412 lines
16 KiB
Go
412 lines
16 KiB
Go
//
|
|
// Copyright (c) 2021 Red Hat, Inc.
|
|
// This program and the accompanying materials are made
|
|
// available under the terms of the Eclipse Public License 2.0
|
|
// which is available at https://www.eclipse.org/legal/epl-2.0/
|
|
//
|
|
// SPDX-License-Identifier: EPL-2.0
|
|
//
|
|
// Contributors:
|
|
// Red Hat, Inc. - initial API and implementation
|
|
//
|
|
|
|
package devworkspace
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
|
|
"github.com/eclipse-che/che-operator/pkg/deploy"
|
|
"github.com/eclipse-che/che-operator/pkg/util"
|
|
operatorsv1alpha1 "github.com/operator-framework/api/pkg/operators/v1alpha1"
|
|
admissionregistrationv1 "k8s.io/api/admissionregistration/v1"
|
|
appsv1 "k8s.io/api/apps/v1"
|
|
corev1 "k8s.io/api/core/v1"
|
|
rbacv1 "k8s.io/api/rbac/v1"
|
|
apiextensionsv1 "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
|
|
apiextensionsv1beta1 "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1beta1"
|
|
apierrors "k8s.io/apimachinery/pkg/api/errors"
|
|
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
|
|
"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
|
|
"k8s.io/apimachinery/pkg/runtime/schema"
|
|
"k8s.io/apimachinery/pkg/types"
|
|
"sigs.k8s.io/controller-runtime/pkg/client"
|
|
)
|
|
|
|
var (
|
|
DevWorkspaceNamespace = "devworkspace-controller"
|
|
DevWorkspaceCheNamespace = "devworkspace-che"
|
|
DevWorkspaceWebhookName = "controller.devfile.io"
|
|
DevWorkspaceServiceAccount = "devworkspace-controller-serviceaccount"
|
|
DevWorkspaceDeploymentName = "devworkspace-controller-manager"
|
|
|
|
OpenshiftDevWorkspaceTemplatesPath = "/tmp/devworkspace-operator/templates/deployment/openshift/objects"
|
|
OpenshiftDevWorkspaceCheTemplatesPath = "/tmp/devworkspace-che-operator/templates/deployment/openshift/objects/"
|
|
KubernetesDevWorkspaceTemplatesPath = "/tmp/devworkspace-operator/templates/deployment/kubernetes/objects"
|
|
KubernetesDevWorkspaceCheTemplatesPath = "/tmp/devworkspace-che-operator/templates/deployment/kubernetes/objects/"
|
|
|
|
DevWorkspaceTemplates = devWorkspaceTemplatesPath()
|
|
DevWorkspaceCheTemplates = devWorkspaceCheTemplatesPath()
|
|
|
|
DevWorkspaceServiceAccountFile = DevWorkspaceTemplates + "/devworkspace-controller-serviceaccount.ServiceAccount.yaml"
|
|
DevWorkspaceRoleFile = DevWorkspaceTemplates + "/devworkspace-controller-leader-election-role.Role.yaml"
|
|
DevWorkspaceClusterRoleFile = DevWorkspaceTemplates + "/devworkspace-controller-role.ClusterRole.yaml"
|
|
DevWorkspaceProxyClusterRoleFile = DevWorkspaceTemplates + "/devworkspace-controller-proxy-role.ClusterRole.yaml"
|
|
DevWorkspaceViewWorkspacesClusterRoleFile = DevWorkspaceTemplates + "/devworkspace-controller-view-workspaces.ClusterRole.yaml"
|
|
DevWorkspaceEditWorkspacesClusterRoleFile = DevWorkspaceTemplates + "/devworkspace-controller-edit-workspaces.ClusterRole.yaml"
|
|
DevWorkspaceRoleBindingFile = DevWorkspaceTemplates + "/devworkspace-controller-leader-election-rolebinding.RoleBinding.yaml"
|
|
DevWorkspaceClusterRoleBindingFile = DevWorkspaceTemplates + "/devworkspace-controller-rolebinding.ClusterRoleBinding.yaml"
