banzaicloud · akijakya · Sep 9, 2022 · Sep 8, 2022 · Sep 8, 2022 · Sep 8, 2022
diff --git a/charts/pipeline/values.yaml b/charts/pipeline/values.yaml
@@ -170,7 +170,7 @@ configuration:
     #           default: true
 
   # Distribution settings
-  # distribution:
+  distribution:
 
   #   eks:
   #     # EKS Cloud Formation template location
@@ -190,12 +190,15 @@ configuration:
   #     # Enable create & update of EKS addons like coredns
   #     enableAddons: false
 
-  #   pke:
-  #     amazon:
+    pke:
+      amazon:
+        enabled: true
   #       globalRegion: us-east-1
   #       defaultImages: {}
   #       defaultNetworkProvider: "cilium"
   #       defaultNodeVolumeSize: 0 # GiB, 0/fallback: max(50, AMISize)
+      azure:
+        enabled: true
 
   # Database configuration
   database:

diff --git a/cmd/pipeline/main.go b/cmd/pipeline/main.go
@@ -436,6 +436,7 @@ func main() {
 	clusterCreators := api.ClusterCreators{
 		PKEOnAzure: azurePKEDriver.MakeClusterCreator(
 			azurePKEDriver.ClusterCreatorConfig{
+				Enabled:                     config.Distribution.PKE.Azure.Enabled,
 				OIDCIssuerURL:               config.Auth.OIDC.Issuer,
 				PipelineExternalURL:         externalBaseURL,
 				PipelineExternalURLInsecure: externalURLInsecure,
@@ -672,6 +673,7 @@ func main() {
 		dynamicClientFactory,
 		unifiedHelmReleaser,
 		config.Auth,
+		config.Distribution,
 		clusterAuthService,
 	)
 

diff --git a/config/config.yaml.dist b/config/config.yaml.dist
@@ -397,7 +397,7 @@ dex:
 #        # Default Amazon region
 #        defaultRegion: "us-west-1"
 
-#distribution:
+distribution:
 #    eks:
 #
 #        # EKS Cloud Formation template location
@@ -417,12 +417,15 @@ dex:
 #        # Enable create & update of EKS addons like coredns
 #        enableAddons: false
 #
-#    pke:
-#        amazon:
+   pke:
+       amazon:
+           enabled: true
 #            globalRegion: us-east-1
 #            defaultImages: {}
 #            defaultNetworkProvider: "cilium"
 #            defaultNodeVolumeSize: 0 # GiB, 0/fallback: max(50, AMISize)
+       azure:
+           enabled: true
 
 cloudinfo:
     # Format: {baseUrl}/api/v1

diff --git a/internal/cmd/config.go b/internal/cmd/config.go
@@ -61,30 +61,7 @@ type Config struct {
 		APICa   string
 	}
 
-	Distribution struct {
-		EKS struct {
-			TemplateLocation            string
-			DefaultNodeVolumeEncryption *struct {
-				Enabled          bool
-				EncryptionKeyARN string
-			}
-			DefaultNodeVolumeSize int
-			ExposeAdminKubeconfig bool
-			SSH                   struct {
-				Generate bool
-			}
-			EnableAddons bool
-		}
-
-		PKE struct {
-			Amazon struct {
-				GlobalRegion           string
-				DefaultImages          map[string]string
-				DefaultNetworkProvider string
-				DefaultNodeVolumeSize  int
-			}
-		}
-	}
+	Distribution DistributionConfig
 
