option
14 | # multiple time (only on the command line, not in the configuration file where
15 | # it should appear only once).
16 | disable=R0402,E0401
17 | 


--------------------------------------------------------------------------------
/.vscode/extensions.json:
--------------------------------------------------------------------------------
1 | {
2 | 	// See https://go.microsoft.com/fwlink/?LinkId=827846
3 | 	// for the documentation about the extensions.json format
4 | 	"recommendations": [
5 | 		"ms-python.pylint"
6 | 	]
7 | }


--------------------------------------------------------------------------------
/.vscode/settings.json:
--------------------------------------------------------------------------------
 1 | {
 2 |     "python.linting.pylintEnabled": true,
 3 |     "python.linting.enabled": true,
 4 |     "editor.formatOnSave": true,
 5 |     "editor.renderWhitespace": "all",
 6 |     "files.autoSave": "afterDelay",
 7 |     "python.analysis.typeCheckingMode": "basic",
 8 |     "python.formatting.provider": "black",
 9 |     "python.formatting.blackArgs": [
10 |         "--line-length=120"
11 |     ],
12 | }


--------------------------------------------------------------------------------
/README.md:
--------------------------------------------------------------------------------
  1 | # urunner
  2 | [![Artifact Hub](https://img.shields.io/endpoint?url=https://artifacthub.io/badge/repository/urunner)](https://artifacthub.io/packages/search?repo=urunner)
  3 | ![CI_CD_Helm](https://github.com/texano00/urunner/actions/workflows/CI_CD_Helm.yml/badge.svg)
  4 | ![CI_CD_App](https://github.com/texano00/urunner/actions/workflows/CI_CD_App.yml/badge.svg)
  5 | 
  6 | ## Star History
  7 | 
  8 | [![Star History Chart](https://api.star-history.com/svg?repos=texano00/urunner&type=Date)](https://star-history.com/#texano00/urunner&Date)
  9 | 
 10 | ## Intro
 11 | 
 12 | <img width=200 src=asset/logo.png>
 13 | 
 14 | URunner is a lightweight **Kubernetes** utility in order to **auto restart** pods on image **tag digest change**.\
 15 | This is very useful on environments where it is commonly used the `latest` tag which frequently changes over time.\
 16 | Urunner auto detects the container image tag digest (for example the digest of tag `latest`) and automatically restart pods.
 17 | 
 18 | ## Docker API V2
 19 | 
 20 | Urunner integrates external container registry (ex. [Harbor](https://goharbor.io/)) using standard [Docker API V2](https://docs.docker.com/registry/spec/api/).\
 21 | Actually **Harbor**, **AWS ECR**, **Digital Ocean** and **GitLab** are the container registries officially supported.\
 22 | **Azure ACR** and **Dockerhub** support will be released soon.
 23 | 
 24 | URunner use cases with specific how-to:
 25 | 
 26 | - [AWS use case](https://www.yuribacciarini.com/automatically-pull-images-on-aws-ecr-latest-tag-change-from-aws-eks/)
 27 | - [DigitalOcean container registry DOCR use case](https://www.yuribacciarini.com/automatically-pull-new-digitalocean-container-registry-docr-latest-tags-from-kubernetes/)
 28 | - [GitLab container registry use case](https://www.yuribacciarini.com/k8s-automatically-pull-images-from-gitlab-container-registry-without-change-the-tag/)
 29 | ## Configurable watcher
 30 | 
 31 | Urunner is also **fully configurable** in order to **watch only specific namespaces** with specific label to manage exception.\
 32 | Add label `urunner=enable` to all namespaces in order to be watched by Urunner.\
 33 | `kubectl label ns mynamespace urunner=enable`
 34 | 
 35 | ```
 36 | apiVersion: v1
 37 | kind: Namespace
 38 | metadata:
 39 |   labels:
 40 |     # add this label
 41 |     urunner: enable
 42 |   name: mynamespace
 43 | ```
 44 | 
 45 | Also, you can add exceptions inside `mynamespace`, for example\
 46 | `kubectl label deployment mydeployment urunner=disable -n mynamespace`
 47 | 
 48 | ```
 49 | apiVersion: apps/v1
 50 | kind: Deployment
 51 | metadata:
 52 |   labels:
 53 |     # add this label
 54 |     urunner: disable
 55 | ...
 56 | ```
 57 | 
 58 | Doing so, all deployments except `mydeployment` will be watched by Urunner.
 59 | 
 60 | ## Helm
 61 | 
 62 | ```
 63 | helm upgrade --install urunner oci://ghcr.io/texano00/urunner/helm/urunner --version 0.1.0 --values my-values.yaml -n urunner --create-namespace
 64 | ```
 65 | 
 66 | ## Urunner env vars
 67 | 
 68 | | Var                                      | Description                                                                                                        | Example                                                                                          |
 69 | | ---------------------------------------- | ------------------------------------------------------------------------------------------------------------------ | ------------------------------------------------------------------------------------------------ |
 70 | | DOCKER_API_ACCEPT_HEADER                 | Accept header to inject on Docker API v2 registry                                                                  | application/vnd.docker.distribution.manifest.v2+json, application/vnd.oci.image.manifest.v1+json |
 71 | | URUNNER_CONF_DOCKER_API_VERIFY           | SSL verify to docker registry                                                                                      | True or False                                                                                    |
 72 | | URUNNER_CONF_LOG_LEVEL                   | Log Level                                                                                                          | DEBUG,INFO,WARNING                                                                               |
 73 | | URUNNER_CONF_KUBE_AUTH                   | Kubernetes client authentication strategy                                                                          | incluster or kubeconfig                                                                          |
 74 | | URUNNER_CONF_SQLLIGHT_PATH               | Path of sqlight DB                                                                                                 | ./urunner.db                                                                                     |
 75 | | URUNNER_CONF_FREQUENCY_CHECK_SECONDS     | Frequency of urunner cron job (seconds)                                                                            | 30                                                                                               |
 76 | | URUNNER_CONF_CONTAINER_REGISTRY_TO_WATCH | Which is the container registry to watch                                                                           | registry.mycompanyhost.net:8080                                                                  |
 77 | | URUNNER_CONF_CONTAINER_REGISTRY_TYPE     | Kind of container registry                                                                                         | harbor,aws_ecr, digitalocean, gitlab                                                             |
 78 | | URUNNER_SECR_HARBOR_USER                 | Harbor username, configure only if registry type is harbor                                                         | user                                                                                             |
 79 | | URUNNER_SECR_HARBOR_PASS                 | Harbor password, configure only if registry type is harbor                                                         | pass                                                                                             |
 80 | | URUNNER_SECR_AWS_ACCESS_KEY_ID           | AWS credential in order to pull from AWS private ECR, configure only if registry type is aws_ecr                   | AKIAIOSFODNN7EXAMPLE                                                                             |
 81 | | URUNNER_SECR_AWS_REGION                  | AWS region                                                                                                         | us-east-2                                                                                        |
 82 | | URUNNER_SECR_AWS_SECRET_ACCESS_KEY       | AWS credential in order to pull from AWS private ECR, configure only if registry type is aws_ecr                   | wJalrXUtnFEMI/K7MDENG/xRfiCYEXAMPLEKEY                                                           |
 83 | | URUNNER_SECR_DIGITAL_OCEAN_TOKEN         | Digital Ocean token                                                                                                | xxxxx                                                                                            |
 84 | | URUNNER_SECR_GITLAB_TOKEN                | Gitlab token                                                                                                       | xxxxx                                                                                            |
 85 | | URUNNER_SECR_GITLAB_AUTH_URL             | Gitlab URL where `/jwt/auth` API is exposed. This is usually the same URL where GitLab instance itself is exposed. | my-gitlab.com                                                                                    |
 86 | 
 87 | ## Flow
 88 | 
 89 | ### Generic
 90 | 
 91 | <img src=asset/urunner.png>
 92 | 
 93 | ### AWS
 94 | 
 95 | <img src=asset/urunner-aws.png>
 96 | 
 97 | ### DigitalOCean
 98 | <img src=asset/urunner-do.png>
 99 | 
100 | ### GitLab
101 | <img src=asset/urunner-gitlab.png>
102 | 
103 | 
104 | ## ToDo
105 | 
106 | - Test Azure ACR integration
107 | - manage sqlite persistence in Helm chart
108 | 
109 | ## Notes
110 | 
111 | Logo was generated using Fotor AI tool https://www.fotor.com/features/ai-image-generator/
112 | 


--------------------------------------------------------------------------------
/app/.version:
--------------------------------------------------------------------------------
1 | 0.6.0


--------------------------------------------------------------------------------
/app/Dockerfile:
--------------------------------------------------------------------------------
 1 | FROM alpine:3.17
 2 | 
 3 | # This hack is widely applied to avoid python printing issues in docker containers.
 4 | # See: https://github.com/Docker-Hub-frolvlad/docker-alpine-python3/pull/13
 5 | ENV PYTHONUNBUFFERED=1
 6 | 
 7 | RUN echo "**** install Python ****" && \
 8 |     apk add --no-cache python3 && \
 9 |     if [ ! -e /usr/bin/python ]; then ln -sf python3 /usr/bin/python ; fi && \
10 |     \
11 |     echo "**** install pip ****" && \
12 |     python3 -m ensurepip && \
13 |     rm -r /usr/lib/python*/ensurepip && \
14 |     pip3 install --no-cache --upgrade pip setuptools wheel && \
15 |     if [ ! -e /usr/bin/pip ]; then ln -s pip3 /usr/bin/pip ; fi
16 | 
17 | ENV BASE_DIR=/app
18 | WORKDIR ${BASE_DIR}
19 | ADD requirements.txt $BASE_DIR
20 | RUN pip3 install -r requirements.txt
21 | 
22 | ADD . $BASE_DIR
23 | CMD python -u app.py


--------------------------------------------------------------------------------
/app/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/app/__init__.py


--------------------------------------------------------------------------------
/app/app.py:
--------------------------------------------------------------------------------
 1 | """Entrypoint module."""
 2 | import logging
 3 | import time
 4 | import schedule
 5 | from app.utils.helpers import explode_image
 6 | import utils.persistence as persistence
 7 | import utils.kubernetes as k8s
 8 | import utils.config as config
 9 | import utils.general as general
10 | from utils.model.image import Image
11 | 
12 | 
13 | def job():
14 |     """Recurrent urunner Job"""
15 |     logging.debug("%s start scheduler", general.get_date_time())
16 |     all_namespaces = kubernetes.get_namespaces()
17 |     for namespace in all_namespaces.items:
18 |         namespace = namespace.metadata.name
19 | 
20 |         logging.debug("Listing deployments in namespace %s", namespace)
21 |         deployments = kubernetes.get_deployments(namespace=namespace)
22 |         for deployment in deployments.items:
23 |             logging.debug("Name: %s", deployment.metadata.name)
24 |             for container in deployment.spec.template.spec.containers:
25 |                 image = Image(
26 |                     image_id="",
27 |                     namespace=namespace,
28 |                     resource=deployment.metadata.name,
29 |                     tag="",
30 |                     tag_digest="",
31 |                     image=container.image,
32 |                 )
33 | 
34 |                 image_tag = explode_image(image)[1]
35 |                 image.tag = image_tag
36 |                 image_id = f"{namespace}-{deployment.metadata.name}-{container.image}-{image_tag}"
37 |                 image.image_id = image_id
38 |                 logging.debug("Image: %s", image)
39 | 
40 |                 general.process_resource(db_ref=db_ref, kubernetes=kubernetes, image=image)
41 | 
42 | 
43 | logging.basicConfig(encoding="utf-8", level=config.get_urunner_conf_log_level())
44 | 
45 | db_ref = persistence.Persistence(path=config.get_urunner_conf_sqlight_path())
46 | db_ref.init()
47 | 
48 | kubernetes = k8s.Kubernetes()
49 | schedule.every(config.get_urunner_conf_frequency_check_seconds()).seconds.do(job)
50 | 
51 | while 1:
52 |     schedule.run_pending()
53 |     time.sleep(1)
54 | 


