core

package
v0.16.0 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Jan 6, 2025 License: AGPL-3.0 Imports: 15 Imported by: 76

Documentation

Index

Constants

View Source
const (
	// ExposedCommandServiceAccountCreate identifies a name of a core.ExposedCommand which produces a service account
	// for other dogus.
	ExposedCommandServiceAccountCreate = "service-account-create"

	// ExposedCommandServiceAccountRemove identifies a name of a core.ExposedCommand which removes a service accounts.
	ExposedCommandServiceAccountRemove = "service-account-remove"

	// ExposedCommandPreUpgrade identifies a name of a core.ExposedCommand which executes before a dogu upgrade.
	ExposedCommandPreUpgrade = "pre-upgrade"

	// ExposedCommandPostUpgrade identifies a name of a core.ExposedCommand which executes after a dogu upgrade.
	ExposedCommandPostUpgrade = "post-upgrade"

	// ExposedCommandUpgradeNotification identifies a name of a core.ExposedCommand which informs a user of important,
	// upcoming changes (possibly with a call for action) that should be acknowledged by the administrator.
	ExposedCommandUpgradeNotification = "upgrade-notification"

	// ExposedCommandBackupConsumer identifies a name of a core.ExposedCommand which backs up a service account
	// consumer dogu's data during the back-up.
	ExposedCommandBackupConsumer = "backup-consumer"

	// ExposedCommandPreBackup
	//
	// Deprecated: This field is no longer used. There is no substitute.
	ExposedCommandPreBackup = "pre-backup"

	// ExposedCommandPostBackup
	//
	// Deprecated: This field is no longer used. There is no substitute.
	ExposedCommandPostBackup = "post-backup"
)

Names for ExposedCommands correspond with actual dogu descriptor instance values. Do not change because these come with side effects.

View Source
const (
	// DependencyTypeDogu identifies a dogu dependency towards another dogu.
	DependencyTypeDogu = "dogu"
	// DependencyTypeClient identifies a dogu dependency towards a dogu.json-processing client like cesapp or
	// k8s-dogu-operator.
	DependencyTypeClient = "client"
	// DependencyTypePackage identifies a dogu dependency towards an operating system package.
	DependencyTypePackage = "package"
)

Contains the different kind of types supported by dogu dependencies

View Source
const (
	// All is a special capability which can be used to add or drop all capabilities listed below.
	All = "ALL"
	// AuditControl enables and disables kernel auditing; changes auditing filter rules.
	// retrieves auditing status and filtering rules.
	AuditControl = "AUDIT_CONTROL"
	// AuditRead allows reading the audit log via a multicast netlink socket.
	AuditRead = "AUDIT_READ"
	// AuditWrite write records to kernel auditing log.
	AuditWrite = "AUDIT_WRITE"
	// BlockSuspend employs features that can block system suspend (epoll(7) EPOLLWAKEUP, /proc/sys/wake_lock).
	BlockSuspend = "BLOCK_SUSPEND"
	// Bpf employs privileged BPF operations and separates out BPF functionality from the overloaded SYS_ADMIN capability.
	Bpf = "BPF"
	// CheckpointRestore allows facilitating checkpoint/restore for non-root users.
	CheckpointRestore = "CHECKPOINT_RESTORE"
	// Chown makes arbitrary changes to file UIDs and GIDs (see chown(2)).
	Chown = "CHOWN"
	// DacOverride allows bypassing file read, write, and execute permission checks to implement discretionary access control.
	DacOverride = "DAC_OVERRIDE"
	// Fowner allows to bypass permission checks on operations that require file ownership (i. e. read, write, or execute).
	Fowner = "FOWNER"
	// Fsetid allows to avoid resetting a file's Setuid flag on modifying.
	Fsetid = "FSETID"
	// IpcLock allows a process to lock memory to swapping the content to disk.
	IpcLock = "IPC_LOCK"
	// IpcOwner bypasses permission checks for operations on System V IPC objects.
	IpcOwner = "IPC_OWNER"
	// Kill bypasses permission checks for sending signals (see kill(2)). This includes use of the ioctl(2) KDSIGACCEPT operation.
	Kill = "KILL"
	// Lease establishes leases on arbitrary files (see fcntl(2)).
	Lease = "LEASE"
	// LinuxImmutable Set the FS_APPEND_FL and FS_IMMUTABLE_FL inode flags (see FS_IOC_SETFLAGS(2const)).
	LinuxImmutable = "LINUX_IMMUTABLE"
	// MacAdmin allows MAC configuration or state changes. Implemented for the Smack Linux Security Module (LSM).
	MacAdmin = "MAC_ADMIN"
	// MacOverride Override Mandatory Access Control (MAC).  Implemented for the Smack LSM.
	MacOverride = "MAC_OVERRIDE"
	// Mknod creates special files using mknod(2).
	Mknod = "MKNOD"
	// NetAdmin allows processes to perform various network-related operations.
	NetAdmin = "NET_ADMIN"
	// NetBindService binds a socket to Internet domain privileged ports (port numbers less than 1024).
	NetBindService = "NET_BIND_SERVICE"
	// NetBroadcast (Unused) makes socket broadcasts, and listen to multicasts.
	NetBroadcast = "NET_BROADCAST"
	// NetRaw uses RAW and PACKET sockets; binds to any address for transparent proxying.
	NetRaw = "NET_RAW"
	// Perfmon employs various performance-monitoring mechanisms various BPF operations that have performance implications.
	Perfmon = "PERFMON"
	// Setfcap allows to set arbitrary capabilities on a file. Since Linux 5.12, this capability is also needed to map
	// user ID 0 in a new user namespace; see user_namespaces(7) for details.
	Setfcap = "SETFCAP"
	// Setgid makes arbitrary manipulations of process GIDs and supplementary GID list;
	//    - forge GID when passing socket credentials via UNIX domain sockets;
	//    - write a group ID mapping in a user namespace (see user_namespaces(7)).
	Setgid = "SETGID"
	// Setpcap allows to add or drop any capability from the calling thread's bounding set.
	Setpcap = "SETPCAP"
	// Setuid allows to make arbitrary manipulations of process UIDs (setuid(2), setreuid(2), setresuid(2), setfsuid(2))
	Setuid = "SETUID"
	//	SysAdmin allows performing a range of system administration operations. This is like super dangerous and should not be granted easily
	SysAdmin = "SYS_ADMIN"
	//SysBoot allows to use reboot(2) and kexec_load(2).
	SysBoot = "SYS_BOOT"
	// SysChroot allows to use chroot(2) or change mount linux namespaces using setns(2).
	SysChroot = "SYS_CHROOT"
	// SysModule loads and unloads kernel modules (see init_module(2) and delete_module(2))
	SysModule = "SYS_MODULE"
	// SysNice lowers the process nice value (nice(2), setpriority(2)) and change the nice value for arbitrary processes
	SysNice = "SYS_NICE"
	//SysPAcct switches process accounting with acct(2) on or off.
	SysPAcct = "SYS_PACCT"
	//SysPTrace allows to trace arbitrary processes using ptrace(2), or read/write memory of arbitrary processes.
	SysPTrace = "SYS_PTRACE"
	// SysResource allows a process to modify the resource limits specified in variety of uses cases.
	SysResource = "SYS_RESOURCE"
	// SysTime sets system clock (settimeofday(2), stime(2), adjtimex(2)); set real-time (hardware) clock
	SysTime = "SYS_TIME"
	// SysTtyCONFIG uses vhangup(2); employ various privileged ioctl(2) operations on virtual terminals.
	SysTtyCONFIG = "SYS_TTY_CONFIG"
	// Syslog performs privileged syslog(2) operations.
	Syslog = "SYSLOG"
	// WakeAlarm triggers something that will wake up the system.
	WakeAlarm = "WAKE_ALARM"
)

These capabilities' documentation contain abstracts of their respective manpage documentation and may refer to other man pages references f. e. as epoll(7)

Variables

AllCapabilities includes all capabilities that could possibly be set. The special value ALL is not included.

DefaultCapabilities in the Cloudogu Ecosystem, regardless of which container runtime it runs in. This way the Ecosystem can guarantee a consistent behavior.

View Source
var GetLogger = func() Logger { return logrus.StandardLogger() }

GetLogger is an alias function to provide a different logger for the core.

