zalando
diff --git a/‎kubectl-pg/README.md
+125 b/‎kubectl-pg/README.md
+125
diff --git a/‎kubectl-pg/build.sh
+4 b/‎kubectl-pg/build.sh
+4
diff --git a/‎kubectl-pg/cmd/addDb.go
+112 b/‎kubectl-pg/cmd/addDb.go
+112
diff --git a/‎kubectl-pg/cmd/addUser.go
+142 b/‎kubectl-pg/cmd/addUser.go
+142
@@ -0,0 +1,125 @@
+# Kubectl Plugin for Zalando's Postgres Operator
+
+## Google Summer of Code 2019
+
+This plugin is a prototype developed as a part of GSoC 2019 under the organisation
+**The Postgres Operator**
+
+### GSoC Proposal
+
+[kubectl pg proposal](https://docs.google.com/document/d/1-WMy9HkfZ1XnnMbzplMe9rCzKrRMGaMz4owLVXXPb7w/edit)
+
+### Weekly Reports
+
+https://github.com/VineethReddy02/GSoC-Kubectl-Plugin-for-Postgres-Operator-tracker
+
+ ### Final Project Report
+ 
+ https://gist.github.com/VineethReddy02/159283bd368a710379eaf0f6bd60a40a
+ 
+
+### Installtion of kubectl pg plugin
+
+This project uses Go Modules for dependency management to build locally
+Install go and enable go modules ```export GO111MODULE=on```
+From Go >=1.13 Go modules will be enabled by default
+```
+# Assumes you have a working KUBECONFIG
+$ GO111MODULE="on" 
+# As of now go by default doesn't support Go mods. So explicit enabling is required.
+$ GOPATH/src/github.com/zalando/postgres-operator/kubectl-pg  go mod vendor 
+# This generate a vendor directory with all dependencies needed by the plugin.
+$ $GOPATH/src/github.com/zalando/postgres-operator/kubectl-pg  go install
+# This will place the kubectl-pg binary in your $GOPATH/bin
+```
+
+### Before using the kubectl pg plugin make sure to set KUBECONFIG env varibale
+
+Ideally KUBECONFIG is found in $HOME/.kube/config else specify the KUBECONFIG path here.
+
+```export KUBECONFIG=$HOME/.kube/config``` 
+
+### To list all commands available in kubectl pg
+
+```kubectl pg --help``` (or) ```kubectl pg```
+
+### This basically means the operator pod managed to start, so our operator is installed.
+
+```kubectl pg check```
+
+### To create postgresql cluster using manifest file
+
+```kubectl pg create -f acid-minimal-cluster.yaml```
+
+### To update existing cluster using manifest file
+
+```kubectl pg update -f acid-minimal-cluster.yaml```
+
+### To delete existing cluster using manifest file
+
+```kubectl pg delete -f acid-minimal-cluster.yaml```
+
+### To delete existing cluster using cluster name
+
+```kubectl pg delete acid-minimal-cluster```
+
+--namespace or -n flag to specify namespace if cluster is in other namespace.
+
+```kubectl pg delete acid-minimal-cluster -n namespace01```
+
+### To list postgres resources for the current namespace
+
+```kubectl pg list```
+
+### To list postgres resources across namespaces
+
+```kubectl pg list all```
+
+### To add-user and it's roles to an existing pg cluster
+
+```kubectl pg add-user USER01 -p CREATEDB,LOGIN -c acid-minimal-cluster```
+
+Privileges can only be [SUPERUSER, REPLICATION, INHERIT, LOGIN, NOLOGIN, CREATEROLE, CREATEDB, BYPASSURL]
+
+Note: A login user is created by default unless NOLOGIN is specified, in which case the operator creates a role.