--------------------------------------------------------------------------------
/app/requirements.txt:
--------------------------------------------------------------------------------
1 | kubernetes===26.1.0
2 | requests===2.28.2
3 | schedule===1.1.0
4 | # pytest===7.2.2
5 | # flake8===6.0.0
6 | pylint===2.16.3
7 | boto3===1.26.87


--------------------------------------------------------------------------------
/app/tests/test_dockerapi.py:
--------------------------------------------------------------------------------
  1 | import unittest
  2 | from unittest.mock import patch, MagicMock
  3 | from utils.model.image import Image
  4 | from utils.dockerapi import get_dockerapi_digest
  5 | 
  6 | 
  7 | class TestDockerAPIDigest(unittest.TestCase):
  8 | 
  9 |     @patch("utils.dockerapi.requests.get")
 10 |     @patch("utils.dockerapi.config.get_urunner_conf_docker_api_accept_header")
 11 |     @patch("utils.dockerapi.config.get_urunner_conf_docker_api_verify")
 12 |     @patch("utils.helpers.explode_image")
 13 |     @patch("utils.dockerapi.get_dockerapi_image_path")
 14 |     def test_get_dockerapi_digest_success(self, mock_get_image_path, mock_explode_image, mock_verify, mock_accept_header, mock_requests_get):
 15 |         # Mock configuration values
 16 |         mock_accept_header.return_value = "application/vnd.docker.distribution.manifest.v2+json"
 17 |         mock_verify.return_value = True
 18 | 
 19 |         # Mock explode_image
 20 |         mock_explode_image.return_value = ("test-image", "latest")
 21 | 
 22 |         # Mock get_dockerapi_image_path
 23 |         mock_get_image_path.return_value = "library/test-image"
 24 | 
 25 |         # Mock requests.get response
 26 |         mock_response = MagicMock()
 27 |         mock_response.status_code = 200
 28 |         mock_response.headers = {"docker-content-digest": "sha256:testdigest"}
 29 |         mock_requests_get.return_value = mock_response
 30 | 
 31 |         # Create a test image
 32 |         test_image = Image(
 33 |             image_id="test-id",
 34 |             namespace="test-namespace",
 35 |             resource="test-resource",
 36 |             image="test-image:latest",
 37 |             tag="latest",
 38 |             tag_digest=""
 39 |         )
 40 | 
 41 |         # Call the function
 42 |         digest = get_dockerapi_digest(
 43 |             image=test_image,
 44 |             authorization="Bearer test-token",
 45 |             host="https://test-registry.com",
 46 |             container_registry_type="dockerhub"
 47 |         )
 48 | 
 49 |         # Assertions
 50 |         self.assertEqual(digest, "sha256:testdigest")
 51 |         mock_requests_get.assert_called_once_with(
 52 |             "https://test-registry.com/v2/library/test-image/manifests/latest",
 53 |             headers={
 54 |                 "Authorization": "Bearer test-token",
 55 |                 "Accept": "application/vnd.docker.distribution.manifest.v2+json",
 56 |             },
 57 |             verify=True,
 58 |             timeout=60
 59 |         )
 60 | 
 61 |     @patch("utils.dockerapi.requests.get")
 62 |     @patch("utils.dockerapi.config.get_urunner_conf_docker_api_accept_header")
 63 |     @patch("utils.dockerapi.config.get_urunner_conf_docker_api_verify")
 64 |     @patch("utils.helpers.explode_image")
 65 |     @patch("utils.dockerapi.get_dockerapi_image_path")
 66 |     def test_get_dockerapi_digest_failure(self, mock_get_image_path, mock_explode_image, mock_verify, mock_accept_header, mock_requests_get):
 67 |         # Mock configuration values
 68 |         mock_accept_header.return_value = "application/vnd.docker.distribution.manifest.v2+json"
 69 |         mock_verify.return_value = True
 70 | 
 71 |         # Mock explode_image
 72 |         mock_explode_image.return_value = ("test-image", "latest")
 73 | 
 74 |         # Mock get_dockerapi_image_path
 75 |         mock_get_image_path.return_value = "library/test-image"
 76 | 
 77 |         # Mock requests.get response
 78 |         mock_response = MagicMock()
 79 |         mock_response.status_code = 404
 80 |         mock_requests_get.return_value = mock_response
 81 | 
 82 |         # Create a test image
 83 |         test_image = Image(
 84 |             image_id="test-id",
 85 |             namespace="test-namespace",
 86 |             resource="test-resource",
 87 |             image="test-image:latest",
 88 |             tag="latest",
 89 |             tag_digest=""
 90 |         )
 91 | 
 92 |         # Call the function
 93 |         digest = get_dockerapi_digest(
 94 |             image=test_image,
 95 |             authorization="Bearer test-token",
 96 |             host="https://test-registry.com",
 97 |             container_registry_type="dockerhub"
 98 |         )
 99 | 
100 |         # Assertions
101 |         self.assertIsNone(digest)
102 |         mock_requests_get.assert_called_once_with(
103 |             "https://test-registry.com/v2/library/test-image/manifests/latest",
104 |             headers={
105 |                 "Authorization": "Bearer test-token",
106 |                 "Accept": "application/vnd.docker.distribution.manifest.v2+json",
107 |             },
108 |             verify=True,
109 |             timeout=60
110 |         )
111 | 
112 | 
113 | if __name__ == "__main__":
114 |     unittest.main()
115 | 


--------------------------------------------------------------------------------
/app/tests/test_helpers.py:
--------------------------------------------------------------------------------
  1 | import unittest
  2 | from utils.model.image import Image
  3 | from utils.helpers import explode_image
  4 | 
  5 | 
  6 | class TestHelpers(unittest.TestCase):
  7 | 
  8 |     def test_explode_image_with_tag(self):
  9 |         image = Image(
 10 |             image_id="",
 11 |             namespace="",
 12 |             resource="",
 13 |             image="registry.harbor/image:latest-latest",
 14 |             tag="",
 15 |             tag_digest=""
 16 |         )
 17 |         image_name, tag = explode_image(image)
 18 |         self.assertEqual(image_name, "registry.harbor/image")
 19 |         self.assertEqual(tag, "latest-latest")
 20 | 
 21 |     def test_explode_image_without_tag(self):
 22 |         image = Image(
 23 |             image_id="",
 24 |             namespace="",
 25 |             resource="",
 26 |             image="registry.harbor/image",
 27 |             tag="",
 28 |             tag_digest=""
 29 |         )
 30 |         image_name, tag = explode_image(image)
 31 |         self.assertEqual(image_name, "registry.harbor/image")
 32 |         self.assertEqual(tag, "latest")
 33 | 
 34 |     def test_explode_image_with_default_registry(self):
 35 |         image = Image(
 36 |             image_id="",
 37 |             namespace="",
 38 |             resource="",
 39 |             image="nginx:latest",
 40 |             tag="",
 41 |             tag_digest=""
 42 |         )
 43 |         image_name, tag = explode_image(image)
 44 |         self.assertEqual(image_name, "nginx")
 45 |         self.assertEqual(tag, "latest")
 46 | 
 47 |     def test_explode_image_without_tag_default_registry(self):
 48 |         image = Image(
 49 |             image_id="",
 50 |             namespace="",
 51 |             resource="",
 52 |             image="nginx",
 53 |             tag="",
 54 |             tag_digest=""
 55 |         )
 56 |         image_name, tag = explode_image(image)
 57 |         self.assertEqual(image_name, "nginx")
 58 |         self.assertEqual(tag, "latest")
 59 | 
 60 |     def test_explode_image_with_complex_tag(self):
 61 |         image = Image(
 62 |             image_id="",
 63 |             namespace="",
 64 |             resource="",
 65 |             image="registry.harbor/mapineq/mapineqfrontend:latest-latest",
 66 |             tag="",
 67 |             tag_digest=""
 68 |         )
 69 |         image_name, tag = explode_image(image)
 70 |         self.assertEqual(image_name, "registry.harbor/mapineq/mapineqfrontend")
 71 |         self.assertEqual(tag, "latest-latest")
 72 | 
 73 |     def test_explode_image_with_port(self):
 74 |         image = Image(
 75 |             image_id="",
 76 |             namespace="",
 77 |             resource="",
 78 |             image="harbor:8080/image:latest",
 79 |             tag="",
 80 |             tag_digest=""
 81 |         )
 82 |         image_name, tag = explode_image(image)
 83 |         self.assertEqual(image_name, "harbor:8080/image")
 84 |         self.assertEqual(tag, "latest")
 85 | 
 86 |     def test_explode_image_with_registry_and_tag(self):
 87 |         image = Image(
 88 |             image_id="",
 89 |             namespace="",
 90 |             resource="",
 91 |             image="435734619587.dkr.ecr.us-east-2.amazonaws.com/urunner-test/nginx:latest",
 92 |             tag="",
 93 |             tag_digest=""
 94 |         )
 95 |         image_name, tag = explode_image(image)
 96 |         self.assertEqual(image_name, "435734619587.dkr.ecr.us-east-2.amazonaws.com/urunner-test/nginx")
 97 |         self.assertEqual(tag, "latest")
 98 | 
 99 |     def test_explode_image_with_registry_without_tag(self):
100 |         image = Image(
101 |             image_id="",
102 |             namespace="",
103 |             resource="",
104 |             image="435734619587.dkr.ecr.us-east-2.amazonaws.com/urunner-test/nginx",
105 |             tag="",
106 |             tag_digest=""
107 |         )
108 |         image_name, tag = explode_image(image)
109 |         self.assertEqual(image_name, "435734619587.dkr.ecr.us-east-2.amazonaws.com/urunner-test/nginx")
110 |         self.assertEqual(tag, "latest")
111 | 
112 |     def test_explode_one_image_layer_with_registry_and_tag(self):
113 |         image = Image(
114 |             image_id="",
115 |             namespace="",
116 |             resource="",
117 |             image="435734619587.dkr.ecr.us-east-2.amazonaws.com/nginx:latest",
118 |             tag="",
119 |             tag_digest=""
120 |         )
121 |         image_name, tag = explode_image(image)
122 |         self.assertEqual(image_name, "435734619587.dkr.ecr.us-east-2.amazonaws.com/nginx")
123 |         self.assertEqual(tag, "latest")
124 | 
125 | if __name__ == '__main__':
126 |     unittest.main()
127 |     


--------------------------------------------------------------------------------
/app/utils/__init__.py:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/app/utils/__init__.py


