kyverno/init.go

package main

import (
	"github.com/golang/glog"
	client "github.com/nirmata/kyverno/pkg/dclient"
	tls "github.com/nirmata/kyverno/pkg/tls"
	"github.com/nirmata/kyverno/pkg/version"
	rest "k8s.io/client-go/rest"
	clientcmd "k8s.io/client-go/tools/clientcmd"
)

func printVersionInfo() {
	v := version.GetVersion()
	glog.Infof("Kyverno version: %s\n", v.BuildVersion)
	glog.Infof("Kyverno BuildHash: %s\n", v.BuildHash)
	glog.Infof("Kyverno BuildTime: %s\n", v.BuildTime)
}

func createClientConfig(kubeconfig string) (*rest.Config, error) {
	if kubeconfig == "" {
		glog.Info("Using in-cluster configuration")
		return rest.InClusterConfig()
	}
	glog.Infof("Using configuration from '%s'", kubeconfig)
	return clientcmd.BuildConfigFromFlags("", kubeconfig)
}

// Loads or creates PEM private key and TLS certificate for webhook server.
// Created pair is stored in cluster's secret.
// Returns struct with key/certificate pair.
func initTLSPemPair(configuration *rest.Config, client *client.Client) (*tls.TlsPemPair, error) {
	certProps, err := client.GetTLSCertProps(configuration)
	if err != nil {
		return nil, err
	}
	tlsPair := client.ReadTlsPair(certProps)
	if tls.IsTlsPairShouldBeUpdated(tlsPair) {
		glog.Info("Generating new key/certificate pair for TLS")
		tlsPair, err = client.GenerateTlsPemPair(certProps)
		if err != nil {
			return nil, err
		}
		err = client.WriteTlsPair(certProps, tlsPair)
		if err != nil {
			glog.Errorf("Unable to save TLS pair to the cluster: %v", err)
		}
	}
	return tlsPair, nil
}
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`package main`

			`import (`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`"github.com/golang/glog"`
move client to pkg, helper script for self-signed certs & update documentation 2019-05-29 14:12:09 -07:00			`client "github.com/nirmata/kyverno/pkg/dclient"`
rename pkg to kyverno 2019-05-21 11:00:09 -07:00			`tls "github.com/nirmata/kyverno/pkg/tls"`
print version info in main log 2019-05-29 15:24:19 -07:00			`"github.com/nirmata/kyverno/pkg/version"`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`rest "k8s.io/client-go/rest"`
			`clientcmd "k8s.io/client-go/tools/clientcmd"`
			`)`

print version info in main log 2019-05-29 15:24:19 -07:00			`func printVersionInfo() {`
			`v := version.GetVersion()`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Infof("Kyverno version: %s\n", v.BuildVersion)`
			`glog.Infof("Kyverno BuildHash: %s\n", v.BuildHash)`
			`glog.Infof("Kyverno BuildTime: %s\n", v.BuildTime)`
print version info in main log 2019-05-29 15:24:19 -07:00			`}`

NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`func createClientConfig(kubeconfig string) (*rest.Config, error) {`
			`if kubeconfig == "" {`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Info("Using in-cluster configuration")`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`return rest.InClusterConfig()`
			`}`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Infof("Using configuration from '%s'", kubeconfig)`
Format project with gofmt, govet, misspell 2019-05-15 18:53:45 -07:00			`return clientcmd.BuildConfigFromFlags("", kubeconfig)`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`}`

NK-47: Implemented webhook deregistration. TLS pair initialization functionality moved to init.go. Separated server and mutation webhook objects, implemented registration of webhook with the creation of corresponding object. Added comments for webhook configuration definitions, changed name of configuration for debug. 2019-03-22 22:11:55 +02:00			`// Loads or creates PEM private key and TLS certificate for webhook server.`
			`// Created pair is stored in cluster's secret.`
			`// Returns struct with key/certificate pair.`
refactor code 2019-06-05 17:43:59 -07:00			`func initTLSPemPair(configuration rest.Config, client client.Client) (*tls.TlsPemPair, error) {`
use single secret for tlsPair, check for secret annotation for self-signed cert & change type of secret from generic to tls 2019-05-29 12:36:03 -07:00			`certProps, err := client.GetTLSCertProps(configuration)`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`if err != nil {`
			`return nil, err`
			`}`
			`tlsPair := client.ReadTlsPair(certProps)`
Implemented Validation Pattern base. Updated Webhooks registration logic. Updated project for using TLS package 2019-05-14 18:10:25 +03:00			`if tls.IsTlsPairShouldBeUpdated(tlsPair) {`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Info("Generating new key/certificate pair for TLS")`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`tlsPair, err = client.GenerateTlsPemPair(certProps)`
			`if err != nil {`
			`return nil, err`
			`}`
			`err = client.WriteTlsPair(certProps, tlsPair)`
			`if err != nil {`
introduce glog, remove log.logger references 2019-05-30 12:28:56 -07:00			`glog.Errorf("Unable to save TLS pair to the cluster: %v", err)`
NK-31: Decomposed controller initialization functions. 2019-03-15 19:22:06 +02:00			`}`
			`}`
			`return tlsPair, nil`
NK-31: Implemnted loggin about success to policy. Also fixed showing of error on initialization. 2019-03-21 18:09:58 +02:00			`}`