Move the registration work into k8ssandra-client

cmd/kubectl-k8ssandra/k8ssandra/k8ssandra.go

@@ -11,6 +11,7 @@ import (
 	"github.com/k8ssandra/k8ssandra-client/cmd/kubectl-k8ssandra/config"
 	"github.com/k8ssandra/k8ssandra-client/cmd/kubectl-k8ssandra/helm"
 	"github.com/k8ssandra/k8ssandra-client/cmd/kubectl-k8ssandra/operate"
+	"github.com/k8ssandra/k8ssandra-client/cmd/kubectl-k8ssandra/register"
 	"github.com/k8ssandra/k8ssandra-client/cmd/kubectl-k8ssandra/users"
 
 	"github.com/spf13/cobra"
@@ -53,6 +54,7 @@ func NewCmd(streams genericclioptions.IOStreams) *cobra.Command {
 	// cmd.AddCommand(migrate.NewInstallCmd(streams))
 	cmd.AddCommand(config.NewCmd(streams))
 	cmd.AddCommand(helm.NewHelmCmd(streams))
+	register.Init(cmd, streams)
 
 	// cmd.Flags().BoolVar(&o.listNamespaces, "list", o.listNamespaces, "if true, print the list of all namespaces in the current KUBECONFIG")
 	o.configFlags.AddFlags(cmd.Flags())

cmd/kubectl-k8ssandra/register/command.go

@@ -0,0 +1,72 @@
+package register
+
+import (
+	"fmt"
+
+	"github.com/spf13/cobra"
+	"k8s.io/cli-runtime/pkg/genericclioptions"
+)
+
+var RegisterClusterCmd = &cobra.Command{
+	Use:   "register [flags]",
+	Short: "register a data plane into the control plane.",
+	Long:  `register creates a ServiceAccount on a source cluster, copies its credentials and then creates a secret containing them on the destination cluster. It then also creates a ClientConfig on the destination cluster to reference the secret.`,
+	Run:   entrypoint,
+}
+
+func Init(cmd *cobra.Command, streams genericclioptions.IOStreams) {
+	RegisterClusterCmd.Flags().String("source-kubeconfig",
+		"",
+		"path to source cluster's kubeconfig file - defaults to KUBECONFIG then ~/.kube/config")
+	RegisterClusterCmd.Flags().String("dest-kubeconfig",
+		"",
+		"path to destination cluster's kubeconfig file - defaults to KUBECONFIG then ~/.kube/config")
+	RegisterClusterCmd.Flags().String("source-context", "", "context name for source cluster")
+	RegisterClusterCmd.Flags().String("dest-context", "", "context name for destination cluster")
+	RegisterClusterCmd.Flags().String("source-namespace", "k8ssandra-operator", "namespace containing service account for source cluster")
+	RegisterClusterCmd.Flags().String("dest-namespace", "k8ssandra-operator", "namespace where secret and clientConfig will be created on destination cluster")
+	RegisterClusterCmd.Flags().String("serviceaccount-name", "k8ssandra-operator", "serviceaccount name for destination cluster")
+	RegisterClusterCmd.Flags().String("destination-name", "remote-k8ssandra-operator", "name for remote clientConfig and secret on destination cluster")
+
+	if err := RegisterClusterCmd.MarkFlagRequired("source-context"); err != nil {
+		panic(err)
+
+	}
+	if err := RegisterClusterCmd.MarkFlagRequired("dest-context"); err != nil {
+		panic(err)
+	}
+	cmd.AddCommand(RegisterClusterCmd)
+}
+
+func entrypoint(cmd *cobra.Command, args []string) {
+	executor := NewRegistrationExecutorFromRegisterClusterCmd(*cmd)
+	for i := 0; i < 30; i++ {
+		res := executor.RegisterCluster()
+		switch {
+		case res.IsError():
+			fmt.Println("Registration continuing", res.GetError())
+			continue
+		case res.Completed():
+			fmt.Println("Registration completed successfully")
+			return
+		case res.IsRequeue():
+			fmt.Println("Registration continues")
+			continue
+		}
+	}
+	fmt.Println("Registration failed - retries exceeded")
+}
+
+func NewRegistrationExecutorFromRegisterClusterCmd(cmd cobra.Command) *RegistrationExecutor {
+	return &RegistrationExecutor{
+		SourceKubeconfig: cmd.Flag("source-kubeconfig").Value.String(),
+		DestKubeconfig:   cmd.Flag("dest-kubeconfig").Value.String(),
+		SourceContext:    cmd.Flag("source-context").Value.String(),
+		DestContext:      cmd.Flag("dest-context").Value.String(),
+		SourceNamespace:  cmd.Flag("source-namespace").Value.String(),
+		DestNamespace:    cmd.Flag("dest-namespace").Value.String(),
+		ServiceAccount:   cmd.Flag("serviceaccount-name").Value.String(),
+		Context:          cmd.Context(),
+		DestinationName:  cmd.Flag("destination-name").Value.String(),
+	}
+}

