2019-08-04 17:41:32 +00:00
|
|
|
package server
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
2020-01-31 05:37:59 +00:00
|
|
|
"errors"
|
2019-08-04 17:41:32 +00:00
|
|
|
"net/http"
|
|
|
|
|
|
2021-01-08 09:28:24 +00:00
|
|
|
apiserver "github.com/rancher/apiserver/pkg/server"
|
2020-06-12 04:50:59 +00:00
|
|
|
"github.com/rancher/apiserver/pkg/types"
|
2020-01-31 05:37:59 +00:00
|
|
|
"github.com/rancher/dynamiclistener/server"
|
2019-09-11 21:05:00 +00:00
|
|
|
"github.com/rancher/steve/pkg/accesscontrol"
|
2021-03-18 17:13:16 +00:00
|
|
|
"github.com/rancher/steve/pkg/aggregation"
|
2020-07-24 08:42:00 +00:00
|
|
|
"github.com/rancher/steve/pkg/auth"
|
2019-09-11 21:05:00 +00:00
|
|
|
"github.com/rancher/steve/pkg/client"
|
|
|
|
|
"github.com/rancher/steve/pkg/clustercache"
|
2020-01-31 05:37:59 +00:00
|
|
|
schemacontroller "github.com/rancher/steve/pkg/controllers/schema"
|
2020-06-12 04:50:59 +00:00
|
|
|
"github.com/rancher/steve/pkg/resources"
|
|
|
|
|
"github.com/rancher/steve/pkg/resources/common"
|
|
|
|
|
"github.com/rancher/steve/pkg/resources/schemas"
|
2020-01-31 05:37:59 +00:00
|
|
|
"github.com/rancher/steve/pkg/schema"
|
2023-11-27 22:10:05 +00:00
|
|
|
"github.com/rancher/steve/pkg/schema/definitions"
|
2020-01-31 05:37:59 +00:00
|
|
|
"github.com/rancher/steve/pkg/server/handler"
|
2020-07-24 08:42:00 +00:00
|
|
|
"github.com/rancher/steve/pkg/server/router"
|
2024-06-05 14:17:12 +00:00
|
|
|
metricsStore "github.com/rancher/steve/pkg/stores/metrics"
|
|
|
|
|
"github.com/rancher/steve/pkg/stores/proxy"
|
|
|
|
|
"github.com/rancher/steve/pkg/stores/sqlpartition"
|
|
|
|
|
"github.com/rancher/steve/pkg/stores/sqlproxy"
|
2020-06-22 15:49:49 +00:00
|
|
|
"github.com/rancher/steve/pkg/summarycache"
|
2020-07-24 08:42:00 +00:00
|
|
|
"k8s.io/client-go/rest"
|
2019-08-04 17:41:32 +00:00
|
|
|
)
|
|
|
|
|
|
2020-01-31 05:37:59 +00:00
|
|
|
var ErrConfigRequired = errors.New("rest config is required")
|
2019-08-04 17:41:32 +00:00
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
type Server struct {
|
|
|
|
|
http.Handler
|
|
|
|
|
|
|
|
|
|
ClientFactory *client.Factory
|
|
|
|
|
ClusterCache clustercache.ClusterCache
|
|
|
|
|
SchemaFactory schema.Factory
|
|
|
|
|
RESTConfig *rest.Config
|
|
|
|
|
BaseSchemas *types.APISchemas
|
|
|
|
|
AccessSetLookup accesscontrol.AccessSetLookup
|
2021-01-08 09:28:24 +00:00
|
|
|
APIServer *apiserver.Server
|
2021-04-02 22:51:57 +00:00
|
|
|
ClusterRegistry string
|
2021-08-10 23:09:19 +00:00
|
|
|
Version string
|
2020-07-24 08:42:00 +00:00
|
|
|
|
|
|
|
|
authMiddleware auth.Middleware
|
|
|
|
|
controllers *Controllers
|
|
|
|
|
needControllerStart bool
|
|
|
|
|
next http.Handler
|
|
|
|
|
router router.RouterFunc
|
2021-03-18 17:13:16 +00:00
|
|
|
|
|
|
|
|
aggregationSecretNamespace string
|
|
|
|
|
aggregationSecretName string
|
2024-06-05 14:17:12 +00:00
|
|
|
SQLCache bool
|
2020-07-24 08:42:00 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
type Options struct {
|
|
|
|
|
// Controllers If the controllers are passed in the caller must also start the controllers
|
2021-03-18 17:13:16 +00:00