Functions

func ContainsDoguWithName

func ContainsDoguWithName(dogus []*Dogu, name string) bool

ContainsDoguWithName checks if a dogu is contained in a slice by comparing the full name (including namespace)

func GetBackoff added in v0.7.0

func GetBackoff(policy RetryPolicy) ([]time.Duration, error)

func GetContentOfFile

func GetContentOfFile(path string) (string, error)

GetContentOfFile all content of the file at the given path and returns it as string

func GetNamespace

func GetNamespace(fullDoguName string) string

GetNamespace returns a dogu's namespace.

func GetSimpleDoguName

func GetSimpleDoguName(fullDoguName string) string

GetSimpleDoguName returns the dogu name without its namespace.

func ReadDoguFromFile

func ReadDoguFromFile(filePath string) (*Dogu, DoguApiVersion, error)

ReadDoguFromFile reads a single dogu from a file and returns it along with a dogu API version.

func ReadDoguFromString

func ReadDoguFromString(content string) (*Dogu, DoguApiVersion, error)

ReadDoguFromString reads a dogu from a string and returns it along with a dogu API version.

func ReadDogusFromFile

func ReadDogusFromFile(filePath string) ([]*Dogu, DoguApiVersion, error)

ReadDogusFromFile reads all dogus from a given file and returns them along with their dogu API version.

func ReadDogusFromString

func ReadDogusFromString(content string) ([]*Dogu, DoguApiVersion, error)

ReadDogusFromString reads multiple dogus from a string and returns them along with a dogu API version.

func WriteDoguToFile

func WriteDoguToFile(filePath string, dogu *Dogu) error

WriteDoguToFile writes the dogu to the given file. Uses the default format (first registered).

func WriteDoguToFileWithFormat

func WriteDoguToFileWithFormat(filePath string, dogu *Dogu, formatProvider DoguFormatProvider) error

WriteDoguToFileWithFormat writes the dogu to the given file using a specified format.

func WriteDoguToString

func WriteDoguToString(dogu *Dogu) (string, error)

WriteDoguToString writes the dogu and return the string representation of the specified format.

func WriteDogusToFile

func WriteDogusToFile(filePath string, dogus []*Dogu) error

WriteDogusToFile writes all dogus to the given file. Uses the default format (first registered).

func WriteDogusToFileWithFormat

func WriteDogusToFileWithFormat(filePath string, dogus []*Dogu, formatProvider DoguFormatProvider) error

WriteDogusToFileWithFormat writes all dogus to the given file using a specified format.

func WriteDogusToString

func WriteDogusToString(dogus []*Dogu) (string, error)

WriteDogusToString writes all dogus and return the string representation of the specified format.

Types

type ByDoguVersion

type ByDoguVersion []*Dogu

ByDoguVersion implements sort.Interface for []Dogu to Dogus by their versions

func (ByDoguVersion) Len

func (doguVersions ByDoguVersion) Len() int

Len is the number of elements in the collection.

func (ByDoguVersion) Less

func (doguVersions ByDoguVersion) Less(i, j int) bool

Less reports whether the element with index i should sort before the element with index j.

func (ByDoguVersion) Swap

func (doguVersions ByDoguVersion) Swap(i, j int)

Swap swaps the elements with indexes i and j.

type ByVersion

type ByVersion []Version

ByVersion implements sort.Interface for []Version to sort versions

func (ByVersion) Len

func (versions ByVersion) Len() int

Len is the number of elements in the collection.

func (ByVersion) Less

func (versions ByVersion) Less(i, j int) bool

Less reports whether the element with index i should sort before the element with index j.

func (ByVersion) Swap

func (versions ByVersion) Swap(i, j int)

Swap swaps the elements with indexes i and j.

type Capabilities added in v0.16.0

type Capabilities struct {
	// Add contains the capabilities that should be allowed to be used in a container. This list is optional.
	Add []Capability `json:"Add,omitempty"`
	// Drop contains the capabilities that should be blocked from being used in a container. This list is optional.
	Drop []Capability `json:"Drop,omitempty"`
}

Capabilities represent POSIX capabilities that can be added to or removed from a dogu.

The fields Add and Drop will modify the default capabilities as provided by DefaultCapabilities. Add will append further capabilities while Drop will remove capabilities. The capability All can be used to add or remove all available capabilities.

See DefaultCapabilities for the standard set being used in the Cloudogu Ecosystem.

This example will result in the following capability list: DacOverride, Fsetid, Fowner, Setgid, Setuid, Setpcap, NetBindService, Kill, Syslog

"Capabilities": {
   "Drop": "Chown"
   "Add": "Syslog"
}

This example will result in the following capability list: NetBindService

"Capabilities": {
   "Drop": ["All"],
   "Add": ["NetBindService", "Kill"]
}

type Capability added in v0.16.0

type Capability string

Capability represent POSIX capabilities type.

See docs at https://manned.org/capabilities.7

type ConfigurationField

type ConfigurationField struct {
	// Name contains the name of the configuration key. The field is mandatory. It
	// must not contain leading or trailing slashes "/", but it may contain
	// directory keys delimited with slashes "/" within the name.
	//
	// The Name syntax is encouraged to consist of:
	//   - lower case latin characters
	//   - special characters underscore "_"
	//   - ciphers 0-9
	//
	// Example:
	//   - feedback_url
	//   - logging/root
	//
	Name string
	// Description offers context and purpose of the configuration field in human-readable format. This field is
	// optional, yet highly recommended to be set.
	//
	// Example:
	//   - "Set the root log level to one of ERROR, WARN, INFO, DEBUG or TRACE. Default is INFO"
	//   - "URL of the feedback service"
	//
	Description string
	// Optional allows to have this configuration field unset, otherwise a value must be set. This field is optional.
	// If unset, a value of `false` will be assumed.
	//
	// Example:
	//   - true
	//
	Optional bool
	// Encrypted marks this configuration field to contain a sensitive value that will be encrypted with the dogu's
	// public key. This field is optional. If unset, a value of `false` will be assumed.
	//
	// Example:
	//   - true
	//
	Encrypted bool
	// Global marks this configuration field to contain a value that is available for all dogus. This field is optional.
	// If unset, a value of `false` will be assumed.
	//
	// Example:
	//   - true
	//
	Global bool
	// Default defines a default value that may be evaluated if no value was configured, or the value is empty or even
	// invalid. This field is optional.
	//
	// Example:
	//   - "WARN"
	//   - "true"
	//   - "https://scm-manager.org/plugins"
	//
	Default string
	// Validation configures a validator that will be used to mark invalid or
	// out-of-range values for this configuration field. This field is optional.
	//
	// Example:
	//  "Validation": {
	//     "Type": "ONE_OF", // only allows one of these two values
	//     "Values": [
	//       "value 1",
	//       "value 2",
	//     ]
	//   }
	//
	//  "Validation": {
	//     "Type": "FLOAT_PERCENTAGE_HUNDRED" // valid values range between 0.0 and 100.0
	//  }
	//
	//  "Validation": {
	//    "Type": "BINARY_MEASUREMENT" // only allows suffixed integer values measured in byte, kibibyte, mebibyte, gibibyte
	//   }
	//
	//
	Validation ValidationDescriptor
}

ConfigurationField describes a single dogu configuration field which is stored in the Cloudogu EcoSystem registry.

type Credentials

type Credentials struct {
	Username string
	Password string
}

Credentials for a remote system

type Dependency

type Dependency struct {
	// Type identifies the entity on which the dogu depends. This field is optional.
	// If unset, a value of `dogu` is then assumed.
	//
	// Valid values are one of these: "dogu", "client", "package".
	//
	// A type of "dogu" references another dogu which must be present and running
	// during the dependency check.
	//
	// A type of "client" references the client which processes this dogu's
	// "dogu.json". Several client dependencies of a different client type can be
	// used f. i. to prohibit the processing of a certain client.
	//
	// A type of "package" references a necessary operating system package that must
	// be present during the dependency check.
	//
	// Examples:
	//  - "dogu"
	//  - "client"
	//  - "package"
	//
	Type string `json:"type"`
	// Name identifies the entity selected by Type. This field is mandatory. If the Type selects another dogu, Name
	// must use the simple dogu name (f. e. "postgres"), not the full qualified dogu name (not "official/postgres").
	//
	// Examples:
	//  - "postgresql"
	//  - "k8s-dogu-operator"
	//  - "cesappd"
	//
	Name string `json:"name"`
	// Version selects the version of entity selected by Type. This field is optional. If unset, any version of the
	// selected entity will be accepted during the dependency check.
	//
	// Version accepts different version styles and compare operators.
	//
	// Examples:
	//
	//  - ">=4.1.1-2" - select the entity version greater than or equal to version 4.1.1-2
	//  - "<=1.0.1" - select the entity version less than or equal to version 1.0.1
	//  - "1.2.3.4" - select exactly the version 1.2.3.4
	//
	// With a non-existing version it is possible to negate a dependency.
	//
	// Example:
	//
	//   - "<=0.0.0" - prohibit the selected entity being present
	//
	Version string `json:"version"`
}

Dependency describes the quality of a dogu dependency towards another entity.

