k3s/vendor/k8s.io/legacy-cloud-providers/azure/azure_storageaccount.go

// +build !providerless

/*
Copyright 2016 The Kubernetes Authors.

Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at

    http://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.
*/

package azure

import (
	"fmt"
	"strings"

	"github.com/Azure/azure-sdk-for-go/services/storage/mgmt/2019-06-01/storage"

	"k8s.io/klog/v2"
)

// AccountOptions contains the fields which are used to create storage account.
type AccountOptions struct {
	Name, Type, Kind, ResourceGroup, Location string
	EnableHTTPSTrafficOnly                    bool
	Tags                                      map[string]string
}

type accountWithLocation struct {
	Name, StorageType, Location string
}

// getStorageAccounts gets name, type, location of all storage accounts in a resource group which matches matchingAccountType, matchingLocation
func (az *Cloud) getStorageAccounts(matchingAccountType, matchingAccountKind, resourceGroup, matchingLocation string) ([]accountWithLocation, error) {
	ctx, cancel := getContextWithCancel()
	defer cancel()
	result, rerr := az.StorageAccountClient.ListByResourceGroup(ctx, resourceGroup)
	if rerr != nil {
		return nil, rerr.Error()
	}

	accounts := []accountWithLocation{}
	for _, acct := range result {
		if acct.Name != nil && acct.Location != nil && acct.Sku != nil {
			storageType := string((*acct.Sku).Name)
			if matchingAccountType != "" && !strings.EqualFold(matchingAccountType, storageType) {
				continue
			}

			if matchingAccountKind != "" && !strings.EqualFold(matchingAccountKind, string(acct.Kind)) {
				continue
			}

			location := *acct.Location
			if matchingLocation != "" && !strings.EqualFold(matchingLocation, location) {
				continue
			}
			accounts = append(accounts, accountWithLocation{Name: *acct.Name, StorageType: storageType, Location: location})
		}
	}

	return accounts, nil
}

// GetStorageAccesskey gets the storage account access key
func (az *Cloud) GetStorageAccesskey(account, resourceGroup string) (string, error) {
	ctx, cancel := getContextWithCancel()
	defer cancel()

	result, rerr := az.StorageAccountClient.ListKeys(ctx, resourceGroup, account)
	if rerr != nil {
		return "", rerr.Error()
	}
	if result.Keys == nil {
		return "", fmt.Errorf("empty keys")
	}

	for _, k := range *result.Keys {
		if k.Value != nil && *k.Value != "" {
			v := *k.Value
			if ind := strings.LastIndex(v, " "); ind >= 0 {
				v = v[(ind + 1):]
			}
			return v, nil
		}
	}
	return "", fmt.Errorf("no valid keys")
}

// EnsureStorageAccount search storage account, create one storage account(with genAccountNamePrefix) if not found, return accountName, accountKey
func (az *Cloud) EnsureStorageAccount(accountOptions *AccountOptions, genAccountNamePrefix string) (string, string, error) {
	if accountOptions == nil {
		return "", "", fmt.Errorf("account options is nil")
	}
	accountName := accountOptions.Name
	accountType := accountOptions.Type
	accountKind := accountOptions.Kind
	resourceGroup := accountOptions.ResourceGroup
	location := accountOptions.Location
	enableHTTPSTrafficOnly := accountOptions.EnableHTTPSTrafficOnly
	if len(accountName) == 0 {
		// find a storage account that matches accountType
		accounts, err := az.getStorageAccounts(accountType, accountKind, resourceGroup, location)
		if err != nil {
			return "", "", fmt.Errorf("could not list storage accounts for account type %s: %v", accountType, err)
		}

		if len(accounts) > 0 {
			accountName = accounts[0].Name
			klog.V(4).Infof("found a matching account %s type %s location %s", accounts[0].Name, accounts[0].StorageType, accounts[0].Location)
		}

		if len(accountName) == 0 {
			// not found a matching account, now create a new account in current resource group
			accountName = generateStorageAccountName(genAccountNamePrefix)
			if location == "" {
				location = az.Location
			}
			if accountType == "" {
				accountType = defaultStorageAccountType
			}

