PageRenderTime 42ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/vendor/github.com/vmware/govmomi/session/manager.go

https://gitlab.com/unofficial-mirrors/kubernetes
Go | 267 lines | 189 code | 48 blank | 30 comment | 34 complexity | 518308ea0d024af384b5bdbd9daa1f9b MD5 | raw file
    

  1. /*
    2. 

  2. Copyright (c) 2015 VMware, Inc. All Rights Reserved.
    3. 

    4. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

    8. 

  8.     http://www.apache.org/licenses/LICENSE-2.0
    9. 

    10. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package session
    18. 

  18. 

  19. import (
    20. 

  20. 	"context"
    21. 

  21. 	"net/http"
    22. 

  22. 	"net/url"
    23. 

  23. 	"os"
    24. 

  24. 

  25. 	"github.com/vmware/govmomi/property"
    26. 

  26. 	"github.com/vmware/govmomi/vim25"
    27. 

  27. 	"github.com/vmware/govmomi/vim25/methods"
    28. 

  28. 	"github.com/vmware/govmomi/vim25/mo"
    29. 

  29. 	"github.com/vmware/govmomi/vim25/types"
    30. 

  30. )
    31. 

  31. 

  32. // Locale defaults to "en_US" and can be overridden via this var or the GOVMOMI_LOCALE env var.
    33. 

  33. // A value of "_" uses the server locale setting.
    34. 

  34. var Locale = os.Getenv("GOVMOMI_LOCALE")
    35. 

  35. 

  36. func init() {
    37. 

  37. 	if Locale == "_" {
    38. 

  38. 		Locale = ""
    39. 

  39. 	} else if Locale == "" {
    40. 

  40. 		Locale = "en_US"
    41. 

  41. 	}
    42. 

  42. }
    43. 

  43. 

  44. type Manager struct {
    45. 

  45. 	client      *vim25.Client
    46. 

  46. 	userSession *types.UserSession
    47. 

  47. }
    48. 

  48. 

  49. func NewManager(client *vim25.Client) *Manager {
    50. 

  50. 	m := Manager{
    51. 

  51. 		client: client,
    52. 

  52. 	}
    53. 

  53. 

  54. 	return &m
    55. 

  55. }
    56. 

  56. 

  57. func (sm Manager) Reference() types.ManagedObjectReference {
    58. 

  58. 	return *sm.client.ServiceContent.SessionManager
    59. 

  59. }
    60. 

  60. 

  61. func (sm *Manager) SetLocale(ctx context.Context, locale string) error {
    62. 

  62. 	req := types.SetLocale{
    63. 

  63. 		This:   sm.Reference(),
    64. 

  64. 		Locale: locale,
    65. 

  65. 	}
    66. 

  66. 

  67. 	_, err := methods.SetLocale(ctx, sm.client, &req)
    68. 

  68. 	return err
    69. 

  69. }
    70. 

  70. 

  71. func (sm *Manager) Login(ctx context.Context, u *url.Userinfo) error {
    72. 

  72. 	req := types.Login{
    73. 

  73. 		This:   sm.Reference(),
    74. 

  74. 		Locale: Locale,
    75. 

  75. 	}
    76. 

  76. 

  77. 	if u != nil {
    78. 

  78. 		req.UserName = u.Username()
    79. 

  79. 		if pw, ok := u.Password(); ok {
    80. 

  80. 			req.Password = pw
    81. 

  81. 		}
    82. 

  82. 	}
    83. 

  83. 

  84. 	login, err := methods.Login(ctx, sm.client, &req)
    85. 

  85. 	if err != nil {
    86. 

  86. 		return err
    87. 

  87. 	}
    88. 

  88. 

  89. 	sm.userSession = &login.Returnval
    90. 

  90. 	return nil
    91. 

  91. }
    92. 

  92. 

  93. // LoginExtensionByCertificate uses the vCenter SDK tunnel to login using a client certificate.
    94. 

  94. // The client certificate can be set using the soap.Client.SetCertificate method.
    95. 

  95. // See: https://kb.vmware.com/s/article/2004305
    96. 

  96. func (sm *Manager) LoginExtensionByCertificate(ctx context.Context, key string) error {
    97. 

