camera-operator/camera-operator.py

#!/usr/bin/env python3
import asyncio
import logging
import os
import yaml
from base64 import b64decode
from kubernetes_asyncio.client.api_client import ApiClient
from kubernetes_asyncio import client, config, watch
from os import path
from time import time
from urllib.parse import urlparse
import useful.logs

useful.logs.setup(
  json_fields={"msg":"message", "level": "levelname"})
logger = logging.getLogger()

NAMESPACE = os.environ["MY_POD_NAMESPACE"]

LABEL_MANAGED_BY = "camera-operator"
with open("camera-service.yml") as stream:
  SERVICE_BODY = stream.read()
with open("camera-deployment.yml") as stream:
  DEPLOYMENT_BODY = stream.read()

async def apply_changes(item, v1, now, apps_api):
    target = item["spec"]["target"]
    replicas = item["spec"].get("replicas")

    # Pull in secrets for the target URL
    secret_ref = item["spec"].get("secretRef")
    if secret_ref:
        secret = await v1.read_namespaced_secret(secret_ref, NAMESPACE)
        username = b64decode(secret.data.get("username", b"")).decode("ascii")
        password = b64decode(secret.data.get("password", b"")).decode("ascii")
        o = urlparse(target)
        netloc = o.netloc
        if "@" in netloc:
            _, netloc = o.netloc.split("@", 1)
        target = o._replace(netloc="%s:%s@%s" % (username, password, netloc)).geturl()

    name = "camera-%s" % item["metadata"]["name"]
    logger.info("Applying changes for %s", name)

    # Generate Deployment
    body = yaml.safe_load(DEPLOYMENT_BODY.replace("foobar", name))
    body["metadata"]["labels"] ["app.kubernetes.io/managed-by"] = LABEL_MANAGED_BY
    body["metadata"]["labels"] ["modified"] = now
    body["spec"]["template"]["spec"]["containers"][0]["args"] = [target]

    if replicas:
        body["spec"]["replicas"] = replicas
    try:
        await apps_api.replace_namespaced_deployment(
            name = name, body = body, namespace=NAMESPACE)
        logger.debug("Updated deployment %s/%s", NAMESPACE, name)
    except client.exceptions.ApiException as e:
        await apps_api.create_namespaced_deployment(
            body = body, namespace=NAMESPACE)
        logger.debug("Created deployment %s/%s", NAMESPACE, name)

    # Generate Service
    body = yaml.safe_load(SERVICE_BODY.replace("foobar", name))
    body["metadata"]["labels"] ["app.kubernetes.io/managed-by"] = LABEL_MANAGED_BY
    body["metadata"]["labels"] ["modified"] = now
    try:
        await v1.replace_namespaced_service(
            name = name, body = body, namespace=NAMESPACE)
        logger.debug("Updated service %s/%s", NAMESPACE, name)
    except client.exceptions.ApiException as e:
        await v1.create_namespaced_service(
            body = body, namespace=NAMESPACE)
        logger.debug("Created service %s/%s", NAMESPACE, name)


async def main():
  if os.getenv("KUBECONFIG"):
      await config.load_kube_config()
  else:
      config.load_incluster_config()
  async with ApiClient() as api:
    v1 = client.CoreV1Api(api)
    apps_api = client.AppsV1Api()
    api_instance = client.CustomObjectsApi(api)
    now = str(time())

    w = watch.Watch()
    args = "k-space.ee", "v1alpha1", NAMESPACE, "cams"

    resp = await api_instance.list_namespaced_custom_object(*args)
    for i in resp["items"]:
        await apply_changes(i, v1, now, apps_api)

    logger.info("Cleaning up dangling deployments and services")
    resp = await v1.list_namespaced_service(NAMESPACE)
    for i in resp.items:
        if not i.metadata.labels:
            continue
        if i.metadata.labels.get("app.kubernetes.io/managed-by") != LABEL_MANAGED_BY:
            continue
        if i.metadata.labels.get("modified") == now:
            continue
        logger.debug("Removing service: %s/%s", NAMESPACE, i.metadata.name)
        await v1.delete_namespaced_service(i.metadata.name, NAMESPACE)