|
|
DevWorkspaceProxyClusterRoleBindingFile = DevWorkspaceTemplates + "/devworkspace-controller-proxy-rolebinding.ClusterRoleBinding.yaml"
|
|
DevWorkspaceWorkspaceRoutingCRDFile = DevWorkspaceTemplates + "/devworkspaceroutings.controller.devfile.io.CustomResourceDefinition.yaml"
|
|
DevWorkspaceTemplatesCRDFile = DevWorkspaceTemplates + "/devworkspacetemplates.workspace.devfile.io.CustomResourceDefinition.yaml"
|
|
DevWorkspaceCRDFile = DevWorkspaceTemplates + "/devworkspaces.workspace.devfile.io.CustomResourceDefinition.yaml"
|
|
DevWorkspaceConfigMapFile = DevWorkspaceTemplates + "/devworkspace-controller-configmap.ConfigMap.yaml"
|
|
DevWorkspaceDeploymentFile = DevWorkspaceTemplates + "/devworkspace-controller-manager.Deployment.yaml"
|
|
|
|
DevWorkspaceCheServiceAccountFile = DevWorkspaceCheTemplates + "/devworkspace-che-serviceaccount.ServiceAccount.yaml"
|
|
DevWorkspaceCheRoleFile = DevWorkspaceCheTemplates + "/devworkspace-che-leader-election-role.Role.yaml"
|
|
DevWorkspaceCheClusterRoleFile = DevWorkspaceCheTemplates + "/devworkspace-che-role.ClusterRole.yaml"
|
|
DevWorkspaceCheProxyClusterRoleFile = DevWorkspaceCheTemplates + "/devworkspace-che-proxy-role.ClusterRole.yaml"
|
|
DevWorkspaceCheMetricsReaderClusterRoleFile = DevWorkspaceCheTemplates + "/devworkspace-che-metrics-reader.ClusterRole.yaml"
|
|
DevWorkspaceCheRoleBindingFile = DevWorkspaceCheTemplates + "/devworkspace-che-leader-election-rolebinding.RoleBinding.yaml"
|
|
DevWorkspaceCheClusterRoleBindingFile = DevWorkspaceCheTemplates + "/devworkspace-che-rolebinding.ClusterRoleBinding.yaml"
|
|
DevWorkspaceCheProxyClusterRoleBindingFile = DevWorkspaceCheTemplates + "/devworkspace-che-proxy-rolebinding.ClusterRoleBinding.yaml"
|
|
DevWorkspaceCheManagersCRDFile = DevWorkspaceCheTemplates + "/chemanagers.che.eclipse.org.CustomResourceDefinition.yaml"
|
|
DevWorkspaceCheConfigMapFile = DevWorkspaceCheTemplates + "/devworkspace-che-configmap.ConfigMap.yaml"
|
|
DevWorkspaceCheDeploymentFile = DevWorkspaceCheTemplates + "/devworkspace-che-manager.Deployment.yaml"
|
|
DevWorkspaceCheMetricsServiceFile = DevWorkspaceCheTemplates + "/devworkspace-che-controller-manager-metrics-service.Service.yaml"
|
|
|
|
WebTerminalOperatorSubscriptionName = "web-terminal"
|
|
WebTerminalOperatorNamespace = "openshift-operators"
|
|
)
|
|
|
|
var (
|
|
// cachedObjects
|
|
cachedObj = make(map[string]metav1.Object)
|
|
syncItems = []func(*deploy.DeployContext) (bool, error){
|
|
createDwNamespace,
|
|
syncDwServiceAccount,
|
|
syncDwClusterRole,
|
|
syncDwProxyClusterRole,
|
|
syncDwEditWorkspacesClusterRole,
|
|
syncDwViewWorkspacesClusterRole,
|
|
syncDwRole,
|
|
syncDwRoleBinding,
|
|
syncDwClusterRoleBinding,
|
|
syncDwProxyClusterRoleBinding,
|
|
syncDwCRD,
|
|
syncDwTemplatesCRD,
|
|
syncDwWorkspaceRoutingCRD,
|
|
syncDwConfigMap,
|
|
syncDwDeployment,
|
|
}
|
|
|
|
syncDwCheItems = []func(*deploy.DeployContext) (bool, error){
|
|
createDwCheNamespace,
|
|
syncDwCheServiceAccount,
|
|
syncDwCheClusterRole,
|
|
syncDwCheProxyClusterRole,
|
|
syncDwCheMetricsClusterRole,
|
|
syncDwCheLeaderRole,
|
|
syncDwCheLeaderRoleBinding,
