feat: add plan storage to enable different types of storages (#177)

* feat: add plan storage to enable different types of storages

Author: Spartakovic

action.yml

@@ -49,6 +49,9 @@ inputs:
     description: Terraform version
     required: false
     default: v1.4.5
+  upload-plan-destination:
+    description: Destination to upload the plan to. gcp and github are currently supported
+    required: false
 
 outputs:
   output:
@@ -73,7 +76,7 @@ runs:
 
     - name: Validate Input Configuration for Google
       run: |
-        if [[ -z "${{ toJSON(inputs.google-auth-credentials) }}" && -z "${{ inputs.google-workload-identity-provider }}" ]]; then
+        if [[ -z ${{ toJSON(inputs.google-auth-credentials) }} && -z "${{ inputs.google-workload-identity-provider }}" ]]; then
           echo "Either 'google-auth-credentials' or 'google-workload-identity-provider' input must be specified with 'setup-google-cloud'"
         elif [[ ! -z "${{ inputs.google-workload-identity-provider }}" && -z "${{ inputs.google-service-account }}" ]]; then
           echo "'google-service-account' input must be specified with 'google-workload-identity-provider'"
@@ -87,7 +90,7 @@ runs:
     - name: Set up Google Auth Using A Service Account Key
       uses: google-github-actions/auth@v1
       with:
-        credentials_json: ${{ inputs.google-auth-credentials }}
+        credentials_json: '${{ inputs.google-auth-credentials }}'
       if: ${{ inputs.setup-google-cloud == 'true' && inputs.google-auth-credentials != '' }}
 
     - name: Set up Google Auth Using Workload Identity Federation
@@ -127,6 +130,8 @@ runs:
     - name: build and run digger
       if: ${{ !startsWith(github.action_ref, 'v') }}
       shell: bash
+      env:
+        PLAN_UPLOAD_DESTINATION: ${{ inputs.upload-plan-destination }}
       run: |
           cd ${{ github.action_path }}
           go build -o digger ./cmd/digger
@@ -138,6 +143,7 @@ runs:
       if: ${{ startsWith(github.action_ref, 'v') }}
       env:
         actionref: ${{ github.action_ref }}
+        PLAN_UPLOAD_DESTINATION: ${{ inputs.upload-plan-destination }}
       id: digger
       shell: bash
       run: |
@@ -161,6 +167,7 @@ runs:
           name: ${{ steps.artifact.outputs.artifact }}
           path: '${{ github.workspace }}/**/*.tfplan'
           retention-days: 14
+      if: ${{ inputs.upload-plan-destination == 'github' }}
 
 branding:
   icon: globe

cmd/digger/main.go

@@ -1,12 +1,15 @@
 package main
 
 import (
+	"context"
 	"digger/pkg/configuration"
 	"digger/pkg/digger"
-	"digger/pkg/github"
+	"digger/pkg/gcp"
+	dg_github "digger/pkg/github"
 	"digger/pkg/models"
 	"digger/pkg/utils"
 	"fmt"
+	"github.com/google/go-github/v51/github"
 	"log"
 	"os"
 	"strings"
@@ -64,7 +67,7 @@ func main() {
 	eventName := parsedGhContext.EventName
 	splitRepositoryName := strings.Split(parsedGhContext.Repository, "/")
 	repoOwner, repositoryName := splitRepositoryName[0], splitRepositoryName[1]
-	githubPrService := github.NewGithubPullRequestService(ghToken, repositoryName, repoOwner)
+	githubPrService := dg_github.NewGithubPullRequestService(ghToken, repositoryName, repoOwner)
 
 	impactedProjects, prNumber, err := digger.ProcessGitHubEvent(ghEvent, diggerConfig, githubPrService)
 	if err != nil {
@@ -85,7 +88,9 @@ func main() {
 	println("GitHub event converted to commands successfully")
 	logCommands(commandsToRunPerProject)
 
-	allAppliesSuccess, err := digger.RunCommandsPerProject(commandsToRunPerProject, repoOwner, repositoryName, eventName, prNumber, githubPrService, lock, "")
+	planStorage := newPlanStorage(ghToken, repoOwner, repositoryName, prNumber)
+
+	allAppliesSuccess, err := digger.RunCommandsPerProject(commandsToRunPerProject, repoOwner, repositoryName, eventName, prNumber, githubPrService, lock, planStorage, "")
 	if err != nil {
 		reportErrorAndExit(githubRepositoryOwner, fmt.Sprintf("Failed to run commands. %s", err), 8)
 	}
@@ -107,6 +112,35 @@ func main() {
 