+
+### To add-db and it's owner to an existing pg cluster
+
+```kubectl pg add-db DB01 -o OWNER01 -c acid-minimal-cluster```
+
+### To extend volume for an existing pg cluster
+
+```kubectl pg ext-volume 2Gi -c acid-minimal-cluster```
+
+### To find the version of postgres operator and kubectl plugin
+
+```kubectl pg version (optional -n NAMESPACE allows to know specific to a namespace)```
+
+### To connect to the shell of a postgres pod
+
+```kubectl pg connect -c CLUSTER``` #This connects to a random pod
+```kubectl pg connect -c CLUSTER -m``` #This connects the master
+```kubectl pg connect -c CLUSTER -r 0``` #This connects to the desired replica
+
+### To connect to the psql prompt
+
+```kubectl pg connect -c CLUSTER -p -u username``` #This connects to a random pod. Not master
+```kubectl pg connect -c CLUSTER -m -p -u username``` #This connects the master
+```kubectl pg connect -c CLUSTER -r 0 -p -u username``` #This connects to the desired replica
+
+Note: -p represents psql prompt
+
+### To get the logs of postgres operator
+
+```kubectl pg logs -o```
+
+### To get the logs of the postgres cluster
+
+```kubectl pg logs -c CLUSTER``` #Fetches the logs of a random pod. Not master
+```kubectl pg logs -c CLUSTER -m``` #Fetches the logs of master
+```kubectl pg logs -c CLUSTER -r 2``` #Fecthes the logs of specified replica
+
+## Development
+
+- When making changes to plugin make sure to change the major or patch version
+of plugin in ```build.sh``` and run ```./build.sh``` 
@@ -0,0 +1,4 @@
+
+VERSION=1.0
+sed -i "s/KubectlPgVersion string = \"[^\"]*\"/KubectlPgVersion string = \"${VERSION}\"/" cmd/version.go
+go install
@@ -0,0 +1,112 @@
+/*
+Copyright © 2019 Vineeth Pothulapati <[email protected]>
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+*/
+
+package cmd
+
+import (
+	"encoding/json"
+	"fmt"
+	"github.com/spf13/cobra"
+	PostgresqlLister "github.com/zalando/postgres-operator/pkg/generated/clientset/versioned/typed/acid.zalan.do/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/types"
+	"log"
+)
+
+// addDbCmd represents the addDb command
+var addDbCmd = &cobra.Command{
+	Use:   "add-db",
+	Short: "Adds a DB and its owner to a Postgres cluster. The owner role is created if it does not exist",
+	Long:  `Adds a new DB to the Postgres cluster. Owner needs to be specified by the -o flag, cluster with -c flag.`,
+	Run: func(cmd *cobra.Command, args []string) {
+		if len(args) > 0 {
+			dbName := args[0]
+			dbOwner, _ := cmd.Flags().GetString("owner")
+			clusterName, _ := cmd.Flags().GetString("cluster")
+			addDb(dbName, dbOwner, clusterName)
+		} else {
+			fmt.Println("database name can't be empty. Use kubectl pg add-db [-h | --help] for more info")
+		}
+
+	},
+	Example: `
+kubectl pg add-db db01 -o owner01 -c cluster01
+`,
+}
+
+// add db and it's owner to the cluster
+func addDb(dbName string, dbOwner string, clusterName string) {
+	config := getConfig()
+	postgresConfig, err := PostgresqlLister.NewForConfig(config)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	namespace := getCurrentNamespace()
+	postgresql, err := postgresConfig.Postgresqls(namespace).Get(clusterName, metav1.GetOptions{})
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	var dbOwnerExists bool
+	dbUsers := postgresql.Spec.Users
+	for key, _ := range dbUsers {
+		if key == dbOwner {
+			dbOwnerExists = true
+		}
+	}
+	var patch []byte
+	// validating reserved DB names
+	if dbOwnerExists && dbName != "postgres" && dbName != "template0" && dbName != "template1" {
+		patch = dbPatch(dbName, dbOwner)
+	} else if !dbOwnerExists {
+		log.Fatal("The provided db-owner doesn't exist")
+	} else {
+		log.Fatal("The provided db-name is reserved by postgres")
+	}
+
+	updatedPostgres, err := postgresConfig.Postgresqls(namespace).Patch(postgresql.Name, types.MergePatchType, patch, "")
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	if updatedPostgres.ResourceVersion != postgresql.ResourceVersion {
+		fmt.Printf("Created new database %s with owner %s in PostgreSQL cluster %s.\n", dbName, dbOwner, updatedPostgres.Name)
+	} else {
+		fmt.Printf("postgresql %s is unchanged.\n", updatedPostgres.Name)
+	}
+}
+
+func dbPatch(dbname string, owner string) []byte {
+	ins := map[string]map[string]map[string]string{"spec": {"databases": {dbname: owner}}}
+	patchInstances, err := json.Marshal(ins)
+	if err != nil {
+		log.Fatal(err, "unable to parse patch for add-db")
+	}
+	return patchInstances
+}
+
+func init() {
+	addDbCmd.Flags().StringP("owner", "o", "", "provide owner of the database.")
