/ open-webui.git / app / env / lib64 / python3.11 / site-packages / moto / eks / models.py

Save
from typing import Any, Dict, List, Optional, Tuple from moto.core.base_backend import BackendDict, BaseBackend from moto.core.utils import utcnow from moto.moto_api._internal import mock_random as random from moto.utilities.utils import get_partition from .exceptions import ( InvalidParameterException, InvalidRequestException, ResourceInUseException, ResourceNotFoundException, ) from .utils import validate_role_arn # String Templates CLUSTER_ARN_TEMPLATE = "arn:{partition}:eks:{region}:{account_id}:cluster/{name}" FARGATE_PROFILE_ARN_TEMPLATE = "arn:{partition}:eks:{region}:{account_id}:fargateprofile/{cluster_name}/{fargate_profile_name}/{uuid}" NODEGROUP_ARN_TEMPLATE = "arn:{partition}:eks:{region}:{account_id}:nodegroup/{cluster_name}/{nodegroup_name}/{uuid}" ISSUER_TEMPLATE = ( "https://oidc.eks.{region}.amazonaws.com/id/" + random.get_random_string(length=10) ) ENDPOINT_TEMPLATE = ( "https://" + random.get_random_string() + "." + random.get_random_string(3) + ".{region}.eks.amazonaws.com/" ) # Defaults used for creating a Cluster DEFAULT_KUBERNETES_NETWORK_CONFIG = {"serviceIpv4Cidr": "172.20.0.0/16"} DEFAULT_KUBERNETES_VERSION = "1.19" DEFAULT_LOGGING = { "clusterLogging": [ { "types": [ "api", "audit", "authenticator", "controllerManager", "scheduler", ], "enabled": False, } ] } DEFAULT_PLATFORM_VERSION = "eks.4" ACTIVE_STATUS = "ACTIVE" # Defaults used for creating a Managed Nodegroup DEFAULT_AMI_TYPE = "AL2_x86_64" DEFAULT_CAPACITY_TYPE = "ON_DEMAND" DEFAULT_DISK_SIZE = "20" DEFAULT_INSTANCE_TYPES = ["t3.medium"] DEFAULT_NODEGROUP_HEALTH: Dict[str, Any] = {"issues": []} DEFAULT_RELEASE_VERSION = "1.19.8-20210414" DEFAULT_REMOTE_ACCESS = {"ec2SshKey": "eksKeypair"} DEFAULT_SCALING_CONFIG = {"minSize": 2, "maxSize": 2, "desiredSize": 2} # Exception messages, also imported into testing. # Obtained through cURL responses from the actual APIs. CLUSTER_IN_USE_MSG = "Cluster has nodegroups attached" CLUSTER_EXISTS_MSG = "Cluster already exists with name: {clusterName}" CLUSTER_NOT_FOUND_MSG = "No cluster found for name: {clusterName}." CLUSTER_NOT_READY_MSG = "Cluster '{clusterName}' is not in ACTIVE status" FARGATE_PROFILE_EXISTS_MSG = ( "A Fargate Profile already exists with this name in this cluster." ) FARGATE_PROFILE_NEEDS_SELECTOR_MSG = "Fargate Profile requires at least one selector." FARGATE_PROFILE_NOT_FOUND_MSG = ( "No Fargate Profile found with name: {fargateProfileName}." ) FARGATE_PROFILE_SELECTOR_NEEDS_NAMESPACE = ( "Fargate Profile must have at least one selector with at least one namespace value." ) FARGATE_PROFILE_TOO_MANY_LABELS = ( "Request contains Selector with more than 5 Label pairs" ) LAUNCH_TEMPLATE_WITH_DISK_SIZE_MSG = ( "Disk size must be specified within the launch template." ) LAUNCH_TEMPLATE_WITH_REMOTE_ACCESS_MSG = ( "Remote access configuration cannot be specified with a launch template." ) NODEGROUP_EXISTS_MSG = ( "NodeGroup already exists with name {nodegroupName} and cluster name {clusterName}" ) NODEGROUP_NOT_FOUND_MSG = "No node group found for name: {nodegroupName}." class Cluster: def __init__( self, name: str, role_arn: str, resources_vpc_config: Dict[str, Any], account_id: str, region_name: str, aws_partition: str, version: Optional[str] = None, kubernetes_network_config: Optional[Dict[str, str]] = None, logging: Optional[Dict[str, Any]] = None, client_request_token: Optional[str] = None, tags: Optional[Dict[str, str]] = None, encryption_config: Optional[List[Dict[str, Any]]] = None, remote_network_config: Optional[Dict[str, List[Dict[str, List[str]]]]] = None, ): if encryption_config is None: encryption_config = [] if tags is None: tags = dict() self.nodegroups: Dict[str, Nodegroup] = dict() self.nodegroup_count = 0 self.fargate_profiles: Dict[str, FargateProfile] = dict() self.fargate_profile_count = 0 self.arn = CLUSTER_ARN_TEMPLATE.format( partition=aws_partition, account_id=account_id, region=region_name, name=name, ) self.certificate_authority = {"data": random.get_random_string(1400)} self.created_at = utcnow() self.identity = {"oidc": {"issuer": ISSUER_TEMPLATE.format(region=region_name)}} self.endpoint = ENDPOINT_TEMPLATE.format(region=region_name) self.kubernetes_network_config = ( kubernetes_network_config or DEFAULT_KUBERNETES_NETWORK_CONFIG ) self.logging = logging or DEFAULT_LOGGING self.platformVersion = DEFAULT_PLATFORM_VERSION self.status = ACTIVE_STATUS self.version = version or DEFAULT_KUBERNETES_VERSION self.client_request_token = client_request_token self.encryption_config = encryption_config self.name = name self.resources_vpc_config = resources_vpc_config self.role_arn = role_arn self.tags = tags self.remote_network_config = remote_network_config @property def is_active(self) -> bool: return self.status == "ACTIVE" class FargateProfile: def __init__( self, cluster_name: str, fargate_profile_name: str, pod_execution_role_arn: str, selectors: List[Dict[str, Any]], account_id: str, region_name: str, aws_partition: str, client_request_token: Optional[str] = None, subnets: Optional[List[str]] = None, tags: Optional[Dict[str, str]] = None, ): if subnets is None: subnets = list() if tags is None: tags = dict() self.created_at = utcnow() self.uuid = str(random.uuid4()) self.fargate_profile_arn = FARGATE_PROFILE_ARN_TEMPLATE.format( partition=aws_partition, account_id=account_id, region=region_name, cluster_name=cluster_name, fargate_profile_name=fargate_profile_name, uuid=self.uuid, ) self.status = ACTIVE_STATUS self.cluster_name = cluster_name self.fargate_profile_name = fargate_profile_name self.pod_execution_role_arn = pod_execution_role_arn self.client_request_token = client_request_token self.selectors = selectors self.subnets = subnets self.tags = tags class Nodegroup: def __init__( self, cluster_name: str, node_role: str, nodegroup_name: str, subnets: List[str], account_id: str, region_name: str, aws_partition: str, scaling_config: Optional[Dict[str, int]] = None, disk_size: Optional[int] = None, instance_types: Optional[List[str]] = None, ami_type: Optional[str] = None, remote_access: Optional[Dict[str, Any]] = None, labels: Optional[Dict[str, str]] = None, taints: Optional[List[Dict[str, str]]] = None, tags: Optional[Dict[str, str]] = None, client_request_token: Optional[str] = None, launch_template: Optional[Dict[str, str]] = None, capacity_type: Optional[str] = None, version: Optional[str] = None, release_version: Optional[str] = None, ): if tags is None: tags = dict() if labels is None: labels = dict() if taints is None: taints = [] self.uuid = str(random.uuid4()) self.arn = NODEGROUP_ARN_TEMPLATE.format( partition=aws_partition, account_id=account_id, region=region_name, cluster_name=cluster_name, nodegroup_name=nodegroup_name, uuid=self.uuid, ) self.created_at = utcnow() self.modified_at = utcnow() self.health = DEFAULT_NODEGROUP_HEALTH self.resources = { "autoScalingGroups": [{"name": "eks-" + self.uuid}], "remoteAccessSecurityGroup": "sg-" + random.get_random_string(17).lower(), } self.ami_type = ami_type or DEFAULT_AMI_TYPE self.capacity_type = capacity_type or DEFAULT_CAPACITY_TYPE self.disk_size = disk_size or DEFAULT_DISK_SIZE self.instance_types = instance_types or DEFAULT_INSTANCE_TYPES self.release_version = release_version or DEFAULT_RELEASE_VERSION self.remote_access = remote_access or DEFAULT_REMOTE_ACCESS self.scaling_config = scaling_config or DEFAULT_SCALING_CONFIG self.status = ACTIVE_STATUS self.version = version or DEFAULT_KUBERNETES_VERSION self.client_request_token = client_request_token self.cluster_name = cluster_name self.labels = labels self.launch_template = launch_template self.node_role = node_role self.nodegroup_name = nodegroup_name self.partition = aws_partition self.region = region_name self.subnets = subnets self.tags = tags self.taints = taints # Determine LaunchTemplateId from Name (and vice versa) try: from moto.ec2.models import ec2_backends ec2 = ec2_backends[account_id][region_name] template = None if "name" in self.launch_template: # type: ignore name = self.launch_template["name"] # type: ignore template = ec2.describe_launch_templates(template_names=[name])[0] elif "id" in self.launch_template: # type: ignore _id = self.launch_template["id"] # type: ignore template = ec2.describe_launch_templates(template_ids=[_id])[0] self.launch_template["id"] = template.id # type: ignore self.launch_template["name"] = template.name # type: ignore except: # noqa: E722 Do not use bare except pass class EKSBackend(BaseBackend): def __init__(self, region_name: str, account_id: str): super().