Merge pull request #49 from renoki-co/feature/secret-volume

[feature] Mount secrets for Volumes

Author: rennokki

docs/instances/Volumes.md

@@ -28,6 +28,22 @@ $container->addMountedVolumes([$volume->mountTo('/some-path/file.txt', 'some-key
 $pod->addVolumes([$volume]);
 ```
 
+## Secret
+
+```php
+$secret = K8s::secret()
+    ->setName('some-secret')
+    ->setData([
+        'some-key' => 'value-for-file',
+    ]);
+
+$volume = K8s::volume()->fromSecret($secret);
+
+$container->addMountedVolumes([$volume->mountTo('/some-path/file.txt', 'some-key')]);
+
+$pod->addVolumes([$volume]);
+```
+
 ## GCE Persistent Disk
 
 ```php

src/Instances/Volume.php

@@ -3,6 +3,7 @@
 namespace RenokiCo\PhpK8s\Instances;
 
 use RenokiCo\PhpK8s\Kinds\K8sConfigMap;
+use RenokiCo\PhpK8s\Kinds\K8sSecret;
 use stdClass;
 
 class Volume extends Instance
@@ -31,6 +32,18 @@ public function fromConfigMap(K8sConfigMap $configmap)
             ->setAttribute('configMap', ['name' => $configmap->getName()]);
     }
 
+    /**
+     * Attach a volume from a secret file.
+     *
+     * @param  \RenokiCo\PhpK8s\Kinds\K8sSecret  $secret
+     * @return $this
+     */
+    public function fromSecret(K8sSecret $secret)
+    {
+        return $this->setAttribute('name', "{$secret->getName()}-secret-volume")
+            ->setAttribute('secret', ['secretName' => $secret->getName()]);
+    }
+
     /**
      * Create a GCE Persistent Disk instance.
      *

tests/VolumeTest.php

@@ -77,6 +77,44 @@ public function test_volume_config_map()
         $this->assertEquals($mysql->getMountedVolumes()[0]->toArray(), $mountedVolume->toArray());
     }
 
+    public function test_volume_secret()
+    {
+        $secret = K8s::secret()
+            ->setName('some-secret')
+            ->setData([
+                'some-key' => 'some-content',
+                'some-key2' => 'some-content-again',
+            ]);
+
+        $volume = K8s::volume()->fromSecret($secret);
+
+        $mountedVolume = $volume->mountTo('/some-path', 'some-key');
+
+        $mysql = K8s::container()
+            ->setName('mysql')
+            ->setImage('mysql', '5.7')
+            ->addMountedVolumes([$mountedVolume]);
+
+        $pod = K8s::pod()
+            ->setName('mysql')
+            ->setContainers([$mysql])
+            ->addVolumes([$volume]);
+
+        $this->assertEquals([
+            'name' => 'some-secret-secret-volume',
+            'secret' => ['secretName' => $secret->getName()],
+        ], $volume->toArray());
+
+        $this->assertEquals([
+            'name' => 'some-secret-secret-volume',
+            'mountPath' => '/some-path',
+            'subPath' => 'some-key',
+        ], $mountedVolume->toArray());
+
+        $this->assertEquals($pod->getVolumes()[0]->toArray(), $volume->toArray());
+        $this->assertEquals($mysql->getMountedVolumes()[0]->toArray(), $mountedVolume->toArray());
+    }
+
     public function test_volume_gce_pd()
     {
         $volume = K8s::volume()->gcePersistentDisk('some-disk', 'ext3');