kyverno/init.go

package main

import (
	"log"

	client "github.com/nirmata/kyverno/pkg/dclient"
	tls "github.com/nirmata/kyverno/pkg/tls"
	"github.com/nirmata/kyverno/pkg/version"
	rest "k8s.io/client-go/rest"
	clientcmd "k8s.io/client-go/tools/clientcmd"
)

func printVersionInfo() {
	v := version.GetVersion()
	log.Printf("Kyverno version: %s\n", v.BuildVersion)
	log.Printf("Kyverno BuildHash: %s\n", v.BuildHash)
	log.Printf("Kyverno BuildTime: %s\n", v.BuildTime)
}

func createClientConfig(kubeconfig string) (*rest.Config, error) {
	if kubeconfig == "" {
		log.Printf("Using in-cluster configuration")
		return rest.InClusterConfig()
	}
	log.Printf("Using configuration from '%s'", kubeconfig)
	return clientcmd.BuildConfigFromFlags("", kubeconfig)
}

// Loads or creates PEM private key and TLS certificate for webhook server.
// Created pair is stored in cluster's secret.
// Returns struct with key/certificate pair.
func initTlsPemPair(configuration *rest.Config, client *client.Client) (*tls.TlsPemPair, error) {
	certProps, err := client.GetTLSCertProps(configuration)
	if err != nil {
		return nil, err
	}
	tlsPair := client.ReadTlsPair(certProps)
	if tls.IsTlsPairShouldBeUpdated(tlsPair) {
		log.Printf("Generating new key/certificate pair for TLS")
		tlsPair, err = client.GenerateTlsPemPair(certProps)
		if err != nil {
			return nil, err
		}
		err = client.WriteTlsPair(certProps, tlsPair)
		if err != nil {
			log.Printf("Unable to save TLS pair to the cluster: %v", err)
		}
	}
	return tlsPair, nil
}
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`package main`

			`import (`
			`"log"`

move client to pkg, helper script for self-signed certs & update documentation 2019-05-29 14:12:09 -07:00			`client "github.com/nirmata/kyverno/pkg/dclient"`
rename pkg to kyverno 2019-05-21 11:00:09 -07:00			`tls "github.com/nirmata/kyverno/pkg/tls"`
print version info in main log 2019-05-29 15:24:19 -07:00			`"github.com/nirmata/kyverno/pkg/version"`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`rest "k8s.io/client-go/rest"`
			`clientcmd "k8s.io/client-go/tools/clientcmd"`
			`)`

print version info in main log 2019-05-29 15:24:19 -07:00			`func printVersionInfo() {`
			`v := version.GetVersion()`
			`log.Printf("Kyverno version: %s\n", v.BuildVersion)`
			`log.Printf("Kyverno BuildHash: %s\n", v.BuildHash)`
			`log.Printf("Kyverno BuildTime: %s\n", v.BuildTime)`
			`}`

NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`func createClientConfig(kubeconfig string) (*rest.Config, error) {`
			`if kubeconfig == "" {`
			`log.Printf("Using in-cluster configuration")`
			`return rest.InClusterConfig()`
			`}`
Format project with gofmt, govet, misspell 2019-05-15 18:53:45 -07:00			`log.Printf("Using configuration from '%s'", kubeconfig)`
			`return clientcmd.BuildConfigFromFlags("", kubeconfig)`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`}`

NK-47: Implemented webhook deregistration. TLS pair initialization functionality moved to init.go. Separated server and mutation webhook objects, implemented registration of webhook with the creation of corresponding object. Added comments for webhook configuration definitions, changed name of configuration for debug. 2019-03-22 22:11:55 +02:00			`// Loads or creates PEM private key and TLS certificate for webhook server.`
			`// Created pair is stored in cluster's secret.`
			`// Returns struct with key/certificate pair.`
use single secret for tlsPair, check for secret annotation for self-signed cert & change type of secret from generic to tls 2019-05-29 12:36:03 -07:00			`func initTlsPemPair(configuration rest.Config, client client.Client) (*tls.TlsPemPair, error) {`
			`certProps, err := client.GetTLSCertProps(configuration)`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`if err != nil {`
			`return nil, err`
			`}`
			`tlsPair := client.ReadTlsPair(certProps)`
Implemented Validation Pattern base. Updated Webhooks registration logic. Updated project for using TLS package 2019-05-14 18:10:25 +03:00			`if tls.IsTlsPairShouldBeUpdated(tlsPair) {`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`log.Printf("Generating new key/certificate pair for TLS")`
			`tlsPair, err = client.GenerateTlsPemPair(certProps)`
			`if err != nil {`
			`return nil, err`
			`}`
			`err = client.WriteTlsPair(certProps, tlsPair)`
			`if err != nil {`
			`log.Printf("Unable to save TLS pair to the cluster: %v", err)`
			`}`
			`}`
			`return tlsPair, nil`
NK-31: Implemnted loggin about success to policy. Also fixed showing of error on initialization. 2019-03-21 18:09:58 +02:00			`}`