chore : csr approval example using json patch net package (#816)

* chore : csr approval example using json patch net package

* chore : use top level feature, remove k8s client and use reference instead

* chore : remove target framework

* fix : remove redundant reference package

Author: kibernetik542

examples/csrApproval/Program.cs

@@ -0,0 +1,77 @@
+using System.Net;
+using System.Security.Cryptography;
+using System.Security.Cryptography.X509Certificates;
+using System.Text;
+using System.Text.Json;
+using Json.Patch;
+using k8s;
+using k8s.Models;
+
+string GenerateCertificate(string name)
+{
+    var sanBuilder = new SubjectAlternativeNameBuilder();
+    sanBuilder.AddIpAddress(IPAddress.Loopback);
+    sanBuilder.AddIpAddress(IPAddress.IPv6Loopback);
+    sanBuilder.AddDnsName("localhost");
+    sanBuilder.AddDnsName(Environment.MachineName);
+
+    var distinguishedName = new X500DistinguishedName(name);
+
+    using var rsa = RSA.Create(4096);
+    var request = new CertificateRequest(distinguishedName, rsa, HashAlgorithmName.SHA256,RSASignaturePadding.Pkcs1);
+
+    request.CertificateExtensions.Add(new X509KeyUsageExtension(X509KeyUsageFlags.DataEncipherment | X509KeyUsageFlags.KeyEncipherment | X509KeyUsageFlags.DigitalSignature , false));
+    request.CertificateExtensions.Add(new X509EnhancedKeyUsageExtension(new OidCollection { new ("1.3.6.1.5.5.7.3.1") }, false));
+    request.CertificateExtensions.Add(sanBuilder.Build());
+    var csr = request.CreateSigningRequest();
+    var pemKey = "-----BEGIN CERTIFICATE REQUEST-----\r\n" +
+                 Convert.ToBase64String(csr) +
+                 "\r\n-----END CERTIFICATE REQUEST-----";
+
+    return pemKey;
+}
+
+var config = KubernetesClientConfiguration.BuildConfigFromConfigFile();
+IKubernetes client = new Kubernetes(config);
+Console.WriteLine("Starting Request!");
+var name = "demo";
+var x509 = GenerateCertificate(name);
+var encodedCsr= Encoding.UTF8.GetBytes(x509);
+
+var request = new V1CertificateSigningRequest
+{
+    ApiVersion = "certificates.k8s.io/v1",
+    Kind = "CertificateSigningRequest",
+    Metadata = new V1ObjectMeta
+    {
+        Name = name
+    },
+    Spec = new V1CertificateSigningRequestSpec
+    {
+        Request = encodedCsr,
+        SignerName = "kubernetes.io/kube-apiserver-client",
+        Usages = new List<string> { "client auth" },
+        ExpirationSeconds = 600 // minimum should be 10 minutes
+    }
+};
+
+await client.CreateCertificateSigningRequestAsync(request);
+
+var serializeOptions = new JsonSerializerOptions
+{
+    PropertyNamingPolicy = JsonNamingPolicy.CamelCase,
+    WriteIndented = true
+};
+var readCert = await client.ReadCertificateSigningRequestAsync(name);
+var old = JsonSerializer.SerializeToDocument(readCert, serializeOptions);
+
+var replace = new List<V1CertificateSigningRequestCondition>
+{
+    new("True", "Approved", DateTime.UtcNow, DateTime.UtcNow, "This certificate was approved by k8s client", "Approve")
+};
+readCert.Status.Conditions = replace;
+
+var expected = JsonSerializer.SerializeToDocument(readCert, serializeOptions);
+
+var patch = old.CreatePatch(expected);
+await client.PatchCertificateSigningRequestApprovalAsync(new V1Patch(patch, V1Patch.PatchType.JsonPatch), name);

examples/csrApproval/csrApproval.csproj

@@ -0,0 +1,12 @@
+<Project Sdk="Microsoft.NET.Sdk">
+
+    <PropertyGroup>
+        <OutputType>Exe</OutputType>
+        <ImplicitUsings>enable</ImplicitUsings>
+        <Nullable>enable</Nullable>
+    </PropertyGroup>
+
+    <ItemGroup>
+      <PackageReference Include="JsonPatch.Net" Version="1.1.2" />
+    </ItemGroup>
+</Project>

kubernetes-client.sln

@@ -53,6 +53,8 @@ Project("{9A19103F-16F7-4668-BE54-9A1E7A4F7556}") = "KubernetesClient.Models", "
 EndProject
 Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "KubernetesClient.Basic", "src\KubernetesClient.Basic\KubernetesClient.Basic.csproj", "{927995F5-05CC-4078-8805-8E6CC06914D8}"
 EndProject
+Project("{FAE04EC0-301F-11D3-BF4B-00C04F79EFBC}") = "csrApproval", "examples\csrApproval\csrApproval.csproj", "{F626860C-F141-45B3-9DDD-88AD3932ACAF}"
+EndProject
 Global
 	GlobalSection(SolutionConfigurationPlatforms) = preSolution
 		Debug|Any CPU = Debug|Any CPU
@@ -327,6 +329,18 @@ Global
 		{927995F5-05CC-4078-8805-8E6CC06914D8}.Release|x64.Build.0 = Release|Any CPU
 		{927995F5-05CC-4078-8805-8E6CC06914D8}.Release|x86.ActiveCfg = Release|Any CPU
 		{927995F5-05CC-4078-8805-8E6CC06914D8}.Release|x86.Build.0 = Release|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Debug|Any CPU.ActiveCfg = Debug|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Debug|Any CPU.Build.0 = Debug|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Debug|x64.ActiveCfg = Debug|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Debug|x64.Build.0 = Debug|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Debug|x86.ActiveCfg = Debug|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Debug|x86.Build.0 = Debug|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Release|Any CPU.ActiveCfg = Release|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Release|Any CPU.Build.0 = Release|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Release|x64.ActiveCfg = Release|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Release|x64.Build.0 = Release|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Release|x86.ActiveCfg = Release|Any CPU
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF}.Release|x86.Build.0 = Release|Any CPU
 	EndGlobalSection
 	GlobalSection(SolutionProperties) = preSolution
 		HideSolutionNode = FALSE
@@ -354,6 +368,7 @@ Global
 		{17AB0AD8-6C90-42DD-880C-16B5AC4A373F} = {B70AFB57-57C9-46DC-84BE-11B7DDD34B40}
 		{F066A4D8-2EF0-4C07-AC0D-BD325DE3FFA8} = {3D1864AA-1FFC-4512-BB13-46055E410F73}
 		{927995F5-05CC-4078-8805-8E6CC06914D8} = {3D1864AA-1FFC-4512-BB13-46055E410F73}
+		{F626860C-F141-45B3-9DDD-88AD3932ACAF} = {B70AFB57-57C9-46DC-84BE-11B7DDD34B40}
 	EndGlobalSection
 	GlobalSection(ExtensibilityGlobals) = postSolution
 		SolutionGuid = {049A763A-C891-4E8D-80CF-89DD3E22ADC7}