Skip to content
This repository has been archived by the owner on Mar 13, 2022. It is now read-only.

Commit

Permalink
load_kube_config_from_dict() support define custom temp files path
Browse files Browse the repository at this point in the history
  • Loading branch information
@onecer
onecer committed Apr 12, 2021
1 parent db50d02 commit 306a5e6
Showing 1 changed file with 29 additions and 15 deletions.
44 changes: 29 additions & 15 deletions config/kube_config.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -60,15 +60,17 @@ def _cleanup_temp_files():
_temp_files = {}


def _create_temp_file_with_content(content):
def _create_temp_file_with_content(content, temp_file_path=None):
if len(_temp_files) == 0:
atexit.register(_cleanup_temp_files)
# Because we may change context several times, try to remember files we
# created and reuse them at a small memory cost.
content_key = str(content)
if content_key in _temp_files:
return _temp_files[content_key]
_, name = tempfile.mkstemp()
if not os.path.isdir(temp_file_path):
os.makedirs(name=temp_file_path, exist_ok=True)
_, name = tempfile.mkstemp(dir=temp_file_path)
_temp_files[content_key] = name
with open(name, 'wb') as fd:
fd.write(content.encode() if isinstance(content, str) else content)
Expand All @@ -91,12 +93,14 @@ class FileOrData(object):
result in base64 encode of the file content after read."""

def __init__(self, obj, file_key_name, data_key_name=None,
file_base_path="", base64_file_content=True):
file_base_path="", base64_file_content=True,
temp_file_path=None):
if not data_key_name:
data_key_name = file_key_name + "-data"
self._file = None
self._data = None
self._base64_file_content = base64_file_content
self._temp_file_path = temp_file_path
if not obj:
return
if data_key_name in obj:
Expand All @@ -116,9 +120,9 @@ def as_file(self):
else:
content = self._data
self._file = _create_temp_file_with_content(
base64.standard_b64decode(content))
base64.standard_b64decode(content), self._temp_file_path)
else:
self._file = _create_temp_file_with_content(self._data)
self._file = _create_temp_file_with_content(self._data, self._temp_file_path)
if self._file and not os.path.isfile(self._file):
raise ConfigException("File does not exist: %s" % self._file)
return self._file
Expand Down Expand Up @@ -182,7 +186,8 @@ class KubeConfigLoader(object):
def __init__(self, config_dict, active_context=None,
get_google_credentials=None,
config_base_path="",
config_persister=None):
config_persister=None,
temp_file_path=None):

if config_dict is None:
raise ConfigException(
Expand All @@ -199,6 +204,7 @@ def __init__(self, config_dict, active_context=None,
self.set_active_context(active_context)
self._config_base_path = config_base_path
self._config_persister = config_persister
self._temp_file_path = temp_file_path

def _refresh_credentials_with_cmd_path():
config = self._user['auth-provider']['config']
Expand Down Expand Up @@ -489,12 +495,14 @@ def _load_from_exec_plugin(self):
status, None,
data_key_name='clientCertificateData',
file_base_path=base_path,
base64_file_content=False).as_file()
base64_file_content=False,
temp_file_path=self._temp_file_path).as_file()
self.key_file = FileOrData(
status, None,
data_key_name='clientKeyData',
file_base_path=base_path,
base64_file_content=False).as_file()
base64_file_content=False,
temp_file_path=self._temp_file_path).as_file()
return True
logging.error('exec: missing token or clientCertificateData field '
'in plugin output')
Expand All @@ -507,7 +515,8 @@ def _load_user_token(self):
token = FileOrData(
self._user, 'tokenFile', 'token',
file_base_path=base_path,
base64_file_content=False).as_data()
base64_file_content=False,
temp_file_path=self._temp_file_path).as_data()
if token:
self.token = "Bearer %s" % token
return True
Expand All @@ -533,17 +542,20 @@ def _load_cluster_info(self):
base_path = self._get_base_path(self._cluster.path)
self.ssl_ca_cert = FileOrData(
self._cluster, 'certificate-authority',
file_base_path=base_path).as_file()
file_base_path=base_path,
temp_file_path=self._temp_file_path).as_file()
if 'cert_file' not in self.__dict__:
# cert_file could have been provided by
# _load_from_exec_plugin; only load from the _user
# section if we need it.
self.cert_file = FileOrData(
self._user, 'client-certificate',
file_base_path=base_path).as_file()
file_base_path=base_path,
temp_file_path=self._temp_file_path).as_file()
self.key_file = FileOrData(
self._user, 'client-key',
file_base_path=base_path).as_file()
file_base_path=base_path,
temp_file_path=self._temp_file_path).as_file()
if 'insecure-skip-tls-verify' in self._cluster:
self.verify_ssl = not self._cluster['insecure-skip-tls-verify']

Expand Down Expand Up @@ -811,7 +823,8 @@ def load_kube_config(config_file=None, context=None,

def load_kube_config_from_dict(config_dict, context=None,
client_configuration=None,
persist_config=True):
persist_config=True,
temp_file_path=None):
"""Loads authentication and cluster information from config_dict file
and stores them in kubernetes.client.configuration.
Expand All @@ -822,16 +835,17 @@ def load_kube_config_from_dict(config_dict, context=None,
set configs to.
:param persist_config: If True, config file will be updated when changed
(e.g GCP token refresh).
:param temp_file_path: store temp files path.
"""

if config_dict is None:
raise ConfigException(
'Invalid kube-config dict. '
'No configuration found.')

loader = _get_kube_config_loader(
config_dict=config_dict, active_context=context,
persist_config=persist_config)
persist_config=persist_config,
temp_file_path=temp_file_path)

if client_configuration is None:
config = type.__call__(Configuration)
Expand Down

0 comments on commit 306a5e6

Please sign in to comment.