kjuulh/dagger
Archived
1
0
Fork 0
Code Issues 1 Pull Requests 1 Projects Releases Wiki Activity

Merge pull request #1238 from talentedmrjones/europa-reconcile-with-spec

Browse Source 
Europa: reconcile with spec
This commit is contained in:
Richard Jones 2021-12-17 13:30:25 -07:00 committed by GitHub
commit 3861ab3464
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
24 changed files with 277 additions and 207 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
docs/reference/README.md
View File

@ -19,10 +19,10 @@
- [dagger/op](./dagger/op.md) - op: low-level operations for Dagger processing pipelines - [dagger/op](./dagger/op.md) - op: low-level operations for Dagger processing pipelines
- [docker](./docker/README.md) - Docker container operations - [docker](./docker/README.md) - Docker container operations
- [docker/compose](./docker/compose.md) - Docker-compose operations - [docker/compose](./docker/compose.md) - Docker-compose operations
- [europa/dagger](./europa/dagger/README.md) - The Dagger API. - [europa/dagger](./europa/dagger/README.md) - -
- [europa/dagger/engine](./europa/dagger/engine/README.md) - - - [europa/dagger/engine](./europa/dagger/engine/README.md) - -
- [europa/dagger/engine/spec](./europa/dagger/engine/spec/README.md) - Placeholder package, to keep docs generating tool happy. - [europa/dagger/engine/spec](./europa/dagger/engine/spec/README.md) - Placeholder package, to keep docs generating tool happy.
- [europa/dagger/engine/spec/engine](./europa/dagger/engine/spec/engine.md) - HTTP operations - [europa/dagger/engine/spec/engine](./europa/dagger/engine/spec/engine.md) - The Dagger API.
- [gcp](./gcp/README.md) - Google Cloud Platform - [gcp](./gcp/README.md) - Google Cloud Platform
- [gcp/cloudrun](./gcp/cloudrun.md) - - - [gcp/cloudrun](./gcp/cloudrun.md) - -
- [gcp/gcr](./gcp/gcr.md) - Google Container Registry - [gcp/gcr](./gcp/gcr.md) - Google Container Registry

4
docs/reference/europa/dagger/README.md
View File

@ -4,8 +4,6 @@ sidebar_label: dagger
# alpha.dagger.io/europa/dagger # alpha.dagger.io/europa/dagger
The Dagger API.
```cue ```cue
import "alpha.dagger.io/europa/dagger" import "alpha.dagger.io/europa/dagger"
``` ```
@ -72,7 +70,7 @@ _No output._
## dagger.#Stream ## dagger.#Stream
A reference to a stream of bytes, for example: - The standard output or error stream of a command - The standard input stream of a command - The contents of a file or named pipe A stream of bytes
### dagger.#Stream Inputs ### dagger.#Stream Inputs

10
docs/reference/europa/dagger/engine/README.md
View File

@ -20,16 +20,6 @@ _No input._
_No output._ _No output._
## engine.#Context
### engine.#Context Inputs
_No input._
### engine.#Context Outputs
_No output._
## engine.#Exec ## engine.#Exec
Execute a command in a container Execute a command in a container

24
docs/reference/europa/dagger/engine/spec/engine.md
View File

@ -4,7 +4,7 @@ sidebar_label: engine
# alpha.dagger.io/europa/dagger/engine/spec/engine # alpha.dagger.io/europa/dagger/engine/spec/engine
HTTP operations The Dagger API.
```cue ```cue
import "alpha.dagger.io/europa/dagger/engine/spec/engine" import "alpha.dagger.io/europa/dagger/engine/spec/engine"
@ -34,16 +34,6 @@ _No input._
_No output._ _No output._
## engine.#Context
### engine.#Context Inputs
_No input._
### engine.#Context Outputs
_No output._
## engine.#Copy ## engine.#Copy
### engine.#Copy Inputs ### engine.#Copy Inputs
@ -64,6 +54,18 @@ _No input._
_No output._ _No output._
## engine.#DAG
A special kind of program which `dagger` can execute.
