Gitiles
Code Review Sign In
osm.etsi.org / osm / devops / 141d935cdb913100f3abdfaf52a67d90dd6b5016 / . / installers / charm / mon / src / charm.py
blob: 272193964c3af6b38b0973532aac1e1bd999fae7 [file] [log] [blame]
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]1#!/usr/bin/env python3
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]2# Copyright 2021 Canonical Ltd.
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]3#
4# Licensed under the Apache License, Version 2.0 (the "License"); you may
5# not use this file except in compliance with the License. You may obtain
6# a copy of the License at
7#
8# http://www.apache.org/licenses/LICENSE-2.0
9#
10# Unless required by applicable law or agreed to in writing, software
11# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
12# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
13# License for the specific language governing permissions and limitations
14# under the License.
15#
16# For those usages not covered by the Apache License, Version 2.0 please
17# contact: legal@canonical.com
18#
19# To get in touch with the maintainers, please contact:
20# osm-charmers@lists.launchpad.net
21##
22
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]23# pylint: disable=E0213
24
25
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]26import base64
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]27import logging
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]28from typing import NoReturn, Optional
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]29
David Garciac753dc52021-03-17 15:28:47 +0100[diff] [blame]30
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]31from ops.main import main
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]32from opslib.osm.charm import CharmedOsmBase, RelationsMissing
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]33from opslib.osm.interfaces.kafka import KafkaClient
David Garciac753dc52021-03-17 15:28:47 +0100[diff] [blame]34from opslib.osm.interfaces.keystone import KeystoneClient
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]35from opslib.osm.interfaces.mongo import MongoClient
36from opslib.osm.interfaces.prometheus import PrometheusClient
David Garcia141d9352021-09-08 17:48:40 +0200[diff] [blame^]37from opslib.osm.pod import (
38 ContainerV3Builder,
39 FilesV3Builder,
40 PodRestartPolicy,
41 PodSpecV3Builder,
42)
David Garciac753dc52021-03-17 15:28:47 +0100[diff] [blame]43from opslib.osm.validator import ModelValidator, validator
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]44
45
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]46logger = logging.getLogger(__name__)
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]47
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]48PORT = 8000
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]49
50
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]51def _check_certificate_data(name: str, content: str):
52 if not name or not content:
53 raise ValueError("certificate name and content must be a non-empty string")
54
55
56def _extract_certificates(certs_config: str):
57 certificates = {}
58 if certs_config:
59 cert_list = certs_config.split(",")
60 for cert in cert_list:
61 name, content = cert.split(":")
62 _check_certificate_data(name, content)
63 certificates[name] = content
64 return certificates
65
66
67def decode(content: str):
68 return base64.b64decode(content.encode("utf-8")).decode("utf-8")
69
70
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]71class ConfigModel(ModelValidator):
calvinosanc1a43a22f2021-03-08 15:20:07 +0100[diff] [blame]72 keystone_enabled: bool
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]73 vca_host: str
74 vca_user: str
David Garciac753dc52021-03-17 15:28:47 +0100[diff] [blame]75 vca_secret: str
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]76 vca_cacert: str
77 database_commonkey: str
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]78 mongodb_uri: Optional[str]
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]79 log_level: str
80 openstack_default_granularity: int
81 global_request_timeout: int
82 collector_interval: int
83 evaluator_interval: int
84 grafana_url: str
85 grafana_user: str
86 grafana_password: str
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]87 certificates: Optional[str]
sousaedu0dc25b32021-08-30 16:33:33 +0100[diff] [blame]88 image_pull_policy: str
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]89
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]90 @validator("log_level")
91 def validate_log_level(cls, v):
92 if v not in {"INFO", "DEBUG"}:
93 raise ValueError("value must be INFO or DEBUG")
94 return v
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]95
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]96 @validator("certificates")
97 def validate_certificates(cls, v):
98 # Raises an exception if it cannot extract the certificates
99 _extract_certificates(v)
100 return v
101
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]102 @validator("mongodb_uri")
103 def validate_mongodb_uri(cls, v):
104 if v and not v.startswith("mongodb://"):
105 raise ValueError("mongodb_uri is not properly formed")
106 return v
107
sousaedu3ddbbd12021-08-24 19:57:24 +0100[diff] [blame]108 @validator("image_pull_policy")
109 def validate_image_pull_policy(cls, v):
110 values = {
111 "always": "Always",
