Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-01-19 03:41:44 -05:00
Code Issues Packages Projects Releases Wiki Activity
963c6f98e5
constellation/activation/cmd/main.go
Daniel Weiße 963c6f98e5 Create kubernetes CA signed kubelet certificates on activation 
Signed-off-by: Daniel Weiße <dw@edgeless.systems>
2022-06-10 08:34:06 +02:00

69 lines
2.1 KiB
Go
Raw Blame History

package main
import (
"flag"
"github.com/edgelesssys/constellation/activation/kms"
"github.com/edgelesssys/constellation/activation/kubeadm"
"github.com/edgelesssys/constellation/activation/kubernetesca"
"github.com/edgelesssys/constellation/activation/server"
"github.com/edgelesssys/constellation/activation/validator"
"github.com/edgelesssys/constellation/activation/watcher"
"github.com/edgelesssys/constellation/internal/atls"
"github.com/edgelesssys/constellation/internal/constants"
"github.com/edgelesssys/constellation/internal/file"
"github.com/spf13/afero"
"k8s.io/klog/v2"
)
const (
bindPort = "9090"
)
func main() {
provider := flag.String("cloud-provider", "", "cloud service provider this binary is running on")
kmsEndpoint := flag.String("kms-endpoint", "", "endpoint of Constellations key management service")
klog.InitFlags(nil)
flag.Parse()
klog.V(2).Infof("\nConstellation Node Activation Service\nVersion: v%s\nRunning on: %s", constants.VersionInfo, *provider)
handler := file.NewHandler(afero.NewOsFs())
validator, err := validator.New(*provider, handler)
if err != nil {
flag.Usage()
klog.Exitf("failed to create validator: %s", err)
}
tlsConfig, err := atls.CreateAttestationServerTLSConfig(nil, []atls.Validator{validator})
if err != nil {
klog.Exitf("unable to create server config: %s", err)
}
kubeadm, err := kubeadm.New()
if err != nil {
klog.Exitf("failed to create kubeadm: %s", err)
}
kms := kms.New(*kmsEndpoint)
server := server.New(handler, kubernetesca.New(handler), kubeadm, kms)
watcher, err := watcher.New(validator)
if err != nil {
klog.Exitf("failed to create watcher for measurements updates: %s", err)
}
defer watcher.Close()
go func() {
klog.V(4).Infof("starting file watcher for measurements file %s", constants.ActivationMeasurementsFilename)
if err := watcher.Watch(constants.ActivationMeasurementsFilename); err != nil {
klog.Exitf("failed to watch measurements file: %s", err)
}
}()
if err := server.Run(tlsConfig, bindPort); err != nil {
klog.Exitf("failed to run server: %s", err)
}
}
Reference in New Issue View Git Blame Copy Permalink