diff options
| author |  Joe Banks <[email protected]> | 2021-07-17 22:42:37 +0100 |
|---|---|---|
| committer | Joe Banks <[email protected]> | 2021-07-17 22:42:37 +0100 |
| commit | 45aac3b0292e676ba14fd70187d19f675e4c074a (patch) | |
| tree | d863a616ace6e4786560e2f21f65675ebe08db6d | |
| parent | feat: add discord timestamp utility function (diff) | |
feat: add cog for working with TLS certificates
| -rw-r--r-- | arthur/exts/kubernetes/certificates.py | 60 |
1 files changed, 60 insertions, 0 deletions
diff --git a/arthur/exts/kubernetes/certificates.py b/arthur/exts/kubernetes/certificates.py new file mode 100644 index 0000000..c099697 --- /dev/null +++ b/arthur/exts/kubernetes/certificates.py @@ -0,0 +1,60 @@ +"""The Certificates cog helps with managing TLS certificates.""" +from datetime import datetime +from textwrap import dedent + +from discord import Embed +from discord.ext import commands +from kubernetes_asyncio import client +from kubernetes_asyncio.client.api_client import ApiClient + +from arthur.bot import KingArthur +from arthur.utils import datetime_to_discord + + +class Certificates(commands.Cog): + """Commands for working with TLS certificates.""" + + def __init__(self, bot: KingArthur) -> None: + self.bot = bot + + @commands.group(name="certificates", aliases=["certs"], invoke_without_command=True) + async def certificates(self, ctx: commands.Context) -> None: + """Commands for working with TLS certificates.""" + await ctx.send_help(ctx.command) + + @certificates.command(name="list") + async def certificates_list(self, ctx: commands.Context, namespace: str = "default") -> None: + """List TLS certificates in the selected namespace (defaults to default).""" + async with ApiClient() as api: + v1 = client.CustomObjectsApi(api) + ret = await v1.list_namespaced_custom_object( + "cert-manager.io", "v1", namespace, "certificates" + ) + + return_embed = Embed(title=f"Certificates in namespace {namespace}") + + for certificate in ret["items"]: + expiry = datetime.fromisoformat( + certificate["status"]["notAfter"].rstrip("Z") + "+00:00" + ) + renews = datetime.fromisoformat( + certificate["status"]["renewalTime"].rstrip("Z") + "+00:00" + ) + body = dedent( + f""" + **Subjects:** {", ".join(certificate["spec"]["dnsNames"])} + **Issuer:** {certificate["spec"]["issuerRef"]["name"]} + **Status:** {certificate["status"]["conditions"][0]["message"]} + **Expires:** {datetime_to_discord(expiry)} ({datetime_to_discord(expiry, "R")}) + **Renews:** {datetime_to_discord(renews)} ({datetime_to_discord(renews, "R")}) + """ + ) + + return_embed.add_field(name=certificate["metadata"]["name"], value=body.strip()) + + await ctx.send(embed=return_embed) + + +def setup(bot: KingArthur) -> None: + """Add the extension to the bot.""" + bot.add_cog(Certificates(bot)) |