async support (#15)

Author: csviri

README.md

@@ -1,79 +1,16 @@
 # admission-controller-framework
 
-Framework and tooling to support implementing admission controllers for Kubernetes in Java
-
-Currently, project is early phases.
-
+Framework and tooling to support implementing admission controllers for Kubernetes in Java.
+Supports both **quarkus** and **spring boot**. Both Sync and Async programing model.
 
 ## Sample Usage
 
 Defining a mutation or validation controller should be simple as: 
 
-```java
-
-@Dependent
-public class AdmissionControllerConfig {
-
-    public static final String APP_NAME_LABEL_KEY = "app.kubernetes.io/name";
-
-    @Singleton
-    @Named("mutatingController")
-    public AdmissionController<Pod> mutatingController() {
-        return new AdmissionController<>((resource, operation) -> {
-            resource.getMetadata().getLabels().putIfAbsent(APP_NAME_LABEL_KEY, "mutation-test");
-            return resource;
-        });
-    }
-    
-    @Singleton
-    @Named("validatingController")
-    public AdmissionController<Pod> validatingController() {
-        return new AdmissionController<>((resource, operation) -> {
-            if (resource.getMetadata().getLabels().get(APP_NAME_LABEL_KEY) == null) {
-                throw new NotAllowedException("Missing label: " + APP_NAME_LABEL_KEY);
-            }
-        });
-    }
-}
-
-```
+https://github.com/java-operator-sdk/admission-controller-framework/blob/0946595d941b789caef6a69b34c2e5be8c6b59cf/samples/quarkus/src/main/java/io/javaoperatorsdk/admissioncontroller/sample/quarkus/AdmissionControllerConfig.java#L31-L68
 
 What can be then simple used in an endpoint:
 
-```java
-
-@Path("/")
-public class AdmissionEndpoint {
-
-  private AdmissionController<Pod> mutationController;
-  private AdmissionController<Pod> validationController;
-
-  @Inject
-  public AdmissionEndpoint(@Named("mutatingController") AdmissionController<Pod> mutationController,
-      @Named("validatingController") AdmissionController<Pod> validationController) {
-    this.mutationController = mutationController;
-    this.validationController = validationController;
-  }
-
-  @POST
-  @Path("mutate")
-  @Consumes(MediaType.APPLICATION_JSON)
-  @Produces(MediaType.APPLICATION_JSON)
-  public AdmissionReview mutate(AdmissionReview admissionReview) {
-    return mutationController.handle(admissionReview);
-  }
-
-  @POST
-  @Path("validate")
-  @Consumes(MediaType.APPLICATION_JSON)
-  @Produces(MediaType.APPLICATION_JSON)
-  public AdmissionReview hello(AdmissionReview admissionReview) {
-    return validationController.handle(admissionReview);
-  }
-
-}
-
-```
-
+https://github.com/java-operator-sdk/admission-controller-framework/blob/0946595d941b789caef6a69b34c2e5be8c6b59cf/samples/quarkus/src/main/java/io/javaoperatorsdk/admissioncontroller/sample/quarkus/AdmissionEndpoint.java#L57-L89
 
 See samples also for details.

core/src/main/java/io/javaoperatorsdk/admissioncontroller/AdmissionController.java

@@ -30,4 +30,5 @@ public AdmissionReview handle(AdmissionReview admissionReview) {
     response.setUid(admissionReview.getRequest().getUid());
     return responseAdmissionReview;
   }
+
 }

core/src/main/java/io/javaoperatorsdk/admissioncontroller/AsyncAdmissionController.java

