Skip to content
This repository was archived by the owner on Oct 14, 2024. It is now read-only.

docs: multiple go modules rfc #1105

Merged
merged 5 commits into from
Jan 24, 2024
Merged

docs: multiple go modules rfc #1105

Changes from 3 commits
Commits
Show all changes
5 commits
Select commit Hold shift + click to select a range
d04d9b1
docs: multiple go modules rfc
paralta Jan 17, 2024
0cb6aab
docs: multiple go modules rfc review
paralta Jan 18, 2024
b6872e9
docs: multiple go modules rfc further review
paralta Jan 19, 2024
599ab4c
docs: multiple go modules rfc extend release instructions
paralta Jan 23, 2024
cf7dd57
docs: multiple go modules rfc add test env module
paralta Jan 23, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
188 changes: 188 additions & 0 deletions rfc/multiple-go-modules.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,188 @@
# [RFC] Split VMClarity into multiple go modules

*Note: this RFC template follows HashiCrop RFC format described [here](https://works.hashicorp.com/articles/rfc-template)*

| | |
| ------------- | ------------------------------------------- |
| **Created** | 2024-01-17 |
| **Status** | **WIP** \| InReview \| Approved \| Obsolete |
| **Owner** | paralta |
| **Approvers** | vmclarity-maintainers |

---

This RFC proposes a new project structure which splits the main module into multiple modules to allow us to version modules separately and reduce dependencies.

## Background

VMClarity consists of a single module containing all the packages required to run VMClarity. However, there is a clear boundary between the following packages: api, cli, orchestrator, ui and uibackend.

The build and deployment of these packages is already performed separately and independently.

## Proposal

The proposal here is to split the VMClarity repository into multiple modules:

- **api**. Interface between all the services in VMClarity including the DB. Composed by API model, backend client and server.
- **cli**. Responsible for running a scan in an asset and report the results back to api. Contains the logic to configure, run and manage different analysers and scanners.
- **orchestrator**. Responsible for managing scan configurations, scans, assets and estimations.
- **provider**. Responsible for discovery and scan infrastructure setup for each provider. Contains logic to find assets and run scans on AWS, GCP, Azure, Docker and Kubernetes.
- **uibackend**. Responsible for offloading the ui from data processing and filtering. Slightly coupled with ui. Composed by API model, backend client and server.
- **utils**. Contains packages shared between modules.

Each module will have its own go.mod file and each module will be versioned independently.

## Implementation

The scope of this RFC is not to change code logic but to change code structure. Therefore, the following table describes the path changes for each package impacted.

| Module | Current path | New path | Version Tag |
| ---------------- | ----------------------------- | -------------------------------- | --------------------------------------- |
| api | api | api | api/v0.7.0 |
| api/server | pkg/apiserver | api/server | api/server/v0.7.0 |
| api/client | pkg/shared/backendclient | api/client | api/client/v0.7.0 |
| cli | pkg/cli | cli | cli/v0.7.0 |
| cli | pkg/shared/analyzer | cli/pkg/analyzer | cli/v0.7.0 |
| cli | pkg/shared/config | cli/pkg/config | cli/v0.7.0 |
| cli | pkg/shared/converter | cli/pkg/converter | cli/v0.7.0 |
| cli | pkg/shared/families | cli/pkg/families | cli/v0.7.0 |
| cli | pkg/shared/findingkey | cli/pkg/findingkey | cli/v0.7.0 |
| cli | pkg/shared/job_manager | cli/pkg/jobmanager | cli/v0.7.0 |
| cli | pkg/shared/scanner | cli/pkg/scanner | cli/v0.7.0 |
| cli | pkg/shared/utils | cli/pkg/utils | cli/v0.7.0 |
| orchestrator | pkg/orchestrator | orchestrator | orchestrator/v0.7.0 |
| uibackend | pkg/uibackend | uibackend | uibackend/v0.7.0 |
| uibackend/server | pkg/uibackend/rest | uibackend/server | uibackend/server/v0.7.0 |
| uibackend/client | pkg/shared/uibackendclient | uibackend/client | uibackend/client/v0.7.0 |
| utils | pkg/version | utils/version | utils/v0.7.0 |
| utils | pkg/shared/command | utils/command | utils/v0.7.0 |
| utils | pkg/shared/fsutils | utils/fsutils | utils/v0.7.0 |
| utils | pkg/shared/log | utils/log | utils/v0.7.0 |
| utils | pkg/shared/manifest | utils/manifest | utils/v0.7.0 |
| provider | pkg/orchestrator/provider | provider | provider/v0.7.0 |
| provider | pkg/containerruntimediscovery | provider/common/runtimediscovery | provider/common/runtimediscovery/v0.7.0 |

