mirror of https://github.com/perkeep/perkeep.git
160 lines
5.4 KiB
160 lines
5.4 KiB
Copyright 2014 The Perkeep Authors
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
See the License for the specific language governing permissions and
limitations under the License.
package main
import (
type gceCmd struct {
project string
zone string
machine string
instName string
verbose bool
hostname string
wip bool
func init() {
cmdmain.RegisterMode("gce", func(flags *flag.FlagSet) cmdmain.CommandRunner {
cmd := new(gceCmd)
flags.StringVar(&cmd.project, "project", "", "Name of Project.")
flags.StringVar(&cmd.zone, "zone", gce.DefaultRegion, "GCE zone or region. If a region is given, a random zone in that region is selected. See https://cloud.google.com/compute/docs/zones")
flags.StringVar(&cmd.machine, "machine", gce.DefaultMachineType, "GCE machine type (e.g. n1-standard-1, f1-micro, g1-small); see https://cloud.google.com/compute/docs/machine-types")
flags.StringVar(&cmd.instName, "instance_name", gce.DefaultInstanceName, "Name of VM instance.")
flags.StringVar(&cmd.hostname, "hostname", "", "Optional hostname for the instance. If set, the custom metadata variable \"camlistore-hostname\" on the instance takes that value. Otherwise, perkeepd sets that variable to the hostname we get from the camliNet DNS.")
flags.BoolVar(&cmd.wip, "wip", false, "Developer option. Deploy the WORKINPROGRESS perkeepd tarball.")
flags.BoolVar(&cmd.verbose, "verbose", false, "Be verbose.")
return cmd
const (
clientIdDat = "client-id.dat"
clientSecretDat = "client-secret.dat"
helpEnableAuth = `Enable authentication: in your project console, navigate to "APIs and auth", "Credentials", click on "Create new Client ID", and pick "Installed application", with type "Other". Copy the CLIENT ID to ` + clientIdDat + `, and the CLIENT SECRET to ` + clientSecretDat
helpCreateProject = "Go to " + gce.ConsoleURL + " to create a new Google Cloud project"
helpEnableAPIs = `Enable the project APIs: in your project console, navigate to "APIs and auth", "APIs". In the list, enable "Google Cloud Storage", "Google Cloud Storage", "Google Cloud Storage JSON API", and "Google Compute Engine".`
func (c *gceCmd) Describe() string {
return "Deploy Perkeep on Google Compute Engine."
func (c *gceCmd) Usage() {
fmt.Fprintf(os.Stderr, "Usage:\n\n %s\n %s\n\n",
"pk-deploy gce --project=<project> --hostname=<hostname> [options]",
"pk-deploy gce --project=<project> --cert=<cert file> --key=<key file> [options]")
fmt.Fprintln(os.Stderr, "\nTo get started:")
func printHelp() {
for _, v := range []string{helpCreateProject, helpEnableAuth, helpEnableAPIs} {
fmt.Fprintf(os.Stderr, "%v\n", v)
func (c *gceCmd) RunCommand(args []string) error {
if c.verbose {
gce.Verbose = true
if c.project == "" {
return cmdmain.UsageError("Missing --project flag.")
// We embed the client ID and client secret, per
// https://developers.google.com/identity/protocols/OAuth2InstalledApp
// Notably: "The client ID and client secret obtained from the
// Developers Console are embedded in the source code of your
// application. In this context, the client secret is
// obviously not treated as a secret."
// These were created at:
// https://console.developers.google.com/apis/credentials?project=camlistore-website
// (Notes for Brad and Mathieu)
const (
clientID = "574004351801-9qqoggh6b5v3jqt722v43ikmgmtv60h3.apps.googleusercontent.com"
clientSecret = "Gf1zwaOcbJnRTE5zD4feKaTI" // NOT a secret, despite name
config := gce.NewOAuthConfig(clientID, clientSecret)
config.RedirectURL = "urn:ietf:wg:oauth:2.0:oob"
hc := oauth2.NewClient(oauth2.NoContext, oauth2.ReuseTokenSource(nil, &oauthutil.TokenSource{
Config: config,
CacheFile: c.project + "-token.json",
AuthCode: func() string {
fmt.Println("Get auth code from:")
fmt.Printf("%v\n\n", config.AuthCodeURL("my-state", oauth2.AccessTypeOffline, oauth2.ApprovalForce))
fmt.Print("Enter auth code: ")
sc := bufio.NewScanner(os.Stdin)
return strings.TrimSpace(sc.Text())
zone := c.zone
if gce.LooksLikeRegion(zone) {
region := zone
zones, err := gce.ZonesOfRegion(hc, c.project, region)
if err != nil {
return err
if len(zones) == 0 {
return fmt.Errorf("no zones found in region %q; invalid region?", region)
zone = zones[rand.Intn(len(zones))]
instConf := &gce.InstanceConf{
Name: c.instName,
Project: c.project,
Machine: c.machine,
Zone: zone,
Hostname: c.hostname,
WIP: c.wip,
log.Printf("Creating instance %s (in project %s) in zone %s ...", c.instName, c.project, zone)
depl := &gce.Deployer{
Client: hc,
Conf: instConf,
inst, err := depl.Create(context.Background())
if err != nil {
return err
log.Printf("Instance created; starting up at %s", inst.NetworkInterfaces[0].AccessConfigs[0].NatIP)
return nil