### engine.#DAG Inputs
_No input._
### engine.#DAG Outputs
_No output._
## engine.#Exec ## engine.#Exec
Execute a command in a container Execute a command in a container

2
plan/plan.go
View File

@ -59,7 +59,7 @@ func (p *Plan) Source() *compiler.Value {
// registerLocalDirectories scans the context for local imports. // registerLocalDirectories scans the context for local imports.
// BuildKit requires to known the list of directories ahead of time. // BuildKit requires to known the list of directories ahead of time.
func (p *Plan) registerLocalDirs() error { func (p *Plan) registerLocalDirs() error {
imports, err := p.source.Lookup("context.imports").Fields() imports, err := p.source.Lookup("inputs.directories").Fields()
if err != nil { if err != nil {
return err return err
} }

11
plan/task/import.go → plan/task/localDirectory.go
View File

@ -4,19 +4,20 @@ import (
"context" "context"
"github.com/moby/buildkit/client/llb" "github.com/moby/buildkit/client/llb"
"github.com/rs/zerolog/log"
"go.dagger.io/dagger/compiler" "go.dagger.io/dagger/compiler"
"go.dagger.io/dagger/plancontext" "go.dagger.io/dagger/plancontext"
"go.dagger.io/dagger/solver" "go.dagger.io/dagger/solver"
) )
func init() { func init() {
Register("Import", func() Task { return &importTask{} }) Register("LocalDirectory", func() Task { return &localDirectoryTask{} })
} }
type importTask struct { type localDirectoryTask struct {
} }
func (c importTask) Run(ctx context.Context, pctx *plancontext.Context, s solver.Solver, v *compiler.Value) (*compiler.Value, error) { func (c localDirectoryTask) Run(ctx context.Context, pctx *plancontext.Context, s solver.Solver, v *compiler.Value) (*compiler.Value, error) {
var dir struct { var dir struct {
Path string Path string
Include []string Include []string
@ -27,6 +28,8 @@ func (c importTask) Run(ctx context.Context, pctx *plancontext.Context, s solver
return nil, err return nil, err
} }
lg := log.Ctx(ctx)
lg.Debug().Str("path", dir.Path).Msg("loading local directory")
opts := []llb.LocalOption{ opts := []llb.LocalOption{
withCustomName(v, "Local %s", dir.Path), withCustomName(v, "Local %s", dir.Path),
// Without hint, multiple `llb.Local` operations on the // Without hint, multiple `llb.Local` operations on the
@ -69,6 +72,6 @@ func (c importTask) Run(ctx context.Context, pctx *plancontext.Context, s solver
fs := pctx.FS.New(result) fs := pctx.FS.New(result)
return compiler.NewValue().FillFields(map[string]interface{}{ return compiler.NewValue().FillFields(map[string]interface{}{
"fs": fs.MarshalCUE(), "contents": fs.MarshalCUE(),
}) })
} }

105
stdlib/europa/dagger/engine/plan.cue
View File

@ -2,50 +2,71 @@ package engine
// A deployment plan executed by `dagger up` // A deployment plan executed by `dagger up`
#Plan: { #Plan: {
context: #Context // Receive inputs from the client
actions: [string]: _ inputs: {
} // Receive directories
directories: [string]: _#inputDirectory
// FIXME: Platform spec here // Securely receive secrets
#Platform: string secrets: [string]: _#inputSecret
#Context: {
// Platform to target
platform?: #Platform
// Import directories
imports: [string]: {
_type: "Import"
path: string
include?: [...string]
exclude?: [...string]
fs: #FS
} }
// Securely load external secrets // Forward network services to and from the client
secrets: [string]: { proxy: [string]: _#proxyEndpoint
// Secrets can be securely mounted into action containers as a file
contents: #Secret
{ // Execute actions in containers
_type: "SecretFile" actions: {
// Read secret from a file ...
