mirror of
https://github.com/FairwindsOps/polaris.git
synced 2026-05-18 23:29:40 +00:00
8e3cf1ddd9
* add login flow * add logout functionality * improve code * implement token and status print * implement status command * add user to login * improve server port management * improve login flow * fix login flow * make insights URL for login configurable * remove comments * fix logrus directive usage * add upload-insights command * remove unnecessary usage of pointer * error when using upload-insights and audit-path simultaneously * upload-insights support * set priority to reports * adds report verification * fix logging to meet expected results * renaming variable name * improve results printing * improve variable naming * remove TODO * Update checks severities (#950) * change all ignore checks to warning * promoting checks initially warning that should be danger. * fixing docs and examples * adds changelog * fix changelog version * improve general error message * update workloads to be able grab its version * print URL on stdout on browser error * use os.WriteFile instead of low-level API * renaming fn params * add insights client * validating token on auth status * minor fix * only query for re-auth if token is still valid * update some dependencies in go and CI (#951) * update some dependencies * update testing requirements * Fix cert-manager * lots of deprecated versions * attempts * review suggestions * avoid nil pointer * fix fixtures * fix test --------- Co-authored-by: Robert Brennan <contact@rbren.io> * update changelog --------- Co-authored-by: Andrew Suderman <andy@fairwinds.com> Co-authored-by: Robert Brennan <contact@rbren.io>
201 lines
6.5 KiB
Go
201 lines
6.5 KiB
Go
package insights
|
|
|
|
import (
|
|
"bytes"
|
|
"encoding/json"
|
|
"fmt"
|
|
"io"
|
|
"net/http"
|
|
|
|
"github.com/sirupsen/logrus"
|
|
)
|
|
|
|
type cluster struct {
|
|
Name string `json:"Name"`
|
|
AuthToken string `json:"AuthToken"`
|
|
Organization string `json:"Organization"`
|
|
Status string `json:"Status"`
|
|
}
|
|
|
|
type reportJob struct {
|
|
ID int `json:"id"`
|
|
Status string `json:"status"`
|
|
TimeTakenInMs int `json:"timeTaken"`
|
|
}
|
|
|
|
type Client interface {
|
|
UpsertCluster(clusterName string) (*cluster, error)
|
|
SendReport(cluster cluster, reportType, reportVersion string, payload []byte) (*reportJob, error)
|
|
GetReportJob(clusterName string, reportJobID int) (*reportJob, error)
|
|
IsTokenValid() (bool, error)
|
|
}
|
|
|
|
type HTTPClient struct {
|
|
insightsHost string
|
|
organization string
|
|
token string
|
|
}
|
|
|
|
func NewHTTPClient(host, organization, token string) Client {
|
|
return HTTPClient{host, organization, token}
|
|
}
|
|
|
|
func (ic HTTPClient) UpsertCluster(clusterName string) (*cluster, error) {
|
|
clusterURL := fmt.Sprintf("%s/v0/organizations/%s/clusters/%s?showToken=true", ic.insightsHost, ic.organization, clusterName)
|
|
req, err := http.NewRequest("GET", clusterURL, nil)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("building request for fetching cluster: %w", err)
|
|
}
|
|
req.Header.Set("Content-Type", "application/json")
|
|
req.Header.Set("Authorization", "Bearer "+ic.token)
|
|
resp, err := http.DefaultClient.Do(req)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("making request fetching cluster: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if isSuccessful2XX(resp.StatusCode) {
|
|
// cluster already created
|
|
logrus.Infof("cluster %q found...", clusterName)
|
|
body, err := io.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("reading response body: %w", err)
|
|
}
|
|
var c cluster
|
|
err = json.Unmarshal(body, &c)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("unmarshaling response body: %w", err)
|
|
}
|
|
return &c, nil
|
|
} else {
|
|
logrus.Warnf("not able to fetch cluster, expected 2xx - received %d, will try to create", resp.StatusCode)
|
|
}
|
|
|
|
logrus.Infof("cluster %q not found... creating..", clusterName)
|
|
|
|
req, err = http.NewRequest("POST", clusterURL, nil)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("building request for creating cluster: %w", err)
|
|
}
|
|
req.Header.Set("Content-Type", "application/json")
|
|
req.Header.Set("Authorization", "Bearer "+ic.token)
|
|
resp, err = http.DefaultClient.Do(req)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("making request for creating cluster: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