@@ -0,0 +1,38 @@
+package io.javaoperatorsdk.admissioncontroller;
+
+import java.util.concurrent.CompletionStage;
+
+import io.fabric8.kubernetes.api.model.KubernetesResource;
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionReview;
+import io.javaoperatorsdk.admissioncontroller.mutation.AsyncDefaultRequestMutator;
+import io.javaoperatorsdk.admissioncontroller.mutation.AsyncMutator;
+import io.javaoperatorsdk.admissioncontroller.validation.AsyncDefaultRequestValidator;
+import io.javaoperatorsdk.admissioncontroller.validation.Validator;
+
+public class AsyncAdmissionController<T extends KubernetesResource> {
+
+  private final AsyncRequestHandler requestHandler;
+
+  public AsyncAdmissionController(AsyncMutator<T> mutator) {
+    this(new AsyncDefaultRequestMutator<>(mutator));
+  }
+
+  public AsyncAdmissionController(Validator<T> validator) {
+    this(new AsyncDefaultRequestValidator<>(validator));
+  }
+
+  public AsyncAdmissionController(AsyncRequestHandler requestHandler) {
+    this.requestHandler = requestHandler;
+  }
+
+  public CompletionStage<AdmissionReview> handle(AdmissionReview admissionReview) {
+    return requestHandler.handle(admissionReview.getRequest())
+        .thenApply(r -> {
+          AdmissionReview responseAdmissionReview = new AdmissionReview();
+          responseAdmissionReview.setResponse(r);
+          r.setUid(admissionReview.getRequest().getUid());
+          return responseAdmissionReview;
+        });
+  }
+
+}

core/src/main/java/io/javaoperatorsdk/admissioncontroller/AsyncRequestHandler.java

@@ -0,0 +1,12 @@
+package io.javaoperatorsdk.admissioncontroller;
+
+import java.util.concurrent.CompletionStage;
+
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionRequest;
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionResponse;
+
+public interface AsyncRequestHandler {
+
+  CompletionStage<AdmissionResponse> handle(AdmissionRequest admissionRequest);
+
+}

core/src/main/java/io/javaoperatorsdk/admissioncontroller/mutation/AsyncDefaultRequestMutator.java

@@ -0,0 +1,48 @@
+package io.javaoperatorsdk.admissioncontroller.mutation;
+
+import java.util.concurrent.CompletableFuture;
+import java.util.concurrent.CompletionStage;
+
+import io.fabric8.kubernetes.api.model.KubernetesResource;
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionRequest;
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionResponse;
+import io.javaoperatorsdk.admissioncontroller.*;
+import io.javaoperatorsdk.admissioncontroller.clone.Cloner;
+import io.javaoperatorsdk.admissioncontroller.clone.ObjectMapperCloner;
+
+import static io.javaoperatorsdk.admissioncontroller.AdmissionUtils.admissionResponseFromMutation;
+import static io.javaoperatorsdk.admissioncontroller.AdmissionUtils.getTargetResource;
+
+public class AsyncDefaultRequestMutator<T extends KubernetesResource>
+    implements AsyncRequestHandler {
+
+  private final AsyncMutator<T> mutator;
+  private final Cloner<T> cloner;
+
+  public AsyncDefaultRequestMutator(AsyncMutator<T> mutator) {
+    this(mutator, new ObjectMapperCloner<>());
+  }
+
+  public AsyncDefaultRequestMutator(AsyncMutator<T> mutator, Cloner<T> cloner) {
+    this.mutator = mutator;
+    this.cloner = cloner;
+  }
+
+  @Override
+  public CompletionStage<AdmissionResponse> handle(AdmissionRequest admissionRequest) {
+    Operation operation = Operation.valueOf(admissionRequest.getOperation());
+    var originalResource = (T) getTargetResource(admissionRequest, operation);
+    var clonedResource = cloner.clone(originalResource);
+    CompletionStage<AdmissionResponse> admissionResponse;
+    try {
+      var mutatedResource = mutator.mutate(clonedResource, operation);
+      admissionResponse =
+          mutatedResource.thenApply(mr -> admissionResponseFromMutation(originalResource, mr));
+    } catch (NotAllowedException e) {
+      admissionResponse = CompletableFuture
+          .supplyAsync(() -> AdmissionUtils.notAllowedExceptionToAdmissionResponse(e));
+    }
+    return admissionResponse;
+  }
+
+}

core/src/main/java/io/javaoperatorsdk/admissioncontroller/mutation/AsyncMutator.java

@@ -0,0 +1,13 @@
+package io.javaoperatorsdk.admissioncontroller.mutation;
+
+import java.util.concurrent.CompletionStage;
+
+import io.fabric8.kubernetes.api.model.KubernetesResource;
+import io.javaoperatorsdk.admissioncontroller.NotAllowedException;
+import io.javaoperatorsdk.admissioncontroller.Operation;
+
+public interface AsyncMutator<T extends KubernetesResource> {
+
+  CompletionStage<T> mutate(T resource, Operation operation) throws NotAllowedException;
+
+}

core/src/main/java/io/javaoperatorsdk/admissioncontroller/validation/AsyncDefaultRequestValidator.java