|
|
syncDwCheProxyRoleBinding,
|
|
syncDwCheRoleBinding,
|
|
syncDwCheCRD,
|
|
synDwCheCR,
|
|
syncDwCheConfigMap,
|
|
syncDwCheMetricsService,
|
|
synDwCheDeployment,
|
|
}
|
|
)
|
|
|
|
func ReconcileDevWorkspace(deployContext *deploy.DeployContext) (bool, error) {
|
|
if !deployContext.CheCluster.Spec.DevWorkspace.Enable {
|
|
return true, nil
|
|
}
|
|
|
|
devWorkspaceWebhookExists, err := deploy.Get(
|
|
deployContext,
|
|
client.ObjectKey{Name: DevWorkspaceWebhookName},
|
|
&admissionregistrationv1.MutatingWebhookConfiguration{},
|
|
)
|
|
if err != nil {
|
|
return false, err
|
|
}
|
|
|
|
if !devWorkspaceWebhookExists {
|
|
for _, syncItem := range syncItems {
|
|
done, err := syncItem(deployContext)
|
|
if !util.IsTestMode() {
|
|
if !done {
|
|
return false, err
|
|
}
|
|
}
|
|
}
|
|
} else {
|
|
if err := checkWebTerminalSubscription(deployContext); err != nil {
|
|
return false, err
|
|
}
|
|
}
|
|
|
|
for _, syncItem := range syncDwCheItems {
|
|
done, err := syncItem(deployContext)
|
|
if !util.IsTestMode() {
|
|
if !done {
|
|
return false, err
|
|
}
|
|
}
|
|
}
|
|
|
|
return true, nil
|
|
}
|
|
|
|
func checkWebTerminalSubscription(deployContext *deploy.DeployContext) error {
|
|
subscription := &operatorsv1alpha1.Subscription{}
|
|
if err := deployContext.ClusterAPI.NonCachedClient.Get(
|
|
context.TODO(),
|
|
types.NamespacedName{
|
|
Name: WebTerminalOperatorSubscriptionName,
|
|
Namespace: WebTerminalOperatorNamespace,
|
|
},
|
|
subscription); err != nil {
|
|
|
|
if apierrors.IsNotFound(err) {
|
|
return nil
|
|
}
|
|
return err
|
|
}
|
|
|
|
return errors.New("A non matching version of the Dev Workspace operator is already installed")
|
|
}
|
|
|
|
func createDwNamespace(deployContext *deploy.DeployContext) (bool, error) {
|
|
namespace := &corev1.Namespace{
|
|
TypeMeta: metav1.TypeMeta{
|
|
Kind: "Namespace",
|
|
APIVersion: corev1.SchemeGroupVersion.String(),
|
|
},
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: DevWorkspaceNamespace,
|
|
},
|
|
Spec: corev1.NamespaceSpec{},
|
|
}
|
|
|
|
return deploy.CreateIfNotExists(deployContext, namespace)
|
|
}
|
|
|
|
func syncDwServiceAccount(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceServiceAccountFile, &corev1.ServiceAccount{})
|
|
}
|
|
|
|
func syncDwRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceRoleFile, &rbacv1.Role{})
|
|
}
|
|
|
|
func syncDwRoleBinding(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceRoleBindingFile, &rbacv1.RoleBinding{})
|
|
}
|
|
|
|
func syncDwClusterRoleBinding(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceClusterRoleBindingFile, &rbacv1.ClusterRoleBinding{})
|
|
}
|
|
|
|
func syncDwProxyClusterRoleBinding(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceProxyClusterRoleBindingFile, &rbacv1.ClusterRoleBinding{})
|
|
}
|
|
|
|
func syncDwClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwProxyClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceProxyClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwViewWorkspacesClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceViewWorkspacesClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwEditWorkspacesClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceEditWorkspacesClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwWorkspaceRoutingCRD(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceWorkspaceRoutingCRDFile, &apiextensionsv1.CustomResourceDefinition{})