+	addDbCmd.Flags().StringP("cluster", "c", "", "provide a postgres cluster name.")
+	rootCmd.AddCommand(addDbCmd)
+}
@@ -0,0 +1,142 @@
+/*
+Copyright © 2019 Vineeth Pothulapati <[email protected]>
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in
+all copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
+THE SOFTWARE.
+*/
+
+package cmd
+
+import (
+	"encoding/json"
+	"fmt"
+	"github.com/spf13/cobra"
+	PostgresqlLister "github.com/zalando/postgres-operator/pkg/generated/clientset/versioned/typed/acid.zalan.do/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/types"
+	"log"
+	"strings"
+)
+
+var allowedPrivileges = []string{"SUPERUSER", "REPLICATION", "INHERIT", "LOGIN", "NOLOGIN", "CREATEROLE", "CREATEDB", "BYPASSURL"}
+
+// addUserCmd represents the addUser command
+var addUserCmd = &cobra.Command{
+	Use:   "add-user",
+	Short: "Adds a user to the postgres cluster with given privileges",
+	Long:  `Adds a user to the postgres cluster. You can add privileges as well with -p flag.`,
+	Run: func(cmd *cobra.Command, args []string) {
+		clusterName, _ := cmd.Flags().GetString("cluster")
+		privileges, _ := cmd.Flags().GetString("privileges")
+
+		if len(args) > 0 {
+			user := args[0]
+			var permissions []string
+			var perms []string
+
+			if privileges != "" {
+				parsedRoles := strings.Replace(privileges, ",", " ", -1)
+				parsedRoles = strings.ToUpper(parsedRoles)
+				permissions = strings.Fields(parsedRoles)
+				var invalidPerms []string
+
+				for _, userPrivilege := range permissions {
+					validPerm := false
+					for _, privilege := range allowedPrivileges {
+						if privilege == userPrivilege {
+							perms = append(perms, userPrivilege)
+							validPerm = true
+						}
+					}
+					if !validPerm {
+						invalidPerms = append(invalidPerms, userPrivilege)
+					}
+				}
+
+				if len(invalidPerms) > 0 {
+					fmt.Printf("Invalid privileges %s\n", invalidPerms)
+					return
+				}
+			}
+			addUser(user, clusterName, perms)
+		}
+	},
+	Example: `
+kubectl pg add-user user01 -p login,createdb -c cluster01
+`,
+}
+
+// add user to the cluster with provided permissions
+func addUser(user string, clusterName string, permissions []string) {
+	config := getConfig()
+	postgresConfig, err := PostgresqlLister.NewForConfig(config)
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	namespace := getCurrentNamespace()
+	postgresql, err := postgresConfig.Postgresqls(namespace).Get(clusterName, metav1.GetOptions{})
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	setUsers := make(map[string]bool)
+	for _, k := range permissions {
+		setUsers[k] = true
+	}
+
+	if existingRoles, key := postgresql.Spec.Users[user]; key {
+		for _, k := range existingRoles {
+			setUsers[k] = true
+		}
+	}
+
+	Privileges := []string{}
+	for keys, values := range setUsers {
+		if values {
+			Privileges = append(Privileges, keys)
+		}
+	}
+
+	patch := applyUserPatch(user, Privileges)
+	updatedPostgresql, err := postgresConfig.Postgresqls(namespace).Patch(postgresql.Name, types.MergePatchType, patch, "")
+	if err != nil {
+		log.Fatal(err)
+	}
+
+	if updatedPostgresql.ResourceVersion != postgresql.ResourceVersion {
+		fmt.Printf("postgresql %s is updated with new user %s and with privileges %s.\n", updatedPostgresql.Name, user, permissions)
+	} else {
+		fmt.Printf("postgresql %s is unchanged.\n", updatedPostgresql.Name)
+	}
+}
+
+func applyUserPatch(user string, value []string) []byte {
+	ins := map[string]map[string]map[string][]string{"spec": {"users": {user: value}}}
+	patchInstances, err := json.Marshal(ins)
+	if err != nil {
+		log.Fatal(err, "unable to parse number of instances json")
+	}
+	return patchInstances
+}
+
+func init() {
+	addUserCmd.Flags().StringP("cluster", "c", "", "add user to the provided cluster.")
+	addUserCmd.Flags().StringP("privileges", "p", "", "add privileges separated by commas without spaces")
+	rootCmd.AddCommand(addUserCmd)
+}