steve/pkg/ext/store.go

package ext

import (
	"context"

	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
	"k8s.io/apimachinery/pkg/runtime"
	"k8s.io/apimachinery/pkg/runtime/schema"
	"k8s.io/apimachinery/pkg/watch"
	"k8s.io/apiserver/pkg/authentication/user"
	"k8s.io/apiserver/pkg/authorization/authorizer"
)

// Context wraps a context.Context and adds a few fields that will be useful for
// each requests handled by a Store.
//
// It will allow us to add more such fields without breaking Store implementation.
type Context struct {
	context.Context

	// User is the user making the request
	User user.Info
	// Authorizer helps you determines if a user is authorized to perform
	// actions to specific resources.
	Authorizer authorizer.Authorizer
	// GroupVersionResource is the GVR of the request.
	// It makes it easy to create errors such as in:
	//     apierrors.NewNotFound(ctx.GroupVersionResource.GroupResource(), name)
	GroupVersionResource schema.GroupVersionResource
}

// Store should provide all required operations to serve a given resource. A
// resource is defined by the resource itself (T) and a list type for the resource (TList).
// For example, Store[*Token, *TokenList] is a store that allows CRUD operations on *Token
// objects and allows listing tokens in a *TokenList object.
//
// Store does not define the backing storage for a resource. The storage is
// up to the implementer. For example, resources could be stored in another ETCD
// database, in a SQLite database, in another built-in resource such as Secrets.
// It is also possible to have no storage at all.
//
// Errors returned by the Store should use errors from k8s.io/apimachinery/pkg/api/errors. This
// will ensure that the right error will be returned to the clients (eg: kubectl, client-go) so
// they can react accordingly. For example, if an object is not found, store should
// return the following error:
//
//	apierrors.NewNotFound(ctx.GroupVersionResource.GroupResource(), name)
//
// Stores should make use of the various metav1.*Options as best as possible.
// Those options are the same options coming from client-go or kubectl, generally
// meant to control the behavior of the stores. Note: We currently don't have
// field-manager enabled.
type Store[T runtime.Object, TList runtime.Object] interface {
	// Create should store the resource to some backing storage.
	//
	// It can apply modifications as necessary before storing it. It must
	// return a resource of the type of the store, but can
	// create/update/delete arbitrary objects in Kubernetes without
	// returning them to the user.
	//
	// It is called either when a request creates a resource, or when a
	// request updates a resource that doesn't exist.
	Create(ctx Context, obj T, opts *metav1.CreateOptions) (T, error)
	// Update should overwrite a resource that is present in the backing storage.
	//
	// It can apply modifications as necessary before storing it. It must
	// return a resource of the type of the store, but can
	// create/update/delete arbitrary objects in Kubernetes without
	// returning them to the user.
	//
	// It is called when a request updates a resource (eg: through a patch or update request)
	Update(ctx Context, obj T, opts *metav1.UpdateOptions) (T, error)
	// Get retrieves the resource with the given name from the backing storage.
	//
	// Get is called for the following requests:
	// - get requests: The object must be returned.
	// - update requests: The object is needed to apply a JSON patch and to make some validation on the change.
	// - delete requests: The object is needed to make some validation on it.
	Get(ctx Context, name string, opts *metav1.GetOptions) (T, error)
	// List retrieves all resources matching the given ListOptions from the backing storage.
	List(ctx Context, opts *metav1.ListOptions) (TList, error)
	// Watch sends change events to a returned channel.
	//
	// The store is responsible for closing the channel.
	Watch(ctx Context, opts *metav1.ListOptions) (<-chan WatchEvent[T], error)
	// Delete deletes the resource of the given name from the backing storage.
	Delete(ctx Context, name string, opts *metav1.DeleteOptions) error
}

type WatchEvent[T runtime.Object] struct {
	Event  watch.EventType
	Object T
}
Implement /ext in Steve for Imperative API (#287) This implements the Imperative API that is served at /ext with Steve. The imperative API is compatible with Kubernetes' API server and will be used as an extension API server. 2024-10-11 19:19:27 +00:00			`package ext`

