Skip to content

Commit

Permalink
feat: post workflow hooks (runatlantis#1990)
Browse files Browse the repository at this point in the history
* Add post-workflow hooks

* docs: Add cost estimation as post workflow use case

Co-authored-by: Gerald Barker <[email protected]>
  • Loading branch information
2 people authored and krrrr38 committed Dec 16, 2022
1 parent 783b9c0 commit 68a0cfa
Show file tree
Hide file tree
Showing 29 changed files with 1,110 additions and 240 deletions.
1 change: 1 addition & 0 deletions runatlantis.io/.vuepress/config.js
Original file line number Diff line number Diff line change
Expand Up @@ -65,6 +65,7 @@ module.exports = {
'server-configuration',
'server-side-repo-config',
'pre-workflow-hooks',
'post-workflow-hooks',
'policy-checking',
'custom-workflows',
'repo-level-atlantis-yaml',
Expand Down
72 changes: 72 additions & 0 deletions runatlantis.io/docs/post-workflow-hooks.md
Original file line number Diff line number Diff line change
@@ -0,0 +1,72 @@
# Post Workflow Hooks

Post workflow hooks can be defined to run scripts after default or custom
workflows are executed. Post workflow hooks differ from [custom
workflows](custom-workflows.html#custom-run-command) in that they are run
outside of Atlantis commands. Which means they do not surface their output
back to the PR as a comment.

[[toc]]

## Usage

Post workflow hooks can only be specified in the Server-Side Repo Config under
`repos` key.

## Use Cases

### Cost estimation reporting

You can add a post workflow hook to perform custom reporting after all workflows
have finished.

In this example we use a custom workflow to generate cost estimates for each
workflow, then create a summary report after all workflows have completed.

```yaml
# repos.yaml
workflows:
myworkflow:
plan:
steps:
- init
- plan
- run: infracost breakdown --path=$PLANFILE --format=json --out-file=/tmp/$BASE_REPO_OWNER-$BASE_REPO_NAME-$PULL_NUM-$WORKSPACE-$REPO_REL_DIR-infracost.json
repos:
- id: /.*/
workflow: myworkflow
post_workflow_hooks:
- run: infracost output --path=/tmp/$BASE_REPO_OWNER-$BASE_REPO_NAME-$PULL_NUM-*-infracost.json --format=github-comment --out-file=/tmp/infracost-comment.md
# Now report the output as desired, e.g. post to GitHub as a comment.
# ...
```

## Reference

### Custom `run` Command

This is very similar to [custom workflow run
command](custom-workflows.html#custom-run-command).

```yaml
- run: custom-command
```
| Key | Type | Default | Required | Description |
| --- | ------ | ------- | -------- | -------------------- |
| run | string | none | no | Run a custom command |
::: tip Notes
* `run` commands are executed with the following environment variables:
* `BASE_REPO_NAME` - Name of the repository that the pull request will be merged into, ex. `atlantis`.
* `BASE_REPO_OWNER` - Owner of the repository that the pull request will be merged into, ex. `runatlantis`.
* `HEAD_REPO_NAME` - Name of the repository that is getting merged into the base repository, ex. `atlantis`.
* `HEAD_REPO_OWNER` - Owner of the repository that is getting merged into the base repository, ex. `acme-corp`.
* `HEAD_BRANCH_NAME` - Name of the head branch of the pull request (the branch that is getting merged into the base)
* `HEAD_COMMIT` - The sha256 that points to the head of the branch that is being pull requested into the base. If the pull request is from Bitbucket Cloud the string will only be 12 characters long because Bitbucket Cloud truncates its commit IDs.
* `BASE_BRANCH_NAME` - Name of the base branch of the pull request (the branch that the pull request is getting merged into)
* `PULL_NUM` - Pull request number or ID, ex. `2`.
* `PULL_AUTHOR` - Username of the pull request author, ex. `acme-user`.
* `DIR` - The absolute path to the root of the cloned repository.
* `USER_NAME` - Username of the VCS user running command, ex. `acme-user`. During an autoplan, the user will be the Atlantis API user, ex. `atlantis`.
:::
6 changes: 3 additions & 3 deletions runatlantis.io/docs/pre-workflow-hooks.md
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@ workflows](custom-workflows.html#custom-run-command) in several ways.