path: string }
} | { }
_type: "SecretEnv"
// Read secret from an environment variable ON THE CLIENT MACHINE _#inputDirectory: {
envvar: string // Import from this path ON THE CLIENT MACHINE
} // Example: "/Users/Alice/dev/todoapp/src"
} _type: "LocalDirectory"
path: string
services: [string]: {
service: #Service // Filename patterns to include
_type: "Service" // Example: ["*.go", "Dockerfile"]
{ include?: [...string]
unix: string
} | { // Filename patterns to exclude
npipe: string // Example: ["node_modules"]
} exclude?: [...string]
// Imported filesystem contents
// Use this as input for actions requiring an #FS field
contents: #FS
}
// Securely receive a secret from the client
_#inputSecret: {
// Reference to the secret contents
// Use this by securely mounting it into a container.
// See universe.dagger.io/docker.#Run.mounts
// FIXME: `contents` field name causes confusion (not actually the secret contents..)
contents: #Secret
{
// Read secret from a file ON THE CLIENT MACHINE
_type: "SecretFile"
path: string
} | {
// Read secret from an environment variable ON THE CLIENT MACHINE
_type: "SecretEnv"
envvar: string
}
}
// Forward a network endpoint to and from the client
_#proxyEndpoint: {
// Service endpoint can be proxied to action containers as unix sockets
// FIXME: should #Service be renamed to #ServiceEndpoint or #Endpoint? Naming things is hard...
// FIXME: reconcile with spec
_type: "Service"
service: #Service
{
unix: string
} | {
npipe: string
} }
} }

4
stdlib/europa/dagger/engine/spec/engine/address.cue Normal file
View File

@ -0,0 +1,4 @@
package engine
// A network service address
#Address: string & =~"^(tcp://|unix://|udp://).*"

3
stdlib/europa/dagger/engine/spec/engine/http.cue
View File

@ -1,6 +1,7 @@
// HTTP operations
package engine package engine
// HTTP operations
// Raw buildkit API // Raw buildkit API
// //
// package llb // import "github.com/moby/buildkit/client/llb" // package llb // import "github.com/moby/buildkit/client/llb"

102
stdlib/europa/dagger/engine/spec/engine/plan.cue Normal file
View File

@ -0,0 +1,102 @@
// The Dagger API.
package engine
// A deployment plan executed by `dagger up`
#Plan: #DAG
// A special kind of program which `dagger` can execute.
#DAG: {
// Receive inputs from the client
inputs: {
// Receive directories
directories: [name=string]: _#inputDirectory
// Securely receive secrets
secrets: [name=string]: _#inputSecret
// Receive runtime parameters
params: [name=string]: _
}
// Send outputs to the client
outputs: {
directories: [name=string]: _#outputDirectory
}
// Forward network services to and from the client
proxy: [name=string]: _#proxyEndpoint
// Execute actions in containers
actions: {
...
}
}
_#inputDirectory: {
// Import from this path ON THE CLIENT MACHINE
// Example: "/Users/Alice/dev/todoapp/src"
source: string
// Filename patterns to include
// Example: ["*.go", "Dockerfile"]
include?: [...string]
// Filename patterns to exclude
// Example: ["node_modules"]
exclude?: [...string]
// Imported filesystem contents
// Use this as input for actions requiring an #FS field
contents: #FS
}
_#outputDirectory: {
// Filesystem contents to export
// Reference an #FS field produced by an action
contents: #FS
// Export to this path ON THE CLIENT MACHINE
dest: string
}
// Securely receive a secret from the client
_#inputSecret: {
// Reference to the secret contents
// Use this by securely mounting it into a container.
