-
Notifications
You must be signed in to change notification settings - Fork 1
/
service-secret.go
72 lines (63 loc) · 2.17 KB
/
service-secret.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
package definition
import (
"fmt"
"github.com/echocat/lingress/settings"
"github.com/echocat/lingress/support"
log "github.com/echocat/slf4g"
v1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/client-go/informers"
"k8s.io/client-go/kubernetes"
"strings"
"time"
)
type ServiceSecret struct {
*Definition
settings *settings.Settings
client kubernetes.Interface
resyncAfter time.Duration
namespace string
}
func NewServiceSecrets(s *settings.Settings, client kubernetes.Interface, resyncAfter time.Duration, logger log.Logger) (*ServiceSecret, error) {
if definition, err := newDefinition("service-secrets", nil, logger); err != nil {
return nil, err
} else {
return &ServiceSecret{
Definition: definition,
settings: s,
client: client,
resyncAfter: resyncAfter,
}, nil
}
}
func (this *ServiceSecret) SetNamespace(namespace string) {
this.namespace = namespace
}
func (this *ServiceSecret) Init(stop support.Channel) error {
if len(this.settings.Tls.SecretNames) == 0 &&
this.settings.Tls.SecretNamePattern == nil &&
len(this.settings.Tls.SecretLabelSelector) == 0 &&
len(this.settings.Tls.SecretFieldSelector) == 0 {
this.Logger.Info("Neither tls.secretNames nor tls.secretNamePatterns nor tls.secretLabelSelector nor tls.secretFieldSelector was specified. No service secret will be evaluated = No service specific TLS certificate will be available.")
return nil
}
informerFactory := informers.NewSharedInformerFactoryWithOptions(
this.client,
this.resyncAfter,
informers.WithTweakListOptions(func(options *metav1.ListOptions) {
options.LabelSelector = strings.Join(this.settings.Tls.SecretLabelSelector, ",")
options.FieldSelector = strings.Join(this.settings.Tls.SecretFieldSelector, ",")
}),
)
this.SetInformer(informerFactory.Core().V1().Secrets().Informer())
return this.Definition.Init(stop)
}
func (this *ServiceSecret) Get(key string) (*v1.Service, error) {
if item, exists, err := this.informer.GetStore().GetByKey(key); err != nil {
return nil, fmt.Errorf("cannot get secrets %s from cache: %v", key, err)
} else if !exists {
return nil, nil
} else {
return item.(*v1.Service), nil
}
}