2019-07-01 02:49:00 -04:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
module API
|
2020-10-14 20:08:42 -04:00
|
|
|
class GroupClusters < ::API::Base
|
2019-07-01 02:49:00 -04:00
|
|
|
include PaginationParams
|
|
|
|
|
2022-03-04 22:19:17 -05:00
|
|
|
before do
|
|
|
|
authenticate!
|
|
|
|
ensure_feature_enabled!
|
|
|
|
end
|
2019-07-01 02:49:00 -04:00
|
|
|
|
2020-10-29 08:08:50 -04:00
|
|
|
feature_category :kubernetes_management
|
|
|
|
|
2019-07-01 02:49:00 -04:00
|
|
|
params do
|
|
|
|
requires :id, type: String, desc: 'The ID of the group'
|
|
|
|
end
|
|
|
|
resource :groups, requirements: API::NAMESPACE_OR_PROJECT_REQUIREMENTS do
|
|
|
|
desc 'Get all clusters from the group' do
|
|
|
|
success Entities::Cluster
|
|
|
|
end
|
|
|
|
params do
|
|
|
|
use :pagination
|
|
|
|
end
|
|
|
|
get ':id/clusters' do
|
|
|
|
authorize! :read_cluster, user_group
|
|
|
|
|
|
|
|
present paginate(clusters_for_current_user), with: Entities::Cluster
|
|
|
|
end
|
|
|
|
|
|
|
|
desc 'Get specific cluster for the group' do
|
|
|
|
success Entities::ClusterGroup
|
|
|
|
end
|
|
|
|
params do
|
|
|
|
requires :cluster_id, type: Integer, desc: 'The cluster ID'
|
|
|
|
end
|
|
|
|
get ':id/clusters/:cluster_id' do
|
|
|
|
authorize! :read_cluster, cluster
|
|
|
|
|
|
|
|
present cluster, with: Entities::ClusterGroup
|
|
|
|
end
|
|
|
|
|
|
|
|
desc 'Adds an existing cluster' do
|
|
|
|
success Entities::ClusterGroup
|
|
|
|
end
|
|
|
|
params do
|
|
|
|
requires :name, type: String, desc: 'Cluster name'
|
|
|
|
optional :enabled, type: Boolean, default: true, desc: 'Determines if cluster is active or not, defaults to true'
|
2020-07-08 08:09:33 -04:00
|
|
|
optional :environment_scope, default: '*', type: String, desc: 'The associated environment to the cluster'
|
2020-09-29 14:09:52 -04:00
|
|
|
optional :namespace_per_environment, default: true, type: Boolean, desc: 'Deploy each environment to a separate Kubernetes namespace'
|
2019-07-01 02:49:00 -04:00
|
|
|
optional :domain, type: String, desc: 'Cluster base domain'
|
2020-04-14 11:09:44 -04:00
|
|
|
optional :management_project_id, type: Integer, desc: 'The ID of the management project'
|
2019-07-01 02:49:00 -04:00
|
|
|
optional :managed, type: Boolean, default: true, desc: 'Determines if GitLab will manage namespaces and service accounts for this cluster, defaults to true'
|
|
|
|
requires :platform_kubernetes_attributes, type: Hash, desc: %q(Platform Kubernetes data) do
|
|
|
|
requires :api_url, type: String, allow_blank: false, desc: 'URL to access the Kubernetes API'
|
|
|
|
requires :token, type: String, desc: 'Token to authenticate against Kubernetes'
|
|
|
|
optional :ca_cert, type: String, desc: 'TLS certificate (needed if API is using a self-signed TLS certificate)'
|
|
|
|
optional :namespace, type: String, desc: 'Unique namespace related to Group'
|
2020-02-13 07:08:49 -05:00
|
|
|
optional :authorization_type, type: String, values: ::Clusters::Platforms::Kubernetes.authorization_types.keys, default: 'rbac', desc: 'Cluster authorization type, defaults to RBAC'
|
2019-07-01 02:49:00 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
post ':id/clusters/user' do
|
|
|
|
authorize! :add_cluster, user_group
|
|
|
|
|
|
|
|
user_cluster = ::Clusters::CreateService
|
|
|
|
.new(current_user, create_cluster_user_params)
|
|
|
|
.execute
|
|
|
|
|
|
|
|
if user_cluster.persisted?
