tools to support builds combining gopass, terraform, dda-pallet, aws & hetzner-cloud

Navigation

Verified details

These details have been verified by PyPI
Maintainers
Avatar for dda from gravatar.com dda Avatar for quietschenetchen from gravatar.com quietschenetchen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache Software License)
  • Author: meissa GmbH
  • Requires: Python >=3.8
Classifiers

Project description

dda-devops-build

Slack | team@social.meissa-gmbh.de team@social.meissa-gmbh.de | Website & Blog

release prod

dda-devops-build provide a environment to tie several DevOps tools together for easy interoperation. Supported tools are:

  • aws with
    • simple api-key auth
    • mfa & assume-role auth
  • hetzner with simple api-key auth
  • terraform v0.11, v0.12 supporting
    • local file backends
    • s3 backends
  • docker / dockerhub
  • user / team credentials managed by gopass
  • dda-pallet

Setup

Ensure that yout python3 version is at least Python 3.7!

sudo apt install python3-pip
pip3 install pip3 --upgrade
pip3 install pybuilder ddadevops deprecation
export PATH=$PATH:~/.local/bin

# in case of using terraform
pip3 install dda-python-terraform packaging

# in case of using AwsMixin
pip3 install boto3

# in case of using AwsMfaMixin
pip3 install boto3 mfa

Example Build

lets assume the following project structure

my-project
   | -> my-module
   |       | -> build.py
   |       | -> some-terraform.tf
   | -> an-other-module
   | -> target  (here will the build happen)
   |       | -> ...

from pybuilder.core import task, init
from ddadevops import *

name = 'my-project'
MODULE = 'my-module'
PROJECT_ROOT_PATH = '..'

class MyBuild(DevopsTerraformBuild):
    pass


@init
def initialize(project):
    project.build_depends_on('ddadevops>=0.5.0')
    account_name = 'my-aws-account-name'
    account_id = 'my-aws-account-id'
    stage = 'my stage i.e. dev|test|prod'
    additional_vars = {'var_to_use_insied_terraform': '...'}
    additional_var_files = ['variable-' + account_name + '-' + stage + '.tfvars']
    config = create_devops_terraform_build_config(stage, PROJECT_ROOT_PATH,
                                                  MODULE, additional_vars,
                                                  additional_tfvar_files=additional_var_files)
    build = MyBuild(project, config)
    build.initialize_build_dir()


@task
def plan(project):
    build = get_devops_build(project)
    build.plan()


@task
def apply(project):
    build = get_devops_build(project)
    build.apply()

@task
def destroy(project):
    build = get_devops_build(project)
    build.destroy()

@task
def tf_import(project):
    build = get_devops_build(project)
    build.tf_import('aws_resource.choosen_name', 'the_aws_id')

Feature aws-backend

Will use a file backend.dev.live.properties where dev is the [account-name], live is the [stage].

the backend.dev.live.properties file content:

key = ".."
region = "the aws region"
profile = "the profile used for aws"
bucket = "the s3 bucket name"
kms_key_id = "the aws key id"

the build.py file content:

class MyBuild(AwsBackendPropertiesMixin, DevopsTerraformBuild):
    pass


@init
def initialize(project):
    project.build_depends_on('ddadevops>=1.0')
    account_name = 'my-aws-account-name'
    account_id = 'my-aws-account-id'
    stage = 'my stage i.e. dev|test|prod'
    additional_vars = {}
    config = create_devops_terraform_build_config(stage, PROJECT_ROOT_PATH,
                                                  MODULE, additional_vars)
    config = add_aws_backend_properties_mixin_config(config, account_name)
    build = MyBuild(project, config)
    build.initialize_build_dir()

Feature aws-mfa-assume-role

In order to use aws assume role in combination with the mfa-tool (pip install mfa):

the build.py file content:

class MyBuild(class MyBuild(AwsMfaMixin, DevopsTerraformBuild):
    pass


@init
def initialize(project):
    project.build_depends_on('ddadevops>=1.0')
    account_name = 'my-aws-account-name'
    account_id = 'my-aws-account-id'
    stage = 'my stage i.e. dev|test|prod'
    additional_vars = {}
    config = create_devops_terraform_build_config(stage, PROJECT_ROOT_PATH,
                                                  MODULE, additional_vars)
    config = add_aws_backend_properties_mixin_config(config, account_name)
    config = add_aws_mfa_mixin_config(config, account_id, 'eu-central-1',
                                      mfa_role='my_developer_role',
                                      mfa_account_prefix='company-',
                                      mfa_login_account_suffix='users_are_defined_here')
    build = MyBuild(project, config)
    build.initialize_build_dir()

@task
def access(project):
    build = get_devops_build(project)
    build.get_mfa_session()

Feature DdaImageBuild

The docker build supports image building, tagging, testing and login to dockerhost. For bash based builds we support often used script-parts as predefined functions see install_functions.sh.