To improve compliance with https://github.com/golang-standards/project-layout, the changes below are also proposed.

| Module | Current path | New path |
| ------------ | -------------------------------- | ----------------------------- |
| provider | example_external_provider_plugin | provider/examples/external |
| cli | scanner_boot_test | cli/test/boot |
| | img | assets |

Makefile, GitHub workflows and other files will need to be updated to point to the new paths.

The VMClarity directory will have the following structure.

```sh
.
├── Makefile
├── api
│   ├── client
│   │   ├── client.cfg.yaml
│   │   └── go.mod
│   ├── go.mod
│   ├── models
│   │   └── models.cfg.yaml
│   ├── openapi.yaml
│   └── server
│   ├── cmd
│   ├── go.mod
│   ├── pkg
│   │   ├── common
│   │   ├── database
│   │   └── rest
│   └── server.cfg.yaml
├── cli
│   ├── cmd
│   ├── go.mod
│   ├── pkg
│   │   ├── analyzer
│   │   ├── config
│   │   ├── converter
│   │   ├── families
│   │   ├── findingkey
│   │   ├── jobmanager
│   │   ├── presenter
│   │   ├── scanner
│   │   ├── state
│   │   └── utils
│   └── test
│   └── boot
├── docs
├── e2e
│   ├── config
│   ├── go.mod
│   └── testenv
│   ├── docker
│   ├── kubernetes
│   ├── types
│   └── utils
├── assets
├── installation
│   ├── aws
│   ├── azure
│   ├── docker
│   ├── gcp
│   └── kubernetes
├── orchestrator
│   ├── cmd
│   ├── go.mod
│   └── pkg
│   ├── assetscanestimationwatcher
│   ├── assetscanprocessor
│   ├── assetscanwatcher
│   ├── common
│   ├── discovery
│   ├── scanconfigwatcher
│   ├── scanestimationwatcher
│   └── scanwatcher
├── provider
│   ├── cmd
│   ├── examples
│   │   └── external
│   ├── go.mod
│   └── pkg
│   ├── aws
│   ├── azure
│   ├── cloudinit
│   ├── common
│   └── containerruntimediscovery
│   └── cmd
│   ├── docker
│   ├── external
│   ├── gcp
│   └── kubernetes
├── rfc
├── ui
│   └── src
├── uibackend
│   ├── client
│   │   └── client.cfg.yaml
│   ├── go.mod
│   ├── models
│   │   └── models.cfg.yaml
│   ├── openapi.yaml
│   └── server
│   ├── cmd
│   ├── go.mod
│   ├── pkg
│   └── server.cfg.yaml
└── utils
├── command
├── fsutils
├── go.mod
├── log
├── manifest
└── version
```

# Release

Each module will have a tag with the format `prefix/version` where prefix is the directory within the repository where the module is defined, more details [here](https://go.dev/wiki/Modules#publishing-a-release). For now, the same version will be used for each module even if there are no changes, this will simplify managing compatibility between modules across versions.

The release GitHub workflow will be extended with an additional step to create a tag for each module. This step will only be performed after the release is successfully published.

## UX/UI

This RFC has no user-impacting changes.