Remove code copied from serverless

Author: jsoriano

internal/serverless/project.go

@@ -6,21 +6,13 @@ package serverless
 
 import (
 	"context"
-	"encoding/json"
 	"fmt"
-	"io"
-	"net/http"
-	"net/url"
-	"os"
-	"path/filepath"
-	"strings"
 	"time"
 
 	"github.com/elastic/elastic-package/internal/elasticsearch"
+	"github.com/elastic/elastic-package/internal/fleetserver"
 	"github.com/elastic/elastic-package/internal/kibana"
 	"github.com/elastic/elastic-package/internal/logger"
-	"github.com/elastic/elastic-package/internal/profile"
-	"github.com/elastic/elastic-package/internal/registry"
 )
 
 const (
@@ -138,54 +130,6 @@ func (p *Project) DefaultFleetServerURL(ctx context.Context, kibanaClient *kiban
 	return fleetURL, nil
 }
 
-func (p *Project) AddLogstashFleetOutput(ctx context.Context, profile *profile.Profile, kibanaClient *kibana.Client) error {
-	logstashFleetOutput := kibana.FleetOutput{
-		Name:  "logstash-output",
-		ID:    FleetLogstashOutput,
-		Type:  "logstash",
-		Hosts: []string{"logstash:5044"},
-	}
-
-	if err := kibanaClient.AddFleetOutput(ctx, logstashFleetOutput); err != nil {
-		return fmt.Errorf("failed to add logstash fleet output: %w", err)
-	}
-
-	return nil
-}
-
-func (p *Project) UpdateLogstashFleetOutput(ctx context.Context, profile *profile.Profile, kibanaClient *kibana.Client) error {
-	certsDir := filepath.Join(profile.ProfilePath, "certs", "elastic-agent")
-
-	caFile, err := os.ReadFile(filepath.Join(certsDir, "ca-cert.pem"))
-	if err != nil {
-		return fmt.Errorf("failed to read ca certificate: %w", err)
-	}
-
-	certFile, err := os.ReadFile(filepath.Join(certsDir, "cert.pem"))
-	if err != nil {
-		return fmt.Errorf("failed to read client certificate: %w", err)
-	}
-
-	keyFile, err := os.ReadFile(filepath.Join(certsDir, "key.pem"))
-	if err != nil {
-		return fmt.Errorf("failed to read client certificate private key: %w", err)
-	}
-
-	logstashFleetOutput := kibana.FleetOutput{
-		SSL: &kibana.AgentSSL{
-			CertificateAuthorities: []string{string(caFile)},
-			Certificate:            string(certFile),
-			Key:                    string(keyFile),
-		},
-	}
-
-	if err := kibanaClient.UpdateFleetOutput(ctx, logstashFleetOutput, FleetLogstashOutput); err != nil {
-		return fmt.Errorf("failed to update logstash fleet output: %w", err)
-	}
-
-	return nil
-}
-
 func (p *Project) getESHealth(ctx context.Context, elasticsearchClient *elasticsearch.Client) error {
 	return elasticsearchClient.CheckHealth(ctx)
 }
@@ -195,94 +139,18 @@ func (p *Project) getKibanaHealth(ctx context.Context, kibanaClient *kibana.Clie
 }
 
 func (p *Project) getFleetHealth(ctx context.Context) error {
-	statusURL, err := url.JoinPath(p.Endpoints.Fleet, "/api/status")
+	client, err := fleetserver.NewClient(p.Endpoints.Fleet)
 	if err != nil {
-		return fmt.Errorf("could not build URL: %w", err)
+		return fmt.Errorf("could not create Fleet Server client: %w", err)
 	}
-	logger.Debugf("GET %s", statusURL)
-	req, err := http.NewRequestWithContext(ctx, "GET", statusURL, nil)
+	status, err := client.Status(ctx)
 	if err != nil {
 		return err
 	}
-	resp, err := http.DefaultClient.Do(req)
-	if err != nil {
-		return fmt.Errorf("request failed (url: %s): %w", statusURL, err)
-	}
-	defer resp.Body.Close()
-	if resp.StatusCode >= 300 {
-		return fmt.Errorf("unexpected status code %v", resp.StatusCode)
-	}
-	body, err := io.ReadAll(resp.Body)
-	if err != nil {
-		return fmt.Errorf("failed to read response body: %w", err)
-	}
-	var status struct {
-		Name   string `json:"name"`
-		Status string `json:"status"`
-	}
-	err = json.Unmarshal(body, &status)
-	if err != nil {
-		return fmt.Errorf("failed to parse response body: %w", err)
-	}
 
