mirror of https://github.com/helm/helm
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
291 lines
8.1 KiB
291 lines
8.1 KiB
/*
|
|
Copyright The Helm Authors.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
package main // import "k8s.io/helm/cmd/helm"
|
|
|
|
import (
|
|
"fmt"
|
|
"io/ioutil"
|
|
"log"
|
|
"os"
|
|
"strings"
|
|
|
|
"github.com/spf13/cobra"
|
|
"google.golang.org/grpc/grpclog"
|
|
"google.golang.org/grpc/status"
|
|
"k8s.io/client-go/kubernetes"
|
|
"k8s.io/client-go/rest"
|
|
|
|
// Import to initialize client auth plugins.
|
|
_ "k8s.io/client-go/plugin/pkg/client/auth"
|
|
|
|
"k8s.io/helm/pkg/helm"
|
|
helm_env "k8s.io/helm/pkg/helm/environment"
|
|
"k8s.io/helm/pkg/helm/portforwarder"
|
|
"k8s.io/helm/pkg/kube"
|
|
"k8s.io/helm/pkg/tlsutil"
|
|
)
|
|
|
|
var (
|
|
tillerTunnel *kube.Tunnel
|
|
settings helm_env.EnvSettings
|
|
)
|
|
|
|
var globalUsage = `The Kubernetes package manager
|
|
|
|
To begin working with Helm, run the 'helm init' command:
|
|
|
|
$ helm init
|
|
|
|
This will install Tiller to your running Kubernetes cluster.
|
|
It will also set up any necessary local configuration.
|
|
|
|
Common actions from this point include:
|
|
|
|
- helm search: search for charts
|
|
- helm fetch: download a chart to your local directory to view
|
|
- helm install: upload the chart to Kubernetes
|
|
- helm list: list releases of charts
|
|
|
|
Environment:
|
|
$HELM_HOME set an alternative location for Helm files. By default, these are stored in ~/.helm
|
|
$HELM_HOST set an alternative Tiller host. The format is host:port
|
|
$HELM_NO_PLUGINS disable plugins. Set HELM_NO_PLUGINS=1 to disable plugins.
|
|
$TILLER_NAMESPACE set an alternative Tiller namespace (default "kube-system")
|
|
$KUBECONFIG set an alternative Kubernetes configuration file (default "~/.kube/config")
|
|
$HELM_TLS_CA_CERT path to TLS CA certificate used to verify the Helm client and Tiller server certificates (default "$HELM_HOME/ca.pem")
|
|
$HELM_TLS_CERT path to TLS client certificate file for authenticating to Tiller (default "$HELM_HOME/cert.pem")
|
|
$HELM_TLS_KEY path to TLS client key file for authenticating to Tiller (default "$HELM_HOME/key.pem")
|
|
$HELM_TLS_VERIFY enable TLS connection between Helm and Tiller and verify Tiller server certificate (default "false")
|
|
$HELM_TLS_ENABLE enable TLS connection between Helm and Tiller (default "false")
|
|
`
|
|
|
|
func newRootCmd(args []string) *cobra.Command {
|
|
cmd := &cobra.Command{
|
|
Use: "helm",
|
|
Short: "The Helm package manager for Kubernetes.",
|
|
Long: globalUsage,
|
|
SilenceUsage: true,
|
|
PersistentPreRun: func(*cobra.Command, []string) {
|
|
if settings.TLSCaCertFile == helm_env.DefaultTLSCaCert || settings.TLSCaCertFile == "" {
|
|
settings.TLSCaCertFile = settings.Home.TLSCaCert()
|
|
} else {
|
|
settings.TLSCaCertFile = os.ExpandEnv(settings.TLSCaCertFile)
|
|
}
|
|
if settings.TLSCertFile == helm_env.DefaultTLSCert || settings.TLSCertFile == "" {
|
|
settings.TLSCertFile = settings.Home.TLSCert()
|
|
} else {
|
|
settings.TLSCertFile = os.ExpandEnv(settings.TLSCertFile)
|
|
}
|
|
if settings.TLSKeyFile == helm_env.DefaultTLSKeyFile || settings.TLSKeyFile == "" {
|
|
settings.TLSKeyFile = settings.Home.TLSKey()
|
|
} else {
|
|
settings.TLSKeyFile = os.ExpandEnv(settings.TLSKeyFile)
|
|
}
|
|
},
|
|
PersistentPostRun: func(*cobra.Command, []string) {
|
|
teardown()
|
|
},
|
|
}
|
|
flags := cmd.PersistentFlags()
|
|
|
|
settings.AddFlags(flags)
|
|
|
|
out := cmd.OutOrStdout()
|
|
|
|
cmd.AddCommand(
|
|
// chart commands
|
|
newCreateCmd(out),
|
|
newDependencyCmd(out),
|
|
newFetchCmd(out),
|
|
newInspectCmd(out),
|
|
newLintCmd(out),
|
|
newPackageCmd(out),
|
|
newRepoCmd(out),
|
|
newSearchCmd(out),
|
|
newServeCmd(out),
|
|
newVerifyCmd(out),
|
|
|
|
// release commands
|
|
newDeleteCmd(nil, out),
|
|
newGetCmd(nil, out),
|
|
newHistoryCmd(nil, out),
|
|
newInstallCmd(nil, out),
|
|
newListCmd(nil, out),
|
|
newRollbackCmd(nil, out),
|
|
newStatusCmd(nil, out),
|
|
newUpgradeCmd(nil, out),
|
|
|
|
newReleaseTestCmd(nil, out),
|
|
newResetCmd(nil, out),
|
|
newVersionCmd(nil, out),
|
|
|
|
newCompletionCmd(out),
|
|
newHomeCmd(out),
|
|
newInitCmd(out),
|
|
newPluginCmd(out),
|
|
newTemplateCmd(out),
|
|
|
|
// Hidden documentation generator command: 'helm docs'
|
|
newDocsCmd(out),
|
|
|
|
// Deprecated
|
|
markDeprecated(newRepoUpdateCmd(out), "use 'helm repo update'\n"),
|
|
)
|
|
|
|
flags.Parse(args)
|
|
|
|
// set defaults from environment
|
|
settings.Init(flags)
|
|
|
|
// Find and add plugins
|
|
loadPlugins(cmd, out)
|
|
|
|
return cmd
|
|
}
|
|
|
|
func init() {
|
|
// Tell gRPC not to log to console.