--------------------------------------------------------------------------------
/app/utils/config.py:
--------------------------------------------------------------------------------
 1 | """config module"""
 2 | import os
 3 | from ast import literal_eval
 4 | 
 5 | 
 6 | def get_urunner_conf_docker_api_verify():
 7 |     """get_urunner_conf_docker_api_verify"""
 8 |     return literal_eval(os.environ.get("URUNNER_CONF_DOCKER_API_VERIFY", "True").capitalize())
 9 | 
10 | 
11 | def get_urunner_conf_log_level():
12 |     """get_urunner_conf_log_level"""
13 |     return os.environ.get("URUNNER_CONF_LOG_LEVEL", "INFO")
14 | 
15 | 
16 | def get_urunner_conf_k8s_auth_strategy():
17 |     """get_urunner_conf_k8s_auth_strategy"""
18 |     return os.environ.get("URUNNER_CONF_KUBE_AUTH", "incluster")
19 | 
20 | 
21 | def get_urunner_conf_sqlight_path():
22 |     """get_urunner_conf_sqlight_path"""
23 |     return os.environ.get("URUNNER_CONF_SQLLIGHT_PATH", "./urunner.db")
24 | 
25 | 
26 | def get_urunner_conf_frequency_check_seconds():
27 |     """get_urunner_conf_frequency_check_seconds"""
28 |     return int(os.environ.get("URUNNER_CONF_FREQUENCY_CHECK_SECONDS", "30"))
29 | 
30 | 
31 | def get_urunner_conf_container_registry_to_watch():
32 |     """get_urunner_conf_container_registry_to_watch"""
33 |     return os.environ.get("URUNNER_CONF_CONTAINER_REGISTRY_TO_WATCH", "harbor.default.svc.cluster.local:8080")
34 | 
35 | 
36 | def get_urunner_conf_container_registry_type():
37 |     """get_urunner_conf_container_registry_type"""
38 |     return os.environ.get("URUNNER_CONF_CONTAINER_REGISTRY_TYPE", "harbor")
39 | 
40 | 
41 | def get_urunner_secr_harbor_user():
42 |     """get_urunner_secr_harbor_user"""
43 |     return os.environ.get("URUNNER_SECR_HARBOR_USER", "admin")
44 | 
45 | 
46 | def get_urunner_secr_harbor_pass():
47 |     """get_urunner_secr_harbor_pass"""
48 |     return os.environ.get("URUNNER_SECR_HARBOR_PASS", "Harbor12345")
49 | 
50 | def get_urunner_secr_aws_region():
51 |     """def get_urunner_secr_aws_region"""
52 |     return os.environ.get("URUNNER_SECR_AWS_REGION", "us-east-2")
53 | 
54 | 
55 | def get_urunner_secr_aws_access_key_id():
56 |     """def get_urunner_secr_aws_access_key_id"""
57 |     return os.environ.get("URUNNER_SECR_AWS_ACCESS_KEY_ID", "AKIAIOSFODNN7EXAMPLE")
58 | 
59 | 
60 | def get_urunner_secr_aws_secret_access_key():
61 |     """def get_urunner_secr_aws_secret_access_key"""
62 |     return os.environ.get("URUNNER_SECR_AWS_SECRET_ACCESS_KEY", "wJalrXUtnFEMI/K7MDENG/xRfiCYEXAMPLEKEY")
63 | 
64 | 
65 | def get_urunner_secr_digital_ocean_token():
66 |     """def get_urunner_secr_digital_ocean_token"""
67 |     return os.environ.get("URUNNER_SECR_DIGITAL_OCEAN_TOKEN", "xxxxx")
68 | 
69 | def get_urunner_secr_gitlab_token():
70 |     """def get_urunner_secr_gitlab_token"""
71 |     return os.environ.get("URUNNER_SECR_GITLAB_TOKEN", "xxxxx")
72 | 
73 | def get_urunner_secr_gitlab_auth_url():
74 |     """def get_urunner_secr_gitlab_auth_url"""
75 |     return os.environ.get("URUNNER_SECR_GITLAB_AUTH_URL", "https://gitlab.com")
76 | 
77 | def get_urunner_conf_docker_api_accept_header():
78 |     """Get the custom Accept header for Docker API"""
79 |     # pylint: disable=line-too-long
80 |     return os.environ.get("DOCKER_API_ACCEPT_HEADER","application/vnd.docker.distribution.manifest.v2+json, application/vnd.oci.image.manifest.v1+json")
81 | 


--------------------------------------------------------------------------------
/app/utils/dockerapi.py:
--------------------------------------------------------------------------------
  1 | """dockerapi module"""
  2 | from base64 import b64encode
  3 | import logging
  4 | import hashlib
  5 | import requests
  6 | import boto3
  7 | from utils.helpers import explode_image  # Import from helpers
  8 | import utils.config as config
  9 | from utils.model.image import Image
 10 | 
 11 | 
 12 | def get_dockerapi_image_path(image_name):
 13 |     """get_dockerapi_image_path"""
 14 |     if "/" in image_name:
 15 |         return image_name
 16 | 
 17 |     return "library/" + image_name
 18 | 
 19 | 
 20 | def get_harbor_auth(image: Image):
 21 |     """get_harbor_auth"""
 22 |     logging.debug(image)
 23 |     username = config.get_urunner_secr_harbor_user()
 24 |     password = config.get_urunner_secr_harbor_pass()
 25 |     auth = f"{username}:{password}".encode("ascii")
 26 |     return f"Basic {auth}"
 27 | 
 28 | 
 29 | def get_aws_auth(image: Image):
 30 |     """get_aws_auth"""
 31 |     logging.debug(image)
 32 |     # ex. 435734619587.dkr.ecr.us-east-2.amazonaws.com
 33 |     region_name = config.get_urunner_conf_container_registry_to_watch().split(".")[3]
 34 |     registry_id = config.get_urunner_conf_container_registry_to_watch().split(".")[0]
 35 |     session = boto3.Session(
 36 |         aws_access_key_id=config.get_urunner_secr_aws_access_key_id(),
 37 |         aws_secret_access_key=config.get_urunner_secr_aws_secret_access_key(),
 38 |         region_name=region_name,
 39 |     )
 40 | 
 41 |     client = session.client("ecr", region_name=region_name)
 42 | 
 43 |     response = client.get_authorization_token(
 44 |         registryIds=[
 45 |             registry_id,
 46 |         ]
 47 |     )
 48 |     token = response["authorizationData"][0]["authorizationToken"]
 49 |     return f"Basic {token}"
 50 | 
 51 | 
 52 | def get_dockerhub_auth(image: Image):
 53 |     """get_dockerhub_auth"""
 54 |     auth_service = "registry.docker.io"
 55 |     auth_url = "https://auth.docker.io/token"
 56 |     return get_docker_v2_api_auth_style(image=image, auth_url=auth_url, auth_service=auth_service)
 57 | 
 58 | 
 59 | def get_digitalocean_auth(image: Image):
 60 |     """get_digitalocean_auth"""
 61 |     auth_service = "registry.digitalocean.com"
 62 |     auth_url = "https://api.digitalocean.com/v2/registry/auth"
 63 |     do_token = config.get_urunner_secr_digital_ocean_token()
 64 |     do_token = b64encode(f"{do_token}:{do_token}".encode("ascii")).decode("ascii")
 65 |     auth_header = f"Basic {do_token}"
 66 |     return get_docker_v2_api_auth_style(
 67 |         image=image, auth_url=auth_url, auth_service=auth_service, auth_header=auth_header
 68 |     )
 69 | 
 70 | def get_gitlab_auth(image: Image):
 71 |     """get_gitlab_auth"""
 72 |     auth_service = "container_registry"
 73 |     auth_url = f"{config.get_urunner_secr_gitlab_auth_url()}/jwt/auth"
 74 |     do_token = config.get_urunner_secr_gitlab_token()
 75 |     do_token = b64encode(f"{do_token}:{do_token}".encode("ascii")).decode("ascii")
 76 |     auth_header = f"Basic {do_token}"
 77 |     return get_docker_v2_api_auth_style(
 78 |         image=image, auth_url=auth_url, auth_service=auth_service, auth_header=auth_header
 79 |     )
 80 | 
 81 | def get_docker_v2_api_auth_style(image: Image, auth_service, auth_url, auth_header=None):
 82 |     """get_docker_v2_api_auth_style"""
 83 |     exploded_image = explode_image(image)
 84 |     image_name = exploded_image[0]
 85 |     dockerhub_image_path = get_dockerapi_image_path(image_name)
 86 |     auth_scope = f"repository:{dockerhub_image_path}:pull"
 87 |     headers = {"Authorization": auth_header} if auth_header else {}
 88 |     url = f"{auth_url}?service={auth_service}&scope={auth_scope}"
 89 |     logging.debug(url)
 90 |     response = requests.get(url, headers=headers, timeout=60)
 91 |     logging.debug(response)
 92 |     token = response.json()["token"]
 93 |     return f"Bearer {token}"
 94 | 
 95 | 
 96 | def get_dockerhub_host():
 97 |     """get_dockerhub_host"""
 98 |     return "https://registry-1.docker.io"
 99 | 
100 | 
101 | def get_digitalocean_host():
102 |     """get_digitalocean_host"""
103 |     return "https://registry.digitalocean.com"
104 | 
105 | 
106 | def get_configured_host():
107 |     """get_configured_host"""
108 |     registry_host = config.get_urunner_conf_container_registry_to_watch()
109 |     return f"https://{registry_host}"
110 | 
111 | 
112 | def get_dockerapi_digest(image: Image, authorization, host, container_registry_type):
113 |     """get_dockerapi_digest"""
114 |     exploded_image = explode_image(image)
115 |     logging.debug("exploded_image: %s", exploded_image)
116 |     image_name = exploded_image[0]
117 |     image_tag = exploded_image[1]
118 | 
119 |     dockerhub_image_path = (
120 |         get_dockerapi_image_path(image_name)
121 |         if container_registry_type == "dockerhub"
122 |         else image_name
123 |     )
124 | 
125 |     logging.debug("dockerhub_image_path: %s", dockerhub_image_path)
126 | 
127 |     accept_header = config.get_urunner_conf_docker_api_accept_header()
128 | 
129 |     headers = {
130 |         "Authorization": authorization,
131 |         "Accept": accept_header,
132 |     }
133 |     logging.debug(headers)
134 |     url = f"{host}/v2/{dockerhub_image_path}/manifests/{image_tag}"
135 |     try:
136 |         response = requests.get(url, headers=headers, verify=config.get_urunner_conf_docker_api_verify(), timeout=60)
137 |     except requests.exceptions.RequestException as exception:
138 |         logging.error(exception)
139 |         return None
140 | 
141 |     logging.debug(response)
142 |     if response.status_code == 200:
143 |         logging.debug(response.headers)
144 |         image_digest = (
145 |             response.headers["docker-content-digest"]
146 |             if "docker-content-digest" in response.headers
147 |             else hashlib.sha1(f"{response.content}".encode("utf-8")).hexdigest()
148 |         )
149 |         logging.debug("image_digest: %s", image_digest)
150 |         return image_digest
151 | 
152 |     logging.error("Error status code: %i", response.status_code)
153 |     logging.debug(response)
154 |     return None
155 | 