@@ -0,0 +1,52 @@
+package io.javaoperatorsdk.admissioncontroller.validation;
+
+import java.util.concurrent.CompletableFuture;
+import java.util.concurrent.CompletionException;
+import java.util.concurrent.CompletionStage;
+
+import io.fabric8.kubernetes.api.model.KubernetesResource;
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionRequest;
+import io.fabric8.kubernetes.api.model.admission.v1.AdmissionResponse;
+import io.javaoperatorsdk.admissioncontroller.*;
+
+import static io.javaoperatorsdk.admissioncontroller.AdmissionUtils.getTargetResource;
+
+public class AsyncDefaultRequestValidator<T extends KubernetesResource>
+    implements AsyncRequestHandler {
+
+  private final Validator<T> validator;
+
+  public AsyncDefaultRequestValidator(Validator<T> validator) {
+    this.validator = validator;
+  }
+
+  @Override
+  @SuppressWarnings("unchecked")
+  public CompletionStage<AdmissionResponse> handle(AdmissionRequest admissionRequest) {
+    Operation operation = Operation.valueOf(admissionRequest.getOperation());
+    var originalResource = (T) getTargetResource(admissionRequest, operation);
+
+    var asyncValidate =
+        CompletableFuture.runAsync(() -> validator.validate(originalResource, operation));
+    return asyncValidate
+        .thenApply(v -> allowedAdmissionResponse())
+        .exceptionally(e -> {
+          if (e instanceof CompletionException) {
+            if (e.getCause() instanceof NotAllowedException) {
+              return AdmissionUtils.notAllowedExceptionToAdmissionResponse(
+                  (NotAllowedException) e.getCause());
+            } else {
+              throw new IllegalStateException(e.getCause());
+            }
+          } else {
+            throw new IllegalStateException(e);
+          }
+        });
+  }
+
+  private AdmissionResponse allowedAdmissionResponse() {
+    AdmissionResponse admissionResponse = new AdmissionResponse();
+    admissionResponse.setAllowed(true);
+    return admissionResponse;
+  }
+}

samples/pom.xml

@@ -7,7 +7,7 @@
     <artifactId>admission-controller-framework</artifactId>
     <version>0.1.1-SNAPSHOT</version>
   </parent>
-  <artifactId>operator-framework-framework-samples</artifactId>
+  <artifactId>operator-framework-samples</artifactId>
   <packaging>pom</packaging>
   <name>Admission Controller Framework - Samples</name>
   <modules>

samples/quarkus/pom.xml

@@ -4,7 +4,7 @@
   <modelVersion>4.0.0</modelVersion>
   <parent>
     <groupId>io.javaoperatorsdk</groupId>
-    <artifactId>operator-framework-framework-samples</artifactId>
+    <artifactId>operator-framework-samples</artifactId>
     <version>0.1.1-SNAPSHOT</version>
   </parent>
   <groupId>io.javaoperatorsdk.admissioncontroller.sample</groupId>
@@ -38,7 +38,7 @@
     </dependency>
     <dependency>
       <groupId>io.quarkus</groupId>
-      <artifactId>quarkus-resteasy</artifactId>
+      <artifactId>quarkus-resteasy-reactive-jackson</artifactId>
     </dependency>
     <dependency>
       <groupId>io.javaoperatorsdk</groupId>

samples/quarkus/src/main/java/io/javaoperatorsdk/admissioncontroller/sample/quarkus/AdmissionControllerConfig.java

@@ -1,20 +1,36 @@
 package io.javaoperatorsdk.admissioncontroller.sample.quarkus;
 
+import java.util.concurrent.CompletableFuture;
+
 import javax.enterprise.context.Dependent;
 import javax.inject.Named;
 import javax.inject.Singleton;
 
 import io.fabric8.kubernetes.api.model.Pod;
 import io.javaoperatorsdk.admissioncontroller.AdmissionController;
+import io.javaoperatorsdk.admissioncontroller.AsyncAdmissionController;
 import io.javaoperatorsdk.admissioncontroller.NotAllowedException;
+import io.javaoperatorsdk.admissioncontroller.mutation.AsyncMutator;
+import io.javaoperatorsdk.admissioncontroller.mutation.Mutator;
+import io.javaoperatorsdk.admissioncontroller.validation.Validator;
 
