Remove magic global passing of azure and aws storage urls

Cody Maloney · Cody Maloney · commit 9be6dd388fb6 · 2016-12-06T12:53:20.000-08:00
Previously these were passed by globals when we were doing a release and as arguments when we did a advanced / custom configuration template generation. Now they are always passed as arguments which are injected by release/__init__.py in the case of release for the configuration, and via the normal argumen means otherwise.

The magic config global still exists so aws CF template validation can work, although that can definitely have the same pattern done to it in the future. It's more complicated to do however since it needs to ensure the AWS keys that are passed through don't end up inside the produced cluster
diff --git a/dcos_installer/backend.py b/dcos_installer/backend.py
@@ -127,13 +127,15 @@ def calculate_base_repository_url(
 
 
 # Figure out the s3 bucket url from region + bucket + path
-# TODO(cmaloney): Allow using a CDN rather than the raw S3 url, which will allow
-# us to use this same logic for both the internal / do_create version and the
-# user dcos_generate_config.sh option.
 def calculate_cloudformation_s3_url(bootstrap_url, config_id):
     return '{}/config_id/{}'.format(bootstrap_url, config_id)
 
 
+# Figure out the s3 bucket url from region + bucket + path
+def calculate_cloudformation_s3_url_full(cloudformation_s3_url):
+    return '{}/cloudformation'.format(cloudformation_s3_url)
+
+
 def calculate_aws_template_storage_region_name(
         aws_template_storage_access_key_id,
         aws_template_storage_secret_access_key,
@@ -183,8 +185,9 @@ def calculate_aws_template_storage_region_name(
     'must': {
         'provider': 'aws',
         'cloudformation_s3_url': calculate_cloudformation_s3_url,
+        'cloudformation_s3_url_full': calculate_cloudformation_s3_url_full,
         'bootstrap_url': calculate_base_repository_url,
-        'reproducible_artifact_path': calculate_reproducible_artifact_path
+        'reproducible_artifact_path': calculate_reproducible_artifact_path,
     },
     'conditional': {
         'aws_template_upload': {
@@ -208,6 +211,7 @@ def get_aws_advanced_target():
             'aws_template_upload',
             'aws_template_storage_bucket_path_autocreate',
             'cloudformation_s3_url',
+            'cloudformation_s3_url_full',
             'provider',
             'bootstrap_url',
             'bootstrap_variant',
@@ -269,7 +273,7 @@ def do_aws_cf_configure():
     gen_config['bootstrap_url'] = full_config['bootstrap_url']
     gen_config['provider'] = full_config['provider']
     gen_config['bootstrap_id'] = full_config['bootstrap_id']
-    gen_config['cloudformation_s3_url'] = full_config['cloudformation_s3_url']
+    gen_config['cloudformation_s3_url_full'] = full_config['cloudformation_s3_url_full']
 
     # Convert the bootstrap_Variant string we have back to a bootstrap_id as used internally by all
     # the tooling (never has empty string, uses None to say "no variant")
diff --git a/gen/__init__.py b/gen/__init__.py
@@ -448,7 +448,8 @@ def generate(
         arguments,
         extra_templates=list(),
         cc_package_files=list(),
-        extra_sources=list()):
+        extra_sources=list(),
+        extra_targets=list()):
     # To maintain the old API where we passed arguments rather than the new name.
     user_arguments = arguments
     arguments = None
@@ -457,7 +458,7 @@ def generate(
         user_arguments, extra_templates, extra_sources)
 
     # TODO(cmaloney): Make it so we only get out the dcosconfig target arguments not all the config target arguments.
-    resolver = gen.internals.resolve_configuration(sources, targets)
+    resolver = gen.internals.resolve_configuration(sources, targets + extra_targets)
     status = resolver.status_dict
 
