mirror of
https://github.com/lensapp/lens.git
synced 2025-05-20 05:10:56 +00:00
303 lines
9.5 KiB
TypeScript
303 lines
9.5 KiB
TypeScript
import url, { UrlWithStringQuery } from "url"
|
|
import type { ClusterId, ClusterModel, ClusterPreferences } from "../common/cluster-store"
|
|
import type { FeatureStatusMap } from "./feature"
|
|
import { action, observable, toJS } from "mobx";
|
|
import { ContextHandler } from "./context-handler"
|
|
import { AuthorizationV1Api, CoreV1Api, KubeConfig, V1ResourceAttributes } from "@kubernetes/client-node"
|
|
import { Kubectl } from "./kubectl";
|
|
import { KubeconfigManager } from "./kubeconfig-manager"
|
|
import { getNodeWarningConditions, podHasIssues } from "./k8s"
|
|
import { getFeatures, installFeature, uninstallFeature, upgradeFeature } from "./feature-manager";
|
|
import request, { RequestPromiseOptions } from "request-promise-native"
|
|
import logger from "./logger"
|
|
|
|
enum ClusterStatus {
|
|
AccessGranted = 2,
|
|
AccessDenied = 1,
|
|
Offline = 0
|
|
}
|
|
|
|
export interface ClusterState extends ClusterModel {
|
|
url: string;
|
|
online?: boolean;
|
|
accessible?: boolean;
|
|
failureReason?: string;
|
|
nodes?: number;
|
|
eventCount?: number;
|
|
version?: string;
|
|
distribution?: string;
|
|
isAdmin?: boolean;
|
|
features?: FeatureStatusMap;
|
|
}
|
|
|
|
export class Cluster implements ClusterModel {
|
|
public kubeCtl: Kubectl
|
|
public contextHandler: ContextHandler;
|
|
protected kubeconfigManager: KubeconfigManager;
|
|
|
|
@observable initialized = false;
|
|
@observable id: ClusterId;
|
|
@observable workspace: string;
|
|
@observable kubeConfig?: string;
|
|
@observable kubeConfigPath: string;
|
|
@observable contextName: string;
|
|
@observable port: number;
|
|
@observable url: string; // cluster-api url
|
|
@observable apiUrl: UrlWithStringQuery; // same as url, but parsed
|
|
@observable kubeAuthProxyUrl: string;
|
|
@observable webContentUrl: string;
|
|
@observable online: boolean;
|
|
@observable accessible: boolean;
|
|
@observable failureReason: string;
|
|
@observable nodes: number;
|
|
@observable version: string;
|
|
@observable distribution: string;
|
|
@observable isAdmin: boolean;
|
|
@observable eventCount: number; // todo: auto-fetch every 3s and push updates to client (?)
|
|
@observable preferences: ClusterPreferences = {};
|
|
@observable features: FeatureStatusMap = {};
|
|
|
|
constructor(model: ClusterModel) {
|
|
this.updateModel(model);
|
|
}
|
|
|
|
updateModel(model: ClusterModel) {
|
|
Object.assign(this, model);
|
|
}
|
|
|
|
@action
|
|
// fixme: completely broken
|
|
async init() {
|
|
try {
|
|
this.contextHandler = new ContextHandler(this);
|
|
this.contextName = this.contextHandler.contextName;
|
|
this.port = await this.contextHandler.resolveProxyPort(); // resolve port before KubeconfigManager
|
|
this.webContentUrl = `http://${this.id}.localhost:${this.port}`;
|
|
this.kubeAuthProxyUrl = `http://127.0.0.1:${this.port}`;
|
|
this.kubeconfigManager = new KubeconfigManager(this);
|
|
this.url = this.kubeconfigManager.getCurrentClusterServer();
|
|
this.apiUrl = url.parse(this.url);
|
|
logger.info(`[CLUSTER]: init success`, {
|
|
id: this.id,
|
|
port: this.port,
|
|
url: this.url,
|
|
webContentUrl: this.webContentUrl,
|
|
kubeAuthProxyUrl: this.kubeAuthProxyUrl,
|
|
});
|
|
this.initialized = true;
|
|
} catch (err) {
|
|
logger.error(`[CLUSTER]: init error`, {
|
|
id: this.id,
|
|
error: err.stack,
|
|
});
|
|
}
|
|
}
|
|
|
|
stop() {
|
|
if (!this.initialized) return;
|
|
this.contextHandler.stopServer();
|
|
this.kubeconfigManager.unlink();
|
|
}
|
|
|
|
// todo: auto-refresh when preferences changed + by timer?
