sandbox-web-ide/backend/orchestrator/src/index.ts

import express, { Express, Request, Response } from "express"
import dotenv from "dotenv"

import fs from "fs"
import yaml from "yaml"
import path from "path"
import cors from "cors"
import {
  KubeConfig,
  AppsV1Api,
  CoreV1Api,
  NetworkingV1Api,
} from "@kubernetes/client-node"
import { z } from "zod"

const app = express()
const port = process.env.PORT || 4001
app.use(express.json())
dotenv.config()

const corsOptions = {
  origin: ['http://localhost:3000', 'https://s.ishaand.com', 'http://localhost:4000'],
}

const kubeconfig = new KubeConfig()
if (process.env.NODE_ENV === "production") {
  kubeconfig.loadFromOptions({
    clusters: [
      {
        name: 'docker-desktop',
        server: process.env.DOCKER_DESKTOP_SERVER!,
        caData: process.env.DOCKER_DESKTOP_CA_DATA,
      },
      {
        name: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',
        server: process.env.GKE_CLUSTER_SERVER!,
        caData: process.env.GKE_CLUSTER_CA_DATA, 
      }
    ],
    users: [
      {
        name: 'docker-desktop',
        certData: process.env.DOCKER_DESKTOP_CLIENT_CERTIFICATE_DATA,
        keyData: process.env.DOCKER_DESKTOP_CLIENT_KEY_DATA,
      },
      {
        name: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',
        exec: {
          apiVersion: 'client.authentication.k8s.io/v1beta1',
          command: 'gke-gcloud-auth-plugin',
          args: [],
          env: null,
          installHint: 'Install gke-gcloud-auth-plugin for use with kubectl by following https://cloud.google.com/kubernetes-engine/docs/how-to/cluster-access-for-kubectl#install_plugin',
          interactiveMode: 'IfAvailable',
          provideClusterInfo: true
        }
      }
    ],
    contexts: [
      {
        name: 'docker-desktop',
        cluster: 'docker-desktop',
        user: 'docker-desktop'
      },
      {
        name: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',
        cluster: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',
        user: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox'
      }
    ],
    currentContext: "gke_sylvan-epoch-422219-f9_us-central1_sandbox",
  });
}
kubeconfig.loadFromDefault()

const coreV1Api = kubeconfig.makeApiClient(CoreV1Api)
const appsV1Api = kubeconfig.makeApiClient(AppsV1Api)
const networkingV1Api = kubeconfig.makeApiClient(NetworkingV1Api)

const readAndParseKubeYaml = (
  filePath: string,
  sandboxId: string
): Array<any> => {
  const fileContent = fs.readFileSync(filePath, "utf8")
  const docs = yaml.parseAllDocuments(fileContent).map((doc) => {
    let docString = doc.toString()

    const regex = new RegExp(`<SANDBOX>`, "g")
    docString = docString.replace(regex, sandboxId)

    if (!process.env.CF_API_TOKEN) {
      throw new Error("CF_API_TOKEN is not defined")
    }
    const regexEnv1 = new RegExp(`<CF_API_TOKEN>`, "g")
    docString = docString.replace(regexEnv1, process.env.CF_API_TOKEN)

    if (!process.env.CF_USER_ID) {
      throw new Error("CF_USER_ID is not defined")
    }
    const regexEnv2 = new RegExp(`<CF_USER_ID>`, "g")
    docString = docString.replace(regexEnv2, process.env.CF_USER_ID)

    return yaml.parse(docString)
  })
  return docs
}

const dataSchema = z.object({
  userId: z.string(),
  sandboxId: z.string(),
})

const namespace = "sandbox"

app.get("/test", cors(), async (req, res) => {
  res.status(200).send({ message: "Orchestrator is up and running." })
})

app.get("/test/cors", cors(corsOptions), async (req, res) => {
  res.status(200).send({ message: "With CORS, Orchestrator is up and running." })
})

app.post("/start", cors(corsOptions), async (req, res) => {
  const { sandboxId } = dataSchema.parse(req.body)