|
|
grpclog.SetLogger(log.New(ioutil.Discard, "", log.LstdFlags))
|
|
}
|
|
|
|
func main() {
|
|
cmd := newRootCmd(os.Args[1:])
|
|
if err := cmd.Execute(); err != nil {
|
|
switch e := err.(type) {
|
|
case pluginError:
|
|
os.Exit(e.code)
|
|
default:
|
|
os.Exit(1)
|
|
}
|
|
}
|
|
}
|
|
|
|
func markDeprecated(cmd *cobra.Command, notice string) *cobra.Command {
|
|
cmd.Deprecated = notice
|
|
return cmd
|
|
}
|
|
|
|
func setupConnection() error {
|
|
if settings.TillerHost == "" {
|
|
config, client, err := getKubeClient(settings.KubeContext, settings.KubeConfig)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
tunnel, err := portforwarder.New(settings.TillerNamespace, client, config)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
|
|
settings.TillerHost = fmt.Sprintf("127.0.0.1:%d", tunnel.Local)
|
|
debug("Created tunnel using local port: '%d'\n", tunnel.Local)
|
|
}
|
|
|
|
// Set up the gRPC config.
|
|
debug("SERVER: %q\n", settings.TillerHost)
|
|
|
|
// Plugin support.
|
|
return nil
|
|
}
|
|
|
|
func teardown() {
|
|
if tillerTunnel != nil {
|
|
tillerTunnel.Close()
|
|
}
|
|
}
|
|
|
|
func checkArgsLength(argsReceived int, requiredArgs ...string) error {
|
|
expectedNum := len(requiredArgs)
|
|
if argsReceived != expectedNum {
|
|
arg := "arguments"
|
|
if expectedNum == 1 {
|
|
arg = "argument"
|
|
}
|
|
return fmt.Errorf("This command needs %v %s: %s", expectedNum, arg, strings.Join(requiredArgs, ", "))
|
|
}
|
|
return nil
|
|
}
|
|
|
|
// prettyError unwraps or rewrites certain errors to make them more user-friendly.
|
|
func prettyError(err error) error {
|
|
// Add this check can prevent the object creation if err is nil.
|
|
if err == nil {
|
|
return nil
|
|
}
|
|
// If it's grpc's error, make it more user-friendly.
|
|
if s, ok := status.FromError(err); ok {
|
|
return fmt.Errorf(s.Message())
|
|
}
|
|
// Else return the original error.
|
|
return err
|
|
}
|
|
|
|
// configForContext creates a Kubernetes REST client configuration for a given kubeconfig context.
|
|
func configForContext(context string, kubeconfig string) (*rest.Config, error) {
|
|
config, err := kube.GetConfig(context, kubeconfig).ClientConfig()
|
|
if err != nil {
|
|
return nil, fmt.Errorf("could not get Kubernetes config for context %q: %s", context, err)
|
|
}
|
|
return config, nil
|
|
}
|
|
|
|
// getKubeClient creates a Kubernetes config and client for a given kubeconfig context.
|
|
func getKubeClient(context string, kubeconfig string) (*rest.Config, kubernetes.Interface, error) {
|
|
config, err := configForContext(context, kubeconfig)
|
|
if err != nil {
|
|
return nil, nil, err
|
|
}
|
|
client, err := kubernetes.NewForConfig(config)
|
|
if err != nil {
|
|
return nil, nil, fmt.Errorf("could not get Kubernetes client: %s", err)
|
|
}
|
|
return config, client, nil
|
|
}
|
|
|
|
// ensureHelmClient returns a new helm client impl. if h is not nil.
|
|
func ensureHelmClient(h helm.Interface) helm.Interface {
|
|
if h != nil {
|
|
return h
|
|
}
|
|
return newClient()
|
|
}
|
|
|
|
func newClient() helm.Interface {
|
|
options := []helm.Option{helm.Host(settings.TillerHost), helm.ConnectTimeout(settings.TillerConnectionTimeout)}
|
|
|
|
if settings.TLSVerify || settings.TLSEnable {
|
|
debug("Host=%q, Key=%q, Cert=%q, CA=%q\n", settings.TLSServerName, settings.TLSKeyFile, settings.TLSCertFile, settings.TLSCaCertFile)
|
|
tlsopts := tlsutil.Options{
|
|
ServerName: settings.TLSServerName,
|
|
KeyFile: settings.TLSKeyFile,
|
|
CertFile: settings.TLSCertFile,
|
|
InsecureSkipVerify: true,
|
|
}
|
|
if settings.TLSVerify {
|
|
tlsopts.CaCertFile = settings.TLSCaCertFile
|
|
tlsopts.InsecureSkipVerify = false
|
|
}
|
|
tlscfg, err := tlsutil.ClientConfig(tlsopts)
|
|
if err != nil {
|
|
fmt.Fprintln(os.Stderr, err)
|
|
os.Exit(2)
|
|
}
|
|
options = append(options, helm.WithTLS(tlscfg))
|
|
}
|
|
return helm.NewClient(options...)
|
|
}
|