feat: add cuddle rust service

Signed-off-by: kjuulh <contact@kjuulh.io>
2024-03-02 23:23:24 +01:00 · 2024-03-02 23:23:24 +01:00 · 45961d79eb
commit 45961d79eb
parent 1da0fbdf8c
14 changed files with 2635 additions and 2 deletions
--- a/cuddle-rust-service/.drone.yml
+++ b/cuddle-rust-service/.drone.yml
@ -0,0 +1,155 @@
+kind: pipeline
+name: default
+type: docker
+
+steps:
+  - name: load_secret
+    image: debian:buster-slim
+    volumes:
+      - name: ssh
+        path: /root/.ssh/
+    environment:
+      SSH_KEY:
+        from_secret: gitea_id_ed25519
+    commands:
+      - mkdir -p $HOME/.ssh/
+      - echo "$SSH_KEY" | base64 -d > $HOME/.ssh/id_ed25519
+      - chmod -R 600 ~/.ssh
+      - |
+        cat >$HOME/.ssh/config <<EOL
+        Host git.front.kjuulh.io
+          IdentityFile $HOME/.ssh/id_ed25519
+          IdentitiesOnly yes
+          UserKnownHostsFile=/dev/null
+          StrictHostKeyChecking no
+        EOL
+      - chmod 700 ~/.ssh/config
+
+  - name: build pr
+    image: kasperhermansen/cuddle:latest
+    pull: always
+    volumes:
+      - name: ssh
+        path: /root/.ssh/
+      - name: ci
+        path: /mnt/ci
+    commands:
+      - eval `ssh-agent`
+      - ssh-add
+      - echo "$DOCKER_PASSWORD" | docker login  --password-stdin --username="$DOCKER_USERNAME" docker.io
+      - apk add git
+      - $CI_PREFIX pr
+    environment:
+      DOCKER_BUILDKIT: 1
+      DOCKER_PASSWORD:
+        from_secret: docker_password
+      DOCKER_USERNAME:
+        from_secret: docker_username
+      CUDDLE_SECRETS_PROVIDER: 1password
+      CUDDLE_ONE_PASSWORD_DOT_ENV: ".env.ci"
+      CUDDLE_SSH_AGENT: "true"
+      CI_PREFIX: "/mnt/ci/ci"
+      CUDDLE_PLEASE_TOKEN:
+        from_secret: cuddle_please_token
+      OP_SERVICE_ACCOUNT_TOKEN:
+        from_secret: op_service_account_token
+    when:
+      event:
+        - pull_request
+      exclude:
+        - main
+        - master
+    depends_on:
+      - "load_secret"
+
+  - name: build main
+    image: kasperhermansen/cuddle-infrastructure-plan:main-1706481826
+    pull: always
+    volumes:
+      - name: ssh
+        path: /root/.ssh/
+    commands:
+      - eval `ssh-agent`
+      - ssh-add
+      - echo "$DOCKER_PASSWORD" | docker login  --password-stdin --username="$DOCKER_USERNAME" docker.io
+      - export CLUSTER=clank-prod
+      - export IMAGE_TAG=something
+      - cuddle-infrastructure-plan main
+    environment:
+      REGISTRY_CACHE_USERNAME:
+        from_secret: registry_cache_username
+      REGISTRY_CACHE_PASSWORD:
+        from_secret: registry_cache_password
+      REGISTRY_CACHE_TOKEN:
+        from_secret: registry_cache_token
+      REGISTRY_CACHE_url:
+        from_secret: registry_cache_url
+      DOCKER_BUILDKIT: 1
+      DOCKER_PASSWORD:
+        from_secret: docker_password
+      DOCKER_USERNAME:
+        from_secret: docker_username
+      CUDDLE_SECRETS_PROVIDER: 1password
+      CUDDLE_ONE_PASSWORD_DOT_ENV: ".env.ci"
+      CUDDLE_SSH_AGENT: "true"
+      GIT_PASSWORD:
+        from_secret: git_password
+      CI_PREFIX: "/mnt/ci/ci"
+      DOCKER_HOST: "tcp://192.168.1.233:2376"
+      CUDDLE_PLEASE_TOKEN:
+        from_secret: cuddle_please_token
+      OP_SERVICE_ACCOUNT_TOKEN:
+        from_secret: op_service_account_token
+    when:
+      event:
+        - push
+      branch:
+        - main
+        - master
+      exclude:
+        - pull_request
+    depends_on:
+      - "load_secret"
+
+  - name: deploy release
+    image: kasperhermansen/cuddle:latest
+    pull: always
+    volumes:
+      - name: ssh
+        path: /root/.ssh/
+      - name: dockersock
+        path: /var/run
+      - name: ci
+        path: /mnt/ci
+    commands:
+      - eval `ssh-agent`
+      - ssh-add
+      - echo "$DOCKER_PASSWORD" | docker login  --password-stdin --username="$DOCKER_USERNAME" docker.io
+      - apk add git
+      - cuddle x ci:release
+    environment:
+      DOCKER_BUILDKIT: 1
+      DOCKER_PASSWORD:
+        from_secret: docker_password
+      DOCKER_USERNAME:
+        from_secret: docker_username
+      CUDDLE_SECRETS_PROVIDER: 1password