     if status['status'] == 'errors':
diff --git a/gen/aws/templates/advanced/zen.json b/gen/aws/templates/advanced/zen.json
@@ -81,7 +81,7 @@
        "Infrastructure": {
            "Type": "AWS::CloudFormation::Stack",
            "Properties": {
-               "TemplateURL": "{{ cloudformation_full_s3_url }}/infra.json",
+               "TemplateURL": "{{ cloudformation_s3_url_full }}/infra.json",
                "TimeoutInMinutes": "60",
                "Parameters": {
                     "KeyName": {
@@ -109,7 +109,7 @@
            "DependsOn": ["Infrastructure"],
            "Type": "AWS::CloudFormation::Stack",
            "Properties": {
-               "TemplateURL": "{{ cloudformation_full_s3_url }}/{{ variant_prefix }}{{ os_type }}-advanced-master-{{ num_masters }}.json",
+               "TemplateURL": "{{ cloudformation_s3_url_full }}/{{ variant_prefix }}{{ os_type }}-advanced-master-{{ num_masters }}.json",
                "Parameters": {
                     "KeyName": {
                         "Ref": "KeyName"
@@ -160,7 +160,7 @@
            "DependsOn": ["Infrastructure", "MasterStack"],
            "Type": "AWS::CloudFormation::Stack",
            "Properties": {
-               "TemplateURL": "{{ cloudformation_full_s3_url }}/{{ variant_prefix }}{{ os_type }}-advanced-pub-agent.json",
+               "TemplateURL": "{{ cloudformation_s3_url_full }}/{{ variant_prefix }}{{ os_type }}-advanced-pub-agent.json",
                "Parameters": {
                     "KeyName": {
                         "Ref": "KeyName"
@@ -199,7 +199,7 @@
            "DependsOn": ["Infrastructure", "MasterStack"],
            "Type": "AWS::CloudFormation::Stack",
            "Properties": {
-               "TemplateURL": "{{ cloudformation_full_s3_url }}/{{ variant_prefix }}{{ os_type }}-advanced-priv-agent.json",
+               "TemplateURL": "{{ cloudformation_s3_url_full }}/{{ variant_prefix }}{{ os_type }}-advanced-priv-agent.json",
                "Parameters": {
                     "KeyName": {
                         "Ref": "KeyName"
diff --git a/gen/build_deploy/aws.py b/gen/build_deploy/aws.py
@@ -264,21 +264,6 @@ def gen_ami_mapping(mappings):
     return json.dumps(final, indent=4, sort_keys=True)
 
 
-def get_cloudformation_s3_url():
-    assert release._config is not None
-    # TODO(cmaloney): HACK. Stashing and pulling the config from release/__init__.py
-    # is definitely not the right way to do this.
-
-    if 'options' not in release._config:
-        raise RuntimeError("No options section in configuration")
-
-    if 'cloudformation_s3_url' not in release._config['options']:
-        raise RuntimeError("No options.cloudformation_s3_url section in configuration")
-
-    # TODO(cmaloney): get_session shouldn't live in release.storage
-    return release._config['options']['cloudformation_s3_url']
-
-
 def transform(line):
     m = AWS_REF_REGEX.search(line)
     # no splitting necessary
@@ -388,7 +373,9 @@ def make_advanced_bunch(variant_args, extra_sources, template_name, cc_params):
         arguments=variant_args,
         extra_templates=extra_templates,
         cc_package_files=cc_package_files,
-        extra_sources=extra_sources + [aws_base_source])
+        extra_sources=extra_sources + [aws_base_source],
+        # TODO(cmaloney): Merge this with dcos_installer/backend.py::get_aws_advanced_target()
+        extra_targets=[gen.internals.Target(variables={'cloudformation_s3_url_full'})])
 
     cloud_config = results.templates['cloud-config.yaml']
 
@@ -419,21 +406,7 @@ def make_advanced_bunch(variant_args, extra_sources, template_name, cc_params):
     return ResultTuple(cloudformation, results)
 
 
-def get_s3_url_prefix(arguments, reproducible_artifact_path) -> str:
-    assert reproducible_artifact_path, "reproducible_artifact_path must not be empty"
-    if 'cloudformation_s3_url' in arguments:
-        # Caller is `dcos_generate_config.sh --aws-cloudformation`
-        url = arguments['cloudformation_s3_url'] + '/cloudformation'
-        return url
-    else:
-        # Caller is release create
-        url = get_cloudformation_s3_url() + '/{}/cloudformation'.format(reproducible_artifact_path)
-        return url
-
-
 def gen_advanced_template(arguments, variant_prefix, reproducible_artifact_path, os_type):
-    cloudformation_full_s3_url = get_s3_url_prefix(arguments, reproducible_artifact_path)
-
     for node_type in ['master', 'priv-agent', 'pub-agent']:
         # TODO(cmaloney): This forcibly overwriting arguments might overwrite a user set argument
         # without noticing (such as exhibitor_storage_backend)
@@ -470,7 +443,6 @@ def _as_artifact(filename, gen_out):
                         resource_string("gen", "aws/templates/advanced/zen.json").decode(),
                         variant_prefix=variant_prefix,
                         reproducible_artifact_path=reproducible_artifact_path,
-                        cloudformation_full_s3_url=cloudformation_full_s3_url,
                         **bunch.results.arguments))
         else:
             local_source.add_must('num_masters', '1')
@@ -571,7 +543,7 @@ def get_button(template_name, s3_url):
         button_line = ""
         for variant, arguments in variant_arguments.items():
             variant_prefix = pkgpanda.util.variant_prefix(variant)
-            s3_url = get_s3_url_prefix(arguments, reproducible_artifact_path)
+            s3_url = arguments['cloudformation_s3_url_full']
             button_line += region_line_template.format(
                 region_name=region['name'],
                 region_id=region['id'],
diff --git a/gen/build_deploy/azure.py b/gen/build_deploy/azure.py
@@ -13,8 +13,6 @@
 import gen.build_deploy.util as util
 import gen.template
 import pkgpanda.build
-import release
-import release.storage
 from gen.internals import Source
 
