Dev docker wrapper

.dockerignore

@@ -0,0 +1,6 @@
+vendor/
+.git/
+.vscode/
+.idea/
+hooks
+Dockerfile

.editorconfig

@@ -14,3 +14,7 @@ trim_trailing_whitespace = false
 [*.yml]
 indent_style = space
 indent_size = 2
+
+[Dockerfile]
+indent_style = space
+indent_size = 2

Dockerfile

@@ -0,0 +1,65 @@
+##
+# Composer
+##
+FROM composer:latest as composer
+
+##
+# PHP Builder
+##
+FROM php:7.4-cli as build
+
+ARG DOCKER_TAG
+
+# Deps
+RUN apt-get update && apt-get install -y \
+  unzip \
+  git
+
+# Grab composer
+COPY --from=composer /usr/bin/composer /usr/bin/composer
+
+COPY . /app
+WORKDIR /app
+
+# Install CLI deps
+RUN composer install --ansi --no-interaction --no-progress --prefer-dist
+
+# Build the phar
+RUN php netsells app:build --build-version=$DOCKER_TAG
+
+##
+# PHP Runtime
+##
+FROM php:7.4-cli as runtime
+
+# Deps
+RUN apt-get update && \
+  apt-get install -y --no-install-recommends \
+    unzip git openssh-client && \
+  apt-get purge -y autoconf pkg-config gcc && \
+  apt-get autoremove -y && \
+  apt-get autoclean && \
+  apt-get clean && \
+  curl -L "https://github.com/docker/compose/releases/download/1.29.2/docker-compose-$(uname -s)-$(uname -m)" \
+    -o /usr/local/bin/docker-compose && chmod +x /usr/local/bin/docker-compose && \
+  curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" \
+    -o "awscliv2.zip" && unzip -q awscliv2.zip && ./aws/install && rm awscliv2.zip && rm -rf ./aws && \
+  curl "https://s3.amazonaws.com/session-manager-downloads/plugin/latest/ubuntu_64bit/session-manager-plugin.deb" \
+    -o "session-manager-plugin.deb" && dpkg -i session-manager-plugin.deb && rm session-manager-plugin.deb && \
+  rm -rf /var/lib/apt/lists/* /tmp/* /var/tmp/*
+
+# Grab docker client from existing docker image
+COPY --from=docker:20-dind /usr/local/bin/docker /usr/local/bin/docker
+
+# Copy the wrapper from source
+COPY ./docker-support/netsells /usr/local/bin/netsells-wrapper
+
+# Grab built phar from the builder
+COPY --from=build /app/builds/netsells /usr/local/bin/netsells
+
+ENV AWS_SDK_LOAD_CONFIG 1
+
+RUN mkdir /app
+WORKDIR /app
+
+ENTRYPOINT ["netsells"]

README.md

@@ -10,11 +10,16 @@ The Netsells Command Line Interface (CLI).
 
 Run the following commands to download and install. `/usr/local/bin` should be in your `$PATH` in order to call `netsells` anywhere.
 
-```bash
+```shell
+# Install PHAR, requires PHP
 curl -L -o netsells.phar https://netsells-cli.now.sh/download/cli
 mv netsells.phar /usr/local/bin/netsells
 chmod +x /usr/local/bin/netsells
 netsells
+
+# Or install the Docker wrapper
+docker run --rm --init --entrypoint=/bin/cat netsells/cli:latest /usr/local/bin/netsells-wrapper > /usr/local/bin/netsells
+netsells
 ```
 
 ### Usage
@@ -39,6 +44,13 @@ netsells
   docker:build             Builds docker-compose ready for prod
 ```
 
+### Development
+To build the docker image:
+```shell
+$ DOCKER_TAG=latest DOCKERFILE_PATH=Dockerfile IMAGE_NAME=netsells/cli hooks/build
+```
+
+
 ## Netsells File Reference
 
 The CLI will look for configuration in the arguments/options supplied via the command line, falling back to the Netsells file. This should be placed at the root of your project and called `.netsells.yml`.
@@ -67,7 +79,7 @@ docker:
 ## Command Reference
 
 * [aws:ec2:list](#awsec2list) - List the instances available
-* [aws:ssm:connect](#awsssmconnect) - Connect to an server via SSH (Use --tunnel to establish an SSH tunnel)
+* [aws:ssm:connect](#awsssmconnect) - Connect to a server via SSH (Use --tunnel to establish an SSH tunnel)
 