__init__(region_name, account_id) self.clusters: Dict[str, Cluster] = dict() self.cluster_count = 0 self.partition = get_partition(region_name) def create_cluster( self, name: str, role_arn: str, resources_vpc_config: Dict[str, Any], version: Optional[str] = None, kubernetes_network_config: Optional[Dict[str, str]] = None, logging: Optional[Dict[str, Any]] = None, client_request_token: Optional[str] = None, tags: Optional[Dict[str, str]] = None, encryption_config: Optional[List[Dict[str, Any]]] = None, remote_network_config: Optional[Dict[str, List[Dict[str, List[str]]]]] = None, ) -> Cluster: if name in self.clusters: # Cluster exists. raise ResourceInUseException( clusterName=name, nodegroupName=None, addonName=None, message=CLUSTER_EXISTS_MSG.format(clusterName=name), ) validate_role_arn(role_arn) cluster = Cluster( name=name, role_arn=role_arn, resources_vpc_config=resources_vpc_config, version=version, kubernetes_network_config=kubernetes_network_config, logging=logging, client_request_token=client_request_token, tags=tags, encryption_config=encryption_config, remote_network_config=remote_network_config, account_id=self.account_id, region_name=self.region_name, aws_partition=self.partition, ) self.clusters[name] = cluster self.cluster_count += 1 return cluster def create_fargate_profile( self, fargate_profile_name: str, cluster_name: str, selectors: List[Dict[str, Any]], pod_execution_role_arn: str, subnets: Optional[List[str]] = None, client_request_token: Optional[str] = None, tags: Optional[Dict[str, str]] = None, ) -> FargateProfile: try: # Cluster exists. cluster = self.clusters[cluster_name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=cluster_name), ) if fargate_profile_name in cluster.fargate_profiles: # Fargate Profile already exists. raise ResourceInUseException( clusterName=None, nodegroupName=None, addonName=None, message=FARGATE_PROFILE_EXISTS_MSG, ) if not cluster.is_active: raise InvalidRequestException( message=CLUSTER_NOT_READY_MSG.format(clusterName=cluster_name) ) _validate_fargate_profile_selectors(selectors) fargate_profile = FargateProfile( cluster_name=cluster_name, fargate_profile_name=fargate_profile_name, pod_execution_role_arn=pod_execution_role_arn, client_request_token=client_request_token, selectors=selectors, subnets=subnets, tags=tags, account_id=self.account_id, region_name=self.region_name, aws_partition=self.partition, ) cluster.fargate_profiles[fargate_profile_name] = fargate_profile cluster.fargate_profile_count += 1 return fargate_profile def create_nodegroup( self, cluster_name: str, node_role: str, nodegroup_name: str, subnets: List[str], scaling_config: Optional[Dict[str, int]] = None, disk_size: Optional[int] = None, instance_types: Optional[List[str]] = None, ami_type: Optional[str] = None, remote_access: Optional[Dict[str, Any]] = None, labels: Optional[Dict[str, str]] = None, taints: Optional[List[Dict[str, str]]] = None, tags: Optional[Dict[str, str]] = None, client_request_token: Optional[str] = None, launch_template: Optional[Dict[str, str]] = None, capacity_type: Optional[str] = None, version: Optional[str] = None, release_version: Optional[str] = None, ) -> Nodegroup: try: # Cluster exists. cluster = self.clusters[cluster_name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=cluster_name), ) if nodegroup_name in cluster.nodegroups: # Nodegroup already exists. raise ResourceInUseException( clusterName=cluster_name, nodegroupName=nodegroup_name, addonName=None, message=NODEGROUP_EXISTS_MSG.format( nodegroupName=nodegroup_name, clusterName=cluster_name ), ) if not cluster.is_active: raise