A full working example: doc/example/50_docker_module

Feature AwsRdsPgMixin

The AwsRdsPgMixin provides

  • execute_pg_rds_sql - function will optionally resolve dns-c-names for trusted ssl-handshakes
  • alter_db_user_password
  • add_new_user
  • deactivate_user

the build.py file content:

class MyBuild(..., AwsRdsPgMixin):
    pass


@init
def initialize(project):
    project.build_depends_on('ddadevops>=1.0')

    ...
    config = add_aws_rds_pg_mixin_config(config,
                                         stage + "-db.bcsimport.kauf." + account_name + ".breuni.de",
                                         "kauf_bcsimport",
                                         rds_resolve_dns=True,)
    build = MyBuild(project, config)
    build.initialize_build_dir()

@task
def rotate_credentials_in(project):
    build = get_devops_build(project)
    build.alter_db_user_password('/postgres/support')
    build.alter_db_user_password('/postgres/superuser')
    build.add_new_user('/postgres/superuser', '/postgres/app', 'pg_group_role')


@task
def rotate_credentials_out(project):
    build = get_devops_build(project)
    build.deactivate_user('/postgres/superuser', 'old_user_name')

Releasing and updating

Publish snapshot

  1. every push will be published as dev-dependency

Release

adjust version no in build.py to release version no.
git commit -am "release"
git tag -am "release" [release version no]
git push --follow-tags
increase version no in build.py
git commit -am "version bump"
git push
pip3 install --upgrade --user ddadevops

License

Copyright © 2021 meissa GmbH Licensed under the Apache License, Version 2.0 (the "License")

Project details

Verified details

These details have been verified by PyPI
Maintainers
Avatar for dda from gravatar.com dda Avatar for quietschenetchen from gravatar.com quietschenetchen

Unverified details

These details have not been verified by PyPI
Project links
Meta
  • License: Apache Software License (Apache Software License)
  • Author: meissa GmbH
  • Requires: Python >=3.8
Classifiers