--------------------------------------------------------------------------------
/app/utils/general.py:
--------------------------------------------------------------------------------
 1 | """"General module"""
 2 | import datetime
 3 | import logging
 4 | from utils.dockerapi import (
 5 |     get_dockerapi_digest,
 6 |     get_dockerhub_auth,
 7 |     get_harbor_auth,
 8 |     get_aws_auth,
 9 |     get_digitalocean_auth,
10 |     get_gitlab_auth,
11 |     get_dockerhub_host,
12 |     get_configured_host,
13 |     get_digitalocean_host,
14 | )
15 | from utils.model.image import Image
16 | from utils.kubernetes import Kubernetes
17 | import utils.config as config
18 | import utils.persistence as persistence
19 | 
20 | 
21 | def get_date_time():
22 |     """get_date_time"""
23 |     now = datetime.datetime.utcnow()
24 |     return now.strftime("%Y-%m-%d %H:%M:%S")
25 | 
26 | 
27 | def get_container_registry(image):
28 |     """get_container_registry"""
29 |     registry_host = config.get_urunner_conf_container_registry_to_watch()
30 |     if registry_host in image:
31 |         return config.get_urunner_conf_container_registry_type()
32 | 
33 |     return None
34 | 
35 | 
36 | def process_resource(db_ref: persistence.Persistence, kubernetes: Kubernetes, image: Image):
37 |     """process_resource"""
38 |     docker_api_auth_mapper = {
39 |         "dockerhub": get_dockerhub_auth,
40 |         "harbor": get_harbor_auth,
41 |         "aws_ecr": get_aws_auth,
42 |         "digitalocean": get_digitalocean_auth,
43 |         "gitlab" : get_gitlab_auth
44 |     }
45 | 
46 |     docker_api_host_mapper = {
47 |         "dockerhub": get_dockerhub_host,
48 |         "harbor": get_configured_host,
49 |         "aws_ecr": get_configured_host,
50 |         "digitalocean": get_digitalocean_host,
51 |         "gitlab": get_configured_host
52 |     }
53 |     container_registry_type = get_container_registry(image.image)
54 |     if container_registry_type is None:
55 |         logging.debug("Container registry not recognized")
56 |         return
57 | 
58 |     auth = docker_api_auth_mapper[container_registry_type](image)
59 |     docker_api_host = docker_api_host_mapper[container_registry_type]()
60 |     tag_digest = get_dockerapi_digest(image, auth, docker_api_host, container_registry_type)
61 |     if tag_digest is None:
62 |         return
63 | 
64 |     result = db_ref.get_image_by_id(image.image_id)
65 |     image.tag_digest = tag_digest
66 |     logging.debug(image)
67 | 
68 |     if result is None:
69 |         logging.debug("DB miss")
70 |         db_ref.add_new_image(data=image)
71 |     else:
72 |         logging.debug("DB hit")
73 |         if result["tag_digest"] != image.tag_digest:
74 |             db_ref.update_image_digest(image_id=image.image_id, new_tag_digest=image.tag_digest)
75 |             kubernetes.restart_deployment(image.namespace, image.resource)
76 | 
77 |         db_ref.update_image_last_check_data(image_id=image.image_id)
78 | 


--------------------------------------------------------------------------------
/app/utils/helpers.py:
--------------------------------------------------------------------------------
 1 | """utils.helpers"""
 2 | import re
 3 | from utils.model.image import Image
 4 | import utils.config as config
 5 | 
 6 | 
 7 | def explode_image(image: Image):
 8 |     """explode_image"""
 9 |     # Example image formats:
10 |     # harbor:8080/image:latest
11 |     # harbor:8080/image
12 |     # nginx:latest
13 |     # nginx
14 |     # 435734619587.dkr.ecr.us-east-2.amazonaws.com/urunner-test/nginx:latest
15 |     image_name = image.image
16 |     registry_to_watch = config.get_urunner_conf_container_registry_to_watch()
17 |     image_name = image_name.replace(registry_to_watch, "")
18 |     if image_name.startswith("/"):
19 |         image_name = image_name[1:]
20 | 
21 |     # Regular expression to match image name and tag
22 |     match = re.match(r'^(.*?)(?::([^:/]+))?$', image_name)
23 |     if match:
24 |         image_name = match.group(1)
25 |         tag = match.group(2) if match.group(2) else "latest"
26 |         return (image_name, tag)
27 | 
28 |     return (image_name, "latest")
29 | 


--------------------------------------------------------------------------------
/app/utils/kubernetes.py:
--------------------------------------------------------------------------------
 1 | """Kubernetes module"""
 2 | import datetime
 3 | import logging
 4 | from kubernetes.client.rest import ApiException
 5 | from kubernetes import client, config
 6 | import utils.config as urunnerConfig
 7 | 
 8 | 
 9 | class Kubernetes:
10 |     """Kubernetes class"""
11 | 
12 |     def __init__(self):
13 |         auth_strategy_mapper = {"incluster": config.load_incluster_config, "kubeconfig": config.load_kube_config}
14 |         auth_strategy_mapper[urunnerConfig.get_urunner_conf_k8s_auth_strategy()]()
15 |         self.v1_apps = client.AppsV1Api()
16 |         self.v1_core = client.CoreV1Api()
17 | 
18 |     def get_namespaces(self):
19 |         """get_namespaces"""
20 |         namespace = self.v1_core.list_namespace(label_selector="urunner=enable")
21 |         return namespace
22 | 
23 |     def get_deployments(self, namespace):
24 |         """get_deployments"""
25 |         deployments = self.v1_apps.list_namespaced_deployment(namespace=namespace, label_selector="urunner!=disable")
26 |         return deployments
27 | 
28 |     def restart_deployment(self, namespace, deployment):
29 |         """restart_deployment"""
30 |         logging.info("Restarting %s in ns %s", deployment, namespace)
31 |         now = datetime.datetime.utcnow()
32 |         now = str(now.isoformat("T") + "Z")
33 |         body = {"spec": {"template": {"metadata": {"annotations": {"kubectl.kubernetes.io/restartedAt": now}}}}}
34 |         try:
35 |             self.v1_apps.patch_namespaced_deployment(deployment, namespace, body, pretty="true")
36 |         except ApiException as exception:
37 |             logging.error("Exception when calling AppsV1Api->read_namespaced_deployment_status: %s\n", exception)
38 | 


--------------------------------------------------------------------------------
/app/utils/model/image.py:
--------------------------------------------------------------------------------
 1 | """Image model"""
 2 | from dataclasses import dataclass
 3 | 
 4 | 
 5 | @dataclass
 6 | class Image:
 7 |     """Image model"""
 8 | 
 9 |     image_id: str
10 |     namespace: str
11 |     resource: str
12 |     image: str
13 |     tag: str
14 |     tag_digest: str
15 | 
16 |     # def get_image_id(self):
17 |     #     """image_id"""
18 |     #     return self.image_id
19 | 
20 |     # def get_namespace(self):
21 |     #     """namespace"""
22 |     #     return self.namespace
23 | 
24 |     # def get_resource(self):
25 |     #     """get_resource"""
26 |     #     return self.resource
27 | 
28 |     # def get_image(self):
29 |     #     """get_image"""
30 |     #     return self.image
31 | 
32 |     # def get_tag(self):
33 |     #     """get_tag"""
34 |     #     return self.tag
35 | 
36 |     # def get_tag_digest(self):
37 |     #     """get_tag_digest"""
38 |     #     return self.tag_digest
39 | 


--------------------------------------------------------------------------------
/app/utils/persistence.py:
--------------------------------------------------------------------------------
 1 | """persistence module"""
 2 | import datetime
 3 | import sqlite3
 4 | from utils.model.image import Image
 5 | 
 6 | 
 7 | class Persistence:
 8 |     """persistence class"""
 9 | 
10 |     def __init__(self, path):
11 |         self.path = path
12 |         self.con = sqlite3.connect(self.path)
13 |         self.con.row_factory = self.row_to_dict
14 |         self.cur = self.con.cursor()
15 | 
16 |     def row_to_dict(self, cursor: sqlite3.Cursor, row: sqlite3.Row) -> dict:
17 |         """row_to_dict"""
18 |         data = {}
19 |         for idx, col in enumerate(cursor.description):
20 |             data[col[0]] = row[idx]
21 |         return data
22 | 
23 |     def init(self):
24 |         """init"""
25 |         self.cur.execute(
26 |             """
27 |             CREATE TABLE IF NOT EXISTS image
28 |             (
29 |                 id VARCHAR(700) PRIMARY KEY, 
30 |                 namespace VARCHAR(100), 
31 |                 resource VARCHAR(300), 
32 |                 image VARCHAR(200),
33 |                 tag VARCHAR(100), 
34 |                 tag_digest VARCHAR(500), 
35 |                 last_check_date DATETIME
36 |             )
37 |             """
38 |         )
39 |         self.con.commit()
40 | 
41 |     def get_image_by_id(self, image_id):
42 |         """get_image_by_id"""
43 |         result = self.cur.execute(f"SELECT * FROM image WHERE id='{image_id}'")
44 |         return result.fetchone()
45 | 
46 |     def add_new_image(self, data: Image):
47 |         """add_new_image"""
48 | 
49 |         self.cur.execute(
50 |             f"""INSERT INTO image (id, namespace,resource, image, tag, tag_digest, last_check_date)
51 |                 VALUES (
52 |                         '{data.image_id}',
53 |                         '{data.namespace}',
54 |                         '{data.resource}',
55 |                         '{data.image}',
56 |                         '{data.tag}',
57 |                         '{data.tag_digest}',
58 |                         '{get_date_time()}');"""
59 |         )
60 |         self.con.commit()
61 | 
62 |     def update_image_digest(self, image_id, new_tag_digest):
63 |         """update_image_digest"""
64 |         self.cur.execute(
65 |             f"""
66 |             UPDATE image SET tag_digest='{new_tag_digest}' WHERE id='{image_id}'
67 |             """
68 |         )
69 |         self.con.commit()
70 | 
71 |     def update_image_last_check_data(self, image_id):
72 |         """update_image_last_check_data"""
73 |         self.cur.execute(
74 |             f"""
75 |             UPDATE image SET last_check_date='{get_date_time()}' WHERE id='{image_id}'
76 |             """
77 |         )
78 | 
79 |         self.con.commit()
80 | 
81 | 
82 | def get_date_time():
83 |     """get_date_time"""
84 |     now = datetime.datetime.utcnow()
85 |     return now.strftime("%Y-%m-%d %H:%M:%S")
86 | 


--------------------------------------------------------------------------------
/artifacthub-repo.yml:
--------------------------------------------------------------------------------
 1 | # Artifact Hub repository metadata file
 2 | #
 3 | # Some settings like the verified publisher flag or the ignored packages won't
 4 | # be applied until the next time the repository is processed. Please keep in
 5 | # mind that the repository won't be processed if it has not changed since the
 6 | # last time it was processed. Depending on the repository kind, this is checked
 7 | # in a different way. For Helm http based repositories, we consider it has
 8 | # changed if the `index.yaml` file changes. For git based repositories, it does
 9 | # when the hash of the last commit in the branch you set up changes. This does
10 | # NOT apply to ownership claim operations, which are processed immediately.
11 | #
12 | repositoryID: c7bd9b25-b6b6-408e-869c-24af9ea36c32
13 | 


--------------------------------------------------------------------------------
/asset/.$urunner.drawio.bkp:
--------------------------------------------------------------------------------
1 | <mxfile host="Electron" modified="2023-03-11T18:43:15.469Z" agent="5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/20.8.16 Chrome/106.0.5249.199 Electron/21.4.0 Safari/537.36" etag="3HfH-vhn5m_9colidgXB" version="20.8.16" type="device"><diagram name="Page-1" id="SHbZR7riI4DMQ_hshxAQ">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</diagram></mxfile>


--------------------------------------------------------------------------------
/asset/logo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/asset/logo.png


--------------------------------------------------------------------------------
/asset/urunner-aws.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/asset/urunner-aws.png


--------------------------------------------------------------------------------
/asset/urunner-do.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/asset/urunner-do.png


--------------------------------------------------------------------------------
/asset/urunner-gitlab.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/asset/urunner-gitlab.png