    resp = await apps_api.list_namespaced_deployment(NAMESPACE)
    for i in resp.items:
        if not i.metadata.labels:
            continue
        if i.metadata.labels.get("app.kubernetes.io/managed-by") != LABEL_MANAGED_BY:
            continue
        if i.metadata.labels.get("modified") == now:
            continue
        logger.debug("Removing deployment: %s/%s", NAMESPACE, i.metadata.name)
        await apps_api.delete_namespaced_deployment(i.metadata.name, NAMESPACE)

    logger.info("Subscribing to updates")

    async for event in w.stream(api_instance.list_namespaced_custom_object, *args):
        if event["type"] == "ADDED":
            await apply_changes(event["object"], v1, now, apps_api)
        elif event["type"] == "DELETED":
            name = "camera-%s" % event["object"]["metadata"]["name"]
            try:
                await v1.delete_namespaced_service(name, NAMESPACE)
            except client.exceptions.ApiException as e:
                pass
            else:
                logger.debug("Removed service: %s/%s", NAMESPACE, name)
            try:
                await apps_api.delete_namespaced_deployment(name, NAMESPACE)
            except client.exceptions.ApiException as e:
                pass
            else:
                logger.debug("Removed deployment: %s/%s", NAMESPACE, name)


if __name__ == '__main__':
    loop = asyncio.new_event_loop()
    loop.run_until_complete(main())
    loop.close()
Fix permissions 2022-08-02 13:08:19 +00:00			`#!/usr/bin/env python3`
Initial commit 2022-08-01 16:25:56 +00:00			`import asyncio`
Restructure logging 2022-08-02 17:41:16 +00:00			`import logging`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`import os`
Initial commit 2022-08-01 16:25:56 +00:00			`import yaml`
Add secret handling 2022-08-01 17:29:53 +00:00			`from base64 import b64decode`
Initial commit 2022-08-01 16:25:56 +00:00			`from kubernetes_asyncio.client.api_client import ApiClient`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`from kubernetes_asyncio import client, config, watch`
Initial commit 2022-08-01 16:25:56 +00:00			`from os import path`
			`from time import time`
Add secret handling 2022-08-01 17:29:53 +00:00			`from urllib.parse import urlparse`
Restructure logging 2022-08-02 17:41:16 +00:00			`import useful.logs`

			`useful.logs.setup(`
			`json_fields={"msg":"message", "level": "levelname"})`
			`logger = logging.getLogger()`
Initial commit 2022-08-01 16:25:56 +00:00
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`NAMESPACE = os.environ["MY_POD_NAMESPACE"]`

Initial commit 2022-08-01 16:25:56 +00:00			`LABEL_MANAGED_BY = "camera-operator"`
			`with open("camera-service.yml") as stream:`
			`SERVICE_BODY = stream.read()`
			`with open("camera-deployment.yml") as stream:`
			`DEPLOYMENT_BODY = stream.read()`

Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`async def apply_changes(item, v1, now, apps_api):`
			`target = item["spec"]["target"]`
			`replicas = item["spec"].get("replicas")`
Initial commit 2022-08-01 16:25:56 +00:00
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`# Pull in secrets for the target URL`
			`secret_ref = item["spec"].get("secretRef")`
			`if secret_ref:`
			`secret = await v1.read_namespaced_secret(secret_ref, NAMESPACE)`
			`username = b64decode(secret.data.get("username", b"")).decode("ascii")`
			`password = b64decode(secret.data.get("password", b"")).decode("ascii")`
			`o = urlparse(target)`
			`netloc = o.netloc`
			`if "@" in netloc:`
			`_, netloc = o.netloc.split("@", 1)`
			`target = o._replace(netloc="%s:%s@%s" % (username, password, netloc)).geturl()`

			`name = "camera-%s" % item["metadata"]["name"]`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.info("Applying changes for %s", name)`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00
			`# Generate Deployment`
			`body = yaml.safe_load(DEPLOYMENT_BODY.replace("foobar", name))`
			`body["metadata"]["labels"] ["app.kubernetes.io/managed-by"] = LABEL_MANAGED_BY`
			`body["metadata"]["labels"] ["modified"] = now`
			`body["spec"]["template"]["spec"]["containers"][0]["args"] = [target]`