|
|
|
Controllers *Controllers
|
|
|
|
|
ClientFactory *client.Factory
|
|
|
|
|
AccessSetLookup accesscontrol.AccessSetLookup
|
|
|
|
|
AuthMiddleware auth.Middleware
|
|
|
|
|
Next http.Handler
|
|
|
|
|
Router router.RouterFunc
|
|
|
|
|
AggregationSecretNamespace string
|
|
|
|
|
AggregationSecretName string
|
2021-04-02 22:51:57 +00:00
|
|
|
ClusterRegistry string
|
2021-08-10 23:09:19 +00:00
|
|
|
ServerVersion string
|
2025-02-04 17:41:59 +00:00
|
|
|
// SQLCache enables the SQLite-based caching mechanism
|
2024-06-05 14:17:12 +00:00
|
|
|
SQLCache bool
|
2020-07-24 08:42:00 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
func New(ctx context.Context, restConfig *rest.Config, opts *Options) (*Server, error) {
|
|
|
|
|
if opts == nil {
|
|
|
|
|
opts = &Options{}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
server := &Server{
|
2021-03-18 17:13:16 +00:00
|
|
|
RESTConfig: restConfig,
|
|
|
|
|
ClientFactory: opts.ClientFactory,
|
|
|
|
|
AccessSetLookup: opts.AccessSetLookup,
|
|
|
|
|
authMiddleware: opts.AuthMiddleware,
|
|
|
|
|
controllers: opts.Controllers,
|
|
|
|
|
next: opts.Next,
|
|
|
|
|
router: opts.Router,
|
|
|
|
|
aggregationSecretNamespace: opts.AggregationSecretNamespace,
|
|
|
|
|
aggregationSecretName: opts.AggregationSecretName,
|
2021-04-02 22:51:57 +00:00
|
|
|
ClusterRegistry: opts.ClusterRegistry,
|
2021-08-10 23:09:19 +00:00
|
|
|
Version: opts.ServerVersion,
|
2024-06-05 14:17:12 +00:00
|
|
|
// SQLCache enables the SQLite-based lasso caching mechanism
|
|
|
|
|
SQLCache: opts.SQLCache,
|
2020-07-24 08:42:00 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if err := setup(ctx, server); err != nil {
|
|
|
|
|
return nil, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return server, server.start(ctx)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-31 05:37:59 +00:00
|
|
|
func setDefaults(server *Server) error {
|
2020-07-19 20:56:34 +00:00
|
|
|
if server.RESTConfig == nil {
|
2020-01-31 05:37:59 +00:00
|
|
|
return ErrConfigRequired
|
2019-08-04 17:41:32 +00:00
|
|
|
}
|
|
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
if server.controllers == nil {
|
2020-01-31 05:37:59 +00:00
|
|
|
var err error
|
2020-07-24 08:42:00 +00:00
|
|
|
server.controllers, err = NewController(server.RESTConfig, nil)
|
|
|
|
|
server.needControllerStart = true
|
2020-01-31 05:37:59 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
2019-09-09 21:28:55 +00:00
|
|
|
}
|
|
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
if server.next == nil {
|
|
|
|
|
server.next = http.NotFoundHandler()
|
2019-08-04 17:41:32 +00:00
|
|
|
}
|
|
|
|
|
|
2020-01-31 05:37:59 +00:00
|
|
|
if server.BaseSchemas == nil {
|
|
|
|
|
server.BaseSchemas = types.EmptyAPISchemas()
|
2019-08-04 17:41:32 +00:00
|
|
|
}
|
|
|
|
|
|
2020-01-31 05:37:59 +00:00
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
func setup(ctx context.Context, server *Server) error {
|
2020-02-27 17:34:51 +00:00
|
|
|
err := setDefaults(server)
|
|
|
|
|
if err != nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
return err
|
2019-08-04 17:41:32 +00:00