  97. 	c := sm.client
    98. 

  98. 	u := c.URL()
    99. 

  99. 	if u.Hostname() != "sdkTunnel" {
    100. 

  100. 		sc := c.Tunnel()
    101. 

  101. 		c = &vim25.Client{
    102. 

  102. 			Client:         sc,
    103. 

  103. 			RoundTripper:   sc,
    104. 

  104. 			ServiceContent: c.ServiceContent,
    105. 

  105. 		}
    106. 

  106. 		// When http.Transport.Proxy is used, our thumbprint checker is bypassed, resulting in:
    107. 

  107. 		// "Post https://sdkTunnel:8089/sdk: x509: certificate is valid for $vcenter_hostname, not sdkTunnel"
    108. 

  108. 		// The only easy way around this is to disable verification for the call to LoginExtensionByCertificate().
    109. 

  109. 		// TODO: find a way to avoid disabling InsecureSkipVerify.
    110. 

  110. 		c.Transport.(*http.Transport).TLSClientConfig.InsecureSkipVerify = true
    111. 

  111. 	}
    112. 

  112. 

  113. 	req := types.LoginExtensionByCertificate{
    114. 

  114. 		This:         sm.Reference(),
    115. 

  115. 		ExtensionKey: key,
    116. 

  116. 		Locale:       Locale,
    117. 

  117. 	}
    118. 

  118. 

  119. 	login, err := methods.LoginExtensionByCertificate(ctx, c, &req)
    120. 

  120. 	if err != nil {
    121. 

  121. 		return err
    122. 

  122. 	}
    123. 

  123. 

  124. 	// Copy the session cookie
    125. 

  125. 	sm.client.Jar.SetCookies(u, c.Jar.Cookies(c.URL()))
    126. 

  126. 

  127. 	sm.userSession = &login.Returnval
    128. 

  128. 	return nil
    129. 

  129. }
    130. 

  130. 

  131. func (sm *Manager) LoginByToken(ctx context.Context) error {
    132. 

  132. 	req := types.LoginByToken{
    133. 

  133. 		This:   sm.Reference(),
    134. 

  134. 		Locale: Locale,
    135. 

  135. 	}
    136. 

  136. 

  137. 	login, err := methods.LoginByToken(ctx, sm.client, &req)
    138. 

  138. 	if err != nil {
    139. 

  139. 		return err
    140. 

  140. 	}
    141. 

  141. 

  142. 	sm.userSession = &login.Returnval
    143. 

  143. 	return nil
    144. 

  144. }
    145. 

  145. 

  146. func (sm *Manager) Logout(ctx context.Context) error {
    147. 

  147. 	req := types.Logout{
    148. 

  148. 		This: sm.Reference(),
    149. 

  149. 	}
    150. 

  150. 

  151. 	_, err := methods.Logout(ctx, sm.client, &req)
    152. 

  152. 	if err != nil {
    153. 

  153. 		return err
    154. 

  154. 	}
    155. 

  155. 

  156. 	sm.userSession = nil
    157. 

  157. 	return nil
    158. 

  158. }
    159. 

  159. 

  160. // UserSession retrieves and returns the SessionManager's CurrentSession field.
    161. 

  161. // Nil is returned if the session is not authenticated.
    162. 

  162. func (sm *Manager) UserSession(ctx context.Context) (*types.UserSession, error) {
    163. 

  163. 	var mgr mo.SessionManager
    164. 

  164. 

  165. 	pc := property.DefaultCollector(sm.client)
    166. 

  166. 	err := pc.RetrieveOne(ctx, sm.Reference(), []string{"currentSession"}, &mgr)
    167. 

  167. 	if err != nil {
    168. 

  168. 		// It's OK if we can't retrieve properties because we're not authenticated
    169. 

  169. 		if f, ok := err.(types.HasFault); ok {
    170. 

  170. 			switch f.Fault().(type) {
    171. 

  171. 			case *types.NotAuthenticated:
    172. 

  172. 				return nil, nil
    173. 

  173. 			}
    174. 

  174. 		}
    175. 

  175. 

  176. 		return nil, err
    177. 

  177. 	}
    178. 

  178. 

  179. 	return mgr.CurrentSession, nil
    180. 

