first implementation

Author: s-dwinter

README.md

@@ -1,3 +1,28 @@
 # Yashiro
 
 Yashiro is a templating engine with the external stores.
+
+## Service
+
+AWS
+
+* [Systems Manager Parameter Store](https://docs.aws.amazon.com/systems-manager/)
+* [Secrets Manager](https://docs.aws.amazon.com/secretsmanager/)
+
+## Usage
+
+See [Godoc](https://pkg.go.dev/github.com/dwango/yashiro).
+
+```sh
+go get github.com/dwango/yashiro
+```
+
+## CLI Tool
+
+### Install
+
+Download binary from [release page](https://github.com/dwango/yashiro/releases).
+
+### Example
+
+See [example](./example/).

alias.go

@@ -0,0 +1,33 @@
+/**
+ * Copyright 2023 DWANGO Co., Ltd.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package yashiro
+
+import (
+	"github.com/dwango/yashiro/pkg/config"
+	"github.com/dwango/yashiro/pkg/engine"
+)
+
+// Engine initializes external store client and template.
+type Engine = engine.Engine
+
+var (
+	// NewConfigFromFile returns a new Config from file.
+	NewConfigFromFile = config.NewFromFile
+
+	// NewEngine returns a new Engine.
+	NewEngine = engine.New
+)

cmd/ysr/main.go

@@ -0,0 +1,37 @@
+/**
+ * Copyright 2023 DWANGO Co., Ltd.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package main
+
+import (
+	"context"
+	"fmt"
+	"os"
+	"os/signal"
+
+	"github.com/dwango/yashiro/internal/cmd"
+)
+
+func main() {
+	ctx, cancel := signal.NotifyContext(context.Background(), os.Interrupt)
+	defer cancel()
+
+	if err := cmd.New().ExecuteContext(ctx); err != nil {
+		fmt.Fprintln(os.Stderr, err)
+		cancel()
+		os.Exit(1)
+	}
+}

example/README.md

@@ -0,0 +1,78 @@
+# CLI Example
+
+Example of using AWS Systems Parameter Store.
+
+## Requires
+
+* aws account
+* aws cli
+* `ysr` binary
+
+## Setup
+
+```sh
+$ export AWS_PROFILE=$profile_name # if need
+$ aws ssm put-parameter --name '/yashiro/example' --value '{"imageTag": "latest", "roleArn": "arn:aws:iam::012345678901:role/PodRole29A92600-1NSKGEZRCWPNU"}' --type String
+{
+    "Version": 1,
+    "Tier": "Standard"
+}
+$ aws ssm put-parameter --name '/yashiro/example/secure' --value 'password' --type SecureString
+{
+    "Version": 1,
+    "Tier": "Standard"
+}
+```
+
+## Execute
+
+```sh
+$ ysr template -c ./yashiro.yaml example.yaml.tmpl
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: example
+  labels:
+    app: example
+data:
+  db_password: cGFzc3dvcmQ=
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: example
+  annotations:
+    eks.amazonaws.com/role-arn: arn:aws:iam::012345678901:role/PodRole29A92600-1NSKGEZRCWPNU
+  labels:
+    app: example
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: example
+spec:
+  selector:
+    matchLabels:
+      app: example
+  template:
+    metadata:
+      labels:
+        app: example
+    spec:
+      serviceAccountName: example
+      containers:
+      - name: hello-world
+        image: hello-world:latest
+        resources:
+          limits:
+            memory: "128Mi"
+            cpu: "500m"
+```
+
+## Teardown
+
+```sh
+aws ssm delete-parameter --name '/yashiro/example'
+aws ssm delete-parameter --name '/yashiro/example/secure'
+```

example/example.yaml.tmpl

@@ -0,0 +1,40 @@
+---
+apiVersion: v1
+kind: Secret
+metadata:
+  name: example
+  labels:
+    app: example
+data:
+  db_password: {{ .exampleSecure | b64enc }}
+---
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  name: example
+  annotations:
+    eks.amazonaws.com/role-arn: {{ .example.roleArn }}
+  labels:
+    app: example
+---
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: example
+spec:
+  selector:
+    matchLabels:
+      app: example
+  template:
+    metadata:
+      labels:
+        app: example
+    spec:
+      serviceAccountName: example
+      containers:
+      - name: hello-world
+        image: hello-world:{{ .example.imageTag }}
+        resources:
+          limits:
+            memory: "128Mi"
+            cpu: "500m"

