LdZddlmZddlmZddlmZddlmZddlm Z dZ dZ Gd d ejZ d Zd Zy )z;Common logic between commands on Config Management surface.)utils)base) constants) exceptions)yamlz{} must be a YAML mapping node. This field should either contain indented key, value pairs or have the empty map {{}} as its value. See --help flag output for links to examples.zw{} must be a YAML list. This field should contain indented list elements. See --help flag output for links to examples.cReZdZdZdZdZdZdZdZdZ dZ d Z d Z d e fd Zy )CommonzCCommon operations between commands on Config Management surface. c  tj|}t ||j j|j||j||j||j||jdijdd|djtjS#tj$r*}tjdj ||d}~wwxYw)apParse a Config Management membership spec from config_file_path. Args: config_file_path: Path to file with syntax following the --config flag of the apply command. Returns: config_management: Populated ConfigManagementMembershipSpec message. Raises: Any errors during parsing. May not check semantic meaning of field values. zInvalid config yaml file {}Nspeccluster) configSyncpolicyControllerhierarchyController managementr version)r load_pathErrorrformat_validate_metamessagesConfigManagementMembershipSpec_parse_config_sync_parse_policy_controller"_parse_hierarchy_controller_config_parse_upgradesgetrVERSION)selfconfig_file_pathconfiges Klib/googlecloudsdk/command_lib/container/fleet/config_management/command.pyparse_config_managementzCommon.parse_config_management+s~~./f 6 == 7 7**6266v> CCFK''/ 62&**9b9v""5==1 8  ::    ' . ./? @! sB??C<%C77C<c d|vstj|dvryt|dtjts9t j t jdtjz|dtj}t|tjtjdtj}|r_t j djdj|Dcgc]"}djtj|$c}|jj}tj|vr;t!|tj|j#|tjd|_d|vr |d|_|j'd d }|d k(r|j)||_nO|d k(r|j-||_n3t j d jtj|d |vr |d |_d|vr |d|_d|vr |d|_d|vr |d|_|Scc}w)a:Load ConfigSync configuration with the parsed configmanagement yaml. Args: configmanagement: dict, The data loaded from the config-management.yaml given by user. Returns: config_sync: The ConfigSync configuration holds configmanagement.spec.git or configmanagement.spec.oci being used in MembershipConfigs Raises: gcloud core Error, if the configSync field on configmanagement has invalid syntax. Note that this function does not check semantic meaning of field values, other than for .spec.configSync.sourceType. r N.spec.!Please remove illegal field(s) {}, z .spec.{}.{}Tenabled sourceTypegitocizL.spec.{}.sourceType has illegal value {}. Please replace with `git` or `oci` sourceFormat stopSyncing preventDriftmetricsGcpServiceAccountEmail)r CONFIG_SYNC isinstancedictrrMAP_NODE_EXCEPTION_FORMATr_find_unknown_fieldsrloadAPPLY_SPEC_VERSION_1joinrConfigManagementConfigSyncDEPLOYMENT_OVERRIDESsetattr_parse_deployment_overridesr)r_parse_git_configr+_parse_oci_configr,r-r.r/r0)rconfigmanagement spec_sourceillegal_fieldsf config_sync source_types r#rzCommon._parse_config_syncMsa &&   $4V$< <  &v.u/@/@A4 H    # * *8E4E4E+E F #6*5+<+<=K)+*.))E4N4N*O+1+3383D3D+FGN   @GG )),.,#))%*;*;Q?,. /  --::$>>   8+ '' n  / 6 6 ++rGcpuLimit cpuRequest memoryLimit memoryRequestr'r(z0.spec.configSync.deploymentOverrides.containers.rGr rXrZrWrY) containerNamerXrZrWrY)r2rLrrrMrrr:rNr5r8rOr!ConfigManagementContainerOverrider)rspec_containersrK containerrArBs r#rQzCommon._parse_containerssF ot ,     & &!**+))*  J$ +   n  / 6 6 ++GJ+    -- 9 9%MM&"5"|R8%MM/2> }}Z4#-- r: : )%: s D<c|jj}d|vr |d|_dD]}||vst|||||S)aLoad GitConfig with the parsed config_sync yaml. Args: spec_source: The config_sync dict loaded from the config-management.yaml given by user. Returns: git_config: The GitConfig configuration being used in MembershipConfigs syncWait) policyDir secretType syncBranchsyncReposyncRev httpsProxygcpServiceAccountEmail)rConfigManagementGitConfig syncWaitSecsr;)rr@ git_configfields r#r=zCommon._parse_git_configsZ88:J[ +J 7j +  E;u#56 c|jj}d|vr |d|_dD]}||vst|||||S)zLoad OciConfig with the parsed config_sync yaml. Args: spec_source: The config_sync dict loaded from the config-management.yaml given by user. Returns: oci_config: The OciConfig being used in MembershipConfigs r`)rarbrdrg)rConfigManagementOciConfigrir;)rr@ oci_configrks r#r>zCommon._parse_oci_configsZ88:J[ +J 7j +  E;u#56 rlc d|vsd|dvryt|ddts(tjtj d|dd}d|vrtjd|d}t|t stjd|jj}t|hd}|rDtjd j d j|Dcgc]}d |z c}|D]9}|d k(r"|j||}t|||*t||||;|Scc}w) a(Load PolicyController with the parsed config-management.yaml. Args: configmanagement: dict, The data loaded from the config-management.yaml given by user. Returns: policy_controller: The Policy Controller configuration for MembershipConfigs, filled in the data parsed from configmanagement.spec.policyController Raises: gcloud core Error, if Policy Controller has invalid syntax. Note that this function does not check semantic meaning of field values other than monitoring backends. r rNz.spec.policyControllerr)z5Missing required field .spec.policyController.enabledz4policyController.enabled should be `true` or `false`>r) monitoringmutationEnabledlogDeniesEnabledauditIntervalSecondsexemptableNamespacesreferentialRulesEnabledtemplateLibraryInstalledr'r(z.spec.policyController.rq) r2r3rrr4rboolr ConfigManagementPolicyControllerr5r8_build_monitoring_msgr;) rr?spec_policy_controllerr)policy_controllerrArBrkrqs r#rzCommon._parse_policy_controllers}$ && %5f%= =  &v./ABD I    # * *+C D .f56HI..    