|
|
}
|
|
|
|
func syncDwTemplatesCRD(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceTemplatesCRDFile, &apiextensionsv1.CustomResourceDefinition{})
|
|
}
|
|
|
|
func syncDwCRD(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCRDFile, &apiextensionsv1.CustomResourceDefinition{})
|
|
}
|
|
|
|
func syncDwConfigMap(deployContext *deploy.DeployContext) (bool, error) {
|
|
configMap := &corev1.ConfigMap{}
|
|
if err := getK8SObjectFromFile(DevWorkspaceConfigMapFile, configMap); err != nil {
|
|
return false, err
|
|
}
|
|
// Remove when DevWorkspace controller should not care about DWR base host #373 https://github.com/devfile/devworkspace-operator/issues/373
|
|
if !util.IsOpenShift {
|
|
if configMap.Data == nil {
|
|
configMap.Data = make(map[string]string, 1)
|
|
}
|
|
configMap.Data["devworkspace.routing.cluster_host_suffix"] = deployContext.CheCluster.Spec.K8s.IngressDomain
|
|
}
|
|
|
|
return deploy.CreateIfNotExists(deployContext, configMap)
|
|
}
|
|
|
|
func syncDwDeployment(deployContext *deploy.DeployContext) (bool, error) {
|
|
dwDeploymentObj := &appsv1.Deployment{}
|
|
if err := getK8SObjectFromFile(DevWorkspaceDeploymentFile, dwDeploymentObj); err != nil {
|
|
return false, err
|
|
}
|
|
|
|
if deployContext.CheCluster.Spec.DevWorkspace.ControllerImage != "" {
|
|
dwDeploymentObj.Spec.Template.Spec.Containers[0].Image = deployContext.CheCluster.Spec.DevWorkspace.ControllerImage
|
|
}
|
|
|
|
return deploy.CreateIfNotExists(deployContext, dwDeploymentObj)
|
|
}
|
|
|
|
func createDwCheNamespace(deployContext *deploy.DeployContext) (bool, error) {
|
|
namespace := &corev1.Namespace{
|
|
TypeMeta: metav1.TypeMeta{
|
|
Kind: "Namespace",
|
|
APIVersion: corev1.SchemeGroupVersion.String(),
|
|
},
|
|
ObjectMeta: metav1.ObjectMeta{
|
|
Name: DevWorkspaceCheNamespace,
|
|
},
|
|
Spec: corev1.NamespaceSpec{},
|
|
}
|
|
|
|
return deploy.CreateIfNotExists(deployContext, namespace)
|
|
}
|
|
|
|
func syncDwCheServiceAccount(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheServiceAccountFile, &corev1.ServiceAccount{})
|
|
}
|
|
|
|
func syncDwCheClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwCheProxyClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheProxyClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwCheMetricsClusterRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheMetricsReaderClusterRoleFile, &rbacv1.ClusterRole{})
|
|
}
|
|
|
|
func syncDwCheLeaderRole(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheRoleFile, &rbacv1.Role{})
|
|
}
|
|
|
|
func syncDwCheLeaderRoleBinding(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheRoleBindingFile, &rbacv1.RoleBinding{})
|
|
}
|
|
|
|
func syncDwCheProxyRoleBinding(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheProxyClusterRoleBindingFile, &rbacv1.ClusterRoleBinding{})
|
|
}
|
|
|
|