body, err := io.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("reading response body: %w", err)
|
|
}
|
|
|
|
if !isSuccessful2XX(resp.StatusCode) {
|
|
return nil, fmt.Errorf("creating cluster, expected 200 OK received %s: %v", resp.Status, string(body))
|
|
}
|
|
|
|
var c cluster
|
|
err = json.Unmarshal(body, &c)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("unmarshaling response body: %w", err)
|
|
}
|
|
|
|
logrus.Infof("cluster %q created...", clusterName)
|
|
return &c, nil
|
|
}
|
|
|
|
func (ic HTTPClient) SendReport(cluster cluster, reportType, reportVersion string, payload []byte) (*reportJob, error) {
|
|
uploadReportURL := fmt.Sprintf("%s/v0/organizations/%s/clusters/%s/data/%s", ic.insightsHost, ic.organization, cluster.Name, reportType)
|
|
req, err := http.NewRequest("POST", uploadReportURL, bytes.NewBuffer(payload))
|
|
if err != nil {
|
|
return nil, fmt.Errorf("building request for output: %w", err)
|
|
}
|
|
req.Header.Set("Content-Type", "application/json")
|
|
req.Header.Set("Authorization", "Bearer "+cluster.AuthToken)
|
|
req.Header.Set("X-Fairwinds-Report-Version", reportVersion)
|
|
req.Header.Set("X-Fairwinds-Report-Priority", "4") // should have higher priority than the default 5
|
|
req.Header.Set("X-Fairwinds-Agent-Version", "")
|
|
req.Header.Set("X-Fairwinds-Agent-Chart-Version", "")
|
|
resp, err := http.DefaultClient.Do(req)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("making request for output: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
body, err := io.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("reading response body: %w", err)
|
|
}
|
|
if !isSuccessful2XX(resp.StatusCode) {
|
|
return nil, fmt.Errorf("sending %s report, expected 200 OK received %s: %v", reportType, resp.Status, string(body))
|
|
}
|
|
|
|
var rj reportJob
|
|
err = json.Unmarshal(body, &rj)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("unmarshaling response body: %w", err)
|
|
}
|
|
logrus.Debugf("%s report sent to fairwinds insights", reportType)
|
|
|
|
return &rj, nil
|
|
}
|
|
|
|
func isSuccessful2XX(statusCode int) bool {
|
|
return statusCode >= 200 && statusCode < 300
|
|
}
|
|
|
|
func (ic HTTPClient) GetReportJob(clusterName string, reportJobID int) (*reportJob, error) {
|
|
reportJobsURL := fmt.Sprintf("%s/v0/organizations/%s/clusters/%s/report-jobs/%d", ic.insightsHost, ic.organization, clusterName, reportJobID)
|
|
req, err := http.NewRequest("GET", reportJobsURL, nil)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("building request for fetching report-job: %w", err)
|
|
}
|
|
req.Header.Set("Content-Type", "application/json")
|
|
req.Header.Set("Authorization", "Bearer "+ic.token)
|
|
resp, err := http.DefaultClient.Do(req)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("making request fetching report-job: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if !isSuccessful2XX(resp.StatusCode) {
|
|
return nil, fmt.Errorf("fetching report-job, expected 200 OK received %s", resp.Status)
|
|
}
|
|
body, err := io.ReadAll(resp.Body)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("reading response body: %w", err)
|
|
}
|
|
var rj reportJob
|
|
err = json.Unmarshal(body, &rj)
|
|
if err != nil {
|
|
return nil, fmt.Errorf("unmarshaling response body: %w", err)
|
|
}
|
|
return &rj, nil
|
|
}
|
|
|
|
// IsTokenValid checks if the token is valid by fetching the organization
|
|
func (ic HTTPClient) IsTokenValid() (bool, error) {
|
|
organizationURL := fmt.Sprintf("%s/v0/organizations/%s", ic.insightsHost, ic.organization)
|
|
req, err := http.NewRequest("GET", organizationURL, nil)
|
|
if err != nil {
|
|
return false, fmt.Errorf("building request for fetching organization: %w", err)
|
|
}
|
|
req.Header.Set("Content-Type", "application/json")
|
|
req.Header.Set("Authorization", "Bearer "+ic.token)
|
|
resp, err := http.DefaultClient.Do(req)
|
|
if err != nil {
|
|
return false, fmt.Errorf("making request fetching organization: %w", err)
|
|
}
|
|
defer resp.Body.Close()
|
|
|
|
if isSuccessful2XX(resp.StatusCode) {
|
|
return true, nil // token is valid
|
|
}
|
|
|
|
if resp.StatusCode == http.StatusNotFound || resp.StatusCode == http.StatusUnauthorized || resp.StatusCode == http.StatusForbidden {
|
|
return false, nil // token is invalid
|
|
}
|
|
|
|
// unexpected error
|
|
return false, fmt.Errorf("fetching organization, expected 200 OK - received %s", resp.Status)
|
|
}
|