controlplane-cli: dump kolide cache

Co-authored-by: Thomas Krampl <[email protected]>
nais · Jun 10, 2024 · fbc1372 · fbc1372
1 parent e5b39ed
commit fbc1372
Show file tree

Hide file tree

Showing 11 changed files with 636 additions and 244 deletions.
diff --git a/cmd/controlplane-cli/main.go b/cmd/controlplane-cli/main.go
@@ -36,6 +36,18 @@ func main() {
 				},
 				Action: controlplanecli.HashPassword,
 			},
+			{
+				Name:    "kolide",
+				Aliases: []string{"k"},
+				Usage:   "kolide cache",
+				Subcommands: []*cli.Command{
+					{
+						Name:   "dump",
+						Usage:  "dump kolide cache",
+						Action: controlplanecli.GetKolideCache,
+					},
+				},
+			},
 			{
 				Name:    "session",
 				Aliases: []string{"s"},

diff --git a/internal/apiserver/api/admin.go b/internal/apiserver/api/admin.go
@@ -81,3 +81,25 @@ func (s *grpcServer) GetSessions(ctx context.Context, r *pb.GetSessionsRequest)
 		Sessions: s.sessionStore.All(),
 	}, nil
 }
+
+func (s *grpcServer) GetKolideCache(ctx context.Context, r *pb.GetKolideCacheRequest) (*pb.GetKolideCacheResponse, error) {
+	err := s.adminAuth.Authenticate(r.GetUsername(), r.GetPassword())
+	if err != nil {
+		return nil, status.Errorf(codes.Unauthenticated, err.Error())
+	}
+
+	devices, err := s.kolideClient.DumpDevices()
+	if err != nil {
+		return nil, err
+	}
+
+	checks, err := s.kolideClient.DumpChecks()
+	if err != nil {
+		return nil, err
+	}
+
+	return &pb.GetKolideCacheResponse{
+		RawDevices: devices,
+		RawChecks:  checks,
+	}, nil
+}
diff --git a/internal/apiserver/kolide/cache.go b/internal/apiserver/kolide/cache.go
@@ -1,6 +1,9 @@
 package kolide
 
-import "sync"
+import (
+	"encoding/json"
+	"sync"
+)
 
 type Cache[K comparable, V any] struct {
 	mutex sync.RWMutex
@@ -17,6 +20,9 @@ func (c *Cache[K, V]) Get(key K) (V, bool) {
 func (c *Cache[K, V]) Set(key K, value V) {
 	c.mutex.Lock()
 	defer c.mutex.Unlock()
+	if c.cache == nil {
+		c.cache = make(map[K]V)
+	}
 	c.cache[key] = value
 }
 
@@ -25,3 +31,9 @@ func (c *Cache[K, V]) Replace(cache map[K]V) {
 	defer c.mutex.Unlock()
 	c.cache = cache
 }
+
+func (c *Cache[K, V]) MarshalJSON() ([]byte, error) {
+	c.mutex.RLock()
+	defer c.mutex.RUnlock()
+	return json.Marshal(c.cache)
+}
diff --git a/internal/apiserver/kolide/cache_test.go b/internal/apiserver/kolide/cache_test.go
@@ -0,0 +1,22 @@
+package kolide_test
+
+import (
+	"encoding/json"
+	"testing"
+
+	"github.com/nais/device/internal/apiserver/kolide"
+	"github.com/stretchr/testify/assert"
+)
+
+func TestJSONMarshal(t *testing.T) {
+	c := &kolide.Cache[string, string]{}
+
+	val, ok := c.Get("key")
+	assert.False(t, ok)
+	assert.Equal(t, "", val)
+
+	c.Set("key", "value")
+	actual, err := json.Marshal(c)
+	assert.NoError(t, err)
+	assert.Equal(t, `{"key":"value"}`, string(actual))
+}
diff --git a/internal/apiserver/kolide/client.go b/internal/apiserver/kolide/client.go
@@ -14,6 +14,8 @@ import (
 type Client interface {
 	RefreshCache(ctx context.Context) error
 	GetDevice(ctx context.Context, email, platform, serial string) (Device, error)
+	DumpDevices() ([]byte, error)
+	DumpChecks() ([]byte, error)
 }
 
 type client struct {
@@ -235,3 +237,11 @@ func (kc *client) get(ctx context.Context, url string) (*http.Response, error) {
 
 	return kc.client.Do(req)
 }
+
+func (kc client) DumpDevices() ([]byte, error) {
+	return json.Marshal(kc.devices)
+}
+
+func (kc client) DumpChecks() ([]byte, error) {
+	return json.Marshal(kc.checks)
+}
diff --git a/internal/apiserver/kolide/fakeclient.go b/internal/apiserver/kolide/fakeclient.go
@@ -45,3 +45,13 @@ func (f *FakeClient) RefreshCache(ctx context.Context) error {
 	// no-op
 	return nil
 }
+
+// DumpChecks implements Client.
+func (f *FakeClient) DumpChecks() ([]byte, error) {
+	panic("unimplemented")
+}
+
+// DumpDevices implements Client.
+func (f *FakeClient) DumpDevices() ([]byte, error) {
+	panic("unimplemented")
+}
diff --git a/internal/controlplane-cli/kolide.go b/internal/controlplane-cli/kolide.go
@@ -0,0 +1,41 @@
+package controlplanecli
+
+import (
+	"encoding/json"
+	"os"
+
+	"github.com/nais/device/internal/pb"
+	"github.com/urfave/cli/v2"
+	"google.golang.org/grpc"
+	"google.golang.org/grpc/credentials/insecure"
+)
+
+func GetKolideCache(c *cli.Context) error {
+	conn, err := grpc.DialContext(
+		c.Context,
+		c.String(FlagAPIServer),
+		grpc.WithTransportCredentials(insecure.NewCredentials()),
+	)
+	if err != nil {
+		return err
+	}
+
+	client := pb.NewAPIServerClient(conn)
+	resp, err := client.GetKolideCache(c.Context, &pb.GetKolideCacheRequest{
+		Username: AdminUsername,
+		Password: c.String(FlagAdminPassword),
+	})
+	if err != nil {
+		return err
+	}
+
+	out := struct {
+		Devices json.RawMessage
+		Checks  json.RawMessage
+	}{
+		Devices: resp.RawDevices,
+		Checks:  resp.RawChecks,
+	}
+
+	return json.NewEncoder(os.Stdout).Encode(out)
+}
diff --git a/internal/pb/mock_api_server_client.go b/internal/pb/mock_api_server_client.go