  try {
    const kubeManifests = readAndParseKubeYaml(
      path.join(__dirname, "../service.yaml"),
      sandboxId
    )

    async function resourceExists(api: any, getMethod: string, name: string) {
      try {
        await api[getMethod](namespace, name)
        return true
      } catch (e: any) {
        if (e.response && e.response.statusCode === 404) return false
        throw e
      }
    }

    kubeManifests.forEach(async (manifest) => {
      const { kind, metadata: { name } } = manifest

      if (kind === "Deployment")
        if (!(await resourceExists(appsV1Api, 'readNamespacedDeployment', name))) {
          await appsV1Api.createNamespacedDeployment(namespace, manifest)
        } else {
          return res.status(200).send({ message: "Resource deployment already exists." })
        }
      else if (kind === "Service")
        if (!(await resourceExists(coreV1Api, 'readNamespacedService', name))) {
          await coreV1Api.createNamespacedService(namespace, manifest)
        } else {
          return res.status(200).send({ message: "Resource service already exists." })
        }
      else if (kind === "Ingress")
        if (!(await resourceExists(networkingV1Api, 'readNamespacedIngress', name))) {
          await networkingV1Api.createNamespacedIngress(namespace, manifest)
        } else {
          return res.status(200).send({ message: "Resource ingress already exists." })
        }
    })
    res.status(200).send({ message: "Resources created." })
  } catch (error) {
    console.log("Failed to create resources", error)
    res.status(500).send({ message: "Failed to create resources." })
  }
})

app.post("/stop", cors(corsOptions), async (req, res) => {
  const { sandboxId } = dataSchema.parse(req.body)

  try {
    const kubeManifests = readAndParseKubeYaml(
      path.join(__dirname, "../service.yaml"),
      sandboxId
    )
    kubeManifests.forEach(async (manifest) => {
      if (manifest.kind === "Deployment")
        await appsV1Api.deleteNamespacedDeployment(
          manifest.metadata?.name || "",
          namespace
        )
      else if (manifest.kind === "Service")
        await coreV1Api.deleteNamespacedService(
          manifest.metadata?.name || "",
          namespace
        )
      else if (manifest.kind === "Ingress")
        await networkingV1Api.deleteNamespacedIngress(
          manifest.metadata?.name || "",
          namespace
        )
    })
    res.status(200).send({ message: "Resources deleted." })
  } catch (error) {
    console.log("Failed to delete resources", error)
    res.status(500).send({ message: "Failed to delete resources." })
  }
})

app.listen(port, () => {
  console.log(`Listening on port: ${port}`)
})
add orchestrator 2024-05-05 21:45:43 -07:00			`import express, { Express, Request, Response } from "express"`
update dockerfile env logic & deploy database cf worker 2024-05-05 22:33:24 -07:00			`import dotenv from "dotenv"`
add orchestrator 2024-05-05 21:45:43 -07:00
			`import fs from "fs"`
			`import yaml from "yaml"`
			`import path from "path"`
			`import cors from "cors"`
			`import {`
			`KubeConfig,`
			`AppsV1Api,`
			`CoreV1Api,`
			`NetworkingV1Api,`
			`} from "@kubernetes/client-node"`
			`import { z } from "zod"`

			`const app = express()`
			`const port = process.env.PORT \|\| 4001`
			`app.use(express.json())`
update dockerfile env logic & deploy database cf worker 2024-05-05 22:33:24 -07:00			`dotenv.config()`
add orchestrator 2024-05-05 21:45:43 -07:00
improve orchestrator 2024-05-11 21:13:43 -07:00			`const corsOptions = {`
re-organize files + setup more orchestration logic 2024-05-12 02:10:31 -07:00			`origin: ['http://localhost:3000', 'https://s.ishaand.com', 'http://localhost:4000'],`
improve orchestrator 2024-05-11 21:13:43 -07:00			`}`

