Merge pull request #7 from brendandburns/config2

Add support for kubeconfig based client creation.

Author: mbohlool

examples/pom.xml

@@ -14,5 +14,10 @@
 			<artifactId>client-java</artifactId>
 			<version>1.0-SNAPSHOT</version>
 		</dependency>
+		<dependency>
+			<groupId>io.kubernetes</groupId>
+			<artifactId>client-java-util</artifactId>
+			<version>1.0-SNAPSHOT</version>
+		</dependency>
 	</dependencies>
 </project>

examples/src/main/java/io/kubernetes/client/examples/Example.java

@@ -6,6 +6,9 @@
 import io.kubernetes.client.apis.CoreV1Api;
 import io.kubernetes.client.models.V1Pod;
 import io.kubernetes.client.models.V1PodList;
+import io.kubernetes.client.util.Config;
+
+import java.io.IOException;
 
 /**
  * A simple example of how to use the Java API
@@ -18,9 +21,14 @@
  * From inside $REPO_DIR/kubernetes
  */
 public class Example {
-    public static void main(String[] args) throws ApiException{
-        ApiClient client = new ApiClient();
-        client.setBasePath("http://localhost:8001");
+    public static void main(String[] args) throws IOException, ApiException{
+        ApiClient client;
+        if (args.length == 0) {
+            client = new ApiClient();
+            client.setBasePath("http://localhost:8001");
+        } else {
+            client = Config.fromConfig(args[0]);
+        }
         Configuration.setDefaultApiClient(client);
 
         CoreV1Api api = new CoreV1Api();

kubernetes/.swagger-codegen-ignore

@@ -1,3 +1,7 @@
 .gitignore
 git_push.sh
+# Remove this once swagger-codegen 2.2.3 is released and we update. 
+# We want https://github.com/swagger-api/swagger-codegen/pull/5629
+# in the release.
+src/main/java/io/kubernetes/client/ApiClient.java
 

kubernetes/src/main/java/io/kubernetes/client/ApiClient.java

@@ -64,7 +64,6 @@
 
 import javax.net.ssl.HostnameVerifier;
 import javax.net.ssl.KeyManager;
-import javax.net.ssl.KeyManagerFactory;
 import javax.net.ssl.SSLContext;
 import javax.net.ssl.SSLSession;
 import javax.net.ssl.TrustManager;
@@ -127,6 +126,7 @@ public class ApiClient {
 
     private InputStream sslCaCert;
     private boolean verifyingSsl;
+    private KeyManager[] keyManagers;
 
     private OkHttpClient httpClient;
     private JSON json;
@@ -271,6 +271,12 @@ public ApiClient setSslCaCert(InputStream sslCaCert) {
         return this;
     }
 
+    public ApiClient setKeyManagers(KeyManager[] managers) {
+        this.keyManagers = managers;
+        applySslSettings();
+        return this;
+    }
+
     public DateFormat getDateFormat() {
         return dateFormat;
     }
@@ -1252,7 +1258,6 @@ private void initDatetimeFormat() {
      */
     private void applySslSettings() {
         try {
-            KeyManager[] keyManagers = null;
             TrustManager[] trustManagers = null;
             HostnameVerifier hostnameVerifier = null;
             if (!verifyingSsl) {

util/pom.xml

@@ -14,5 +14,28 @@
 			<artifactId>client-java</artifactId>
 			<version>1.0-SNAPSHOT</version>
 		</dependency>
+		<dependency>
+			<groupId>org.yaml</groupId>
+			<artifactId>snakeyaml</artifactId>
+			<version>1.18</version>
+		</dependency>
+		<dependency>
+			<groupId>commons-codec</groupId>
+			<artifactId>commons-codec</artifactId>
+			<version>1.10</version>
+		</dependency>
 	</dependencies>
-</project>
+	<build>
+		<plugins>
+			<plugin>
+				<groupId>org.apache.maven.plugins</groupId>
+				<artifactId>maven-compiler-plugin</artifactId>
+				<version>3.1</version>
+				<configuration>
+					<source>1.7</source>
+					<target>1.7</target>
+				</configuration>
+			</plugin>
+		</plugins>
+	</build>
+</project>

