Initial Commit

Author: Jaison Titus

.DS_Store

@@ -0,0 +1,4 @@
+.hasura
+node_modules
+npm-debug.log
+test

.gitignore

@@ -0,0 +1,5 @@
+# gitignore like file
+# files and directories mentioned here will be ignored while publishing to hasura
+iOS-app
+android-app
+react-native

.hasuraignore

@@ -0,0 +1,7 @@
+- alias: hasura
+  config:
+    configmap: controller-conf
+    namespace: babushka20-hasura
+  data: null
+  kubeContext: babushka20
+  name: babushka20

README.md

@@ -0,0 +1,63 @@
+# conf
+
+This directory has the configuration to deploy your project on any Hasura cluster. With the secrets (like API keys, client secrets) and this configuration, you can deploy the project on any Hasura cluster.
+
+The configuration is templated so that it can be seamlessly used across multiple clusters. Templating also helps with the management of different kinds of clusters, for example you may have a dev, staging and production clusters where the configuration might differ slightly. The templates are written in [pongo2](https://github.com/flosch/pongo2), a jinja like templating language.
+
+A context variable called `cluster` is available to be used in the templates. This is an extension of the cluster object present in `clusters.yaml` file. Apart from the keys present in `clusters.yaml`, a key called `metadata` with some cluster specific information will be present.
+
+If you need to add your own variables, you can add them under the `data` key in `clusters.yaml` and this will be available as `cluster.data`
+
+The entire context variable `cluster` can be viewed anytime using the command:
+
+```bash
+$ hasura cluster template-context
+```
+
+A typical context is as follows:
+
+```yaml
+name: h34-ambitious93-stg
+alias: hasura
+kubeContext: ambitious93
+config:
+  configmap: controller-conf
+  namespace: hasura
+metadata:
+  filestore:
+    volume:
+      hostPath:
+        path: /data/hasura.io/filestore
+      name: filestore-pv
+  gateway:
+    externalIPs:
+    - 111.222.33.44
+    ports:
+    - name: http
+      port: 80
+      protocol: TCP
+      targetPort: 80
+    - name: https
+      port: 443
+      protocol: TCP
+      targetPort: 443
+    - name: ssh
+      port: 22
+      protocol: TCP
+      targetPort: 22
+  namespaces:
+    hasura: hasura
+    user: default
+  postgres:
+    volume:
+      hostPath:
+        path: /data/hasura.io/postgres
+      name: postgres-pv
+  registry: null
+  sessionStore:
+    volume:
+      hostPath:
+        path: /data/hasura.io/redis
+      name: redis-pv
+data: null
+```