+      CUDDLE_ONE_PASSWORD_DOT_ENV: ".env.ci"
+      CUDDLE_SSH_AGENT: "true"
+      CI_PREFIX: "/mnt/ci/ci"
+      CUDDLE_PLEASE_TOKEN:
+        from_secret: cuddle_please_token
+      OP_SERVICE_ACCOUNT_TOKEN:
+        from_secret: op_service_account_token
+    when:
+      event:
+        - tag
+      ref:
+        include:
+        - refs/tags/v*
+    depends_on:
+      - "load_secret"
+
+volumes:
+  - name: ssh
+    temp: {}
--- a/cuddle-rust-service/.gitignore
+++ b/cuddle-rust-service/.gitignore
@ -0,0 +1,2 @@
+target/
+.cuddle/
--- a/cuddle-rust-service/Cargo.lock
+++ b/cuddle-rust-service/Cargo.lock
--- a/cuddle-rust-service/Cargo.toml
+++ b/cuddle-rust-service/Cargo.toml
@ -0,0 +1,14 @@
+[workspace]
+members = ["crates/*"]
+resolver = "2"
+
+[workspace.dependencies]
+%%name%% = { path = "crates/%%name%%" }
+
+anyhow = { version = "1" }
+tokio = { version = "1", features = ["full"] }
+tracing = { version = "0.1", features = ["log"] }
+tracing-subscriber = { version = "0.3.18" }
+clap = { version = "4", features = ["derive", "env"] }
+dotenv = { version = "0.15" }
+axum = { version = "0.7" }
--- a/cuddle-rust-service/README.md
+++ b/cuddle-rust-service/README.md
@ -0,0 +1,7 @@
+# Newsletter API
+
+represents a newsletter service for handling subscriptins and whatnot for my own email newsletter
+
+## Usage
+
+This services requires a postgresql compatible, instance, in this case cockroachdb is used. Simply pass a DATABASE_URL to the app and it should apply migrations by itself. Do note that because Cockroach is used with SQLX locking on the schema table is disabled, reason being that cockroachdb doesn't currently support advisory locks
--- a/cuddle-rust-service/crates/%%name%%/.gitignore
+++ b/cuddle-rust-service/crates/%%name%%/.gitignore
@ -0,0 +1 @@
+/target
--- a/cuddle-rust-service/crates/%%name%%/Cargo.toml
+++ b/cuddle-rust-service/crates/%%name%%/Cargo.toml
@ -0,0 +1,18 @@
+[package]
+name = "%%name%%"
+version = "0.1.0"
+edition = "2021"
+
+[dependencies]
+anyhow.workspace = true
+tokio.workspace = true
+tracing.workspace = true
+tracing-subscriber.workspace = true
+clap.workspace = true
+dotenv.workspace = true
+axum.workspace = true
+
+serde = { version = "1.0.197", features = ["derive"] }
+sqlx = { version = "0.7.3", features = ["runtime-tokio", "tls-rustls", "postgres", "uuid", "time"] }
+uuid = { version = "1.7.0", features = ["v4"] }
+tower-http = { version = "0.5.2", features = ["cors", "trace"] }
--- a/cuddle-rust-service/crates/%%name%%/migrations/crdb/20240201211013_initial.sql
+++ b/cuddle-rust-service/crates/%%name%%/migrations/crdb/20240201211013_initial.sql
@ -0,0 +1 @@
+-- Add migration script here
--- a/cuddle-rust-service/crates/%%name%%/src/main.rs
+++ b/cuddle-rust-service/crates/%%name%%/src/main.rs
@ -0,0 +1,109 @@
+use std::{net::SocketAddr, ops::Deref, sync::Arc};
+
+use anyhow::Context;
+use axum::extract::MatchedPath;
+use axum::http::Request;
+use axum::Router;
+use axum::{extract::FromRef, routing::get};
+use clap::{Parser, Subcommand};
+use services::Newsletter;
+use sqlx::{Pool, Postgres};
+use tower_http::trace::TraceLayer;
+
+use crate::api::ApiRouter;
+
+#[derive(Parser)]
+#[command(author, version, about, long_about = None, subcommand_required = true)]
+struct Command {
+    #[command(subcommand)]
+    command: Option<Commands>,
+}
+
+#[derive(Subcommand)]
+enum Commands {
+    Serve {
+        #[arg(env = "SERVICE_HOST", long, default_value = "127.0.0.1:3000")]
+        host: SocketAddr,
+    },
+}
+
+#[tokio::main]
+async fn main() -> anyhow::Result<()> {
+    dotenv::dotenv().ok();
+    tracing_subscriber::fmt::init();
+
+    let cli = Command::parse();
+
+    if let Some(Commands::Serve { host }) = cli.command {
+        tracing::info!("Starting service");
+
+        let state = SharedState(Arc::new(State::new().await?));
+
+        let app = Router::new()
+            .route("/", get(root))
+            .with_state(state.clone())
+            .layer(
+                TraceLayer::new_for_http().make_span_with(|request: &Request<_>| {
+                    // Log the matched route's path (with placeholders not filled in).