|
|
@action
|
|
async refreshCluster() {
|
|
this.contextHandler.setClusterPreferences(this.preferences);
|
|
|
|
const connectionStatus = await this.getConnectionStatus()
|
|
this.accessible = connectionStatus == ClusterStatus.AccessGranted;
|
|
this.online = connectionStatus > ClusterStatus.Offline;
|
|
|
|
if (this.accessible) {
|
|
this.distribution = this.detectKubernetesDistribution(this.version)
|
|
this.features = await getFeatures(this)
|
|
this.isAdmin = await this.isClusterAdmin()
|
|
this.nodes = await this.getNodeCount()
|
|
this.kubeCtl = new Kubectl(this.version)
|
|
this.kubeCtl.ensureKubectl()
|
|
}
|
|
this.eventCount = await this.getEventCount();
|
|
}
|
|
|
|
proxyKubeconfigPath() {
|
|
return this.kubeconfigManager.getPath()
|
|
}
|
|
|
|
proxyKubeconfig() {
|
|
const kc = new KubeConfig()
|
|
kc.loadFromFile(this.proxyKubeconfigPath())
|
|
return kc
|
|
}
|
|
|
|
async installFeature(name: string, config: any) {
|
|
await installFeature(name, this, config)
|
|
await this.refreshCluster()
|
|
}
|
|
|
|
async upgradeFeature(name: string, config: any) {
|
|
await upgradeFeature(name, this, config)
|
|
await this.refreshCluster()
|
|
}
|
|
|
|
async uninstallFeature(name: string) {
|
|
await uninstallFeature(name, this)
|
|
await this.refreshCluster()
|
|
}
|
|
|
|
getPrometheusApiPrefix() {
|
|
return this.preferences.prometheus?.prefix || ""
|
|
}
|
|
|
|
k8sRequest(path: string, options: RequestPromiseOptions = {}) {
|
|
return request(this.kubeAuthProxyUrl + path, {
|
|
json: true,
|
|
timeout: 10000,
|
|
headers: {
|
|
...(options.headers || {}),
|
|
host: `${this.id}.localhost:${this.port}`,
|
|
}
|
|
})
|
|
}
|
|
|
|
protected async getConnectionStatus() {
|
|
try {
|
|
const response = await this.k8sRequest("/version")
|
|
this.version = response.gitVersion
|
|
this.failureReason = null
|
|
return ClusterStatus.AccessGranted;
|
|
} catch (error) {
|
|
logger.error(`Failed to connect cluster "${this.contextName}": ${error.stack}`)
|
|
if (error.statusCode) {
|
|
if (error.statusCode >= 400 && error.statusCode < 500) {
|
|
this.failureReason = "Invalid credentials";
|
|
return ClusterStatus.AccessDenied;
|
|
} else {
|
|
this.failureReason = error.error || error.message;
|
|
return ClusterStatus.Offline;
|
|
}
|
|
} else if (error.failed === true) {
|
|
if (error.timedOut === true) {
|
|
this.failureReason = "Connection timed out";
|
|
return ClusterStatus.Offline;
|
|
} else {
|
|
this.failureReason = "Failed to fetch credentials";
|
|
return ClusterStatus.AccessDenied;
|
|
}
|
|
}
|
|
this.failureReason = error.message;
|
|
return ClusterStatus.Offline;
|
|
}
|
|
}
|
|
|
|
async canI(resourceAttributes: V1ResourceAttributes): Promise<boolean> {
|
|
const authApi = this.proxyKubeconfig().makeApiClient(AuthorizationV1Api)
|
|
try {
|
|
const accessReview = await authApi.createSelfSubjectAccessReview({
|
|
apiVersion: "authorization.k8s.io/v1",
|
|
kind: "SelfSubjectAccessReview",
|
|
spec: { resourceAttributes }
|
|
})
|
|
return accessReview.body.status.allowed === true
|
|
