• Home
• io.hyscale
• deployer-services
• 0.9.9.1
• source code
• V1SecretHandler.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

io.hyscale.deployer.services.handler.impl.V1SecretHandler Maven / Gradle / Ivy

/**
 * Copyright 2019 Pramati Prism, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *     http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */
/**
 *
 */
package io.hyscale.deployer.services.handler.impl;

import java.util.List;

import io.hyscale.deployer.services.constants.DeployerConstants;
import io.hyscale.deployer.services.exception.DeployerErrorCodes;
import io.hyscale.deployer.services.handler.ResourceLifeCycleHandler;
import io.hyscale.deployer.services.model.DeployerActivity;
import io.hyscale.deployer.services.util.ExceptionHelper;
import io.hyscale.deployer.services.util.K8sResourcePatchUtil;
import org.slf4j.Logger;
import org.slf4j.LoggerFactory;

import com.google.common.collect.Lists;
import com.google.gson.JsonSyntaxException;

import io.hyscale.commons.exception.HyscaleException;
import io.hyscale.commons.logger.ActivityContext;
import io.hyscale.commons.logger.WorkflowLogger;
import io.hyscale.commons.models.AnnotationKey;
import io.hyscale.commons.models.Status;
import io.hyscale.commons.utils.GsonProviderUtil;
import io.hyscale.deployer.core.model.ResourceKind;
import io.hyscale.deployer.core.model.ResourceOperation;
import io.kubernetes.client.openapi.ApiClient;
import io.kubernetes.client.openapi.ApiException;
import io.kubernetes.client.openapi.apis.CoreV1Api;
import io.kubernetes.client.openapi.models.V1DeleteOptions;
import io.kubernetes.client.openapi.models.V1Secret;
import io.kubernetes.client.openapi.models.V1SecretList;
import io.kubernetes.client.custom.V1Patch;

// TODO Integrate logging with AOP
public class V1SecretHandler implements ResourceLifeCycleHandler {

	private static final Logger LOGGER = LoggerFactory.getLogger(V1SecretHandler.class);

	@Override
	public V1Secret create(ApiClient apiClient, V1Secret resource, String namespace) throws HyscaleException {
		if (resource == null) {
			LOGGER.debug("Cannot create null Secret");
			return resource;
		}
		WorkflowLogger.startActivity(DeployerActivity.DEPLOYING_SECRETS);
		CoreV1Api coreV1Api = new CoreV1Api(apiClient);
		String name = resource.getMetadata().getName();
		V1Secret v1Secret = null;
		try {
			resource.getMetadata().putAnnotationsItem(
					AnnotationKey.K8S_HYSCALE_LAST_APPLIED_CONFIGURATION.getAnnotation(), GsonProviderUtil.getPrettyGsonBuilder().toJson(resource));
			v1Secret = coreV1Api.createNamespacedSecret(namespace, resource, DeployerConstants.TRUE, null, null);
		} catch (ApiException e) {
			HyscaleException ex = new HyscaleException(e, DeployerErrorCodes.FAILED_TO_CREATE_RESOURCE,
					ExceptionHelper.getExceptionMessage(getKind(), e, ResourceOperation.CREATE));
			LOGGER.error("Error while creating Secret {} in namespace {}, error {}", name, namespace, ex.toString());
			WorkflowLogger.endActivity(Status.FAILED);
			throw ex;
		}
		LOGGER.info("Created Secret {} in namespace {}", name, namespace);
		WorkflowLogger.endActivity(Status.DONE);
		return v1Secret;
	}

	@Override
	public boolean update(ApiClient apiClient, V1Secret resource, String namespace) throws HyscaleException {
		if (resource == null) {
			LOGGER.debug("Cannot update null Secret");
			return false;
		}
		CoreV1Api coreV1Api = new CoreV1Api(apiClient);
		String name = resource.getMetadata().getName();
		V1Secret existingSecret = null;
		try {
			existingSecret = get(apiClient, name, namespace);
		} catch (HyscaleException ex) {
			LOGGER.debug("Error while getting Secret {} in namespace {} for Update, creating new", name, namespace);
			V1Secret secret = create(apiClient, resource, namespace);
			return secret != null;
		}
		WorkflowLogger.startActivity(DeployerActivity.DEPLOYING_SECRETS);
		try {