// See universe.dagger.io/docker.#Run.mounts
// FIXME: `contents` field name causes confusion (not actually the secret contents..)
contents: #Secret
{
// Execute a command ON THE CLIENT MACHINE and read secret from standard output
command: [string, ...string] | string
// Execute command in an interactive terminal
// for example to prompt for a passphrase
interactive: true | *false
} | {
// Read secret from a file ON THE CLIENT MACHINE
path: string
} | {
// Read secret from an environment variable ON THE CLIENT MACHINE
envvar: string
}
}
// Forward a network endpoint to and from the client
_#proxyEndpoint: {
// Service endpoint can be proxied to action containers as unix sockets
// FIXME: should #Service be renamed to #ServiceEndpoint or #Endpoint? Naming things is hard...
endpoint: #Service
{
// Listen for connections ON THE CLIENT MACHINE, proxy to actions
listen: #Address
} | {
// Connect to a remote endpoint FROM THE CLIENT MACHINE, proxy to actions
connect: #Address
} | {
// Proxy to/from the contents of a file ON THE CLIENT MACHINE
filepath: string
} | {
// Proxy to/from standard input and output of a command ON THE CLIENT MACHINE
command: [string, ...string] | string
}
}

103
stdlib/europa/dagger/plan.cue
View File

@ -1,102 +1,11 @@
// The Dagger API.
package dagger package dagger
import (
"alpha.dagger.io/europa/dagger/engine/spec/engine"
)
// A deployment plan executed by `dagger up` // A deployment plan executed by `dagger up`
#Plan: #DAG #Plan: engine.#Plan
// A special kind of program which `dagger` can execute. // A special kind of program which `dagger` can execute.
#DAG: { #DAG: engine.#DAG
// Receive inputs from the client
input: {
// Receive directories
directories: [name=string]: _#inputDirectory
// Securely receive secrets
secrets: [name=string]: _#inputSecret
// Receive runtime parameters
params: [name=string]: _
}
// Send outputs to the client
output: {
directories: [name=string]: _#outputDirectory
}
// Forward network services to and from the client
proxy: [name=string]: _#proxyEndpoint
// Execute actions in containers
actions: {
...
}
}
_#inputDirectory: {
// Import from this path ON THE CLIENT MACHINE
// Example: "/Users/Alice/dev/todoapp/src"
source: string
// Filename patterns to include
// Example: ["*.go", "Dockerfile"]
include?: [...string]
// Filename patterns to exclude
// Example: ["node_modules"]
exclude?: [...string]
// Imported filesystem contents
// Use this as input for actions requiring an #FS field
contents: #FS
}
_#outputDirectory: {
// Filesystem contents to export
// Reference an #FS field produced by an action
contents: #FS
// Export to this path ON THE CLIENT MACHINE
dest: string
}
// Securely receive a secret from the client
_#inputSecret: {
// Reference to the secret contents
// Use this by securely mounting it into a container.
// See universe.dagger.io/docker.#Run.mounts
// FIXME: `contents` field name causes confusion (not actually the secret contents..)
contents: #Secret
{
// Execute a command ON THE CLIENT MACHINE and read secret from standard output
command: [string, ...string] | string
// Execute command in an interactive terminal
// for example to prompt for a passphrase
interactive: true | *false
} | {
// Read secret from a file ON THE CLIENT MACHINE
path: string
} | {
// Read secret from an environment variable ON THE CLIENT MACHINE
envvar: string
}
}
// Forward a network endpoint to and from the client
_#proxyEndpoint: {
// Service endpoint can be proxied to action containers as unix sockets
// FIXME: should #Service be renamed to #ServiceEndpoint or #Endpoint? Naming things is hard...
endpoint: #Service
{
// Listen for connections ON THE CLIENT MACHINE, proxy to actions
listen: #Address
} | {
// Connect to a remote endpoint FROM THE CLIENT MACHINE, proxy to actions
connect: #Address
} | {
// Proxy to/from the contents of a file ON THE CLIENT MACHINE
filepath: string
} | {
// Proxy to/from standard input and output of a command ON THE CLIENT MACHINE
command: [string, ...string] | string
}
}

11
stdlib/europa/dagger/types.cue
View File

@ -20,17 +20,14 @@ import (
// by a special filesystem mount designed to minimize leak risk. // by a special filesystem mount designed to minimize leak risk.
