Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Ce 2.13 #256

Merged
merged 9 commits into from
Feb 23, 2022
Merged

Ce 2.13 #256

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
9 commits
Select commit Hold shift + click to select a range
2c72818
EE-2404: EE-1120: feat(kingpin) use kingpin to parse ENV vars, and th…
SvenDowideit Feb 13, 2022
553e861
feat(options): cli flag consistency between server/agent (#240)
deviantony Feb 14, 2022
332cd65
EE-2404: EE-1120: Chore/refactor edge (#229)
SvenDowideit Feb 17, 2022
01ad266
refactor(edge): remove comment
deviantony Feb 18, 2022
7163994
fix(edge): fix mod of stack file from 644 to 0644
deviantony Feb 18, 2022
ac5e240
refactor(edge): move http/client to edge/client
deviantony Feb 18, 2022
229e080
refactor(edge): move edge server from http package to edge/http
deviantony Feb 18, 2022
0f724ab
chore(agent): clean up the code EE-2559 (#251)
andres-portainer Feb 18, 2022
2e788f2
Merge branch 'develop' into ce-2.13
deviantony Feb 23, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 0 additions & 1 deletion agent.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -60,7 +60,6 @@ type (
AgentServerPort string
AgentSecurityShutdown time.Duration
ClusterAddress string
HostManagementEnabled bool
SharedSecret string
EdgeMode bool
EdgeKey string
Expand Down
108 changes: 20 additions & 88 deletions cmd/agent/main.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -13,17 +13,16 @@ import (
"github.com/portainer/agent"
"github.com/portainer/agent/crypto"
"github.com/portainer/agent/docker"
"github.com/portainer/agent/edge"
"github.com/portainer/agent/exec"
"github.com/portainer/agent/filesystem"
"github.com/portainer/agent/ghw"
"github.com/portainer/agent/http"
"github.com/portainer/agent/http/client"
"github.com/portainer/agent/internal/edge"
"github.com/portainer/agent/kubernetes"
"github.com/portainer/agent/logutils"
"github.com/portainer/agent/net"
"github.com/portainer/agent/os"
cluster "github.com/portainer/agent/serf"
httpEdge "github.com/portainer/agent/edge/http"
)

func main() {
Expand Down Expand Up @@ -179,17 +178,18 @@ func main() {
// !Security

// Edge
edgeManagerParameters := &edge.ManagerParameters{
Options: options,
AdvertiseAddr: advertiseAddr,
ClusterService: clusterService,
DockerInfoService: dockerInfoService,
ContainerPlatform: containerPlatform,
}
edgeManager := edge.NewManager(edgeManagerParameters)

var edgeManager *edge.Manager
if options.EdgeMode {
edgeKey, err := retrieveEdgeKey(options.EdgeKey, clusterService)
edgeManagerParameters := &edge.ManagerParameters{
Options: options,
AdvertiseAddr: advertiseAddr,
ClusterService: clusterService,
DockerInfoService: dockerInfoService,
ContainerPlatform: containerPlatform,
}
edgeManager = edge.NewManager(edgeManagerParameters)

edgeKey, err := edge.RetrieveEdgeKey(options.EdgeKey, clusterService)
if err != nil {
log.Printf("[ERROR] [main,edge] [message: Unable to retrieve Edge key] [error: %s]", err)
}
Expand Down Expand Up @@ -232,11 +232,11 @@ func main() {
ContainerPlatform: containerPlatform,
}

if edgeManager.IsEdgeModeEnabled() {
if options.EdgeMode {
config.Addr = advertiseAddr
}

err = startAPIServer(config)
err = startAPIServer(config, options.EdgeMode)
if err != nil && !errors.Is(err, gohttp.ErrServerClosed) {
log.Fatalf("[ERROR] [main,http] [message: Unable to start Agent API server] [error: %s]", err)
}
Expand All @@ -250,14 +250,14 @@ func main() {
fmt.Printf("[DEBUG] [main] [message: shutting down] [signal: %s]", s)
}

func startAPIServer(config *http.APIServerConfig) error {
func startAPIServer(config *http.APIServerConfig, edgeMode bool) error {
server := http.NewAPIServer(config)

if config.EdgeManager.IsEdgeModeEnabled() {
return server.StartUnsecured()
if edgeMode {
return server.StartUnsecured(edgeMode)
}

