Add import-existing-vpc example

Patrick J. McNerthney · Patrick J. McNerthney · commit 2a0e3b291ee7 · 2025-10-07T20:32:22.000-10:00
diff --git a/examples/import-existing-vpc/README.md b/examples/import-existing-vpc/README.md
@@ -0,0 +1,35 @@
+# Import Existing VPC
+
+This example demonstrates how to dynamically detect and importing
+existing external resources when the external name of that resource
+is a name generated by the external backend.
+
+function-pythonic is deployed using `--pip-install` command line
+option to install the AWS python client and must be configured
+with the needed AWS permissions.
+
+Here is an example of a DeploymentRuntimeConfig that uses the
+`function-pythonic` ServiceAccount name which is configured
+with needed EKS Pod Identity AWS permissions:
+```yaml
+apiVersion: pkg.crossplane.io/v1beta1
+kind: DeploymentRuntimeConfig
+metadata:
+  name: function-pythonic
+spec:
+  deploymentTemplate:
+    spec:
+      template:
+        spec:
+          containers:
+          - name: package-runtime
+            args:
+            - --debug
+            - --pip-install
+            - --quiet aiobotocore==2.23.2
+          serviceAccountName: function-pythonic
+```
+To run the `render.sh` script, ensure that aiobotocore is installed
+in the python environment used. The default AWS profile will be used
+unless the AWS_PROFILE environment variable is set, or other
+appropriate AWS environment variables.
diff --git a/examples/import-existing-vpc/composition.yaml b/examples/import-existing-vpc/composition.yaml
@@ -0,0 +1,73 @@
+apiVersion: apiextensions.crossplane.io/v1
+kind: Composition
+metadata:
+  name: networks.caleb.pythonic.com
+spec:
+  compositeTypeRef:
+    apiVersion: caleb.pythonic.com/v1alpha1
+    kind: Network
+  mode: Pipeline
+  pipeline:
+
+  - step: render-templates
+    functionRef:
+      name: function-pythonic
+    input:
+      apiVersion: pythonic.fn.fortra.com/v1alpha1
+      kind: Composite
+      composite: |
+        from crossplane.pythonic import BaseComposite
+        from aiobotocore.session import get_session
+
+        class NetworkComposite(BaseComposite):
+          async def compose(self):
+            # Only create the AWS Session if needed
+            self._aws_session = None
+            # Create/Get VPC
+            vpc = await self.compose_vpc()
+
+          async def compose_vpc(self):
+            vpc = self.resources.VPC('ec2.aws.m.upbound.io/v1beta1', 'VPC')
+            vpc.spec.forProvider(
+              region = self.spec.region,
+              cidrBlock = self.spec.cidr,
+              enableDnsHostnames = True,
+              enableDnsSupport = True,
+              tags = self.tags(Name=self.metadata.name),
+            )
+            if not vpc.externalName:
+              async with self.aws_client('ec2') as ec2:
+                vpcs = (await ec2.describe_vpcs(
+                  Filters=[{
+                    'Name': 'tag:Name',
+                    'Values': [str(self.metadata.name)],
+                  }],
+                ))['Vpcs']
+              if vpcs:
+                if len(vpcs) == 1:
+                  vpc.externalName = vpcs[0]['VpcId']
+                else:
+                  self.events.fatal('MultipleResources', f"More than one vpc found for: {self.metadata.name}")
+            self.status.vpcId = vpc.status.atProvider.vpcId
+            return vpc
+
+          def aws_client(self, service):
+            if not self._aws_session:
+              self._aws_session = get_session()
+              self._aws_clients = {}
+            client = self._aws_clients.get(service)
+            if not client:
+              client = self._aws_session.create_client(service, str(self.spec.region))
+              self._aws_clients[service] = client
+            return client
+
+          def tags(self, *args, **kwargs):
+            tags = {}
+            for arg in args:
+              arg = arg.split('=', 1)
+              tags[arg[0].strip()] = arg[1].lstrip()
+            tags.update(kwargs)
+            if self.spec.tags:
+              for key, value in self.spec.tags:
+                tags[key] = value
+            return tags
diff --git a/examples/import-existing-vpc/definition.yaml b/examples/import-existing-vpc/definition.yaml
@@ -0,0 +1,39 @@
+apiVersion: apiextensions.crossplane.io/v2
+kind: CompositeResourceDefinition
+metadata:
+  name: networks.caleb.pythonic.com
+spec:
+  group: caleb.pythonic.com
+  names:
+    kind: Network
+    plural: networks
+  defaultCompositionRef:
+    name: networks.caleb.pythonic.com
+  versions:
+  - name: v1alpha1
+    served: true
+    referenceable: true
+    schema:
+      openAPIV3Schema:
+        type: object
+        properties:
+          spec:
+            type: object
+            properties:
+              region:
+                type: string
+              cidr:
+                type: string
+              tags:
+                type: object
+                additionalProperties:
+                  type: string
+                default: {}
+            required:
+            - region
+            - cidr
+          status:
+            type: object
+            properties:
+              vpcId:
+                type: string
diff --git a/examples/import-existing-vpc/functions.yaml b/examples/import-existing-vpc/functions.yaml
@@ -0,0 +1,8 @@
+apiVersion: pkg.crossplane.io/v1beta1
+kind: Function
+metadata:
+  name: function-pythonic
+  annotations:
+    render.crossplane.io/runtime: Development
+spec:
+  package: ghcr.io/fortra/function-pythonic:v0.1.1
diff --git a/examples/import-existing-vpc/observed.yaml b/examples/import-existing-vpc/observed.yaml
@@ -0,0 +1,6 @@
+apiVersion: ec2.aws.m.upbound.io/v1beta1
+kind: VPC
+metadata:
+  annotations:
+    crossplane.io/composition-resource-name: VPC
+    crossplane.io/external-name: vpc-0123456789
diff --git a/examples/import-existing-vpc/provider-ec2.yaml b/examples/import-existing-vpc/provider-ec2.yaml
@@ -0,0 +1,20 @@
+apiVersion: pkg.crossplane.io/v1
+kind: Provider
+metadata:
+  name: aws-upbound-provider-ec2
+spec:
+  package: xpkg.upbound.io/upbound/provider-aws-ec2:v2.1.0
+  runtimeConfigRef:
+    name: provider-aws-upbound
+---
+apiVersion: aws.m.upbound.io/v1beta1
+kind: ClusterProviderConfig
+metadata:
+  name: default
+spec:
+  credentials:
+    secretRef:
+      key: credentials
+      name: aws-credentials
+      namespace: crossplane-system
+    source: Secret
diff --git a/examples/import-existing-vpc/render.sh b/examples/import-existing-vpc/render.sh
@@ -0,0 +1,4 @@
+#!/usr/bin/env bash
+cd $(dirname $(realpath $0))
+#exec crossplane render xr.yaml composition.yaml functions.yaml
+exec crossplane render --observed-resources=observed.yaml xr.yaml composition.yaml functions.yaml
diff --git a/examples/import-existing-vpc/xr.yaml b/examples/import-existing-vpc/xr.yaml
@@ -0,0 +1,10 @@
+apiVersion: caleb.pythonic.com/v1alpha1
+kind: Network
+metadata:
+  namespace: crossplane-system
+  name: test-network
+spec:
+  region: us-east-1
+  cidr: 10.0.0.0/16
+  tags:
+    'fortra:cloudops': 'owned'