#Secret: engine.#Secret #Secret: engine.#Secret
// A reference to a stream of bytes, for example:
// - The standard output or error stream of a command
// - The standard input stream of a command
// - The contents of a file or named pipe
#Stream: engine.#Stream
// A reference to a network service endpoint, for example: // A reference to a network service endpoint, for example:
// - A TCP or UDP port // - A TCP or UDP port
// - A unix socket // - A unix socket
// - An HTTPS endpoint // - An HTTPS endpoint
#Service: engine.#Service #Service: engine.#Service
// A stream of bytes
#Stream: engine.#Stream
// A network service address // A network service address
#Address: string & =~"^(tcp://|unix://|udp://).*" #Address: engine.#Address

32
tests/plan.bats
View File

@ -10,31 +10,43 @@ setup() {
"$DAGGER" --europa up ./plan/hello-europa "$DAGGER" --europa up ./plan/hello-europa
} }
@test "plan/context/services invalid schema" { @test "plan/proxy invalid schema" {
cd "$TESTDIR" cd "$TESTDIR"
run "$DAGGER" --europa up ./plan/context/services/invalid_schema.cue run "$DAGGER" --europa up ./plan/proxy/invalid_schema.cue
assert_failure assert_failure
} }
@test "plan/context/services invalid value" { @test "plan/proxy invalid value" {
cd "$TESTDIR" cd "$TESTDIR"
run "$DAGGER" --europa up ./plan/context/services/invalid_value.cue run "$DAGGER" --europa up ./plan/proxy/invalid_value.cue
assert_failure assert_failure
} }
@test "plan/context/services incomplete unix" { @test "plan/proxy incomplete unix" {
cd "$TESTDIR" cd "$TESTDIR"
run "$DAGGER" --europa up ./plan/context/services/incomplete_unix.cue run "$DAGGER" --europa up ./plan/proxy/incomplete_unix.cue
assert_failure assert_failure
} }
@test "plan/context/services incomplete service" { @test "plan/proxy incomplete service" {
cd "$TESTDIR" cd "$TESTDIR"
run "$DAGGER" --europa up ./plan/context/services/incomplete_service.cue run "$DAGGER" --europa up ./plan/proxy/incomplete_service.cue
assert_output --partial "pipeline was partially executed because of missing inputs" assert_output --partial "pipeline was partially executed because of missing inputs"
} }
@test "plan/context/services unix" { @test "plan/proxy unix" {
cd "$TESTDIR" cd "$TESTDIR"
"$DAGGER" --europa up ./plan/context/services/unix.cue "$DAGGER" --europa up ./plan/proxy/unix.cue
}
@test "plan/inputs/directories exists" {
cd "$TESTDIR"
"$DAGGER" --europa up ./plan/inputs/directories/exists.cue
}
@test "plan/inputs/directories conflicting values" {
cd "$TESTDIR"
run "$DAGGER" --europa up ./plan/inputs/directories/conflicting_values.cue
assert_failure
assert_output --partial 'failed to up environment: actions.verify.contents: conflicting values "local directory" and "local dfsadf"'
} }

15
tests/plan/inputs/directories/conflicting_values.cue Normal file
View File

@ -0,0 +1,15 @@
package main
import (
"alpha.dagger.io/europa/dagger/engine"
)
engine.#Plan & {
inputs: directories: test: path: "./plan/inputs/directories"
actions: verify: engine.#ReadFile & {
input: inputs.directories.test.contents
path: "test.txt"
} & {
contents: "local dfsadf" // should fail with conflicting values
}
}

15