Release history Release notifications | RSS feed

4.13.1

4.13.0

4.12.1

4.12.1.dev0 pre-release

4.12.0

4.11.10

4.11.9

4.11.8

4.11.7

4.11.6

4.11.5

4.11.5.dev0 pre-release

4.11.4

4.11.3

4.11.2

4.11.0

4.10.8

4.10.7

4.10.6

4.10.5

4.10.4

4.10.3

4.10.2

4.10.1

4.10.0

4.9.3

4.9.2

4.9.1

4.9.0

4.8.0

4.7.4

4.7.3

4.7.2

4.7.1

4.7.1.dev1 pre-release

4.7.1.dev0 pre-release

4.7.0

4.5.5.dev0 pre-release

4.5.4

4.5.3

4.5.2

4.5.2.dev0 pre-release

4.5.1

4.5.0

4.4.1.dev1 pre-release

4.4.1.dev0 pre-release

4.4.0

4.3.2.dev5 pre-release

4.3.2.dev4 pre-release

4.3.2.dev3 pre-release

4.3.2.dev2 pre-release

4.3.2.dev1 pre-release

4.3.2.dev0 pre-release

4.3.1

4.3.0

4.2.0

4.1.0

4.1.0.dev2 pre-release

4.1.0.dev1 pre-release

4.0.17.dev4 pre-release

4.0.17.dev3 pre-release

4.0.17.dev2 pre-release

4.0.17.dev1 pre-release

4.0.16

4.0.16.dev0 pre-release

4.0.15

4.0.15.dev1 pre-release

4.0.15.dev0 pre-release

4.0.14

4.0.13

4.0.12

4.0.12.dev0 pre-release

4.0.11

4.0.11.dev1 pre-release

4.0.10

4.0.10.dev1 pre-release

4.0.9

4.0.8.dev1 pre-release

4.0.6

4.0.6.dev0 pre-release

4.0.2

4.0.0

4.0.0.dev79 pre-release

4.0.0.dev78 pre-release

4.0.0.dev77 pre-release

4.0.0.dev76 pre-release

4.0.0.dev75 pre-release

4.0.0.dev74 pre-release

4.0.0.dev73 pre-release

4.0.0.dev72 pre-release

4.0.0.dev71 pre-release

4.0.0.dev70 pre-release

4.0.0.dev69 pre-release

4.0.0.dev68 pre-release

4.0.0.dev67 pre-release

4.0.0.dev66 pre-release

4.0.0.dev65 pre-release

4.0.0.dev64 pre-release

4.0.0.dev63 pre-release

4.0.0.dev62 pre-release

4.0.0.dev61 pre-release

4.0.0.dev60 pre-release

4.0.0.dev59 pre-release

4.0.0.dev58 pre-release

4.0.0.dev57 pre-release

4.0.0.dev56 pre-release

4.0.0.dev55 pre-release

4.0.0.dev54 pre-release

4.0.0.dev53 pre-release

4.0.0.dev52 pre-release

4.0.0.dev51 pre-release

4.0.0.dev50 pre-release

4.0.0.dev49 pre-release

4.0.0.dev48 pre-release

4.0.0.dev47 pre-release

4.0.0.dev46 pre-release

4.0.0.dev45 pre-release

4.0.0.dev44 pre-release

4.0.0.dev43 pre-release

4.0.0.dev42 pre-release

4.0.0.dev41 pre-release

4.0.0.dev40 pre-release

4.0.0.dev39 pre-release

4.0.0.dev38 pre-release

4.0.0.dev37 pre-release

4.0.0.dev36 pre-release

4.0.0.dev35 pre-release

4.0.0.dev34 pre-release

4.0.0.dev33 pre-release

4.0.0.dev32 pre-release

4.0.0.dev31 pre-release

4.0.0.dev30 pre-release

4.0.0.dev29 pre-release

This version

4.0.0.dev28 pre-release

4.0.0.dev27 pre-release

4.0.0.dev26 pre-release

4.0.0.dev25 pre-release

4.0.0.dev24 pre-release

4.0.0.dev23 pre-release

4.0.0.dev22 pre-release

4.0.0.dev21 pre-release

4.0.0.dev20 pre-release

4.0.0.dev19 pre-release

4.0.0.dev18 pre-release

4.0.0.dev17 pre-release

4.0.0.dev16 pre-release

4.0.0.dev15 pre-release

4.0.0.dev14 pre-release

4.0.0.dev13 pre-release

4.0.0.dev12 pre-release

4.0.0.dev11 pre-release

4.0.0.dev10 pre-release

4.0.0.dev9 pre-release

4.0.0.dev8 pre-release

4.0.0.dev7 pre-release

4.0.0.dev6 pre-release

4.0.0.dev4 pre-release

4.0.0.dev3 pre-release

4.0.0.dev2 pre-release

4.0.0.dev1 pre-release

4.0.0.dev0 pre-release

3.2.0.dev0 pre-release

3.1.3

3.1.2

3.1.0

3.0.18

3.0.17

3.0.16

3.0.15

3.0.14

3.0.13

3.0.12

3.0.11

3.0.10

3.0.9

3.0.8

3.0.7

3.0.6

3.0.3

3.0.2

3.0.1

3.0.0

2.0.7