 	Helm helm.Config
 
@@ -521,6 +498,35 @@ func (c TelemetryConfig) Validate() error {
 	return err
 }
 
+type DistributionConfig struct {
+	EKS struct {
+		TemplateLocation            string
+		DefaultNodeVolumeEncryption *struct {
+			Enabled          bool
+			EncryptionKeyARN string
+		}
+		DefaultNodeVolumeSize int
+		ExposeAdminKubeconfig bool
+		SSH                   struct {
+			Generate bool
+		}
+		EnableAddons bool
+	}
+
+	PKE struct {
+		Amazon struct {
+			Enabled                bool
+			GlobalRegion           string
+			DefaultImages          map[string]string
+			DefaultNetworkProvider string
+			DefaultNodeVolumeSize  int
+		}
+		Azure struct {
+			Enabled bool
+		}
+	}
+}
+
 // Configure configures some defaults in the Viper instance.
 func Configure(v *viper.Viper, p *pflag.FlagSet) {
 	// Log configuration
@@ -877,11 +883,14 @@ traefik:
 	v.SetDefault("distribution::eks::ssh::generate", true)
 	v.SetDefault("distribution::eks::enableAddons", false)
 
+	v.SetDefault("distribution::pke::amazon::enabled", true)
 	v.SetDefault("distribution::pke::amazon::globalRegion", "us-east-1")
 	v.SetDefault("distribution::pke::amazon::defaultImages", map[string]string{})
 	v.SetDefault("distribution::pke::amazon::defaultNetworkProvider", "cilium")
 	v.SetDefault("distribution::pke::amazon::defaultNodeVolumeSize", 0)
 
+	v.SetDefault("distribution::pke::azure::enabled", true)
+
 	v.SetDefault("cloudinfo::endpoint", "")
 
 	v.SetDefault("secret::tls::defaultValidity", "8760h") // 1 year

diff --git a/internal/providers/azure/pke/driver/BUILD.plz b/internal/providers/azure/pke/driver/BUILD.plz
@@ -21,6 +21,7 @@ go_library(
         "//pkg/cluster",
         "//pkg/cluster/pke",
         "//pkg/common",
+        "//pkg/errors",
         "//pkg/k8sclient",
         "//pkg/providers/azure",
         "//src/auth",

diff --git a/internal/providers/azure/pke/driver/cluster_creator.go b/internal/providers/azure/pke/driver/cluster_creator.go
@@ -36,6 +36,7 @@ import (
 	"github.com/banzaicloud/pipeline/internal/secret/secrettype"
 	pkgCluster "github.com/banzaicloud/pipeline/pkg/cluster"
 	pkgPKE "github.com/banzaicloud/pipeline/pkg/cluster/pke"
+	pkgErrors "github.com/banzaicloud/pipeline/pkg/errors"
 	pkgAzure "github.com/banzaicloud/pipeline/pkg/providers/azure"
 	"github.com/banzaicloud/pipeline/src/auth"
 	"github.com/banzaicloud/pipeline/src/cluster"
@@ -86,6 +87,7 @@ type ClusterCreatorSecretStore interface {
 }
 
 type ClusterCreatorConfig struct {
+	Enabled                     bool
 	OIDCIssuerURL               string
 	PipelineExternalURL         string
 	PipelineExternalURLInsecure bool
@@ -157,6 +159,11 @@ type ClusterCreationParams struct {
 
 // Create
 func (cc ClusterCreator) Create(ctx context.Context, params ClusterCreationParams) (cl pke.Cluster, err error) {
+	if !cc.config.Enabled {
+		err = pkgErrors.ErrorNotSupportedDistributionType
+		return
+	}
+
 	sir, err := cc.secrets.Get(params.OrganizationID, params.SecretID)
 	if err = errors.WrapIf(err, "failed to get secret"); err != nil {
 		return

diff --git a/src/api/BUILD.plz b/src/api/BUILD.plz
@@ -15,6 +15,7 @@ go_library(
         "//internal/cluster/endpoints",
         "//internal/cluster/oidc",
         "//internal/cluster/resourcesummary",
+        "//internal/cmd",
         "//internal/common",
         "//internal/global",
         "//internal/helm",