Examples:

{
  "type": "dogu",
  "name": "postgresql"
}

{
  "name": "postgresql"
}

{
  "type": "client",
  "name": "k8s-dogu-operator",
  "version": ">=0.16.0"
}

{
  "type": "package",
  "name": "cesappd",
  "version": ">=3.2.0"
}

type Dogu

type Dogu struct {
	// Name contains the dogu's full qualified name which consists of the dogu namespace and the dogu simple name,
	// delimited by a single forward slash "/". This field is mandatory.
	//
	// The dogu namespace allows to regulate access to dogus in that namespace. There are three reserved dogu
	// namespaces: The namespaces `official` and `k8s` are open to all users without any further costs. In contrast to
	// that is the namespace `premium` is open to subscription users, only.
	//
	// The namespace syntax is encouraged to consist of:
	//   - lower case latin characters
	//   - special characters underscore "_", minus "-"
	//   - ciphers 0-9
	//   - an overall length of less than 200 characters
	//
	// The dogu simple name allows to address in multiple ways. The simple name will be the part of the URI of the
	// Cloudogu EcoSystem to address a URI part (if the dogu provides an exposed UI). Also, the simple name will be used
	// to address the dogu after the installation process (f. i. to start, stop or remove a dogu), or to address
	// generated resources that belong to the dogu.
	//
	// The simple name syntax must be an DNS-compatible identifier and is encouraged to consist of
	//   - lower case latin characters
	//   - special characters underscore "_", minus "-"
	//   - ciphers 0-9
	//   - an overall length of less than 20 characters
	//
	// It is recommended to use the same full qualified dogu name within the dogu's Dockerfile as environment variable
	// `NAME`.
	//
	// Examples:
	//   - official/redmine
	//   - premium/confluence
	//   - foo-1/bar-2
	//
	Name string
	// Version defines the actual version of the dogu. This field is mandatory.
	//
	// The version follows the format from semantic versioning and additionally is split in two parts.
	// The application version and the dogu version.
	//
	// An example would be 1.7.8-1 or 2.2.0-4. The first part of the version (e.g. 1.7.8) represents the
	// version of the application (e.g. the nginx version in the nginx dogu). The second part represents the version
	// of the dogu and for an initial release it should start at 1 (e.g. 1.7.8-1).
	//
	// If the application does not change but e.g. there are changes in the startup script of the dogu the new version
	// should be 1.7.8-2. If the application itself changes (e.g. there is a nginx upgrade) the new version should be
	// 1.7.9-1. Notice that in this case the version of the dogu should be set to 1 again.
	//
	// Whereas the dogu struct is the core place for the version and is used by the cesapp in various processes like
	// installation and release the version should also be placed as a label in the dockerfile from the dogu.
	//
	// Example versions in the dogu.json:
	//  - 1.7.8-1
	//  - 2.2.0-4
	//
	// Recommended example in the Dockerfile:
	//  LABEL maintainer="hello@cloudogu.com" \
	//  NAME="official/nginx" \
	//  VERSION="1.23.2-1"
	//
	Version string
	// PublishedAt is the date and time when the dogu was created.
	//
	// This field does not need to be filled in by the developer. The dogu.cloudogu.com service automatically replaces
	// the content with the current time when the new dogu is created.
	//
	// Examples:
	//   - 2024-10-16T07:49:34.738Z
	//   - 2019-05-03T13:31:48.612Z
	//
	PublishedAt time.Time
	// DisplayName is the name of the dogu which is used in UI frontends to represent the dogu. This field is mandatory.
	//
	// Usages:
	// In the setup of the ecosystem the display name of the dogu is used to select it for installation.
	//
	// The display name is used in the warp menu to let the user navigate to the web ui of the dogu.
	//
	// Another usage is the textual output of tools like the cesapp or the k8s-dogu-operator where the name is used
	// in commands like list upgradeable dogus.
	//
	// The display name may consist of:
	//   - lower and upper case latin characters where the first is upper case
	//   - any special characters
	//   - ciphers 0-9
	//
	// DisplayName is encouraged to consist of less than 30 characters because it is displayed in the Cloudogu EcoSystem
	// warp menu.
	//
	// Examples:
	//  - Jenkins CI
	//  - Backup & Restore
	//  - SCM-Manager
	//  - Smeagol
	//
	DisplayName string
	// Description contains a short explanation, what the dogu does. This field is mandatory.
	//
	// It is used in the setup of the ecosystem in the dogu selection.
	// Therefore, the description should give an uninformed user a brief hint what the dogu is
	// and maybe the function the dogu fulfills.
	//
	// The description may consist of:
	//   - lower and upper case latin characters where the first is upper case
	//   - any special characters
	//   - ciphers 0-9
	//
	// Description is encouraged to consist a readable sentence which explains shortly the dogu's main topic.
	//
	// Examples:
	//  - Jenkins Continuous Integration Server
	//  - MySQL - Relational database
	//  - The Nexus Repository is like the local warehouse where all the parts and finished goods used in your
	//     software supply chain are stored and distributed.
	//
	Description string
	// Category organizes the dogus in three categories. This field is mandatory.
	//
	// These categories are fixed and must be either:
	//
	//  - `Development Apps` - For regular dogus which should be used by a regular user of the ecosystem,
	//  - `Administration Apps` - For dogus which should be used by a user with administration rights
	//  - `Base` - For dogus which are important for the overall system.
	//
	// The categories "Development Apps" and "Administration Apps" are represented in the warp menu to order the dogus.
	//
	// Example dogus for each category:
	//  - `Development Apps`: Redmine, SCM-Manager, Jenkins
	//  - `Administration Apps`: Backup & Restore, User Management
	//  - `Base`: Nginx, Registrator, OpenLDAP
	//
	Category string
	// Tags contains a list of one-word-tags which are in connection with the dogu. This field is optional.
	//
	// If the dogu should be displayed in the warp menu the tag "warp" is necessary.
	// Other tags won't be automatically processed.
	//
	// Examples for e.g. Jenkins:
	//  {"warp", "build", "ci", "cd"}
	//
	Tags []string
	//
	// Deprecated: The Cloudogu EcoSystem does not facilitate the logo URI. It is a candidate for removal.
	// Other options of representing a tool or application can be:
	//   - embed the logo in the dogu's Git repository (if public)
	//   - provide the logo in to dogu UI (if the dogu provides one)
	//
	Logo string
	// URL links the website to the original tool vendor. This field is optional.
	//
	// The Cloudogu EcoSystem does not facilitate this information.
	// Anyhow, in a public dogu repository in which a dogu vendor re-packages
	// a third party application the URL may point users to resources of the original tool vendor.
	//
	// Examples:
	//   - https://github.com/cloudogu/usermgt
	//   - https://www.atlassian.com/software/jira
	//
	URL string
	// Image links to the [OCI container] image which packages the dogu application. This field is mandatory.
	//
	// The image must not contain image tags, like the image version or "latest" (use the field Version
	// for this information instead). The image registry part of this field must point to `registry.cloudogu.com`.
	//
	// It is good practice to apply the same name to the image repository as from the Name field in order to enable
	// access strategies as well as to avoid storage conflicts.
	//
	// Examples for official/redmine:
	//   - registry.cloudogu.com/official/redmine
	//
	// [OCI container]: https://opencontainers.org/
	//
	Image string
	// ExposedPorts contains a list of [ExposedPort]. This field is optional.
	//
	// Exposed ports provide a way to route traffic from outside the Cloudogu EcoSystem towards the dogu. Dogus that
	// provide a GUI must also expose a port that accepts requests and returns responses. Non-GUI dogus can also expose
	// ports if the dogu provides services to a consumer (f. i. when the dogu wants to provide an API for a CLI tool).
	//
	// Examples:
	//
	//   [ { "Type": "tcp", "Container": "2222", "Host":"2222" } ]
	//
	ExposedPorts []ExposedPort
	// ExposedCommands defines actions of type [ExposedCommand] which can be executed in different phases of
	// the dogu lifecycle automatically triggered by a dogu client like the cesapp
	// or the k8s-dogu-operator or manually from an administrative user. This
	// field is optional.
	//
	// Usually, commands which are automatically triggered by a dogu-client are
	// those in upgrade or service account processes. These commands are:
	// pre-upgrade, post-upgrade, upgrade-notification, service-account-create,
	// service-account-remove
	//
	// pre-upgrade:
	// This command will be executed during an early stage of an
	// upgrade process from a dogu. A dogu client will mount the pre-upgrade script
	// from the new dogu version in the container of the old still running dogu and
	// executes it. It is mainly used to prepare data migrations  (e.g. export a
	// database). Core of the script should be the comparison between the version
	// and to determine if a migration is needed. For this, the dogu client will
	// call the script with the old version as the first and the new version as the
	// second parameter. In addition, it is recommended to set states like
	// "upgrading" or "pre-upgrade done" in the script. This can be very useful
	// because you can use it in the post-upgrade or the regular startup for a
	// waiting functionality.
	//
	// post-upgrade:
	// This command will be executed after a regular dogu upgrade.
	// Like in the pre-upgrade the old dogu version is passed as the first and the
	// new dogu version is passed as the second parameter. They should be used to
	// determine if an action is needed. Keep in mind that in this time the regular
	// startup script of your new container will be executed as well. Use a state in
	// the etcd to handle a wait functionality in the startup. If the post-upgrade
	// ends reset this state and start the regular container.