2.0.6

2.0.5

2.0.4

2.0.2

2.0.1

2.0.0

1.0.3

1.0.2

1.0.1

1.0.0

0.15.6

0.15.5

0.15.2.dev0 pre-release

0.15.1

0.15.1.dev0 pre-release

0.15.0

0.14.5.dev4 pre-release

0.14.5.dev3 pre-release

0.14.5.dev2 pre-release

0.14.5.dev1 pre-release

0.14.3.dev0 pre-release

0.14.1

0.14.0

0.13.3

0.13.1

0.13.0

0.12.7

0.12.6

0.12.5

0.12.4

0.12.2

0.12.1

0.12.0

0.11.4

0.11.3

0.11.2

0.11.1

0.11.0

0.10.0

0.9.5

0.9.4

0.9.3

0.9.2

0.9.1

0.9.0

0.8.19

0.8.17

0.8.17.dev20200708131532 pre-release

0.8.16

0.8.15

0.8.15.dev20200707094009 pre-release

0.8.15.dev20200707091549 pre-release

0.8.14

0.8.14.dev20200707091208 pre-release

0.8.14.dev20200706082718 pre-release

0.8.13

0.8.13.dev20200706082138 pre-release

0.8.13.dev20200706075128 pre-release

0.8.12

0.8.11.dev20200706072608 pre-release

0.8.11.dev20200703135048 pre-release

0.8.11.dev20200703135042 pre-release

0.8.10.dev20200703134732 pre-release

0.8.9.dev20200703123845 pre-release

0.8.9.dev20200703123457 pre-release

0.8.9.dev20200703123239 pre-release

0.8.9.dev20200703122736 pre-release

0.8.9.dev20200703122245 pre-release

0.8.8.dev20200703121758 pre-release

0.8.8.dev20200703121618 pre-release

0.8.7

0.8.7.dev20200702111651 pre-release

0.8.6.dev20200702105236 pre-release

0.8.5

0.8.5.dev20200702104459 pre-release

0.8.5.dev20200702103737 pre-release

0.8.5.dev20200702102243 pre-release

0.8.5.dev20200702094259 pre-release

0.8.4

0.8.3

0.8.2

0.8.1

0.8.1.dev20200603174240 pre-release

0.8.0

0.7.2.dev20200603094825 pre-release

0.7.2.dev20200603094623 pre-release

0.7.2.dev20200603094348 pre-release

0.7.2.dev20200603094142 pre-release

0.7.2.dev20200603093642 pre-release

0.7.2.dev20200603093410 pre-release

0.7.2.dev20200603093225 pre-release

0.7.2.dev20200603093039 pre-release

0.7.2.dev20200603092849 pre-release

0.7.2.dev20200603092745 pre-release

0.7.2.dev20200603083731 pre-release

0.7.2.dev20200603082812 pre-release

0.7.2.dev20200602080146 pre-release

0.7.1

0.7.1.dev20200508174634 pre-release

0.7.1.dev20200508174155 pre-release

0.7.0

0.7.0.dev20200501152011 pre-release

0.7.0.dev20200501151017 pre-release

0.6.1

0.6.1.dev0 pre-release

0.6.0

0.6.0.dev11 pre-release

0.6.0.dev10 pre-release

0.6.0.dev9 pre-release

0.6.0.dev8 pre-release

0.6.0.dev7 pre-release

0.6.0.dev6 pre-release

0.6.0.dev5 pre-release

0.6.0.dev4 pre-release

0.6.0.dev3 pre-release

0.6.0.dev2 pre-release

0.6.0.dev1 pre-release

0.6.0.dev0 pre-release

0.5.1.dev0 pre-release

0.5.0

0.5.0.dev2 pre-release

0.5.0.dev1 pre-release

0.5.0.dev0 pre-release

0.4.3.dev2 pre-release

0.4.3.dev1 pre-release

0.4.3.dev0 pre-release

0.4.2

0.4.2.dev27 pre-release

0.4.2.dev26 pre-release

0.4.2.dev25 pre-release

0.4.2.dev24 pre-release

0.4.2.dev23 pre-release

0.4.2.dev22 pre-release

0.4.2.dev21 pre-release

0.4.2.dev20 pre-release

0.4.2.dev19 pre-release

0.4.2.dev18 pre-release

0.4.2.dev17 pre-release

0.4.2.dev16 pre-release

0.4.2.dev15 pre-release

0.4.2.dev14 pre-release

0.4.2.dev13 pre-release

0.4.2.dev12 pre-release

0.4.2.dev11 pre-release

0.4.2.dev10 pre-release

0.4.2.dev9 pre-release

0.4.2.dev8 pre-release

0.4.2.dev7 pre-release

0.4.2.dev6 pre-release

0.4.2.dev5 pre-release

0.4.2.dev4 pre-release

0.4.2.dev3 pre-release

0.4.2.dev2 pre-release

