package kubernetes import ( "context" "encoding/json" "slices" "strings" "github.com/kubeshark/kubeshark/config" "github.com/kubeshark/kubeshark/misc" "github.com/rs/zerolog/log" v1 "k8s.io/api/core/v1" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" ) const ( SUFFIX_SECRET = "secret" SUFFIX_CONFIG_MAP = "config-map" SECRET_LICENSE = "LICENSE" CONFIG_POD_REGEX = "POD_REGEX" CONFIG_NAMESPACES = "NAMESPACES" CONFIG_EXCLUDED_NAMESPACES = "EXCLUDED_NAMESPACES" CONFIG_SCRIPTING_ENV = "SCRIPTING_ENV" CONFIG_INGRESS_ENABLED = "INGRESS_ENABLED" CONFIG_INGRESS_HOST = "INGRESS_HOST" CONFIG_PROXY_FRONT_PORT = "PROXY_FRONT_PORT" CONFIG_AUTH_ENABLED = "AUTH_ENABLED" CONFIG_AUTH_TYPE = "AUTH_TYPE" CONFIG_AUTH_SAML_IDP_METADATA_URL = "AUTH_SAML_IDP_METADATA_URL" CONFIG_SCRIPTING_SCRIPTS = "SCRIPTING_SCRIPTS" CONFIG_SCRIPTING_ACTIVE_SCRIPTS = "SCRIPTING_ACTIVE_SCRIPTS" CONFIG_PCAP_DUMP_ENABLE = "PCAP_DUMP_ENABLE" CONFIG_TIME_INTERVAL = "TIME_INTERVAL" CONFIG_MAX_TIME = "MAX_TIME" CONFIG_MAX_SIZE = "MAX_SIZE" ) func SetSecret(provider *Provider, key string, value string) (updated bool, err error) { var secret *v1.Secret secret, err = provider.clientSet.CoreV1().Secrets(config.Config.Tap.Release.Namespace).Get(context.TODO(), SELF_RESOURCES_PREFIX+SUFFIX_SECRET, metav1.GetOptions{}) if err != nil { return } if secret.StringData[key] != value { updated = true } secret.Data[key] = []byte(value) _, err = provider.clientSet.CoreV1().Secrets(config.Config.Tap.Release.Namespace).Update(context.TODO(), secret, metav1.UpdateOptions{}) if err == nil { if updated { log.Info().Str("secret", key).Str("value", value).Msg("Updated:") } } else { log.Error().Str("secret", key).Err(err).Send() } return } func GetConfig(provider *Provider, key string) (value string, err error) { var configMap *v1.ConfigMap configMap, err = provider.clientSet.CoreV1().ConfigMaps(config.Config.Tap.Release.Namespace).Get(context.TODO(), SELF_RESOURCES_PREFIX+SUFFIX_CONFIG_MAP, metav1.GetOptions{}) if err != nil { return } value = configMap.Data[key] return } func SetConfig(provider *Provider, key string, value string) (updated bool, err error) { var configMap *v1.ConfigMap configMap, err = provider.clientSet.CoreV1().ConfigMaps(config.Config.Tap.Release.Namespace).Get(context.TODO(), SELF_RESOURCES_PREFIX+SUFFIX_CONFIG_MAP, metav1.GetOptions{}) if err != nil { return } if configMap.Data[key] != value { updated = true } configMap.Data[key] = value _, err = provider.clientSet.CoreV1().ConfigMaps(config.Config.Tap.Release.Namespace).Update(context.TODO(), configMap, metav1.UpdateOptions{}) if err == nil { if updated { log.Info(). Str("config", key). Str("value", func() string { if len(value) > 10 { return value[:10] } return value }()). Int("length", len(value)). Msg("Updated. Printing only 10 first characters of value:") } } else { log.Error().Str("config", key).Err(err).Send() } return } func ConfigGetScripts(provider *Provider) (scripts map[int64]misc.ConfigMapScript, err error) { var data string data, err = GetConfig(provider, CONFIG_SCRIPTING_SCRIPTS) if err != nil { return } err = json.Unmarshal([]byte(data), &scripts) return } func IsActiveScript(provider *Provider, title string) bool { configActiveScripts, err := GetConfig(provider, CONFIG_SCRIPTING_ACTIVE_SCRIPTS) if err != nil { return false } return strings.Contains(configActiveScripts, title) } func DeleteActiveScriptByTitle(provider *Provider, title string) (err error) { configActiveScripts, err := GetConfig(provider, CONFIG_SCRIPTING_ACTIVE_SCRIPTS) if err != nil { return err } activeScripts := strings.Split(configActiveScripts, ",") idx := slices.Index(activeScripts, title) if idx != -1 { activeScripts = slices.Delete(activeScripts, idx, idx+1) _, err = SetConfig(provider, CONFIG_SCRIPTING_ACTIVE_SCRIPTS, strings.Join(activeScripts, ",")) if err != nil { return err } } return nil }