登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
开源项目 > 服务器应用 > 容器/虚拟机 &&
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
36 Star 395 Fork 71

GVPrancher / rancher

代码 Issues 0 Pull Requests 0 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
克隆/下载
controller.go 8.84 KB
一键复制 编辑 原始数据 按行查看 历史
Daishan Peng 提交于 2018-09-11 09:17 . add move action on namespace
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296
package helm



import (

	"crypto/sha256"

	"encoding/hex"

	"fmt"

	"io/ioutil"

	"os"

	"path/filepath"

	"reflect"

	"sort"

	"strings"

	"time"



	"github.com/rancher/rancher/pkg/controllers/management/compose/common"

	"github.com/rancher/rancher/pkg/ref"

	corev1 "github.com/rancher/types/apis/core/v1"

	mgmtv3 "github.com/rancher/types/apis/management.cattle.io/v3"

	"github.com/rancher/types/apis/project.cattle.io/v3"

	"github.com/rancher/types/config"

	"github.com/rancher/types/user"

	"github.com/sirupsen/logrus"

	"k8s.io/apimachinery/pkg/api/errors"

	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"

	"k8s.io/apimachinery/pkg/runtime"

	"k8s.io/client-go/kubernetes"

	"k8s.io/client-go/tools/clientcmd"

)



const (

	helmTokenPrefix = "helm-token-"

	description     = "token for helm chart deployment"

	AppIDsLabel     = "cattle.io/appIds"

)



func Register(user *config.UserContext, kubeConfigGetter common.KubeConfigGetter) {

	appClient := user.Management.Project.Apps("")

	stackLifecycle := &Lifecycle{

		KubeConfigGetter:      kubeConfigGetter,

		TokenClient:           user.Management.Management.Tokens(""),

		UserClient:            user.Management.Management.Users(""),

		UserManager:           user.Management.UserManager,

		K8sClient:             user.K8sClient,

		TemplateVersionClient: user.Management.Management.TemplateVersions(""),

		ListenConfigClient:    user.Management.Management.ListenConfigs(""),

		ClusterName:           user.ClusterName,

		TemplateContentClient: user.Management.Management.TemplateContents(""),

		AppRevisionGetter:     user.Management.Project,

		AppGetter:             user.Management.Project,

		NsClient:              user.Core.Namespaces(""),

	}

	appClient.AddClusterScopedLifecycle("helm-controller", user.ClusterName, stackLifecycle)

}



type Lifecycle struct {

	KubeConfigGetter      common.KubeConfigGetter

	UserManager           user.Manager

	TokenClient           mgmtv3.TokenInterface

	UserClient            mgmtv3.UserInterface

	TemplateVersionClient mgmtv3.TemplateVersionInterface

	K8sClient             kubernetes.Interface

	ListenConfigClient    mgmtv3.ListenConfigInterface

	ClusterName           string

	TemplateContentClient mgmtv3.TemplateContentInterface

	AppRevisionGetter     v3.AppRevisionsGetter

	AppGetter             v3.AppsGetter

	NsClient              corev1.NamespaceInterface

}



func (l *Lifecycle) Create(obj *v3.App) (*v3.App, error) {

	v3.AppConditionMigrated.True(obj)

	return obj, nil

}



func (l *Lifecycle) Updated(obj *v3.App) (*v3.App, error) {

	if obj.Spec.ExternalID == "" && len(obj.Spec.Files) == 0 {

		return obj, nil

	}

	// always refresh app to avoid updating app twice

	_, projectName := ref.Parse(obj.Spec.ProjectName)

	var err error

	obj, err = l.AppGetter.Apps(projectName).Get(obj.Name, metav1.GetOptions{})

	if err != nil {

		return obj, err

	}

	// if app was created before 2.1, run migrate to install a no-op helm release

	newObj, err := v3.AppConditionMigrated.Once(obj, func() (runtime.Object, error) {

		return l.DeployApp(obj)