			`import (`
			`"context"`

			`metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"`
			`"k8s.io/apimachinery/pkg/runtime"`
			`"k8s.io/apimachinery/pkg/runtime/schema"`
			`"k8s.io/apimachinery/pkg/watch"`
			`"k8s.io/apiserver/pkg/authentication/user"`
			`"k8s.io/apiserver/pkg/authorization/authorizer"`
			`)`

			`// Context wraps a context.Context and adds a few fields that will be useful for`
			`// each requests handled by a Store.`
			`//`
			`// It will allow us to add more such fields without breaking Store implementation.`
			`type Context struct {`
			`context.Context`

			`// User is the user making the request`
			`User user.Info`
			`// Authorizer helps you determines if a user is authorized to perform`
			`// actions to specific resources.`
			`Authorizer authorizer.Authorizer`
			`// GroupVersionResource is the GVR of the request.`
			`// It makes it easy to create errors such as in:`
			`// apierrors.NewNotFound(ctx.GroupVersionResource.GroupResource(), name)`
			`GroupVersionResource schema.GroupVersionResource`
			`}`

			`// Store should provide all required operations to serve a given resource. A`
			`// resource is defined by the resource itself (T) and a list type for the resource (TList).`
			`// For example, Store[Token, TokenList] is a store that allows CRUD operations on *Token`
			`// objects and allows listing tokens in a *TokenList object.`
			`//`
			`// Store does not define the backing storage for a resource. The storage is`
			`// up to the implementer. For example, resources could be stored in another ETCD`
			`// database, in a SQLite database, in another built-in resource such as Secrets.`
			`// It is also possible to have no storage at all.`
			`//`
			`// Errors returned by the Store should use errors from k8s.io/apimachinery/pkg/api/errors. This`
			`// will ensure that the right error will be returned to the clients (eg: kubectl, client-go) so`
			`// they can react accordingly. For example, if an object is not found, store should`
			`// return the following error:`
			`//`
			`// apierrors.NewNotFound(ctx.GroupVersionResource.GroupResource(), name)`
			`//`
			`// Stores should make use of the various metav1.*Options as best as possible.`
			`// Those options are the same options coming from client-go or kubectl, generally`
			`// meant to control the behavior of the stores. Note: We currently don't have`
			`// field-manager enabled.`
			`type Store[T runtime.Object, TList runtime.Object] interface {`
			`// Create should store the resource to some backing storage.`
			`//`
			`// It can apply modifications as necessary before storing it. It must`
			`// return a resource of the type of the store, but can`
			`// create/update/delete arbitrary objects in Kubernetes without`
			`// returning them to the user.`
			`//`
			`// It is called either when a request creates a resource, or when a`
			`// request updates a resource that doesn't exist.`
			`Create(ctx Context, obj T, opts *metav1.CreateOptions) (T, error)`
			`// Update should overwrite a resource that is present in the backing storage.`
			`//`
			`// It can apply modifications as necessary before storing it. It must`
			`// return a resource of the type of the store, but can`
			`// create/update/delete arbitrary objects in Kubernetes without`
			`// returning them to the user.`
			`//`
			`// It is called when a request updates a resource (eg: through a patch or update request)`
			`Update(ctx Context, obj T, opts *metav1.UpdateOptions) (T, error)`
			`// Get retrieves the resource with the given name from the backing storage.`
			`//`
			`// Get is called for the following requests:`
			`// - get requests: The object must be returned.`
			`// - update requests: The object is needed to apply a JSON patch and to make some validation on the change.`
			`// - delete requests: The object is needed to make some validation on it.`
			`Get(ctx Context, name string, opts *metav1.GetOptions) (T, error)`
			`// List retrieves all resources matching the given ListOptions from the backing storage.`
			`List(ctx Context, opts *metav1.ListOptions) (TList, error)`
			`// Watch sends change events to a returned channel.`
			`//`
			`// The store is responsible for closing the channel.`
			`Watch(ctx Context, opts *metav1.ListOptions) (<-chan WatchEvent[T], error)`
			`// Delete deletes the resource of the given name from the backing storage.`
			`Delete(ctx Context, name string, opts *metav1.DeleteOptions) error`
			`}`

			`type WatchEvent[T runtime.Object] struct {`
			`Event watch.EventType`
			`Object T`
			`}`