| //Licensed to the Apache Software Foundation (ASF) under one or more |
| //contributor license agreements. See the NOTICE file distributed with |
| //this work for additional information regarding copyright ownership. |
| //The ASF licenses this file to You under the Apache License, Version 2.0 |
| //(the "License"); you may not use this file except in compliance with |
| //the License. You may obtain a copy of the License at |
| // |
| // http://www.apache.org/licenses/LICENSE-2.0 |
| // |
| //Unless required by applicable law or agreed to in writing, software |
| //distributed under the License is distributed on an "AS IS" BASIS, |
| //WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| //See the License for the specific language governing permissions and |
| //limitations under the License. |
| |
| package webhook |
| |
| import ( |
| "crypto/tls" |
| |
| core_runtime "github.com/apache/dubbo-kubernetes/pkg/core/runtime" |
| "github.com/apache/dubbo-kubernetes/pkg/webhook/patch" |
| "github.com/apache/dubbo-kubernetes/pkg/webhook/server" |
| "github.com/apache/dubbo-kubernetes/pkg/webhook/webhook" |
| "github.com/pkg/errors" |
| ) |
| |
| func Setup(rt core_runtime.Runtime) error { |
| if !rt.Config().KubeConfig.IsKubernetesConnected { |
| return nil |
| } |
| webhookServer := server.NewServer(rt.Config()) |
| if rt.Config().KubeConfig.InPodEnv { |
| webhookServer.WebhookServer = webhook.NewWebhook( |
| func(info *tls.ClientHelloInfo) (*tls.Certificate, error) { |
| return rt.CertStorage().GetServerCert(info.ServerName), nil |
| }) |
| webhookServer.WebhookServer.Init(rt.Config()) |
| webhookServer.DubboInjector = patch.NewDubboSdk(rt.Config(), rt.WebHookClient(), rt.KubeClient().GetKubernetesClientSet()) |
| webhookServer.WebhookServer.Patches = append(webhookServer.WebhookServer.Patches, |
| webhookServer.DubboInjector.NewPodWithDubboCa, |
| webhookServer.DubboInjector.NewPodWithDubboRegistryInject, |
| ) |
| webhookServer.CertStorage = rt.CertStorage() |
| webhookServer.WebhookClient = rt.WebHookClient() |
| } |
| if err := rt.Add(webhookServer); err != nil { |
| return errors.Wrap(err, "Add Authority Component failed") |
| } |
| return nil |
| } |