Inicio Explorar Ayuda
Iniciar sesión
akillibulut
/
cost-model
espejo de https://github.com/kubecost/cost-model
2
0
Fork 0
Archivos Incidencias 0 Wiki
Rama: v1.107
Ramas Etiquetas
cost-model
/
pkg
/
cloud
/
azure
/
authorizer.go

authorizer.go 1.8 KB
Permalink Histórico Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980 
  1. package azure
    2. 

  2. 

  3. import (
    4. 

  4. 	"encoding/json"
    5. 

  5. 	"fmt"
    6. 

  6. 

  7. 	"github.com/Azure/azure-storage-blob-go/azblob"
    8. 

  8. 	"github.com/opencost/opencost/pkg/cloud/config"
    9. 

  9. )
    10. 

  10. 

  11. const AccessKeyAuthorizerType = "AzureAccessKey"
    12. 

  12. 

  13. type Authorizer interface {
    14. 

  14. 	config.Authorizer
    15. 

  15. 	GetBlobCredentials() (azblob.Credential, error)
    16. 

  16. }
    17. 

  17. 

  18. // SelectAuthorizerByType is an implementation of AuthorizerSelectorFn and acts as a register for Authorizer types
    19. 

  19. func SelectAuthorizerByType(typeStr string) (Authorizer, error) {
    20. 

  20. 	switch typeStr {
    21. 

  21. 	case AccessKeyAuthorizerType:
    22. 

  22. 		return &AccessKey{}, nil
    23. 

  23. 	default:
    24. 

  24. 		return nil, fmt.Errorf("azure: provider authorizer type '%s' is not valid", typeStr)
    25. 

  25. 	}
    26. 

  26. }
    27. 

  27. 

  28. type AccessKey struct {
    29. 

  29. 	AccessKey string `json:"accessKey"`
    30. 

  30. 	Account   string `json:"account"`
    31. 

  31. }
    32. 

  32. 

  33. func (ak *AccessKey) MarshalJSON() ([]byte, error) {
    34. 

  34. 	fmap := make(map[string]any, 3)
    35. 

  35. 	fmap[config.AuthorizerTypeProperty] = AccessKeyAuthorizerType
    36. 

  36. 	fmap["accessKey"] = ak.AccessKey
    37. 

  37. 	fmap["account"] = ak.Account
    38. 

  38. 	return json.Marshal(fmap)
    39. 

  39. }
    40. 

  40. 

  41. func (ak *AccessKey) Validate() error {
    42. 

  42. 	if ak.AccessKey == "" {
    43. 

  43. 		return fmt.Errorf("AccessKey: missing access key")
    44. 

  44. 	}
    45. 

  45. 	if ak.Account == "" {
    46. 

  46. 		return fmt.Errorf("AccessKey: missing account")
    47. 

  47. 	}
    48. 

  48. 	return nil
    49. 

  49. }
    50. 

  50. 

  51. func (ak *AccessKey) Equals(config config.Config) bool {
    52. 

  52. 	if config == nil {
    53. 

  53. 		return false
    54. 

  54. 	}
    55. 

  55. 	thatConfig, ok := config.(*AccessKey)
    56. 

  56. 	if !ok {
    57. 

  57. 		return false
    58. 

  58. 	}
    59. 

  59. 

  60. 	if ak.AccessKey != thatConfig.AccessKey {
    61. 

  61. 		return false
    62. 

  62. 	}
    63. 

  63. 	if ak.Account != thatConfig.Account {
    64. 

  64. 		return false
    65. 

  65. 	}
    66. 

  66. 

  67. 	return true
    68. 

  68. }
    69. 

  69. 

  70. func (ak *AccessKey) Sanitize() config.Config {
    71. 

  71. 	return &AccessKey{
    72. 

  72. 		AccessKey: config.Redacted,
    73. 

  73. 		Account:   ak.Account,
    74. 

  74. 	}
    75. 

  75. }
    76. 

  76. 

  77. func (ak *AccessKey) GetBlobCredentials() (azblob.Credential, error) {
    78. 

  78. 	// Create a default request pipeline using your storage account name and account key.
    79. 

  79. 	return azblob.NewSharedKeyCredential(ak.Account, ak.AccessKey)
    80. 

  80. }
    81.