mirror of
https://github.com/rancher/rke.git
synced 2025-06-23 14:07:13 +00:00
1427df6b34
Restructer k8s Move getClusterCerts from SetUpAuthintication to GetClusterState Update cluster.yaml
48 lines
1.3 KiB
Go
48 lines
1.3 KiB
Go
package k8s
|
|
|
|
import (
|
|
"k8s.io/api/core/v1"
|
|
apierrors "k8s.io/apimachinery/pkg/api/errors"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/client-go/kubernetes"
|
|
)
|
|
|
|
func GetSecret(k8sClient *kubernetes.Clientset, secretName string) (*v1.Secret, error) {
|
|
return k8sClient.CoreV1().Secrets(metav1.NamespaceSystem).Get(secretName, metav1.GetOptions{})
|
|
}
|
|
|
|
func UpdateSecret(k8sClient *kubernetes.Clientset, fieldName string, secretData []byte, secretName string) error {
|
|
secret := &v1.Secret{
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: secretName,
|
|
Namespace: metav1.NamespaceSystem,
|
|
},
|
|
Data: map[string][]byte{
|
|
fieldName: secretData,
|
|
},
|
|
}
|
|
if _, err := k8sClient.CoreV1().Secrets(metav1.NamespaceSystem).Create(secret); err != nil {
|
|
if !apierrors.IsAlreadyExists(err) {
|
|
return err
|
|
}
|
|
// update secret if its already exist
|
|
oldSecret, err := k8sClient.CoreV1().Secrets(metav1.NamespaceSystem).Get(secretName, metav1.GetOptions{})
|
|
if err != nil {
|
|
return err
|
|
}
|
|
newData := oldSecret.Data
|
|
newData[fieldName] = secretData
|
|
secret := &v1.Secret{
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: secretName,
|
|
Namespace: metav1.NamespaceSystem,
|
|
},
|
|
Data: newData,
|
|
}
|
|
if _, err := k8sClient.CoreV1().Secrets(metav1.NamespaceSystem).Update(secret); err != nil {
|
|
return err
|
|
}
|
|
}
|
|
return nil
|
|
}
|