 }
 
+func newPlanStorage(ghToken string, repoOwner string, repositoryName string, prNumber int) utils.PlanStorage {
+	var planStorage utils.PlanStorage
+
+	if os.Getenv("PLAN_UPLOAD_DESTINATION") == "github" {
+		zipManager := utils.Zipper{}
+		planStorage = &utils.GithubPlanStorage{
+			Client:            github.NewTokenClient(context.Background(), ghToken),
+			Owner:             repoOwner,
+			RepoName:          repositoryName,
+			PullRequestNumber: prNumber,
+			ZipManager:        zipManager,
+		}
+	} else if os.Getenv("PLAN_UPLOAD_DESTINATION") == "gcp" {
+		ctx, client := gcp.GetGoogleStorageClient()
+
+		bucketName := strings.ToLower(os.Getenv("GOOGLE_STORAGE_BUCKET"))
+		if bucketName == "" {
+			reportErrorAndExit(repoOwner, fmt.Sprintf("GOOGLE_STORAGE_BUCKET is not defined"), 9)
+		}
+		bucket := client.Bucket(bucketName)
+		planStorage = &utils.PlanStorageGcp{
+			Client:  client,
+			Bucket:  bucket,
+			Context: ctx,
+		}
+	}
+	return planStorage
+}
+
 func logImpactedProjects(projects []configuration.Project, prNumber int) {
 	logMessage := fmt.Sprintf("Following projects are impacted by pull request #%d\n", prNumber)
 	for _, p := range projects {

cmd/digger/main_test.go

@@ -873,10 +873,12 @@ func TestGitHubNewPullRequestContext(t *testing.T) {
 	diggerConfig := configuration.DiggerConfig{}
 	lock := &utils.MockLock{}
 	prManager := &utils.MockPullRequestManager{ChangedFiles: []string{"dev/test.tf"}}
+	planStorage := &utils.MockPlanStorage{}
+
 	impactedProjects, prNumber, err := digger.ProcessGitHubEvent(ghEvent, &diggerConfig, prManager)
 
 	commandsToRunPerProject, err := digger.ConvertGithubEventToCommands(ghEvent, impactedProjects, map[string]configuration.Workflow{})
-	_, err = digger.RunCommandsPerProject(commandsToRunPerProject, context.RepositoryOwner, context.Repository, eventName, prNumber, prManager, lock, "")
+	_, err = digger.RunCommandsPerProject(commandsToRunPerProject, context.RepositoryOwner, context.Repository, eventName, prNumber, prManager, lock, planStorage, "")
 
 	assert.NoError(t, err)
 	if err != nil {
@@ -895,10 +897,11 @@ func TestGitHubNewCommentContext(t *testing.T) {
 	diggerConfig := configuration.DiggerConfig{}
 	lock := &utils.MockLock{}
 	prManager := &utils.MockPullRequestManager{ChangedFiles: []string{"dev/test.tf"}}
+	planStorage := &utils.MockPlanStorage{}
 	impactedProjects, prNumber, err := digger.ProcessGitHubEvent(ghEvent, &diggerConfig, prManager)
 
 	commandsToRunPerProject, err := digger.ConvertGithubEventToCommands(ghEvent, impactedProjects, map[string]configuration.Workflow{})
-	_, err = digger.RunCommandsPerProject(commandsToRunPerProject, context.RepositoryOwner, context.Repository, eventName, prNumber, prManager, lock, "")
+	_, err = digger.RunCommandsPerProject(commandsToRunPerProject, context.RepositoryOwner, context.Repository, eventName, prNumber, prManager, lock, planStorage, "")
 
 	assert.NoError(t, err)
 	if err != nil {

pkg/digger/digger.go

@@ -54,7 +54,7 @@ func ProcessGitHubEvent(ghEvent models.Event, diggerConfig *configuration.Digger
 	return impactedProjects, prNumber, nil
 }
 
