update backup.p[y to add backup_resources

whitfiea · whitfiea · commit 6fa74be55d5e · 2026-01-13T11:49:50.000Z
diff --git a/src/mas/devops/backup.py b/src/mas/devops/backup.py
@@ -10,6 +10,8 @@
 import logging
 import os
 import yaml
+from openshift.dynamic import DynamicClient
+from openshift.dynamic.exceptions import NotFoundError
 
 logger = logging.getLogger(name=__name__)
 
@@ -33,8 +35,19 @@ def copyContentsToYamlFile(file_path: str, content: dict) -> bool:
     Write dictionary content to a YAML file
     """
     try:
+        # Create a custom dumper that uses literal style for multi-line strings
+        class LiteralDumper(yaml.SafeDumper):
+            pass
+        
+        def str_representer(dumper, data):
+            if '\n' in data:
+                return dumper.represent_scalar('tag:yaml.org,2002:str', data, style='|')
+            return dumper.represent_scalar('tag:yaml.org,2002:str', data)
+        
+        LiteralDumper.add_representer(str, str_representer)
+        
         with open(file_path, 'w') as yaml_file:
-            yaml.dump(content, yaml_file, default_flow_style=False)
+            yaml.dump(content, yaml_file, default_flow_style=False, Dumper=LiteralDumper)
         return True
     except Exception as e:
         logger.error(f"Error writing to YAML file {file_path}: {e}")
@@ -64,3 +77,123 @@ def filterResourceData(data: dict) -> dict:
         del filteredCopy['status']
     
     return filteredCopy
+
+
+def extract_secrets_from_dict(data, secret_names=None):
+    """
+    Recursively extract secret names from a dictionary structure.
+    Looks for keys named 'secretName' and collects their values.
+    
+    Args:
+        data: Dictionary to search
+        secret_names: Set to collect secret names (created if None)
+    
+    Returns:
+        Set of secret names found
+    """
+    if secret_names is None:
+        secret_names = set()
+    
+    if isinstance(data, dict):
+        for key, value in data.items():
+            # Check if this key is 'secretName' and has a string value
+            if key == 'secretName' and isinstance(value, str) and value:
+                secret_names.add(value)
+            # Recursively search nested structures
+            elif isinstance(value, (dict, list)):
+                extract_secrets_from_dict(value, secret_names)
+    
+    elif isinstance(data, list):
+        for item in data:
+            if isinstance(item, (dict, list)):
+                extract_secrets_from_dict(item, secret_names)
+    
+    return secret_names
+
+
+def backupResources(dynClient: DynamicClient, namespace: str, kind: str, api_version: str, backup_path: str, name=None) -> tuple:
+    """
+    Backup resources of a given kind in a namespace.
+    If name is provided, backs up that specific resource.
+    If name is None, backs up all resources of that kind.
+    
+    Args:
+        dynClient: Kubernetes dynamic client
+        namespace: Namespace to backup from
+        kind: Resource kind (e.g., 'MongoCfg', 'Secret')
+        api_version: API version (e.g., 'config.mas.ibm.com/v1')
+        backup_path: Path to save backup files
+        name: Optional specific resource name
+    
+    Returns:
+        tuple: (backed_up_count: int, not_found_count: int, failed_count: int, discovered_secrets: set)
+    """
+    discovered_secrets = set()
+    backed_up_count = 0
+    not_found_count = 0
+    failed_count = 0
+    
+    try:
+        resourceAPI = dynClient.resources.get(api_version=api_version, kind=kind)
+        
+        if name:
+            # Backup specific named resource
+            logger.info(f"Backing up {kind} '{name}' from namespace '{namespace}' (API version: {api_version})")
+            try:
+                resource = resourceAPI.get(name=name, namespace=namespace)
+                if resource:
+                    resources_to_process = [resource]
+                else:
+                    logger.info(f"{kind} '{name}' not found in namespace '{namespace}', skipping backup")
+                    not_found_count = 1
+                    return (backed_up_count, not_found_count, failed_count, discovered_secrets)
+            except NotFoundError:
+                logger.error(f"{kind} '{name}' not found in namespace '{namespace}', skipping backup")
+                not_found_count = 1
+                return (backed_up_count, not_found_count, failed_count, discovered_secrets)
+        else:
+            # Backup all resources of this kind
+            logger.info(f"Backing up all {kind} resources from namespace '{namespace}' (API version: {api_version})")
+            resources = resourceAPI.get(namespace=namespace)
+            resources_to_process = resources.items
+        
+        # Process each resource
+        for resource in resources_to_process:
+            resource_name = resource["metadata"]["name"]
+            resource_dict = resource.to_dict()
+            
+            # Extract secrets from this resource if it's not a Secret itself
+            if kind != 'Secret':
+                secrets = extract_secrets_from_dict(resource_dict.get('spec', {}))
+                if secrets:
+                    logger.info(f"Found {len(secrets)} secret reference(s) in {kind} '{resource_name}': {', '.join(sorted(secrets))}")
+                    discovered_secrets.update(secrets)
+            
+            # Backup the resource
+            resource_file_path = f"{backup_path}/{resource_name}.yaml"
+            filtered_resource = filterResourceData(resource_dict)
+            if copyContentsToYamlFile(resource_file_path, filtered_resource):
+                logger.info(f"Successfully backed up {kind} '{resource_name}' to '{resource_file_path}'")
+                backed_up_count += 1
+            else:
+                logger.error(f"Failed to back up {kind} '{resource_name}' to '{resource_file_path}'")
+                failed_count += 1
+        
+        if backed_up_count > 0:
+            logger.info(f"Successfully backed up {backed_up_count} {kind} resource(s)")
+        elif not name:
+            logger.info(f"No {kind} resources found in namespace '{namespace}'")
+        
+        return (backed_up_count, not_found_count, failed_count, discovered_secrets)
+        
+    except NotFoundError:
+        if name:
+            logger.info(f"{kind} '{name}' not found in namespace '{namespace}'")
+            not_found_count = 1
+        else:
+            logger.info(f"No {kind} resources found in namespace '{namespace}'")
+        return (backed_up_count, not_found_count, failed_count, discovered_secrets)
+    except Exception as e:
+        logger.error(f"Error backing up {kind} resources: {e}")
+        failed_count = 1
+        return (backed_up_count, not_found_count, failed_count, discovered_secrets)