add orchestrator 2024-05-05 21:45:43 -07:00			`const kubeconfig = new KubeConfig()`
improve orchestrator 2024-05-11 21:13:43 -07:00			`if (process.env.NODE_ENV === "production") {`
			`kubeconfig.loadFromOptions({`
			`clusters: [`
			`{`
			`name: 'docker-desktop',`
			`server: process.env.DOCKER_DESKTOP_SERVER!,`
			`caData: process.env.DOCKER_DESKTOP_CA_DATA,`
			`},`
			`{`
			`name: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',`
			`server: process.env.GKE_CLUSTER_SERVER!,`
			`caData: process.env.GKE_CLUSTER_CA_DATA,`
			`}`
			`],`
			`users: [`
			`{`
			`name: 'docker-desktop',`
			`certData: process.env.DOCKER_DESKTOP_CLIENT_CERTIFICATE_DATA,`
			`keyData: process.env.DOCKER_DESKTOP_CLIENT_KEY_DATA,`
			`},`
			`{`
			`name: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',`
			`exec: {`
			`apiVersion: 'client.authentication.k8s.io/v1beta1',`
			`command: 'gke-gcloud-auth-plugin',`
			`args: [],`
			`env: null,`
			`installHint: 'Install gke-gcloud-auth-plugin for use with kubectl by following https://cloud.google.com/kubernetes-engine/docs/how-to/cluster-access-for-kubectl#install_plugin',`
			`interactiveMode: 'IfAvailable',`
			`provideClusterInfo: true`
			`}`
			`}`
			`],`
			`contexts: [`
			`{`
			`name: 'docker-desktop',`
			`cluster: 'docker-desktop',`
			`user: 'docker-desktop'`
			`},`
			`{`
			`name: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',`
			`cluster: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox',`
			`user: 'gke_sylvan-epoch-422219-f9_us-central1_sandbox'`
			`}`
			`],`
			`currentContext: "gke_sylvan-epoch-422219-f9_us-central1_sandbox",`
			`});`
			`}`
add orchestrator 2024-05-05 21:45:43 -07:00			`kubeconfig.loadFromDefault()`
improve orchestrator 2024-05-11 21:13:43 -07:00
add orchestrator 2024-05-05 21:45:43 -07:00			`const coreV1Api = kubeconfig.makeApiClient(CoreV1Api)`
			`const appsV1Api = kubeconfig.makeApiClient(AppsV1Api)`
			`const networkingV1Api = kubeconfig.makeApiClient(NetworkingV1Api)`

update dockerfile env logic & deploy database cf worker 2024-05-05 22:33:24 -07:00			`const readAndParseKubeYaml = (`
			`filePath: string,`
			`sandboxId: string`
			`): Array<any> => {`
add orchestrator 2024-05-05 21:45:43 -07:00			`const fileContent = fs.readFileSync(filePath, "utf8")`
			`const docs = yaml.parseAllDocuments(fileContent).map((doc) => {`
			`let docString = doc.toString()`
update dockerfile env logic & deploy database cf worker 2024-05-05 22:33:24 -07:00
			const regex = new RegExp(`<SANDBOX>`, "g")
			`docString = docString.replace(regex, sandboxId)`

			`if (!process.env.CF_API_TOKEN) {`
			`throw new Error("CF_API_TOKEN is not defined")`
			`}`
			const regexEnv1 = new RegExp(`<CF_API_TOKEN>`, "g")
			`docString = docString.replace(regexEnv1, process.env.CF_API_TOKEN)`

			`if (!process.env.CF_USER_ID) {`
			`throw new Error("CF_USER_ID is not defined")`
			`}`
			const regexEnv2 = new RegExp(`<CF_USER_ID>`, "g")
			`docString = docString.replace(regexEnv2, process.env.CF_USER_ID)`

add orchestrator 2024-05-05 21:45:43 -07:00			`return yaml.parse(docString)`
			`})`
			`return docs`
			`}`

add worker service binding + inactivity detection 2024-05-06 21:29:25 -07:00			`const dataSchema = z.object({`
			`userId: z.string(),`
			`sandboxId: z.string(),`
			`})`

improve orchestrator 2024-05-11 21:13:43 -07:00			`const namespace = "sandbox"`

			`app.get("/test", cors(), async (req, res) => {`
			`res.status(200).send({ message: "Orchestrator is up and running." })`
			`})`