-func RunCommandsPerProject(commandsPerProject []ProjectCommand, repoOwner string, repoName string, eventName string, prNumber int, prManager github.PullRequestManager, lock utils.Lock, workingDir string) (bool, error) {
+func RunCommandsPerProject(commandsPerProject []ProjectCommand, repoOwner string, repoName string, eventName string, prNumber int, prManager github.PullRequestManager, lock utils.Lock, planStorage utils.PlanStorage, workingDir string) (bool, error) {
 	allAppliesSuccess := true
 	appliesPerProject := make(map[string]bool)
 	for _, projectCommands := range commandsPerProject {
@@ -77,17 +77,16 @@ func RunCommandsPerProject(commandsPerProject []ProjectCommand, repoOwner string
 			}
 
 			commandRunner := CommandRunner{}
-			zipManager := &utils.Zipper{}
 
 			diggerExecutor := DiggerExecutor{
 				projectCommands.ProjectName,
 				projectCommands.ApplyStage,
 				projectCommands.PlanStage,
 				commandRunner,
-				zipManager,
 				terraformExecutor,
 				prManager,
 				projectLock,
+				planStorage,
 			}
 			switch command {
 			case "digger plan":
@@ -299,10 +298,10 @@ type DiggerExecutor struct {
 	applyStage        *configuration.Stage
 	planStage         *configuration.Stage
 	commandRunner     CommandRun
-	zipManager        utils.Zip
 	terraformExecutor terraform.TerraformExecutor
 	prManager         github.PullRequestManager
 	lock              utils.ProjectLock
+	planStorage       utils.PlanStorage
 }
 
 type CommandRun interface {
@@ -372,6 +371,12 @@ func (d DiggerExecutor) Plan(prNumber int) error {
 				if err != nil {
 					return fmt.Errorf("error executing plan: %v", err)
 				}
+				if d.planStorage != nil {
+					err = d.planStorage.StorePlan(d.planFileName())
+					if err != nil {
+						return fmt.Errorf("error storing plan: %v", err)
+					}
+				}
 				plan := cleanupTerraformPlan(isNonEmptyPlan, err, stdout, stderr)
 				comment := utils.GetTerraformOutputAsCollapsibleComment("Plan for **"+d.lock.LockId()+"**", plan)
 				d.prManager.PublishComment(prNumber, comment)
@@ -389,24 +394,13 @@ func (d DiggerExecutor) Plan(prNumber int) error {
 }
 
 func (d DiggerExecutor) Apply(prNumber int) error {
-	plansFilename, err := d.prManager.DownloadLatestPlans(prNumber)
-
-	if err != nil {
-		return fmt.Errorf("error downloading plan: %v", err)
-	}
-
-	if plansFilename == "" {
-		return fmt.Errorf("no plans found for this PR")
-	}
-
-	plansFilename, err = d.zipManager.GetFileFromZip(plansFilename, d.planFileName())
-
-	if err != nil {
-		return fmt.Errorf("error extracting plan: %v", err)
-	}
-
-	if plansFilename == "" {
-		return fmt.Errorf("no plans found for this project")
+	var plansFilename *string
+	if d.planStorage != nil {
+		var err error
+		plansFilename, err = d.planStorage.RetrievePlan(d.planFileName())
+		if err != nil {
+			return fmt.Errorf("error retrieving plan: %v", err)
+		}
 	}
 
 	isMergeable, _, err := d.prManager.IsMergeable(prNumber)

pkg/digger/digger_test.go

@@ -35,8 +35,11 @@ func (m *MockTerraformExecutor) Init(params []string) (string, string, error) {
 	return "", "", nil
 }
 
-func (m *MockTerraformExecutor) Apply(params []string, plan string) (string, string, error) {
-	m.Commands = append(m.Commands, RunInfo{"Apply", strings.Join(params, " ") + " " + plan, time.Now()})
+func (m *MockTerraformExecutor) Apply(params []string, plan *string) (string, string, error) {
+	if plan != nil {
+		params = append(params, *plan)
+	}
+	m.Commands = append(m.Commands, RunInfo{"Apply", strings.Join(params, " "), time.Now()})
 	return "", "", nil
 }
 
@@ -116,14 +119,27 @@ func (m *MockZipper) GetFileFromZip(zipFile string, filename string) (string, er
 	return "plan", nil
 }
 
