query UDNs from K8S API

jpinsonneau · jpinsonneau · commit 05b7b628d9ff · 2025-01-20T13:46:06.000+01:00
diff --git a/pkg/handler/k8s.go b/pkg/handler/k8s.go
@@ -0,0 +1,51 @@
+package handler
+
+import (
+	"context"
+	"fmt"
+	"net/http"
+
+	"github.com/netobserv/network-observability-console-plugin/pkg/kubernetes/auth"
+	"github.com/netobserv/network-observability-console-plugin/pkg/kubernetes/resources"
+	"github.com/netobserv/network-observability-console-plugin/pkg/utils"
+
+	"k8s.io/apimachinery/pkg/runtime/schema"
+)
+
+func (h *Handlers) GetUDNIdss(ctx context.Context) func(w http.ResponseWriter, r *http.Request) {
+	return func(w http.ResponseWriter, r *http.Request) {
+		token, err := auth.GetUserToken(r.Header)
+		if err != nil {
+			writeError(w, http.StatusInternalServerError, err.Error())
+		}
+
+		cudns, err := resources.List(ctx, token, schema.GroupVersionResource{
+			Group:    "k8s.ovn.org",
+			Version:  "v1",
+			Resource: "clusteruserdefinednetworks",
+		})
+		if err != nil {
+			writeError(w, http.StatusInternalServerError, err.Error())
+		}
+
+		udns, err := resources.List(ctx, token, schema.GroupVersionResource{
+			Group:    "k8s.ovn.org",
+			Version:  "v1",
+			Resource: "userdefinednetworks",
+		})
+		if err != nil {
+			writeError(w, http.StatusInternalServerError, err.Error())
+		}
+
+		values := []string{}
+		for _, cudn := range cudns {
+			md := cudn.Object["metadata"].(map[string]interface{})
+			values = append(values, fmt.Sprintf("%s", md["name"]))
+		}
+		for _, udn := range udns {
+			md := udn.Object["metadata"].(map[string]interface{})
+			values = append(values, fmt.Sprintf("%s.%s", md["namespace"], md["name"]))
+		}
+		writeJSON(w, http.StatusOK, utils.NonEmpty(utils.Dedup(values)))
+	}
+}
diff --git a/pkg/kubernetes/auth/check_auth.go b/pkg/kubernetes/auth/check_auth.go
@@ -73,7 +73,7 @@ func (b *DenyAllChecker) CheckAdmin(_ context.Context, _ http.Header) error {
 	return errors.New("deny all auth mode selected")
 }
 
-func getUserToken(header http.Header) (string, error) {
+func GetUserToken(header http.Header) (string, error) {
 	authValue := header.Get(AuthHeader)
 	if authValue != "" {
 		parts := strings.Split(authValue, "Bearer ")
@@ -130,7 +130,7 @@ type BearerTokenChecker struct {
 
 func (c *BearerTokenChecker) CheckAuth(ctx context.Context, header http.Header) error {
 	hlog.Debug("Checking authenticated user")
-	token, err := getUserToken(header)
+	token, err := GetUserToken(header)
 	if err != nil {
 		return err
 	}
@@ -145,7 +145,7 @@ func (c *BearerTokenChecker) CheckAuth(ctx context.Context, header http.Header)
 
 func (c *BearerTokenChecker) CheckAdmin(ctx context.Context, header http.Header) error {
 	hlog.Debug("Checking admin user")
-	token, err := getUserToken(header)
+	token, err := GetUserToken(header)
 	if err != nil {
 		return err
 	}
diff --git a/pkg/kubernetes/client/client.go b/pkg/kubernetes/client/client.go
@@ -5,6 +5,10 @@ import (
 