clusters.yaml

@@ -0,0 +1,188 @@
+# Configuration for Hasura Auth
+
+# All values in this configuration are strings, including boolean and integer
+# values.
+
+# Configuration for default providers
+# Each provider has the following fields:
+# `enabled` : To mark if the provider is enabled. Valid values are "true" or
+# "false".
+# `defaultRoles`: Specify the roles that get added when a user signs-up. By
+# default the user role is added (even when the list does not contain "user").
+# If you do not want any extra roles, leave it as an empty list.
+# Example:  the below two examples are same
+# defaultRoles: ["user", "admin"]
+# defaultRoles: ["admin"]
+defaultProviders:
+  username:
+    enabled: "true"
+    defaultRoles: []
+  email:
+    enabled: "false"
+    defaultRoles: []
+  mobile:
+    enabled: "false"
+    defaultRoles: []
+  mobile-password:
+    enabled: "false"
+    defaultRoles: []
+  google:
+    enabled: "false"
+    defaultRoles: []
+  facebook:
+    enabled: "false"
+    defaultRoles: []
+  github:
+    enabled: "false"
+    defaultRoles: []
+  linkedin:
+    enabled: "false"
+    defaultRoles: []
+
+# Session related configuration
+session:
+  # Name of the cookie. This is usually set to your cluster's domain. No need
+  # to edit this in normal circumstances.
+  cookieName: {{ cluster.name }}
+  # if the cookie should be sent over https only. Stick to "true".
+  cookieSecure: "true"
+  # The default age of a user session in seconds. Default: 181440 (3 weeks)
+  sessionAge: "1814400"
+
+# Configuration related to the email provider
+email:
+  # email address of the sender for verification emails
+  verifyEmailFrom: [email protected]
+  # Name of the sender for verification emails
+  verifEmailFromName: Admin
+  # Subject for verification emails
+  verifyEmailSubject: Verify your account - {{ cluster.name }}
+  # Template for verification emails. HTML can be used in the template. The
+  # template is a Jinja template. Leave the "{{token}}" as it is. It will be
+  # used by the auth service to inject the actual token when sending the email.
+  verifyTemplate: |
+    Hi, Please click on <br/>
+    https://auth.{{ cluster.name }}.hasura-app.io/ui/verify-email?token={{ "{{token}}" }}
+    to verify your email.
+  # Email verification token expiry time in days
+  verifyTokenExpires: "7"
+
+  # email address of the sender for forgot password emails
+  forgotPassEmailFrom: [email protected]
+  # Name of the sender for forgot password emails
+  forgotPassEmailFromName: Admin
+  # Subject for forgot password emails
+  forgotPassEmailSubject: Reset password request - {{ cluster.name }}
+  # Template for forgot password emails. HTML can be used in the template. The
+  # template is a Jinja template. Leave the "{{token}}" as it is. It will be
+  # used by the auth service to inject the actual token when sending the email.
+  forgotPassTemplate: |
+    Hi, <br/> Click on
+    https://auth.{{ cluster.name }}.hasura-app.io/ui/reset-password?token={{ "{{token}}" }}
+    to reset your password.
+  # Forgot password reset token expiry time in days
+  resetTokenExpires: "7"
+
+# Configuration for the mobile provider
+mobile:
+  # Template for the SMS that is sent. This is a Jinja template. Leave the
+  # "{{otp}}" as it is. It will be used by the auth service to inject the
+  # actual token.
+  smsTemplate: |
+    Verify your acccount with {{ cluster.name }}! Your OTP is {{ "{{otp}}" }}.
+  # OTP expiry time in minutes
+  otpExpiryTime: "15"
+
+# Configuration for the mobile-password provider
+mobilePassword:
+  # Template for the SMS that is sent. This is a Jinja template. Leave the
+  # "{{otp}}" as it is. It will be used by the auth service to inject the
+  # actual token.
+  smsTemplate: |
+    Verify your acccount with {{ cluster.name }}! Your OTP is {{ "{{otp}}" }}.
+  # OTP expiry time in minutes
+  otpExpiryTime: "15"
+
+# Configuration for password
+password:
+  # minimum length of the password allowed.
+  minLength: "8"
+
+# Below fields are all optional
+#
+# Configuration for google provider
+#google:
+#  # list of the all the client ids generated for your Google app
+#  clientIds: ["xxxxxx", "yyyyyy"]
+#
+# Configuration for facebook provider
+#facebook:
+#  # your facebook app client id
+#  clientId: xxxxxxxxx
+#  # your facebook app client secret
+#  clientSecret:
+#    secretKeyRef:
+#      key: auth.facebook.client_secret
+#      name: hasura-secrets
+#
+# Configuration for github provider
+#github:
+#  # your github app client id
+#  clientId: xxxxxxxxx
+#  # your github app client secret
+#  clientSecret:
+#    secretKeyRef:
+#      key: auth.github.client_secret
+#      name: hasura-secrets
+#
+# Configuration for linkedin provider
+#linkedin:
+#  # your linkedin app client id
+#  clientId: xxxxxxxxx
+#  # your linkedin app client secret
+#  clientSecret:
+#    secretKeyRef:
+#      key: auth.linkedin.client_secret
+#      name: hasura-secrets
+
+# Configuration for adding a custom provider
+#customProviders:
+# myCustomProvider:
+#   enabled: "true",
+#   hooks:
+#     signup: "https://mycustomprovider.test42.hasura-app.io/signup"
+#     login: "https://mycustomprovider.test42.hasura-app.io/login"
+#     merge: "https://mycustomprovider.test42.hasura-app.io/merge"
+#     createUser: "https://mycustomprovider.test42.hasura-app.io/create-user"
+#     deleteUser: "https://mycustomprovider.test42.hasura-app.io/delete-user"
+#  defaultRoles: ["admin"]
+
+
+# The below fields are used by the platform when initializing. Please do not
+# edit these configuration
+postgres:
+  database: hasuradb
+  host: postgres.{{ cluster.metadata.namespaces.hasura }}
+  password:
+    secretKeyRef:
+      key: postgres.password
+      name: hasura-secrets
+  port: "5432"
+  user:
+    secretKeyRef:
+      key: postgres.user
+      name: hasura-secrets
+redis:
+  cred: null
+  host: session-redis.{{ cluster.metadata.namespaces.hasura }}
+  port: "6379"
+notifyDomain: http://notify.{{ cluster.metadata.namespaces.hasura }}
+superUser:
+  password:
+    secretKeyRef:
+      key: auth.admin.password
+      name: hasura-secrets
+  username: admin
+  # optional  fields
+  # email: [email protected]
+  # mobile: 987654321

