Create packages for connecting to a cluster

JianLi-RH · JianLi-RH · commit a6a8ada9fd8d · 2025-10-22T18:32:49.000+08:00
diff --git a/cmd/cluster-version-operator/main.go b/cmd/cluster-version-operator/main.go
@@ -2,7 +2,9 @@ package main
 
 import (
 	"flag"
+	"fmt"
 
+	utilities "github.com/openshift/cluster-version-operator/test/utilities"
 	"github.com/spf13/cobra"
 	"k8s.io/klog/v2"
 )
@@ -22,8 +24,17 @@ func init() {
 }
 
 func main() {
-	defer klog.Flush()
-	if err := rootCmd.Execute(); err != nil {
-		klog.Exitf("Error executing: %v", err)
+	server, folder, err := utilities.GetConnection("admin")
+	if err != nil {
+		fmt.Printf("Error creating request: %v\n", err)
 	}
+	transport, err := utilities.GetCert(folder)
+	if err != nil {
+		fmt.Printf("Error creating certificate: %v\n", err)
+	}
+	// utilities.GetResorce(server, transport, "/apis/config.openshift.io/v1/clusterversions/version")
+
+	jsonObject := "{\"spec\":{\"capabilities\":{\"baselineCapabilitySet\":\"None\"}}}"
+	newResource, _ := utilities.PatchResorce(server, transport, "/apis/config.openshift.io/v1/clusterversions/version", jsonObject)
+	fmt.Println(newResource)
 }
diff --git a/go.mod b/go.mod
@@ -24,6 +24,7 @@ require (
 	golang.org/x/net v0.38.0
 	golang.org/x/time v0.9.0
 	gopkg.in/fsnotify.v1 v1.4.7
+	gopkg.in/yaml.v2 v2.4.0
 	k8s.io/api v0.33.2
 	k8s.io/apiextensions-apiserver v0.32.1
 	k8s.io/apimachinery v0.33.2
@@ -78,7 +79,6 @@ require (
 	google.golang.org/protobuf v1.36.5 // indirect
 	gopkg.in/evanphx/json-patch.v4 v4.12.0 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
-	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/apiserver v0.32.1 // indirect
 	k8s.io/component-base v0.32.1 // indirect
diff --git a/test/utilities/api_helper.go b/test/utilities/api_helper.go
@@ -0,0 +1,137 @@
+package utilities
+
+import (
+	"crypto/tls"
+	"crypto/x509"
+	"errors"
+	"fmt"
+	"io"
+	"log"
+	"net/http"
+	"net/url"
+	"os"
+	"strings"
+)
+
+// GetCert
+// @Description	get certificate for URL request
+// @Create 		jianl Oct 22 2025
+// @Param 		kubeConfigFolder 	string 		The certificate folder which contains key.crt, client.crt, ca.ct
+// @Return 		(Instance of http.Transport, error)
+func GetCert(kubeConfigFolder string) (*http.Transport, error) {
+	// 1. Load the client certificate and private key
+	clientCert, err := tls.LoadX509KeyPair(kubeConfigFolder+"/client.crt", kubeConfigFolder+"/key.crt")
+	if err != nil {
+		log.Fatalf("Error loading client certificate and key: %v", err)
+		return nil, errors.New("Error loading client certificate and key")
+	}
+
+	// 2. Load the CA certificate(s) to trust a custom CA
+	caCert, err := os.ReadFile(kubeConfigFolder + "/ca.ct")
+	if err != nil {
+		log.Fatalf("Error loading CA certificate: %v.", err)
+		return nil, errors.New("Error loading CA certificate")
+	}
+	caCertPool := x509.NewCertPool()
+	if caCert != nil {
+		caCertPool.AppendCertsFromPEM(caCert)
+	}
+
+	// 3. Create a tls.Config with the client certificate and trusted CAs
+	tlsConfig := &tls.Config{
+		Certificates:       []tls.Certificate{clientCert},
+		RootCAs:            caCertPool, // Only needed if you have a custom CA
+		InsecureSkipVerify: true,
+	}
+
+	transport := &http.Transport{
+		TLSClientConfig: tlsConfig,
+	}
+	return transport, nil
+}
+
+// GetResorce
+// @Description	get resources from an Openshift cluster
+// @Create 		jianl Oct 22 2025
+// @Param 		server 				string 		API host
+// @Param 		transport		 	string 		Instance of http.Transport which used to create http.Client
+// @Param 		api 				string 		The api endpoint
+// @Return 		(resource, error)
+func GetResorce(server string, transport *http.Transport, api string) (string, error) {
+	finalUrl, err := url.JoinPath(server, api)
+	if err != nil {
+		fmt.Printf("Error failed to concatenate URL for request: %v\n", err)
+		return "", err
+	}
+
+	// Create a new GET request
+	client := &http.Client{
+		Transport: transport,
+	}
+
+	resp, err := client.Get(finalUrl) // Replace with your URL
+	if err != nil {
+		fmt.Printf("Error creating request: %v\n", err)
+		return "", err
+	}
+	defer func() {
+		if err := resp.Body.Close(); err != nil {
+			log.Printf("Error closing response body: %v", err)
+		}
+	}()
+
+	// Send the request
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		fmt.Printf("Error reading response body: %v\n", err)
+		return "", err
+	}
+	return string(body), nil
+}
+
+// PatchResorce
+// @Description	Patch update resource
+// @Create 		jianl Oct 22 2025