--------------------------------------------------------------------------------
/asset/urunner.drawio:
--------------------------------------------------------------------------------
  1 | <mxfile host="Electron" modified="2024-01-27T09:51:12.043Z" agent="Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/23.0.2 Chrome/120.0.6099.109 Electron/28.1.0 Safari/537.36" etag="rEaXu_YRFWGDWXTadTzS" version="23.0.2" type="device">
  2 |   <diagram name="Page-1" id="SHbZR7riI4DMQ_hshxAQ">
  3 |     <mxGraphModel dx="1434" dy="773" grid="1" gridSize="10" guides="1" tooltips="1" connect="1" arrows="1" fold="1" page="1" pageScale="1" pageWidth="1654" pageHeight="1169" math="0" shadow="0">
  4 |       <root>
  5 |         <mxCell id="0" />
  6 |         <mxCell id="1" parent="0" />
  7 |         <mxCell id="KrMKus8RkKXgKPneI6wB-18" value="" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://razorops.com/images/blog/gitlab-container-registry.png;" vertex="1" parent="1">
  8 |           <mxGeometry x="1156.47" y="760" width="125.07" height="125.07" as="geometry" />
  9 |         </mxCell>
 10 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-9" value="" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#dae8fc;strokeColor=#6c8ebf;" parent="1" vertex="1">
 11 |           <mxGeometry x="1410" y="170" width="490" height="185" as="geometry" />
 12 |         </mxCell>
 13 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-1" value="" style="rounded=1;whiteSpace=wrap;html=1;imageHeight=24;arcSize=6;fillColor=#dae8fc;strokeColor=#6c8ebf;" parent="1" vertex="1">
 14 |           <mxGeometry x="300" y="210" width="460" height="410" as="geometry" />
 15 |         </mxCell>
 16 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-2" value="Kubernetes" style="text;html=1;align=center;verticalAlign=middle;resizable=0;points=[];autosize=1;strokeColor=none;fillColor=none;" parent="1" vertex="1">
 17 |           <mxGeometry x="300" y="180" width="80" height="30" as="geometry" />
 18 |         </mxCell>
 19 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-3" value="" style="rounded=1;whiteSpace=wrap;html=1;dashed=1;fillColor=#d5e8d4;strokeColor=#82b366;" parent="1" vertex="1">
 20 |           <mxGeometry x="340" y="250" width="150" height="160" as="geometry" />
 21 |         </mxCell>
 22 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-4" value="ns: urunner" style="text;html=1;strokeColor=none;fillColor=none;align=center;verticalAlign=middle;whiteSpace=wrap;rounded=0;" parent="1" vertex="1">
 23 |           <mxGeometry x="340" y="220" width="70" height="30" as="geometry" />
 24 |         </mxCell>
 25 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-5" value="" style="rounded=1;whiteSpace=wrap;html=1;dashed=1;fillColor=#fff2cc;strokeColor=#d6b656;" parent="1" vertex="1">
 26 |           <mxGeometry x="560" y="250" width="160" height="160" as="geometry" />
 27 |         </mxCell>
 28 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-6" value="ns: my-app-01" style="text;html=1;strokeColor=none;fillColor=none;align=center;verticalAlign=middle;whiteSpace=wrap;rounded=0;" parent="1" vertex="1">
 29 |           <mxGeometry x="560" y="220" width="80" height="30" as="geometry" />
 30 |         </mxCell>
 31 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-7" value="" style="rounded=1;whiteSpace=wrap;html=1;dashed=1;fillColor=#fff2cc;strokeColor=#d6b656;" parent="1" vertex="1">
 32 |           <mxGeometry x="560" y="450" width="160" height="160" as="geometry" />
 33 |         </mxCell>
 34 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-8" value="ns: my-app-02" style="text;html=1;strokeColor=none;fillColor=none;align=center;verticalAlign=middle;whiteSpace=wrap;rounded=0;" parent="1" vertex="1">
 35 |           <mxGeometry x="560" y="420" width="90" height="30" as="geometry" />
 36 |         </mxCell>
 37 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-11" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" parent="1" source="fUXLhJCDhWvFZy5FGVjE-9" target="fUXLhJCDhWvFZy5FGVjE-10" edge="1">
 38 |           <mxGeometry relative="1" as="geometry" />
 39 |         </mxCell>
 40 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-12" value="&lt;b&gt;HTTP REST&lt;br&gt;docker standard api&lt;br&gt;&lt;/b&gt;get image digest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="fUXLhJCDhWvFZy5FGVjE-11" vertex="1" connectable="0">
 41 |           <mxGeometry x="0.32" y="1" relative="1" as="geometry">
 42 |             <mxPoint as="offset" />
 43 |           </mxGeometry>
 44 |         </mxCell>
 45 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-14" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;exitX=1;exitY=0.5;exitDx=0;exitDy=0;entryX=0;entryY=0.5;entryDx=0;entryDy=0;" parent="1" source="fUXLhJCDhWvFZy5FGVjE-9" target="fUXLhJCDhWvFZy5FGVjE-13" edge="1">
 46 |           <mxGeometry relative="1" as="geometry" />
 47 |         </mxCell>
 48 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-15" value="&lt;font style=&quot;font-size: 10px;&quot;&gt;restart&lt;br&gt;on digest change&lt;/font&gt;" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="fUXLhJCDhWvFZy5FGVjE-14" vertex="1" connectable="0">
 49 |           <mxGeometry x="-0.1833" relative="1" as="geometry">
 50 |             <mxPoint x="10" as="offset" />
 51 |           </mxGeometry>
 52 |         </mxCell>
 53 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-18" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0;entryY=0.5;entryDx=0;entryDy=0;exitX=0.992;exitY=0.668;exitDx=0;exitDy=0;exitPerimeter=0;" parent="1" source="fUXLhJCDhWvFZy5FGVjE-9" target="fUXLhJCDhWvFZy5FGVjE-17" edge="1">
 54 |           <mxGeometry relative="1" as="geometry">
 55 |             <Array as="points">
 56 |               <mxPoint x="459" y="340" />
 57 |               <mxPoint x="480" y="340" />
 58 |               <mxPoint x="480" y="510" />
 59 |             </Array>
 60 |           </mxGeometry>
 61 |         </mxCell>
 62 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-19" value="&lt;font style=&quot;font-size: 10px;&quot;&gt;restart&lt;br style=&quot;border-color: var(--border-color);&quot;&gt;on digest change&lt;/font&gt;" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="fUXLhJCDhWvFZy5FGVjE-18" vertex="1" connectable="0">
 63 |           <mxGeometry x="0.525" relative="1" as="geometry">
 64 |             <mxPoint as="offset" />
 65 |           </mxGeometry>
 66 |         </mxCell>
 67 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-9" value="urunner" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#60a917;fontColor=#ffffff;strokeColor=#2D7600;" parent="1" vertex="1">
 68 |           <mxGeometry x="370" y="280" width="90" height="80" as="geometry" />
 69 |         </mxCell>
 70 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-10" value="Container Registry" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#e1d5e7;strokeColor=#9673a6;" parent="1" vertex="1">
 71 |           <mxGeometry x="355" y="20" width="120" height="60" as="geometry" />
 72 |         </mxCell>
 73 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-13" value="app-01:latest" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#e3c800;fontColor=#000000;strokeColor=#B09500;" parent="1" vertex="1">
 74 |           <mxGeometry x="595" y="280" width="90" height="60" as="geometry" />
 75 |         </mxCell>
 76 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-16" value="" style="html=1;verticalLabelPosition=bottom;align=center;labelBackgroundColor=#ffffff;verticalAlign=top;strokeWidth=2;strokeColor=#0080F0;shadow=0;dashed=0;shape=mxgraph.ios7.icons.clock;" parent="1" vertex="1">
 77 |           <mxGeometry x="400" y="264" width="30" height="30" as="geometry" />
 78 |         </mxCell>
 79 |         <mxCell id="fUXLhJCDhWvFZy5FGVjE-17" value="app-02:latest" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#e3c800;fontColor=#000000;strokeColor=#B09500;" parent="1" vertex="1">
 80 |           <mxGeometry x="595" y="480" width="90" height="60" as="geometry" />
 81 |         </mxCell>
 82 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-2" value="AWS ECR" style="sketch=0;points=[[0,0,0],[0.25,0,0],[0.5,0,0],[0.75,0,0],[1,0,0],[0,1,0],[0.25,1,0],[0.5,1,0],[0.75,1,0],[1,1,0],[0,0.25,0],[0,0.5,0],[0,0.75,0],[1,0.25,0],[1,0.5,0],[1,0.75,0]];outlineConnect=0;fontColor=#232F3E;gradientColor=#F78E04;gradientDirection=north;fillColor=#D05C17;strokeColor=#ffffff;dashed=0;verticalLabelPosition=bottom;verticalAlign=top;align=center;html=1;fontSize=12;fontStyle=0;aspect=fixed;shape=mxgraph.aws4.resourceIcon;resIcon=mxgraph.aws4.ecr;" parent="1" vertex="1">
 83 |           <mxGeometry x="1180" y="210" width="78" height="78" as="geometry" />
 84 |         </mxCell>
 85 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-6" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" parent="1" source="cv7s6CQmIdz1Lz2LSrHj-5" target="cv7s6CQmIdz1Lz2LSrHj-2" edge="1">
 86 |           <mxGeometry relative="1" as="geometry" />
 87 |         </mxCell>
 88 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-7" value="push image:latest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="cv7s6CQmIdz1Lz2LSrHj-6" vertex="1" connectable="0">
 89 |           <mxGeometry x="-0.2571" y="-2" relative="1" as="geometry">
 90 |             <mxPoint x="8" y="-2" as="offset" />
 91 |           </mxGeometry>
 92 |         </mxCell>
 93 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-5" value="" style="sketch=0;pointerEvents=1;shadow=0;dashed=0;html=1;strokeColor=none;fillColor=#505050;labelPosition=center;verticalLabelPosition=bottom;verticalAlign=top;outlineConnect=0;align=center;shape=mxgraph.office.concepts.settings_office_365;" parent="1" vertex="1">
 94 |           <mxGeometry x="950" y="209" width="90" height="80" as="geometry" />
 95 |         </mxCell>
 96 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-8" value="AWS EKS" style="sketch=0;points=[[0,0,0],[0.25,0,0],[0.5,0,0],[0.75,0,0],[1,0,0],[0,1,0],[0.25,1,0],[0.5,1,0],[0.75,1,0],[1,1,0],[0,0.25,0],[0,0.5,0],[0,0.75,0],[1,0.25,0],[1,0.5,0],[1,0.75,0]];outlineConnect=0;fontColor=#232F3E;gradientColor=#F78E04;gradientDirection=north;fillColor=#D05C17;strokeColor=#ffffff;dashed=0;verticalLabelPosition=bottom;verticalAlign=top;align=center;html=1;fontSize=12;fontStyle=0;aspect=fixed;shape=mxgraph.aws4.resourceIcon;resIcon=mxgraph.aws4.eks;" parent="1" vertex="1">
 97 |           <mxGeometry x="1830" y="186" width="49" height="49" as="geometry" />
 98 |         </mxCell>
 99 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-11" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1;entryY=0.5;entryDx=0;entryDy=0;entryPerimeter=0;startArrow=classic;startFill=1;endArrow=none;endFill=0;" parent="1" source="cv7s6CQmIdz1Lz2LSrHj-10" target="cv7s6CQmIdz1Lz2LSrHj-2" edge="1">
100 |           <mxGeometry relative="1" as="geometry" />
101 |         </mxCell>
102 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-18" value="Check image:latest&lt;br&gt;digest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="cv7s6CQmIdz1Lz2LSrHj-11" vertex="1" connectable="0">
103 |           <mxGeometry x="0.2092" y="-3" relative="1" as="geometry">
104 |             <mxPoint y="3" as="offset" />
105 |           </mxGeometry>
106 |         </mxCell>
107 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-14" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" parent="1" source="cv7s6CQmIdz1Lz2LSrHj-10" target="cv7s6CQmIdz1Lz2LSrHj-13" edge="1">
108 |           <mxGeometry relative="1" as="geometry" />
109 |         </mxCell>
110 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-15" value="Restart on&lt;br&gt;digest change" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="cv7s6CQmIdz1Lz2LSrHj-14" vertex="1" connectable="0">
111 |           <mxGeometry x="-0.302" relative="1" as="geometry">
112 |             <mxPoint x="8" y="1" as="offset" />
113 |           </mxGeometry>
114 |         </mxCell>
115 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-10" value="Urunner" style="ellipse;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;" parent="1" vertex="1">
116 |           <mxGeometry x="1430" y="209" width="120" height="80" as="geometry" />
117 |         </mxCell>
118 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-12" value="" style="html=1;verticalLabelPosition=bottom;align=center;labelBackgroundColor=#ffffff;verticalAlign=top;strokeWidth=2;strokeColor=#0080F0;shadow=0;dashed=0;shape=mxgraph.ios7.icons.clock;" parent="1" vertex="1">
119 |           <mxGeometry x="1430" y="239" width="20" height="20" as="geometry" />
120 |         </mxCell>
121 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-16" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=0.5;entryY=0;entryDx=0;entryDy=0;entryPerimeter=0;endArrow=none;endFill=0;startArrow=classic;startFill=1;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" parent="1" source="cv7s6CQmIdz1Lz2LSrHj-13" target="cv7s6CQmIdz1Lz2LSrHj-2" edge="1">
122 |           <mxGeometry relative="1" as="geometry">
123 |             <Array as="points">
124 |               <mxPoint x="1730" y="120" />
