登录 注册
开源 企业版 高校版 私有云 Gitee AI NEW
扫描微信二维码支付
取消
支付完成
Watch
不关注 关注所有动态 仅关注版本发行动态 关注但不提醒动态
3 Star 0 Fork 0

mirrors_rancher/ui-plugin-operator

代码 Wiki 统计 流水线
服务
加入 Gitee
与超过 1200万 开发者一起发现、参与优秀开源项目,私有仓库也完全免费 :)
免费加入
文件
克隆/下载
main.go 4.31 KB
一键复制 编辑 原始数据 按行查看 历史
Diogo Souza 提交于 2024-09-09 18:47 . enabling lint
123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147
package main



import (

	"encoding/json"

	"fmt"

	"log"

	"net/http"

	"net/http/httputil"

	_ "net/http/pprof"

	neturl "net/url"

	"strings"



	"github.com/gorilla/mux"

	"github.com/rancher/ui-plugin-operator/pkg/controllers"

	"github.com/rancher/ui-plugin-operator/pkg/controllers/plugin"

	"github.com/rancher/ui-plugin-operator/pkg/crd"

	"github.com/rancher/ui-plugin-operator/pkg/version"

	command "github.com/rancher/wrangler-cli"

	_ "github.com/rancher/wrangler/v2/pkg/generated/controllers/apiextensions.k8s.io"

	_ "github.com/rancher/wrangler/v2/pkg/generated/controllers/networking.k8s.io"

	"github.com/rancher/wrangler/v2/pkg/kubeconfig"

	"github.com/rancher/wrangler/v2/pkg/ratelimit"

	"github.com/sirupsen/logrus"

	"github.com/spf13/cobra"

)



var (

	debugConfig command.DebugConfig

)



type PluginOperator struct {

	Kubeconfig     string `usage:"Kubeconfig file" env:"KUBECONFIG"`

	Namespace      string `usage:"Namespace to watch for UIPlugins" default:"cattle-ui-plugin-system" env:"NAMESPACE"`

	ControllerName string `usage:"Unique name to identify this controller that is added to all UIPlugins tracked by this controller" default:"ui-plugin-operator" env:"CONTROLLER_NAME"`

	NodeName       string `usage:"Name of the node this controller is running on" env:"NODE_NAME"`

}



func (a *PluginOperator) Run(cmd *cobra.Command, _ []string) error {

	if len(a.Namespace) == 0 {

		return fmt.Errorf("helm-locker can only be started in a single namespace")

	}



	go func() {

		logrus.Println(http.ListenAndServe(":6060", nil))

	}()

	debugConfig.MustSetupDebug()



	cfg := kubeconfig.GetNonInteractiveClientConfig(a.Kubeconfig)

	clientConfig, err := cfg.ClientConfig()

	if err != nil {

		return err

	}

	clientConfig.RateLimiter = ratelimit.None



	ctx := cmd.Context()

	if err := crd.Create(ctx, clientConfig); err != nil {

		return err

	}



	r := mux.NewRouter()

	r.HandleFunc("/", func(w http.ResponseWriter, r *http.Request) {

		http.Redirect(w, r, "/index.json", http.StatusPermanentRedirect)

	})

	r.HandleFunc("/index.json", indexHandler)

	r.HandleFunc("/{name}/{version}/{rest:.*}", pluginHandler)

	http.Handle("/", r)



	go func() {

		log.Println(http.ListenAndServe(":8080", nil))

	}()



	if err := controllers.Register(ctx, a.Namespace, a.ControllerName, a.NodeName, cfg); err != nil {

		return err

	}



	<-cmd.Context().Done()

	return nil

}



func main() {

	cmd := command.Command(&PluginOperator{}, cobra.Command{

		Version: version.FriendlyVersion(),

	})

	cmd = command.AddDebug(cmd, &debugConfig)

	command.Main(cmd)

}



func indexHandler(w http.ResponseWriter, _ *http.Request) {

	index, err := json.Marshal(&plugin.Index)

	if err != nil {

		http.Error(w, err.Error(), http.StatusInternalServerError)

		logrus.Error(err)

	}

	w.Write(index)

}



func pluginHandler(w http.ResponseWriter, r *http.Request) {

	vars := mux.Vars(r)

	logrus.Debugf("http request vars %s", vars)

	entry, ok := plugin.Index.Entries[vars["name"]]

	if !ok || entry.Version != vars["version"] {

		msg := fmt.Sprintf("plugin [name: %s version: %s] does not exist in index", vars["name"], vars["version"])

		http.Error(w, msg, http.StatusNotFound)

		logrus.Debug(msg)

		return

	}

	if entry.NoCache {

		logrus.Debugf("[noCache: %v] proxying request to [endpoint: %v]\n", entry.NoCache, entry.Endpoint)

		proxyRequest(entry.Endpoint, vars["rest"], w, r)

	} else {

		logrus.Debugf("[noCache: %v] serving plugin files from filesystem cache\n", entry.NoCache)

		http.FileServer(http.Dir(plugin.FSCacheRootDir)).ServeHTTP(w, r)

	}

}



func proxyRequest(target, path string, w http.ResponseWriter, r *http.Request) {

	url, err := neturl.Parse(target)

	if err != nil {

		http.Error(w, fmt.Sprintf("failed to parse url [%s]", target), http.StatusInternalServerError)

		return

	}

	if denylist(url.Host) {

		http.Error(w, fmt.Sprintf("url [%s] is forbidden", target), http.StatusForbidden)

		return

	}

	proxy := httputil.NewSingleHostReverseProxy(url)

	r.URL.Host = url.Host

	r.URL.Scheme = url.Scheme

	r.URL.Path = path

	r.Header.Set("X-Forwarded-Host", r.Header.Get("Host"))

	r.Host = url.Host

	proxy.ServeHTTP(w, r)

}



func denylist(host string) bool {

	// temp: is there a way to check if an IP equivalent to localhost is being used?

	denied := map[string]struct{}{

		"localhost": {},

		"127.0.0.1": {},

		"0.0.0.0":   {},

		"":          {},

	}

	hostWithoutPort := strings.Split(host, ":")[0]

	_, isDenied := denied[hostWithoutPort]



	return isDenied

}
马建仓 AI 助手
尝试更多
代码解读
代码找茬
代码优化
1
https://gitee.com/mirrors_rancher/ui-plugin-operator.git
git@gitee.com:mirrors_rancher/ui-plugin-operator.git
mirrors_rancher
ui-plugin-operator
ui-plugin-operator
main
点此查找更多帮助

搜索帮助

Git 命令在线学习 如何在 Gitee 导入 GitHub 仓库
Git 仓库基础操作
企业版和社区版功能对比
SSH 公钥设置
如何处理代码冲突
仓库体积过大,如何减小?
如何找回被删除的仓库数据
Gitee 产品配额说明
GitHub仓库快速导入Gitee及同步更新
什么是 Release(发行版)
将 PHP 项目自动发布到 packagist.org
评论
仓库举报
回到顶部