Support relative paths in Kubernetes configuration files (#141)

* Support relative paths in Kubernetes configuration files

* Filename -> FileName

* Filename -> FileName

* KuberentesClientConfiguration: Allow the user to opt-out of the mechanism which resolves relative paths in the configuration file.

* Update unit tests

* Fix test

Author: qmfrederik

src/KubernetesClient/KubeConfigModels/K8SConfiguration.cs

@@ -52,6 +52,13 @@ public class K8SConfiguration
         /// Gets or sets additional information. This is useful for extenders so that reads and writes don't clobber unknown fields.
         /// </summary>
         [YamlMember(Alias = "extensions")]
-        public IDictionary<string, dynamic> Extensions { get; set; }
+        public IDictionary<string, dynamic> Extensions { get; set; }
+
+        /// <summary>
+        /// Gets or sets the name of the Kubernetes configuration file. This property is set only when the configuration
+        /// was loaded from disk, and can be used to resolve relative paths.
+        /// </summary>
+        [YamlIgnore]
+        public string FileName { get; set; }
     }
 }

src/KubernetesClient/KubernetesClientConfiguration.ConfigFile.cs

@@ -28,28 +28,32 @@ public partial class KubernetesClientConfiguration
         ///     Initializes a new instance of the <see cref="KubernetesClientConfiguration" /> from config file
         /// </summary>
         /// <param name="masterUrl">kube api server endpoint</param>
-        /// <param name="kubeconfigPath">Explicit file path to kubeconfig. Set to null to use the default file path</param>
+        /// <param name="kubeconfigPath">Explicit file path to kubeconfig. Set to null to use the default file path</param>
+        /// <param name="useRelativePaths">When <see langword="true"/>, the paths in the kubeconfig file will be considered to be relative to the directory in which the kubeconfig
+        /// file is located. When <see langword="false"/>, the paths will be considered to be relative to the current working directory.</param>
         public static KubernetesClientConfiguration BuildConfigFromConfigFile(string kubeconfigPath = null,
-            string currentContext = null, string masterUrl = null)
+            string currentContext = null, string masterUrl = null, bool useRelativePaths = true)
         {
             return BuildConfigFromConfigFile(new FileInfo(kubeconfigPath ?? KubeConfigDefaultLocation), null,
-                masterUrl);
+                masterUrl, useRelativePaths);
         }
 
         /// <summary>
         /// </summary>
         /// <param name="kubeconfig">Fileinfo of the kubeconfig, cannot be null</param>
         /// <param name="currentContext">override the context in config file, set null if do not want to override</param>
-        /// <param name="masterUrl">overrider kube api server endpoint, set null if do not want to override</param>
+        /// <param name="masterUrl">override the kube api server endpoint, set null if do not want to override</param>
+        /// <param name="useRelativePaths">When <see langword="true"/>, the paths in the kubeconfig file will be considered to be relative to the directory in which the kubeconfig
+        /// file is located. When <see langword="false"/>, the paths will be considered to be relative to the current working directory.</param>
         public static KubernetesClientConfiguration BuildConfigFromConfigFile(FileInfo kubeconfig,
-            string currentContext = null, string masterUrl = null)
+            string currentContext = null, string masterUrl = null, bool useRelativePaths = true)
         {
             if (kubeconfig == null)
             {
                 throw new NullReferenceException(nameof(kubeconfig));
             }
 
-            var k8SConfig = LoadKubeConfig(kubeconfig);
+            var k8SConfig = LoadKubeConfig(kubeconfig, useRelativePaths);
             var k8SConfiguration = GetKubernetesClientConfiguration(currentContext, masterUrl, k8SConfig);
 
             return k8SConfiguration;
@@ -172,7 +176,7 @@ private void SetClusterDetails(K8SConfiguration k8SConfig, Context activeContext
                     }
                     else if (!string.IsNullOrEmpty(clusterDetails.ClusterEndpoint.CertificateAuthority))
                     {
-                        SslCaCert = new X509Certificate2(clusterDetails.ClusterEndpoint.CertificateAuthority);
+                        SslCaCert = new X509Certificate2(GetFullPath(k8SConfig, clusterDetails.ClusterEndpoint.CertificateAuthority));
                     }
                 }
             }
@@ -230,8 +234,8 @@ private void SetUserDetails(K8SConfiguration k8SConfig, Context activeContext)
             if (!string.IsNullOrWhiteSpace(userDetails.UserCredentials.ClientCertificate) &&
                 !string.IsNullOrWhiteSpace(userDetails.UserCredentials.ClientKey))
             {
-                ClientCertificateFilePath = userDetails.UserCredentials.ClientCertificate;
-                ClientKeyFilePath = userDetails.UserCredentials.ClientKey;
+                ClientCertificateFilePath = GetFullPath(k8SConfig, userDetails.UserCredentials.ClientCertificate);
+                ClientKeyFilePath = GetFullPath(k8SConfig, userDetails.UserCredentials.ClientKey);
                 userCredentialsFound = true;
             }
 
