-
Notifications
You must be signed in to change notification settings - Fork 0
/
solver.go
117 lines (96 loc) · 2.43 KB
/
solver.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
package ucloud
import (
"context"
"encoding/json"
"fmt"
"github.com/alpha-supsys/go-common/config"
"github.com/jetstack/cert-manager/pkg/acme/webhook"
whapi "github.com/jetstack/cert-manager/pkg/acme/webhook/apis/acme/v1alpha1"
"github.com/pkg/errors"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/client-go/kubernetes"
"k8s.io/client-go/rest"
)
var pkNotExists = errors.New("pk not exists")
var pukNotExists = errors.New("puk not exist")
type Config struct {
Region string `json:"region"`
Dn string `json:"dn"`
Secret string `json:"secret"`
}
type Solver struct {
K8sClient *kubernetes.Clientset
UClient *UClient
Namespace string
SecretName string
}
func NewSolver(cfg config.Config) webhook.Solver {
namespace := cfg.GetString("Namespace", "")
secretName := cfg.GetString("SecretName", "")
return &Solver{
Namespace: namespace,
SecretName: secretName,
}
}
func (s *Solver) Name() string {
return "udns"
}
func (s *Solver) Present(ch *whapi.ChallengeRequest) error {
cfg := &Config{}
if err := json.Unmarshal(ch.Config.Raw, cfg); err != nil {
return err
}
fmt.Println(cfg.Region, cfg.Dn, ch.Key)
err := s.UClient.UdnrDomainDNSAdd(cfg.Region, cfg.Dn, &DnsRecord{
DnsType: "TXT",
RecordName: "_acme-challenge." + cfg.Dn,
Content: ch.Key,
Prio: "-",
TTL: "600",
})
if err != nil {
return err
}
return nil
}
func (s *Solver) CleanUp(ch *whapi.ChallengeRequest) error {
cfg := &Config{}
if err := json.Unmarshal(ch.Config.Raw, cfg); err != nil {
return err
}
err := s.UClient.UdnrDeleteDnsRecord(cfg.Region, cfg.Dn, &DnsRecord{
DnsType: "TXT",
RecordName: "_acme-challenge." + cfg.Dn,
Content: ch.Key,
})
if err != nil {
return err
}
return nil
}
func (s *Solver) Initialize(kubeClientConfig *rest.Config, stopCh <-chan struct{}) error {
cl, err := kubernetes.NewForConfig(kubeClientConfig)
if err != nil {
return err
}
s.K8sClient = cl
secret, err := s.K8sClient.CoreV1().Secrets(s.Namespace).Get(context.TODO(), s.SecretName, metav1.GetOptions{})
if err != nil {
return errors.Wrapf(err, "failed to load secret %q", s.Namespace+"/"+s.SecretName)
}
var pk string
var puk string
if pkbs, ok := secret.Data["pk"]; ok {
pk = string(pkbs)
} else {
return pkNotExists
}
if pukbs, ok := secret.Data["puk"]; ok {
puk = string(pukbs)
} else {
return pukNotExists
}
uclient := NewClientFromKeys(puk, pk)
s.UClient = uclient
return nil
}