diff --git a/src/api/cluster.go b/src/api/cluster.go
@@ -32,6 +32,7 @@ import (
 	"github.com/banzaicloud/pipeline/internal/cluster/clusteradapter"
 	eksdriver "github.com/banzaicloud/pipeline/internal/cluster/distribution/eks/eksprovider/driver"
 	"github.com/banzaicloud/pipeline/internal/cluster/resourcesummary"
+	"github.com/banzaicloud/pipeline/internal/cmd"
 	"github.com/banzaicloud/pipeline/internal/global"
 	azureDriver "github.com/banzaicloud/pipeline/internal/providers/azure/pke/driver"
 	vsphereDriver "github.com/banzaicloud/pipeline/internal/providers/vsphere/pke/driver"
@@ -63,6 +64,7 @@ type ClusterAPI struct {
 
 	helmService        cluster.HelmService
 	authConfig         auth.Config
+	distributionConfig cmd.DistributionConfig
 	clientSecretGetter clusterAuth.ClusterClientSecretGetter
 }
 
@@ -97,6 +99,7 @@ func NewClusterAPI(
 	clientFactory common.DynamicClientFactory,
 	helmService cluster.HelmService,
 	authConfig auth.Config,
+	distributionConfig cmd.DistributionConfig,
 	clientSecretGetter clusterAuth.ClusterClientSecretGetter,
 ) *ClusterAPI {
 	return &ClusterAPI{
@@ -112,6 +115,7 @@ func NewClusterAPI(
 		clientFactory:           clientFactory,
 		helmService:             helmService,
 		authConfig:              authConfig,
+		distributionConfig:      distributionConfig,
 		clientSecretGetter:      clientSecretGetter,
 	}
 }

diff --git a/src/api/cluster_create.go b/src/api/cluster_create.go
@@ -18,6 +18,7 @@ import (
 	"context"
 	"fmt"
 	"net/http"
+	"strings"
 
 	"emperror.dev/errors"
 	"github.com/gin-gonic/gin"
@@ -28,6 +29,7 @@ import (
 	ginutils "github.com/banzaicloud/pipeline/internal/platform/gin/utils"
 	pkgCluster "github.com/banzaicloud/pipeline/pkg/cluster"
 	pkgCommon "github.com/banzaicloud/pipeline/pkg/common"
+	pkgErrors "github.com/banzaicloud/pipeline/pkg/errors"
 	clusterAPI "github.com/banzaicloud/pipeline/src/api/cluster"
 	"github.com/banzaicloud/pipeline/src/auth"
 	"github.com/banzaicloud/pipeline/src/cluster"
@@ -262,6 +264,14 @@ func (a *ClusterAPI) createCluster(
 		}
 	}
 
+	if strings.HasPrefix(commonCluster.GetDistribution(), pkgCluster.PKE) && commonCluster.GetCloud() == pkgCluster.Amazon && !a.distributionConfig.PKE.Amazon.Enabled {
+		return nil, &pkgCommon.ErrorResponse{
+			Code:    http.StatusBadRequest,
+			Message: pkgErrors.ErrorNotSupportedDistributionType.Error(),
+			Error:   pkgErrors.ErrorNotSupportedDistributionType.Error(),
+		}
+	}
+
 	if _, ok := commonCluster.(*cluster.EKSCluster); ok {
 		commonCluster, err = a.clusterCreators.EKSAmazon.CreateCluster(ctx, commonCluster, createClusterRequest, organizationID, userID)
 	} else {

diff --git a/src/api/error.go b/src/api/error.go
@@ -17,6 +17,7 @@ package api
 import (
 	"github.com/pkg/errors"
 
+	pkgErrors "github.com/banzaicloud/pipeline/pkg/errors"
 	"github.com/banzaicloud/pipeline/src/secret"
 )
 
@@ -34,6 +35,8 @@ func isInvalid(err error) bool {
 	switch err {
 	case secret.ErrSecretNotExists:
 		return true
+	case pkgErrors.ErrorNotSupportedDistributionType:
+		return true
 	}
 
 	switch err.(type) {