	})

	if err != nil {

		return obj, err

	}

	obj = newObj.(*v3.App)

	appRevisionClient := l.AppRevisionGetter.AppRevisions(projectName)

	if obj.Spec.AppRevisionName != "" {

		currentRevision, err := appRevisionClient.Get(obj.Spec.AppRevisionName, metav1.GetOptions{})

		if err != nil {

			return nil, err

		}

		if obj.Spec.ExternalID != "" {

			if currentRevision.Status.ExternalID == obj.Spec.ExternalID && reflect.DeepEqual(currentRevision.Status.Answers, obj.Spec.Answers) {

				return obj, nil

			}

		}

		if obj.Status.AppliedFiles != nil {

			if reflect.DeepEqual(obj.Status.AppliedFiles, obj.Spec.Files) && reflect.DeepEqual(currentRevision.Status.Answers, obj.Spec.Answers) {

				return obj, nil

			}

		}

	}

	result, err := l.DeployApp(obj)

	if err != nil {

		return result, err

	}

	ns, err := l.NsClient.Get(obj.Spec.TargetNamespace, metav1.GetOptions{})

	if err != nil && !errors.IsNotFound(err) {

		return result, err

	} else if errors.IsNotFound(err) {

		return result, nil

	}

	if ns.Annotations[AppIDsLabel] == "" {

		ns.Annotations[AppIDsLabel] = obj.Name

	} else {

		parts := strings.Split(ns.Annotations[AppIDsLabel], ",")

		appIDs := map[string]struct{}{}

		for _, part := range parts {

			appIDs[part] = struct{}{}

		}

		appIDs[obj.Name] = struct{}{}

		appIDList := []string{}

		for k := range appIDs {

			appIDList = append(appIDList, k)

		}

		sort.Strings(appIDList)

		ns.Annotations[AppIDsLabel] = strings.Join(appIDList, ",")

	}

	if _, err := l.NsClient.Update(ns); err != nil {

		return result, err

	}

	return result, nil

}



func (l *Lifecycle) DeployApp(obj *v3.App) (*v3.App, error) {

	newObj, err := v3.AppConditionInstalled.Do(obj, func() (runtime.Object, error) {

		template, notes, tempDir, err := generateTemplates(obj, l.TemplateVersionClient, l.TemplateContentClient)

		defer os.RemoveAll(tempDir)

		if err != nil {

			return obj, err

		}

		if err := l.Run(obj, template, tempDir, notes); err != nil {

			return obj, err

		}

		return obj, nil

	})

	return newObj.(*v3.App), err

}



func (l *Lifecycle) Remove(obj *v3.App) (*v3.App, error) {

	_, projectName := ref.Parse(obj.Spec.ProjectName)

	appRevisionClient := l.AppRevisionGetter.AppRevisions(projectName)

	revisions, err := appRevisionClient.List(metav1.ListOptions{

		LabelSelector: fmt.Sprintf("%s=%s", appLabel, obj.Name),

	})

	if err != nil {

		return obj, err

	}

	for _, revision := range revisions.Items {

		if err := appRevisionClient.Delete(revision.Name, &metav1.DeleteOptions{}); err != nil && !errors.IsNotFound(err) {

			return obj, err

		}

	}

	tempDir, err := ioutil.TempDir("", "helm-")

	if err != nil {

		return obj, err

	}

	defer os.RemoveAll(tempDir)

	kubeConfigPath, err := l.writeKubeConfig(obj, tempDir)

	if err != nil {

		return obj, err

	}

	// try three times and succeed

	start := time.Second * 1

	for i := 0; i < 3; i++ {

		if err := helmDelete(kubeConfigPath, obj); err == nil {

			break

		}

		logrus.Error(err)

		time.Sleep(start)

		start *= 2

	}

	ns, err := l.NsClient.Get(obj.Spec.TargetNamespace, metav1.GetOptions{})

	if err != nil && !errors.IsNotFound(err) {

		return obj, err

	} else if errors.IsNotFound(err) {

		return obj, nil

	}

	appIds := strings.Split(ns.Annotations[AppIDsLabel], ",")

	appAnno := ""

	for _, appID := range appIds {

		if appID == obj.Name {

			continue

		}

		appAnno += appID + ","