A %Y/G gt $    @  FFH**@ C N   @GG )).I.Q.q0.I J  ( , //0Fu0MN !5*5!5*@*GH ( Js) Ect|ts(tjtj d|j dg}|sytj|jfd} |Dcgc] }|| }}|jj|Scc}w#ttf$rtjdwxYw)aBuild PolicyControllerMonitoring message from the parsed spec. Args: spec_monitoring: dict, The monitoring data loaded from the config-management.yaml given by user. Returns: monitoring: The Policy Controller Monitoring configuration for MembershipConfigs, filled in the data parsed from configmanagement.spec.policyController.monitoring Raises: gcloud core Error, if spec_monitoring is invalid, including its backend values. z!.spec.policyController.monitoringbackendsNcj|j}|s$tjdj ||S)Nz8policyController.monitoring.backend {} is not recognized)rlowerrrr)backendresult converters r#convertz-Common._build_monitoring_msg..convertvsE}}W]]_-f  F M M   mrlzk.spec.policyController.monitoring.backend must be a sequence of strings. See --help flag output for details)r~) r2r3rrr4rrrmonitoring_backend_converterr TypeErrorAttributeError*ConfigManagementPolicyControllerMonitoring)rspec_monitoringr~rrmonitoring_backendsrs @r#rzzCommon._build_monitoring_msg]s ot ,    # * *+N O "":r2H  66t}}EI=EFX'WW-XF == C C$ D  G ~ &    : s4B*8B%B*%B**%Cc @d|vsd|dvryt|ddts(tjtj d|dd}d|vrtjdt|dt stjd|jj}t|hd}|rDtjd j d j|Dcgc]}d |z c}|D]}t|||||Scc}w) a Load HierarchyController with the parsed config-management.yaml. Args: configmanagement: dict, The data loaded from the config-management.yaml given by user. Returns: hierarchy_controller: The Hierarchy Controller configuration for MembershipConfigs, filled in the data parsed from configmanagement.spec.hierarchyController Raises: gcloud core Error, if Hierarchy Controller has invalid syntax. Note that this function does not check semantic meaning of field values. r rNz.spec.hierarchyControllerr)z8Missing required field .spec.hierarchyController.enabledz7hierarchyController.enabled should be `true` or `false`>r)enablePodTreeLabelsenableHierarchicalResourceQuotar'r(z.spec.hierarchyController.) r2r3rrr4rrxr)ConfigManagementHierarchyControllerConfigr5r8r;)rr?r config_protorArBrks r#rz)Common._parse_hierarchy_controller_configsD && (8(@ @  &v./DEt L    # * *+F G  F #$9 :D    D  d9ot ,    C ==JJLL*$1N    @GG ))^L^1!3^L M   lE4;/  Ms' Dreturnc|jdijtjd}tjtjtj g}dj d|D}||vr3tjdjtj||jj}|tjk(r|jjS|jjS)aVParse configmanagement `.spec.upgrades` into management enum. Args: configmanagement: dict of file contents for --config flag on apply command that represents Config Management membership spec. Returns: v1main ConfigManagementMembershipSpec management value. Raises: gcloud core Error for invalid value. r r  c3(K|] }d|d yw)'N).0rks r# z)Common._parse_upgrades..sClUawaLlsz*The valid values of field .spec.{} are: {})rrUPGRADES UPGRADES_AUTOUPGRADES_MANUALUPGRADES_EMPTYr8rrrrrManagementValueValuesEnumMANAGEMENT_AUTOMATICMANAGEMENT_MANUAL)rr?upgrades legal_fields valid_valuesspec_apis r#rzCommon._parse_upgradess ##FB/33ENNBGH   L 88ClCCL|#    6 = =nnl   }};;H5&&&  / / D DD  / / A AArlN)__name__ __module__ __qualname____doc__r$rr<rQr=r>rrzrstrrrrlr#r r 'sK DFP& P)V60@D+Z4lBBrlr c |t|tstjdt |ddh}|rDtjdj dj |Dcgc]}d|z c}d|vrtjd|ddk7rtjd d|vrtjd t|dts(tjtj d t |dtjtjtjtjtjtjh}|rDtjdj dj |Dcgc]}d |z c}y cc}wcc}w)zValidate the parsed configmanagement yaml. Args: configmanagement: Data type loaded from yaml. Raises: gcloud core Error, if the top-level fields have invalid syntax. z"Invalid ConfigManagement template.applySpecVersionr r'r(rVz(Missing required field .applySpecVersionzOnly "applySpecVersion: 1" is supported. To use a later version,please fetch the config by running gcloud container fleet config-management fetch-for-applyzMissing required field .specz.specr&N)r2r3rrr5rr8r4rr1POLICY_CONTROLLERHNCCLUSTERrr)r?illegal_root_fieldsrBillegal_spec_fieldss r#rrs $d +   ? @@,-= @   >EE "56"5Q3q5"567  //   E FF()Q.    C   ##   9 :: $V,d 3   4;;GD EE,-=f-E   ii mm nn mm H   >EE ':;':!8A:':;< 174rsOBNDQ*$N5tBT tBn *Z rl