			String resourceVersion = existingSecret.getMetadata().getResourceVersion();
			resource.getMetadata().setResourceVersion(resourceVersion);
			coreV1Api.replaceNamespacedSecret(name, namespace, resource, DeployerConstants.TRUE, null,null);
		} catch (ApiException e) {
			HyscaleException ex = new HyscaleException(e, DeployerErrorCodes.FAILED_TO_UPDATE_RESOURCE,
					ExceptionHelper.getExceptionMessage(getKind(), e, ResourceOperation.UPDATE));
			LOGGER.error("Error while updating Secret {} in namespace {}, error {}", name, namespace, ex.toString());
			WorkflowLogger.endActivity(Status.FAILED);
			throw ex;
		}
		LOGGER.info("Updated Secret {} in namespace {}", name, namespace);
		WorkflowLogger.endActivity(Status.DONE);
		return true;
	}

	@Override
	public V1Secret get(ApiClient apiClient, String name, String namespace) throws HyscaleException {
		V1Secret v1Secret = null;
		CoreV1Api apiInstance = new CoreV1Api(apiClient);
		try {
			v1Secret = apiInstance.readNamespacedSecret(name, namespace, DeployerConstants.TRUE, null, null);
		} catch (ApiException e) {
			HyscaleException ex = ExceptionHelper.buildGetException(getKind(), e, ResourceOperation.GET);
			LOGGER.error("Error while fetching Secret {} in namespace {}, error {}", name, namespace, ex.toString());
			throw ex;
		}
		return v1Secret;
	}

	@Override
	public List getBySelector(ApiClient apiClient, String selector, boolean label, String namespace)
			throws HyscaleException {
		CoreV1Api coreV1Api = new CoreV1Api(apiClient);
		List v1Secrets = null;
		try {
			String labelSelector = label ? selector : null;
			String fieldSelector = label ? null : selector;
			V1SecretList v1SecretList = coreV1Api.listNamespacedSecret(namespace, DeployerConstants.TRUE, null, null,fieldSelector,
					labelSelector, null, null, null, null);
			v1Secrets = v1SecretList != null ? v1SecretList.getItems() : null;
		} catch (ApiException e) {
			HyscaleException ex = ExceptionHelper.buildGetException(getKind(), e, ResourceOperation.GET_BY_SELECTOR);
			LOGGER.error("Error while listing Secrets in namespace {}, with selectors {}, error {} ", namespace,
					selector, ex.toString());
			throw ex;
		}
		return v1Secrets;
	}

	@Override
	public boolean patch(ApiClient apiClient, String name, String namespace, V1Secret target) throws HyscaleException {
		if (target == null) {
			LOGGER.debug("Cannot patch null Secret");
			return false;
		}
		CoreV1Api coreV1Api = new CoreV1Api(apiClient);
		target.getMetadata().putAnnotationsItem(AnnotationKey.K8S_HYSCALE_LAST_APPLIED_CONFIGURATION.getAnnotation(),
				GsonProviderUtil.getPrettyGsonBuilder().toJson(target));
		V1Secret sourceSecret = null;
		try {
			sourceSecret = get(apiClient, name, namespace);
		} catch (HyscaleException e) {
			LOGGER.debug("Error while getting Secret {} in namespace {} for Patch, creating new", name, namespace);
			V1Secret secret = create(apiClient, target, namespace);
			return secret != null;
		}
		WorkflowLogger.startActivity(DeployerActivity.DEPLOYING_SECRETS);
		Object patchObject = null;
		String lastAppliedConfig = sourceSecret.getMetadata().getAnnotations()
				.get(AnnotationKey.K8S_HYSCALE_LAST_APPLIED_CONFIGURATION.getAnnotation());
		try {
			patchObject = K8sResourcePatchUtil.getJsonPatch(GsonProviderUtil.getPrettyGsonBuilder().fromJson(lastAppliedConfig, V1Secret.class), target,
					V1Secret.class);
			V1Patch v1Patch = new V1Patch(patchObject.toString());
			coreV1Api.patchNamespacedSecret(name, namespace, v1Patch, DeployerConstants.TRUE, null, null,null);
		} catch (HyscaleException ex) {
			LOGGER.error("Error while creating patch for Secret {}, source {}, target {}, error {}", name, sourceSecret,
					target, ex.toString());
			WorkflowLogger.endActivity(Status.FAILED);
			throw ex;
		} catch (ApiException e) {
			HyscaleException ex = new HyscaleException(e, DeployerErrorCodes.FAILED_TO_PATCH_RESOURCE,
					ExceptionHelper.getExceptionMessage(getKind(), e, ResourceOperation.PATCH));
			LOGGER.error("Error while patching Secret {} in namespace {} , error {}", name, namespace, ex.toString());
			WorkflowLogger.endActivity(Status.FAILED);
			throw ex;
		}
		WorkflowLogger.endActivity(Status.DONE);
		return true;
	}