+// @Param 		server 				string 		API host
+// @Param 		transport		 	string 		Instance of http.Transport which used to create http.Client
+// @Param 		api 				string 		The api endpoint
+// @Param 		jsonObject			string		The part of resources which will be updated
+//
+//	(Now only support json format string, for example: "{\"spec\":{\"capabilities\":{\"baselineCapabilitySet\":\"None\"}}}")
+//
+// @Return 		(resource, error)
+func PatchResorce(server string, transport *http.Transport, api string, jsonObject string) (string, error) {
+	finalUrl, err := url.JoinPath(server, api)
+	if err != nil {
+		fmt.Printf("Error failed to concatenate URL for request: %v\n", err)
+		return "", err
+	}
+	// Create a new GET request
+	client := &http.Client{
+		Transport: transport,
+	}
+
+	req, err := http.NewRequest(http.MethodPatch, finalUrl, strings.NewReader(jsonObject))
+	if err != nil {
+		log.Fatal(err)
+	}
+	req.Header.Set("Content-Type", "application/merge-patch+json")
+	resp, err := client.Do(req) // Replace with your URL
+	if err != nil {
+		fmt.Printf("Error creating request: %v\n", err)
+		return "", err
+	}
+	defer func() {
+		if err := resp.Body.Close(); err != nil {
+			log.Printf("Error closing response body: %v", err)
+		}
+	}()
+
+	// Send the request
+	body, err := io.ReadAll(resp.Body)
+	if err != nil {
+		fmt.Printf("Error reading response body: %v\n", err)
+		return "", err
+	}
+	return string(body), nil
+}
diff --git a/test/utilities/connection.go b/test/utilities/connection.go
@@ -0,0 +1,111 @@
+package utilities
+
+import (
+	"encoding/base64"
+	"errors"
+	"fmt"
+	"os"
+	"path/filepath"
+
+	"gopkg.in/yaml.v2"
+)
+
+type Cluster struct {
+	Name string      `yaml:"name"`
+	Cert ClusterCert `yaml:"cluster"`
+}
+
+type ClusterCert struct {
+	CertificateAuthorityData string `yaml:"certificate-authority-data"`
+	Server                   string `yaml:"server"`
+}
+
+type User struct {
+	Name string   `yaml:"name"`
+	Cert UserCert `yaml:"user"`
+}
+
+type UserCert struct {
+	ClientCertificateData string `yaml:"client-certificate-data"`
+	ClientKeyData         string `yaml:"client-key-data"`
+}
+
+type KubeConfig struct {
+	Clusters []Cluster `yaml:"clusters"`
+	Users    []User    `yaml:"users"`
+}
+
+// getConnection
+// @Description	get connection object which can help us connect to a Openshift cluster
+// @Create 		jianl Oct 22 2025
+// @Param 		user 				string 		the cluster's user name which can be found in Kubeconfig file, like admin
+// @Return 		(API host, kube config folder (In which there are three files: key.crt, client.crt, ca.ct), error)
+func GetConnection(user string) (server string, KubeConfigFolder string, err error) {
+	if user == "" {
+		user = "admin"
+	}
+
+	configPath, present := os.LookupEnv("KUBECONFIG")
+	if present {
+		tmpDir, err := os.MkdirTemp("", "kubeconfig")
+		if err != nil {
+			fmt.Println("Error could not create certficates folder:", err)
+			return "", "", err
+		}
+
+		data, err := os.ReadFile(configPath)
+		if err != nil {
+			fmt.Println("Error reading file:", err)
+			return "", "", err
+		}
+		var config KubeConfig
+		err = yaml.Unmarshal(data, &config)
+		if err != nil {
+			fmt.Println("Error unmarshaling JSON:", err)
+			return "", "", err
+		}
+		server := config.Clusters[0].Cert.Server
+		ca, err := base64.StdEncoding.DecodeString(config.Clusters[0].Cert.CertificateAuthorityData)
+		if err != nil {
+			fmt.Println("Error decoding certificate-authority-data:", err)
+			return "", "", err
+		}
+		err = os.WriteFile(filepath.Join(tmpDir, "ca.ct"), ca, 0644)
+		if err != nil {
+			return "", "", err
+		}
+
+		for _, v := range config.Users {
+			if v.Name == user {
+				cert, err := base64.StdEncoding.DecodeString(v.Cert.ClientCertificateData)
+				if err != nil {
+					fmt.Println("Error decoding client-certificate-data:", err)
+					return "", "", err
+				}
+				err = os.WriteFile(filepath.Join(tmpDir, "client.crt"), cert, 0644)
+				if err != nil {
+					return "", "", err
+				}
+				key, err := base64.StdEncoding.DecodeString(v.Cert.ClientKeyData)
+				if err != nil {
+					fmt.Println("Error decoding client-key-data:", err)
+					return "", "", err
+				}
+				err = os.WriteFile(filepath.Join(tmpDir, "key.crt"), key, 0644)
+				if err != nil {
+					return "", "", err
+				}
+			}
+		}
+
+		return server, tmpDir, err
+
+	} else {
+		return "", "", errors.New("KUBECONFIG not set")
+	}
+}
+
+// func main() {
+// 	conn, _ := getConnection("admin")
+// 	fmt.Println(conn)
+// }