	//
	// upgrade-notification:
	// If the upgrade process works, e.g. with really sensitive data an upgrade
	// notification script can be implemented to inform the user about the risk of
	// this process and e.g. give a backup instruction. Before an upgrade the dogu
	// client executes the notification script, prints all upgrade steps and asks
	// the user if he wants to proceed.
	//
	// service-account-create:
	// The service-account-create command is used in the
	// installation process of a dogu. A service account in the Cloudogu EcoSystem
	// represents credentials to authorize another dogu, like a database or an
	// authentication server. The service-account-create command has to be
	// implemented in the service account producer dogu which produces the
	// credentials. If a service account consuming dogu will be installed and
	// requires a service account (e.g. for postgresql) the dogu client will call
	// the service-account-create script in the postgresql dogu with the service
	// name as the first parameters and custom ones as additional parameters. See
	// core.ServiceAccounts for how to define custom parameters. With this
	// information the script should create a service account and save it (e.g. USER
	// table in an underlying database or maybe encrypted in the etcd). After that,
	// the credentials must be printed to console so that the dogu client saves the
	// credentials for the dogu which requested the service account. It is also
	// important that these outputs are the only ones from the script, otherwise the
	// dogu client will use them as credentials.
	//
	// Example output:
	//  echo "database: ${DATABASE}"
	//  echo "username: ${USER}"
	//  echo "password: ${PASSWORD}"
	//
	// service-account-delete:
	// If a dogu will be deleted the used service account
	// should be deleted too. Because of this, the service account producing dogu
	// (like postgresql) must implement a service-account-delete command. This
	// script will be executed in the deletion process of a dogu. The dogu
	// processing client passes the service account name as the only parameter. In
	// contrast to the service-account-create command the script can output logs
	// because the dogu client won't use any of this data.
	//
	// Example commands for service accounts:
	//  "ExposedCommands": [
	//     {
	//       "Name": "service-account-create",
	//       "Description": "Creates a new service account",
	//       "Command": "/create-sa.sh"
	//     },
	//     {
	//       "Name": "service-account-remove",
	//       "Description": "Removes a service account",
	//       "Command": "/remove-sa.sh"
	//     }
	//   ],
	//
	// Custom commands:
	// Moreover, a dogu can specify commands which are not executed
	// automatically in the dogu lifecycle (e.g. upgrade). For example, a dogu like
	// Redmine can specify a command to delete or install a plugin. At runtime an
	// administrator can call this command with the cesapp like:
	//  cesapp command redmine plugin-install scrum-plugin
	//
	// Example:
	//  "ExposedCommands": [
	//     {
	//       "Name": "plugin-install",
	//       "Description": "Installs a plugin",
	//       "Command": "/installPlugin.sh"
	//     }
	//   ],
	//
	ExposedCommands []ExposedCommand
	// Volumes contains a list of [Volume] which defines [OCI container volumes]. This field is optional.
	//
	// Volumes are created during the dogu creation or upgrade.
	//
	// All dynamic data of a Dogu should be stored inside volumes. This holds multiple advantages:
	//   - Data inside volumes is not lost when the Dogu is upgraded.
	//   - Data inside volumes can be backed up and restored. See [needsbackup] flag.
	//   - The access to data stored inside volumes is much faster than to data stored inside the Dogu container.
	//
	// Examples:
	//   [ { "Name": "temp", "Path":"/tmp", "Owner":"1000", "Group":"1000", "NeedsBackup": false} ]
	//
	// [OCI container volumes]: https://opencontainers.org/
	//
	Volumes []Volume
	// HealthCheck defines a single way to check the dogu health for observability. This field is optional.
	//
	// Deprecated: use HealthChecks instead
	HealthCheck HealthCheck
	// HealthChecks defines multiple ways to check the dogu health for observability. This field is optional.
	//
	// HealthChecks are used in various use cases:
	//  - to show the `dogu is starting` page until the dogu is healthy at startup
	//  - for monitoring via `cesapp healthy <dogu-name>`
	//  - for monitoring via the admin dogu
	//  - to avoid backing up unhealthy dogus
	//
	// There are different types of health checks:
	//  - state, via the `/state/<dogu>` etcd key set by ces-setup
	//  - tcp, to check for an open port
	//  - http, to check a status code of a http response
	//
	// They must be executable without authentication required.
	//
	// Example:
	//	"HealthChecks": [
	//	  {"Type": "state"}
	//	  {"Type": "tcp",  "Port": 8080},
	//	  {"Type": "http", "Port": 8080, "Path": "/my/health/path"},
	// 	]
	HealthChecks []HealthCheck
	// ServiceAccounts contains a list of [ServiceAccount]. This field is optional.
	//
	// A ServiceAccount protects sensitive data used for another dogu. Service account consumers are distinguished from
	// service account producers. To produce a service account a dogu has to implement service-account-create and service-account-delete
	// scripts in core.ExposedCommands. To consume a service account a dogu should define a request in ServiceAccounts.
	//
	// In the installation process a dogu client recognizes a service account request and executes
	// the service-account-create script with this information from the service account producer.
	// The credentials will be then stored in the Cloudogu EcoSystem registry.
	//
	// Example paths:
	//  - config/redmine/sa-postgresql/username
	//  - config/redmine/sa-postgresql/password
	//  - config/redmine/sa-postgresql/database
	//
	// The dogu itself can then use the service account by read and decrypt the credentials with `doguctl` in the startup script.
	//
	// Examples:
	//    "ServiceAccounts": [
	//     {
	//       "Type": "ldap",
	//       "Params": [
	//         "rw"
	//       ]
	//     },
	//     {
	//      "Type": "k8s-dogu-operator",
	//      "Kind": "k8s"
	//     }
	//   ],
	//
	ServiceAccounts []ServiceAccount
	// Privileged indicates whether the Docker socket should be mounted into the container file system. This field is
	// optional. The default value is `false`.
	//
	// For security reasons, it is highly recommended to leave Privileged set to false since almost no dogu should
	// gain introspective container insights.
	//
	// Example:
	//   - false
	//
	// Deprecated: This feature will be removed in the future because no dogu should have the privilege of container
	// meta-insights for obvious security reasons. Also, this field is subject of a misnomer because mounting a
	// container socket has nothing to do with privileged execution.
	Privileged bool
	// Security defines security policies for the dogu. This field is optional.
	//
	// The Cloudogu Ecosystem may not support restricting capabilities in all environments, e.g. in docker.
	// This feature was added for the kubernetes platform via [pod security context].
	//
	// Example:
	//
	//   {
	//     "Security": {
	//       "Capabilities": {
	//         "Drop": ["All"],
	//         "Add": ["NetBindService", "Kill"]
	//       },
	//       "RunAsNonRoot": true,
	//       "ReadOnlyRootFileSystem": true
	//     }
	//   }
	//
	// [pod security context]: https://kubernetes.io/docs/tasks/configure-pod-container/security-context/
	Security Security `json:"Security,omitempty"`
	// Configuration contains a list of [ConfigurationField]. This field is optional.
	//
	// It describes generic properties of the dogu in the Cloudogu EcoSystem registry.
	//
	// Examples:
	//   {
	//     "Name": "plugin_center_url",
	//     "Description": "URL of SCM-Manager Plugin Center",
	//     "Optional": true
	//   }
	//
	//   {
	//     "Name": "logging/root",
	//     "Description": "Set the root log level to one of ERROR, WARN, INFO, DEBUG or TRACE. Default is INFO",
	//     "Optional": true,
	//     "Default": "INFO",
	//     "Validation": {
	//       "Type": "ONE_OF",
	//       "Values": [
	//         "WARN",
	//         "ERROR",
	//         "INFO",
	//         "DEBUG",
	//         "TRACE"
	//       ]
	//     }
	//   }
	Configuration []ConfigurationField
	// Properties is a `map[string]string` of Properties. This field is optional.
	// It describes generic properties of the dogu which are evaluated by a client like cesapp or k8s-dogu-operator.
	//
	// Example:
	//   {
	//     "key1": "value1",
	//     "key2": "value2"
	//   }
	Properties Properties
	// EnvironmentVariables contains a list of [EnvironmentVariable] that should
	// be set in the container. This field is optional.
	//
	// Example:
	//   [
	//     {"Key": "my_key", "Value": "my_value"}
	//   ]
	EnvironmentVariables []EnvironmentVariable
	// Dependencies contains a list of [Dependency]. This field is optional.
	//
	// This field defines dependencies that must be fulfilled during the dependency check. If the dependency
	// cannot be fulfilled during the check an error will be thrown and the processing will be stopped.
	//
	// Examples:
	//  [
	//    {
	//      "type": "dogu",
	//      "name": "postgresql"
	//    },
	//    {
	//      "type": "client",
	//      "name": "cesapp",
	//      "version": ">=6.0.0"
	//    },
	//    {
	//      "type": "package",
	//      "name": "cesappd",
	//      "version": ">=3.2.0"
	//    }
	//  ]
	//
	Dependencies []Dependency
	// OptionalDependencies contains a list of [Dependency]. This field is optional.
	//
	// In contrast to core.Dependencies, OptionalDependencies allows to define
	// dependencies that may be fulfilled if they are existent. There is no negative
	// impact during the dependency check if an optional dependency does not exist.
	// But if the optional dependency is present and the dependency cannot be
	// fulfilled during the dependency check then an error will be thrown and the
	// processing will be stopped.
	//
	// Examples:
	//  [
	//    {
	//      "type": "dogu",
	//      "name": "ldap"
	//    }
	//  ]
	//
	OptionalDependencies []Dependency
}