cmd/kubectl-k8ssandra/register/register_test.go

@@ -0,0 +1,178 @@
+package register
+
+import (
+	"context"
+	"os"
+	"path/filepath"
+	"runtime"
+	"testing"
+	"time"
+
+	configapi "github.com/k8ssandra/k8ssandra-operator/apis/config/v1beta1"
+	"github.com/stretchr/testify/require"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/client-go/tools/clientcmd"
+	clientcmdapi "k8s.io/client-go/tools/clientcmd/api"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+)
+
+func TestRegister(t *testing.T) {
+	require.New(t)
+	client1 := (*multiEnv)[0].GetClient("source-namespace")
+	client2 := (*multiEnv)[1].GetClient("dest-namespace")
+
+	if err := client1.Create((*multiEnv)[0].Context, &corev1.Namespace{ObjectMeta: metav1.ObjectMeta{Name: "source-namespace"}}); err != nil {
+		t.Fatal(err)
+	}
+
+	if err := client2.Create((*multiEnv)[1].Context, &corev1.Namespace{ObjectMeta: metav1.ObjectMeta{Name: "dest-namespace"}}); err != nil {
+		t.Fatal(err)
+	}
+
+	buildDir := os.Getenv("BUILD_DIR")
+	if buildDir == "" {
+		_, b, _, _ := runtime.Caller(0)
+		buildDir = filepath.Join(filepath.Dir(b), "../../../build")
+	}
+
+	if _, err := os.Stat(buildDir); os.IsNotExist(err) {
+		if err := os.Mkdir(buildDir, os.ModePerm); err != nil {
+			t.Fatal(err)
+		}
+	}
+
+	kc1, err := (*multiEnv)[0].GetKubeconfig(t)
+	if err != nil {
+		t.Fatal(err)
+
+	}
+	f, err := os.Create(buildDir + "/kubeconfig1")
+	if err != nil {
+		t.Fatal(err)
+	}
+	defer func() {
+		if err := f.Close(); err != nil {
+			t.Fatal(err)
+		}
+	}()
+	if _, err := f.Write(kc1); err != nil {
+		t.Fatal(err)
+	}
+
+	kc2, err := (*multiEnv)[1].GetKubeconfig(t)
+	if err != nil {
+		t.Fatal(err)
+
+	}
+	f, err = os.Create(buildDir + "/kubeconfig2")
+	if err != nil {
+		t.Fatal(err)
+	}
+	if _, err := f.Write(kc2); err != nil {
+		t.Fatal(err)
+	}
+	ex := RegistrationExecutor{
+		SourceKubeconfig: buildDir + "/kubeconfig1",
+		DestKubeconfig:   buildDir + "/kubeconfig2",
+		SourceContext:    "default-context",
+		DestContext:      "default-context",
+		SourceNamespace:  "source-namespace",
+		DestNamespace:    "dest-namespace",
+		ServiceAccount:   "k8ssandra-operator",
+		Context:          context.TODO(),
+		DestinationName:  "test-destination",
+	}
+	ctx := context.Background()
+
+	require.Eventually(t, func() bool {
+		res := ex.RegisterCluster()
+		switch {
+		case res.IsDone():
+			return true
+		case res.IsError():
+			t.Log(res.GetError())
+			if res.GetError().Error() == "no secret found for service account k8ssandra-operator" {
+				return true
+			}
+		}
+		return false
+	}, time.Second*30, time.Second*5)
+
+	// This relies on a controller that is not running in the envtest.
+
+	desiredSaSecret := &corev1.Secret{}
+	require.NoError(t, client1.Get(context.Background(), client.ObjectKey{Name: "k8ssandra-operator-secret", Namespace: "source-namespace"}, desiredSaSecret))
+	patch := client.MergeFrom(desiredSaSecret.DeepCopy())
+	desiredSaSecret.Data = map[string][]byte{
+		"token":  []byte("test-token"),
+		"ca.crt": []byte("test-ca"),
+	}
+	require.NoError(t, client1.Patch(ctx, desiredSaSecret, patch))
+
+	desiredSa := &corev1.ServiceAccount{}
+	require.NoError(t, client1.Get(
+		context.Background(),
+		client.ObjectKey{Name: "k8ssandra-operator", Namespace: "source-namespace"},
+		desiredSa))
+
+	patch = client.MergeFrom(desiredSa.DeepCopy())
+	desiredSa.Secrets = []corev1.ObjectReference{
+		{
+			Name: "k8ssandra-operator-secret",
+		},
+	}
+	require.NoError(t, client1.Patch(ctx, desiredSa, patch))
+
+	// Continue reconciliation
+
+	require.Eventually(t, func() bool {
+		res := ex.RegisterCluster()
+		switch {
+		case res.IsDone():
+			return true
+		case res.IsError():
+			t.Log(res.GetError())
+			return false
+		}
+		return false
+	}, time.Second*3000, time.Second*5)
+
+	if err := configapi.AddToScheme(client2.Scheme()); err != nil {
+		t.Fatal(err)
+	}
+	destSecret := &corev1.Secret{}
+	require.Eventually(t, func() bool {
+		err = client2.Get(ctx,
+			client.ObjectKey{Name: "test-destination", Namespace: "dest-namespace"}, destSecret)
+		if err != nil {
+			t.Log("didn't find dest secret")
+			return false
+		}
+		clientConfig := &configapi.ClientConfig{}
+		err = client2.Get(ctx,
+			client.ObjectKey{Name: "test-destination", Namespace: "dest-namespace"}, clientConfig)
+		if err != nil {
+			t.Log("didn't find dest client config")
+			return false
+		}
+		return err == nil
+	}, time.Second*60, time.Second*5)
+
+	destKubeconfig := ClientConfigFromSecret(destSecret)
+	require.Equal(t,
+		desiredSaSecret.Data["ca.crt"],
+		destKubeconfig.Clusters["cluster"].CertificateAuthorityData)
+
+	require.Equal(t,
+		string(desiredSaSecret.Data["token"]),
+		destKubeconfig.AuthInfos["cluster"].Token)
+}
+
+func ClientConfigFromSecret(s *corev1.Secret) clientcmdapi.Config {
+	out, err := clientcmd.Load(s.Data["kubeconfig"])
+	if err != nil {
+		panic(err)
+	}
+	return *out
+}