diff --git a/README.md b/README.md index db32adcf..036cfa74 100644 --- a/README.md +++ b/README.md @@ -39,12 +39,13 @@ Documentation on how to install and use this tool can be found on our [documenta Run `kafka-gitops` to view the help output. ```bash -Usage: kafka-gitops [-hvV] [--no-delete] [--skip-acls] [-f=] [COMMAND] +Usage: kafka-gitops [-hvV] [--no-delete] [--skip-acls] [--skip-topics] [-f=] [COMMAND] Manage Kafka resources with a desired state file. -f, --file= Specify the desired state file. -h, --help Display this help message. --no-delete Disable the ability to delete resources. --skip-acls Do not take ACLs into account during plans or applies. + --skip-topics Do not take topics into account during plans or applies. -v, --verbose Show more detail during execution. -V, --version Print the current version of this tool. Commands: diff --git a/docs/quick-start.md b/docs/quick-start.md index aecee291..9f214e9d 100644 --- a/docs/quick-start.md +++ b/docs/quick-start.md @@ -99,6 +99,12 @@ If running against a Kafka cluster with no authorizer configured or if you simpl kafka-gitops --skip-acls plan ``` +Conversely, if you're only interested in managing ACLs you can ignore changes to topics completely. This can be done by running: + +```bash +kafka-gitops --skip-topics plan +``` + ## Apply To execute a plan against the cluster, we use the apply command. diff --git a/src/main/java/com/devshawn/kafka/gitops/MainCommand.java b/src/main/java/com/devshawn/kafka/gitops/MainCommand.java index 5bcbadad..4720f576 100644 --- a/src/main/java/com/devshawn/kafka/gitops/MainCommand.java +++ b/src/main/java/com/devshawn/kafka/gitops/MainCommand.java @@ -37,6 +37,9 @@ public class MainCommand implements Callable { @Option(names = {"--skip-acls"}, description = "Do not take ACLs into account during plans or applies.") private boolean skipAcls = false; + @Option(names = {"--skip-topics"}, description = "Do not take topics into account during plans or applies.") + private boolean skipTopics = false; + @Option(names = {"-h", "--help"}, usageHelp = true, description = "Display this help message.") private boolean helpRequested = false; @@ -80,6 +83,10 @@ public boolean areAclsDisabled() { return skipAcls; } + public boolean areTopicsDisabled() { + return skipTopics; + } + public static void main(String[] args) { int exitCode = new CommandLine(new MainCommand()).execute(args); System.exit(exitCode); diff --git a/src/main/java/com/devshawn/kafka/gitops/StateManager.java b/src/main/java/com/devshawn/kafka/gitops/StateManager.java index e44c42e7..c991731c 100644 --- a/src/main/java/com/devshawn/kafka/gitops/StateManager.java +++ b/src/main/java/com/devshawn/kafka/gitops/StateManager.java @@ -81,7 +81,10 @@ public DesiredStateFile getAndValidateStateFile() { public DesiredPlan plan() { DesiredPlan desiredPlan = generatePlan(); planManager.writePlanToFile(desiredPlan); - planManager.validatePlanHasChanges(desiredPlan, managerConfig.isDeleteDisabled(), managerConfig.isSkipAclsDisabled()); + planManager.validatePlanHasChanges(desiredPlan, + managerConfig.isDeleteDisabled(), + managerConfig.isSkipAclsDisabled(), + managerConfig.isSkipTopicsDisabled()); return desiredPlan; } @@ -91,7 +94,11 @@ private DesiredPlan generatePlan() { if (!managerConfig.isSkipAclsDisabled()) { planManager.planAcls(desiredState, desiredPlan); } - planManager.planTopics(desiredState, desiredPlan); + + if (!managerConfig.isSkipTopicsDisabled()) { + planManager.planTopics(desiredState, desiredPlan); + } + return desiredPlan.build(); } @@ -101,9 +108,13 @@ public DesiredPlan apply() { desiredPlan = generatePlan(); } - planManager.validatePlanHasChanges(desiredPlan, managerConfig.isDeleteDisabled(), managerConfig.isSkipAclsDisabled()); + planManager.validatePlanHasChanges(desiredPlan, managerConfig.isDeleteDisabled(), + managerConfig.isSkipAclsDisabled(), managerConfig.isSkipTopicsDisabled()); + + if (!managerConfig.isSkipTopicsDisabled()) { + applyManager.applyTopics(desiredPlan); + } - applyManager.applyTopics(desiredPlan); if (!managerConfig.isSkipAclsDisabled()) { applyManager.applyAcls(desiredPlan); } diff --git a/src/main/java/com/devshawn/kafka/gitops/cli/AccountCommand.java b/src/main/java/com/devshawn/kafka/gitops/cli/AccountCommand.java index e654184c..b12e3c51 100644 --- a/src/main/java/com/devshawn/kafka/gitops/cli/AccountCommand.java +++ b/src/main/java/com/devshawn/kafka/gitops/cli/AccountCommand.java @@ -46,6 +46,7 @@ private ManagerConfig generateStateManagerConfig() { .setDeleteDisabled(parent.isDeleteDisabled()) .setIncludeUnchangedEnabled(false) .setSkipAclsDisabled(parent.areAclsDisabled()) + .setSkipTopicsDisabled(parent.areTopicsDisabled()) .setNullableConfigFile(parent.getConfigFile()) .setStateFile(parent.getStateFile()) .build(); diff --git a/src/main/java/com/devshawn/kafka/gitops/cli/ApplyCommand.java b/src/main/java/com/devshawn/kafka/gitops/cli/ApplyCommand.java index 55f39ff9..89ad2790 100644 --- a/src/main/java/com/devshawn/kafka/gitops/cli/ApplyCommand.java +++ b/src/main/java/com/devshawn/kafka/gitops/cli/ApplyCommand.java @@ -34,7 +34,10 @@ public Integer call() { ParserService parserService = new ParserService(parent.getStateFile()); StateManager stateManager = new StateManager(generateStateManagerConfig(), parserService); DesiredPlan desiredPlan = stateManager.apply(); - LogUtil.printApplyOverview(PlanUtil.getOverview(desiredPlan, parent.isDeleteDisabled(), parent.areAclsDisabled())); + LogUtil.printApplyOverview(PlanUtil.getOverview(desiredPlan, + parent.isDeleteDisabled(), + parent.areAclsDisabled(), + parent.areTopicsDisabled())); return 0; } catch (PlanIsUpToDateException ex) { LogUtil.printNoChangesMessage(); @@ -55,6 +58,7 @@ private ManagerConfig generateStateManagerConfig() { .setDeleteDisabled(parent.isDeleteDisabled()) .setIncludeUnchangedEnabled(false) .setSkipAclsDisabled(parent.areAclsDisabled()) + .setSkipTopicsDisabled(parent.areTopicsDisabled()) .setNullableConfigFile(parent.getConfigFile()) .setStateFile(parent.getStateFile()) .setNullablePlanFile(planFile) diff --git a/src/main/java/com/devshawn/kafka/gitops/cli/PlanCommand.java b/src/main/java/com/devshawn/kafka/gitops/cli/PlanCommand.java index 2800bc41..2bd78691 100644 --- a/src/main/java/com/devshawn/kafka/gitops/cli/PlanCommand.java +++ b/src/main/java/com/devshawn/kafka/gitops/cli/PlanCommand.java @@ -36,7 +36,7 @@ public Integer call() { ParserService parserService = new ParserService(parent.getStateFile()); StateManager stateManager = new StateManager(generateStateManagerConfig(), parserService); DesiredPlan desiredPlan = stateManager.plan(); - LogUtil.printPlan(desiredPlan, parent.isDeleteDisabled(), parent.areAclsDisabled()); + LogUtil.printPlan(desiredPlan, parent.isDeleteDisabled(), parent.areAclsDisabled(), parent.areTopicsDisabled()); return 0; } catch (PlanIsUpToDateException ex) { LogUtil.printNoChangesMessage(); @@ -61,6 +61,7 @@ private ManagerConfig generateStateManagerConfig() { .setNullableConfigFile(parent.getConfigFile()) .setStateFile(parent.getStateFile()) .setSkipAclsDisabled(parent.areAclsDisabled()) + .setSkipTopicsDisabled(parent.areTopicsDisabled()) .setNullablePlanFile(outputFile) .build(); } diff --git a/src/main/java/com/devshawn/kafka/gitops/cli/ValidateCommand.java b/src/main/java/com/devshawn/kafka/gitops/cli/ValidateCommand.java index bc390891..50ff59af 100644 --- a/src/main/java/com/devshawn/kafka/gitops/cli/ValidateCommand.java +++ b/src/main/java/com/devshawn/kafka/gitops/cli/ValidateCommand.java @@ -38,6 +38,7 @@ private ManagerConfig generateStateManagerConfig() { .setDeleteDisabled(parent.isDeleteDisabled()) .setIncludeUnchangedEnabled(false) .setSkipAclsDisabled(parent.areAclsDisabled()) + .setSkipTopicsDisabled(parent.areTopicsDisabled()) .setNullableConfigFile(parent.getConfigFile()) .setStateFile(parent.getStateFile()) .build(); diff --git a/src/main/java/com/devshawn/kafka/gitops/config/ManagerConfig.java b/src/main/java/com/devshawn/kafka/gitops/config/ManagerConfig.java index 1c765442..641a7828 100644 --- a/src/main/java/com/devshawn/kafka/gitops/config/ManagerConfig.java +++ b/src/main/java/com/devshawn/kafka/gitops/config/ManagerConfig.java @@ -18,6 +18,8 @@ public interface ManagerConfig { boolean isSkipAclsDisabled(); + boolean isSkipTopicsDisabled(); + Optional getConfigFile(); File getStateFile(); diff --git a/src/main/java/com/devshawn/kafka/gitops/manager/PlanManager.java b/src/main/java/com/devshawn/kafka/gitops/manager/PlanManager.java index ddd2e394..726cc1d6 100644 --- a/src/main/java/com/devshawn/kafka/gitops/manager/PlanManager.java +++ b/src/main/java/com/devshawn/kafka/gitops/manager/PlanManager.java @@ -171,8 +171,11 @@ public void planAcls(DesiredState desiredState, DesiredPlan.Builder desiredPlan) }); } - public void validatePlanHasChanges(DesiredPlan desiredPlan, boolean deleteDisabled, boolean skipAclsDisabled) { - PlanOverview planOverview = PlanUtil.getOverview(desiredPlan, deleteDisabled, skipAclsDisabled); + public void validatePlanHasChanges(DesiredPlan desiredPlan, + boolean deleteDisabled, + boolean skipAclsDisabled, + boolean skipTopicsDisabled) { + PlanOverview planOverview = PlanUtil.getOverview(desiredPlan, deleteDisabled, skipAclsDisabled, skipTopicsDisabled); if (planOverview.getAdd() == 0 && planOverview.getUpdate() == 0 && planOverview.getRemove() == 0) { throw new PlanIsUpToDateException(); } diff --git a/src/main/java/com/devshawn/kafka/gitops/util/LogUtil.java b/src/main/java/com/devshawn/kafka/gitops/util/LogUtil.java index 0544829f..bcc86fc6 100644 --- a/src/main/java/com/devshawn/kafka/gitops/util/LogUtil.java +++ b/src/main/java/com/devshawn/kafka/gitops/util/LogUtil.java @@ -16,8 +16,11 @@ public final class LogUtil { private LogUtil() { } - public static void printPlan(DesiredPlan desiredPlan, boolean deleteDisabled, boolean skipAclsDisabled) { - PlanOverview planOverview = PlanUtil.getOverview(desiredPlan, deleteDisabled, skipAclsDisabled); + public static void printPlan(DesiredPlan desiredPlan, + boolean deleteDisabled, + boolean skipAclsDisabled, + boolean skipTopicsDisabled) { + PlanOverview planOverview = PlanUtil.getOverview(desiredPlan, deleteDisabled, skipAclsDisabled, skipTopicsDisabled); printLegend(planOverview); @@ -27,7 +30,7 @@ public static void printPlan(DesiredPlan desiredPlan, boolean deleteDisabled, bo printAclOverview(desiredPlan, deleteDisabled); desiredPlan.getAclPlans().forEach(LogUtil::printAclPlan); - printOverview(desiredPlan, deleteDisabled, skipAclsDisabled); + printOverview(desiredPlan, deleteDisabled, skipAclsDisabled, skipTopicsDisabled); } public static void printValidationResult(String message, boolean success) { @@ -132,8 +135,11 @@ public static void printPostApply() { * Helpers */ - private static void printOverview(DesiredPlan desiredPlan, boolean deleteDisabled, boolean skipAclsDisabled) { - PlanOverview planOverview = PlanUtil.getOverview(desiredPlan, deleteDisabled, skipAclsDisabled); + private static void printOverview(DesiredPlan desiredPlan, + boolean deleteDisabled, + boolean skipAclsDisabled, + boolean skipTopicsDisabled) { + PlanOverview planOverview = PlanUtil.getOverview(desiredPlan, deleteDisabled, skipAclsDisabled, skipTopicsDisabled); System.out.printf("%s: %s, %s, %s.