[POA-1443] Add helm container snippet in kube command (#21)

In this PR, we are adding support for printing the Helm Chart snippet
using the `kube` command.
Changes done:
* Create a new `helm-sidecar-support` sub-command under `kube`.
* Moved the `init()` function from `inject.go` to `kube.go` and also
moved the `--project` flag to the `kube` command level
* Refactored the `createPostmanSidecar()` function to handle how the API
Key should be shown in the snippet
  * Also moved this function to `kube/util.go`
* Created a new `print_snippet.go` file, which stores the function to
print the snippet.

@mgritter Have two questions:
1. Do we need to add quotes `'` around the image value since it contains
a colon `:`?
2. By default, the preStop command is broken into two lines. Do we still
need to keep it on a single line?

Author: mudit-postman

cmd/internal/kube/inject.go

@@ -7,7 +7,6 @@ import (
 	"github.com/akitasoftware/akita-libs/akid"
 	"github.com/akitasoftware/go-utils/optionals"
 	"github.com/pkg/errors"
-	"github.com/postmanlabs/postman-insights-agent/cfg"
 	"github.com/postmanlabs/postman-insights-agent/cmd/internal/cmderr"
 	"github.com/postmanlabs/postman-insights-agent/cmd/internal/kube/injector"
 	"github.com/postmanlabs/postman-insights-agent/printer"
@@ -19,7 +18,7 @@ import (
 )
 
 var (
-	// The target Yaml faile to be injected
+	// The target Yaml file to be injected
 	// This is required for execution of injectCmd
 	injectFileNameFlag string
 	// The output file to write the injected Yaml to
@@ -120,8 +119,7 @@ var injectCmd = &cobra.Command{
 		var container v1.Container
 
 		// Inject the sidecar into the input file
-		_, env := cfg.GetPostmanAPIKeyAndEnvironment()
-		container = createPostmanSidecar(insightsProjectID, env)
+		container = createPostmanSidecar(insightsProjectID, true)
 
 		rawInjected, err := injector.ToRawYAML(injectr, container)
 		if err != nil {
@@ -144,15 +142,7 @@ var injectCmd = &cobra.Command{
 
 		return nil
 	},
-	PersistentPreRun: func(cmd *cobra.Command, args []string) {
-		// This function overrides the root command preRun so we need to duplicate the domain setup.
-		if rest.Domain == "" {
-			rest.Domain = rest.DefaultDomain()
-		}
-
-		// Initialize the telemetry client, but do not allow any logs to be printed
-		telemetry.Init(false)
-	},
+	PersistentPreRun: kubeCommandPreRun,
 }
 
 // A parsed representation of the `--secret` option.
@@ -163,62 +153,6 @@ type secretGenerationOptions struct {
 	Filepath optionals.Optional[string]
 }
 
-// The image to use for the Postman Insights Agent sidecar
-const akitaImage = "docker.postman.com/postman-insights-agent:latest"
-
-func createPostmanSidecar(insightsProjectID string, postmanEnvironment string) v1.Container {
-	args := []string{"apidump", "--project", insightsProjectID}
-
-	// If a nondefault --domain flag was used, specify it for the container as well.
-	if rest.Domain != rest.DefaultDomain() {
-		args = append(args, "--domain", rest.Domain)
-	}
-
-	envs := []v1.EnvVar{
-		{
-			Name: "POSTMAN_API_KEY",
-			ValueFrom: &v1.EnvVarSource{
-				SecretKeyRef: &v1.SecretKeySelector{
-					LocalObjectReference: v1.LocalObjectReference{
-						Name: "postman-agent-secrets",
-					},
-					Key: "postman-api-key",
-				},
-			},
-		},
-	}
-
-	if postmanEnvironment != "" {
-		envs = append(envs, v1.EnvVar{
-			Name:  "POSTMAN_ENV",
-			Value: postmanEnvironment,
-		})
-	}
-
-	sidecar := v1.Container{
-		Name:  "postman-insights-agent",
-		Image: akitaImage,
-		Env:   envs,
-		Lifecycle: &v1.Lifecycle{
-			PreStop: &v1.LifecycleHandler{
-				Exec: &v1.ExecAction{
-					Command: []string{
-						"/bin/sh",
-						"-c",
-						"POSTMAN_INSIGHTS_AGENT_PID=$(pgrep postman-insights-agent) && kill -2 $POSTMAN_INSIGHTS_AGENT_PID && tail -f /proc/$POSTMAN_INSIGHTS_AGENT_PID/fd/1",
-					},
-				},
-			},
-		},
-		Args: args,
-		SecurityContext: &v1.SecurityContext{
-			Capabilities: &v1.Capabilities{Add: []v1.Capability{"NET_RAW"}},
-		},
-	}
-
-	return sidecar
-}
-
 // Parses the given value for the `--secret` option.
 func resolveSecretGenerationOptions(flagValue string) secretGenerationOptions {
 	if flagValue == "" || flagValue == "false" {
@@ -257,6 +191,7 @@ func lookupService(insightsProjectID string) error {
 }
 