 	authv1 "k8s.io/api/authentication/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/runtime/schema"
+	"k8s.io/client-go/dynamic"
 	"k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/rest"
 )
@@ -53,3 +57,30 @@ func NewInCluster() (KubeAPI, error) {
 	}
 	return &InCluster{client: client}, nil
 }
+
+func (c *InCluster) GetResources(ctx context.Context, token string) ([]unstructured.Unstructured, error) {
+	config, err := rest.InClusterConfig()
+	if err != nil {
+		return nil, err
+	}
+	config.BearerToken = token
+	config.BearerTokenFile = ""
+
+	dynamicClient, err := dynamic.NewForConfig(config)
+	if err != nil {
+		panic(err)
+	}
+
+	gvr := schema.GroupVersionResource{
+		Group:    "k8s.ovn.org",
+		Version:  "v1",
+		Resource: "userdefinednetworks",
+	}
+
+	// Retrieve the custom resource
+	list, err := dynamicClient.Resource(gvr).List(context.TODO(), v1.ListOptions{})
+	if err != nil {
+		return nil, err
+	}
+	return list.Items, err
+}
diff --git a/pkg/kubernetes/resources/resources.go b/pkg/kubernetes/resources/resources.go
@@ -0,0 +1,32 @@
+package resources
+
+import (
+	"context"
+
+	v1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/runtime/schema"
+	"k8s.io/client-go/dynamic"
+	"k8s.io/client-go/rest"
+)
+
+func List(ctx context.Context, token string, gvr schema.GroupVersionResource) ([]unstructured.Unstructured, error) {
+	config, err := rest.InClusterConfig()
+	if err != nil {
+		return nil, err
+	}
+	config.BearerToken = token
+	config.BearerTokenFile = ""
+
+	dynamicClient, err := dynamic.NewForConfig(config)
+	if err != nil {
+		return nil, err
+	}
+
+	// Retrieve the custom resource
+	list, err := dynamicClient.Resource(gvr).List(context.TODO(), v1.ListOptions{})
+	if err != nil {
+		return nil, err
+	}
+	return list.Items, err
+}
diff --git a/pkg/server/routes.go b/pkg/server/routes.go
@@ -55,6 +55,9 @@ func setupRoutes(ctx context.Context, cfg *config.Config, authChecker auth.Check
 	api.HandleFunc("/resources/namespaces", h.GetNamespaces(ctx))
 	api.HandleFunc("/resources/names", h.GetNames(ctx))
 
+	// K8S endpoints
+	api.HandleFunc("/k8s/resources/udnIds", h.GetUDNIdss(ctx))
+
 	// Frontend files
 	api.HandleFunc("/frontend-config", h.GetFrontendConfig())
 	r.PathPrefix("/").Handler(http.FileServer(http.Dir("./web/dist/")))
diff --git a/web/src/api/routes.ts b/web/src/api/routes.ts
@@ -108,6 +108,15 @@ export const getResources = (namespace: string, kind: string, forcedNamespace?:
   });
 };
 
+export const getK8SUDNIds = (): Promise<string[]> => {
+  return axios.get(ContextSingleton.getHost() + '/api/k8s/resources/udnIds').then(r => {
+    if (r.status >= 400) {
+      throw new Error(`${r.statusText} [code=${r.status}]`);
+    }
+    return r.data;
+  });
+};
+
 export const getFlowMetrics = (params: FlowQuery, range: number | TimeRange): Promise<FlowMetricsResult> => {
   return getFlowMetricsGeneric(params, res => {
     return parseTopologyMetrics(
diff --git a/web/src/components/netflow-traffic.tsx b/web/src/components/netflow-traffic.tsx
@@ -437,6 +437,9 @@ export const NetflowTraffic: React.FC<NetflowTrafficProps> = ({
             model.setWarning,
             clearFlows
           );
+
+        // TODO: do something with UDN Ids to highlight empty / unused
+        drawerRef.current?.getTopologyHandle()?.fetchUDNs();
         break;
       default:
         console.error('tick called on not implemented view Id', model.selectedViewId);
diff --git a/web/src/components/tabs/netflow-topology/netflow-topology.tsx b/web/src/components/tabs/netflow-topology/netflow-topology.tsx
@@ -14,6 +14,7 @@ import {
   Stats,
   TopologyMetrics
 } from '../../../api/loki';
+import { getK8SUDNIds } from '../../../api/routes';
 import { Config, Feature } from '../../../model/config';
 import { Filter, FilterDefinition, Filters } from '../../../model/filters';
 import {
@@ -52,6 +53,7 @@ export type NetflowTopologyHandle = {
     setWarning: (v?: Warning) => void,
     initFunction: () => void
   ) => Promise<Stats[]> | undefined;
+  fetchUDNs: () => void;
 };
 
 export interface NetflowTopologyProps {
@@ -182,8 +184,19 @@ export const NetflowTopology: React.FC<NetflowTopologyProps> = React.forwardRef(
       [t]
     );
 
+    const fetchUDNs = React.useCallback(() => {
+      getK8SUDNIds()
+        .then(ids => {
+          console.log('fetchUDNs', ids);
+        })
+        .catch(err => {
+          console.error('fetchUDNs', err);
+        });
+    }, []);
+
     React.useImperativeHandle(ref, () => ({
-      fetch
+      fetch,
+      fetchUDNs
     }));
 
     const getContent = React.useCallback(() => {