%n", bold("Plan"), toCreate(planOverview.getAdd()), toUpdate(planOverview.getUpdate()), toDelete(planOverview.getRemove())); } diff --git a/src/main/java/com/devshawn/kafka/gitops/util/PlanUtil.java b/src/main/java/com/devshawn/kafka/gitops/util/PlanUtil.java index ff86ca95..a4310448 100644 --- a/src/main/java/com/devshawn/kafka/gitops/util/PlanUtil.java +++ b/src/main/java/com/devshawn/kafka/gitops/util/PlanUtil.java @@ -9,10 +9,16 @@ public class PlanUtil { - public static PlanOverview getOverview(DesiredPlan desiredPlan, boolean deleteDisabled, boolean skipAclsDisabled) { + public static PlanOverview getOverview(DesiredPlan desiredPlan, + boolean deleteDisabled, + boolean skipAclsDisabled, + boolean skipTopicsDisabled) { EnumMap map = getPlanActionMap(); - desiredPlan.getTopicPlans().forEach(it -> addToMap(map, it.getAction(), deleteDisabled)); - if(!skipAclsDisabled) { + if (!skipTopicsDisabled) { + desiredPlan.getTopicPlans().forEach(it -> addToMap(map, it.getAction(), deleteDisabled)); + } + + if (!skipAclsDisabled) { desiredPlan.getAclPlans().forEach(it -> addToMap(map, it.getAction(), deleteDisabled)); } return buildPlanOverview(map); diff --git a/src/test/groovy/com/devshawn/kafka/gitops/ApplyCommandIntegrationSpec.groovy b/src/test/groovy/com/devshawn/kafka/gitops/ApplyCommandIntegrationSpec.groovy index a2c3ca69..30bf4f1f 100644 --- a/src/test/groovy/com/devshawn/kafka/gitops/ApplyCommandIntegrationSpec.groovy +++ b/src/test/groovy/com/devshawn/kafka/gitops/ApplyCommandIntegrationSpec.groovy @@ -87,6 +87,31 @@ class ApplyCommandIntegrationSpec extends Specification { ] } + void 'test skip-topics flag'() { + setup: + ByteArrayOutputStream out = new ByteArrayOutputStream() + PrintStream oldOut = System.out + System.setOut(new PrintStream(out)) + String file = TestUtils.getResourceFilePath("plans/${planFile}-plan.json") + MainCommand mainCommand = new MainCommand() + CommandLine cmd = new CommandLine(mainCommand) + + when: + int exitCode = cmd.execute("-f", file, "--skip-topics", "apply", "-p", file) + + then: + exitCode == 0 + out.toString() == TestUtils.getResourceFileContent("plans/${planFile}-apply-output.txt") + + cleanup: + System.setOut(oldOut) + + where: + planFile << [ + "skip-topics-apply" + ] + } + void 'test various valid applies with seed - #planFile #deleteDisabled'() { setup: TestUtils.seedCluster() diff --git a/src/test/groovy/com/devshawn/kafka/gitops/PlanCommandIntegrationSpec.groovy b/src/test/groovy/com/devshawn/kafka/gitops/PlanCommandIntegrationSpec.groovy index 9c2e1f8d..6d75733c 100644 --- a/src/test/groovy/com/devshawn/kafka/gitops/PlanCommandIntegrationSpec.groovy +++ b/src/test/groovy/com/devshawn/kafka/gitops/PlanCommandIntegrationSpec.groovy @@ -97,6 +97,32 @@ class PlanCommandIntegrationSpec extends Specification { ] } + void 'test skip-topics flag'() { + setup: + String planOutputFile = "/tmp/plan.json" + String file = TestUtils.getResourceFilePath("plans/${planName}.yaml") + MainCommand mainCommand = new MainCommand() + CommandLine cmd = new CommandLine(mainCommand) + + when: + int exitCode = cmd.execute("-f", file, "--skip-topics", "plan", "-o", planOutputFile) + + then: + exitCode == 0 + + when: + String actualPlan = TestUtils.getFileContent(planOutputFile) + String expectedPlan = TestUtils.getResourceFileContent("plans/${planName}-plan.json") + + then: + JSONAssert.assertEquals(expectedPlan, actualPlan, true) + + where: + planName << [ + "skip-topics" + ] + } + void 'test various valid plans with seed - #planName'() { setup: TestUtils.cleanUpCluster() diff --git a/src/test/resources/plans/skip-topics-apply-apply-output.txt b/src/test/resources/plans/skip-topics-apply-apply-output.txt new file mode 100644 index 00000000..87da2a39 --- /dev/null +++ b/src/test/resources/plans/skip-topics-apply-apply-output.txt @@ -0,0 +1,73 @@ +Executing apply... + +Applying: [CREATE] + ++ [ACL] test-service-0 + + resource_name: another.topic.0 + + resource_type: TOPIC + + resource_pattern: LITERAL + + resource_principal: User:test + + host: * + + operation: WRITE + + permission: ALLOW + + +Successfully applied. + +Applying: [CREATE] + ++ [ACL] test-service-1 + + resource_name: MY_TOPIC + + resource_type: TOPIC + + resource_pattern: LITERAL + + resource_principal: User:test + + host: * + + operation: READ + + permission: ALLOW + + +Successfully applied. + +Applying: [CREATE] + ++ [ACL] test-service-2 + + resource_name: test-service + + resource_type: GROUP + + resource_pattern: LITERAL + + resource_principal: User:test + + host: * + + operation: READ + + permission: ALLOW + + +Successfully applied. + +Applying: [CREATE] + ++ [ACL] my-other-service-0 + + resource_name: another.topic.0 + + resource_type: TOPIC + + resource_pattern: LITERAL + + resource_principal: User:test + + host: * + + operation: READ + + permission: ALLOW + + +Successfully applied. + +Applying: [CREATE] + ++ [ACL] my-other-service-1 + + resource_name: my-other-service + + resource_type: GROUP + + resource_pattern: LITERAL + + resource_principal: User:test + + host: * + + operation: READ + + permission: ALLOW + + +Successfully applied. + +[SUCCESS] Apply complete! Resources: 5 created, 0 updated, 0 deleted. diff --git a/src/test/resources/plans/skip-topics-apply-plan.json b/src/test/resources/plans/skip-topics-apply-plan.json new file mode 100644 index 00000000..a5cc4518 --- /dev/null +++ b/src/test/resources/plans/skip-topics-apply-plan.json @@ -0,0 +1,94 @@ +{ + "topicPlans": [ + { + "name": "MY_TOPIC", + "action": "ADD", + "topicDetails": { + "partitions": 6, + "replication": 1, + "configs": {} + }, + "topicConfigPlans": [] + }, + { + "name": "another.topic.0", + "action": "ADD", + "topicDetails": { + "partitions": 1, + "replication": 1, + "configs": { + "cleanup.policy": "compact", + "segment.bytes": "100000" + } + }, + "topicConfigPlans": [] + } + ], + "aclPlans": [ + { + "name": "test-service-0", + "aclDetails": { + "name": "another.topic.0", + "type": "TOPIC", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "WRITE", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "test-service-1", + "aclDetails": { + "name": "MY_TOPIC", + "type": "TOPIC", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "test-service-2", + "aclDetails": { + "name": "test-service", + "type": "GROUP", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "my-other-service-0", + "aclDetails": { + "name": "another.topic.0", + "type": "TOPIC", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "my-other-service-1", + "aclDetails": { + "name": "my-other-service", + "type": "GROUP", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + } + ] +} diff --git a/src/test/resources/plans/skip-topics-plan.json b/src/test/resources/plans/skip-topics-plan.json new file mode 100644 index 00000000..2775fa81 --- /dev/null +++ b/src/test/resources/plans/skip-topics-plan.json @@ -0,0 +1,70 @@ +{ + "topicPlans": [], + "aclPlans": [ + { + "name": "test-service-0", + "aclDetails": { + "name": "another.topic.0", + "type": "TOPIC", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "WRITE", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "test-service-1", + "aclDetails": { + "name": "MY_TOPIC", + "type": "TOPIC", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "test-service-2", + "aclDetails": { + "name": "test-service", + "type": "GROUP", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "my-other-service-0", + "aclDetails": { + "name": "another.topic.0", + "type": "TOPIC", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + }, + { + "name": "my-other-service-1", + "aclDetails": { + "name": "my-other-service", + "type": "GROUP", + "pattern": "LITERAL", + "principal": "User:test", + "host": "*", + "operation": "READ", + "permission": "ALLOW" + }, + "action": "ADD" + } + ] +} diff --git a/src/test/resources/plans/skip-topics.yaml b/src/test/resources/plans/skip-topics.yaml new file mode 100644 index 00000000..47e03489 --- /dev/null +++ b/src/test/resources/plans/skip-topics.yaml @@ -0,0 +1,26 @@ +topics: + MY_TOPIC: + partitions: 6 + replication: 1 + + another.topic.0: + partitions: 1 + replication: 1 + configs: + cleanup.policy: compact + segment.bytes: 100000 + +services: + test-service: + type: application + principal: User:test + produces: + - another.topic.0 + consumes: + - MY_TOPIC + + my-other-service: + type: application + principal: User:test + consumes: + - another.topic.0