GARAGENUM
/
DevOps-Bash-tools
mirror of https://github.com/HariSekhon/DevOps-Bash-tools
13
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
master
gh-pages
ccmenu
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '1f91624c3c'
${ noResults }
DevOps-Bash-tools/lib/gcp.sh

106 lines
4.1 KiB
Bash
Raw Blame History

#!/usr/bin/env bash
# vim:ts=4:sts=4:sw=4:et
# shellcheck disable=SC1090,SC2034
#
# Author: Hari Sekhon
# Date: 2020-08-13 19:38:39 +0100 (Thu, 13 Aug 2020)
#
# https://github.com/harisekhon/bash-tools
#
# License: see accompanying Hari Sekhon LICENSE file
#
# If you're using my code you're welcome to connect with me on LinkedIn and optionally send me feedback to help steer this or other code I publish
#
# https://www.linkedin.com/in/harisekhon
#
set -euo pipefail
[ -n "${DEBUG:-}" ] && set -x
gcp_lib_srcdir="$(cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"
# shellcheck disable=SC1090
. "$gcp_lib_srcdir/utils.sh"
gcp_info_noninteractive_help="You should only this script non-interactively / in pipes once you have tested it locally on the command line because some services may prompt you for choices, eg. Cloud Run, which you should save to your GCloud SDK config settings first"
gcp_info_formatting_help="In interactive mode, prints fancy boxes around GCP info to be easier on the eye. In non-interactive mode it skips formatting so it's easier to parse or process with other commands like grep / awk etc. Non-interactive mode happens automatically when the output is piped or redirected to a file or another command, or when \$NO_FORMATTING=1 is set in environment"
usage_gcloud_sdk_required="GCloud SDK must be installed and configured"
if is_piped || [ -n "${NO_FORMATTING:-}" ]; then
gcloud_formatting=''
else
# want deferred expansion
# shellcheck disable=SC2016
gcloud_formatting='"[box,title=\"$title\"]"'
fi
# not anchoring here any more so that we can use these to compose more complex regex - client should anchor regex in matches
gcr_image_regex='([^\.]+\.)?gcr\.io/[^/]+/[^:]+'
gcr_image_tag_regex="$gcr_image_regex:.+"
gcr_image_optional_tag_regex="$gcr_image_regex(:.+)?"
gcp_info(){
local title="$1"
shift || :
if [ -z "$gcloud_formatting" ]; then
#perl -e "print '=' x (${#title} + 1);"
for ((i=0; i <= ${#title}; i++)); do
#printf '='
# built-in - not as portable eg. sh, but given we explicitly execute in bash should be ok
echo -n '='
done
echo
echo "$title:"
fi
if [[ "$*" =~ --format ]]; then
# eval formatting for table only to get late evaluated $title
"${@//--format=table\(/--format=table$(eval echo "$gcloud_formatting")\(}"
else
# formatting has to be eval'd in order to pick up latest $title as a late binding
# better than eval'ing the entire command line to evaluate $title in the formatting string interpolation
"$@" --format="$(eval echo "$gcloud_formatting")" || return
if [ -z "$gcloud_formatting" ]; then
echo
fi
fi
}
# avoid race conditions on changing the configuration
# (it's still possible to change the settings within the configuration, use CLOUDSDK_CORE_PROJECT and similar overrides on an as needed basis)
gcloud_export_active_configuration(){
local active_configuration
active_configuration="$(gcloud config configurations list --format='get(name)' --filter='is_active = True')"
export CLOUDSDK_ACTIVE_CONFIG_NAME="$active_configuration"
}
gcp_serviceaccount_exists(){
local service_account="$1"
gcloud iam service-accounts list --format='get(email)' --filter="email:$service_account" |
grep -Fxq "$service_account"
}
gcp_create_serviceaccount_if_not_exists(){
local name="$1"
local project="$2"
local description="${3:-}"
local service_account="$name@$project.iam.gserviceaccount.com"
if gcp_serviceaccount_exists "$service_account"; then
echo "Service account '$service_account' already exists" >&2
else
gcloud iam service-accounts create "$name" --description="$description" --project "$project"
fi
}
gcp_create_credential_if_not_exists(){
local serviceaccount="$1"
local keyfile="$2"
mkdir -pv "$(dirname "$keyfile")"
if [ -f "$keyfile" ]; then
echo "Credentials keyfile '$keyfile' already exists" >&2
else
gcloud iam service-accounts keys create "$keyfile" --iam-account="$service_account" --key-file-type="json"
fi
}
Reference in New Issue View Git Blame Copy Permalink