Dogu describes properties of a containerized application for the Cloudogu EcoSystem. Besides the meta information and the OCI container image, Dogu describes all necessities for automatic container instantiation, f. i. volumes, dependencies towards other dogus, and much more.

Example:

{
 "Name": "official/newdogu",
 "Version": "1.0.0-1",
 "DisplayName": "My new Dogu",
 "Description": "Newdogu is a test application",
 "Category": "Development Apps",
 "Tags": ["warp"],
 "Url": "https://www.company.com/newdogu",
 "Image": "registry.cloudogu.com/namespace/newdogu",
 "Dependencies": [
   {
     "type":"dogu",
     "name":"nginx"
   }
 ],
 "Volumes": [
   {
     "Name": "temp",
     "Path":"/tmp",
     "Owner":"1000",
     "Group":"1000",
     "NeedsBackup": false
   }
 ],
 "HealthChecks": [
   {
     "Type": "tcp",
     "Port": 8080
   }
 ]
}

func SortDogusByDependency deprecated

func SortDogusByDependency(dogus []*Dogu) []*Dogu

SortDogusByDependency takes an unsorted slice of Dogu structs and returns a slice of Dogus ordered by the importance of their dependencies descending, that is: the most needed dogu will be the first element.

Deprecated: This function returns nil on error. For better error-handling use SortDogusByDependencyWithError instead.

func SortDogusByDependencyWithError added in v0.14.1

func SortDogusByDependencyWithError(dogus []*Dogu) ([]*Dogu, error)

SortDogusByDependencyWithError takes an unsorted slice of Dogu structs and returns a slice of Dogus ordered by the importance of their dependencies descending, that is: the most needed dogu will be the first element.

func SortDogusByInvertedDependency deprecated

func SortDogusByInvertedDependency(dogus []*Dogu) []*Dogu

SortDogusByInvertedDependency takes an unsorted slice of Dogu structs and returns a new slice of Dogus ordered by the importance of their dependencies ascending, that is: the most independent dogu will be the first element.

Deprecated: This function returns nil on error. For better error-handling use SortDogusByInvertedDependencyWithError instead.

func SortDogusByInvertedDependencyWithError added in v0.14.1

func SortDogusByInvertedDependencyWithError(dogus []*Dogu) ([]*Dogu, error)

SortDogusByInvertedDependencyWithError takes an unsorted slice of Dogu structs and returns a new slice of Dogus ordered by the importance of their dependencies ascending, that is: the most independent dogu will be the first element.

func SortDogusByName

func SortDogusByName(dogus []*Dogu) []*Dogu

SortDogusByName takes an unsorted slice of Dogus and returns an copy of the slice ordered by the full name of the dogu

func (*Dogu) CreateV1Copy

func (d *Dogu) CreateV1Copy() DoguV1

CreateV1Copy converts this dogu object into a deep-copied DoguV1 object (for legacy reasons).

func (*Dogu) DependsOn

func (d *Dogu) DependsOn(name string) bool

DependsOn returns true if the dogu has a hard dependency to the given dogu

func (*Dogu) EffectiveCapabilities added in v0.16.0

func (d *Dogu) EffectiveCapabilities() []Capability

EffectiveCapabilities returns the accumulated list of those Capabilities that are retained after applying the capabilities to be added and removed. DefaultCapabilities build the baseline for added or dropped capabilities.

func (*Dogu) GetAllDependenciesOfType

func (d *Dogu) GetAllDependenciesOfType(dependencyType string) []Dependency

GetAllDependenciesOfType returns all dependencies in accordance to the given dependency type.

func (*Dogu) GetDependenciesOfType

func (d *Dogu) GetDependenciesOfType(dependencyType string) []Dependency

GetDependenciesOfType returns all dependencies in accordance to the given dependency type.

func (*Dogu) GetEnvironmentVariables

func (d *Dogu) GetEnvironmentVariables() []EnvironmentVariable

GetEnvironmentVariables returns a slice of EnvironmentVariable formatted as array of key value objects

func (*Dogu) GetEnvironmentVariablesAsStringArray

func (d *Dogu) GetEnvironmentVariablesAsStringArray() []string

GetEnvironmentVariablesAsStringArray returns environment variables formatted as string array

func (*Dogu) GetExposedCommand

func (d *Dogu) GetExposedCommand(commandName string) *ExposedCommand

GetExposedCommand returns a ExposedCommand for a given command name if it exists. Otherwise it returns nil. To test if a dogu has a command with a given command name use the HasExposedCommand method:

if dogu.HasExposedCommand(commandName) { doSomething() }

func (*Dogu) GetFullName

func (d *Dogu) GetFullName() string

GetFullName returns the name of the dogu including its namespace

func (*Dogu) GetImageName

func (d *Dogu) GetImageName() string

GetImageName returns the name of the docker image

func (*Dogu) GetNamespace

func (d *Dogu) GetNamespace() string

GetNamespace returns the namespace of the dogu without the name

func (*Dogu) GetOptionalDependenciesOfType

func (d *Dogu) GetOptionalDependenciesOfType(dependencyType string) []Dependency

GetOptionalDependenciesOfType returns all optional dependencies in accordance to the given dependency type.

func (*Dogu) GetRegistryServerURI

func (d *Dogu) GetRegistryServerURI() string

GetRegistryServerURI returns the name of the docker registry which is used by this dogu

func (*Dogu) GetSimpleName

func (d *Dogu) GetSimpleName() string

GetSimpleName returns the name of the dogu without the namespace

func (*Dogu) GetVersion

func (d *Dogu) GetVersion() (Version, error)

GetVersion parses the dogu version and returns a struct which can be used to compare versions

func (*Dogu) HasExposedCommand

func (d *Dogu) HasExposedCommand(commandName string) bool

HasExposedCommand checks if the dogu is a provider of a given command name. Example see constants like ExposedCommandServiceAccountCreate

func (*Dogu) IsEqualTo

func (d *Dogu) IsEqualTo(otherDogu *Dogu) (bool, error)

IsEqualTo returns true if the other dogu has the same name and version.

func (*Dogu) IsNewerThan

func (d *Dogu) IsNewerThan(otherDogu *Dogu) (bool, error)

IsNewerThan returns true if the other dogu has the same name and has a higher version

func (*Dogu) ValidateSecurity added in v0.16.0

func (d *Dogu) ValidateSecurity() error

ValidateSecurity checks the dogu's Security section for configuration errors.

type DoguApiVersion

type DoguApiVersion int

DoguApiVersion contains the Dog API version as integer starting with 1 (which is deprecated).

const (
	DoguApiVersionUnknown DoguApiVersion = 0
	DoguApiV1             DoguApiVersion = 1
	DoguApiV2             DoguApiVersion = 2
)

type DoguFormatHandler

type DoguFormatHandler struct {
	Providers []DoguFormatProvider
}

DoguFormatHandler is responsible for reading and writing dogus in different formats.