  180. }
    181. 

  181. 

  182. func (sm *Manager) TerminateSession(ctx context.Context, sessionId []string) error {
    183. 

  183. 	req := types.TerminateSession{
    184. 

  184. 		This:      sm.Reference(),
    185. 

  185. 		SessionId: sessionId,
    186. 

  186. 	}
    187. 

  187. 

  188. 	_, err := methods.TerminateSession(ctx, sm.client, &req)
    189. 

  189. 	return err
    190. 

  190. }
    191. 

  191. 

  192. // SessionIsActive checks whether the session that was created at login is
    193. 

  193. // still valid. This function only works against vCenter.
    194. 

  194. func (sm *Manager) SessionIsActive(ctx context.Context) (bool, error) {
    195. 

  195. 	if sm.userSession == nil {
    196. 

  196. 		return false, nil
    197. 

  197. 	}
    198. 

  198. 

  199. 	req := types.SessionIsActive{
    200. 

  200. 		This:      sm.Reference(),
    201. 

  201. 		SessionID: sm.userSession.Key,
    202. 

  202. 		UserName:  sm.userSession.UserName,
    203. 

  203. 	}
    204. 

  204. 

  205. 	active, err := methods.SessionIsActive(ctx, sm.client, &req)
    206. 

  206. 	if err != nil {
    207. 

  207. 		return false, err
    208. 

  208. 	}
    209. 

  209. 

  210. 	return active.Returnval, err
    211. 

  211. }
    212. 

  212. 

  213. func (sm *Manager) AcquireGenericServiceTicket(ctx context.Context, spec types.BaseSessionManagerServiceRequestSpec) (*types.SessionManagerGenericServiceTicket, error) {
    214. 

  214. 	req := types.AcquireGenericServiceTicket{
    215. 

  215. 		This: sm.Reference(),
    216. 

  216. 		Spec: spec,
    217. 

  217. 	}
    218. 

  218. 

  219. 	res, err := methods.AcquireGenericServiceTicket(ctx, sm.client, &req)
    220. 

  220. 	if err != nil {
    221. 

  221. 		return nil, err
    222. 

  222. 	}
    223. 

  223. 

  224. 	return &res.Returnval, nil
    225. 

  225. }
    226. 

  226. 

  227. func (sm *Manager) AcquireLocalTicket(ctx context.Context, userName string) (*types.SessionManagerLocalTicket, error) {
    228. 

  228. 	req := types.AcquireLocalTicket{
    229. 

  229. 		This:     sm.Reference(),
    230. 

  230. 		UserName: userName,
    231. 

  231. 	}
    232. 

  232. 

  233. 	res, err := methods.AcquireLocalTicket(ctx, sm.client, &req)
    234. 

  234. 	if err != nil {
    235. 

  235. 		return nil, err
    236. 

  236. 	}
    237. 

  237. 

  238. 	return &res.Returnval, nil
    239. 

  239. }
    240. 

  240. 

  241. func (sm *Manager) AcquireCloneTicket(ctx context.Context) (string, error) {
    242. 

  242. 	req := types.AcquireCloneTicket{
    243. 

  243. 		This: sm.Reference(),
    244. 

  244. 	}
    245. 

  245. 

  246. 	res, err := methods.AcquireCloneTicket(ctx, sm.client, &req)
    247. 

  247. 	if err != nil {
    248. 

  248. 		return "", err
    249. 

  249. 	}
    250. 

  250. 

  251. 	return res.Returnval, nil
    252. 

  252. }
    253. 

  253. 

  254. func (sm *Manager) CloneSession(ctx context.Context, ticket string) error {
    255. 

  255. 	req := types.CloneSession{
    256. 

  256. 		This:        sm.Reference(),
    257. 

  257. 		CloneTicket: ticket,
    258. 

  258. 	}
    259. 

  259. 

  260. 	res, err := methods.CloneSession(ctx, sm.client, &req)
    261. 

  261. 	if err != nil {
    262. 

  262. 		return err
    263. 

  263. 	}
    264. 

  264. 

  265. 	sm.userSession = &res.Returnval
    266. 

  266. 	return nil
    267. 

  267. }
    268. 

  268.