-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathmain.go
executable file
·71 lines (58 loc) · 1.68 KB
/
main.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
package main
import (
"encoding/json"
"fmt"
"io/ioutil"
"net/http"
"k8s.io/api/admission/v1"
metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
"k8s.io/klog/v2"
"github.com/shixinghong/repimage/pkg/utils"
)
var (
cert = "./certs/serverCert.pem"
key = "./certs/serverKey.pem"
)
func serve(w http.ResponseWriter, r *http.Request, admit utils.AdmitFunc) {
klog.Info(r.RequestURI)
var body []byte
if r.Body != nil {
if data, err := ioutil.ReadAll(r.Body); err == nil {
body = data
}
}
klog.Info(fmt.Sprintf("handling request: %s", string(body)))
reqAdmissionReview := v1.AdmissionReview{} // 请求
resAdmissionReview := v1.AdmissionReview{TypeMeta: metav1.TypeMeta{ // 响应
Kind: "AdmissionReview",
APIVersion: "admission.k8s.io/v1",
}}
deserializer := utils.Codecs.UniversalDeserializer()
if _, _, err := deserializer.Decode(body, nil, &reqAdmissionReview); err != nil {
klog.Error(err)
resAdmissionReview.Response = utils.ToAdmissionResponse(err)
} else {
// pass to admitFunc
resAdmissionReview.Response = admit(reqAdmissionReview) // 业务逻辑
}
// 以下是固定写法
resAdmissionReview.Response.UID = reqAdmissionReview.Request.UID
klog.Info(fmt.Sprintf("sending response: %v", resAdmissionReview.Response))
respBytes, err := json.Marshal(resAdmissionReview)
if err != nil {
klog.Error(err)
}
if _, err := w.Write(respBytes); err != nil {
klog.Error(err)
}
}
func servePods(w http.ResponseWriter, r *http.Request) {
serve(w, r, utils.AdmitPods)
}
func main() {
http.HandleFunc("/pods", servePods)
klog.Info("server start")
if err := http.ListenAndServeTLS(":8080", cert, key, nil); err != nil {
klog.Exit(err)
}
}