 func init() {
+	// `kube inject` command level flags
 	injectCmd.Flags().StringVarP(
 		&injectFileNameFlag,
 		"file",
@@ -284,11 +219,5 @@ func init() {
 	// Default value is "true" when the flag is given without an argument.
 	injectCmd.Flags().Lookup("secret").NoOptDefVal = "true"
 
-	injectCmd.Flags().StringVar(
-		&insightsProjectID,
-		"project",
-		"",
-		"Your Postman Insights project ID.")
-
 	Cmd.AddCommand(injectCmd)
 }

cmd/internal/kube/kube.go

@@ -12,3 +12,13 @@ var Cmd = &cobra.Command{
 		"kubernetes",
 	},
 }
+
+func init() {
+	// `kube` command level flags
+	Cmd.PersistentFlags().StringVar(
+		&insightsProjectID,
+		"project",
+		"",
+		"Your Postman Insights project ID.")
+	_ = Cmd.MarkFlagRequired("project")
+}

cmd/internal/kube/print_fragment.go

@@ -0,0 +1,149 @@
+package kube
+
+import (
+	"bytes"
+	"fmt"
+	"strings"
+
+	"github.com/postmanlabs/postman-insights-agent/cfg"
+	"github.com/postmanlabs/postman-insights-agent/cmd/internal/cmderr"
+	"github.com/postmanlabs/postman-insights-agent/rest"
+	v1 "k8s.io/api/core/v1"
+
+	"github.com/spf13/cobra"
+	"github.com/zclconf/go-cty/cty"
+	"sigs.k8s.io/yaml"
+
+	"github.com/hashicorp/hcl/v2/hclsyntax"
+	"github.com/hashicorp/hcl/v2/hclwrite"
+)
+
+var printHelmChartFragmentCmd = &cobra.Command{
+	Use:              "helm-fragment",
+	Short:            "Print a Helm chart container definition for adding the Postman Insights Agent to existing kubernetes deployment.",
+	Long:             "Print a container definition that can be inserted into a Helm Chart template to add the Postman Insights Agent as a sidecar container.",
+	RunE:             printHelmChartFragment,
+	PersistentPreRun: kubeCommandPreRun,
+}
+
+var printTerraformFragmentCmd = &cobra.Command{
+	Use:              "tf-fragment",
+	Short:            "Print an Terraform (HCL) code fragment for adding the Postman Insights Agent to an existing kubernetes deployment.",
+	Long:             "Print a Terraform (HCL) code fragment that can be inserted into a Terraform kubernetes_deployment resource spec to add the Postman Insights Agent as a sidecar container.",
+	RunE:             printTerraformFragment,
+	PersistentPreRun: kubeCommandPreRun,
+}
+
+func printHelmChartFragment(_ *cobra.Command, _ []string) error {
+	err := cmderr.CheckAPIKeyAndInsightsProjectID(insightsProjectID)
+	if err != nil {
+		return err
+	}
+
+	// Create the Postman Insights Agent sidecar container
+	container := createPostmanSidecar(insightsProjectID, false)
+	// Store it in an array since the fragment will be added to a list of containers
+	containerArray := []v1.Container{container}
+
+	containerYamlBytes, err := yaml.Marshal(containerArray)
+	if err != nil {
+		return err
+	}
+	containerYaml := indentCodeFragment(containerYamlBytes, 4)
+
+	fmt.Printf("\n%s\n", containerYaml)
+	return nil
+}
+
+func printTerraformFragment(_ *cobra.Command, _ []string) error {
+	err := cmderr.CheckAPIKeyAndInsightsProjectID(insightsProjectID)
+	if err != nil {
+		return err
+	}
+
+	// Create the Postman Insights Agent sidecar container
+	hclBlockConfig := createTerraformContainer(insightsProjectID)
+	hclBlockConfigString := indentCodeFragment(hclBlockConfig.Bytes(), 4)
+
+	// Print the fragment
+	fmt.Printf("\n%s\n", hclBlockConfigString)
+	return nil
+}
+
+func createTerraformContainer(insightsProjectID string) *hclwrite.File {
+	hclConfig := hclwrite.NewEmptyFile()
+	rootBody := hclConfig.Body()
+
+	rootBody.AppendUnstructuredTokens(hclwrite.Tokens{
+		{
+			Type:  hclsyntax.TokenComment,
+			Bytes: []byte("# Add this fragment to your 'kubernetes_deployment' resource under 'spec.template.spec'. \n"),