@@ -245,31 +249,37 @@ private void SetUserDetails(K8SConfiguration k8SConfig, Context activeContext)
         /// <summary>
         ///     Loads entire Kube Config from default or explicit file path
         /// </summary>
-        /// <param name="kubeconfigPath">Explicit file path to kubeconfig. Set to null to use the default file path</param>
-        /// <returns></returns>
-        public static async Task<K8SConfiguration> LoadKubeConfigAsync(string kubeconfigPath = null)
+        /// <param name="kubeconfigPath">Explicit file path to kubeconfig. Set to null to use the default file path</param>
+        /// <param name="useRelativePaths">When <see langword="true"/>, the paths in the kubeconfig file will be considered to be relative to the directory in which the kubeconfig
+        /// file is located. When <see langword="false"/>, the paths will be considered to be relative to the current working directory.</param>
+        /// <returns>Instance of the <see cref="K8SConfiguration"/> class</returns>
+        public static async Task<K8SConfiguration> LoadKubeConfigAsync(string kubeconfigPath = null, bool useRelativePaths = true)
         {
             var fileInfo = new FileInfo(kubeconfigPath ?? KubeConfigDefaultLocation);
 
-            return await LoadKubeConfigAsync(fileInfo);
+            return await LoadKubeConfigAsync(fileInfo, useRelativePaths);
         }
 
         /// <summary>
         ///     Loads entire Kube Config from default or explicit file path
         /// </summary>
-        /// <param name="kubeconfigPath">Explicit file path to kubeconfig. Set to null to use the default file path</param>
-        /// <returns></returns>
-        public static K8SConfiguration LoadKubeConfig(string kubeconfigPath = null)
+        /// <param name="kubeconfigPath">Explicit file path to kubeconfig. Set to null to use the default file path</param>
+        /// <param name="useRelativePaths">When <see langword="true"/>, the paths in the kubeconfig file will be considered to be relative to the directory in which the kubeconfig
+        /// file is located. When <see langword="false"/>, the paths will be considered to be relative to the current working directory.</param>
+        /// <returns>Instance of the <see cref="K8SConfiguration"/> class</returns>
+        public static K8SConfiguration LoadKubeConfig(string kubeconfigPath = null, bool useRelativePaths = true)
         {
-            return LoadKubeConfigAsync(kubeconfigPath).GetAwaiter().GetResult();
+            return LoadKubeConfigAsync(kubeconfigPath, useRelativePaths).GetAwaiter().GetResult();
         }
-        
+
         // <summary>
         ///     Loads Kube Config
         /// </summary>
-        /// <param name="kubeconfig">Kube config file contents</param>
+        /// <param name="kubeconfig">Kube config file contents</param>
+        /// <param name="useRelativePaths">When <see langword="true"/>, the paths in the kubeconfig file will be considered to be relative to the directory in which the kubeconfig
+        /// file is located. When <see langword="false"/>, the paths will be considered to be relative to the current working directory.</param>
         /// <returns>Instance of the <see cref="K8SConfiguration"/> class</returns>
-        public static async Task<K8SConfiguration> LoadKubeConfigAsync(FileInfo kubeconfig)
+        public static async Task<K8SConfiguration> LoadKubeConfigAsync(FileInfo kubeconfig, bool useRelativePaths = true)
         {
             if (!kubeconfig.Exists)
             {
@@ -278,18 +288,27 @@ public static async Task<K8SConfiguration> LoadKubeConfigAsync(FileInfo kubeconf
 
             using (var stream = kubeconfig.OpenRead())
             {
-                return await Yaml.LoadFromStreamAsync<K8SConfiguration>(stream);
+                var config = await Yaml.LoadFromStreamAsync<K8SConfiguration>(stream);
+
+                if (useRelativePaths)
+                {
+                    config.FileName = kubeconfig.FullName;
+                }
+
+                return config;
             }
         }
 