|
|
|
|
present user_cluster, with: Entities::ClusterGroup
|
|
|
|
else
|
|
|
|
render_validation_error!(user_cluster)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
desc 'Update an existing cluster' do
|
|
|
|
success Entities::ClusterGroup
|
|
|
|
end
|
|
|
|
params do
|
|
|
|
requires :cluster_id, type: Integer, desc: 'The cluster ID'
|
|
|
|
optional :name, type: String, desc: 'Cluster name'
|
2020-11-18 07:09:16 -05:00
|
|
|
optional :enabled, type: Boolean, desc: 'Determines if cluster is active or not'
|
2019-07-01 02:49:00 -04:00
|
|
|
optional :domain, type: String, desc: 'Cluster base domain'
|
2020-07-08 08:09:33 -04:00
|
|
|
optional :environment_scope, type: String, desc: 'The associated environment to the cluster'
|
2020-09-29 14:09:52 -04:00
|
|
|
optional :namespace_per_environment, default: true, type: Boolean, desc: 'Deploy each environment to a separate Kubernetes namespace'
|
2019-10-24 08:06:03 -04:00
|
|
|
optional :management_project_id, type: Integer, desc: 'The ID of the management project'
|
2020-11-18 07:09:16 -05:00
|
|
|
optional :managed, type: Boolean, desc: 'Determines if GitLab will manage namespaces and service accounts for this cluster'
|
2019-07-01 02:49:00 -04:00
|
|
|
optional :platform_kubernetes_attributes, type: Hash, desc: %q(Platform Kubernetes data) do
|
|
|
|
optional :api_url, type: String, desc: 'URL to access the Kubernetes API'
|
|
|
|
optional :token, type: String, desc: 'Token to authenticate against Kubernetes'
|
|
|
|
optional :ca_cert, type: String, desc: 'TLS certificate (needed if API is using a self-signed TLS certificate)'
|
|
|
|
optional :namespace, type: String, desc: 'Unique namespace related to Group'
|
|
|
|
end
|
|
|
|
end
|
|
|
|
put ':id/clusters/:cluster_id' do
|
|
|
|
authorize! :update_cluster, cluster
|
|
|
|
|
2020-02-13 07:08:49 -05:00
|
|
|
update_service = ::Clusters::UpdateService.new(current_user, update_cluster_params)
|
2019-07-01 02:49:00 -04:00
|
|
|
|
|
|
|
if update_service.execute(cluster)
|
|
|
|
present cluster, with: Entities::ClusterGroup
|
|
|
|
else
|
|
|
|
render_validation_error!(cluster)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
desc 'Remove a cluster' do
|
|
|
|
success Entities::ClusterGroup
|
|
|
|
end
|
|
|
|
params do
|
|
|
|
requires :cluster_id, type: Integer, desc: 'The Cluster ID'
|
|
|
|
end
|
|
|
|
delete ':id/clusters/:cluster_id' do
|
|
|
|
authorize! :admin_cluster, cluster
|
|
|
|
|
|
|
|
destroy_conditionally!(cluster)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
helpers do
|
|
|
|
def clusters_for_current_user
|
|
|
|
@clusters_for_current_user ||= ClustersFinder.new(user_group, current_user, :all).execute
|
|
|
|
end
|
|
|
|
|
|
|
|
def cluster
|
|
|
|
@cluster ||= clusters_for_current_user.find(params[:cluster_id])
|
|
|
|
end
|
|
|
|
|
|
|
|
def create_cluster_user_params
|
|
|
|
declared_params.merge({
|
|
|
|
provider_type: :user,
|
|
|
|
platform_type: :kubernetes,
|
|
|
|
clusterable: user_group
|
|
|
|
})
|
|
|
|
end
|
|
|
|
|
|
|
|
def update_cluster_params
|
|
|
|
declared_params(include_missing: false).without(:cluster_id)
|
|
|
|
end
|
2022-03-04 22:19:17 -05:00
|
|
|
|
|
|
|
def ensure_feature_enabled!
|
|
|
|
not_found! unless Feature.enabled?(:certificate_based_clusters, user_group, default_enabled: :yaml, type: :ops)
|
|
|
|
end
|
2019-07-01 02:49:00 -04:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|