tests/plan/inputs/directories/exists.cue Normal file
View File

@ -0,0 +1,15 @@
package main
import (
"alpha.dagger.io/europa/dagger/engine"
)
engine.#Plan & {
inputs: directories: test: path: "./plan/inputs/directories"
actions: verify: engine.#ReadFile & {
input: inputs.directories.test.contents
path: "test.txt"
} & {
contents: "local directory"
}
}

1
tests/plan/inputs/directories/test.txt Normal file
View File

@ -0,0 +1 @@
local directory

6
tests/plan/context/services/incomplete_service.cue → tests/plan/proxy/incomplete_service.cue
View File

@ -7,8 +7,8 @@ import (
) )
engine.#Plan & { engine.#Plan & {
// should fail // should fail due to incomplete service
context: services: dockerSocket: {} proxy: dockerSocket: {}
actions: test: #up: [ actions: test: #up: [
op.#Load & { op.#Load & {
@ -19,7 +19,7 @@ engine.#Plan & {
op.#Exec & { op.#Exec & {
always: true always: true
mount: "/var/run/docker.sock": stream: context.services.dockerSocket.service mount: "/var/run/docker.sock": stream: proxy.dockerSocket.service
args: ["docker", "info"] args: ["docker", "info"]
}, },
] ]

6
tests/plan/context/services/unix.cue → tests/plan/proxy/incomplete_unix.cue
View File

@ -7,8 +7,8 @@ import (
) )
engine.#Plan & { engine.#Plan & {
// should succeed // should fail because incomplete value
context: services: dockerSocket: unix: "/var/run/docker.sock" proxy: dockerSocket: unix: string
actions: test: #up: [ actions: test: #up: [
op.#Load & { op.#Load & {
@ -19,7 +19,7 @@ engine.#Plan & {
op.#Exec & { op.#Exec & {
always: true always: true
mount: "/var/run/docker.sock": stream: context.services.dockerSocket.service mount: "/var/run/docker.sock": stream: proxy.dockerSocket.service
args: ["docker", "info"] args: ["docker", "info"]
}, },
] ]

4
tests/plan/context/services/invalid_schema.cue → tests/plan/proxy/invalid_schema.cue
View File

@ -8,7 +8,7 @@ import (
engine.#Plan & { engine.#Plan & {
// should fail because of misspelled key // should fail because of misspelled key
context: services: dockerSocket: unx: "/var/run/docker.soc" proxy: dockerSocket: unx: "/var/run/docker.sock"
actions: test: #up: [ actions: test: #up: [
op.#Load & { op.#Load & {
@ -19,7 +19,7 @@ engine.#Plan & {
op.#Exec & { op.#Exec & {
always: true always: true
mount: "/var/run/docker.sock": stream: context.services.dockerSocket.service mount: "/var/run/docker.sock": stream: proxy.dockerSocket.service
args: ["docker", "info"] args: ["docker", "info"]
}, },
] ]

4
tests/plan/context/services/invalid_value.cue → tests/plan/proxy/invalid_value.cue
View File

@ -8,7 +8,7 @@ import (
engine.#Plan & { engine.#Plan & {
// should fail because of misspelled value // should fail because of misspelled value
context: services: dockerSocket: unix: "/var/run/docker.soc" proxy: dockerSocket: unix: "/var/run/docker.soc"
actions: test: #up: [ actions: test: #up: [
op.#Load & { op.#Load & {
@ -19,7 +19,7 @@ engine.#Plan & {
op.#Exec & { op.#Exec & {
always: true always: true
mount: "/var/run/docker.sock": stream: context.services.dockerSocket.service mount: "/var/run/docker.sock": stream: proxy.dockerSocket.service
args: ["docker", "info"] args: ["docker", "info"]