+		},
+	})
+
+	containerBlock := rootBody.AppendNewBlock("container", []string{})
+	containerBody := containerBlock.Body()
+
+	containerBody.SetAttributeValue("name", cty.StringVal("postman-insights-agent"))
+	containerBody.SetAttributeValue("image", cty.StringVal(akitaImage))
+
+	containerBody.AppendNewBlock("lifecycle", []string{}).
+		Body().AppendNewBlock("pre_stop", []string{}).
+		Body().AppendNewBlock("exec", []string{}).
+		Body().SetAttributeValue("command", cty.ListVal([]cty.Value{
+		cty.StringVal("/bin/sh"),
+		cty.StringVal("-c"),
+		cty.StringVal("POSTMAN_INSIGHTS_AGENT_PID=$(pgrep postman-insights-agent) && kill -2 $POSTMAN_INSIGHTS_AGENT_PID && tail -f /proc/$POSTMAN_INSIGHTS_AGENT_PID/fd/1"),
+	}))
+
+	containerBody.AppendNewBlock("security_context", []string{}).
+		Body().AppendNewBlock("capabilities", []string{}).
+		Body().SetAttributeValue("add", cty.ListVal([]cty.Value{
+		cty.StringVal("NET_RAW"),
+	}))
+
+	// Add the args to the container
+	args := cty.ListVal([]cty.Value{
+		cty.StringVal("apidump"),
+		cty.StringVal("--project"),
+		cty.StringVal(insightsProjectID),
+	})
+	// If a non default --domain flag was used, specify it for the container as well.
+	if rest.Domain != rest.DefaultDomain() {
+		args.Add(cty.StringVal("--domain"))
+		args.Add(cty.StringVal(rest.Domain))
+	}
+	containerBody.SetAttributeValue("args", args)
+
+	// Add the environment variables to the container
+	pmKey, pmEnv := cfg.GetPostmanAPIKeyAndEnvironment()
+	APIKeyEnvBlockBody := containerBody.AppendNewBlock("env", []string{}).Body()
+	APIKeyEnvBlockBody.SetAttributeValue("name", cty.StringVal("POSTMAN_API_KEY"))
+	APIKeyEnvBlockBody.SetAttributeValue("value", cty.StringVal(pmKey))
+
+	if pmEnv != "" {
+		PostmanEnvBlockBody := containerBody.AppendNewBlock("env", []string{}).Body()
+		PostmanEnvBlockBody.SetAttributeValue("name", cty.StringVal("POSTMAN_ENV"))
+		PostmanEnvBlockBody.SetAttributeValue("value", cty.StringVal(pmEnv))
+	}
+
+	return hclConfig
+}
+
+func indentCodeFragment(codeFragmentInBytes []byte, indentLevel int) string {
+	// Trim off any extraneous newlines.
+	codeFragmentInBytes = bytes.Trim(codeFragmentInBytes, "\n")
+
+	// Indent level prefix
+	indentPrefix := strings.Repeat("  ", indentLevel)
+
+	indentedCodeFragment := indentPrefix + strings.ReplaceAll(
+		string(codeFragmentInBytes), "\n", "\n"+indentPrefix)
+
+	return indentedCodeFragment
+}
+
+func init() {
+	Cmd.AddCommand(printHelmChartFragmentCmd)
+	Cmd.AddCommand(printTerraformFragmentCmd)
+}

cmd/internal/kube/secret.go

@@ -8,8 +8,6 @@ import (
 	"github.com/pkg/errors"
 	"github.com/postmanlabs/postman-insights-agent/cmd/internal/cmderr"
 	"github.com/postmanlabs/postman-insights-agent/printer"
-	"github.com/postmanlabs/postman-insights-agent/rest"
-	"github.com/postmanlabs/postman-insights-agent/telemetry"
 	"github.com/spf13/cobra"
 )
 
@@ -54,15 +52,7 @@ var secretCmd = &cobra.Command{
 	},
 	// Override the parent command's PersistentPreRun to prevent any logs from being printed.
 	// This is necessary because the secret command is intended to be used in a pipeline
-	PersistentPreRun: func(cmd *cobra.Command, args []string) {
-		// This function overrides the root command preRun so we need to duplicate the domain setup.
-		if rest.Domain == "" {
-			rest.Domain = rest.DefaultDomain()
-		}
-
-		// Initialize the telemetry client, but do not allow any logs to be printed
-		telemetry.Init(false)
-	},
+	PersistentPreRun: kubeCommandPreRun,
 }
 
 // Represents the input used by secretTemplate