create event on webhook status update

2025-03-31 03:45:17 +00:00 · 2019-11-10 13:30:15 -08:00 · 2019-11-10 13:30:15 -08:00 · f11a05a652
commit f11a05a652
parent 1613434c46
3 changed files with 23 additions and 6 deletions
--- a/pkg/checker/checker.go
+++ b/pkg/checker/checker.go
@ -7,6 +7,7 @@ import (
 	"github.com/golang/glog"
 	kyvernolister "github.com/nirmata/kyverno/pkg/client/listers/kyverno/v1alpha1"
 	dclient "github.com/nirmata/kyverno/pkg/dclient"
+	"github.com/nirmata/kyverno/pkg/event"
 	"k8s.io/apimachinery/pkg/labels"
 )

@ -54,13 +55,13 @@ func checkIfPolicyWithMutateAndGenerateExists(pLister kyvernolister.ClusterPolic
 }

 //Run runs the checker and verify the resource update
-func (t *LastReqTime) Run(pLister kyvernolister.ClusterPolicyLister, client *dclient.Client, defaultResync time.Duration, deadline time.Duration, stopCh <-chan struct{}) {
+func (t *LastReqTime) Run(pLister kyvernolister.ClusterPolicyLister,eventGen event.Interface, client *dclient.Client, defaultResync time.Duration, deadline time.Duration, stopCh <-chan struct{}) {
 	glog.V(2).Infof("starting default resync for webhook checker with resync time %d", defaultResync)
 	maxDeadline := deadline * time.Duration(MaxRetryCount)
 	ticker := time.NewTicker(defaultResync)
 	var statuscontrol StatusInterface
 	/// interface to update and increment kyverno webhook status via annotations
-	statuscontrol = NewVerifyControl(client)
+	statuscontrol = NewVerifyControl(client,eventGen)
 	// send the initial update status
 	if checkIfPolicyWithMutateAndGenerateExists(pLister) {
 		if err := statuscontrol.SuccessStatus(); err != nil {
--- a/pkg/checker/status.go
+++ b/pkg/checker/status.go
@ -1,10 +1,12 @@
 package checker

 import (
+	"fmt"
 	"strconv"

 	"github.com/golang/glog"
 	dclient "github.com/nirmata/kyverno/pkg/dclient"
+	"github.com/nirmata/kyverno/pkg/event"
 )

 const deployName string = "kyverno"
@ -25,7 +27,8 @@ type StatusInterface interface {

 //StatusControl controls the webhook status
 type StatusControl struct {
-	client *dclient.Client
+	client   *dclient.Client
+	eventGen event.Interface
 }

 //SuccessStatus ...
@ -39,9 +42,10 @@ func (vc StatusControl) FailedStatus() error {
 }

 // NewVerifyControl ...
-func NewVerifyControl(client *dclient.Client) *StatusControl {
+func NewVerifyControl(client *dclient.Client, eventGen event.Interface) *StatusControl {
 	return &StatusControl{
-		client: client,
+		client:   client,
+		eventGen: eventGen,
 	}
 }

@ -76,9 +80,21 @@ func (vc StatusControl) setStatus(status string) error {
 		glog.V(4).Infof("failed to update annotation %s for deployment %s in namespace %s: %v", annWebhookStats, deployName, deployNamespace, err)
 		return err
 	}
+	// create event on kyverno deployment
+	createStatusUpdateEvent(status, vc.eventGen)
 	return nil
 }

+func createStatusUpdateEvent(status string, eventGen event.Interface) {
+	e := event.Info{}
+	e.Kind = "Deployment"
+	e.Namespace = "kyverno"
+	e.Name = "kyverno"
+	e.Reason = "Update"
+	e.Message = fmt.Sprintf("admission control webhook active status changed to %s", status)
+	eventGen.Add(e)
+}
+
 //IncrementAnnotation ...
 func (vc StatusControl) IncrementAnnotation() error {
 	glog.Infof("setting deployment %s in ns %s annotation %s", deployName, deployNamespace, annCounter)
--- a/pkg/webhooks/server.go
+++ b/pkg/webhooks/server.go
@ -208,7 +208,7 @@ func (ws *WebhookServer) RunAsync(stopCh <-chan struct{}) {
 	// resync: 60 seconds
 	// deadline: 60 seconds (send request)
 	// max deadline: deadline*3 (set the deployment annotation as false)
-	go ws.lastReqTime.Run(ws.pLister, ws.client, 60*time.Second, 60*time.Second, stopCh)
+	go ws.lastReqTime.Run(ws.pLister, ws.eventGen, ws.client, 60*time.Second, 60*time.Second, stopCh)
 }

 // Stop TLS server and returns control after the server is shut down