public_git
/
postgres-operator
mirror of https://github.com/zalando/postgres-operator.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Avoid calling Team API with an expired token. 

Previously, the controller fetched the Oauth token once at start, so eventually the token would expire and the operator could not create new users. This commit makes the operator fetch the token before each call to the Teams API.
This commit is contained in:
Oleksii Kliukin 2017-03-21 15:08:50 +01:00 committed by Murat Kabilov
parent b6e6308bdc
commit 48ba6adf8a
4 changed files with 12 additions and 11 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
pkg/cluster/util.go
View File

@ -127,6 +127,7 @@ func (c *Cluster) getTeamMembers() ([]string, error) {
if err != nil {
return nil, fmt.Errorf("Can't get team info: %s", err)
}
c.logger.Debugf("Got from the Team API: %v", teamInfo)
return teamInfo.Members, nil
}

7
pkg/controller/controller.go
View File

@ -68,12 +68,7 @@ func (c *Controller) initController() {
c.logger.Fatalf("Can't register ThirdPartyResource: %s", err)
}
token, err := c.getOAuthToken()
if err != nil {
c.logger.Errorf("Can't get OAuth token: %s", err)
} else {
c.config.TeamsAPIClient.OAuthToken = token
}
c.config.TeamsAPIClient.RefreshTokenAction = c.getOAuthToken
// Postgresqls
clusterLw := &cache.ListWatch{

13
pkg/util/teams/teams.go
View File

@ -36,9 +36,9 @@ type Team struct {
}
type TeamsAPI struct {
url string
httpClient *http.Client
OAuthToken string
url string
httpClient *http.Client
RefreshTokenAction func() (string, error)
}
func NewTeamsAPI(url string) *TeamsAPI {
@ -51,13 +51,18 @@ func NewTeamsAPI(url string) *TeamsAPI {
}
func (t *TeamsAPI) TeamInfo(teamId string) (*Team, error) {
// TODO: avoid getting a new token on every call to the Teams API.
token, err := t.RefreshTokenAction()
if err != nil {
return nil, err
}
url := fmt.Sprintf("%s/teams/%s", t.url, teamId)
req, err := http.NewRequest("GET", url, nil)
if err != nil {
return nil, err
}
req.Header.Add("Authorization", "Bearer "+t.OAuthToken)
req.Header.Add("Authorization", "Bearer "+token)
resp, err := t.httpClient.Do(req)
if err != nil {
return nil, err

2
pkg/util/util.go
View File

@ -1,9 +1,9 @@
package util
import (
"fmt"
"math/rand"
"time"
"fmt"
"github.bus.zalan.do/acid/postgres-operator/pkg/spec"
"k8s.io/client-go/pkg/api/v1"