+                    // Use request.uri() or OriginalUri if you want the real path.
+                    let matched_path = request
+                        .extensions()
+                        .get::<MatchedPath>()
+                        .map(MatchedPath::as_str);
+
+                    tracing::info_span!(
+                        "http_request",
+                        method = ?request.method(),
+                        matched_path,
+                        some_other_field = tracing::field::Empty,
+                    )
+                }), // ...
+            );
+
+        tracing::info!("listening on {}", host);
+        let listener = tokio::net::TcpListener::bind(host).await.unwrap();
+        axum::serve(listener, app.into_make_service())
+            .await
+            .unwrap();
+    }
+
+    Ok(())
+}
+
+async fn root() -> &'static str {
+    "Hello, %%name%%!"
+}
+
+#[derive(Clone)]
+pub struct SharedState(Arc<State>);
+
+impl Deref for SharedState {
+    type Target = Arc<State>;
+
+    fn deref(&self) -> &Self::Target {
+        &self.0
+    }
+}
+
+pub struct State {
+    pub db: Pool<Postgres>,
+}
+
+impl State {
+    pub async fn new() -> anyhow::Result<Self> {
+        let db = sqlx::PgPool::connect(
+            &std::env::var("DATABASE_URL").context("DATABASE_URL is not set")?,
+        )
+        .await?;
+
+        sqlx::migrate!("migrations/crdb")
+            .set_locking(false)
+            .run(&db)
+            .await?;
+
+        let _ = sqlx::query("SELECT 1;").fetch_one(&db).await?;
+
+        Ok(Self { db })
+    }
+}
+
--- a/cuddle-rust-service/cuddle-template.json
+++ b/cuddle-rust-service/cuddle-template.json
@ -0,0 +1,10 @@
+{
+  "name": "cuddle-rust-service",
+  "templating": "tera",
+  "delimiter": "[[]]",
+  "prompt": {
+    "name": {
+      "description": "Project name"
+    }
+  }
+}
--- a/cuddle-rust-service/cuddle.yaml
+++ b/cuddle-rust-service/cuddle.yaml
@ -0,0 +1,21 @@
+# yaml-language-server: $schema=https://git.front.kjuulh.io/kjuulh/cuddle/raw/branch/main/schemas/base.json
+
+base: "git@git.front.kjuulh.io:kjuulh/cuddle-rust-service-plan.git"
+
+vars:
+  service: "%%name%%"
+  registry: kasperhermansen
+
+  clusters:
+    clank-prod:
+      replicas: "3"
+      namespace: prod
+
+
+deployment:
+  registry: git@git.front.kjuulh.io:kjuulh/clank-clusters
+  env:
+    prod:
+      clusters:
+        - clank-prod
+
--- a/cuddle-rust-service/renovate.json
+++ b/cuddle-rust-service/renovate.json
@ -0,0 +1,3 @@
+{
+  "$schema": "https://docs.renovatebot.com/renovate-schema.json"
+}
--- a/cuddle-rust-service/templates/docker-compose.yaml
+++ b/cuddle-rust-service/templates/docker-compose.yaml
@ -0,0 +1,15 @@
+version: "3"
+services:
+  crdb:
+    restart: 'always'
+    image: 'cockroachdb/cockroach:v23.1.14'
+    command: 'start-single-node --advertise-addr 0.0.0.0 --insecure'
+    healthcheck:
+      test: ["CMD", "curl", "-f", "http://localhost:8080/health?ready=1"]
+      interval: '10s'
+      timeout: '30s'
+      retries: 5
+      start_period: '20s'
+    ports:
+      - 8080:8080
+      - '26257:26257'
--- a/cuddle-templates.json
+++ b/cuddle-templates.json
@ -5,6 +5,7 @@
    "rust-lib",
    "empty",
    "deployment",
-    "cuddle-infrastructure"
+    "cuddle-infrastructure",
+    "cuddle-rust-service"
  ]
 }