o 'ThD@s^ddlZddlZddlmZddlmZdZdZdZdZ d d Z Gd d d e Z dddZ dS)N) Configuration)ConfigExceptionKUBERNETES_SERVICE_HOSTKUBERNETES_SERVICE_PORTz3/var/run/secrets/kubernetes.io/serviceaccount/tokenz4/var/run/secrets/kubernetes.io/serviceaccount/ca.crtcCs(d}d|vp d|v}|rd}|||fS)z!Adapted golang's net.JoinHostPortz%s:%s:%z[%s]:%s)hostporttemplatehost_requires_bracketingr r c/home/air/segue/gemini/back/venv/lib/python3.10/site-packages/kubernetes/config/incluster_config.py_join_host_ports  rc@s>eZdZdejfddZd ddZddZd d Zd d Z dS)InClusterConfigLoaderTcCs*||_||_||_||_tjdd|_dS)Nr)minutes)_token_filename_cert_filename_environ_try_refresh_tokendatetime timedelta_token_refresh_period)selftoken_filename cert_filenametry_refresh_tokenenvironr r r__init__&s zInClusterConfigLoader.__init__NcCsBd}|dur tt}d}||||rt|dSdS)NFT)type__call__r _load_config _set_config set_default)rclient_configurationtry_set_defaultr r r load_and_set1s  z"InClusterConfigLoader.load_and_setcCst|jvs t|jvrtd|jtr|jtstddt|jt|jt|_tj|j s5td| tj|j sDtdt |j }| sRtdWdn1s\wY|j |_dS)NzService host/port is not set.z#Service host/port is set but empty.zhttps://z"Service token file does not exist.z*Service certification file does not exist.zCert file exists but empty.)SERVICE_HOST_ENV_NAMErSERVICE_PORT_ENV_NAMErrr ospathisfiler_read_token_fileropenread ssl_ca_cert)rfr r rr!;s2      z"InClusterConfigLoader._load_configcsFj|_j|_jdurj|jd<jsdSfdd}||_dS)N authorizationcs&jtjkr |dSN)token_expires_atrnowr,r")r$rr r_refresh_api_key_sz;InClusterConfigLoader._set_config.._refresh_api_key)r r/tokenapi_keyrrefresh_api_key_hook)rr$r6r r5rr"Ws    z!InClusterConfigLoader._set_configcCs`t|j!}|}|stdd||_tj|j|_WddS1s)wYdS)NzToken file exists but empty.zbearer ) r-rr.rr7rr4rr3)rr0contentr r rr,fs  "z&InClusterConfigLoader._read_token_filer2) __name__ __module__ __qualname__r)rrr&r!r"r,r r r rr%s   rTcCsttt|d|dS)a Use the service account kubernetes gives to pods to connect to kubernetes cluster. It's intended for clients that expect to be running inside a pod running on kubernetes. It will raise an exception if called from a process not running in a kubernetes environment.)rrrN)rSERVICE_TOKEN_FILENAMESERVICE_CERT_FILENAMEr&)r$rr r rload_incluster_configps  r@)NT)rr)kubernetes.clientrconfig_exceptionrr'r(r>r?robjectrr@r r r rs   K