direktil
/
local-server
4
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
local-server/cmd/dkl-local-server/ws-clusters.go

124 lines
2.5 KiB
Go
Raw Normal View History

refactor to go-restful
2019-02-04 02:56:43 +00:00
package main
import (
"log"
secrets migration
2023-02-15 07:49:34 +00:00
"net/url"
"strconv"
refactor to go-restful
2019-02-04 02:56:43 +00:00
restful "github.com/emicklei/go-restful"
ssh acls preliminary support
2021-11-14 14:28:40 +00:00
secrets migration
2023-02-15 07:49:34 +00:00
"novit.tech/direktil/local-server/pkg/mime"
bootv2 support
2022-04-28 01:33:19 +00:00
"novit.tech/direktil/pkg/localconfig"
refactor to go-restful
2019-02-04 02:56:43 +00:00
)
secrets migration & restitution
2023-02-12 10:58:26 +00:00
var clusterSecretKVs = []string{}
func newClusterSecretKV[T any](name string) KVSecrets[T] {
rework not found
2023-02-13 17:07:10 +00:00
clusterSecretKVs = append(clusterSecretKVs, name)
return KVSecrets[T]{"clusters/" + name}
secrets migration & restitution
2023-02-12 10:58:26 +00:00
}
refactor to go-restful
2019-02-04 02:56:43 +00:00
func wsListClusters(req *restful.Request, resp *restful.Response) {
cfg := wsReadConfig(resp)
if cfg == nil {
return
}
clusterNames := make([]string, len(cfg.Clusters))
for i, cluster := range cfg.Clusters {
clusterNames[i] = cluster.Name
}
resp.WriteEntity(clusterNames)
}
func wsReadCluster(req *restful.Request, resp *restful.Response) (cluster *localconfig.Cluster) {
clusterName := req.PathParameter("cluster-name")
cfg := wsReadConfig(resp)
if cfg == nil {
return
}
cluster = cfg.Cluster(clusterName)
if cluster == nil {
rework not found
2023-02-13 17:07:10 +00:00
wsNotFound(resp)
refactor to go-restful
2019-02-04 02:56:43 +00:00
return
}
return
}
func wsCluster(req *restful.Request, resp *restful.Response) {
cluster := wsReadCluster(req, resp)
if cluster == nil {
return
}
resp.WriteEntity(cluster)
}
func wsClusterAddons(req *restful.Request, resp *restful.Response) {
cluster := wsReadCluster(req, resp)
if cluster == nil {
return
}
if len(cluster.Addons) == 0 {
log.Printf("cluster %q has no addons defined", cluster.Name)
rework not found
2023-02-13 17:07:10 +00:00
wsNotFound(resp)
refactor to go-restful
2019-02-04 02:56:43 +00:00
return
}
migration to new secrets nearly complete
2023-02-12 14:18:42 +00:00
cfg := wsReadConfig(resp)
if cfg == nil {
return
}
rework not found
2023-02-13 17:07:10 +00:00
sslCfg, err := sslConfigFromLocalConfig(cfg)
if err != nil {
wsError(resp, err)
return
}
migration to new secrets nearly complete
2023-02-12 14:18:42 +00:00
wsRender(resp, sslCfg, cluster.Addons, cluster)
refactor to go-restful
2019-02-04 02:56:43 +00:00
}
dls: password support
2019-04-13 09:36:58 +00:00
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
func wsClusterCACert(req *restful.Request, resp *restful.Response) {
secrets migration
2023-02-15 07:49:34 +00:00
clusterName := req.PathParameter("cluster-name")
caName := req.PathParameter("ca-name")
ca, found, err := clusterCAs.Get(clusterName + "/" + caName)
if err != nil {
wsError(resp, err)
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
return
}
secrets migration
2023-02-15 07:49:34 +00:00
if !found {
rework not found
2023-02-13 17:07:10 +00:00
wsNotFound(resp)
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
return
}
secrets migration
2023-02-15 07:49:34 +00:00
resp.Header().Set("Content-Type", mime.CERT)
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
resp.Write(ca.Cert)
}
func wsClusterSignedCert(req *restful.Request, resp *restful.Response) {
secrets migration
2023-02-15 07:49:34 +00:00
clusterName := req.PathParameter("cluster-name")
caName := req.PathParameter("ca-name")
ssh acls preliminary support
2021-11-14 14:28:40 +00:00
name := req.QueryParameter("name")
secrets migration
2023-02-15 07:49:34 +00:00
kc, found, err := clusterCASignedKeys.Get(clusterName + "/" + caName + "/" + name)
if err != nil {
wsError(resp, err)
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
return
}
secrets migration
2023-02-15 07:49:34 +00:00
if !found {
rework not found
2023-02-13 17:07:10 +00:00
wsNotFound(resp)
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
return
}
secrets migration
2023-02-15 07:49:34 +00:00
resp.AddHeader("Content-Type", mime.CERT)
resp.AddHeader("Content-Disposition", "attachment; filename="+strconv.Quote(clusterName+"_"+caName+"_"+url.PathEscape(name)+".crt"))
tls: automatic certificate renewal
2020-04-22 15:36:04 +00:00
resp.Write(kc.Cert)
}