func syncDwCheRoleBinding(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheClusterRoleBindingFile, &rbacv1.ClusterRoleBinding{})
|
|
}
|
|
|
|
func syncDwCheCRD(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheManagersCRDFile, &apiextensionsv1beta1.CustomResourceDefinition{})
|
|
}
|
|
|
|
func syncDwCheConfigMap(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheConfigMapFile, &corev1.ConfigMap{})
|
|
}
|
|
|
|
func syncDwCheMetricsService(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheMetricsServiceFile, &corev1.Service{})
|
|
}
|
|
|
|
func synDwCheCR(deployContext *deploy.DeployContext) (bool, error) {
|
|
// We want to create a default CheManager instance to be able to configure the che-specific
|
|
// parts of the installation, but at the same time we don't want to add a dependency on
|
|
// devworkspace-che-operator. Note that this way of initializing will probably see changes
|
|
// once we figure out https://github.com/eclipse/che/issues/19220
|
|
obj := &unstructured.Unstructured{}
|
|
obj.SetGroupVersionKind(schema.GroupVersionKind{Group: "che.eclipse.org", Version: "v1alpha1", Kind: "CheManager"})
|
|
err := deployContext.ClusterAPI.Client.Get(context.TODO(), client.ObjectKey{Name: "devworkspace-che", Namespace: DevWorkspaceCheNamespace}, obj)
|
|
if err != nil {
|
|
if apierrors.IsNotFound(err) {
|
|
obj = nil
|
|
} else {
|
|
return false, err
|
|
}
|
|
}
|
|
|
|
if obj == nil {
|
|
obj := &unstructured.Unstructured{}
|
|
obj.SetGroupVersionKind(schema.GroupVersionKind{
|
|
Group: "che.eclipse.org",
|
|
Version: "v1alpha1",
|
|
Kind: "CheManager",
|
|
})
|
|
obj.SetName("devworkspace-che")
|
|
obj.SetNamespace(DevWorkspaceCheNamespace)
|
|
|
|
err = deployContext.ClusterAPI.Client.Create(context.TODO(), obj)
|
|
if err != nil {
|
|
if apierrors.IsAlreadyExists(err) {
|
|
return false, nil
|
|
}
|
|
return false, err
|
|
}
|
|
}
|
|
|
|
return true, nil
|
|
}
|
|
|
|
func synDwCheDeployment(deployContext *deploy.DeployContext) (bool, error) {
|
|
return syncObject(deployContext, DevWorkspaceCheDeploymentFile, &appsv1.Deployment{})
|
|
}
|
|
|
|
func syncObject(deployContext *deploy.DeployContext, yamlFile string, obj interface{}) (bool, error) {
|
|
_, exists := cachedObj[yamlFile]
|
|
if !exists {
|
|
if err := getK8SObjectFromFile(yamlFile, obj); err != nil {
|
|
return false, err
|
|
}
|
|
cachedObj[yamlFile] = obj.(metav1.Object)
|
|
}
|
|
|
|
objectMeta := cachedObj[yamlFile]
|
|
return deploy.CreateIfNotExists(deployContext, objectMeta)
|
|
}
|
|
|
|
func getK8SObjectFromFile(yamlFile string, obj interface{}) error {
|
|
_, exists := cachedObj[yamlFile]
|
|
if !exists {
|
|
if err := util.ReadObject(yamlFile, obj); err != nil {
|
|
return err
|
|
}
|
|
cachedObj[yamlFile] = obj.(metav1.Object)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func devWorkspaceTemplatesPath() string {
|
|
if util.IsOpenShift {
|
|
return OpenshiftDevWorkspaceTemplatesPath
|
|
}
|
|
return KubernetesDevWorkspaceTemplatesPath
|
|
}
|
|
|
|
func devWorkspaceCheTemplatesPath() string {
|
|
if util.IsOpenShift {
|
|
return OpenshiftDevWorkspaceCheTemplatesPath
|
|
}
|
|
return KubernetesDevWorkspaceCheTemplatesPath
|
|
}
|