forked from hswaw/hscloud
Serge Bazanski
02e1598eb3
This emits short-lived user credentials for a `dev-user` in crdb-waw1 any time someone prodaccesses. Change-Id: I0266a05c1f02225d762cfd2ca61976af0658639d
67 lines
2.1 KiB
Python
67 lines
2.1 KiB
Python
load("@io_bazel_rules_docker//container:container.bzl", "container_image", "container_layer", "container_push")
|
|
load("@io_bazel_rules_go//go:def.bzl", "go_binary", "go_library")
|
|
|
|
go_library(
|
|
name = "go_default_library",
|
|
srcs = [
|
|
"certs.go",
|
|
"crdb.go",
|
|
"hspki.go",
|
|
"kubernetes.go",
|
|
"main.go",
|
|
"service.go",
|
|
],
|
|
importpath = "code.hackerspace.pl/hscloud/cluster/prodvider",
|
|
visibility = ["//visibility:private"],
|
|
deps = [
|
|
"//cluster/prodvider/proto:go_default_library",
|
|
"@com_github_cloudflare_cfssl//config:go_default_library",
|
|
"@com_github_cloudflare_cfssl//csr:go_default_library",
|
|
"@com_github_cloudflare_cfssl//helpers:go_default_library",
|
|
"@com_github_cloudflare_cfssl//signer:go_default_library",
|
|
"@com_github_cloudflare_cfssl//signer/local:go_default_library",
|
|
"@com_github_golang_glog//:go_default_library",
|
|
"@in_gopkg_ldap_v3//:go_default_library",
|
|
"@io_k8s_api//core/v1:go_default_library",
|
|
"@io_k8s_api//rbac/v1:go_default_library",
|
|
"@io_k8s_apimachinery//pkg/api/errors:go_default_library",
|
|
"@io_k8s_apimachinery//pkg/apis/meta/v1:go_default_library",
|
|
"@io_k8s_client_go//kubernetes:go_default_library",
|
|
"@io_k8s_client_go//rest:go_default_library",
|
|
"@org_golang_google_grpc//:go_default_library",
|
|
"@org_golang_google_grpc//codes:go_default_library",
|
|
"@org_golang_google_grpc//credentials:go_default_library",
|
|
"@org_golang_google_grpc//status:go_default_library",
|
|
],
|
|
)
|
|
|
|
go_binary(
|
|
name = "prodvider",
|
|
embed = [":go_default_library"],
|
|
visibility = ["//visibility:public"],
|
|
)
|
|
|
|
container_layer(
|
|
name = "layer_bin",
|
|
files = [
|
|
":prodvider",
|
|
],
|
|
directory = "/cluster/prodvider/",
|
|
)
|
|
|
|
container_image(
|
|
name = "runtime",
|
|
base = "@prodimage-bionic//image",
|
|
layers = [
|
|
":layer_bin",
|
|
],
|
|
)
|
|
|
|
container_push(
|
|
name = "push",
|
|
image = ":runtime",
|
|
format = "Docker",
|
|
registry = "registry.k0.hswaw.net",
|
|
repository = "q3k/prodvider",
|
|
tag = "{BUILD_TIMESTAMP}-{STABLE_GIT_COMMIT}",
|
|
)
|