         /// <summary>
         ///     Loads Kube Config
         /// </summary>
-        /// <param name="kubeconfig">Kube config file contents</param>
+        /// <param name="kubeconfig">Kube config file contents</param>
+        /// <param name="useRelativePaths">When <see langword="true"/>, the paths in the kubeconfig file will be considered to be relative to the directory in which the kubeconfig
+        /// file is located. When <see langword="false"/>, the paths will be considered to be relative to the current working directory.</param>
         /// <returns>Instance of the <see cref="K8SConfiguration"/> class</returns>
-        public static K8SConfiguration LoadKubeConfig(FileInfo kubeconfig)
+        public static K8SConfiguration LoadKubeConfig(FileInfo kubeconfig, bool useRelativePaths = true)
         {
-            return LoadKubeConfigAsync(kubeconfig).GetAwaiter().GetResult();
+            return LoadKubeConfigAsync(kubeconfig, useRelativePaths).GetAwaiter().GetResult();
         }
 
         // <summary>
@@ -311,5 +330,35 @@ public static K8SConfiguration LoadKubeConfig(Stream kubeconfigStream)
         {
             return LoadKubeConfigAsync(kubeconfigStream).GetAwaiter().GetResult();
         }
+
+        /// <summary>
+        /// Tries to get the full path to a file referenced from the Kubernetes configuration.
+        /// </summary>
+        /// <param name="configuration">
+        /// The Kubernetes configuration.
+        /// </param>
+        /// <param name="path">
+        /// The path to resolve.
+        /// </param>
+        /// <returns>
+        /// When possible a fully qualified path to the file.
+        /// </returns>
+        /// <remarks>
+        /// For example, if the configuration file is at "C:\Users\me\kube.config" and path is "ca.crt",
+        /// this will return "C:\Users\me\ca.crt". Similarly, if path is "D:\ca.cart", this will return
+        /// "D:\ca.crt".
+        /// </remarks>
+        private static string GetFullPath(K8SConfiguration configuration, string path)
+        {
+            // If we don't have a file name,
+            if (string.IsNullOrWhiteSpace(configuration.FileName) || Path.IsPathRooted(path))
+            {
+                return path;
+            }
+            else
+            {
+                return Path.Combine(Path.GetDirectoryName(configuration.FileName), path);
+            }
+        }
     }
 }

tests/KubernetesClient.Tests/CertUtilsTests.cs

@@ -8,17 +8,37 @@ namespace k8s.Tests
     public class CertUtilsTests
     {
         /// <summary>
-        /// This file contains a sample kubeconfig file
+        /// This file contains a sample kubeconfig file. The paths to the certificate files are relative
+        /// to the current working directly.
         /// </summary>
-        private static readonly string kubeConfigFileName = "assets/kubeconfig.yml";
+        private static readonly string kubeConfigFileName = "assets/kubeconfig.yml";
+
+        /// <summary>
+        /// This file contains a sample kubeconfig file. The paths to the certificate files are relative
+        /// to the directory in which the kubeconfig file is located.
+        /// </summary>
+        private static readonly string kubeConfigWithRelativePathsFileName = "assets/kubeconfig.relative.yml";
 
         /// <summary>
         /// Checks that a certificate can be loaded from files.
         /// </summary>
         [Fact]
         public void LoadFromFiles() 
         {
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(kubeConfigFileName, "federal-context");
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(kubeConfigFileName, "federal-context", useRelativePaths: false);
+
+            // Just validate that this doesn't throw and private key is non-null
+            var cert = CertUtils.GeneratePfx(cfg);
+            Assert.NotNull(cert.PrivateKey);
+        }
+
+        /// <summary>
+        /// Checks that a certificate can be loaded from files, in a scenario where the files are using relative paths.
+        /// </summary>
+        [Fact]
+        public void LoadFromFilesRelativePath()
+        {
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(kubeConfigWithRelativePathsFileName, "federal-context");
 
             // Just validate that this doesn't throw and private key is non-null
             var cert = CertUtils.GeneratePfx(cfg);
@@ -31,7 +51,20 @@ public void LoadFromFiles()
         [Fact]
         public void LoadFromInlineData() 
         {
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(kubeConfigFileName, "victorian-context");
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(kubeConfigFileName, "victorian-context", useRelativePaths: false);
+
+            // Just validate that this doesn't throw and private key is non-null
+            var cert = CertUtils.GeneratePfx(cfg);
+            Assert.NotNull(cert.PrivateKey);
+        }
+
+        /// <summary>
+        /// Checks that a certificate can be loaded from inline, in a scenario where the files are using relative paths..
+        /// </summary>
+        [Fact]
+        public void LoadFromInlineDataRelativePath()
+        {
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(kubeConfigWithRelativePathsFileName, "victorian-context");
 