			// use StorageV2 by default per https://docs.microsoft.com/en-us/azure/storage/common/storage-account-options
			kind := defaultStorageAccountKind
			if accountKind != "" {
				kind = storage.Kind(accountKind)
			}
			if len(accountOptions.Tags) == 0 {
				accountOptions.Tags = make(map[string]string)
			}
			accountOptions.Tags["created-by"] = "azure"
			tags := convertMaptoMapPointer(accountOptions.Tags)

			klog.V(2).Infof("azure - no matching account found, begin to create a new account %s in resource group %s, location: %s, accountType: %s, accountKind: %s, tags: %+v",
				accountName, resourceGroup, location, accountType, kind, accountOptions.Tags)

			cp := storage.AccountCreateParameters{
				Sku:                               &storage.Sku{Name: storage.SkuName(accountType)},
				Kind:                              kind,
				AccountPropertiesCreateParameters: &storage.AccountPropertiesCreateParameters{EnableHTTPSTrafficOnly: &enableHTTPSTrafficOnly},
				Tags:                              tags,
				Location:                          &location}

			ctx, cancel := getContextWithCancel()
			defer cancel()
			rerr := az.StorageAccountClient.Create(ctx, resourceGroup, accountName, cp)
			if rerr != nil {
				return "", "", fmt.Errorf(fmt.Sprintf("Failed to create storage account %s, error: %v", accountName, rerr))
			}
		}
	}

	// find the access key with this account
	accountKey, err := az.GetStorageAccesskey(accountName, resourceGroup)
	if err != nil {
		return "", "", fmt.Errorf("could not get storage key for storage account %s: %v", accountName, err)
	}

	return accountName, accountKey, nil
}
Update vendor 2019-09-27 21:51:53 +00:00			`// +build !providerless`

			`/*`
			`Copyright 2016 The Kubernetes Authors.`

			`Licensed under the Apache License, Version 2.0 (the "License");`
			`you may not use this file except in compliance with the License.`
			`You may obtain a copy of the License at`

			`http://www.apache.org/licenses/LICENSE-2.0`

			`Unless required by applicable law or agreed to in writing, software`
			`distributed under the License is distributed on an "AS IS" BASIS,`
			`WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.`
			`See the License for the specific language governing permissions and`
			`limitations under the License.`
			`*/`

			`package azure`

			`import (`
			`"fmt"`
			`"strings"`

Update vendor 2020-03-26 21:07:15 +00:00			`"github.com/Azure/azure-sdk-for-go/services/storage/mgmt/2019-06-01/storage"`
Update vendor 2019-09-27 21:51:53 +00:00
Update go.mod for k8s 1.19 2020-08-10 17:43:49 +00:00			`"k8s.io/klog/v2"`
Update vendor 2019-09-27 21:51:53 +00:00			`)`

Update go.mod for k8s 1.19 2020-08-10 17:43:49 +00:00			`// AccountOptions contains the fields which are used to create storage account.`
			`type AccountOptions struct {`
			`Name, Type, Kind, ResourceGroup, Location string`
			`EnableHTTPSTrafficOnly bool`
			`Tags map[string]string`
			`}`

Update vendor 2019-09-27 21:51:53 +00:00			`type accountWithLocation struct {`
			`Name, StorageType, Location string`
			`}`

			`// getStorageAccounts gets name, type, location of all storage accounts in a resource group which matches matchingAccountType, matchingLocation`
			`func (az *Cloud) getStorageAccounts(matchingAccountType, matchingAccountKind, resourceGroup, matchingLocation string) ([]accountWithLocation, error) {`
			`ctx, cancel := getContextWithCancel()`
			`defer cancel()`
Update vendor 2020-03-26 21:07:15 +00:00			`result, rerr := az.StorageAccountClient.ListByResourceGroup(ctx, resourceGroup)`
			`if rerr != nil {`
			`return nil, rerr.Error()`
Update vendor 2019-09-27 21:51:53 +00:00			`}`

			`accounts := []accountWithLocation{}`
Update vendor 2020-03-26 21:07:15 +00:00			`for _, acct := range result {`
Update vendor 2019-09-27 21:51:53 +00:00			`if acct.Name != nil && acct.Location != nil && acct.Sku != nil {`
			`storageType := string((*acct.Sku).Name)`
			`if matchingAccountType != "" && !strings.EqualFold(matchingAccountType, storageType) {`
			`continue`
			`}`

			`if matchingAccountKind != "" && !strings.EqualFold(matchingAccountKind, string(acct.Kind)) {`
			`continue`
			`}`

			`location := *acct.Location`
			`if matchingLocation != "" && !strings.EqualFold(matchingLocation, location) {`
			`continue`
			`}`
			`accounts = append(accounts, accountWithLocation{Name: *acct.Name, StorageType: storageType, Location: location})`
			`}`
			`}`

			`return accounts, nil`
			`}`

			`// GetStorageAccesskey gets the storage account access key`
			`func (az *Cloud) GetStorageAccesskey(account, resourceGroup string) (string, error) {`
			`ctx, cancel := getContextWithCancel()`
			`defer cancel()`

