Add CI and update dependencies

- Bump Golang to version 1.23.1 - Add Github Actions to test and publish images - Update dependencies - Fix TTL conversion error - Drop default timezone in Dockerfile
neticdk · Sep 13, 2024 · 9a214e0 · 9a214e0
2 parents 64d0728 + 04215ec
commit 9a214e0
Show file tree

Hide file tree

Showing 108 changed files with 3,612 additions and 6,659 deletions.
diff --git a/.dockerignore b/.dockerignore
@@ -0,0 +1,32 @@
+# Include any files or directories that you don't want to be copied to your
+# container here (e.g., local build artifacts, temporary files, etc.).
+#
+# For more help, visit the .dockerignore file reference guide at
+# https://docs.docker.com/go/build-context-dockerignore/
+
+**/.DS_Store
+**/.classpath
+**/.dockerignore
+**/.env
+**/.git
+**/.gitignore
+**/.project
+**/.settings
+**/.toolstarget
+**/.vs
+**/.vscode
+**/*.*proj.user
+**/*.dbmdl
+**/*.jfm
+**/bin
+**/charts
+**/docker-compose*
+**/compose.y*ml
+**/Dockerfile*
+**/node_modules
+**/npm-debug.log
+**/obj
+**/secrets.dev.yaml
+**/values.dev.yaml
+LICENSE
+README.md
diff --git a/.github/workflows/release.yaml b/.github/workflows/release.yaml
@@ -0,0 +1,46 @@
+name: Create and publish a Docker image
+
+on:
+  push:
+    tags:
+      - '*'
+
+env:
+  REGISTRY: ghcr.io
+  IMAGE_NAME: ${{ github.repository }}
+
+jobs:
+  build-and-push-image:
+    runs-on: ubuntu-latest
+
+    permissions:
+      contents: read
+      packages: write
+      attestations: write
+      id-token: write
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v4
+
+      - name: Log in to the Container registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ env.REGISTRY }}
+          username: ${{ github.actor }}
+          password: ${{ secrets.GITHUB_TOKEN }}
+
+      - name: Extract metadata (tags, labels) for Docker
+        id: meta
+        uses: docker/metadata-action@v5
+        with:
+          images: ${{ env.REGISTRY }}/${{ env.IMAGE_NAME }}
+
+      - name: Build and push Docker image
+        id: push
+        uses: docker/build-push-action@v6
+        with:
+          context: .
+          push: true
+          tags: ${{ steps.meta.outputs.tags }}
+          labels: ${{ steps.meta.outputs.labels }}
diff --git a/.github/workflows/test.yaml b/.github/workflows/test.yaml
@@ -0,0 +1,21 @@
+name: Compile & Test
+
+on: [push]
+
+jobs:
+  build-and-test:
+    runs-on: ubuntu-latest
+
+    steps:
+      - uses: actions/checkout@v4
+
+      - name: Set up Go
+        uses: actions/setup-go@v5
+        with:
+          go-version: '^1.23.1'
+
+      - name: Build
+        run: go build ./...
+
+      - name: Test
+        run: go test -v ./... -vet=all
diff --git a/Dockerfile b/Dockerfile
@@ -1,32 +1,29 @@
 # syntax=docker/dockerfile:1
 
-# Build the webhook binary
-FROM golang:1.23.0-alpine3.20 AS builder
-ARG COMP_TIME=""
+ARG GO_VERSION=1.23.1
+FROM golang:1.23.1 AS builder
 ARG TARGETOS
 ARG TARGETARCH
 
-WORKDIR /
-
-# Copy the code into the container
-COPY go.mod .
-COPY go.sum .
-COPY cmd/webhook cmd/webhook
-COPY vendor vendor
+WORKDIR /src
 
