ockam_command 0.150.0

End-to-end encryption and mutual authentication for distributed applications.
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156

use crate::node::config::ENROLLMENT_TICKET;
use crate::run::parser::building_blocks::{ArgKey, ArgValue};
use colorful::Colorful;
use miette::{miette, IntoDiagnostic, Result};
use ockam_api::colors::color_primary;
use ockam_api::fmt_warn;
use serde::{Deserialize, Serialize};
use std::collections::BTreeMap;
use tracing::warn;

#[derive(Debug, PartialEq, Serialize, Deserialize)]
pub struct Variables {
    pub variables: Option<BTreeMap<ArgKey, ArgValue>>,
}

impl Variables {
    pub fn expand(contents: &mut String) -> Result<()> {
        let self_ = serde_yaml::from_str::<Variables>(contents).into_diagnostic()?;
        self_.load()?;
        *contents = shellexpand::env(&contents)
            .map(|c| c.to_string())
            .map_err(|e| {
                miette!(
                    "Failed to resolve variable '{}': {}",
                    color_primary(&e.var_name),
                    e.cause
                )
            })?;
        self_.unload()?;
        Ok(())
    }

    /// Loads the variables into the environment, giving preference to variables set externally.
    /// That is, if one of the variables already exists, it will use the existing value.
    fn load(&self) -> Result<()> {
        if let Some(vars) = &self.variables {
            for (key, value) in vars {
                if std::env::var(key.as_str()).is_ok() {
                    warn!("Loading variable '{key}' from environment");
                    eprintln!("{}", fmt_warn!("Loading variable '{key}' from environment"));
                    continue;
                }

                let string_value = match value {
                    ArgValue::List(_) => {
                        return Err(miette!(
                            "List values are not supported for variable '{key}'"
                        ));
                    }
                    ArgValue::String(value) => value.to_string(),
                    ArgValue::Bool(value) => value.to_string(),
                    ArgValue::Int(value) => value.to_string(),
                };

                if string_value.is_empty() {
                    return Err(miette!("Empty value for variable '{key}'"));
                }
                std::env::set_var(key.as_str(), string_value);
            }
        }
        Ok(())
    }

    /// Unloads the env vars from the variables section and other special env variables
    /// once the configuration file has been expanded with their values.
    fn unload(&self) -> Result<()> {
        // Unset passed variables
        if let Some(vars) = &self.variables {
            for key in vars.keys() {
                std::env::remove_var(key.as_str());
            }
        }

        // Unset the `ENROLLMENT_TICKET` env var, so that the `node create` command
        // doesn't try to run in config mode in a loop.
        let special_vars = vec![ENROLLMENT_TICKET];
        for var in special_vars {
            std::env::remove_var(var);
        }
        Ok(())
    }
}

#[cfg(test)]
mod tests {
    use super::*;
    use serial_test::serial;

    #[test]
    #[serial]
    fn expand_variables() {
        std::env::set_var("MY_ENV_VAR", "my_env_value");
        let mut input = r#"
            variables:
              var_s: $MY_ENV_VAR
              var_b: true
              var_i: 1

            nodes:
              - $MY_ENV_VAR
              - is_${var_b}
              - num_${var_i}
        "#
        .to_string();
        let expected = r#"
            variables:
              var_s: my_env_value
              var_b: true
              var_i: 1

            nodes:
              - my_env_value
              - is_true
              - num_1
        "#;
        Variables::expand(&mut input).unwrap();
        assert_eq!(&input, expected);
    }

    #[test]
    #[serial]
    fn give_preference_to_external_variables() {
        std::env::set_var("my_var", "external");
        let mut input = r#"
            variables:
              my_var: local

            nodes:
              - ${my_var}
        "#
        .to_string();
        let expected = r#"
            variables:
              my_var: local

            nodes:
              - external
        "#;
        Variables::expand(&mut input).unwrap();
        assert_eq!(&input, expected);
    }

    #[test]
    fn fail_if_unknown_variable() {
        let mut input = r#"
            variables:
              my_var: local

            nodes:
              - is_${other_var}
        "#
        .to_string();
        let res = Variables::expand(&mut input);
        assert!(res.is_err());
    }
}