+type MockPlanStorage struct {
+	Commands []RunInfo
+}
+
+func (m *MockPlanStorage) StorePlan(planFileName string) error {
+	m.Commands = append(m.Commands, RunInfo{"StorePlan", planFileName, time.Now()})
+	return nil
+}
+
+func (m *MockPlanStorage) RetrievePlan(planFileName string) (*string, error) {
+	m.Commands = append(m.Commands, RunInfo{"RetrievePlan", planFileName, time.Now()})
+	return nil, nil
+}
+
 func TestCorrectCommandExecutionWhenApplying(t *testing.T) {
 
 	commandRunner := &MockCommandRunner{}
 	terraformExecutor := &MockTerraformExecutor{}
 	prManager := &MockPRManager{}
 	lock := &MockProjectLock{}
-	zipper := &MockZipper{}
-
+	planStorage := &MockPlanStorage{}
 	executor := DiggerExecutor{
 		applyStage: &configuration.Stage{
 			Steps: []configuration.Step{
@@ -145,18 +161,18 @@ func TestCorrectCommandExecutionWhenApplying(t *testing.T) {
 			},
 		},
 		planStage:         &configuration.Stage{},
-		zipManager:        zipper,
 		commandRunner:     commandRunner,
 		terraformExecutor: terraformExecutor,
 		prManager:         prManager,
 		lock:              lock,
+		planStorage:       planStorage,
 	}
 
 	executor.Apply(1)
 
-	commandStrings := allCommandsInOrderWithParams(terraformExecutor, commandRunner, prManager, lock)
+	commandStrings := allCommandsInOrderWithParams(terraformExecutor, commandRunner, prManager, lock, planStorage)
 
-	assert.Equal(t, []string{"DownloadLatestPlans 1", "IsMergeable 1", "Lock 1", "Init ", "Apply  plan", "LockId ", "PublishComment 1 <details>\n  <summary>Apply for ****</summary>\n\n  ```terraform\n\n  ```\n</details>", "Unlock 1", "Run echo", "LockId "}, commandStrings)
+	assert.Equal(t, []string{"RetrievePlan .tfplan", "IsMergeable 1", "Lock 1", "Init ", "Apply ", "LockId ", "PublishComment 1 <details>\n  <summary>Apply for ****</summary>\n\n  ```terraform\n\n  ```\n</details>", "Unlock 1", "Run echo", "LockId "}, commandStrings)
 }
 
 func TestCorrectCommandExecutionWhenPlanning(t *testing.T) {
@@ -165,6 +181,7 @@ func TestCorrectCommandExecutionWhenPlanning(t *testing.T) {
 	terraformExecutor := &MockTerraformExecutor{}
 	prManager := &MockPRManager{}
 	lock := &MockProjectLock{}
+	planStorage := &MockPlanStorage{}
 
 	executor := DiggerExecutor{
 		applyStage: &configuration.Stage{},
@@ -191,16 +208,17 @@ func TestCorrectCommandExecutionWhenPlanning(t *testing.T) {
 		terraformExecutor: terraformExecutor,
 		prManager:         prManager,
 		lock:              lock,
+		planStorage:       planStorage,
 	}
 
 	executor.Plan(1)
 
-	commandStrings := allCommandsInOrderWithParams(terraformExecutor, commandRunner, prManager, lock)
+	commandStrings := allCommandsInOrderWithParams(terraformExecutor, commandRunner, prManager, lock, planStorage)
 
-	assert.Equal(t, []string{"Lock 1", "Init ", "Plan -out .tfplan", "LockId ", "PublishComment 1 <details>\n  <summary>Plan for ****</summary>\n\n  ```terraform\n\n  ```\n</details>", "Run echo", "LockId "}, commandStrings)
+	assert.Equal(t, []string{"Lock 1", "Init ", "Plan -out .tfplan", "StorePlan .tfplan", "LockId ", "PublishComment 1 <details>\n  <summary>Plan for ****</summary>\n\n  ```terraform\n\n  ```\n</details>", "Run echo", "LockId "}, commandStrings)
 }
 
-func allCommandsInOrderWithParams(terraformExecutor *MockTerraformExecutor, commandRunner *MockCommandRunner, prManager *MockPRManager, lock *MockProjectLock) []string {
+func allCommandsInOrderWithParams(terraformExecutor *MockTerraformExecutor, commandRunner *MockCommandRunner, prManager *MockPRManager, lock *MockProjectLock, planStorage *MockPlanStorage) []string {
 	var commands []RunInfo
 	for _, command := range terraformExecutor.Commands {
 		commands = append(commands, command)
@@ -214,6 +232,9 @@ func allCommandsInOrderWithParams(terraformExecutor *MockTerraformExecutor, comm
 	for _, command := range lock.Commands {
 		commands = append(commands, command)
 	}
+	for _, command := range planStorage.Commands {
+		commands = append(commands, command)
+	}
 
 	sort.Slice(commands, func(i, j int) bool {
 		return commands[i].Timestamp.Before(commands[j].Timestamp)