feat(rfc): new artifacts service

[nemesisOsorio]

No description provided.

[xibz]

@nemesisOsorio - I actually plan on submitting a PR for this very change here in spinnaker soon. We (Apple) implemented this very thing about a year ago, and haven't gotten around til recently into looking to upstream the changes.

Goal is sometime Monday or Tuesday since prepping this PR has been a little bit of a journey 😆

[nemesisOsorio]

@xibz that's pretty awesome, this PR was intended to have a pre-discussion before it goes to OSS, let me know if you have any thoughts, and I will discuss with Armory to decide if we want to proceed with this PR.
Thank you.

[jasonmcintosh]

Do we want a service initially? OR just mask this in the APIs returning pipeline data to gate?

[nemesisOsorio]

If we create a new service, we can reuse the produced artifact across different services.
For example: Bake and Deploy a Kustomize template:

1. Rosco produces and saves the artifact and returns the id to Orca
2. Orca sends the deploy operation to Clouddriver using the artifact id
3. Clouddriver gets the artifact by id

I believe your second question is covered in the Alternatives section.

[jasonmcintosh]

One thought, should this be "selectable" by artifact type? I think not, but had to toss this out there - is there a state where we NEED artifact data LIKE Git information for the ui to know how it's triggered.

Also would this impact "Trigger" artifacts?

[nemesisOsorio]

I do not think we need a filter by artifact type.
For trigger artifacts, we've added a question to the Known Unknowns section, I'll keep digging in the code and hopefully add an answer.

[nemesisOsorio]

I added an answer for trigger artifacts

[jasonmcintosh]

A big one not answered here is the installation of a new service, config and how that'd be done.

[nemesisOsorio]

We prefer to avoid changes in Halyard, do you think raw yml manifests might be the way?

We will definitely add a way to deploy using Operator.

[jasonmcintosh]

We need permissions as well please. I'd like to NOT have any system that can return data - and artifacts are definitely sensitive - going forward. Ideally permissions should be localized and NOT need to query Fiat.

[jasonmcintosh]

Good to keep cleanup in mind thank you!

[jasonmcintosh]

Possible on this - but ideally we're depending less upon Fiat to define permissions. Instead "artifact accounts" maybe with permissions as a new type?

[nemesisOsorio]

I added ACLs in Future Possibilities

[xibz]

@nemesisOsorio How this came about was David and Apple had a meeting regarding context size, and we explained how we solved this and once the solution was heard we decided to upstream the changes. So, I can go ahead create the PR, and you guys can duke it out with David lol, but if we want to make improvements to the PR to fit this RFC, we can always do that as well.

It doesn't use a separate service. It introduces a concept called ArtifactStore, which is just artifact storage and utilizes custom serializers and deserializers in clouddriver and rosco to expand and compress the artifacts. We originally tried it with Jackson's converters, but there's a known bug which causes it to stackoverflow, lul. orca does use the artifact store directly, however. We have an ArtifactStore specifically for S3, so we just use that.

Also, it uses application as security, and it does query fiat, due to manual judgement stages potentially allowing for some rando to click okay, and thus needs to figure out the permissions at that point. We could definitely expand on that to make it even more secure, but it should be fine for now at least.

We also introduced a new API to clouddriver that allows users to fetch the artifact, eg in deck when viewing the yaml.

Further this is feature flagged, so you can turn it on and enable it for certain applications as well

This doesn't change anything from past behavior, even SpEL works correctly :) so if you have users using #fromBase64 things will still work appropriately.

[nemesisOsorio]

@xibz we want to send the PR to OSS, do you mind if we put your comments in the Alternatives section?
Another question: Can we add Apple to the list of Early customers?

[xibz]

@nemesisOsorio I think there's a couple things here.

Another question: Can we add Apple to the list of Early customers?

This doesn't make too much sense. Are we customers to our own implementation? So I would opt to have it worded with something of Apple uses spinnaker/kork#1069 or something.

we want to send the PR to OSS, do you mind if we put your comments in the Alternatives section?

I think we are jumping the gun a little bit. The PR that I have is a lot smaller in scope for this particular change. I think we should instead have the RFC be a two step process.

1. Does PR alleviate all that Spinnaker users' need in reducing context size?
   a. We can have a sub-RFC for the artifact storage PR if needed, but I think we should first see if the PR alleviates the size issues for you guys
2. If not, then we go with a full fledge artifact service.

The last thing I think we should be thinking about doing is introducing a new service without trying simpler approaches first