0.4.2.dev1 pre-release

0.4.2.dev0 pre-release

0.4.1

0.4.1.dev36 pre-release

0.4.1.dev35 pre-release

0.4.1.dev34 pre-release

0.4.1.dev33 pre-release

0.4.1.dev32 pre-release

0.4.1.dev31 pre-release

0.4.1.dev30 pre-release

0.4.1.dev29 pre-release

0.4.1.dev28 pre-release

0.4.1.dev27 pre-release

0.4.1.dev26 pre-release

0.4.1.dev25 pre-release

0.4.1.dev24 pre-release

0.4.1.dev23 pre-release

0.4.1.dev22 pre-release

0.4.1.dev21 pre-release

0.4.1.dev20 pre-release

0.4.1.dev19 pre-release

0.4.1.dev18 pre-release

0.4.1.dev17 pre-release

0.4.1.dev16 pre-release

0.4.1.dev15 pre-release

0.4.1.dev14 pre-release

0.4.1.dev13 pre-release

0.4.1.dev12 pre-release

0.4.1.dev11 pre-release

0.4.1.dev10 pre-release

0.4.1.dev9 pre-release

0.4.1.dev8 pre-release

0.4.1.dev7 pre-release

0.4.1.dev6 pre-release

0.4.1.dev5 pre-release

0.4.1.dev4 pre-release

0.4.1.dev3 pre-release

0.4.1.dev2 pre-release

0.4.1.dev1 pre-release

0.4.1.dev0 pre-release

0.4.0

0.4.0.dev21 pre-release

0.4.0.dev20 pre-release

0.4.0.dev19 pre-release

0.4.0.dev18 pre-release

0.4.0.dev17 pre-release

0.4.0.dev16 pre-release

0.4.0.dev15 pre-release

0.4.0.dev14 pre-release

0.4.0.dev13 pre-release

0.4.0.dev12 pre-release

0.4.0.dev11 pre-release

0.4.0.dev10 pre-release

0.4.0.dev9 pre-release

0.4.0.dev8 pre-release

0.4.0.dev7 pre-release

0.4.0.dev6 pre-release

0.4.0.dev5 pre-release

0.4.0.dev4 pre-release

0.4.0.dev3 pre-release

0.4.0.dev2 pre-release

0.4.0.dev1 pre-release

0.4.0.dev0 pre-release

0.3.7.dev3 pre-release

0.3.7.dev2 pre-release

0.3.7.dev1 pre-release

0.3.7.dev0 pre-release

0.3.6

0.3.5.dev4 pre-release

0.3.5.dev3 pre-release

0.3.5.dev2 pre-release

0.3.5.dev1 pre-release

0.3.5.dev0 pre-release

0.3.4

0.3.4.dev5 pre-release

0.3.4.dev4 pre-release

0.3.4.dev3 pre-release

0.3.4.dev2 pre-release

0.3.4.dev1 pre-release

0.3.4.dev0 pre-release

0.3.3

0.3.2

0.3.1

0.3.0

0.3.0.dev6 pre-release

0.3.0.dev5 pre-release

0.3.0.dev4 pre-release

0.3.0.dev3 pre-release

0.3.0.dev2 pre-release

0.3.0.dev1 pre-release

0.2.0

0.1.13

0.1.12

0.1.11

0.1.10

0.1.8

0.1.7

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

ddadevops-4.0.0.dev28.tar.gz (30.2 kB view details)

Uploaded Source

Built Distribution

ddadevops-4.0.0.dev28-py3-none-any.whl (41.0 kB view details)

Uploaded Python 3

File details

Details for the file ddadevops-4.0.0.dev28.tar.gz.

File metadata

  • Download URL: ddadevops-4.0.0.dev28.tar.gz
  • Upload date:
  • Size: 30.2 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/4.0.2 CPython/3.11.2

File hashes

Hashes for ddadevops-4.0.0.dev28.tar.gz
Algorithm Hash digest
SHA256 67053b3a29d5046fc071be9de5d78807cb36c841412067e6563559bfbdae7526
MD5 f9b98daf0861dbae81822ab8b9e77d47
BLAKE2b-256 ccabd5f2163da74262edaeed43d169795c5e3775e086d47304b976188741afaf

See more details on using hashes here.

File details

Details for the file ddadevops-4.0.0.dev28-py3-none-any.whl.

File metadata

File hashes

Hashes for ddadevops-4.0.0.dev28-py3-none-any.whl
Algorithm Hash digest
SHA256 1bd63e01f78b4b20b1314d5cdada9a098ea7235c0c1c308490b7ccb643521f06
MD5 49e8a0c54b92fddbf2b81dd0b4b4b141
BLAKE2b-256 3045222052bfb328b6d39781b91cee19265937e7f0e3862093cba4f13354eedd

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page