             // Just validate that this doesn't throw and private key is non-null
             var cert = CertUtils.GeneratePfx(cfg);

tests/KubernetesClient.Tests/KubernetesClientConfigurationTests.cs

@@ -17,7 +17,7 @@ public class KubernetesClientConfigurationTests
         public void ContextHost(string context, string host)
         {
             var fi = new FileInfo("assets/kubeconfig.yml");
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, context);
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, context, useRelativePaths: false);
             Assert.Equal(host, cfg.Host);
         }
 
@@ -48,7 +48,7 @@ public void ContextUserToken(string context, string token)
         public void ContextCertificate(string context, string clientCert, string clientCertKey)
         {
             var fi = new FileInfo("assets/kubeconfig.yml");
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, context);
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, context, useRelativePaths: false);
             Assert.Equal(context, cfg.CurrentContext);
             Assert.Equal(cfg.ClientCertificateFilePath, clientCert);
             Assert.Equal(cfg.ClientKeyFilePath, clientCertKey);
@@ -144,7 +144,7 @@ public void ContextNotFound()
         [Fact]
         public void DefaultConfigurationLoaded()
         {
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(new FileInfo("assets/kubeconfig.yml"));
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(new FileInfo("assets/kubeconfig.yml"), useRelativePaths: false);
             Assert.NotNull(cfg.Host);
         }
 
@@ -155,7 +155,7 @@ public void DefaultConfigurationLoaded()
         public void IncompleteUserCredentials()
         {
             var fi = new FileInfo("assets/kubeconfig.no-credentials.yml");
-            Assert.Throws<KubeConfigException>(() => KubernetesClientConfiguration.BuildConfigFromConfigFile(fi));
+            Assert.Throws<KubeConfigException>(() => KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, useRelativePaths: false));
         }
 
         /// <summary>
@@ -196,7 +196,7 @@ public void ServerNotFound()
         public void UserPasswordAuthentication()
         {
             var fi = new FileInfo("assets/kubeconfig.user-pass.yml");
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi);
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, useRelativePaths: false);
             Assert.Equal("admin", cfg.Username);
             Assert.Equal("secret", cfg.Password);
         }
@@ -208,7 +208,7 @@ public void UserPasswordAuthentication()
         public void UserNotFound()
         {
             var fi = new FileInfo("assets/kubeconfig.user-not-found.yml");
-            Assert.Throws<KubeConfigException>(() => KubernetesClientConfiguration.BuildConfigFromConfigFile(fi));
+            Assert.Throws<KubeConfigException>(() => KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, useRelativePaths: false));
         }
 
         /// <summary>
@@ -218,7 +218,7 @@ public void UserNotFound()
         public void EmptyUserNotFound()
         {
             var fi = new FileInfo("assets/kubeconfig.no-user.yml");
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi);
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, useRelativePaths: false);
 
             Assert.NotEmpty(cfg.Host);
         }
@@ -230,7 +230,7 @@ public void EmptyUserNotFound()
         public void OverrideByMasterUrl()
         {
             var fi = new FileInfo("assets/kubeconfig.yml");
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, masterUrl: "http://test.server");
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(fi, masterUrl: "http://test.server", useRelativePaths: false);
             Assert.Equal("http://test.server", cfg.Host);
         }
 
@@ -280,7 +280,7 @@ public void DeletedConfigurationFile()
 
             try
             {
-                config = KubernetesClientConfiguration.BuildConfigFromConfigFile(tempFileInfo);
+                config = KubernetesClientConfiguration.BuildConfigFromConfigFile(tempFileInfo, useRelativePaths: false);
             }
             finally
             {
@@ -295,7 +295,7 @@ public void DeletedConfigurationFile()
         public void DefaultConfigurationAsStringLoaded()
         {
             var filePath = "assets/kubeconfig.yml";
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(filePath, null, null);
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(filePath, null, null, useRelativePaths: false);
             Assert.NotNull(cfg.Host);
         }
 
@@ -321,7 +321,7 @@ public void AsUserExtra()
         {
             var filePath = "assets/kubeconfig.as-user-extra.yml";
 
-            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(filePath, null, null);
+            var cfg = KubernetesClientConfiguration.BuildConfigFromConfigFile(filePath, null, null, useRelativePaths: false);
             Assert.NotNull(cfg.Host);
         }