-
Notifications
You must be signed in to change notification settings - Fork 1.4k
/
tasks.go
68 lines (56 loc) · 1.9 KB
/
tasks.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
package irsa
import (
"context"
"fmt"
"github.com/google/uuid"
api "github.com/weaveworks/eksctl/pkg/apis/eksctl.io/v1alpha5"
"github.com/weaveworks/eksctl/pkg/cfn/builder"
"github.com/weaveworks/eksctl/pkg/cfn/manager"
iamoidc "github.com/weaveworks/eksctl/pkg/iam/oidc"
"github.com/weaveworks/eksctl/pkg/utils/tasks"
)
func NewUpdateIAMServiceAccountTask(clusterName string, sa *api.ClusterIAMServiceAccount, stackManager manager.StackManager, oidcManager *iamoidc.OpenIDConnectManager) (*tasks.TaskTree, error) {
rs := builder.NewIAMRoleResourceSetForServiceAccount(sa, oidcManager)
err := rs.AddAllResources()
if err != nil {
return nil, err
}
template, err := rs.RenderJSON()
if err != nil {
return nil, err
}
var templateData manager.TemplateBody = template
taskTree := &tasks.TaskTree{Parallel: false}
taskTree.Append(
&updateIAMServiceAccountTask{
info: fmt.Sprintf("update IAMServiceAccount %s/%s", sa.Namespace, sa.Name),
stackManager: stackManager,
templateData: templateData,
sa: sa,
clusterName: clusterName,
},
)
return taskTree, nil
}
type updateIAMServiceAccountTask struct {
sa *api.ClusterIAMServiceAccount
stackManager manager.StackManager
templateData manager.TemplateData
clusterName string
info string
}
func (t *updateIAMServiceAccountTask) Describe() string { return t.info }
func (t *updateIAMServiceAccountTask) Do(errorCh chan error) error {
stackName := makeIAMServiceAccountStackName(t.clusterName, t.sa.Namespace, t.sa.Name)
go func() {
errorCh <- nil
}()
desc := fmt.Sprintf("updating policies for IAMServiceAccount %s/%s", t.sa.Namespace, t.sa.Name)
return t.stackManager.UpdateStack(context.TODO(), manager.UpdateStackOptions{
StackName: stackName,
ChangeSetName: fmt.Sprintf("updating-policy-%s", uuid.NewString()),
Description: desc,
TemplateData: t.templateData,
Wait: true,
})
}