112 "ifnotpresent": "IfNotPresent",
113 "never": "Never",
114 }
115 v = v.lower()
116 if v not in values.keys():
117 raise ValueError("value must be always, ifnotpresent or never")
118 return values[v]
119
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]120 @property
121 def certificates_dict(cls):
122 return _extract_certificates(cls.certificates) if cls.certificates else {}
123
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]124
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]125class MonCharm(CharmedOsmBase):
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]126 def __init__(self, *args) -> NoReturn:
David Garciad680be42021-08-17 11:03:55 +0200[diff] [blame]127 super().__init__(
128 *args,
129 oci_image="image",
130 debug_mode_config_key="debug_mode",
131 debug_pubkey_config_key="debug_pubkey",
132 vscode_workspace=VSCODE_WORKSPACE,
133 )
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]134
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]135 self.kafka_client = KafkaClient(self, "kafka")
136 self.framework.observe(self.on["kafka"].relation_changed, self.configure_pod)
137 self.framework.observe(self.on["kafka"].relation_broken, self.configure_pod)
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]138
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]139 self.mongodb_client = MongoClient(self, "mongodb")
140 self.framework.observe(self.on["mongodb"].relation_changed, self.configure_pod)
141 self.framework.observe(self.on["mongodb"].relation_broken, self.configure_pod)
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]142
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]143 self.prometheus_client = PrometheusClient(self, "prometheus")
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]144 self.framework.observe(
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]145 self.on["prometheus"].relation_changed, self.configure_pod
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]146 )
147 self.framework.observe(
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]148 self.on["prometheus"].relation_broken, self.configure_pod
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]149 )
150
calvinosanc1a43a22f2021-03-08 15:20:07 +0100[diff] [blame]151 self.keystone_client = KeystoneClient(self, "keystone")
152 self.framework.observe(self.on["keystone"].relation_changed, self.configure_pod)
153 self.framework.observe(self.on["keystone"].relation_broken, self.configure_pod)
154
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]155 def _check_missing_dependencies(self, config: ConfigModel):
156 missing_relations = []
157
158 if self.kafka_client.is_missing_data_in_unit():
159 missing_relations.append("kafka")
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]160 if not config.mongodb_uri and self.mongodb_client.is_missing_data_in_unit():
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]161 missing_relations.append("mongodb")
162 if self.prometheus_client.is_missing_data_in_app():
163 missing_relations.append("prometheus")
calvinosanc1a43a22f2021-03-08 15:20:07 +0100[diff] [blame]164 if config.keystone_enabled:
165 if self.keystone_client.is_missing_data_in_app():
166 missing_relations.append("keystone")
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]167
168 if missing_relations:
169 raise RelationsMissing(missing_relations)
170
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]171 def _build_cert_files(
172 self,
173 config: ConfigModel,
174 ):
175 cert_files_builder = FilesV3Builder()
176 for name, content in config.certificates_dict.items():
177 cert_files_builder.add_file(name, decode(content), mode=0o600)
178 return cert_files_builder.build()
179
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]180 def build_pod_spec(self, image_info):
181 # Validate config
182 config = ConfigModel(**dict(self.config))
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]183
184 if config.mongodb_uri and not self.mongodb_client.is_missing_data_in_unit():
185 raise Exception("Mongodb data cannot be provided via config and relation")
186
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]187 # Check relations
188 self._check_missing_dependencies(config)
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]189
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]190 # Create Builder for the PodSpec
191 pod_spec_builder = PodSpecV3Builder()
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]192
David Garcia141d9352021-09-08 17:48:40 +0200[diff] [blame^]193 # Add secrets to the pod
194 mongodb_secret_name = f"{self.app.name}-mongodb-secret"
195 pod_spec_builder.add_secret(
196 mongodb_secret_name,
197 {
198 "uri": config.mongodb_uri or self.mongodb_client.connection_string,
199 "commonkey": config.database_commonkey,
200 },
201 )
202 grafana_secret_name = f"{self.app.name}-grafana-secret"
203 pod_spec_builder.add_secret(
204 grafana_secret_name,
205 {
206 "url": config.grafana_url,
207 "user": config.grafana_user,
208 "password": config.grafana_password,
209 },
210 )
211
212 vca_secret_name = f"{self.app.name}-vca-secret"
213 pod_spec_builder.add_secret(
214 vca_secret_name,
215 {
216 "host": config.vca_host,
217 "user": config.vca_user,
218 "secret": config.vca_secret,
219 "cacert": config.vca_cacert,
220 },
221 )
222
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]223 # Build Container