return server.StartSecured()
return server.StartSecured(edgeMode)
}

func parseOptions() (*agent.Options, error) {
Expand All @@ -266,7 +266,7 @@ func parseOptions() (*agent.Options, error) {
}

func serveEdgeUI(edgeManager *edge.Manager, serverAddr, serverPort string) {
edgeServer := http.NewEdgeServer(edgeManager)
edgeServer := httpEdge.NewEdgeServer(edgeManager)

go func() {
log.Printf("[INFO] [main,edge,http] [server_address: %s] [server_port: %s] [message: Starting Edge server]", serverAddr, serverPort)
Expand All @@ -289,71 +289,3 @@ func serveEdgeUI(edgeManager *edge.Manager, serverAddr, serverPort string) {
}
}()
}

func retrieveEdgeKey(edgeKey string, clusterService agent.ClusterService) (string, error) {

if edgeKey != "" {
log.Println("[INFO] [main,edge] [message: Edge key loaded from options]")
return edgeKey, nil
}

var keyRetrievalError error

edgeKey, keyRetrievalError = retrieveEdgeKeyFromFilesystem()
if keyRetrievalError != nil {
return "", keyRetrievalError
}

if edgeKey == "" && clusterService != nil {
edgeKey, keyRetrievalError = retrieveEdgeKeyFromCluster(clusterService)
if keyRetrievalError != nil {
return "", keyRetrievalError
}
}

return edgeKey, nil
}

func retrieveEdgeKeyFromFilesystem() (string, error) {
var edgeKey string

edgeKeyFilePath := fmt.Sprintf("%s/%s", agent.DataDirectory, agent.EdgeKeyFile)

keyFileExists, err := filesystem.FileExists(edgeKeyFilePath)
if err != nil {
return "", err
}

if keyFileExists {
filesystemKey, err := filesystem.ReadFromFile(edgeKeyFilePath)
if err != nil {
return "", err
}

log.Println("[INFO] [main,edge] [message: Edge key loaded from the filesystem]")
edgeKey = string(filesystemKey)
}

return edgeKey, nil
}

func retrieveEdgeKeyFromCluster(clusterService agent.ClusterService) (string, error) {
var edgeKey string

member := clusterService.GetMemberWithEdgeKeySet()
if member != nil {
httpCli := client.NewAPIClient()

memberAddr := fmt.Sprintf("%s:%s", member.IPAddress, member.Port)
memberKey, err := httpCli.GetEdgeKey(memberAddr)
if err != nil {
log.Printf("[ERROR] [main,edge,http,cluster] [message: Unable to retrieve Edge key from cluster member] [error: %s]", err)
return "", err
}

log.Println("[INFO] [main,edge] [message: Edge key loaded from cluster]")
edgeKey = memberKey
}

return edgeKey, nil
}
14 changes: 2 additions & 12 deletions crypto/tls.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -54,12 +54,7 @@ func (service *TLSService) GenerateCertsForHost(host string) error {
return err
}

err = createPEMEncodedFile(agent.TLSKeyPath, "RSA PRIVATE KEY", x509.MarshalPKCS1PrivateKey(keyPair))
if err != nil {
return err
}

return nil
return createPEMEncodedFile(agent.TLSKeyPath, "RSA PRIVATE KEY", x509.MarshalPKCS1PrivateKey(keyPair))
}

func createPEMEncodedFile(path, header string, data []byte) error {
Expand All @@ -69,10 +64,5 @@ func createPEMEncodedFile(path, header string, data []byte) error {
}
defer file.Close()

err = pem.Encode(file, &pem.Block{Type: header, Bytes: data})
if err != nil {
return err
}

return nil
return pem.Encode(file, &pem.Block{Type: header, Bytes: data})
}
0 http/client/client.go → edge/client/client.go
View file
Open in desktop
File renamed without changes.
2 changes: 1 addition & 1 deletion http/client/portainer_client.go → edge/client/portainer_client.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,7 @@ type PortainerClient struct {
}

// NewPortainerClient returns a pointer to a new PortainerClient instance
func NewPortainerClient(serverAddress, endpointID, edgeID string, insecurePoll bool, tunnel bool) *PortainerClient {
func NewPortainerClient(serverAddress, endpointID, edgeID string, insecurePoll bool) *PortainerClient {
httpCli := &http.Client{
Timeout: 10 * time.Second,
}
Expand Down
Loading