			`app.get("/test/cors", cors(corsOptions), async (req, res) => {`
			`res.status(200).send({ message: "With CORS, Orchestrator is up and running." })`
			`})`

			`app.post("/start", cors(corsOptions), async (req, res) => {`
			`const { sandboxId } = dataSchema.parse(req.body)`
add orchestrator 2024-05-05 21:45:43 -07:00
			`try {`
			`const kubeManifests = readAndParseKubeYaml(`
			`path.join(__dirname, "../service.yaml"),`
			`sandboxId`
			`)`
improve orchestrator 2024-05-11 21:13:43 -07:00
			`async function resourceExists(api: any, getMethod: string, name: string) {`
			`try {`
			`await api[getMethod](namespace, name)`
			`return true`
			`} catch (e: any) {`
			`if (e.response && e.response.statusCode === 404) return false`
			`throw e`
			`}`
			`}`

add orchestrator 2024-05-05 21:45:43 -07:00			`kubeManifests.forEach(async (manifest) => {`
improve orchestrator 2024-05-11 21:13:43 -07:00			`const { kind, metadata: { name } } = manifest`

			`if (kind === "Deployment")`
			`if (!(await resourceExists(appsV1Api, 'readNamespacedDeployment', name))) {`
			`await appsV1Api.createNamespacedDeployment(namespace, manifest)`
			`} else {`
			`return res.status(200).send({ message: "Resource deployment already exists." })`
			`}`
			`else if (kind === "Service")`
			`if (!(await resourceExists(coreV1Api, 'readNamespacedService', name))) {`
			`await coreV1Api.createNamespacedService(namespace, manifest)`
			`} else {`
			`return res.status(200).send({ message: "Resource service already exists." })`
			`}`
			`else if (kind === "Ingress")`
			`if (!(await resourceExists(networkingV1Api, 'readNamespacedIngress', name))) {`
			`await networkingV1Api.createNamespacedIngress(namespace, manifest)`
			`} else {`
			`return res.status(200).send({ message: "Resource ingress already exists." })`
			`}`
add orchestrator 2024-05-05 21:45:43 -07:00			`})`
			`res.status(200).send({ message: "Resources created." })`
			`} catch (error) {`
			`console.log("Failed to create resources", error)`
			`res.status(500).send({ message: "Failed to create resources." })`
			`}`
			`})`

improve orchestrator 2024-05-11 21:13:43 -07:00			`app.post("/stop", cors(corsOptions), async (req, res) => {`
			`const { sandboxId } = dataSchema.parse(req.body)`
add worker service binding + inactivity detection 2024-05-06 21:29:25 -07:00
			`try {`
			`const kubeManifests = readAndParseKubeYaml(`
			`path.join(__dirname, "../service.yaml"),`
			`sandboxId`
			`)`
			`kubeManifests.forEach(async (manifest) => {`
			`if (manifest.kind === "Deployment")`
			`await appsV1Api.deleteNamespacedDeployment(`
			`manifest.metadata?.name \|\| "",`
			`namespace`
			`)`
			`else if (manifest.kind === "Service")`
			`await coreV1Api.deleteNamespacedService(`
			`manifest.metadata?.name \|\| "",`
			`namespace`
			`)`
			`else if (manifest.kind === "Ingress")`
			`await networkingV1Api.deleteNamespacedIngress(`
			`manifest.metadata?.name \|\| "",`
			`namespace`
			`)`
			`})`
			`res.status(200).send({ message: "Resources deleted." })`
			`} catch (error) {`
			`console.log("Failed to delete resources", error)`
			`res.status(500).send({ message: "Failed to delete resources." })`
			`}`
			`})`

add orchestrator 2024-05-05 21:45:43 -07:00			`app.listen(port, () => {`
			console.log(`Listening on port: ${port}`)
			`})`