|
|
|
}
|
|
|
|
|
|
2020-02-27 17:34:51 +00:00
|
|
|
cf := server.ClientFactory
|
|
|
|
|
if cf == nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
cf, err = client.NewFactory(server.RESTConfig, server.authMiddleware != nil)
|
2020-02-27 17:34:51 +00:00
|
|
|
if err != nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
return err
|
2020-02-27 17:34:51 +00:00
|
|
|
}
|
|
|
|
|
server.ClientFactory = cf
|
2019-08-04 17:41:32 +00:00
|
|
|
}
|
|
|
|
|
|
2020-02-04 21:11:21 +00:00
|
|
|
asl := server.AccessSetLookup
|
|
|
|
|
if asl == nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
asl = accesscontrol.NewAccessStore(ctx, true, server.controllers.RBAC)
|
2020-02-04 21:11:21 +00:00
|
|
|
}
|
|
|
|
|
|
2020-10-30 23:08:28 +00:00
|
|
|
ccache := clustercache.NewClusterCache(ctx, cf.AdminDynamicClient())
|
2020-07-19 20:56:34 +00:00
|
|
|
server.ClusterCache = ccache
|
2021-03-02 00:12:28 +00:00
|
|
|
sf := schema.NewCollection(ctx, server.BaseSchemas, asl)
|
2020-02-10 17:18:20 +00:00
|
|
|
|
2021-08-10 23:09:19 +00:00
|
|
|
if err = resources.DefaultSchemas(ctx, server.BaseSchemas, ccache, server.ClientFactory, sf, server.Version); err != nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
return err
|
2020-06-06 03:45:26 +00:00
|
|
|
}
|
2024-01-19 22:17:36 +00:00
|
|
|
definitions.Register(ctx, server.BaseSchemas, server.controllers.K8s.Discovery(),
|
|
|
|
|
server.controllers.CRD.CustomResourceDefinition(), server.controllers.API.APIService())
|
2020-06-06 03:45:26 +00:00
|
|
|
|
2020-10-23 21:00:11 +00:00
|
|
|
summaryCache := summarycache.New(sf, ccache)
|
|
|
|
|
summaryCache.Start(ctx)
|
2020-07-19 20:56:34 +00:00
|
|
|
cols, err := common.NewDynamicColumns(server.RESTConfig)
|
2020-02-08 20:04:20 +00:00
|
|
|
if err != nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
return err
|
2020-02-08 20:04:20 +00:00
|
|
|
}
|
|
|
|
|
|
2024-06-05 14:17:12 +00:00
|
|
|
var onSchemasHandler schemacontroller.SchemasHandlerFunc
|
|
|
|
|
if server.SQLCache {
|
2024-10-02 12:59:54 +00:00
|
|
|
s, err := sqlproxy.NewProxyStore(cols, cf, summaryCache, summaryCache, nil)
|
2024-06-05 14:17:12 +00:00
|
|
|
if err != nil {
|
|
|
|
|
panic(err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
errStore := proxy.NewErrorStore(
|
|
|
|
|
proxy.NewUnformatterStore(
|
|
|
|
|
proxy.NewWatchRefresh(
|
|
|
|
|
sqlpartition.NewStore(
|
|
|
|
|
s,
|
|
|
|
|
asl,
|
|
|
|
|
),
|
|
|
|
|
asl,
|
|
|
|
|
),
|
|
|
|
|
),
|
|
|
|
|
)
|
|
|
|
|
store := metricsStore.NewMetricsStore(errStore)
|
|
|
|
|
// end store setup code
|
|
|
|
|
|
|
|
|
|
for _, template := range resources.DefaultSchemaTemplatesForStore(store, server.BaseSchemas, summaryCache, server.controllers.K8s.Discovery()) {
|
|
|
|
|
sf.AddTemplate(template)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
onSchemasHandler = func(schemas *schema.Collection) error {
|
|
|
|
|
if err := ccache.OnSchemas(schemas); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
if err := s.Reset(); err != nil {
|
|
|
|
|
return err
|
|
|
|
|
}
|
|
|
|
|
return nil
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