InvalidRequestException( message=CLUSTER_NOT_READY_MSG.format(clusterName=cluster_name) ) if launch_template: validate_launch_template_combination(disk_size, remote_access) validate_role_arn(node_role) nodegroup = Nodegroup( cluster_name=cluster_name, node_role=node_role, nodegroup_name=nodegroup_name, subnets=subnets, scaling_config=scaling_config, disk_size=disk_size, instance_types=instance_types, ami_type=ami_type, remote_access=remote_access, labels=labels, taints=taints, tags=tags, client_request_token=client_request_token, launch_template=launch_template, capacity_type=capacity_type, version=version, release_version=release_version, account_id=self.account_id, region_name=self.region_name, aws_partition=self.partition, ) cluster.nodegroups[nodegroup_name] = nodegroup cluster.nodegroup_count += 1 return nodegroup def describe_cluster(self, name: str) -> Cluster: try: # Cluster exists. return self.clusters[name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=name), ) def describe_fargate_profile( self, cluster_name: str, fargate_profile_name: str ) -> FargateProfile: try: # Cluster exists. cluster = self.clusters[cluster_name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=cluster_name, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=cluster_name), ) try: # Fargate Profile exists. return cluster.fargate_profiles[fargate_profile_name] except KeyError: # Fargate Profile does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=FARGATE_PROFILE_NOT_FOUND_MSG.format( fargateProfileName=fargate_profile_name ), ) def describe_nodegroup(self, cluster_name: str, nodegroup_name: str) -> Nodegroup: try: # Cluster exists. cluster = self.clusters[cluster_name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=cluster_name, nodegroupName=nodegroup_name, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=cluster_name), ) try: # Nodegroup exists. return cluster.nodegroups[nodegroup_name] except KeyError: # Nodegroup does not exist. raise ResourceNotFoundException( clusterName=cluster_name, nodegroupName=nodegroup_name, fargateProfileName=None, addonName=None, message=NODEGROUP_NOT_FOUND_MSG.format(nodegroupName=nodegroup_name), ) def delete_cluster(self, name: str) -> Cluster: try: # Cluster exists. validate_safe_to_delete(self.clusters[name]) except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=name), ) result = self.clusters.pop(name) self.cluster_count -= 1 return result def delete_fargate_profile( self, cluster_name: str, fargate_profile_name: str ) -> FargateProfile: try: # Cluster exists. cluster = self.clusters[cluster_name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=cluster_name, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=cluster_name), ) try: # Fargate Profile exists. deleted_fargate_profile = cluster.fargate_profiles.pop(fargate_profile_name) except KeyError: # Fargate Profile does not exist. raise ResourceNotFoundException( clusterName=cluster_name, nodegroupName=None, fargateProfileName=fargate_profile_name, addonName=None, message=FARGATE_PROFILE_NOT_FOUND_MSG.format( fargateProfileName=fargate_profile_name ), ) cluster.fargate_profile_count -= 1 return deleted_fargate_profile def delete_nodegroup(self, cluster_name: str, nodegroup_name: str) -> Nodegroup: try: # Cluster exists. cluster = self.clusters[cluster_name] except KeyError: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=CLUSTER_NOT_FOUND_MSG.format(clusterName=cluster_name), ) try: # Nodegroup exists. result = cluster.nodegroups.pop(nodegroup_name) except KeyError: # Nodegroup does not exist. raise ResourceNotFoundException( clusterName=cluster_name, nodegroupName=nodegroup_name, fargateProfileName=None, addonName=None, message=NODEGROUP_NOT_FOUND_MSG.format(nodegroupName=nodegroup_name), ) cluster.nodegroup_count -= 1 return result def tag_resource(self, resource_arn: str, tags: Dict[str, str]) -> None: """ This function currently will tag an EKS cluster only. It does not tag a managed node group """ try: cluster = next( self.clusters[x] for x in self.clusters if self.clusters[x].arn == resource_arn ) except