125 |               <mxPoint x="1219" y="120" />
126 |             </Array>
127 |           </mxGeometry>
128 |         </mxCell>
129 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-17" value="Pull" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="cv7s6CQmIdz1Lz2LSrHj-16" vertex="1" connectable="0">
130 |           <mxGeometry x="-0.7512" relative="1" as="geometry">
131 |             <mxPoint as="offset" />
132 |           </mxGeometry>
133 |         </mxCell>
134 |         <mxCell id="cv7s6CQmIdz1Lz2LSrHj-13" value="Pods" style="ellipse;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;" parent="1" vertex="1">
135 |           <mxGeometry x="1670" y="208" width="120" height="80" as="geometry" />
136 |         </mxCell>
137 |         <mxCell id="m4bIN1iiOiE3AjWDViHn-1" value="" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://upload.wikimedia.org/wikipedia/commons/thumb/3/38/SQLite370.svg/2560px-SQLite370.svg.png;" parent="1" vertex="1">
138 |           <mxGeometry x="383.3" y="329" width="63.41" height="30" as="geometry" />
139 |         </mxCell>
140 |         <mxCell id="m4bIN1iiOiE3AjWDViHn-2" value="" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://upload.wikimedia.org/wikipedia/commons/thumb/3/38/SQLite370.svg/2560px-SQLite370.svg.png;" parent="1" vertex="1">
141 |           <mxGeometry x="1457.3" y="256" width="63.41" height="30" as="geometry" />
142 |         </mxCell>
143 |         <mxCell id="23rFBHKMvT71HNuFYbmp-2" value="" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://www.vectorlogo.zone/logos/digitalocean/digitalocean-ar21.png;" parent="1" vertex="1">
144 |           <mxGeometry x="1170" y="445" width="100" height="50" as="geometry" />
145 |         </mxCell>
146 |         <mxCell id="23rFBHKMvT71HNuFYbmp-1" value="DigitalOcean Container Registry&#xa;DOCR" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=data:image/png,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;" parent="1" vertex="1">
147 |           <mxGeometry x="1170" y="485" width="120.13" height="90" as="geometry" />
148 |         </mxCell>
149 |         <mxCell id="23rFBHKMvT71HNuFYbmp-3" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" parent="1" source="23rFBHKMvT71HNuFYbmp-5" edge="1">
150 |           <mxGeometry relative="1" as="geometry">
151 |             <mxPoint x="1170" y="525" as="targetPoint" />
152 |           </mxGeometry>
153 |         </mxCell>
154 |         <mxCell id="23rFBHKMvT71HNuFYbmp-4" value="push image:latest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="23rFBHKMvT71HNuFYbmp-3" vertex="1" connectable="0">
155 |           <mxGeometry x="-0.2571" y="-2" relative="1" as="geometry">
156 |             <mxPoint x="8" y="-2" as="offset" />
157 |           </mxGeometry>
158 |         </mxCell>
159 |         <mxCell id="23rFBHKMvT71HNuFYbmp-5" value="" style="sketch=0;pointerEvents=1;shadow=0;dashed=0;html=1;strokeColor=none;fillColor=#505050;labelPosition=center;verticalLabelPosition=bottom;verticalAlign=top;outlineConnect=0;align=center;shape=mxgraph.office.concepts.settings_office_365;" parent="1" vertex="1">
160 |           <mxGeometry x="940" y="485" width="90" height="80" as="geometry" />
161 |         </mxCell>
162 |         <mxCell id="23rFBHKMvT71HNuFYbmp-6" value="" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#dae8fc;strokeColor=#6c8ebf;" parent="1" vertex="1">
163 |           <mxGeometry x="1410" y="442.5" width="490" height="185" as="geometry" />
164 |         </mxCell>
165 |         <mxCell id="23rFBHKMvT71HNuFYbmp-9" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1;entryY=0.5;entryDx=0;entryDy=0;entryPerimeter=0;startArrow=classic;startFill=1;endArrow=none;endFill=0;" parent="1" source="23rFBHKMvT71HNuFYbmp-13" edge="1">
166 |           <mxGeometry relative="1" as="geometry">
167 |             <mxPoint x="1258" y="521.5" as="targetPoint" />
168 |           </mxGeometry>
169 |         </mxCell>
170 |         <mxCell id="23rFBHKMvT71HNuFYbmp-10" value="Check image:latest&lt;br&gt;digest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="23rFBHKMvT71HNuFYbmp-9" vertex="1" connectable="0">
171 |           <mxGeometry x="0.2092" y="-3" relative="1" as="geometry">
172 |             <mxPoint y="3" as="offset" />
173 |           </mxGeometry>
174 |         </mxCell>
175 |         <mxCell id="23rFBHKMvT71HNuFYbmp-11" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" parent="1" source="23rFBHKMvT71HNuFYbmp-13" target="23rFBHKMvT71HNuFYbmp-17" edge="1">
176 |           <mxGeometry relative="1" as="geometry" />
177 |         </mxCell>
178 |         <mxCell id="23rFBHKMvT71HNuFYbmp-12" value="Restart on&lt;br&gt;digest change" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="23rFBHKMvT71HNuFYbmp-11" vertex="1" connectable="0">
179 |           <mxGeometry x="-0.302" relative="1" as="geometry">
180 |             <mxPoint x="8" y="1" as="offset" />
181 |           </mxGeometry>
182 |         </mxCell>
183 |         <mxCell id="23rFBHKMvT71HNuFYbmp-13" value="Urunner" style="ellipse;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;" parent="1" vertex="1">
184 |           <mxGeometry x="1430" y="481.5" width="120" height="80" as="geometry" />
185 |         </mxCell>
186 |         <mxCell id="23rFBHKMvT71HNuFYbmp-14" value="" style="html=1;verticalLabelPosition=bottom;align=center;labelBackgroundColor=#ffffff;verticalAlign=top;strokeWidth=2;strokeColor=#0080F0;shadow=0;dashed=0;shape=mxgraph.ios7.icons.clock;" parent="1" vertex="1">
187 |           <mxGeometry x="1430" y="511.5" width="20" height="20" as="geometry" />
188 |         </mxCell>
189 |         <mxCell id="23rFBHKMvT71HNuFYbmp-15" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=none;endFill=0;startArrow=classic;startFill=1;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" parent="1" source="23rFBHKMvT71HNuFYbmp-17" edge="1">
190 |           <mxGeometry relative="1" as="geometry">
191 |             <Array as="points">
192 |               <mxPoint x="1730" y="392.5" />
193 |               <mxPoint x="1219" y="392.5" />
194 |             </Array>
195 |             <mxPoint x="1219" y="430" as="targetPoint" />
196 |           </mxGeometry>
197 |         </mxCell>
198 |         <mxCell id="23rFBHKMvT71HNuFYbmp-16" value="Pull" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" parent="23rFBHKMvT71HNuFYbmp-15" vertex="1" connectable="0">
199 |           <mxGeometry x="-0.7512" relative="1" as="geometry">
200 |             <mxPoint as="offset" />
201 |           </mxGeometry>
202 |         </mxCell>
203 |         <mxCell id="23rFBHKMvT71HNuFYbmp-17" value="Pods" style="ellipse;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;" parent="1" vertex="1">
204 |           <mxGeometry x="1670" y="480.5" width="120" height="80" as="geometry" />
205 |         </mxCell>
206 |         <mxCell id="23rFBHKMvT71HNuFYbmp-18" value="" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://upload.wikimedia.org/wikipedia/commons/thumb/3/38/SQLite370.svg/2560px-SQLite370.svg.png;" parent="1" vertex="1">
207 |           <mxGeometry x="1457.3" y="528.5" width="63.41" height="30" as="geometry" />
208 |         </mxCell>
209 |         <mxCell id="23rFBHKMvT71HNuFYbmp-19" value="Kubernetes" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://upload.wikimedia.org/wikipedia/commons/0/00/Kubernetes_%28container_engine%29.png;" parent="1" vertex="1">
210 |           <mxGeometry x="1840" y="450" width="46.34" height="45" as="geometry" />
211 |         </mxCell>
212 |         <mxCell id="KrMKus8RkKXgKPneI6wB-3" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="KrMKus8RkKXgKPneI6wB-5">
213 |           <mxGeometry relative="1" as="geometry">
214 |             <mxPoint x="1170" y="842.5" as="targetPoint" />
215 |           </mxGeometry>
216 |         </mxCell>
217 |         <mxCell id="KrMKus8RkKXgKPneI6wB-4" value="push image:latest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" vertex="1" connectable="0" parent="KrMKus8RkKXgKPneI6wB-3">
218 |           <mxGeometry x="-0.2571" y="-2" relative="1" as="geometry">
219 |             <mxPoint x="8" y="-2" as="offset" />
220 |           </mxGeometry>
221 |         </mxCell>
222 |         <mxCell id="KrMKus8RkKXgKPneI6wB-5" value="" style="sketch=0;pointerEvents=1;shadow=0;dashed=0;html=1;strokeColor=none;fillColor=#505050;labelPosition=center;verticalLabelPosition=bottom;verticalAlign=top;outlineConnect=0;align=center;shape=mxgraph.office.concepts.settings_office_365;" vertex="1" parent="1">
223 |           <mxGeometry x="940" y="802.5" width="90" height="80" as="geometry" />
224 |         </mxCell>
225 |         <mxCell id="KrMKus8RkKXgKPneI6wB-6" value="" style="rounded=1;whiteSpace=wrap;html=1;fillColor=#dae8fc;strokeColor=#6c8ebf;" vertex="1" parent="1">
226 |           <mxGeometry x="1410" y="760" width="490" height="185" as="geometry" />
227 |         </mxCell>
228 |         <mxCell id="KrMKus8RkKXgKPneI6wB-7" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;entryX=1;entryY=0.5;entryDx=0;entryDy=0;entryPerimeter=0;startArrow=classic;startFill=1;endArrow=none;endFill=0;" edge="1" parent="1" source="KrMKus8RkKXgKPneI6wB-11">
229 |           <mxGeometry relative="1" as="geometry">
230 |             <mxPoint x="1258" y="839" as="targetPoint" />
231 |           </mxGeometry>
232 |         </mxCell>
233 |         <mxCell id="KrMKus8RkKXgKPneI6wB-8" value="Check image:latest&lt;br&gt;digest" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" vertex="1" connectable="0" parent="KrMKus8RkKXgKPneI6wB-7">
234 |           <mxGeometry x="0.2092" y="-3" relative="1" as="geometry">
235 |             <mxPoint y="3" as="offset" />
236 |           </mxGeometry>
237 |         </mxCell>
238 |         <mxCell id="KrMKus8RkKXgKPneI6wB-9" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;" edge="1" parent="1" source="KrMKus8RkKXgKPneI6wB-11" target="KrMKus8RkKXgKPneI6wB-15">
239 |           <mxGeometry relative="1" as="geometry" />
240 |         </mxCell>
241 |         <mxCell id="KrMKus8RkKXgKPneI6wB-10" value="Restart on&lt;br&gt;digest change" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" vertex="1" connectable="0" parent="KrMKus8RkKXgKPneI6wB-9">
242 |           <mxGeometry x="-0.302" relative="1" as="geometry">
243 |             <mxPoint x="8" y="1" as="offset" />
244 |           </mxGeometry>
245 |         </mxCell>
246 |         <mxCell id="KrMKus8RkKXgKPneI6wB-11" value="Urunner" style="ellipse;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;" vertex="1" parent="1">
247 |           <mxGeometry x="1430" y="799" width="120" height="80" as="geometry" />
248 |         </mxCell>
249 |         <mxCell id="KrMKus8RkKXgKPneI6wB-12" value="" style="html=1;verticalLabelPosition=bottom;align=center;labelBackgroundColor=#ffffff;verticalAlign=top;strokeWidth=2;strokeColor=#0080F0;shadow=0;dashed=0;shape=mxgraph.ios7.icons.clock;" vertex="1" parent="1">
250 |           <mxGeometry x="1430" y="829" width="20" height="20" as="geometry" />
251 |         </mxCell>
252 |         <mxCell id="KrMKus8RkKXgKPneI6wB-13" style="edgeStyle=orthogonalEdgeStyle;rounded=0;orthogonalLoop=1;jettySize=auto;html=1;endArrow=none;endFill=0;startArrow=classic;startFill=1;exitX=0.5;exitY=0;exitDx=0;exitDy=0;" edge="1" parent="1" source="KrMKus8RkKXgKPneI6wB-15">
253 |           <mxGeometry relative="1" as="geometry">
254 |             <Array as="points">
255 |               <mxPoint x="1730" y="710" />
256 |               <mxPoint x="1219" y="710" />
257 |             </Array>
258 |             <mxPoint x="1219" y="747.5" as="targetPoint" />
259 |           </mxGeometry>
260 |         </mxCell>
261 |         <mxCell id="KrMKus8RkKXgKPneI6wB-14" value="Pull" style="edgeLabel;html=1;align=center;verticalAlign=middle;resizable=0;points=[];" vertex="1" connectable="0" parent="KrMKus8RkKXgKPneI6wB-13">
262 |           <mxGeometry x="-0.7512" relative="1" as="geometry">
263 |             <mxPoint as="offset" />
264 |           </mxGeometry>
265 |         </mxCell>
266 |         <mxCell id="KrMKus8RkKXgKPneI6wB-15" value="Pods" style="ellipse;whiteSpace=wrap;html=1;fillColor=#d5e8d4;strokeColor=#82b366;" vertex="1" parent="1">
267 |           <mxGeometry x="1670" y="798" width="120" height="80" as="geometry" />
268 |         </mxCell>
269 |         <mxCell id="KrMKus8RkKXgKPneI6wB-16" value="" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://upload.wikimedia.org/wikipedia/commons/thumb/3/38/SQLite370.svg/2560px-SQLite370.svg.png;" vertex="1" parent="1">
270 |           <mxGeometry x="1457.3" y="846" width="63.41" height="30" as="geometry" />
271 |         </mxCell>
272 |         <mxCell id="KrMKus8RkKXgKPneI6wB-17" value="Kubernetes" style="shape=image;verticalLabelPosition=bottom;labelBackgroundColor=default;verticalAlign=top;aspect=fixed;imageAspect=0;image=https://upload.wikimedia.org/wikipedia/commons/0/00/Kubernetes_%28container_engine%29.png;" vertex="1" parent="1">
273 |           <mxGeometry x="1840" y="767.5" width="46.34" height="45" as="geometry" />
274 |         </mxCell>
275 |       </root>
276 |     </mxGraphModel>
277 |   </diagram>
278 | </mxfile>
279 | 


