add the logic to write the gossip key secrets

Signed-off-by: Jeromy Cannon <[email protected]>

Author: jeromy-cannon

src/commands/node.mjs

@@ -1669,7 +1669,7 @@ export class NodeCommand extends BaseCommand {
             valuesArg += this.prepareValuesFiles(this.profileValuesFile)
           }
 
-          // TODO: update the secrets with the new/updated key(s)
+          // TODO: update the secrets with the new/updated key(s), platform installer: copyGossipKeys & copyTLSKeys
           await self.chartManager.upgrade(
             config.namespace,
             constants.FULLSTACK_DEPLOYMENT_CHART,

src/core/platform_installer.mjs

@@ -22,6 +22,7 @@ import { FullstackTestingError, IllegalArgumentError, MissingArgumentError } fro
 import { constants } from './index.mjs'
 import { Templates } from './templates.mjs'
 import { flags } from '../commands/index.mjs'
+import * as Base64 from 'js-base64'
 
 /**
  * PlatformInstaller install platform code in the root-container of a network pod
@@ -171,13 +172,27 @@ export class PlatformInstaller {
           throw new FullstackTestingError(`Unsupported key file format ${keyFormat}`)
       }
 
+      const data = {}
+      for (const srcFile of srcFiles) {
+        const fileContents = fs.readFileSync(srcFile)
+        const fileName = path.basename(srcFile)
+        data[fileName] = Base64.encode(fileContents)
+      }
+
+      if (!await this.k8.createSecret(
+        Templates.renderGossipKeySecretName(nodeId),
+        this._getNamespace(), 'Opaque', data,
+        Templates.renderGossipKeySecretLabelObject(nodeId), true)) {
+        this.logger.error(`failed to create secret for gossip keys for node '${nodeId}'`)
+        throw new FullstackTestingError(`failed to create secret for gossip keys for node '${nodeId}'`)
+      }
+
       return await self.copyFiles(podName, srcFiles, keysDir)
     } catch (e) {
       throw new FullstackTestingError(`failed to copy gossip keys to pod '${podName}': ${e.message}`, e)
     }
   }
 
-  // TODO: update to copy the keys to the k8s secrets
   async copyTLSKeys (podName, stagingDir) {
     if (!podName) throw new MissingArgumentError('podName is required')
     if (!stagingDir) throw new MissingArgumentError('stagingDir is required')
@@ -196,6 +211,8 @@ export class PlatformInstaller {
       srcFiles.push(path.join(tmpDir, 'hedera.key'))
       srcFiles.push(path.join(tmpDir, 'hedera.crt'))
 
+      // TODO: create secret and store in network-node-hapi-app-secrets, hedera-{{ $node.name }}.crt, hedera-{{ $node.name }}.key
+
       return this.copyFiles(podName, srcFiles, constants.HEDERA_HAPI_PATH)
     } catch (e) {
       throw new FullstackTestingError(`failed to copy TLS keys to pod '${podName}': ${e.message}`, e)

src/core/templates.mjs

@@ -185,4 +185,14 @@ export class Templates {
       }
     }
   }
+
+  static renderGossipKeySecretName (nodeId) {
+    return `network-${nodeId}-keys-secrets`
+  }
+
+  static renderGossipKeySecretLabelObject (nodeId) {
+    return {
+      'fullstack.hedera.com/node-name': nodeId
+    }
+  }
 }