steve/pkg/auth/cli/webhookcli.go

package cli

import (
	"os"
	"time"

	"github.com/rancher/steve/pkg/auth"
	"github.com/urfave/cli/v2"

	"k8s.io/client-go/tools/clientcmd"
)

type WebhookConfig struct {
	WebhookAuthentication bool
	WebhookKubeconfig     string
	WebhookURL            string
	CacheTTLSeconds       int
}

func (w *WebhookConfig) MustWebhookMiddleware() auth.Middleware {
	m, err := w.WebhookMiddleware()
	if err != nil {
		panic("failed to create webhook middleware: " + err.Error())
	}
	return m
}

func (w *WebhookConfig) WebhookMiddleware() (auth.Middleware, error) {
	if !w.WebhookAuthentication {
		return nil, nil
	}

	config := w.WebhookKubeconfig
	if config == "" && w.WebhookURL != "" {
		tempFile, err := auth.WebhookConfigForURL(w.WebhookURL)
		if err != nil {
			return nil, err
		}
		defer os.Remove(tempFile)
		config = tempFile
	}

	kubeConfig, err := clientcmd.BuildConfigFromFlags("", config)
	if err != nil {
		return nil, err
	}

	return auth.NewWebhookMiddleware(time.Duration(w.CacheTTLSeconds)*time.Second, kubeConfig)
}

func Flags(config *WebhookConfig) []cli.Flag {
	return []cli.Flag{
		&cli.BoolFlag{
			Name:        "webhook-auth",
			EnvVars:     []string{"WEBHOOK_AUTH"},
			Destination: &config.WebhookAuthentication,
		},
		&cli.StringFlag{
			Name:        "webhook-kubeconfig",
			EnvVars:     []string{"WEBHOOK_KUBECONFIG"},
			Destination: &config.WebhookKubeconfig,
		},
		&cli.StringFlag{
			Name:        "webhook-url",
			EnvVars:     []string{"WEBHOOK_URL"},
			Destination: &config.WebhookURL,
		},
		&cli.IntFlag{
			Name:        "webhook-cache-ttl",
			EnvVars:     []string{"WEBHOOK_CACHE_TTL"},
			Destination: &config.CacheTTLSeconds,
		},
	}
}
Refactor 2020-01-30 22:37:59 -07:00			`package cli`

			`import (`
			`"os"`
			`"time"`

			`"github.com/rancher/steve/pkg/auth"`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`"github.com/urfave/cli/v2"`

Adding validate phase to the CI Adds a validate phase to the CI which runs a linter. Also fixes linter issues discovered during the initial run 2022-10-14 15:21:17 -05:00			`"k8s.io/client-go/tools/clientcmd"`
Refactor 2020-01-30 22:37:59 -07:00			`)`

			`type WebhookConfig struct {`
			`WebhookAuthentication bool`
			`WebhookKubeconfig string`
			`WebhookURL string`
			`CacheTTLSeconds int`
			`}`

			`func (w *WebhookConfig) MustWebhookMiddleware() auth.Middleware {`
			`m, err := w.WebhookMiddleware()`
			`if err != nil {`
			`panic("failed to create webhook middleware: " + err.Error())`
			`}`
			`return m`
			`}`

			`func (w *WebhookConfig) WebhookMiddleware() (auth.Middleware, error) {`
			`if !w.WebhookAuthentication {`
			`return nil, nil`
			`}`

			`config := w.WebhookKubeconfig`
			`if config == "" && w.WebhookURL != "" {`
			`tempFile, err := auth.WebhookConfigForURL(w.WebhookURL)`
			`if err != nil {`
			`return nil, err`
			`}`
			`defer os.Remove(tempFile)`
			`config = tempFile`
			`}`

webhook setup requires rest.Config now 2022-05-25 18:49:28 -05:00			`kubeConfig, err := clientcmd.BuildConfigFromFlags("", config)`
			`if err != nil {`
			`return nil, err`
			`}`

			`return auth.NewWebhookMiddleware(time.Duration(w.CacheTTLSeconds)*time.Second, kubeConfig)`
Refactor 2020-01-30 22:37:59 -07:00			`}`

			`func Flags(config *WebhookConfig) []cli.Flag {`
			`return []cli.Flag{`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`&cli.BoolFlag{`
Refactor 2020-01-30 22:37:59 -07:00			`Name: "webhook-auth",`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`EnvVars: []string{"WEBHOOK_AUTH"},`
Refactor 2020-01-30 22:37:59 -07:00			`Destination: &config.WebhookAuthentication,`
			`},`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`&cli.StringFlag{`
Refactor 2020-01-30 22:37:59 -07:00			`Name: "webhook-kubeconfig",`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`EnvVars: []string{"WEBHOOK_KUBECONFIG"},`
Refactor 2020-01-30 22:37:59 -07:00			`Destination: &config.WebhookKubeconfig,`
			`},`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`&cli.StringFlag{`
Refactor 2020-01-30 22:37:59 -07:00			`Name: "webhook-url",`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`EnvVars: []string{"WEBHOOK_URL"},`
Refactor 2020-01-30 22:37:59 -07:00			`Destination: &config.WebhookURL,`
			`},`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`&cli.IntFlag{`
Refactor 2020-01-30 22:37:59 -07:00			`Name: "webhook-cache-ttl",`
Update urfave/cli to v2 (#523) 2025-04-08 12:46:32 -07:00			`EnvVars: []string{"WEBHOOK_CACHE_TTL"},`
Refactor 2020-01-30 22:37:59 -07:00			`Destination: &config.CacheTTLSeconds,`
			`},`
			`}`
			`}`