conf/README.md

@@ -0,0 +1,12 @@
+# Defines where SSH keys are stored on the cluster.
+#
+# In this current configuration, it points to the `authorizedKeys`
+# key of configmap `ssh-authorized-keys` which is created
+# during project creation.
+#
+# All SSH keys added to the cluster (using `hasura ssh-key add`)
+# are stored in this ConfigMap
+
+configMapKeyRef:
+  name: ssh-authorized-keys
+  key: authorizedKeys

conf/auth.yaml

@@ -0,0 +1,23 @@
+# Defines continuous integration for the project
+
+# registry defines a custom docker registry to push images that are built on the cluster
+registry: {{ cluster.metadata.registry|json }}
+
+# remotes define which microservices has to be updated when code is pushed to the remote
+remotes:
+  # Default remote to push code and configuration
+  {{ cluster.name }}:
+    <<: {}
+    '{{ cluster.metadata.namespaces.user }}.api':
+      api:
+        dockerfile: microservices/api/Dockerfile
+        path: microservices/api
+    # Add new remotes here above this line
+    # Example:
+
+    # remote-name:
+    #   namespace.service-name:
+    #     container-name:
+    #       path: services/app
+    #       dockerfile: services/app/Dockerfile
+

conf/authorized-keys.yaml

@@ -0,0 +1 @@
+gateway: true

conf/ci.yaml

@@ -0,0 +1,21 @@
+# Domain configuration for the gateway
+# Hasura allots a cluster-name.hasura-app.io for every cluster
+
+{{ cluster.name }}.hasura-app.io:
+  ssl:
+    type: LetsEncrypt
+    conf:
+      account: {{ cluster.name }}
+
+# Point your own domain to the IP of the cluster and add the domain here
+# Example configuration for domain with free SSL certs from LetsEncypt
+#
+# example-domain.com:
+#   ssl:
+#     type: LetsEncrypt
+#     conf: {}
+
+# Example configurtaion for a domain without SSL
+#
+# example-domain.com:
+#   ssl: null

conf/dev-mode.yaml

@@ -0,0 +1,27 @@
+# Configuration for Hausra Filestore service
+
+# hookUrl
+# -------
+# defines the URL to be contacted for enforcing permissions
+# The filestore service has the following built in hooks:
+#
+# Private: Only logged in users can read and upload
+# hookUrl: http://localhost:8080/v1/hooks/user-read-write
+#
+# Public: Anybody can read, but only logged in users can upload
+# hookUrl: http://localhost:8080/v1/hooks/public-read-user-write
+#
+# Read Only: Anybody can read, but no one can upload
+# hookUrl: http://localhost:8080/v1/hooks/public-read
+#
+# Custom Permission URL: For any other custom permissions, you need to define your own service
+#
+# Default permissions are admin-only
+
+hookUrl: http://localhost:8080/v1/hooks/public-read-user-write
+
+# volume
+# -------
+# Volume defines the Kubernetes volume to be mounted for storing the files, this is usually filled in from the metadata.
+
+volume: {{ cluster.metadata.filestore.volume|json }}

conf/domains.yaml

@@ -0,0 +1,3 @@
+# Configuration for opening the the Gateway to the external world
+# Filled in from cluster metadata, contains Kubernete spec for the service object
+{{ cluster.metadata.gateway|json }}

conf/filestore.yaml

@@ -0,0 +1,8 @@
+# You can add nginx directives that can go into the 'http' section of the gateway here
+gzip               on;
+gzip_http_version  1.1;
+gzip_min_length    1024;
+gzip_types         text/plain text/css text/javascript application/json application/x-javascript application/javascript text/xml application/xml application/xml+rss;
+gzip_proxied       any;
+gzip_disable       msie6;
+gzip_comp_level    1;