github/kubeinvaders
1
0
Fork 0
mirror of https://github.com/lucky-sideburn/kubeinvaders.git synced 2026-04-06 18:36:52 +00:00
Code Issues Packages Projects Releases Wiki Activity

some fixes...

Browse Source
This commit is contained in:
Eugenio Marzo
2026-03-14 11:27:31 +01:00
parent a7621f2b41
commit 7459fbffc5
18 changed files with 1255 additions and 160 deletions
Download Patch File Download Diff File Expand all files Collapse all files

49
scripts/programming_mode.lua
View File

@@ -5,11 +5,47 @@ local redis = require "resty.redis"
local red = redis:new()
local okredis, errredis = red:connect("unix:/tmp/redis.sock")
local k8s_url = ""
local kube_host = os.getenv("KUBERNETES_SERVICE_HOST")
local kube_port = os.getenv("KUBERNETES_SERVICE_PORT_HTTPS")
local endpoint = os.getenv("ENDPOINT")
local req_headers = ngx.req.get_headers()
local target = arg["target"] or req_headers["x-k8s-target"] or req_headers["X-K8S-Target"]
local token = req_headers["x-k8s-token"] or req_headers["X-K8S-Token"] or tostring(os.getenv("TOKEN") or "")
local ca_cert_b64 = req_headers["x-k8s-ca-cert-b64"] or req_headers["X-K8S-CA-CERT-B64"]
if os.getenv("KUBERNETES_SERVICE_HOST") then
k8s_url = "https://" .. os.getenv("KUBERNETES_SERVICE_HOST") .. ":" .. os.getenv("KUBERNETES_SERVICE_PORT_HTTPS")
if kube_host and kube_host ~= "" then
local port_suffix = ""
if kube_port and kube_port ~= "" then
port_suffix = ":" .. kube_port
end
k8s_url = "https://" .. kube_host .. port_suffix
else
k8s_url = os.getenv("ENDPOINT")
k8s_url = endpoint or ""
end
if target and target ~= "" then
if not string.match(target, "^https?://") then
target = "https://" .. target
end
k8s_url = string.gsub(target, "/+$", "")
end
if not string.match(k8s_url, "^https?://") then
k8s_url = "https://" .. k8s_url
end
k8s_url = string.gsub(k8s_url, "/+$", "")
if k8s_url == "" then
ngx.status = 500
ngx.say("Missing Kubernetes endpoint configuration. Set KUBERNETES_SERVICE_HOST or ENDPOINT.")
ngx.exit(ngx.OK)
end
if token == "" then
ngx.status = 500
ngx.say("Missing Kubernetes API token configuration.")
ngx.exit(ngx.OK)
end
if okredis then
@@ -68,7 +104,12 @@ else
end
ngx.log(ngx.INFO, "[PROGRAMMING_MODE] Starting Chaos Program using /opt/programming_mode/start.py")
handle = io.popen("python3 /opt/programming_mode/start.py " .. file_name .. " " .. k8s_url .. "; echo $? > " .. file_name .. ".check")
local ca_cert_env = ""
if ca_cert_b64 and ca_cert_b64 ~= "" then
ca_cert_env = ca_cert_b64
end
local token_b64 = ngx.encode_base64(token)
handle = io.popen("K8S_TOKEN_B64='" .. token_b64 .. "' K8S_CA_CERT_B64='" .. ca_cert_env .. "' python3 /opt/programming_mode/start.py " .. file_name .. " " .. k8s_url .. "; echo $? > " .. file_name .. ".check")
result = handle:read("*a")
ngx.log(ngx.INFO, "[PROGRAMMING_MODE] Output for starting Chaos Program is " .. result)
handle = io.popen("cat " .. file_name .. ".check")