func (*DoguFormatHandler) GetFormatProviders

func (d *DoguFormatHandler) GetFormatProviders() []DoguFormatProvider

GetFormatProviders returns the list or registered format providers.

func (*DoguFormatHandler) RegisterFormatProvider

func (d *DoguFormatHandler) RegisterFormatProvider(provider DoguFormatProvider)

RegisterFormatProvider adds a new dogu format provider to the format manager.

type DoguFormatProvider

type DoguFormatProvider interface {
	// ReadDoguFromString reads a dogu from the given filePath and returns an instance of a dogu.
	ReadDoguFromString(content string) (*Dogu, error)
	// ReadDogusFromString reads multiple dogus from the given filePath and returns a slice of dogu instances.
	ReadDogusFromString(content string) ([]*Dogu, error)
	// WriteDoguToString converts the given dogu to string representation and returns it.
	WriteDoguToString(dogu *Dogu) (string, error)
	// WriteDogusToString converts the given dogus to string representation and returns it.
	WriteDogusToString(dogu []*Dogu) (string, error)
	// GetVersion returns the api version which is used for this format provider.
	GetVersion() DoguApiVersion
}

type DoguJsonV1FormatProvider

type DoguJsonV1FormatProvider struct{}

DoguJsonV1FormatProvider provides methods to format Dogu results compatible to v1 API.

func (*DoguJsonV1FormatProvider) GetVersion

func (d *DoguJsonV1FormatProvider) GetVersion() DoguApiVersion

GetVersion returns DoguApiV1 for this implementation.

func (*DoguJsonV1FormatProvider) ReadDoguFromString

func (d *DoguJsonV1FormatProvider) ReadDoguFromString(content string) (*Dogu, error)

ReadDoguFromString reads a dogu from a string and returns the API v1 representation.

func (*DoguJsonV1FormatProvider) ReadDogusFromString

func (d *DoguJsonV1FormatProvider) ReadDogusFromString(content string) ([]*Dogu, error)

ReadDogusFromString reads multiple dogus from a string and returns the API v1 representation.

func (*DoguJsonV1FormatProvider) WriteDoguToString

func (d *DoguJsonV1FormatProvider) WriteDoguToString(doguV2 *Dogu) (string, error)

WriteDoguToString receives a single dogu and returns the API v1 representation.

func (*DoguJsonV1FormatProvider) WriteDogusToString

func (d *DoguJsonV1FormatProvider) WriteDogusToString(doguV2List []*Dogu) (string, error)

WriteDogusToString receives a list of dogus and returns the API v1 representation.

type DoguJsonV2FormatProvider

type DoguJsonV2FormatProvider struct{}

DoguJsonV2FormatProvider provides methods to format Dogu results compatible to v2 API.

func (*DoguJsonV2FormatProvider) GetVersion

func (d *DoguJsonV2FormatProvider) GetVersion() DoguApiVersion

GetVersion returns DoguApiV2 for this implementation.

func (*DoguJsonV2FormatProvider) ReadDoguFromString

func (d *DoguJsonV2FormatProvider) ReadDoguFromString(content string) (*Dogu, error)

ReadDoguFromString reads a dogu from a string and returns the API v2 representation.

func (*DoguJsonV2FormatProvider) ReadDogusFromString

func (d *DoguJsonV2FormatProvider) ReadDogusFromString(content string) ([]*Dogu, error)

ReadDogusFromString reads multiple dogus from a string and returns the API v2 representation.

func (*DoguJsonV2FormatProvider) WriteDoguToString

func (d *DoguJsonV2FormatProvider) WriteDoguToString(dogu *Dogu) (string, error)

WriteDoguToString receives a single dogu and returns the API v2 representation.

func (*DoguJsonV2FormatProvider) WriteDogusToString

func (d *DoguJsonV2FormatProvider) WriteDogusToString(dogu []*Dogu) (string, error)

WriteDogusToString receives a list of dogus and returns the API v2 representation.

type DoguV1 deprecated

type DoguV1 struct {
	Name                 string
	Version              string
	PublishedAt          time.Time
	DisplayName          string
	Description          string
	Category             string
	Tags                 []string
	URL                  string
	Image                string
	ExposedPorts         []ExposedPort
	ExposedCommands      []ExposedCommand
	Volumes              []Volume
	HealthCheck          HealthCheck // deprecated use HealthChecks
	HealthChecks         []HealthCheck
	ServiceAccounts      []ServiceAccount
	Privileged           bool
	Configuration        []ConfigurationField
	Properties           Properties
	EnvironmentVariables []EnvironmentVariable
	Dependencies         []string
	OptionalDependencies []string
}

DoguV1 defines an application for the CES. A dogu defines the image and meta information for the resulting container.

Deprecated: This schema is deprecated as it does not contain advanced expressions for dependencies. Please use core.DoguV2 instead.

func (*DoguV1) CreateV2Copy

func (d *DoguV1) CreateV2Copy() Dogu

CreateV2Copy creates a deep DoguV2 copy from an existing DoguV1 object.

type EnvironmentVariable

type EnvironmentVariable struct {
	Key   string
	Value string
}

EnvironmentVariable struct represents custom parameters that can change the behaviour of a dogu build process

func (EnvironmentVariable) String

func (env EnvironmentVariable) String() string

String returns a string representation of this EnvironmentVariable

type ExposedCommand

type ExposedCommand struct {
	// Name identifies the exposed command. This field is mandatory. It must be unique in all commands of the same dogu.
	//
	// The name must consist of:
	//   - lower case latin characters
	//   - special characters underscore "_", minus "-"
	//   - ciphers 0-9
	//
	// Examples:
	//   - service-account-create
	//   - plugin-delete
	//
	Name string
	// Description describes the exposed command in a few words. This field is optional.
	//
	// Example:
	//  - Creates a new service account
	//  - Delete a plugin
	//
	Description string
	// Command identifies the script to be executed for this command. This field is mandatory.
	//
	// The name syntax must comply with the file system syntax of the respective host operating system and is encouraged
	// to consist of:
	//   - lower case latin characters
	//   - special characters underscore "_", minus "-"
	//   - ciphers 0-9
	//
	// Examples:
	//   - /resources/create-sa.sh
	//   - /resources/deletePlugin.sh
	//
	Command string
}

ExposedCommand struct represents a command which can be executed inside the dogu

type ExposedPort

type ExposedPort struct {
	// Type contains the protocol type over which the container communicates (f. i. 'tcp'). This field is optional (the
	// value of `tcp` is then assumed).
	//
	// Example:
	//   - tcp
	//   - udp
	//   - sctp
	//
	Type string
	// Container contains the mapped port on side of the container. This field is mandatory. Usual port range
	// limitations apply.
	//
	// Examples:
	//   - 80
	//   - 8080
	//   - 65535
	//
	Container int
	// Host contains the mapped port on side of the host. This field is mandatory. Usual port range limitations apply.
	//
	// Examples:
	//   - 80
	//   - 8080
	//   - 65535
	//
	Host int
}

ExposedPort struct is used to define ports which are exported to the host.

Example:

{ "Type": "tcp", "Container": "2222", "Host":"2222" }
{ "Container": "2222", "Host":"2222" }

func (*ExposedPort) GetType

func (ep *ExposedPort) GetType() string

GetType returns type of expose port, the default is tcp

type HealthCheck

type HealthCheck struct {
	// Type specifies the nature of the health check. This field is mandatory. It can be either tcp, http or state.
	//
	// For Type "tcp" the given Port needs to be open to be healthy.
	//
	// For Type "http" the service needs to return a status code between >= 200 and < 300 to be healthy.
	// Port and Path are used to reach the service.
	//
	// For Type "state" the /state/<dogu> key in the Cloudogu EcoSystem registry gets checked.
	// This key is written by the installation process.
	// A 'ready' value in etcd means that the dogu is healthy.
	Type string
	// State contains the expected health check state of Type state. This field is optional, even for health checks of
	// the type "state". The default is "ready".
	State string
	// Port is the tcp-port for health checks of Type tcp and http. This field is mandatory for the health check of type
	// "tcp" and "http"
	Port int
	// Path is the Http-Path for health checks of Type "http". This field is mandatory for the health check of type
	// "http". The default is '/health'.
	Path string
	// Parameters may contain key-value pairs for check specific parameters.
	//
	// Deprecated: is not in use.
	Parameters map[string]string
}

HealthCheck provide readiness and health checks for the dogu container.

type Image added in v0.13.0

type Image struct {
	// ID contains the unique identifier of the image given by the CMS. The ID can be used to fetch the image from CMS.
	//
	// Examples:
	//   - 34393ef9-a96d-4d1d-823e-0c17b10b762d
	//	 - 18a5dc18-c202-40b2-9ee0-7f917ad82406
	//
	ID string
	// Title contains the title of the image which is used for accessibility reasons.
	//
	// Examples:
	//   - Screenshot of the main page of the new dogu
	//   - Logo of the provider
	//
	Title string
}

Image describes properties of an image which can be used to represent the image in UI frontends.

