github/kubeinvaders
1
0
Fork 0
mirror of https://github.com/lucky-sideburn/kubeinvaders.git synced 2026-04-07 02:46:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

some fixes...

Browse Source
This commit is contained in:
Eugenio Marzo
2026-03-14 11:27:31 +01:00
parent a7621f2b41
commit 7459fbffc5
18 changed files with 1255 additions and 160 deletions
Download Patch File Download Diff File Expand all files Collapse all files

65
scripts/node.lua
View File

@@ -4,15 +4,57 @@ local json = require 'lunajson'
local redis = require "resty.redis"
local k8s_url = ""
local kube_host = os.getenv("KUBERNETES_SERVICE_HOST")
local kube_port = os.getenv("KUBERNETES_SERVICE_PORT_HTTPS")
local endpoint = os.getenv("ENDPOINT")
if os.getenv("KUBERNETES_SERVICE_HOST") then
k8s_url = "https://" .. os.getenv("KUBERNETES_SERVICE_HOST") .. ":" .. os.getenv("KUBERNETES_SERVICE_PORT_HTTPS")
if kube_host and kube_host ~= "" then
local port_suffix = ""
if kube_port and kube_port ~= "" then
port_suffix = ":" .. kube_port
end
k8s_url = "https://" .. kube_host .. port_suffix
else
k8s_url = os.getenv("ENDPOINT")
k8s_url = endpoint or ""
end
local token = os.getenv("TOKEN")
local disable_tls_env = string.lower(tostring(os.getenv("DISABLE_TLS") or "false"))
local disable_tls = disable_tls_env == "true" or disable_tls_env == "1" or disable_tls_env == "yes"
local arg = ngx.req.get_uri_args()
local req_headers = ngx.req.get_headers()
local target = arg['target'] or req_headers["x-k8s-target"] or req_headers["X-K8S-Target"]
local token = req_headers["x-k8s-token"] or req_headers["X-K8S-Token"] or tostring(os.getenv("TOKEN") or "")
local ca_cert_b64 = req_headers["x-k8s-ca-cert-b64"] or req_headers["X-K8S-CA-CERT-B64"]
local ca_cert = nil
if ca_cert_b64 and ca_cert_b64 ~= "" then
ca_cert = ngx.decode_base64(ca_cert_b64)
end
if target and target ~= "" then
if not string.match(target, "^https?://") then
target = "https://" .. target
end
k8s_url = string.gsub(target, "/+$", "")
end
if k8s_url == "" then
ngx.status = 500
ngx.say("Missing Kubernetes endpoint configuration. Set KUBERNETES_SERVICE_HOST or ENDPOINT.")
ngx.exit(ngx.OK)
end
if not string.match(k8s_url, "^https?://") then
k8s_url = "https://" .. k8s_url
end
k8s_url = string.gsub(k8s_url, "/+$", "")
if token == "" then
ngx.status = 500
ngx.say("Missing Kubernetes API token configuration.")
ngx.exit(ngx.OK)
end
local url = k8s_url.. "/api/v1/nodes"
local decoded = nil
local nodes = {}
@@ -65,13 +107,26 @@ local headers = {
local resp = {}
local ok, statusCode, headers, statusText = https.request{
local request_opts = {
url = url,
headers = headers,
method = "GET",
verify = disable_tls and "none" or "peer",
sink = ltn12.sink.table(resp)
}
if not disable_tls and ca_cert and ca_cert ~= "" then
local ca_file_path = "/tmp/kubeinv-custom-ca.crt"
local ca_file = io.open(ca_file_path, "w")
if ca_file then
ca_file:write(ca_cert)
ca_file:close()
request_opts.cafile = ca_file_path
end
end
local ok, statusCode, headers, statusText = https.request(request_opts)
ngx.log(ngx.INFO, "REQUEST LOGS...")
ngx.log(ngx.INFO, ok)
ngx.log(ngx.INFO, statusCode)