+# Build the application.
+# Leverage a cache mount to /go/pkg/mod/ to speed up subsequent builds.
+# Leverage a bind mount to the current directory to avoid having to copy the
+# source code into the container.
 # CGO_ENABLED=0 makes Go statically link the binary so we can use it in a
 # distroless image. GOARCH doesn't have a default value, allowing the binary
 # build for the host. For example, if we call docker build in a local env with
 # Apple Silicon M1 the docker BUILDPLATFORM arg will be linux/arm64. When the
 # platform is Apple x86 it will be linux/amd64. Therefore, by leaving it empty
 # container and binary shipped on it has the same platform.
-RUN CGO_ENABLED=0 GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} go build -ldflags="-s -w" -o webhook /cmd/webhook
+RUN --mount=type=cache,target=/go/pkg/mod/ \
+    --mount=type=bind,target=. \
+    CGO_ENABLED=0 GOOS=${TARGETOS:-linux} GOARCH=${TARGETARCH} go build -ldflags="-s -w" -o /webhook ./cmd/webhook
 
 # Refer to https://github.com/GoogleContainerTools/distroless for more details
-FROM gcr.io/distroless/static:nonroot AS application
-ARG TZ
+FROM gcr.io/distroless/static:nonroot AS final
 
-ENV TZ=${TZ}
 COPY --from=builder /webhook /
 USER 65532:65532
 ENTRYPOINT [ "/webhook" ]
diff --git a/README.md b/README.md
@@ -81,4 +81,3 @@ go build cmd/webhook/
 - So far the record types are A, AAAA and CNAME
 - Needs some unit tests
 - Add GitHub actions
-- Set timezone at upstart (runtime)
diff --git a/cmd/webhook/logging.go b/cmd/webhook/logging.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (

diff --git a/cmd/webhook/main.go b/cmd/webhook/main.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (

diff --git a/cmd/webhook/provider.go b/cmd/webhook/provider.go
@@ -1,10 +1,27 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
 	"context"
 	"encoding/json"
 	"fmt"
 	"log/slog"
+	"strconv"
 	"strings"
 	"sync"
 
@@ -28,7 +45,7 @@ type tidyRecord = tidydns.Record
 
 const annotationKey = "webhook/tidy-description"
 
-func newProvider(tidy tidydns.TidyDNSClient, zoneProvider ZoneProvider) (Provider, error) {
+func newProvider(tidy tidydns.TidyDNSClient, zoneProvider ZoneProvider) (*tidyProvider, error) {
 	return &tidyProvider{
 		tidy:         tidy,
 		zoneProvider: zoneProvider,
@@ -292,7 +309,7 @@ func (p *tidyProvider) createRecord(zones []tidydns.Zone, endpoint *Endpoint) {
 			Name:        dnsName,
 			Description: description,
 			Destination: target,
-			TTL:         json.Number(ttl),
+			TTL:         json.Number(strconv.Itoa(ttl)),
 		}
 
 		slog.Debug(fmt.Sprintf("create record %+v", *newRec))

diff --git a/cmd/webhook/server.go b/cmd/webhook/server.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (

diff --git a/cmd/webhook/tidydns/metrics.go b/cmd/webhook/tidydns/metrics.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package tidydns
 
 import (

diff --git a/cmd/webhook/tidydns/tidydns.go b/cmd/webhook/tidydns/tidydns.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package tidydns
 
 import (

diff --git a/cmd/webhook/webhook.go b/cmd/webhook/webhook.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (
@@ -9,7 +25,6 @@ import (
 
 	"sigs.k8s.io/external-dns/endpoint"
 	"sigs.k8s.io/external-dns/plan"
-	"sigs.k8s.io/external-dns/provider"
 )
 
 type webhook interface {
@@ -20,15 +35,15 @@ type webhook interface {
 }
 
 type tidyWebhook struct {
-	provider provider.Provider
+	provider *tidyProvider
 }
 
 const (
 	headerKey   = "Content-Type"
 	headerValue = "application/external.dns.webhook+json;version=1"
 )
 
-func newWebhook(p provider.Provider) webhook {
+func newWebhook(p *tidyProvider) webhook {
 	return &tidyWebhook{p}
 }
 

diff --git a/cmd/webhook/zoneprovider.go b/cmd/webhook/zoneprovider.go
@@ -1,3 +1,19 @@
+/*
+Copyright 2024 Netic A/S.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
 package main
 
 import (