 
 ### aws:ec2:list

app/Commands/AwsSsmConnect.php

@@ -25,7 +25,7 @@ class AwsSsmConnect extends Command
      */
     protected $description = 'Connect to an server via SSH (Use --tunnel to establish an SSH tunnel)';
 
-    protected $tempKeyName = 'netsells-cli-ssm-ssh-tmp';
+    protected $tempIdentityFile;
 
     /** @var Helpers $helpers */
     protected $helpers;
@@ -48,6 +48,15 @@ public function configure()
         ], $this->helpers->aws()->commonConsoleOptions()));
     }
 
+    private function tempIdentityFile(): string
+    {
+        if (!$this->tempIdentityFile) {
+            $this->tempIdentityFile = tempnam(sys_get_temp_dir(), 'NetsellsCliSsm');
+        }
+
+        return $this->tempIdentityFile;
+    }
+
     /**
      * Execute the console command.
      *
@@ -95,7 +104,7 @@ public function handle()
         $sessionCommandString = implode(' ', $sessionCommand->getArguments());
 
         $options = [
-            '-o', 'IdentityFile ~/.ssh/netsells-cli-ssm-ssh-tmp',
+            '-o', 'IdentityFile ' . $this->tempIdentityFile(),
             '-o', 'IdentitiesOnly yes',
             '-o', 'GSSAPIAuthentication no',
             '-o', 'PasswordAuthentication no',
@@ -111,7 +120,7 @@ public function handle()
 
             $options[] = '-N';
             $options[] = '-L';
-            $options[] = sprintf('%s:%s:%s', $tunnelLocalPort, $tunnelRemoteServer, $tunnelRemotePort);
+            $options[] = sprintf('0.0.0.0:%s:%s:%s', $tunnelLocalPort, $tunnelRemoteServer, $tunnelRemotePort);
 
             $rebuildOptions = $this->appendResolvedArgument($rebuildOptions, 'tunnel-remote-server', $tunnelRemoteServer);
             $rebuildOptions = $this->appendResolvedArgument($rebuildOptions, 'tunnel-remote-port', $tunnelRemotePort);
@@ -215,8 +224,7 @@ private function generateTempSshKey()
             return 1;
         }
 
-        $sshDir = $_SERVER['HOME'] . '/.ssh/';
-        $keyName = $sshDir . $this->tempKeyName;
+        $keyName = $this->tempIdentityFile();
         $pubKeyName = "{$keyName}.pub";
 
         if (file_exists($keyName)) {
@@ -232,9 +240,9 @@ private function generateTempSshKey()
                 ->withCommand([
                     'ssh-keygen',
                     '-t', 'ed25519',
-                    '-N', "",
+                    '-N', '',
                     '-f', $keyName,
-                    '-C', "netsells-cli-ssm-ssh-session"
+                    '-C', $this->tempIdentityFile()
                 ])
                 ->run();
         } catch (ProcessFailed $e) {

app/Commands/DeployEcsServiceUpdate.php

@@ -60,7 +60,7 @@ public function configure()
      */
     public function handle()
     {
-        $requiredBinaries = ['aws', 'docker-compose'];
+        $requiredBinaries = ['aws', 'docker', 'docker-compose'];
 
         if ($this->helpers->checks()->checkAndReportMissingBinaries($this, $requiredBinaries)) {
             return 1;

app/Commands/DockerPushCommand.php

@@ -49,7 +49,7 @@ public function configure()
      */
     public function handle()
     {
-        $requiredBinaries = ['docker', 'docker-compose', 'aws'];
+        $requiredBinaries = ['docker', 'aws', 'docker-compose'];
 
         if ($this->helpers->checks()->checkAndReportMissingBinaries($this, $requiredBinaries)) {
             return 1;

composer.json

@@ -11,17 +11,17 @@
         }
     ],
     "require": {
-        "php": "^7.3",
+        "php": "^7.4 | ^8.0",
         "laminas/laminas-text": "^2.7",
-        "laravel-zero/framework": "^7.0",
-        "nunomaduro/laravel-console-menu": "^3.0",
+        "laravel-zero/framework": "^8.0",
+        "nunomaduro/laravel-console-menu": "^3.1",
         "padraic/phar-updater": "^1.0.6",
         "symfony/yaml": "^5.0"
     },
     "require-dev": {
         "fzaninotto/faker": "^1.9",
         "mockery/mockery": "^1.3.1",
-        "phpunit/phpunit": "^8.5"
+        "phpunit/phpunit": "^9.3"
     },
     "autoload": {
         "psr-4": {