1. Pre workflow hooks do not require for repository configuration to be
present. This be utilized to [dynamically generate repo configs](pre-workflow-hooks.html#dynamic-repo-config-generation).
2. Pre workflow hooks are ran outside of Atlantis commands. Which means
2. Pre workflow hooks are run outside of Atlantis commands. Which means
they do not surface their output back to the PR as a comment.

[[toc]]
Expand All @@ -31,8 +31,8 @@ repos:
pre_workflow_hooks:
- run: ./repo-config-generator.sh
```
### Reference
#### Custom `run` Command
## Reference
### Custom `run` Command
This is very similar to [custom workflow run
command](custom-workflows.html#custom-run-command).
```yaml
Expand Down
19 changes: 19 additions & 0 deletions runatlantis.io/docs/server-side-repo-config.md
Original file line number Diff line number Diff line change
Expand Up @@ -60,6 +60,10 @@ repos:
# pre_workflow_hooks defines arbitrary list of scripts to execute before workflow execution.
pre_workflow_hooks:
- run: my-pre-workflow-hook-command arg1

# post_workflow_hooks defines arbitrary list of scripts to execute after workflow execution.
post_workflow_hooks:
- run: my-post-workflow-hook-command arg1

# id can also be an exact match.
- id: github.com/myorg/specific-repo
Expand Down Expand Up @@ -180,6 +184,21 @@ repos:
See [Pre Workflow Hooks](pre-workflow-hooks.html) for more details on writing
pre workflow hooks.

### Running Scripts After Atlantis Workflows
If you want to run scripts that would execute after Atlantis runs default or
custom workflows, you can create a `post-workflow-hooks`:

```yaml
repos:
- id: /.*/
post_workflow_hooks:
- run: my custom command
- run: |
my bash script inline
```
See [Post Workflow Hooks](post-workflow-hooks.html) for more details on writing
post workflow hooks.

### Change The Default Atlantis Workflow
If you want to change the default commands that Atlantis runs during `plan` and `apply`
phases, you can create a new `workflow`.
Expand Down
52 changes: 37 additions & 15 deletions server/controllers/events/events_controller_e2e_test.go
Original file line number Diff line number Diff line change
Expand Up @@ -48,6 +48,8 @@ type NoopTFDownloader struct{}

var mockPreWorkflowHookRunner *runtimemocks.MockPreWorkflowHookRunner

var mockPostWorkflowHookRunner *runtimemocks.MockPostWorkflowHookRunner

func (m *NoopTFDownloader) GetFile(dst, src string, opts ...getter.ClientOption) error {
return nil
}
Expand Down Expand Up @@ -425,7 +427,10 @@ func TestGitHubWorkflow(t *testing.T) {
ResponseContains(t, w, 200, "Pull request cleaned successfully")

// Let's verify the pre-workflow hook was called for each comment including the pull request opened event
mockPreWorkflowHookRunner.VerifyWasCalled(Times(len(c.Comments)+1)).Run(runtimematchers.AnyModelsPreWorkflowHookCommandContext(), EqString("some dummy command"), AnyString())
mockPreWorkflowHookRunner.VerifyWasCalled(Times(len(c.Comments)+1)).Run(runtimematchers.AnyModelsWorkflowHookCommandContext(), EqString("some dummy command"), AnyString())

// Let's verify the post-workflow hook was called for each comment including the pull request opened event
mockPostWorkflowHookRunner.VerifyWasCalled(Times(len(c.Comments)+1)).Run(runtimematchers.AnyModelsWorkflowHookCommandContext(), EqString("some post dummy command"), AnyString())

// Now we're ready to verify Atlantis made all the comments back (or
// replies) that we expect. We expect each plan to have 1 comment,
Expand Down Expand Up @@ -608,7 +613,7 @@ func TestSimlpleWorkflow_terraformLockFile(t *testing.T) {
}

