-
Notifications
You must be signed in to change notification settings - Fork 473
/
add.go
79 lines (68 loc) · 2.75 KB
/
add.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
// Copyright (c) 2021 SAP SE or an SAP affiliate company. All rights reserved. This file is licensed under the Apache Software License, v. 2 except as noted otherwise in the LICENSE file
//
// Licensed under the Apache License, Version 2.0 (the "License");
// you may not use this file except in compliance with the License.
// You may obtain a copy of the License at
//
// http://www.apache.org/licenses/LICENSE-2.0
//
// Unless required by applicable law or agreed to in writing, software
// distributed under the License is distributed on an "AS IS" BASIS,
// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
// See the License for the specific language governing permissions and
// limitations under the License.
package projectedtokenmount
import (
"github.com/spf13/pflag"
"sigs.k8s.io/controller-runtime/pkg/cluster"
runtimelog "sigs.k8s.io/controller-runtime/pkg/log"
"sigs.k8s.io/controller-runtime/pkg/manager"
"sigs.k8s.io/controller-runtime/pkg/webhook"
)
const (
// HandlerName is the name of the webhook handler.
HandlerName = "projected-token-mount"
// WebhookPath is the path at which the handler should be registered.
WebhookPath = "/webhooks/mount-projected-service-account-token"
)
var defaultWebhookConfig WebhookConfig
// WebhookOptions are options for adding the webhook to a Manager.
type WebhookOptions struct {
expirationSeconds int64
}
// WebhookConfig is the completed configuration for the webhook.
type WebhookConfig struct {
TargetCluster cluster.Cluster
ExpirationSeconds int64
}
// AddToManagerWithOptions adds the webhook to a Manager with the given config.
func AddToManagerWithOptions(mgr manager.Manager, conf WebhookConfig) error {
server := mgr.GetWebhookServer()
server.Register(WebhookPath, &webhook.Admission{
Handler: NewHandler(
runtimelog.Log.WithName("webhook").WithName(HandlerName),
conf.TargetCluster.GetCache(),
conf.ExpirationSeconds,
),
})
return nil
}
// AddToManager adds the webhook to a Manager using the default config.
func AddToManager(mgr manager.Manager) error {
return AddToManagerWithOptions(mgr, defaultWebhookConfig)
}
// AddFlags adds the needed command line flags to the given FlagSet.
func (o *WebhookOptions) AddFlags(fs *pflag.FlagSet) {
fs.Int64Var(&o.expirationSeconds, "projected-token-mount-expiration-seconds", 60*60*12, "expiration seconds for mounted projected service account tokens")
}
// Complete completes the given command line flags and set the defaultWebhookConfig accordingly.
func (o *WebhookOptions) Complete() error {
defaultWebhookConfig = WebhookConfig{
ExpirationSeconds: o.expirationSeconds,
}
return nil
}
// Completed returns the completed WebhookConfig.
func (o *WebhookOptions) Completed() *WebhookConfig {
return &defaultWebhookConfig
}