--------------------------------------------------------------------------------
/asset/urunner.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/asset/urunner.png


--------------------------------------------------------------------------------
/helm/urunner/.helmignore:
--------------------------------------------------------------------------------
 1 | # Patterns to ignore when building packages.
 2 | # This supports shell glob matching, relative path matching, and
 3 | # negation (prefixed with !). Only one pattern per line.
 4 | .DS_Store
 5 | # Common VCS dirs
 6 | .git/
 7 | .gitignore
 8 | .bzr/
 9 | .bzrignore
10 | .hg/
11 | .hgignore
12 | .svn/
13 | # Common backup files
14 | *.swp
15 | *.bak
16 | *.tmp
17 | *.orig
18 | *~
19 | # Various IDEs
20 | .project
21 | .idea/
22 | *.tmproj
23 | .vscode/
24 | 


--------------------------------------------------------------------------------
/helm/urunner/Chart.yaml:
--------------------------------------------------------------------------------
 1 | apiVersion: v2
 2 | name: urunner
 3 | description: URunner is a lightweight Kubernetes utility in order to auto restart pods on image tag digest change while the tag remains the same (ex. `:latest`). It uses official Docker API v2.
 4 | 
 5 | # A chart can be either an 'application' or a 'library' chart.
 6 | #
 7 | # Application charts are a collection of templates that can be packaged into versioned archives
 8 | # to be deployed.
 9 | #
10 | # Library charts provide useful utilities or functions for the chart developer. They're included as
11 | # a dependency of application charts to inject those utilities and functions into the rendering
12 | # pipeline. Library charts do not define any templates and therefore cannot be deployed.
13 | type: application
14 | 
15 | # This is the chart version. This version number should be incremented each time you make changes
16 | # to the chart and its templates, including the app version.
17 | # Versions are expected to follow Semantic Versioning (https://semver.org/)
18 | version: 0.7.0
19 | icon: https://raw.githubusercontent.com/texano00/urunner/main/asset/logo.png
20 | 
21 | # This is the version number of the application being deployed. This version number should be
22 | # incremented each time you make changes to the application. Versions are not expected to
23 | # follow Semantic Versioning. They should reflect the version the application is using.
24 | # It is recommended to use it with quotes.
25 | appVersion: "0.6.0"
26 | 


--------------------------------------------------------------------------------
/helm/urunner/README.md:
--------------------------------------------------------------------------------
 1 | # Urunner Helm chart
 2 | 
 3 | URunner is a lightweight **Kubernetes** utility in order to **auto restart** pods on image **tag digest change**.\
 4 | This is very useful on environments where it is commonly used the `latest` tag which frequently changes over time.\
 5 | Urunner auto detects the container image tag digest (for example the digest of tag `latest`) and automatically restart pods.
 6 | 
 7 | ## TL;DR
 8 | 
 9 | ```console
10 | helm upgrade --install urunner oci://ghcr.io/texano00/urunner/helm/urunner --version 0.1.0 --values my-values.yaml -n urunner --create-namespace
11 | ```
12 | 
13 | ## Docker API V2
14 | 
15 | Urunner integrates external container registry (ex. [Harbor](https://goharbor.io/)) using standard [Docker API V2](https://docs.docker.com/registry/spec/api/).\
16 | Actually **Harbor** and **AWS ECR** are the container registries officially supported.\
17 | **Azure ACR** and **Dockerhub** support will be released soon.
18 | 
19 | ## Configurable watcher
20 | 
21 | Urunner is also **fully configurable** in order to **watch only specific namespaces** with specific label to manage exception.\
22 | Add label `urunner=enable` to all namespaces in order to be watched by Urunner.\
23 | `kubectl label ns mynamespace urunner=enable`
24 | 
25 | ```
26 | apiVersion: v1
27 | kind: Namespace
28 | metadata:
29 |   labels:
30 |     # add this label
31 |     urunner: enable
32 |   name: mynamespace
33 | ```
34 | 
35 | Also, you can add exceptions inside `mynamespace`, for example\
36 | `kubectl label deployment mydeployment urunner=disable -n mynamespace`
37 | 
38 | ```
39 | apiVersion: apps/v1
40 | kind: Deployment
41 | metadata:
42 |   labels:
43 |     # add this label
44 |     urunner: disable
45 | ...
46 | ```
47 | 
48 | Doing so, all deployments except `mydeployment` will be watched by Urunner.
49 | 


--------------------------------------------------------------------------------
/helm/urunner/index.yaml:
--------------------------------------------------------------------------------
1 | apiVersion: v1
2 | entries: {}
3 | generated: "2023-03-05T20:08:15.61211142+01:00"
4 | 


--------------------------------------------------------------------------------
/helm/urunner/templates/NOTES.txt:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/texano00/urunner/6962449ce06b5fd4f332523a4ec2eef23d872d87/helm/urunner/templates/NOTES.txt


--------------------------------------------------------------------------------
/helm/urunner/templates/_helpers.tpl:
--------------------------------------------------------------------------------
 1 | {{/*
 2 | Expand the name of the chart.
 3 | */}}
 4 | {{- define "urunner.name" -}}
 5 | {{- default .Chart.Name .Values.nameOverride | trunc 63 | trimSuffix "-" }}
 6 | {{- end }}
 7 | 
 8 | {{/*
 9 | Create a default fully qualified app name.
10 | We truncate at 63 chars because some Kubernetes name fields are limited to this (by the DNS naming spec).
11 | If release name contains chart name it will be used as a full name.
12 | */}}
13 | {{- define "urunner.fullname" -}}
14 | {{- if .Values.fullnameOverride }}
15 | {{- .Values.fullnameOverride | trunc 63 | trimSuffix "-" }}
16 | {{- else }}
17 | {{- $name := default .Chart.Name .Values.nameOverride }}
18 | {{- if contains $name .Release.Name }}
19 | {{- .Release.Name | trunc 63 | trimSuffix "-" }}
20 | {{- else }}
21 | {{- printf "%s-%s" .Release.Name $name | trunc 63 | trimSuffix "-" }}
22 | {{- end }}
23 | {{- end }}
24 | {{- end }}
25 | 
26 | {{/*
27 | Create chart name and version as used by the chart label.
28 | */}}
29 | {{- define "urunner.chart" -}}
30 | {{- printf "%s-%s" .Chart.Name .Chart.Version | replace "+" "_" | trunc 63 | trimSuffix "-" }}
31 | {{- end }}
32 | 
33 | {{/*
34 | Common labels
35 | */}}
36 | {{- define "urunner.labels" -}}
37 | helm.sh/chart: {{ include "urunner.chart" . }}
38 | {{ include "urunner.selectorLabels" . }}
39 | {{- if .Chart.AppVersion }}
40 | app.kubernetes.io/version: {{ .Chart.AppVersion | quote }}
41 | {{- end }}
42 | app.kubernetes.io/managed-by: {{ .Release.Service }}
43 | {{- end }}
44 | 
45 | {{/*
46 | Selector labels
47 | */}}
48 | {{- define "urunner.selectorLabels" -}}
49 | app.kubernetes.io/name: {{ include "urunner.name" . }}
50 | app.kubernetes.io/instance: {{ .Release.Name }}
51 | {{- end }}
52 | 
53 | {{/*
54 | Create the name of the service account to use
55 | */}}
56 | {{- define "urunner.serviceAccountName" -}}
57 | {{- if .Values.serviceAccount.create }}
58 | {{- default (include "urunner.fullname" .) .Values.serviceAccount.name }}
59 | {{- else }}
60 | {{- default "default" .Values.serviceAccount.name }}
61 | {{- end }}
62 | {{- end }}
63 | 
64 | {{/*
65 | Create the name of the cluster role to use
66 | */}}
67 | {{- define "urunner.clusterRoleName" -}}
68 | {{- if .Values.serviceAccount.create }}
69 | {{- default (include "urunner.fullname" .) .Values.serviceAccount.name }}
70 | {{- else }}
71 | {{- default "default" .Values.serviceAccount.name }}
72 | {{- end }}
73 | {{- end }}
74 | 


