forjar 1.4.2

Rust-native Infrastructure as Code — bare-metal first, BLAKE3 state, provenance tracing
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84

//! FJ-030: Docker container resource handler.
//!
//! Manages Docker containers as resources: pull, run, stop, remove.
//! This is distinct from container *transport* (FJ-021) — this manages
//! containers deployed ON machines, not containers used AS machines.

use crate::core::types::Resource;

/// Generate shell script to check if a container is running.
pub fn check_script(resource: &Resource) -> String {
    let name = resource.name.as_deref().unwrap_or("unknown");
    format!(
        "docker inspect -f '{{{{.State.Running}}}}' '{name}' 2>/dev/null && echo 'exists:{name}' || echo 'missing:{name}'"
    )
}

/// Generate shell script to manage a container.
pub fn apply_script(resource: &Resource) -> String {
    let name = resource.name.as_deref().unwrap_or("unknown");
    let state = resource.state.as_deref().unwrap_or("running");
    let image = resource.image.as_deref().unwrap_or("unknown");

    match state {
        "absent" => format!(
            "set -euo pipefail\n\
             docker stop '{name}' 2>/dev/null || true\n\
             docker rm '{name}' 2>/dev/null || true"
        ),
        "stopped" => format!(
            "set -euo pipefail\n\
             docker stop '{name}' 2>/dev/null || true"
        ),
        _ => {
            // "running" or "present"
            let mut lines = vec![
                "set -euo pipefail".to_string(),
                format!("docker pull '{}'", image),
            ];

            // Stop and remove existing container if it exists
            lines.push(format!("docker stop '{name}' 2>/dev/null || true"));
            lines.push(format!("docker rm '{name}' 2>/dev/null || true"));

            // Build run command
            let mut run_args = vec!["docker run -d".to_string()];
            run_args.push(format!("--name '{name}'"));

            if let Some(ref restart) = resource.restart {
                run_args.push(format!("--restart '{restart}'"));
            }

            for port in &resource.ports {
                run_args.push(format!("-p '{port}'"));
            }

            for env in &resource.environment {
                run_args.push(format!("-e '{env}'"));
            }

            for vol in &resource.volumes {
                run_args.push(format!("-v '{vol}'"));
            }

            run_args.push(format!("'{image}'"));

            // Append command if specified
            if let Some(ref cmd) = resource.command {
                run_args.push(cmd.clone());
            }

            lines.push(run_args.join(" \\\n  "));

            lines.join("\n")
        }
    }
}

/// Generate shell to query container state (for BLAKE3 hashing).
pub fn state_query_script(resource: &Resource) -> String {
    let name = resource.name.as_deref().unwrap_or("unknown");
    format!(
        "docker inspect '{name}' 2>/dev/null && echo 'container={name}' || echo 'container=MISSING:{name}'"
    )
}