	@Override
	public boolean delete(ApiClient apiClient, String name, String namespace, boolean wait) throws HyscaleException {
		ActivityContext activityContext = new ActivityContext(DeployerActivity.DELETING_SECRETS);
		WorkflowLogger.startActivity(activityContext);
		try {
		    delete(apiClient, name, namespace);
			List secretList = Lists.newArrayList();
			secretList.add(name);
			if (wait) {
				waitForResourceDeletion(apiClient, secretList, namespace, activityContext);
			}
		} catch (ApiException e) {
			if (e.getCode() == 404) {
				WorkflowLogger.endActivity(activityContext, Status.NOT_FOUND);
				return false;
			}
			HyscaleException ex = new HyscaleException(e, DeployerErrorCodes.FAILED_TO_DELETE_RESOURCE,
					ExceptionHelper.getExceptionMessage(getKind(), e, ResourceOperation.DELETE));
			LOGGER.error("Error while deleting Secret {} in namespace {}, error {}", name, namespace, ex.toString());
			WorkflowLogger.endActivity(activityContext, Status.FAILED);
			throw ex;
		}
		LOGGER.info("Deleted Secret {} in namespace {}", name, namespace);
		WorkflowLogger.endActivity(activityContext, Status.DONE);
		return true;
	}

    private void delete(ApiClient apiClient, String name, String namespace) throws ApiException {
        CoreV1Api coreV1Api = new CoreV1Api(apiClient);
        V1DeleteOptions deleteOptions = getDeleteOptions();
        try {
            coreV1Api.deleteNamespacedSecret(name, namespace, DeployerConstants.TRUE, null, null, null, null,
                    deleteOptions);
        } catch (JsonSyntaxException e) {
            // K8s end exception ignore
        }
    }

	@Override
	public boolean deleteBySelector(ApiClient apiClient, String selector, boolean label, String namespace, boolean wait)
			throws HyscaleException {
		try {
			List v1SecretList = getBySelector(apiClient, selector, label, namespace);
			if (v1SecretList == null || v1SecretList.isEmpty()) {
			    return false;
			}
			for (V1Secret V1Secret : v1SecretList) {
				delete(apiClient, V1Secret.getMetadata().getName(), namespace, wait);
			}
		} catch (HyscaleException e) {
			if (DeployerErrorCodes.RESOURCE_NOT_FOUND.equals(e.getHyscaleError())) {
				LOGGER.error("Error while deleting Secrets for selector {} in namespace {}, error {}", selector,
						namespace, e.toString());
				return false;
			}
			throw e;
		}
		return true;
	}

	@Override
	public String getKind() {
		return ResourceKind.SECRET.getKind();
	}

	@Override
	public boolean cleanUp() {
		return true;
	}

	@Override
	public int getWeight() {
	    return ResourceKind.SECRET.getWeight();
	}

}