Elgato_dark/console
1
0
Fork 0
mirror of https://github.com/graphql-hive/console synced 2026-05-23 17:18:23 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
console/deployment/services/cf-broker.ts
Dotan Simha df0310dce6
Refactor deployment code (#4138)
2024-03-04 13:56:12 +01:00

58 lines
2 KiB
TypeScript
Raw Blame History

import * as pulumi from '@pulumi/pulumi';
import { CloudflareBroker } from '../utils/cloudflare';
import { ServiceSecret } from '../utils/secrets';
import { Environment } from './environment';
import { Sentry } from './sentry';
export class CloudFlareBrokerSecret extends ServiceSecret<{
secretSignature: string | pulumi.Output<string>;
baseUrl: string | pulumi.Output<string>;
}> {}
export type Broker = ReturnType<typeof deployCFBroker>;
export function deployCFBroker({
environment,
sentry,
}: {
environment: Environment;
sentry: Sentry;
}) {
const commonConfig = new pulumi.Config('common');
const cfConfig = new pulumi.Config('cloudflareCustom');
const observabilityConfig = new pulumi.Config('observability');
const cfBrokerSignature = commonConfig.requireSecret('cfBrokerSignature');
const broker = new CloudflareBroker({
envName: environment.envName,
zoneId: cfConfig.require('zoneId'),
// We can't cdn for staging env, since CF certificate only covers
// one level of subdomains. See: https://community.cloudflare.com/t/ssl-handshake-error-cloudflare-proxy/175088
// So for staging env, we are going to use `broker-staging` instead of `broker.staging`.
cdnDnsRecord: environment.isProduction
? `broker.${environment.rootDns}`
: `broker-${environment.rootDns}`,
secretSignature: cfBrokerSignature,
sentryDsn: sentry.enabled && sentry.secret ? sentry.secret.raw.dsn : '',
release: environment.release,
loki: observabilityConfig.getBoolean('enabled')
? {
endpoint: observabilityConfig.require('lokiEndpoint'),
username: observabilityConfig.require('lokiUsername'),
password: observabilityConfig.requireSecret('lokiPassword'),
}
: null,
});
const deployedBroker = broker.deploy();
const secret = new CloudFlareBrokerSecret('cloudflare-broker', {
secretSignature: cfBrokerSignature,
baseUrl: deployedBroker.workerBaseUrl,
});
return {
broker: deployedBroker,
secret,
};
}
Reference in a new issue View git blame Copy permalink