This repository has been archived by the owner on Jun 19, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 82
/
publisher.go
122 lines (106 loc) · 3.07 KB
/
publisher.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
/*
Copyright 2019 Google LLC
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/
package resources
import (
"fmt"
corev1 "k8s.io/api/core/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"knative.dev/pkg/kmeta"
servingv1 "knative.dev/serving/pkg/apis/serving/v1"
"github.com/google/knative-gcp/pkg/apis/pubsub/v1alpha1"
)
// PublisherArgs are the arguments needed to create a Topic publisher.
// Every field is required.
type PublisherArgs struct {
Image string
Topic *v1alpha1.Topic
Labels map[string]string
TracingConfig string
}
const (
credsVolume = "google-cloud-key"
credsMountPath = "/var/secrets/google"
)
// DefaultSecretSelector is the default secret selector used to load the creds
// for the publisher to auth with Google Cloud.
func DefaultSecretSelector() *corev1.SecretKeySelector {
return &corev1.SecretKeySelector{
LocalObjectReference: corev1.LocalObjectReference{
Name: "google-cloud-key",
},
Key: "key.json",
}
}
func makePublisherPodSpec(args *PublisherArgs) corev1.PodSpec {
secret := args.Topic.Spec.Secret
if secret == nil {
secret = DefaultSecretSelector()
}
credsFile := fmt.Sprintf("%s/%s", credsMountPath, secret.Key)
podSpec := corev1.PodSpec{
Containers: []corev1.Container{{
Image: args.Image,
Env: []corev1.EnvVar{{
Name: "GOOGLE_APPLICATION_CREDENTIALS",
Value: credsFile,
}, {
Name: "PROJECT_ID",
Value: args.Topic.Spec.Project,
}, {
Name: "PUBSUB_TOPIC_ID",
Value: args.Topic.Spec.Topic,
}, {
Name: "K_TRACING_CONFIG",
Value: args.TracingConfig,
}},
VolumeMounts: []corev1.VolumeMount{{
Name: credsVolume,
MountPath: credsMountPath,
}}},
},
Volumes: []corev1.Volume{{
Name: credsVolume,
VolumeSource: corev1.VolumeSource{
Secret: &corev1.SecretVolumeSource{
SecretName: secret.Name,
},
},
}},
}
return podSpec
}
// MakePublisher generates (but does not insert into K8s) the Invoker Deployment for
// Channels.
func MakePublisher(args *PublisherArgs) *servingv1.Service {
podSpec := makePublisherPodSpec(args)
return &servingv1.Service{
ObjectMeta: metav1.ObjectMeta{
Namespace: args.Topic.Namespace,
Name: GeneratePublisherName(args.Topic),
Labels: args.Labels,
OwnerReferences: []metav1.OwnerReference{*kmeta.NewControllerRef(args.Topic)},
},
Spec: servingv1.ServiceSpec{
ConfigurationSpec: servingv1.ConfigurationSpec{
Template: servingv1.RevisionTemplateSpec{
ObjectMeta: metav1.ObjectMeta{
Labels: args.Labels,
},
Spec: servingv1.RevisionSpec{
PodSpec: podSpec,
},
},
},
},
}
}