util/src/main/java/io/kubernetes/client/util/Config.java

@@ -3,9 +3,19 @@
 import io.kubernetes.client.ApiClient;
 
 import java.io.BufferedReader;
+import java.io.ByteArrayInputStream;
 import java.io.FileReader;
 import java.io.FileInputStream;
+import java.io.FileNotFoundException;
+import java.io.InputStream;
+import java.io.InputStreamReader;
 import java.io.IOException;
+import java.io.Reader;
+import java.io.UnsupportedEncodingException;
+import java.util.List;
+
+import javax.net.ssl.KeyManager;
+import javax.net.ssl.KeyManagerFactory;
 
 public class Config {
     private static final String SERVICEACCOUNT_ROOT =
@@ -63,4 +73,68 @@ public static ApiClient fromToken(String url, String token, boolean validateSSL)
         client.setAccessToken(token);
         return client;
     }
+
+    public static ApiClient fromConfig(String fileName) throws IOException {
+        return fromConfig(new FileReader(fileName));
+    }
+
+    public static ApiClient fromConfig(InputStream stream) {
+        return fromConfig(new InputStreamReader(stream));
+    }
+
+    public static ApiClient fromConfig(Reader input) {
+        KubeConfig config = KubeConfig.loadKubeConfig(input);
+        ApiClient client = new ApiClient();
+        client.setBasePath(config.getServer());
+
+        try {
+            KeyManager[] mgrs = SSLUtils.keyManagers(
+                config.getClientCertificateData(),
+                config.getClientCertificateFile(),
+                config.getClientKeyData(),
+                config.getClientKeyFile(),
+                "RSA", "",
+                null, null);
+            client.setKeyManagers(mgrs);
+        } catch (Exception ex) {
+            ex.printStackTrace();
+        }
+
+        // It's silly to have to do it in this order, but each SSL setup
+        // consumes the CA cert, so if we do this before the client certs
+        // are injected the cert input stream is exhausted and things get
+        // grumpy'
+        String caCert = config.getCertificateAuthorityData();
+        String caCertFile = config.getCertificateAuthorityFile();
+        if (caCert != null) {
+            try {
+                client.setSslCaCert(new ByteArrayInputStream(caCert.getBytes("UTF-8")));
+            } catch (UnsupportedEncodingException ex) {
+                ex.printStackTrace();
+            }
+        } else if (caCertFile != null) {
+            try {
+                client.setSslCaCert(new FileInputStream(caCertFile));
+            } catch (FileNotFoundException ex) {
+                ex.printStackTrace();
+            }
+        }
+
+        String token = config.getAccessToken();
+        if (token != null) {
+            client.setAccessToken(token);
+        }
+
+        String username = config.getUsername();
+        if (username != null) {
+            client.setUsername(username);
+        }
+
+        String password = config.getPassword();
+        if (password != null) {
+            client.setPassword(password);
+        }
+
+        return client;
+    }
 }