Example:

{
	"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
	"Title": "Screenshot of the main page of the new dogu"
}

type Logger added in v0.4.0

type Logger interface {
	// Debug logs messages that generally should not be visible within a production environment but useful when trying
	// to pinpoint error situations during the development.
	Debug(args ...interface{})
	// Info logs messages that may be of general interest but do not state any danger.
	Info(args ...interface{})
	// Warning logs error messages that may require the attention of the user.
	Warning(args ...interface{})
	// Error logs error messages that may jeopardize the success during the run-time.
	Error(args ...interface{})

	// Debugf logs messages that generally should not be visible within a production environment but useful when trying
	// to pinpoint error situations during the development.
	Debugf(format string, args ...interface{})
	// Infof logs messages that may be of general interest but do not state any danger.
	Infof(format string, args ...interface{})
	// Warningf logs error messages that may require the attention of the user.
	Warningf(format string, args ...interface{})
	// Errorf logs error messages that may jeopardize the success during the run-time.
	Errorf(format string, args ...interface{})
}

Logger provides a simple definition of Logging methods that may be used within this project. Logger implementations can be set by getting the current logger referent with GetLogger and to replace it with one's own implementation.

type MarketingDogu added in v0.13.0

type MarketingDogu struct {
	// ID contains the unique identifier of the dogu given by the CMS.
	//
	// Examples:
	//   - 0191b1e2-350f-7ecf-a0a8-6f2a2f0d3607
	//   - 34393ef9-a96d-4d1d-823e-0c17b10b762d
	//
	ID string
	// Deprecated indicates that this dogu is not recommended for new installations.
	// There will be no further development and updates.
	// In the Software Catalogue, deprecated dogus are marked with a warning sign.
	//
	Deprecated bool
	// Namespace contains the dogu's namespace without the name.
	//
	// Name together with Namespace delimited by a single forward slash "/" builds the dogu's full qualified name.
	//
	// Examples:
	//   - official
	//   - premium
	//
	// See also Dogu.Name for how dogu names are constructed.
	Namespace string
	// Name contains the dogu's simple name without the namespace.
	//
	// Name together with Namespace delimited by a single forward slash "/" builds the dogu's full qualified name.
	//
	// Examples:
	//   - redmine
	//   - confluence
	//   - newdogu
	//
	// See also Dogu.Name for how dogu names are constructed.
	Name string
	// Version defines the actual version of the dogu.
	//
	// The version follows the format from semantic versioning and additionally is split in two parts.
	// The application version and the dogu version.
	//
	// An example would be 1.7.8-1 or 2.2.0-4. The first part of the version (e.g. 1.7.8) represents the
	// version of the application (e.g. the nginx version in the nginx dogu). The second part represents the version
	// of the dogu and for an initial release it should start at 1 (e.g. 1.7.8-1).
	//
	// Example versions in the dogu.json:
	//  - 1.7.8-1
	//  - 2.2.0-4
	//
	Version string
	// PublishedAt is the date and time when the dogu was created.
	//
	// Examples:
	//   - 2024-10-16T07:49:34.738Z
	//   - 2019-05-03T13:31:48.612Z
	//
	PublishedAt time.Time
	// DisplayName is the name of the dogu which is used in UI frontends to represent the dogu.
	//
	// Examples:
	//  - Jenkins CI
	//  - Backup & Restore
	//  - My New Dogu
	//
	DisplayName string
	// A provider is an entity that provides / maintains / develops the dogu.
	// The provider is a company in most cases.
	//
	// Example:
	// 	[{
	//		"Slug": "cloudogu",
	//		"Name": "Cloudogu GmbH",
	//		"Logo": {
	//			"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
	//			"Title": "Cloudogu GmbH logo"
	//		}
	//	}]
	//
	Provider []Provider
	//
	// Example:
	// 	{
	//		"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
	//		"Title": "Dogu Logo"
	//	}
	//
	Logo Image
	// BackgroundImage contains information about the background image of the dogu.
	//
	// Example:
	//	{
	//		"ID": "18a5dc18-c202-40b2-9ee0-7f917ad82406",
	//		"Title": "Screenshot of the main page of the new dogu"
	//	}
	//
	BackgroundImage Image
	// Descriptions contains a short explanation, what the dogu does in different languages.
	//
	// Example:
	// 	{
	//		"Description": "Ein neues Dogu",
	//		"LanguageCode": "de"
	//	},
	//	{
	//		"Description": "A new dogu",
	//		"LanguageCode": "en"
	//	}
	Descriptions []Translations
	// ReleaseNotes contains an URL to the release notes of the dogu.
	//
	// Example:
	//	- https://example.com/release-notes
	ReleaseNotes string
}

MarketingDogu describes properties of a dogu which can be used to enhance the representation of a dogu in UI frontends.

Example:

{
	"ID": "0191b1e2-350f-7ecf-a0a8-6f2a2f0d3607",
	"Deprecated": false,
	"Namespace": "official",
	"Name": "newdogu",
	"DisplayName": "My New Dogu",
	"Provider": [
		{
			"Slug": "cloudogu",
			"Name": "Cloudogu GmbH",
			"Logo": {
				"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
				"Title": "Cloudogu GmbH logo"
			}
		}
	],
	"Logo": {
		"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
		"Title": "Dogu icon"
	},
	"BackgroundImage": {
		"ID": "18a5dc18-c202-40b2-9ee0-7f917ad82406",
		"Title": "Screenshot of the main page of the new dogu"
	},
	"Descriptions": [
		{
			"Description": "Ein neues Dogu",
			"LanguageCode": "de"
		},
		{
			"Description": "A new dogu",
			"LanguageCode": "en"
		}
	],
	"ReleaseNotes": "https://example.com/release-notes"
}

type Properties

type Properties map[string]string

Properties describes generic properties of the dogu which are evaluated by a client like cesapp or k8s-dogu-operator.

Example:

  • { "key": "value" }

type Provider added in v0.13.0

type Provider struct {
	// Slug contains the URL-ID of the provider which is part of an URL to access the providers page.
	//
	// Examples:
	//   - cloudogu
	//   - my-provider
	//
	Slug string
	// Name contains the name of the provider.
	//
	// Examples:
	//   - Cloudogu GmbH
	//   - Easy Software Ltd.
	//
	Name string
	//
	// Example:
	// 	{
	//		"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
	//		"Title": "Provider Logo"
	//	}
	//
	Logo Image
}

Provider describes properties of the dogu's publisher. These properties can be used to represent the provider in UI frontends so administrators and users can faster find appropriate support.

Example:

{
	"Slug": "cloudogu",
	"Name": "Cloudogu GmbH",
	"Logo": {
		"ID": "34393ef9-a96d-4d1d-823e-0c17b10b762d",
		"Title": "Cloudogu GmbH logo"
	}
}

type ProxySettings

type ProxySettings struct {
	Enabled  bool
	Server   string `json:",omitempty"`
	Port     int    `json:",omitempty"`
	Username string `json:",omitempty"`
	Password string `json:",omitempty"`
}

ProxySettings contains the settings for http proxy

func (ProxySettings) CreateURL

func (proxy ProxySettings) CreateURL() string

CreateURL creates a proxy http url

type Registry

type Registry struct {
	Type        string      `validate:"eq=etcd"`
	Endpoints   []string    `validate:"required,min=1"`
	RetryPolicy RetryPolicy `json:"retryPolicy,omitempty"`
}

Registry contains Cloudogu EcoSystem registration details.

type Remote

type Remote struct {
	Endpoint               string `validate:"url"`
	AuthenticationEndpoint string `validate:"omitempty,url"`
	URLSchema              string `json:"urlSchema,omitempty" validate:"omitempty,oneof=default index"`
	CacheDir               string `validate:"required"`
	ProxySettings          ProxySettings
	AnonymousAccess        bool        `json:",omitempty"`
	Insecure               bool        `json:",omitempty"`
	RetryPolicy            RetryPolicy `json:"retryPolicy,omitempty"`
}

Remote contains dogu registry configuration details.

type RetryPolicy added in v0.7.0

type RetryPolicy struct {
	Type          string `json:"type,omitempty"`
	Interval      int64  `json:"interval" validate:"gte=0"`
	MaxRetryCount int    `json:"maxRetryCount" validate:"gte=0"`
}

type Security added in v0.16.0

type Security struct {
	// Capabilities sets the allowed and dropped capabilities for the dogu. The dogu should not use more than the
	// configured capabilities here, otherwise failure may occur at start-up or at run-time. This list is optional.
	Capabilities Capabilities `json:"Capabilities,omitempty"`
	// RunAsNonRoot indicates that the container must run as a non-root user. The dogu must support running as non-root
	// user otherwise the dogu start may fail. This flag is optional and defaults to false.
	RunAsNonRoot bool
	// ReadOnlyRootFileSystem mounts the container's root filesystem as read-only. The dogu must support accessing the
	// root file system by only reading otherwise the dogu start may fail. This flag is optional and defaults to false.
	ReadOnlyRootFileSystem bool
}

Security defines security policies for the dogu. These fields can be used to reduce a dogu's attack surface.