}, },
] ]

4
tests/plan/context/services/incomplete_unix.cue → tests/plan/proxy/unix.cue
View File

@ -8,7 +8,7 @@ import (
engine.#Plan & { engine.#Plan & {
// should succeed // should succeed
context: services: dockerSocket: unix: string proxy: dockerSocket: unix: "/var/run/docker.sock"
actions: test: #up: [ actions: test: #up: [
op.#Load & { op.#Load & {
@ -19,7 +19,7 @@ engine.#Plan & {
op.#Exec & { op.#Exec & {
always: true always: true
mount: "/var/run/docker.sock": stream: context.services.dockerSocket.service mount: "/var/run/docker.sock": stream: proxy.dockerSocket.service
args: ["docker", "info"] args: ["docker", "info"]
}, },
] ]

6
tests/tasks/exec/mount_secret.cue
View File

@ -5,7 +5,7 @@ import (
) )
engine.#Plan & { engine.#Plan & {
context: secrets: testSecret: envvar: "TESTSECRET" inputs: secrets: testSecret: envvar: "TESTSECRET"
actions: { actions: {
image: engine.#Pull & { image: engine.#Pull & {
source: "alpine:3.15.0@sha256:e7d88de73db3d3fd9b2d63aa7f447a10fd0220b7cbf39803c803f2af9ba256b3" source: "alpine:3.15.0@sha256:e7d88de73db3d3fd9b2d63aa7f447a10fd0220b7cbf39803c803f2af9ba256b3"
@ -15,7 +15,7 @@ engine.#Plan & {
input: image.output input: image.output
mounts: secret: { mounts: secret: {
dest: "/run/secrets/test" dest: "/run/secrets/test"
contents: context.secrets.testSecret.contents contents: inputs.secrets.testSecret.contents
} }
args: [ args: [
"sh", "-c", "sh", "-c",
@ -30,7 +30,7 @@ engine.#Plan & {
input: image.output input: image.output
mounts: secret: { mounts: secret: {
dest: "/run/secrets/test" dest: "/run/secrets/test"
contents: context.secrets.testSecret.contents contents: inputs.secrets.testSecret.contents
uid: 42 uid: 42
gid: 24 gid: 24
mask: 0o666 mask: 0o666

4
tests/tasks/exec/mount_service.cue
View File

@ -5,7 +5,7 @@ import (
) )
engine.#Plan & { engine.#Plan & {
context: services: dockerSocket: unix: "/var/run/docker.sock" proxy: dockerSocket: unix: "/var/run/docker.sock"
actions: { actions: {
image: engine.#Pull & { image: engine.#Pull & {
@ -21,7 +21,7 @@ engine.#Plan & {
input: imageWithDocker.output input: imageWithDocker.output
mounts: docker: { mounts: docker: {
dest: "/var/run/docker.sock" dest: "/var/run/docker.sock"
contents: context.services.dockerSocket.service contents: proxy.dockerSocket.service
} }
args: ["docker", "info"] args: ["docker", "info"]
} }

4
tests/tasks/pull/pull_auth.cue
View File

@ -5,13 +5,13 @@ import (
) )
engine.#Plan & { engine.#Plan & {
context: secrets: dockerHubToken: envvar: "DOCKERHUB_TOKEN" inputs: secrets: dockerHubToken: envvar: "DOCKERHUB_TOKEN"
actions: pull: engine.#Pull & { actions: pull: engine.#Pull & {
source: "daggerio/ci-test:private-pull@sha256:c74f1b1166784193ea6c8f9440263b9be6cae07dfe35e32a5df7a31358ac2060" source: "daggerio/ci-test:private-pull@sha256:c74f1b1166784193ea6c8f9440263b9be6cae07dfe35e32a5df7a31358ac2060"
auth: [{ auth: [{
target: "daggerio/ci-test:private-pull" target: "daggerio/ci-test:private-pull"
username: "daggertest" username: "daggertest"
secret: context.secrets.dockerHubToken.contents secret: inputs.secrets.dockerHubToken.contents
}] }]
} & { } & {
// assert result // assert result