for _, template := range resources.DefaultSchemaTemplates(cf, server.BaseSchemas, summaryCache, asl, server.controllers.K8s.Discovery(), server.controllers.Core.Namespace().Cache()) {
|
|
|
|
|
sf.AddTemplate(template)
|
|
|
|
|
}
|
|
|
|
|
onSchemasHandler = ccache.OnSchemas
|
|
|
|
|
}
|
|
|
|
|
|
2020-03-11 06:12:04 +00:00
|
|
|
schemas.SetupWatcher(ctx, server.BaseSchemas, asl, sf)
|
|
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
schemacontroller.Register(ctx,
|
2020-02-08 20:04:20 +00:00
|
|
|
cols,
|
2020-07-24 08:42:00 +00:00
|
|
|
server.controllers.K8s.Discovery(),
|
|
|
|
|
server.controllers.CRD.CustomResourceDefinition(),
|
|
|
|
|
server.controllers.API.APIService(),
|
|
|
|
|
server.controllers.K8s.AuthorizationV1().SelfSubjectAccessReviews(),
|
2024-06-05 14:17:12 +00:00
|
|
|
onSchemasHandler,
|
2019-08-13 23:36:03 +00:00
|
|
|
sf)
|
2019-08-04 17:41:32 +00:00
|
|
|
|
2021-01-08 09:28:24 +00:00
|
|
|
apiServer, handler, err := handler.New(server.RESTConfig, sf, server.authMiddleware, server.next, server.router)
|
2019-08-14 18:08:34 +00:00
|
|
|
if err != nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
return err
|
2020-02-22 05:18:58 +00:00
|
|
|
}
|
|
|
|
|
|
2021-01-08 09:28:24 +00:00
|
|
|
server.APIServer = apiServer
|
2020-07-24 08:42:00 +00:00
|
|
|
server.Handler = handler
|
|
|
|
|
server.SchemaFactory = sf
|
2024-06-05 14:17:12 +00:00
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
return nil
|
2020-01-31 05:37:59 +00:00
|
|
|
}
|
|
|
|
|
|
2020-07-24 08:42:00 +00:00
|
|
|
func (c *Server) start(ctx context.Context) error {
|
|
|
|
|
if c.needControllerStart {
|
|
|
|
|
if err := c.controllers.Start(ctx); err != nil {
|
|
|
|
|
return err
|
2019-09-09 21:28:55 +00:00
|
|
|
}
|
|
|
|
|
}
|
2020-07-24 08:42:00 +00:00
|
|
|
return nil
|
2020-01-31 05:37:59 +00:00
|
|
|
}
|
|
|
|
|
|
2021-05-03 22:38:46 +00:00
|
|
|
func (c *Server) StartAggregation(ctx context.Context) {
|
|
|
|
|
aggregation.Watch(ctx, c.controllers.Core.Secret(), c.aggregationSecretNamespace,
|
|
|
|
|
c.aggregationSecretName, c)
|
|
|
|
|
}
|
|
|
|
|
|
2020-01-31 22:10:47 +00:00
|
|
|
func (c *Server) ListenAndServe(ctx context.Context, httpsPort, httpPort int, opts *server.ListenOpts) error {
|
2020-01-31 05:37:59 +00:00
|
|
|
if opts == nil {
|
|
|
|
|
opts = &server.ListenOpts{}
|
2019-08-14 18:08:34 +00:00
|
|
|
}
|
2020-01-31 22:10:47 +00:00
|
|
|
if opts.Storage == nil && opts.Secrets == nil {
|
2020-07-24 08:42:00 +00:00
|
|
|
opts.Secrets = c.controllers.Core.Secret()
|
2020-01-31 05:37:59 +00:00
|
|
|
}
|
2021-05-03 22:38:46 +00:00
|
|
|
|
|
|
|
|
c.StartAggregation(ctx)
|
|
|
|
|
|
2022-11-11 22:19:32 +00:00
|
|
|
if len(opts.TLSListenerConfig.SANs) == 0 {
|
|
|
|
|
opts.TLSListenerConfig.SANs = []string{"127.0.0.1"}
|
|
|
|
|
}
|
2020-07-24 08:42:00 +00:00
|
|
|
if err := server.ListenAndServe(ctx, httpsPort, httpPort, c, opts); err != nil {
|
2020-01-31 05:37:59 +00:00
|
|
|
return err
|
|
|
|
|
}
|
2019-09-11 17:32:01 +00:00
|
|
|
|
2020-01-31 22:10:47 +00:00
|
|
|
<-ctx.Done()
|
|
|
|
|
return ctx.Err()
|
2019-09-09 21:28:55 +00:00
|
|
|
}
|