} catch (error) {
|
|
logger.error(`failed to request selfSubjectAccessReview: ${error.message}`)
|
|
return false
|
|
}
|
|
}
|
|
|
|
async isClusterAdmin(): Promise<boolean> {
|
|
return this.canI({
|
|
namespace: "kube-system",
|
|
resource: "*",
|
|
verb: "create",
|
|
})
|
|
}
|
|
|
|
protected detectKubernetesDistribution(kubernetesVersion: string): string {
|
|
if (kubernetesVersion.includes("gke")) return "gke"
|
|
if (kubernetesVersion.includes("eks")) return "eks"
|
|
if (kubernetesVersion.includes("IKS")) return "iks"
|
|
if (this.url.endsWith("azmk8s.io")) return "aks"
|
|
if (this.url.endsWith("k8s.ondigitalocean.com")) return "digitalocean"
|
|
if (this.contextName.startsWith("minikube")) return "minikube"
|
|
if (kubernetesVersion.includes("+")) return "custom"
|
|
return "vanilla"
|
|
}
|
|
|
|
protected async getNodeCount() {
|
|
try {
|
|
const response = await this.k8sRequest("/api/v1/nodes")
|
|
return response.items.length
|
|
} catch (error) {
|
|
logger.debug(`failed to request node list: ${error.message}`)
|
|
return null
|
|
}
|
|
}
|
|
|
|
async getEventCount(): Promise<number> {
|
|
if (!this.isAdmin) {
|
|
return 0;
|
|
}
|
|
const client = this.proxyKubeconfig().makeApiClient(CoreV1Api);
|
|
try {
|
|
const response = await client.listEventForAllNamespaces(false, null, null, null, 1000);
|
|
const uniqEventSources = new Set();
|
|
const warnings = response.body.items.filter(e => e.type !== 'Normal');
|
|
for (const w of warnings) {
|
|
if (w.involvedObject.kind === 'Pod') {
|
|
try {
|
|
const pod = (await client.readNamespacedPod(w.involvedObject.name, w.involvedObject.namespace)).body;
|
|
logger.debug(`checking pod ${w.involvedObject.namespace}/${w.involvedObject.name}`)
|
|
if (podHasIssues(pod)) {
|
|
uniqEventSources.add(w.involvedObject.uid);
|
|
}
|
|
} catch (err) {
|
|
}
|
|
} else {
|
|
uniqEventSources.add(w.involvedObject.uid);
|
|
}
|
|
}
|
|
let nodeNotificationCount = 0;
|
|
const nodes = (await client.listNode()).body.items;
|
|
nodes.map(n => {
|
|
nodeNotificationCount = nodeNotificationCount + getNodeWarningConditions(n).length
|
|
});
|
|
return uniqEventSources.size + nodeNotificationCount;
|
|
} catch (error) {
|
|
logger.error("Failed to fetch event count: " + JSON.stringify(error))
|
|
return 0;
|
|
}
|
|
}
|
|
|
|
toJSON(): ClusterModel {
|
|
return toJS({
|
|
id: this.id,
|
|
contextName: this.contextName,
|
|
kubeConfigPath: this.kubeConfigPath,
|
|
workspace: this.workspace,
|
|
preferences: this.preferences,
|
|
}, {
|
|
recurseEverything: true
|
|
})
|
|
}
|
|
|
|
// todo: use for push-updates to lens view
|
|
getState(): ClusterState {
|
|
const storeModel = this.toJSON();
|
|
return toJS({
|
|
...storeModel,
|
|
url: this.url,
|
|
online: this.online,
|
|
accessible: this.accessible,
|
|
failureReason: this.failureReason,
|
|
nodes: this.nodes,
|
|
version: this.version,
|
|
distribution: this.distribution,
|
|
isAdmin: this.isAdmin,
|
|
features: this.features,
|
|
eventCount: this.eventCount,
|
|
}, {
|
|
recurseEverything: true
|
|
})
|
|
}
|
|
}
|