util/src/main/java/io/kubernetes/client/util/KubeConfig.java

@@ -0,0 +1,149 @@
+package io.kubernetes.client.util;
+
+import java.io.File;
+import java.io.FileNotFoundException;
+import java.io.FileReader;
+import java.io.Reader;
+import java.util.ArrayList;
+import java.util.Map;
+
+import org.yaml.snakeyaml.Yaml;
+import org.yaml.snakeyaml.constructor.SafeConstructor;
+
+/**
+ * KubeConfig represents a kubernetes client configuration
+ */
+public class KubeConfig {
+    // Note to the reader: I considered creating a Config object
+    // and parsing into that instead of using Maps, but honestly
+    // this seemed cleaner than a bunch of boilerplate classes
+
+    private ArrayList<Object> clusters;
+    private ArrayList<Object> contexts;
+    private ArrayList<Object> users;
+    Map<String, Object> currentContext;
+    Map<String, Object> currentCluster;
+    Map<String, Object> currentUser;
+
+    /**
+     * Load a Kubernetes config from the default location
+     */
+    public static KubeConfig loadDefaultKubeConfig() throws FileNotFoundException {
+        File homeDir = new File(System.getenv("HOME"));
+        File config = new File(new File(homeDir, ".kube"), "config");
+        return loadKubeConfig(new FileReader(config));
+    }
+
+    /**
+     * Load a Kubernetes config from a Reader
+     */
+    public static KubeConfig loadKubeConfig(Reader input) {
+        Yaml yaml = new Yaml(new SafeConstructor());
+        Object config = yaml.load(input);
+        Map<String, Object> configMap = (Map<String, Object>)config;
+
+        String currentContext = (String)configMap.get("current-context");
+        ArrayList<Object> contexts = (ArrayList<Object>)configMap.get("contexts");
+        ArrayList<Object> clusters = (ArrayList<Object>)configMap.get("clusters");
+        ArrayList<Object> users = (ArrayList<Object>)configMap.get("users");
+
+        KubeConfig kubeConfig = new KubeConfig(contexts, clusters, users);
+        kubeConfig.setContext(currentContext);
+
+        return kubeConfig;
+    }
+
+    public KubeConfig(ArrayList<Object> contexts,
+        ArrayList<Object> clusters,
+        ArrayList<Object> users) {
+        this.contexts = contexts;
+        this.clusters = clusters;
+        this.users = users;
+    }
+
+    public void setContext(String context) {
+        currentCluster = null;
+        currentUser = null;
+        currentContext = (Map<String, Object>) findObject(contexts, context).get("context");
+        if (currentContext == null) {
+            return;
+        }
+        String cluster = (String) currentContext.get("cluster");
+        String user = (String) currentContext.get("user");
+
+        if (cluster != null) {
+            currentCluster = (Map<String, Object>) findObject(clusters, cluster).get("cluster");
+        }
+        if (user != null) {
+            currentUser = (Map<String, Object>) findObject(users, user).get("user");
+        }
+    }
+
+    public String getServer() {
+        return getData(currentCluster, "server");
+    }
+
+    public String getCertificateAuthorityData() {
+        return getData(currentCluster, "certificate-authority-data");
+    }
+
+    public String getCertificateAuthorityFile() {
+        return getData(currentCluster, "certificate-authority");
+    }
+
+    public String getClientCertificateFile() {
+        return getData(currentUser, "client-certificate");
+    }
+
+    public String getClientCertificateData() {
+        return getData(currentUser, "client-certificate-data");
+    }
+
+    public String getClientKeyFile() {
+        return getData(currentUser, "client-key");
+    }
+
+    public String getClientKeyData() {
+        return getData(currentUser, "client-key-data");
+    }
+
+    public String getUsername() {
+        return getData(currentUser, "username");
+    }
+
+    public String getPassword() {
+        return getData(currentUser, "password");
+    }
+
+    public String getAccessToken() {
+        if (currentUser == null) {
+            return null;
+        } 
+        Object authProvider = currentUser.get("auth-provider");
+        if (authProvider != null) {
+            Map<String, Object> authProviderMap = (Map<String, Object>) authProvider;
+            Map<String, Object> authConfig = (Map<String, Object>) authProviderMap.get("config");
+            if (authConfig != null) {
+                return (String) authConfig.get("access-token");
+            }
+        }
+        return null;
+    }
+
+    private static String getData(Map<String, Object> obj, String key) {
+        if (obj == null) {
+            return null;
+        }
+        return (String) obj.get(key);
+    }
+    
+    private static Map<String, Object> findObject(ArrayList<Object> list, String name) {
+        for (Object obj : list) {
+            Map<String, Object> map = (Map<String, Object>)obj;
+            if (name.equals((String)map.get("name"))) {
+                return map;
+            }
+        }
+        return null;
+    }
+}