			`if replicas:`
			`body["spec"]["replicas"] = replicas`
			`try:`
			`await apps_api.replace_namespaced_deployment(`
			`name = name, body = body, namespace=NAMESPACE)`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Updated deployment %s/%s", NAMESPACE, name)`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`except client.exceptions.ApiException as e:`
			`await apps_api.create_namespaced_deployment(`
			`body = body, namespace=NAMESPACE)`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Created deployment %s/%s", NAMESPACE, name)`
Initial commit 2022-08-01 16:25:56 +00:00
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`# Generate Service`
			`body = yaml.safe_load(SERVICE_BODY.replace("foobar", name))`
			`body["metadata"]["labels"] ["app.kubernetes.io/managed-by"] = LABEL_MANAGED_BY`
			`body["metadata"]["labels"] ["modified"] = now`
			`try:`
			`await v1.replace_namespaced_service(`
			`name = name, body = body, namespace=NAMESPACE)`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Updated service %s/%s", NAMESPACE, name)`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`except client.exceptions.ApiException as e:`
			`await v1.create_namespaced_service(`
			`body = body, namespace=NAMESPACE)`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Created service %s/%s", NAMESPACE, name)`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00

			`async def main():`
			`if os.getenv("KUBECONFIG"):`
			`await config.load_kube_config()`
			`else:`
Fix permissions 2022-08-02 13:08:19 +00:00			`config.load_incluster_config()`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`async with ApiClient() as api:`
Initial commit 2022-08-01 16:25:56 +00:00			`v1 = client.CoreV1Api(api)`
			`apps_api = client.AppsV1Api()`
			`api_instance = client.CustomObjectsApi(api)`
			`now = str(time())`

Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`w = watch.Watch()`
			`args = "k-space.ee", "v1alpha1", NAMESPACE, "cams"`

			`resp = await api_instance.list_namespaced_custom_object(*args)`
			`for i in resp["items"]:`
			`await apply_changes(i, v1, now, apps_api)`

Restructure logging 2022-08-02 17:41:16 +00:00			`logger.info("Cleaning up dangling deployments and services")`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`resp = await v1.list_namespaced_service(NAMESPACE)`
			`for i in resp.items:`
			`if not i.metadata.labels:`
			`continue`
			`if i.metadata.labels.get("app.kubernetes.io/managed-by") != LABEL_MANAGED_BY:`
			`continue`
			`if i.metadata.labels.get("modified") == now:`
			`continue`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Removing service: %s/%s", NAMESPACE, i.metadata.name)`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`await v1.delete_namespaced_service(i.metadata.name, NAMESPACE)`

			`resp = await apps_api.list_namespaced_deployment(NAMESPACE)`
			`for i in resp.items:`
			`if not i.metadata.labels:`
			`continue`
			`if i.metadata.labels.get("app.kubernetes.io/managed-by") != LABEL_MANAGED_BY:`
Initial commit 2022-08-01 16:25:56 +00:00			`continue`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`if i.metadata.labels.get("modified") == now:`
			`continue`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Removing deployment: %s/%s", NAMESPACE, i.metadata.name)`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`await apps_api.delete_namespaced_deployment(i.metadata.name, NAMESPACE)`

Restructure logging 2022-08-02 17:41:16 +00:00			`logger.info("Subscribing to updates")`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00
			`async for event in w.stream(api_instance.list_namespaced_custom_object, *args):`
			`if event["type"] == "ADDED":`
			`await apply_changes(event["object"], v1, now, apps_api)`
			`elif event["type"] == "DELETED":`
			`name = "camera-%s" % event["object"]["metadata"]["name"]`
Initial commit 2022-08-01 16:25:56 +00:00			`try:`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`await v1.delete_namespaced_service(name, NAMESPACE)`
Initial commit 2022-08-01 16:25:56 +00:00			`except client.exceptions.ApiException as e:`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`pass`
			`else:`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Removed service: %s/%s", NAMESPACE, name)`
Initial commit 2022-08-01 16:25:56 +00:00			`try:`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`await apps_api.delete_namespaced_deployment(name, NAMESPACE)`
Initial commit 2022-08-01 16:25:56 +00:00			`except client.exceptions.ApiException as e:`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`pass`
			`else:`
Restructure logging 2022-08-02 17:41:16 +00:00			`logger.debug("Removed deployment: %s/%s", NAMESPACE, name)`
Initial commit 2022-08-01 16:25:56 +00:00

			`if __name__ == '__main__':`
Switch to Kubernetes Watch API 2022-08-02 13:01:21 +00:00			`loop = asyncio.new_event_loop()`
Initial commit 2022-08-01 16:25:56 +00:00			`loop.run_until_complete(main())`
			`loop.close()`