// Let's verify the pre-workflow hook was called for each comment including the pull request opened event
mockPreWorkflowHookRunner.VerifyWasCalled(Times(2)).Run(runtimematchers.AnyModelsPreWorkflowHookCommandContext(), EqString("some dummy command"), AnyString())
mockPreWorkflowHookRunner.VerifyWasCalled(Times(2)).Run(runtimematchers.AnyModelsWorkflowHookCommandContext(), EqString("some dummy command"), AnyString())

// Now we're ready to verify Atlantis made all the comments back (or
// replies) that we expect. We expect each plan to have 1 comment,
Expand Down Expand Up @@ -869,12 +874,18 @@ func setupE2E(t *testing.T, repoDir string) (events_controllers.VCSEventsControl
AllowRepoCfg: true,
MergeableReq: false,
ApprovedReq: false,
PreWorkflowHooks: []*valid.PreWorkflowHook{
PreWorkflowHooks: []*valid.WorkflowHook{
{
StepName: "global_hook",
RunCommand: "some dummy command",
},
},
PostWorkflowHooks: []*valid.WorkflowHook{
{
StepName: "global_hook",
RunCommand: "some post dummy command",
},
},
PolicyCheckEnabled: userConfig.EnablePolicyChecksFlag,
}
globalCfg := valid.NewGlobalCfgFromArgs(globalCfgArgs)
Expand All @@ -896,6 +907,16 @@ func setupE2E(t *testing.T, repoDir string) (events_controllers.VCSEventsControl
WorkingDir: workingDir,
PreWorkflowHookRunner: mockPreWorkflowHookRunner,
}

mockPostWorkflowHookRunner = runtimemocks.NewMockPostWorkflowHookRunner()
postWorkflowHooksCommandRunner := &events.DefaultPostWorkflowHooksCommandRunner{
VCSClient: e2eVCSClient,
GlobalCfg: globalCfg,
WorkingDirLocker: locker,
WorkingDir: workingDir,
PostWorkflowHookRunner: mockPostWorkflowHookRunner,
}

projectCommandBuilder := events.NewProjectCommandBuilder(
userConfig.EnablePolicyChecksFlag,
parser,
Expand Down Expand Up @@ -1052,18 +1073,19 @@ func setupE2E(t *testing.T, repoDir string) (events_controllers.VCSEventsControl
}

commandRunner := &events.DefaultCommandRunner{
EventParser: eventParser,
VCSClient: e2eVCSClient,
GithubPullGetter: e2eGithubGetter,
GitlabMergeRequestGetter: e2eGitlabGetter,
Logger: logger,
GlobalCfg: globalCfg,
AllowForkPRs: allowForkPRs,
AllowForkPRsFlag: "allow-fork-prs",
CommentCommandRunnerByCmd: commentCommandRunnerByCmd,
Drainer: drainer,
PreWorkflowHooksCommandRunner: preWorkflowHooksCommandRunner,
PullStatusFetcher: boltdb,
EventParser: eventParser,
VCSClient: e2eVCSClient,
GithubPullGetter: e2eGithubGetter,
GitlabMergeRequestGetter: e2eGitlabGetter,
Logger: logger,
GlobalCfg: globalCfg,
AllowForkPRs: allowForkPRs,
AllowForkPRsFlag: "allow-fork-prs",
CommentCommandRunnerByCmd: commentCommandRunnerByCmd,
Drainer: drainer,
PreWorkflowHooksCommandRunner: preWorkflowHooksCommandRunner,
PostWorkflowHooksCommandRunner: postWorkflowHooksCommandRunner,
PullStatusFetcher: boltdb,
}

repoAllowlistChecker, err := events.NewRepoAllowlistChecker("*")
Expand Down
Original file line number Diff line number Diff line change
Expand Up @@ -3,6 +3,8 @@ repos:
pre_workflow_hooks:
- run: echo "hello"
workflow: custom
post_workflow_hooks:
- run: echo "hello"
allowed_overrides: [workflow]
workflows:
custom:
Expand Down

This file was deleted.

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

Loading

0 comments on commit 68a0cfa

Please sign in to comment.