/
loader.go
73 lines (61 loc) · 1.8 KB
/
loader.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
package certificates
import (
"context"
"time"
"github.com/kyma-incubator/compass/components/director/pkg/log"
"github.com/kyma-incubator/compass/components/connector/internal/secrets"
"k8s.io/apimachinery/pkg/types"
)
const interval = 1 * time.Minute
const certLoaderCorrelationID = "cert-loader"
type Loader interface {
Run(ctx context.Context)
}
type certLoader struct {
certsCache Cache
secretsRepository secrets.Repository
caCertSecret types.NamespacedName
rootCACertSecret types.NamespacedName
}
func NewCertificateLoader(certsCache Cache,
secretsRepository secrets.Repository,
caCertSecret types.NamespacedName,
rootCACertSecretName types.NamespacedName) Loader {
return &certLoader{
certsCache: certsCache,
secretsRepository: secretsRepository,
caCertSecret: caCertSecret,
rootCACertSecret: rootCACertSecretName,
}
}
func (cl *certLoader) Run(ctx context.Context) {
ctx = cl.configureLogger(ctx)
for {
select {
case <-ctx.Done():
log.C(ctx).Info("Context cancelled, stopping cert loader...")
return
default:
}
if cl.caCertSecret.Name != "" {
cl.loadSecretToCache(ctx, cl.caCertSecret)
}
if cl.rootCACertSecret.Name != "" {
cl.loadSecretToCache(ctx, cl.rootCACertSecret)
}
time.Sleep(interval)
}
}
func (cl *certLoader) loadSecretToCache(ctx context.Context, secret types.NamespacedName) {
secretData, appError := cl.secretsRepository.Get(ctx, secret)
if appError != nil {
log.C(ctx).WithError(appError).Errorf("Failed to load secret %s to cache", secret.String())
return
}
cl.certsCache.Put(secret.Name, secretData)
}
func (cl *certLoader) configureLogger(ctx context.Context) context.Context {
entry := log.C(ctx)
entry = entry.WithField(log.FieldRequestID, certLoaderCorrelationID)
return log.ContextWithLogger(ctx, entry)
}