 	if status.Status != "HEALTHY" {
 		return fmt.Errorf("fleet status %s", status.Status)
 
 	}
 	return nil
 }
-
-func (p *Project) CreateAgentPolicy(ctx context.Context, kibanaClient *kibana.Client, stackVersion string, outputId string, selfMonitor bool) error {
-	policy := kibana.Policy{
-		ID:                "elastic-agent-managed-ep",
-		Name:              "Elastic-Agent (elastic-package)",
-		Description:       "Policy created by elastic-package",
-		Namespace:         "default",
-		MonitoringEnabled: []string{},
-		DataOutputID:      outputId,
-	}
-	if selfMonitor {
-		policy.MonitoringEnabled = []string{"logs", "metrics"}
-	}
-
-	newPolicy, err := kibanaClient.CreatePolicy(ctx, policy)
-	if err != nil {
-		return fmt.Errorf("error while creating agent policy: %w", err)
-	}
-
-	if selfMonitor {
-		err := p.createSystemPackagePolicy(ctx, kibanaClient, stackVersion, newPolicy.ID, newPolicy.Namespace)
-		if err != nil {
-			return err
-		}
-	}
-
-	return nil
-}
-
-func (p *Project) createSystemPackagePolicy(ctx context.Context, kibanaClient *kibana.Client, stackVersion, agentPolicyID, namespace string) error {
-	systemPackages, err := registry.Production.Revisions("system", registry.SearchOptions{
-		KibanaVersion: strings.TrimSuffix(stackVersion, kibana.SNAPSHOT_SUFFIX),
-	})
-	if err != nil {
-		return fmt.Errorf("could not get the system package version for Kibana %v: %w", stackVersion, err)
-	}
-	if len(systemPackages) != 1 {
-		return fmt.Errorf("unexpected number of system package versions for Kibana %s - found %d expected 1", stackVersion, len(systemPackages))
-	}
-	logger.Debugf("Found %s package - version %s", systemPackages[0].Name, systemPackages[0].Version)
-	packagePolicy := kibana.PackagePolicy{
-		Name:      "system-1",
-		PolicyID:  agentPolicyID,
-		Namespace: namespace,
-	}
-	packagePolicy.Package.Name = "system"
-	packagePolicy.Package.Version = systemPackages[0].Version
-
-	_, err = kibanaClient.CreatePackagePolicy(ctx, packagePolicy)
-	if err != nil {
-		return fmt.Errorf("error while creating package policy: %w", err)
-	}
-
-	return nil
-}