 # TODO(cmaloney): Make it so the template only completes when services are properly up.
@@ -261,24 +259,29 @@ def do_create(tag, build_name, reproducible_artifact_path, commit, variant_argum
 
     yield {
         'channel_path': 'azure.html',
-        'local_content': gen_buttons(build_name, reproducible_artifact_path, tag, commit),
+        'local_content': gen_buttons(
+            build_name,
+            reproducible_artifact_path,
+            tag,
+            commit,
+            next(iter(variant_arguments.values()))['azure_download_url']),
         'content_type': 'text/html; charset=utf-8'
     }
 
 
-def gen_buttons(build_name, reproducible_artifact_path, tag, commit):
+def gen_buttons(build_name, reproducible_artifact_path, tag, commit, download_url):
     '''
     Generate the button page, that is, "Deploy a cluster to Azure" page
     '''
     dcos_urls = [
         encode_url_as_param(DOWNLOAD_URL_TEMPLATE.format(
-            download_url=get_download_url(),
+            download_url=download_url,
             reproducible_artifact_path=reproducible_artifact_path,
             arm_template_name='dcos-{}master.azuredeploy.json'.format(x)))
         for x in [1, 3, 5]]
     acs_urls = [
         encode_url_as_param(DOWNLOAD_URL_TEMPLATE.format(
-            download_url=get_download_url(),
+            download_url=download_url,
             reproducible_artifact_path=reproducible_artifact_path,
             arm_template_name='acs-{}master.azuredeploy.json'.format(x)))
         for x in [1, 3, 5]]
@@ -298,29 +301,3 @@ def encode_url_as_param(s):
     s = s.encode('utf8')
     s = urllib.parse.quote_plus(s)
     return s
-
-
-def get_download_url():
-    assert release._config is not None
-    # TODO: HACK. Stashing and pulling the config from release/__init__.py
-    # is definitely not the right way to do this.
-    # See also gen/build_deploy/aws.py#get_cloudformation_s3_url
-
-    if 'storage' not in release._config:
-        raise RuntimeError("No storage section in configuration")
-
-    if 'azure' not in release._config['storage']:
-        # No azure storage, inject a fake url for now so if people want to use
-        # the azure templates they know to come look here.
-        return "https://AZURE NOT CONFIGURED, ADD A storage.azure section to " \
-            "dcos-release.config.yaml to use the Azure templates"
-
-    if 'download_url' not in release._config['storage']['azure']:
-        raise RuntimeError("No download_url section in azure configuration")
-
-    download_url = release._config['storage']['azure']['download_url']
-
-    if not download_url.endswith('/'):
-        raise RuntimeError("Azure download_url must end with a '/'")
-
-    return download_url
diff --git a/release/__init__.py b/release/__init__.py
@@ -407,12 +407,24 @@ def make_channel_artifacts(metadata):
         # Add templates for the default variant.
         # Use keyword args to make not matching ordering a loud error around changes.
         with logger.scope("Creating {} deploy tools".format(module.__name__)):
+            # TODO(cmaloney): Cleanup by just having this make and pass another source.
+            module_specific_variant_arguments = copy.deepcopy(variant_arguments)
+            for arg_dict in module_specific_variant_arguments.values():
+                if module.__name__ == 'gen.build_deploy.aws':
+                    arg_dict['cloudformation_s3_url_full'] = metadata['cloudformation_s3_url_full']
+                elif module.__name__ == 'gen.build_deploy.azure':
+                    arg_dict['azure_download_url'] = metadata['azure_download_url']
+                elif module.__name__ == 'gen.build_deploy.bash':
+                    pass
+                else:
+                    raise NotImplementedError("Unknown how to add args to deploy tool: {}".format(module.__name__))
+
             for built_resource in module.do_create(
                     tag=metadata['tag'],
                     build_name=metadata['build_name'],
                     reproducible_artifact_path=metadata['reproducible_artifact_path'],
                     commit=metadata['commit'],
-                    variant_arguments=variant_arguments,
+                    variant_arguments=module_specific_variant_arguments,
                     all_bootstraps=metadata["all_bootstraps"]):
 
                 assert isinstance(built_resource, dict), built_resource
@@ -543,7 +555,32 @@ def do_build_packages(cache_repository_url):
     return result
 