Example:

"Security": {
  "Capabilities": {
     "Drop": ["All"],
     "Add": ["NetBindService", "Kill"]
   },
  "RunAsNonRoot": true,
  "ReadOnlyRootFileSystem": true
}

type ServiceAccount

type ServiceAccount struct {
	// Type contains the name of the service on which the account should be created. This field is mandatory.
	//
	// Example:
	//   - postgresql
	//   - your-dogu
	//
	Type string
	// Params contains additional arguments necessary for the service account creation. The optionality of this field
	// depends on the desired service account producer dogu. Please consult the service account producer dogu in
	// question.
	Params []string
	// Kind defines the kind of service on which the account should be created, e.g. `dogu` or `k8s`. This field is
	// optional. If empty, a default value of `dogu` should be assumed.
	//
	// Reading this property and creating a corresponding service account is up to the client.
	//
	Kind string `json:"Kind,omitempty"`
}

ServiceAccount struct can be used to get access to another dogu.

Example:

{
 "Type": "k8s-dogu-operator",
 "Kind": "k8s"
}

type Translations added in v0.13.0

type Translations struct {
	// Description contains a short explanation, what the dogu does in a specific language.
	//
	// Examples:
	//  - MySQL - Relationale Datenbank
	//  - Jenkins Continuous Integration Server
	//
	Description string
	// LanguageCode contains the ISO-639-1 code of the language in which the description is written.
	//
	// Examples:
	//   - de
	//   - en
	//
	LanguageCode string
}

Translations describes properties of a description of a dogu in a specific language. It can be used to represent the dogu's description in UI frontends in different languages.

Example:

{
	"Description": "MySQL - Relationale Datenbank",
	"LanguageCode": "de"
},
{
	"Description": "MySQL - Relational database",
	"LanguageCode": "en"
}

type ValidationDescriptor

type ValidationDescriptor struct {
	// Type contains the name of the config value validator. This field is mandatory. Valid types are:
	//
	//   - ONE_OF
	//   - BINARY_MEASUREMENT
	//   - FLOAT_PERCENTAGE_HUNDRED
	//
	Type string
	// Values may contain values that aid the selected validator. The values may or
	// may not be optional, depending on the Type being used.
	// It is up to the selected validator whether this field is mandatory, optional,
	// or unused.
	Values []string
}

ValidationDescriptor describes how to determine if a config value is valid.

type Version

type Version struct {
	Raw   string
	Major int
	Minor int
	Patch int
	Nano  int
	Extra int
}

Version struct can be used to extract single parts of a version number or to compare version with each other. The version struct can with four or fewer digits, plus an extra version which is divided by a hyphen. For example: 4.0.7.11-3 => 4 Major, 0 Minor, 7 Patch, 11 Nano, 3 Extra

func ParseVersion

func ParseVersion(raw string) (Version, error)

ParseVersion parses a raw version string and returns a Version struct

func (*Version) IsEqualTo

func (v *Version) IsEqualTo(o Version) bool

IsEqualTo returns true if this version is equal to the given version parameter, otherwise false.

func (*Version) IsNewerOrEqualThan

func (v *Version) IsNewerOrEqualThan(o Version) bool

IsNewerOrEqualThan returns true if this version is newer than the given version parameter

func (*Version) IsNewerThan

func (v *Version) IsNewerThan(o Version) bool

IsNewerThan returns true if this version is newer than the given version parameter

func (*Version) IsOlderOrEqualThan

func (v *Version) IsOlderOrEqualThan(o Version) bool

IsOlderOrEqualThan returns true if this version is older or equal than the given version parameter

func (*Version) IsOlderThan

func (v *Version) IsOlderThan(o Version) bool

IsOlderThan returns true if this version is older than the given version parameter

func (*Version) String added in v0.15.0

func (v *Version) String() string

String returns a string representation of a Version object. The string will be reduced to the format Major.Minor.Patch if the values of Extra and/or Nano are equal to zero and thus indicating that they are not set.

type VersionComparator

type VersionComparator struct {
	// contains filtered or unexported fields
}

VersionComparator is responsible to compare versions and to check defined constraints.

func ParseVersionComparator

func ParseVersionComparator(raw string) (VersionComparator, error)

ParseVersionComparator creates a new version comparator by parsing a raw version string.

func (VersionComparator) Allows

func (v VersionComparator) Allows(version Version) (bool, error)

Allows check whether the given version fulfills the requirements for the version comparator.

type Volume

type Volume struct {
	// Name identifies the volume. This field is mandatory. It must be unique in all volumes of the same dogu.
	//
	// The name syntax must comply with the file system syntax of the respective host operating system and is encouraged
	// to consist of:
	//   - lower case latin characters
	//   - special characters underscore "_", minus "-"
	//   - ciphers 0-9
	//
	// The name must not be "_private" to avoid conflicts with the dogu's private key.
	//
	// Examples:
	//   - tooldata
	//   - tool-data-0
	//
	Name string
	// Path to the directory or file where the volume will be mounted inside the dogu. This field is mandatory.
	//
	// Path may consist of several directory levels, delimited by a forward slash "/". Path must comply with the file
	// system syntax of the container operating system.
	//
	// The path must not match `/private` to avoid conflicts with the dogu's private key.
	//
	// Examples:
	//   - /usr/share/yourtool
	//   - /tmp
	//   - /usr/share/license.txt
	//
	Path string
	// Owner contains the numeric Unix UID of the user owning this volume. This field is optional.
	//
	// For security reasons it is strongly recommended to set the Owner of the volume to an unprivileged user. Please
	// note that container image must be then built in a way that the container process may own the path either by
	// user or group ownership.
	//
	// The owner syntax must consist of ciphers (0-9) only.
	//
	// Examples:
	//   - "1000" - an unprivileged user
	//   - "0" - the root user
	//
	Owner string
	// Group contains the numeric Unix GID of the group owning this volume. This field is optional.
	//
	// For security reasons it is strongly recommended to set the Group of the volume to an unprivileged Group. Please
	// note that container image must be then built in a way that the container process may own the path either by
	// user or group ownership.
	//
	// The Group syntax must consist of ciphers (0-9) only.
	//
	// Examples:
	//   - "1000" - an unprivileged group
	//   - "0" - the root group
	//
	Group string
	// NeedsBackup controls whether the Cloudogu EcoSystem backup facility backs up the whole the volume or not. This
	// field is optional. If unset, a value of `false` will be assumed.
	NeedsBackup bool
	// Clients contains a list of client-specific (t. i., the client that interprets the dogu.json) configurations for
	// the volume. This field is optional.
	//
	Clients []VolumeClient `json:"Clients,omitempty"`
}

Volume defines container volumes that are created during the dogu creation or upgrade.

Examples:

  • { "Name": "data", "Path":"/usr/share/yourtool/data", "Owner":"1000", "Group":"1000", "NeedsBackup": true}
  • { "Name": "temp", "Path":"/tmp", "Owner":"1000", "Group":"1000", "NeedsBackup": false}

func (*Volume) GetClient added in v0.9.0

func (v *Volume) GetClient(clientName string) (*VolumeClient, bool)

GetClient retrieves a client with a given name and return a pointer to it. If a client does not exist a nil pointer and false are returned.

func (*Volume) UnmarshalJSON

func (v *Volume) UnmarshalJSON(data []byte) error

UnmarshalJSON sets the default value for NeedsBackup. We are preventing an infinite loop by using a local Alias type to call json.Unmarshal again

type VolumeClient added in v0.9.0

type VolumeClient struct {
	// Name identifies the client responsible to process this volume definition. This field is mandatory.
	//
	// Examples:
	//   - cesapp
	//   - k8s-dogu-operator
	Name string
	// Params contains generic data only interpretable by the client. This field is mandatory.
	Params interface{}
}

VolumeClient adds additional information for clients to create volumes.

Example:

{
  "Name": "k8s-dogu-operator",
  "Params": {
    "Type": "configmap",
    "Content": {
      "Name": "k8s-ces-menu-json"
    }
  }
}

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL