zishuo/onepanel
1
0
Fork 0
mirror of https://github.com/onepanelio/onepanel.git synced 2025-10-05 13:46:51 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity
Files
3edbc809debd3395c93e14bf78cfab6f41d5576f
onepanel/pkg/client.go
rushtehrani 3edbc809de use EnvFrom for mounting env vars in workflows
2020-05-13 21:53:33 -07:00

188 lines
5.5 KiB
Go
Raw Blame History

package v1
import (
"encoding/base64"
"errors"
sq "github.com/Masterminds/squirrel"
"github.com/ghodss/yaml"
v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"regexp"
"strconv"
argoprojv1alpha1 "github.com/argoproj/argo/pkg/client/clientset/versioned/typed/workflow/v1alpha1"
"github.com/jmoiron/sqlx"
"github.com/onepanelio/core/pkg/util/s3"
log "github.com/sirupsen/logrus"
"k8s.io/client-go/kubernetes"
"k8s.io/client-go/rest"
"k8s.io/client-go/tools/clientcmd"
)
const (
ArtifactRepositoryEndpointKey = "artifactRepositoryS3Endpoint"
ArtifactRepositoryBucketKey = "artifactRepositoryS3Bucket"
ArtifactRepositoryRegionKey = "artifactRepositoryS3Region"
ArtifactRepositoryInsecureKey = "artifactRepositoryS3Insecure"
ArtifactRepositoryAccessKeyValueKey = "artifactRepositoryS3AccessKey"
ArtifactRepositorySecretKeyValueKey = "artifactRepositoryS3SecretKey"
DefaultEnvironmentVariableSecret = "onepanel-default-env"
)
type Config = rest.Config
type DB = sqlx.DB
var sb = sq.StatementBuilder.PlaceholderFormat(sq.Dollar)
type Client struct {
kubernetes.Interface
argoprojV1alpha1 argoprojv1alpha1.ArgoprojV1alpha1Interface
*DB
}
func (c *Client) ArgoprojV1alpha1() argoprojv1alpha1.ArgoprojV1alpha1Interface {
return c.argoprojV1alpha1
}
func NewConfig() (config *Config) {
config, err := clientcmd.NewNonInteractiveDeferredLoadingClientConfig(
clientcmd.NewDefaultClientConfigLoadingRules(), &clientcmd.ConfigOverrides{}).ClientConfig()
if err != nil {
panic(err)
}
return
}
func NewClient(config *Config, db *sqlx.DB) (client *Client, err error) {
if config.BearerToken != "" {
config.BearerTokenFile = ""
config.Username = ""
config.Password = ""
config.CertData = nil
config.CertFile = ""
}
kubeClient, err := kubernetes.NewForConfig(config)
if err != nil {
return
}
argoClient, err := argoprojv1alpha1.NewForConfig(config)
if err != nil {
return
}
return &Client{Interface: kubeClient, argoprojV1alpha1: argoClient, DB: db}, nil
}
func (c *Client) GetSystemConfig() (config map[string]string, err error) {
namespace := "onepanel"
configMap, err := c.GetConfigMap(namespace, "onepanel")
if err != nil {
return
}
config = configMap.Data
secret, err := c.GetSecret(namespace, "onepanel")
if err != nil {
return
}
databaseUsername, _ := base64.StdEncoding.DecodeString(secret.Data["databaseUsername"])
config["databaseUsername"] = string(databaseUsername)
databasePassword, _ := base64.StdEncoding.DecodeString(secret.Data["databasePassword"])
config["databasePassword"] = string(databasePassword)
return
}
func (c *Client) GetNamespaceConfig(namespace string) (config map[string]string, err error) {
configMap, err := c.GetConfigMap(namespace, "onepanel")
if err != nil {
log.WithFields(log.Fields{
"Namespace": namespace,
"Error": err.Error(),
}).Error("getNamespaceConfig failed getting config map.")
return
}
config = configMap.Data
s3Conf := ArtifactRepositoryS3Config{}
err = yaml.Unmarshal([]byte(configMap.Data["artifactRepository"]), &s3Conf)
config[ArtifactRepositoryEndpointKey] = s3Conf.S3.Endpoint
config[ArtifactRepositoryBucketKey] = s3Conf.S3.Bucket
config[ArtifactRepositoryRegionKey] = s3Conf.S3.Region
config[ArtifactRepositoryInsecureKey] = s3Conf.S3.Insecure
config[ArtifactRepositoryAccessKeyValueKey] = s3Conf.S3.AccessKeySecret.Key
config[ArtifactRepositorySecretKeyValueKey] = s3Conf.S3.SecretKeySecret.Key
secret, err := c.GetSecret(namespace, "onepanel")
if err != nil {
log.WithFields(log.Fields{
"Namespace": namespace,
"Error": err.Error(),
}).Error("getNamespaceConfig failed getting secret.")
return
}
accessKey, _ := base64.StdEncoding.DecodeString(secret.Data[ArtifactRepositoryAccessKeyValueKey])
config[ArtifactRepositoryAccessKeyValueKey] = string(accessKey)
secretKey, _ := base64.StdEncoding.DecodeString(secret.Data[ArtifactRepositorySecretKeyValueKey])
config[ArtifactRepositorySecretKeyValueKey] = string(secretKey)
return
}
func (c *Client) GetS3Client(namespace string, config map[string]string) (s3Client *s3.Client, err error) {
insecure, err := strconv.ParseBool(config[ArtifactRepositoryInsecureKey])
if err != nil {
log.WithFields(log.Fields{
"Namespace": namespace,
"ConfigMap": config,
"Error": err.Error(),
}).Error("getS3Client failed when parsing bool.")
return
}
s3Client, err = s3.NewClient(s3.Config{
Endpoint: config[ArtifactRepositoryEndpointKey],
Region: config[ArtifactRepositoryRegionKey],
AccessKey: config[ArtifactRepositoryAccessKeyValueKey],
SecretKey: config[ArtifactRepositorySecretKeyValueKey],
InSecure: insecure,
})
if err != nil {
log.WithFields(log.Fields{
"Namespace": namespace,
"ConfigMap": config,
"Error": err.Error(),
}).Error("getS3Client failed when initializing a new S3 client.")
return
}
return
}
func GetBearerToken(namespace string) (string, error) {
kubeConfig := NewConfig()
client, err := NewClient(kubeConfig, nil)
if err != nil {
log.Fatalf("Failed to connect to Kubernetes cluster: %v", err)
}
secrets, err := client.CoreV1().Secrets(namespace).List(v1.ListOptions{})
if err != nil {
log.WithFields(log.Fields{
"Namespace": namespace,
"Error": err.Error(),
}).Error("Failed to get default service account token.")
return "", err
}
re := regexp.MustCompile(`^default-token-`)
for _, secret := range secrets.Items {
if re.Find([]byte(secret.ObjectMeta.Name)) != nil {
return string(secret.Data["token"]), nil
}
}
return "", errors.New("could not find a token")
}
Reference in New Issue View Git Blame Copy Permalink