db/post_migrate/20171124104327_migrate_kubernetes_service_to_new_clusters_architectures.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123

class MigrateKubernetesServiceToNewClustersArchitectures < ActiveRecord::Migration
  DOWNTIME = false
  DEFAULT_KUBERNETES_SERVICE_CLUSTER_NAME = 'KubernetesService'.freeze

  class Project < ActiveRecord::Base
    self.table_name = 'projects'

    has_many :cluster_projects, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::ClustersProject'
    has_many :clusters, through: :cluster_projects, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Cluster'
    has_many :services, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Service'
  end

  class Cluster < ActiveRecord::Base
    self.table_name = 'clusters'

    has_many :cluster_projects, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::ClustersProject'
    has_many :projects, through: :cluster_projects, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Project'
    has_one :platform_kubernetes, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::PlatformsKubernetes'

    accepts_nested_attributes_for :platform_kubernetes

    enum platform_type: {
      kubernetes: 1
    }

    enum provider_type: {
      user: 0,
      gcp: 1
    }
  end

  class ClustersProject < ActiveRecord::Base
    self.table_name = 'cluster_projects'

    belongs_to :cluster, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Cluster'
    belongs_to :project, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Project'
  end

  class PlatformsKubernetes < ActiveRecord::Base
    self.table_name = 'cluster_platforms_kubernetes'

    belongs_to :cluster, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Cluster'

    attr_encrypted :token,
      mode: :per_attribute_iv,
      key: Gitlab::Application.secrets.db_key_base,
      algorithm: 'aes-256-cbc'
  end

  class Service < ActiveRecord::Base
    include EachBatch

    self.table_name = 'services'

    belongs_to :project, class_name: 'MigrateKubernetesServiceToNewClustersArchitectures::Project'

    scope :unmanaged_kubernetes_service, -> do
      where(category: 'deployment')
      .where(type: 'KubernetesService')
      .where(template: false)
      .where("NOT EXISTS (?)",
        MigrateKubernetesServiceToNewClustersArchitectures::PlatformsKubernetes
          .joins('INNER JOIN projects ON projects.id = services.project_id')
          .joins('INNER JOIN cluster_projects ON cluster_projects.project_id = projects.id')
          .where('cluster_projects.cluster_id = cluster_platforms_kubernetes.cluster_id')
          .where("services.properties LIKE CONCAT('%', cluster_platforms_kubernetes.api_url, '%')")
          .select('1') )
      .order(project_id: :asc)
     end

    scope :kubernetes_service_without_template, -> do
      where(category: 'deployment')
      .where(type: 'KubernetesService')
      .where(template: false)
      .order(project_id: :asc)
    end
  end

  def find_dedicated_environement_scope(project)
    environment_scopes = project.clusters.map(&:environment_scope)

    return '*' if environment_scopes.exclude?('*') # KubernetesService should be added as a default cluster (environment_scope: '*') at first place
    return 'migrated/*' if environment_scopes.exclude?('migrated/*') # If it's conflicted, the KubernetesService added as a migrated cluster

    unique_iid = 0

    # If it's still conflicted, finding an unique environment scope incrementaly
    while true
      candidate = "migrated#{unique_iid}/*"
      return candidate if environment_scopes.exclude?(candidate)
      unique_iid += 1
    end
  end

  def up
    MigrateKubernetesServiceToNewClustersArchitectures::Service
      .unmanaged_kubernetes_service.find_each(batch_size: 1) do |kubernetes_service|
      MigrateKubernetesServiceToNewClustersArchitectures::Cluster.create(
        enabled: kubernetes_service.active,
        user_id: nil, # KubernetesService doesn't have
        name: DEFAULT_KUBERNETES_SERVICE_CLUSTER_NAME,
        provider_type: MigrateKubernetesServiceToNewClustersArchitectures::Cluster.provider_types[:user],
        platform_type: MigrateKubernetesServiceToNewClustersArchitectures::Cluster.platform_types[:kubernetes],
        projects: [kubernetes_service.project.becomes(MigrateKubernetesServiceToNewClustersArchitectures::Project)],
        environment_scope: find_dedicated_environement_scope(kubernetes_service.project),
        platform_kubernetes_attributes: {
          api_url: kubernetes_service.api_url,
          ca_cert: kubernetes_service.ca_pem,
          namespace: kubernetes_service.namespace,
          username: nil, # KubernetesService doesn't have
          encrypted_password: nil, # KubernetesService doesn't have
          encrypted_password_iv: nil, # KubernetesService doesn't have
          token: kubernetes_service.token # encrypted_token and encrypted_token_iv
        } )
    end

    MigrateKubernetesServiceToNewClustersArchitectures::Service.kubernetes_service_without_template.update_all(active: false)
  end

  def down
    # noop
  end
end