Update vendor 2020-03-26 21:07:15 +00:00			`result, rerr := az.StorageAccountClient.ListKeys(ctx, resourceGroup, account)`
			`if rerr != nil {`
			`return "", rerr.Error()`
Update vendor 2019-09-27 21:51:53 +00:00			`}`
			`if result.Keys == nil {`
			`return "", fmt.Errorf("empty keys")`
			`}`

			`for _, k := range *result.Keys {`
			`if k.Value != nil && *k.Value != "" {`
			`v := *k.Value`
			`if ind := strings.LastIndex(v, " "); ind >= 0 {`
			`v = v[(ind + 1):]`
			`}`
			`return v, nil`
			`}`
			`}`
			`return "", fmt.Errorf("no valid keys")`
			`}`

			`// EnsureStorageAccount search storage account, create one storage account(with genAccountNamePrefix) if not found, return accountName, accountKey`
Update go.mod for k8s 1.19 2020-08-10 17:43:49 +00:00			`func (az Cloud) EnsureStorageAccount(accountOptions AccountOptions, genAccountNamePrefix string) (string, string, error) {`
			`if accountOptions == nil {`
			`return "", "", fmt.Errorf("account options is nil")`
			`}`
			`accountName := accountOptions.Name`
			`accountType := accountOptions.Type`
			`accountKind := accountOptions.Kind`
			`resourceGroup := accountOptions.ResourceGroup`
			`location := accountOptions.Location`
			`enableHTTPSTrafficOnly := accountOptions.EnableHTTPSTrafficOnly`
Update vendor 2019-09-27 21:51:53 +00:00			`if len(accountName) == 0 {`
			`// find a storage account that matches accountType`
			`accounts, err := az.getStorageAccounts(accountType, accountKind, resourceGroup, location)`
			`if err != nil {`
			`return "", "", fmt.Errorf("could not list storage accounts for account type %s: %v", accountType, err)`
			`}`

			`if len(accounts) > 0 {`
			`accountName = accounts[0].Name`
			`klog.V(4).Infof("found a matching account %s type %s location %s", accounts[0].Name, accounts[0].StorageType, accounts[0].Location)`
			`}`

			`if len(accountName) == 0 {`
			`// not found a matching account, now create a new account in current resource group`
			`accountName = generateStorageAccountName(genAccountNamePrefix)`
			`if location == "" {`
			`location = az.Location`
			`}`
			`if accountType == "" {`
			`accountType = defaultStorageAccountType`
			`}`

			`// use StorageV2 by default per https://docs.microsoft.com/en-us/azure/storage/common/storage-account-options`
			`kind := defaultStorageAccountKind`
			`if accountKind != "" {`
			`kind = storage.Kind(accountKind)`
			`}`
Update go.mod for k8s 1.19 2020-08-10 17:43:49 +00:00			`if len(accountOptions.Tags) == 0 {`
			`accountOptions.Tags = make(map[string]string)`
			`}`
			`accountOptions.Tags["created-by"] = "azure"`
			`tags := convertMaptoMapPointer(accountOptions.Tags)`

			`klog.V(2).Infof("azure - no matching account found, begin to create a new account %s in resource group %s, location: %s, accountType: %s, accountKind: %s, tags: %+v",`
			`accountName, resourceGroup, location, accountType, kind, accountOptions.Tags)`

Update vendor 2019-09-27 21:51:53 +00:00			`cp := storage.AccountCreateParameters{`
			`Sku: &storage.Sku{Name: storage.SkuName(accountType)},`
			`Kind: kind,`
Update go.mod for k8s 1.19 2020-08-10 17:43:49 +00:00			`AccountPropertiesCreateParameters: &storage.AccountPropertiesCreateParameters{EnableHTTPSTrafficOnly: &enableHTTPSTrafficOnly},`
			`Tags: tags,`
Update vendor 2019-09-27 21:51:53 +00:00			`Location: &location}`

			`ctx, cancel := getContextWithCancel()`
			`defer cancel()`
Update vendor 2020-03-26 21:07:15 +00:00			`rerr := az.StorageAccountClient.Create(ctx, resourceGroup, accountName, cp)`
			`if rerr != nil {`
			`return "", "", fmt.Errorf(fmt.Sprintf("Failed to create storage account %s, error: %v", accountName, rerr))`
Update vendor 2019-09-27 21:51:53 +00:00			`}`
			`}`
			`}`

			`// find the access key with this account`
			`accountKey, err := az.GetStorageAccesskey(accountName, resourceGroup)`
			`if err != nil {`
			`return "", "", fmt.Errorf("could not get storage key for storage account %s: %v", accountName, err)`
			`}`

			`return accountName, accountKey, nil`
			`}`