/* Copyright 2020 Google LLC Licensed under the Apache License, Version 2.0 (the "License"); you may not use this file except in compliance with the License. You may obtain a copy of the License at https://www.apache.org/licenses/LICENSE-2.0 Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the License for the specific language governing permissions and limitations under the License. */ // Package clients provides clients which are used to communicate with api server and GCLB. package clients import ( "context" "fmt" "golang.org/x/oauth2" "k8s.io/client-go/kubernetes" coordinationv1 "k8s.io/client-go/kubernetes/typed/coordination/v1" corev1 "k8s.io/client-go/kubernetes/typed/core/v1" "k8s.io/client-go/tools/clientcmd" "k8s.io/client-go/util/workqueue" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/clientgen/clientset/versioned" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/clients/configmap" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/clients/event" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/clients/ingress" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/clients/managedcertificate" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/clients/ssl" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/config" "github.com/GoogleCloudPlatform/gke-managed-certs/pkg/flags" ) // Clients are used to communicate with api server and GCLB. type Clients struct { // ConfigMap manages ConfigMap resources. ConfigMap configmap.Interface // Coordination is used for electing master. Coordination coordinationv1.CoordinationV1Interface // Core manages core Kubernetes resources. Core corev1.CoreV1Interface // Event manages Event resources. Event event.Interface // Ingress manages Ingress resources. Ingress ingress.Interface // ManagedCertificate manages ManagedCertificate resources. ManagedCertificate managedcertificate.Interface // Ssl manages SslCertificate GCP resources. Ssl ssl.Interface } func New(ctx context.Context, config *config.Config) (*Clients, error) { clusterConfig, err := clientcmd.BuildConfigFromFlags( flags.F.APIServerHost, flags.F.KubeConfigFilePath) if err != nil { return nil, fmt.Errorf("Could not fetch cluster config, err: %v", err) } kubernetesClient := kubernetes.NewForConfigOrDie(clusterConfig) managedCertificateClient := versioned.NewForConfigOrDie(clusterConfig) oauthClient := oauth2.NewClient(ctx, config.Compute.TokenSource) oauthClient.Timeout = config.Compute.Timeout ssl, err := ssl.New(oauthClient, config.Compute.ProjectID) if err != nil { return nil, err } event, err := event.New(kubernetesClient) if err != nil { return nil, err } return &Clients{ ConfigMap: configmap.New(clusterConfig), Coordination: kubernetesClient.CoordinationV1(), Core: kubernetesClient.CoreV1(), Event: event, Ingress: ingress.New(kubernetesClient), ManagedCertificate: managedcertificate.New(managedCertificateClient), Ssl: ssl, }, nil } func (c *Clients) HasSynced() bool { return c.Ingress.HasSynced() && c.ManagedCertificate.HasSynced() } func (c *Clients) Run(ctx context.Context, ingressQueue, managedCertificateQueue workqueue.RateLimitingInterface) { go c.Ingress.Run(ctx, ingressQueue) go c.ManagedCertificate.Run(ctx, managedCertificateQueue) }