commit cc3ebcb0578941ce614d9459e784e88f399c0b9d
author giolekva <giolekva@gmail.com> Fri Dec 17 10:52:17 2021 +0400
committer giolekva <giolekva@gmail.com> Fri Dec 17 10:52:17 2021 +0400
tree 5a19f7ff69ab39b5f26740d2f87601eadcb0ee3f
parent 90c2003eaedcad4eb675c2e25d54a6fd82615627

VPN: API server returnes config template while client app merges private key into it

core/nebula/api/main.go

diff --git a/core/nebula/api/main.go b/core/nebula/api/main.go
index 51302ad..1b74d8b 100644
--- a/core/nebula/api/main.go
+++ b/core/nebula/api/main.go
@@ -2,14 +2,18 @@
 
 import (
 	"embed"
+	"encoding/base64"
 	"encoding/json"
 	"flag"
 	"fmt"
 	"html/template"
+	"io/ioutil"
 	"log"
 	"net/http"
+	"time"
 
 	"github.com/gorilla/mux"
+	"sigs.k8s.io/yaml"
 
 	"k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/tools/clientcmd"
@@ -22,6 +26,7 @@
 var masterURL = flag.String("master", "", "The address of the Kubernetes API server. Overrides any value in kubeconfig. Only required if out-of-cluster.")
 var namespace = flag.String("namespace", "", "Namespace where Nebula CA and Node secrets are stored.")
 var caName = flag.String("ca-name", "", "Name of the Nebula CA.")
+var configTmpl = flag.String("config-tmpl", "", "Path to the lighthouse configuration template file.")
 
 //go:embed templates/*
 var tmpls embed.FS
@@ -174,10 +179,45 @@
 		http.Error(w, err.Error(), http.StatusInternalServerError)
 		return
 	}
+	for {
+		time.Sleep(1 * time.Second)
+		cfg, err := h.mgr.GetNodeConfig(*namespace, req.Name)
+		if err != nil {
+			fmt.Println(err.Error())
+			continue
+		}
+		cfgBytes, err := yaml.Marshal(cfg)
+		if err != nil {
+			http.Error(w, err.Error(), http.StatusInternalServerError)
+			return
+		}
+		cfgB64 := base64.StdEncoding.EncodeToString(cfgBytes)
+		if _, err := fmt.Fprint(w, cfgB64); err != nil {
+			http.Error(w, err.Error(), http.StatusInternalServerError)
+			return
+		}
+		break
+	}
+}
+
+func loadConfigTemplate(path string) (map[string]interface{}, error) {
+	tmpl, err := ioutil.ReadFile(path)
+	if err != nil {
+		return nil, err
+	}
+	var m map[string]interface{}
+	if err := yaml.Unmarshal(tmpl, &m); err != nil {
+		return nil, err
+	}
+	return m, nil
 }
 
 func main() {
 	flag.Parse()
+	cfgTmpl, err := loadConfigTemplate(*configTmpl)
+	if err != nil {
+		panic(err)
+	}
 	cfg, err := clientcmd.BuildConfigFromFlags(*masterURL, *kubeConfig)
 	if err != nil {
 		panic(err)
@@ -196,6 +236,7 @@
 		nebulaClient: nebulaClient,
 		namespace:    *namespace,
 		caName:       *caName,
+		cfgTmpl:      cfgTmpl,
 	}
 	handler := Handler{
 		mgr:   mgr,