 @Dependent
 public class AdmissionControllerConfig {
 
   public static final String APP_NAME_LABEL_KEY = "app.kubernetes.io/name";
 
+  public static final String MUTATING_CONTROLLER = "mutatingController";
+  public static final String VALIDATING_CONTROLLER = "validatingController";
+  public static final String ERROR_MUTATING_CONTROLLER = "errorMutatingController";
+  public static final String ERROR_VALIDATING_CONTROLLER = "errorValidatingController";
+  public static final String ASYNC_MUTATING_CONTROLLER = "asyncMutatingController";
+  public static final String ASYNC_VALIDATING_CONTROLLER = "asyncValidatingController";
+  public static final String ERROR_ASYNC_MUTATING_CONTROLLER = "errorAsyncMutatingController";
+  public static final String ERROR_ASYNC_VALIDATING_CONTROLLER = "errorAsyncValidatingController";
+  public static final String ERROR_MESSAGE = "Some error happened";
+
   @Singleton
-  @Named("mutatingController")
+  @Named(MUTATING_CONTROLLER)
   public AdmissionController<Pod> mutatingController() {
     return new AdmissionController<>((resource, operation) -> {
       resource.getMetadata().getLabels().putIfAbsent(APP_NAME_LABEL_KEY, "mutation-test");
@@ -23,7 +39,7 @@ public AdmissionController<Pod> mutatingController() {
   }
 
   @Singleton
-  @Named("validatingController")
+  @Named(VALIDATING_CONTROLLER)
   public AdmissionController<Pod> validatingController() {
     return new AdmissionController<>((resource, operation) -> {
       if (resource.getMetadata().getLabels().get(APP_NAME_LABEL_KEY) == null) {
@@ -32,4 +48,56 @@ public AdmissionController<Pod> validatingController() {
     });
   }
 
+  @Singleton
+  @Named(ASYNC_MUTATING_CONTROLLER)
+  public AsyncAdmissionController<Pod> asyncMutatingController() {
+    return new AsyncAdmissionController<>(
+        (AsyncMutator<Pod>) (resource, operation) -> CompletableFuture.supplyAsync(() -> {
+          resource.getMetadata().getLabels().putIfAbsent(APP_NAME_LABEL_KEY, "mutation-test");
+          return resource;
+        }));
+  }
+
+  @Singleton
+  @Named(ASYNC_VALIDATING_CONTROLLER)
+  public AsyncAdmissionController<Pod> asyncValidatingController() {
+    return new AsyncAdmissionController<>((resource, operation) -> {
+      if (resource.getMetadata().getLabels().get(APP_NAME_LABEL_KEY) == null) {
+        throw new NotAllowedException("Missing label: " + APP_NAME_LABEL_KEY);
+      }
+    });
+  }
+
+  @Singleton
+  @Named(ERROR_MUTATING_CONTROLLER)
+  public AdmissionController<Pod> errorMutatingController() {
+    return new AdmissionController<>((Validator<Pod>) (resource, operation) -> {
+      throw new IllegalStateException(ERROR_MESSAGE);
+    });
+  }
+
+  @Singleton
+  @Named(ERROR_VALIDATING_CONTROLLER)
+  public AdmissionController<Pod> errorValidatingController() {
+    return new AdmissionController<>((Mutator<Pod>) (resource, operation) -> {
+      throw new IllegalStateException(ERROR_MESSAGE);
+    });
+  }
+
+  @Singleton
+  @Named(ERROR_ASYNC_MUTATING_CONTROLLER)
+  public AsyncAdmissionController<Pod> errorAsyncMutatingController() {
+    return new AsyncAdmissionController<>((AsyncMutator<Pod>) (resource, operation) -> {
+      throw new IllegalStateException(ERROR_MESSAGE);
+    });
+  }
+
+  @Singleton
+  @Named(ERROR_ASYNC_VALIDATING_CONTROLLER)
+  public AsyncAdmissionController<Pod> errorAsyncValidatingController() {
+    return new AsyncAdmissionController<>((Validator<Pod>) (resource, operation) -> {
+      throw new IllegalStateException(ERROR_MESSAGE);
+    });
+  }
+
 }