sousaedu3ddbbd12021-08-24 19:57:24 +0100[diff] [blame]224 container_builder = ContainerV3Builder(
225 self.app.name, image_info, config.image_pull_policy
226 )
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]227 certs_files = self._build_cert_files(config)
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]228
David Garcia5d1ec6e2021-03-25 15:04:52 +0100[diff] [blame]229 if certs_files:
230 container_builder.add_volume_config("certs", "/certs", certs_files)
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]231
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]232 container_builder.add_port(name=self.app.name, port=PORT)
233 container_builder.add_envs(
234 {
235 # General configuration
236 "ALLOW_ANONYMOUS_LOGIN": "yes",
237 "OSMMON_OPENSTACK_DEFAULT_GRANULARITY": config.openstack_default_granularity,
238 "OSMMON_GLOBAL_REQUEST_TIMEOUT": config.global_request_timeout,
239 "OSMMON_GLOBAL_LOGLEVEL": config.log_level,
240 "OSMMON_COLLECTOR_INTERVAL": config.collector_interval,
241 "OSMMON_EVALUATOR_INTERVAL": config.evaluator_interval,
242 # Kafka configuration
243 "OSMMON_MESSAGE_DRIVER": "kafka",
244 "OSMMON_MESSAGE_HOST": self.kafka_client.host,
245 "OSMMON_MESSAGE_PORT": self.kafka_client.port,
246 # Database configuration
247 "OSMMON_DATABASE_DRIVER": "mongo",
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]248 # Prometheus configuration
249 "OSMMON_PROMETHEUS_URL": f"http://{self.prometheus_client.hostname}:{self.prometheus_client.port}",
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]250 }
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]251 )
David Garcia141d9352021-09-08 17:48:40 +0200[diff] [blame^]252 container_builder.add_secret_envs(
253 secret_name=mongodb_secret_name,
254 envs={
255 "OSMMON_DATABASE_URI": "uri",
256 "OSMMON_DATABASE_COMMONKEY": "commonkey",
257 },
258 )
259 container_builder.add_secret_envs(
260 secret_name=vca_secret_name,
261 envs={
262 "OSMMON_VCA_HOST": "host",
263 "OSMMON_VCA_USER": "user",
264 "OSMMON_VCA_SECRET": "secret",
265 "OSMMON_VCA_CACERT": "cacert",
266 },
267 )
268 container_builder.add_secret_envs(
269 secret_name=grafana_secret_name,
270 envs={
271 "OSMMON_GRAFANA_URL": "url",
272 "OSMMON_GRAFANA_USER": "user",
273 "OSMMON_GRAFANA_PASSWORD": "password",
274 },
275 )
calvinosanc1a43a22f2021-03-08 15:20:07 +0100[diff] [blame]276 if config.keystone_enabled:
David Garcia141d9352021-09-08 17:48:40 +0200[diff] [blame^]277 keystone_secret_name = f"{self.app.name}-keystone-secret"
278 pod_spec_builder.add_secret(
279 keystone_secret_name,
calvinosanc1a43a22f2021-03-08 15:20:07 +0100[diff] [blame]280 {
David Garcia141d9352021-09-08 17:48:40 +0200[diff] [blame^]281 "url": self.keystone_client.host,
282 "user_domain": self.keystone_client.user_domain_name,
283 "project_domain": self.keystone_client.project_domain_name,
284 "service_username": self.keystone_client.username,
285 "service_password": self.keystone_client.password,
286 "service_project": self.keystone_client.service,
287 },
288 )
289 container_builder.add_env("OSMMON_KEYSTONE_ENABLED", True)
290 container_builder.add_secret_envs(
291 secret_name=keystone_secret_name,
292 envs={
293 "OSMMON_KEYSTONE_URL": "url",
294 "OSMMON_KEYSTONE_DOMAIN_NAME": "user_domain",
295 "OSMMON_KEYSTONE_PROJECT_DOMAIN_NAME": "project_domain",
296 "OSMMON_KEYSTONE_SERVICE_USER": "service_username",
297 "OSMMON_KEYSTONE_SERVICE_PASSWORD": "service_password",
298 "OSMMON_KEYSTONE_SERVICE_PROJECT": "service_project",
299 },
calvinosanc1a43a22f2021-03-08 15:20:07 +0100[diff] [blame]300 )
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]301 container = container_builder.build()
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]302
David Garcia141d9352021-09-08 17:48:40 +0200[diff] [blame^]303 # Add restart policy
304 restart_policy = PodRestartPolicy()
305 restart_policy.add_secrets()
306 pod_spec_builder.set_restart_policy(restart_policy)
307
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]308 # Add container to pod spec
309 pod_spec_builder.add_container(container)
sousaedu996a5602021-05-03 00:22:43 +0200[diff] [blame]310
David Garcia49379ce2021-02-24 13:48:22 +0100[diff] [blame]311 return pod_spec_builder.build()
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]312
313
David Garciad680be42021-08-17 11:03:55 +0200[diff] [blame]314VSCODE_WORKSPACE = {
315 "folders": [
316 {"path": "/usr/lib/python3/dist-packages/osm_mon"},
317 {"path": "/usr/lib/python3/dist-packages/osm_common"},
318 {"path": "/usr/lib/python3/dist-packages/n2vc"},
319 ],
320 "settings": {},
321 "launch": {
322 "version": "0.2.0",
323 "configurations": [
324 {
325 "name": "MON Server",
326 "type": "python",
327 "request": "launch",
328 "module": "osm_mon.cmd.mon_server",
329 "justMyCode": False,
330 },
331 {
332 "name": "MON evaluator",
333 "type": "python",
334 "request": "launch",
335 "module": "osm_mon.cmd.mon_evaluator",
336 "justMyCode": False,
337 },
338 {
339 "name": "MON collector",
340 "type": "python",
341 "request": "launch",
342 "module": "osm_mon.cmd.mon_collector",
343 "justMyCode": False,
344 },
345 {
346 "name": "MON dashboarder",
347 "type": "python",
348 "request": "launch",
349 "module": "osm_mon.cmd.mon_dashboarder",
350 "justMyCode": False,
351 },
352 ],
353 },
354}
sousaedu1dd4c0d2020-11-04 17:43:47 +0000[diff] [blame]355if __name__ == "__main__":
356 main(MonCharm)