example/yashiro.yaml

@@ -0,0 +1,9 @@
+---
+aws:
+  parameter_store:
+    - name: /yashiro/example
+      ref: example
+      is_json: true
+    - name: /yashiro/example/secure
+      ref: exampleSecure
+      decryption: true

example_test.go

@@ -0,0 +1,63 @@
+/**
+ * Copyright 2023 DWANGO Co., Ltd.
+ *
+ * Licensed under the Apache License, Version 2.0 (the "License");
+ * you may not use this file except in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ *     http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+ * See the License for the specific language governing permissions and
+ * limitations under the License.
+ */
+
+package yashiro_test
+
+import (
+	"context"
+	"log"
+	"os"
+
+	awsconfig "github.com/aws/aws-sdk-go-v2/config"
+	"github.com/dwango/yashiro"
+	"github.com/dwango/yashiro/pkg/config"
+)
+
+func Example() {
+	ctx := context.TODO()
+
+	sdkConfig, err := awsconfig.LoadDefaultConfig(ctx)
+	if err != nil {
+		log.Fatalf("failed to load config: %s", err)
+	}
+
+	refName := "example"
+	cfg := &config.Config{
+		Aws: &config.AwsConfig{
+			ParameterStoreValues: []config.AwsParameterStoreValueConfig{
+				{
+					ValueConfig: config.ValueConfig{
+						Name:   "/example",
+						Ref:    &refName,
+						IsJSON: true,
+					},
+				},
+			},
+			SdkConfig: &sdkConfig,
+		},
+	}
+
+	eng, err := yashiro.NewEngine(cfg)
+	if err != nil {
+		log.Fatalf("failed to create engine: %s", err)
+	}
+
+	text := `This is example code. The message is {{ .example.message }}.`
+
+	if err := eng.Render(ctx, text, os.Stdout); err != nil {
+		log.Fatalf("failed to render text: %s", err)
+	}
+}

go.mod

@@ -0,0 +1,40 @@
+module github.com/dwango/yashiro
+
+go 1.21
+
+require (
+	github.com/Masterminds/sprig/v3 v3.2.3
+	github.com/aws/aws-sdk-go-v2 v1.22.1
+	github.com/aws/aws-sdk-go-v2/config v1.22.1
+	github.com/aws/aws-sdk-go-v2/service/secretsmanager v1.23.0
+	github.com/aws/aws-sdk-go-v2/service/ssm v1.42.0
+	github.com/spf13/cobra v1.8.0
+	sigs.k8s.io/yaml v1.4.0
+)
+
+require (
+	github.com/Masterminds/goutils v1.1.1 // indirect
+	github.com/Masterminds/semver/v3 v3.2.0 // indirect
+	github.com/aws/aws-sdk-go-v2/credentials v1.15.1 // indirect
+	github.com/aws/aws-sdk-go-v2/feature/ec2/imds v1.14.2 // indirect
+	github.com/aws/aws-sdk-go-v2/internal/configsources v1.2.1 // indirect
+	github.com/aws/aws-sdk-go-v2/internal/endpoints/v2 v2.5.1 // indirect
+	github.com/aws/aws-sdk-go-v2/internal/ini v1.5.0 // indirect
+	github.com/aws/aws-sdk-go-v2/service/internal/presigned-url v1.10.1 // indirect
+	github.com/aws/aws-sdk-go-v2/service/sso v1.17.0 // indirect
+	github.com/aws/aws-sdk-go-v2/service/ssooidc v1.19.0 // indirect
+	github.com/aws/aws-sdk-go-v2/service/sts v1.25.0 // indirect
+	github.com/aws/smithy-go v1.16.0 // indirect
+	github.com/google/uuid v1.1.1 // indirect
+	github.com/huandu/xstrings v1.3.3 // indirect
+	github.com/imdario/mergo v0.3.11 // indirect
+	github.com/inconshreveable/mousetrap v1.1.0 // indirect
+	github.com/jmespath/go-jmespath v0.4.0 // indirect
+	github.com/mitchellh/copystructure v1.0.0 // indirect
+	github.com/mitchellh/reflectwalk v1.0.0 // indirect
+	github.com/shopspring/decimal v1.2.0 // indirect
+	github.com/spf13/cast v1.3.1 // indirect
+	github.com/spf13/pflag v1.0.5 // indirect
+	golang.org/x/crypto v0.3.0 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+)