 
-def set_repository_metadata(repository, metadata, storage_providers, preferred_provider):
+def get_azure_download_url(config) -> str:
+    # TODO: HACK. Stashing and pulling the config from release/__init__.py
+    # is definitely not the right way to do this.
+    # See also gen/build_deploy/aws.py#get_cloudformation_s3_url
+
+    if 'storage' not in config:
+        raise RuntimeError("No storage section in configuration")
+
+    if 'azure' not in config['storage']:
+        # No azure storage, inject a fake url for now so if people want to use
+        # the azure templates they know to come look here.
+        return "https://AZURE NOT CONFIGURED, ADD A storage.azure section to " \
+            "dcos-release.config.yaml to use the Azure templates"
+
+    if 'download_url' not in config['storage']['azure']:
+        raise RuntimeError("No download_url section in azure configuration")
+
+    download_url = config['storage']['azure']['download_url']
+
+    if not download_url.endswith('/'):
+        raise RuntimeError("Azure download_url must end with a '/'")
+
+    return download_url
+
+
+def set_repository_metadata(repository, metadata, storage_providers, preferred_provider, config) -> None:
     metadata['repository_path'] = repository.path_prefix[:-1]
     metadata['repository_url'] = preferred_provider.url + repository.path_prefix[:-1]
     metadata['build_name'] = repository.path_channel_prefix[:-1]
@@ -552,8 +589,17 @@ def set_repository_metadata(repository, metadata, storage_providers, preferred_p
     for name, store in storage_providers.items():
         metadata['storage_urls'][name] = store.url
 
-    # Explicitly returning none since we modify in place
-    return None
+    if 'options' not in config:
+        raise RuntimeError("No options section in configuration")
+
+    if 'cloudformation_s3_url' not in config['options']:
+        raise RuntimeError("No options.cloudformation_s3_url section in configuration")
+
+    # TODO(cmaloney): get_session shouldn't live in release.storage
+    metadata['cloudformation_s3_url_full'] = config['options']['cloudformation_s3_url'] + \
+        '/{}/cloudformation'.format(metadata['reproducible_artifact_path'])
+
+    metadata['azure_download_url'] = get_azure_download_url(config)
 
 
 def call_matching_arguments(function, arguments, allow_unused=False):
@@ -710,7 +756,8 @@ def promote(self, src_channel, destination_repository, destination_channel):
         self.fetch_key_artifacts(metadata)
 
         repository = Repository(destination_repository, destination_channel, 'commit/{}'.format(metadata['commit']))
-        set_repository_metadata(repository, metadata, self.__storage_providers, self.__preferred_provider)
+        set_repository_metadata(
+            repository, metadata, self.__storage_providers, self.__preferred_provider, self.__config)
         assert 'tag' in metadata
         del metadata['channel_artifacts']
 
@@ -757,7 +804,8 @@ def create(self, repository_path, channel, tag):
             assert bootstrap_active_packages <= set(info['packages'])
 
         repository = Repository(repository_path, channel, 'commit/{}'.format(metadata['commit']))
-        set_repository_metadata(repository, metadata, self.__storage_providers, self.__preferred_provider)
+        set_repository_metadata(
+            repository, metadata, self.__storage_providers, self.__preferred_provider, self.__config)
         metadata['tag'] = tag
         assert 'channel_artifacts' not in metadata
 
@@ -834,8 +882,8 @@ def main():
         sys.exit(1)
 
     try:
-        # TODO(cmaloney): HACK. This is so we can get to the config for aws
-        # inside gen/build_deploy/aws.py
+        # TODO(cmaloney): HACK. This is so we can get to the config for aws and azure template
+        # testing inside gen/build_deploy/{aws,azure}.py
         global _config
         config = load_config(options.config)
         _config = config
diff --git a/release/test_release.py b/release/test_release.py
@@ -599,8 +599,6 @@ def mock_make_tar(result_filename, folder):
 def test_make_channel_artifacts(monkeypatch):
     logging.basicConfig(level=logging.DEBUG)
     monkeypatch.setattr('gen.build_deploy.bash.make_installer_docker', mock_make_installer_docker)
-    monkeypatch.setattr('gen.build_deploy.aws.get_cloudformation_s3_url', mock_get_cf_s3_url)
-    monkeypatch.setattr('gen.build_deploy.azure.get_download_url', mock_get_azure_download_url)
     monkeypatch.setattr('pkgpanda.util.make_tar.__code__', mock_make_tar.__code__)
 
     metadata = {
@@ -651,7 +649,9 @@ def test_make_channel_artifacts(monkeypatch):
             'aws': 'https://aws.example.com/',
             'azure': 'https://azure.example.com/'
         },
-        'repository_url': 'https://aws.example.com/r_path'
+        'repository_url': 'https://aws.example.com/r_path',
+        'cloudformation_s3_url_full': 'https://s3.foobar.com/biz/r_path/channel/commit/sha-1',
+        'azure_download_url': 'https://azure.example.com'
     }
 
     channel_artifacts = release.make_channel_artifacts(metadata)