	}

	if appAnno == "" {

		delete(ns.Annotations, AppIDsLabel)

	} else {

		appAnno = strings.TrimSuffix(appAnno, ",")

		ns.Annotations[AppIDsLabel] = appAnno

	}

	if _, err := l.NsClient.Update(ns); err != nil {

		return obj, err

	}

	return obj, nil

}



func (l *Lifecycle) Run(obj *v3.App, template, templateDir, notes string) error {

	tempDir, err := ioutil.TempDir("", "kubeconfig-")

	if err != nil {

		return err

	}

	defer os.RemoveAll(tempDir)

	kubeConfigPath, err := l.writeKubeConfig(obj, tempDir)

	if err != nil {

		return err

	}

	if err := helmInstall(templateDir, kubeConfigPath, obj); err != nil {

		return err

	}

	return l.createAppRevision(obj, template, notes, false)

}



func (l *Lifecycle) createAppRevision(obj *v3.App, template, notes string, failed bool) error {

	_, projectName := ref.Parse(obj.Spec.ProjectName)

	appRevisionClient := l.AppRevisionGetter.AppRevisions(projectName)

	release := &v3.AppRevision{}

	release.GenerateName = "apprevision-"

	release.Labels = map[string]string{

		appLabel: obj.Name,

	}

	if failed {

		release.Labels[failedLabel] = "true"

	}

	release.Status.Answers = obj.Spec.Answers

	release.Status.ProjectName = projectName

	release.Status.ExternalID = obj.Spec.ExternalID

	digest := sha256.New()

	digest.Write([]byte(template))

	tag := hex.EncodeToString(digest.Sum(nil))

	if _, err := l.TemplateContentClient.Get(tag, metav1.GetOptions{}); errors.IsNotFound(err) {

		tc := &mgmtv3.TemplateContent{}

		tc.Name = tag

		tc.Data = template

		if _, err := l.TemplateContentClient.Create(tc); err != nil {

			return err

		}

	} else if err != nil {

		return err

	}

	release.Status.Digest = tag

	createdRevision, err := appRevisionClient.Create(release)

	if err != nil {

		return err

	}

	obj.Spec.AppRevisionName = createdRevision.Name

	obj.Status.Notes = notes

	if obj.Spec.Files != nil {

		obj.Status.AppliedFiles = obj.Spec.Files

	}

	return err

}



func (l *Lifecycle) writeKubeConfig(obj *v3.App, tempDir string) (string, error) {

	userID := obj.Annotations["field.cattle.io/creatorId"]

	user, err := l.UserClient.Get(userID, metav1.GetOptions{})

	if err != nil {

		return "", err

	}

	token, err := l.UserManager.EnsureToken(helmTokenPrefix+user.Name, description, user.Name)

	if err != nil {

		return "", err

	}



	kubeConfig := l.KubeConfigGetter.KubeConfig(l.ClusterName, token)

	for k := range kubeConfig.Clusters {

		kubeConfig.Clusters[k].InsecureSkipTLSVerify = true

	}

	if err := os.MkdirAll(filepath.Join(tempDir, obj.Namespace), 0755); err != nil {

		return "", err

	}

	kubeConfigPath := filepath.Join(tempDir, obj.Namespace, ".kubeconfig")

	if err := clientcmd.WriteToFile(*kubeConfig, kubeConfigPath); err != nil {

		return "", err

	}

	return kubeConfigPath, nil

}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
Go
1
https://gitee.com/rancher/rancher.git
git@gitee.com:rancher/rancher.git
rancher
rancher
rancher
v2.1.1-rc6
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部
344bd9b3 5694891 D2dac590 5694891