StopIteration: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message="An error occurred (NotFoundException) when calling the TagResource operation: Resource was not found", ) cluster.tags.update(tags) def untag_resource(self, resource_arn: str, tag_keys: List[str]) -> None: """ This function currently will remove tags on an EKS cluster only. It does not remove tags from a managed node group """ if not isinstance(tag_keys, list): tag_keys = [tag_keys] try: cluster = next( self.clusters[x] for x in self.clusters if self.clusters[x].arn == resource_arn ) except StopIteration: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message="An error occurred (NotFoundException) when calling the UntagResource operation: Resource was not found", ) for name in tag_keys: if name in cluster.tags: del cluster.tags[name] def list_tags_for_resource(self, resource_arn: str) -> Dict[str, str]: """ This function currently will list tags on an EKS cluster only. It does not list tags from a managed node group """ try: cluster = next( self.clusters[x] for x in self.clusters if self.clusters[x].arn == resource_arn ) except StopIteration: # Cluster does not exist. raise ResourceNotFoundException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message="An error occurred (NotFoundException) when calling the ListTagsForResource operation: Resource was not found", ) return cluster.tags def list_clusters( self, max_results: int, next_token: Optional[str] ) -> Tuple[List[Cluster], Optional[Cluster]]: return paginated_list(list(self.clusters.keys()), max_results, next_token) def list_fargate_profiles( self, cluster_name: str, max_results: int, next_token: Optional[str] ) -> Tuple[List[FargateProfile], Optional[FargateProfile]]: cluster = self.clusters[cluster_name] return paginated_list( list(cluster.fargate_profiles.keys()), max_results, next_token ) def list_nodegroups( self, cluster_name: str, max_results: int, next_token: Optional[str] ) -> Tuple[List[Nodegroup], Optional[Nodegroup]]: cluster = self.clusters[cluster_name] return paginated_list(list(cluster.nodegroups.keys()), max_results, next_token) def paginated_list( full_list: List[Any], max_results: int, next_token: Optional[str] ) -> Tuple[List[Any], Optional[Any]]: """ Returns a tuple containing a slice of the full list starting at next_token and ending with at most the max_results number of elements, and the new next_token which can be passed back in for the next segment of the full list. """ sorted_list = sorted(full_list) list_len = len(sorted_list) start = sorted_list.index(next_token) if next_token else 0 end = min(start + max_results, list_len) new_next = None if end == list_len else sorted_list[end] return sorted_list[start:end], new_next def validate_safe_to_delete(cluster: Cluster) -> None: # A cluster which has nodegroups attached can not be deleted. if cluster.nodegroup_count: nodegroup_names = ",".join(list(cluster.nodegroups.keys())) raise ResourceInUseException( clusterName=cluster.name, nodegroupName=nodegroup_names, addonName=None, message=CLUSTER_IN_USE_MSG, ) def validate_launch_template_combination( disk_size: Optional[int], remote_access: Optional[Dict[str, Any]] ) -> None: if not (disk_size or remote_access): return raise InvalidParameterException( message=LAUNCH_TEMPLATE_WITH_DISK_SIZE_MSG if disk_size else LAUNCH_TEMPLATE_WITH_REMOTE_ACCESS_MSG ) def _validate_fargate_profile_selectors(selectors: List[Dict[str, Any]]) -> None: def raise_exception(message: str) -> None: raise InvalidParameterException( clusterName=None, nodegroupName=None, fargateProfileName=None, addonName=None, message=message, ) # At least one Selector must exist if not selectors: raise_exception(message=FARGATE_PROFILE_NEEDS_SELECTOR_MSG) for selector in selectors: # Every existing Selector must have a namespace if "namespace" not in selector: raise_exception(message=FARGATE_PROFILE_SELECTOR_NEEDS_NAMESPACE) # If a selector has labels, it can not have more than 5 if len(selector.get("labels", {})) > 5: raise_exception(message=FARGATE_PROFILE_TOO_MANY_LABELS) eks_backends = BackendDict(EKSBackend, "eks")
Memory