--------------------------------------------------------------------------------
/helm/urunner/templates/configmap.yaml:
--------------------------------------------------------------------------------
 1 | apiVersion: v1
 2 | kind: ConfigMap
 3 | metadata:
 4 |   name: {{ .Values.config.configMapName | quote }}
 5 |   labels:
 6 |     {{- include "urunner.labels" . | nindent 4 }}
 7 |   namespace: {{ .Release.Namespace | quote }}
 8 | data:
 9 |   URUNNER_CONF_DOCKER_API_VERIFY: {{ .Values.config.URUNNER_CONF_DOCKER_API_VERIFY | quote }}
10 |   URUNNER_CONF_LOG_LEVEL: {{ .Values.config.URUNNER_CONF_LOG_LEVEL }}
11 |   URUNNER_CONF_KUBE_AUTH: {{ .Values.config.URUNNER_CONF_KUBE_AUTH }}
12 |   URUNNER_CONF_SQLLIGHT_PATH: {{ .Values.config.URUNNER_CONF_SQLLIGHT_PATH }}
13 |   URUNNER_CONF_FREQUENCY_CHECK_SECONDS: {{ .Values.config.URUNNER_CONF_FREQUENCY_CHECK_SECONDS | quote }}
14 |   URUNNER_CONF_CONTAINER_REGISTRY_TO_WATCH: {{ .Values.config.URUNNER_CONF_CONTAINER_REGISTRY_TO_WATCH }}
15 |   URUNNER_CONF_CONTAINER_REGISTRY_TYPE: {{ .Values.config.URUNNER_CONF_CONTAINER_REGISTRY_TYPE }}
16 |   DOCKER_API_ACCEPT_HEADER: {{ .Values.config.DOCKER_API_ACCEPT_HEADER }}


--------------------------------------------------------------------------------
/helm/urunner/templates/deployment.yaml:
--------------------------------------------------------------------------------
 1 | apiVersion: apps/v1
 2 | kind: Deployment
 3 | metadata:
 4 |   name: {{ include "urunner.fullname" . }}
 5 |   labels:
 6 |     {{- include "urunner.labels" . | nindent 4 }}
 7 |   namespace: {{ .Release.Namespace | quote }}
 8 | spec:
 9 |   selector:
10 |     matchLabels:
11 |       {{- include "urunner.selectorLabels" . | nindent 6 }}
12 |   template:
13 |     metadata:
14 |       annotations:
15 |         checksum/config: {{ include (print $.Template.BasePath "/configmap.yaml") . | sha256sum }}
16 |       labels:
17 |         {{- include "urunner.selectorLabels" . | nindent 8 }}
18 |     spec:
19 |       {{- with .Values.imagePullSecrets }}
20 |       imagePullSecrets:
21 |         {{- toYaml . | nindent 8 }}
22 |       {{- end }}
23 |       serviceAccountName: {{ include "urunner.serviceAccountName" . }}
24 |       securityContext:
25 |         {{- toYaml .Values.podSecurityContext | nindent 8 }}
26 |       containers:
27 |         - name: {{ .Chart.Name }}
28 |           envFrom:
29 |           - configMapRef:
30 |               name: cm-urunner
31 |           - secretRef:
32 |               name: secret-urunner
33 |           securityContext:
34 |             {{- toYaml .Values.securityContext | nindent 12 }}
35 |           image: "{{ .Values.image.repository }}:{{ .Values.image.tag | default .Chart.AppVersion }}"
36 |           imagePullPolicy: {{ .Values.image.pullPolicy }}
37 |           # livenessProbe:
38 |           #   httpGet:
39 |           #     path: /
40 |           #     port: http
41 |           # readinessProbe:
42 |           #   httpGet:
43 |           #     path: /
44 |           #     port: http
45 |           resources:
46 |             {{- toYaml .Values.resources | nindent 12 }}
47 |       {{- with .Values.nodeSelector }}
48 |       nodeSelector:
49 |         {{- toYaml . | nindent 8 }}
50 |       {{- end }}
51 |       {{- with .Values.affinity }}
52 |       affinity:
53 |         {{- toYaml . | nindent 8 }}
54 |       {{- end }}
55 |       {{- with .Values.tolerations }}
56 |       tolerations:
57 |         {{- toYaml . | nindent 8 }}
58 |       {{- end }}
59 | 


--------------------------------------------------------------------------------
/helm/urunner/templates/secret.yaml:
--------------------------------------------------------------------------------
 1 | {{- if .Values.secret.create }}
 2 | apiVersion: v1
 3 | kind: Secret
 4 | metadata:
 5 |   name: {{ .Values.secret.secretName | quote }}
 6 |   namespace: {{ .Release.Namespace | quote }}
 7 | type: Opaque
 8 | stringData:
 9 |   {{- if .Values.secret.harbor.username }}
10 |   URUNNER_SECR_HARBOR_USER: {{ .Values.secret.harbor.username | quote }}
11 |   URUNNER_SECR_HARBOR_PASS: {{ .Values.secret.harbor.password | quote }}
12 |   {{- end }}
13 |   {{- if .Values.secret.aws.access_key_id }}
14 |   URUNNER_SECR_AWS_ACCESS_KEY_ID: {{ .Values.secret.aws.access_key_id | quote }}
15 |   URUNNER_SECR_AWS_SECRET_ACCESS_KEY: {{ .Values.secret.aws.secret_access_key | quote }}
16 |   {{- end }}
17 |   {{- if .Values.secret.aws.region }}
18 |   URUNNER_SECR_AWS_REGION: {{ .Values.secret.aws.region | quote }}
19 |   {{- end }}
20 |   {{- if .Values.secret.digitalocean.token }}
21 |   URUNNER_SECR_DIGITAL_OCEAN_TOKEN: {{ .Values.secret.digitalocean.token | quote }}
22 |   {{- end }}
23 |   {{- if .Values.secret.gitlab.token }}
24 |   URUNNER_SECR_GITLAB_TOKEN: {{ .Values.secret.gitlab.token | quote }}
25 |   {{- end }}
26 |   {{- if .Values.secret.gitlab.url }}
27 |   URUNNER_SECR_GITLAB_AUTH_URL: {{ .Values.secret.gitlab.auth_url | quote }}
28 |   {{- end }}
29 | {{- end }}
30 | 
31 | 
32 | 


--------------------------------------------------------------------------------
/helm/urunner/templates/serviceaccount.yaml:
--------------------------------------------------------------------------------
 1 | {{- if .Values.serviceAccount.create -}}
 2 | apiVersion: v1
 3 | kind: ServiceAccount
 4 | metadata:
 5 |   name: {{ include "urunner.serviceAccountName" . }}
 6 |   namespace: {{ .Release.Namespace | quote }}
 7 | ---
 8 | apiVersion: rbac.authorization.k8s.io/v1
 9 | kind: ClusterRoleBinding
10 | metadata:
11 |   name: {{ include "urunner.serviceAccountName" . }}
12 |   namespace: {{ .Release.Namespace | quote }}
13 |   labels:
14 |     {{- include "urunner.labels" . | nindent 4 }}
15 |   {{- with .Values.serviceAccount.annotations }}
16 |   annotations:
17 |     {{- toYaml . | nindent 4 }}
18 |   {{- end }}
19 | subjects:
20 | - kind: ServiceAccount
21 |   name: {{ include "urunner.serviceAccountName" . }}
22 |   namespace: {{ .Release.Namespace | quote }}
23 |   apiGroup: ""
24 | roleRef:
25 |   kind: ClusterRole
26 |   name: {{ include "urunner.clusterRoleName" . }}
27 |   apiGroup: ""
28 | ---
29 | kind: ClusterRole
30 | apiVersion: rbac.authorization.k8s.io/v1
31 | metadata:
32 |   name: {{ include "urunner.clusterRoleName" . }}
33 |   namespace: {{ .Release.Namespace | quote }}
34 | rules:
35 | - apiGroups: ["*"]
36 |   resources: ["*"]
37 |   verbs: ["*"]
38 | {{- end }}
39 | 


--------------------------------------------------------------------------------
/helm/urunner/values.yaml:
--------------------------------------------------------------------------------
 1 | image:
 2 |   repository: ghcr.io/texano00/urunner
 3 |   pullPolicy: IfNotPresent
 4 | 
 5 | config:
 6 |   configMapName: "cm-urunner"
 7 |   # se to false in order to disallow ssl verify to container registry
 8 |   URUNNER_CONF_DOCKER_API_VERIFY: true
 9 |   # Text logging level for the message ('DEBUG', 'INFO', 'WARNING', 'ERROR', 'CRITICAL').
10 |   URUNNER_CONF_LOG_LEVEL: INFO
11 |   # incluster, kubeconfig allowed
12 |   URUNNER_CONF_KUBE_AUTH: incluster
13 |   # path on which urunner store its sqllight database
14 |   URUNNER_CONF_SQLLIGHT_PATH: /app/urunner.db
15 |   # urunner check frequency
16 |   URUNNER_CONF_FREQUENCY_CHECK_SECONDS: 20
17 |   # container registry url
18 |   URUNNER_CONF_CONTAINER_REGISTRY_TO_WATCH: 435734619587.dkr.ecr.us-east-2.amazonaws.com
19 |   # harbor, aws_ecr, digitalocean, gitlab
20 |   URUNNER_CONF_CONTAINER_REGISTRY_TYPE: aws_ecr
21 |   # docker api accept header
22 |   DOCKER_API_ACCEPT_HEADER: 'application/vnd.docker.distribution.manifest.v2+json, application/vnd.oci.image.manifest.v1+json'
23 | secret:
24 |   create: true
25 |   # for expected keys see secret.yaml
26 |   secretName: "secret-urunner"
27 |   harbor:
28 |     username: 
29 |     password:
30 |   aws:
31 |     access_key_id:
32 |     secret_access_key:
33 |   digitalocean:
34 |     token:
35 |   gitlab:
36 |     token:
37 |     auth_url:
38 | 
39 | imagePullSecrets: []
40 | nameOverride: ""
41 | fullnameOverride: ""
42 | 
43 | serviceAccount:
44 |   # Specifies whether a service account should be created
45 |   create: true
46 |   # Annotations to add to the service account
47 |   annotations: {}
48 |   # The name of the service account to use.
49 |   # If not set and create is true, a name is generated using the fullname template
50 |   name: ""
51 | 
52 | podSecurityContext: {}
53 |   # fsGroup: 2000
54 | 
55 | securityContext: {}
56 |   # capabilities:
57 |   #   drop:
58 |   #   - ALL
59 |   # readOnlyRootFilesystem: true
60 |   # runAsNonRoot: true
61 |   # runAsUser: 1000
62 | 
63 | resources: {}
64 |   # We usually recommend not to specify default resources and to leave this as a conscious
65 |   # choice for the user. This also increases chances charts run on environments with little
66 |   # resources, such as Minikube. If you do want to specify resources, uncomment the following
67 |   # lines, adjust them as necessary, and remove the curly braces after 'resources:'.
68 |   # limits:
69 |   #   cpu: 100m
70 |   #   memory: 128Mi
71 |   # requests:
72 |   #   cpu: 100m
73 |   #   memory: 128Mi
74 | 
75 | nodeSelector: {}
76 | 
77 | tolerations: []
78 | 
79 | affinity: {}
80 | 


--------------------------------------------------------------------------------