internal/stack/agentpolicy.go

@@ -0,0 +1,176 @@
+// Copyright Elasticsearch B.V. and/or licensed to Elasticsearch B.V. under one
+// or more contributor license agreements. Licensed under the Elastic License;
+// you may not use this file except in compliance with the Elastic License.
+
+package stack
+
+import (
+	"context"
+	"errors"
+	"fmt"
+	"os"
+	"path/filepath"
+	"strings"
+
+	"github.com/elastic/elastic-package/internal/kibana"
+	"github.com/elastic/elastic-package/internal/logger"
+	"github.com/elastic/elastic-package/internal/profile"
+	"github.com/elastic/elastic-package/internal/registry"
+)
+
+const (
+	managedAgentPolicyID     = "elastic-agent-managed-ep"
+	fleetLogstashOutput      = "fleet-logstash-output"
+	fleetElasticsearchOutput = "fleet-elasticsearch-output"
+)
+
+// createAgentPolicy creates an agent policy with the initial configuration used for
+// agents managed by elastic-package.
+func createAgentPolicy(ctx context.Context, kibanaClient *kibana.Client, stackVersion string, outputId string, selfMonitor bool) (*kibana.Policy, error) {
+	policy := kibana.Policy{
+		ID:                managedAgentPolicyID,
+		Name:              "Elastic-Agent (elastic-package)",
+		Description:       "Policy created by elastic-package",
+		Namespace:         "default",
+		MonitoringEnabled: []string{},
+		DataOutputID:      outputId,
+	}
+	if selfMonitor {
+		policy.MonitoringEnabled = []string{"logs", "metrics"}
+	}
+
+	newPolicy, err := kibanaClient.CreatePolicy(ctx, policy)
+	if errors.Is(err, kibana.ErrConflict) {
+		newPolicy, err = kibanaClient.GetPolicy(ctx, policy.ID)
+		if err != nil {
+			return nil, fmt.Errorf("error while getting existing policy: %w", err)
+		}
+		return newPolicy, nil
+	}
+	if err != nil {
+		return nil, fmt.Errorf("error while creating agent policy: %w", err)
+	}
+
+	if selfMonitor {
+		err := createSystemPackagePolicy(ctx, kibanaClient, stackVersion, newPolicy.ID, newPolicy.Namespace)
+		if err != nil {
+			return nil, err
+		}
+	}
+
+	return newPolicy, nil
+}
+
+func createSystemPackagePolicy(ctx context.Context, kibanaClient *kibana.Client, stackVersion, agentPolicyID, namespace string) error {
+	systemPackages, err := registry.Production.Revisions("system", registry.SearchOptions{
+		KibanaVersion: strings.TrimSuffix(stackVersion, kibana.SNAPSHOT_SUFFIX),
+	})
+	if err != nil {
+		return fmt.Errorf("could not get the system package version for Kibana %v: %w", stackVersion, err)
+	}
+	if len(systemPackages) != 1 {
+		return fmt.Errorf("unexpected number of system package versions for Kibana %s - found %d expected 1", stackVersion, len(systemPackages))
+	}
+	logger.Debugf("Found %s package - version %s", systemPackages[0].Name, systemPackages[0].Version)
+	packagePolicy := kibana.PackagePolicy{
+		Name:      "system-1",
+		PolicyID:  agentPolicyID,
+		Namespace: namespace,
+	}
+	packagePolicy.Package.Name = "system"
+	packagePolicy.Package.Version = systemPackages[0].Version
+
+	_, err = kibanaClient.CreatePackagePolicy(ctx, packagePolicy)
+	if err != nil {
+		return fmt.Errorf("error while creating package policy: %w", err)
+	}
+
+	return nil
+}
+
+func deleteAgentPolicy(ctx context.Context, kibanaClient *kibana.Client) error {
+	err := kibanaClient.DeletePolicy(ctx, managedAgentPolicyID)
+	var notFoundError *kibana.ErrPolicyNotFound
+	if err != nil && !errors.As(err, &notFoundError) {
+		return fmt.Errorf("failed to delete policy: %w", err)
+	}
+
+	return nil
+}
+
+func forceUnenrollAgentsWithPolicy(ctx context.Context, kibanaClient *kibana.Client) error {
+	agents, err := kibanaClient.QueryAgents(ctx, fmt.Sprintf("policy_id: %s", managedAgentPolicyID))
+	if err != nil {
+		return fmt.Errorf("error while querying agents with policy %s: %w", managedAgentPolicyID, err)
+	}
+
+	for _, agent := range agents {
+		err := kibanaClient.RemoveAgent(ctx, agent)
+		if err != nil {
+			return fmt.Errorf("failed to remove agent %s: %w", agent.ID, err)
+		}
+	}
+
+	return nil
+}
+
+func addFleetOutput(ctx context.Context, client *kibana.Client, outputType, host, id string) error {
+	output := kibana.FleetOutput{
+		Name:  id,
+		ID:    id,
+		Type:  outputType,
+		Hosts: []string{host},
+	}
+
+	err := client.AddFleetOutput(ctx, output)
+	if errors.Is(err, kibana.ErrConflict) {
+		// Output already exists.
+		return nil
+	}
+	if err != nil {
+		return fmt.Errorf("failed to add %s fleet output of type %s: %w", id, outputType, err)
+	}
+
+	return nil
+}
+
+func addLogstashFleetOutput(ctx context.Context, client *kibana.Client) error {
+	return addFleetOutput(ctx, client, "logstash", "logstash:5044", fleetLogstashOutput)
+}
+
+func addElasticsearchFleetOutput(ctx context.Context, client *kibana.Client, host string) error {
+	return addFleetOutput(ctx, client, "elasticsearch", host, fleetElasticsearchOutput)
+}
+
+func updateLogstashFleetOutput(ctx context.Context, profile *profile.Profile, kibanaClient *kibana.Client) error {
+	certsDir := filepath.Join(profile.ProfilePath, "certs", "elastic-agent")
+
+	caFile, err := os.ReadFile(filepath.Join(certsDir, "ca-cert.pem"))
+	if err != nil {
+		return fmt.Errorf("failed to read ca certificate: %w", err)
+	}
+
+	certFile, err := os.ReadFile(filepath.Join(certsDir, "cert.pem"))
+	if err != nil {
+		return fmt.Errorf("failed to read client certificate: %w", err)
+	}
+
+	keyFile, err := os.ReadFile(filepath.Join(certsDir, "key.pem"))
+	if err != nil {
+		return fmt.Errorf("failed to read client certificate private key: %w", err)
+	}
+
+	logstashFleetOutput := kibana.FleetOutput{
+		SSL: &kibana.AgentSSL{
+			CertificateAuthorities: []string{string(caFile)},
+			Certificate:            string(certFile),
+			Key:                    string(keyFile),
+		},
+	}
+
+	if err := kibanaClient.UpdateFleetOutput(ctx, logstashFleetOutput, fleetLogstashOutput); err != nil {
+		return fmt.Errorf("failed to update logstash fleet output: %w", err)
+	}
+
+	return nil
+}

internal/stack/serverless.go

@@ -123,7 +123,7 @@ func (sp *serverlessProvider) createProject(ctx context.Context, settings projec
 	}
 
 	if settings.LogstashEnabled {
-		err = project.AddLogstashFleetOutput(ctx, sp.profile, sp.kibanaClient)
+		err = addLogstashFleetOutput(ctx, sp.kibanaClient)
 		if err != nil {
 			return Config{}, err
 		}
@@ -280,7 +280,7 @@ func (sp *serverlessProvider) BootUp(ctx context.Context, options Options) error
 		}
 
 		logger.Infof("Creating agent policy")
-		err = project.CreateAgentPolicy(ctx, sp.kibanaClient, options.StackVersion, outputID, settings.SelfMonitor)
+		_, err = createAgentPolicy(ctx, sp.kibanaClient, options.StackVersion, outputID, settings.SelfMonitor)
 
 		if err != nil {
 			return fmt.Errorf("failed to create agent policy: %w", err)
@@ -303,7 +303,7 @@ func (sp *serverlessProvider) BootUp(ctx context.Context, options Options) error
 	// Updating the output with ssl certificates created in startLocalServices
 	// The certificates are updated only when a new project is created and logstash is enabled
 	if isNewProject && settings.LogstashEnabled {
-		err = project.UpdateLogstashFleetOutput(ctx, sp.profile, sp.kibanaClient)
+		err = updateLogstashFleetOutput(ctx, sp.profile, sp.kibanaClient)
 		if err != nil {
 			return err
 		}