support users field of cloud-config

sp-yduck · sp-yduck · commit ee8a45fd4077 · 2023-10-01T12:18:03.000+09:00
diff --git a/api/v1beta1/cloudinit_types.go b/api/v1beta1/cloudinit_types.go
@@ -3,10 +3,10 @@ package v1beta1
 // CloudInit is passed to disk directly as raw yaml file
 // not via Proxmox API so you can configure more detailed configs
 type CloudInit struct {
-	User *User `json:"user,omitempty"`
+	UserData *UserData `json:"user,omitempty"`
 }
 
-type User struct {
+type UserData struct {
 	BootCmd           []string     `yaml:"bootcmd,omitempty" json:"bootcmd,omitempty"`
 	CACerts           CACert       `yaml:"ca_certs,omitempty" json:"ca_certs,omitempty"`
 	ChPasswd          ChPasswd     `yaml:"chpasswd,omitempty" json:"chpasswd,omitempty"`
@@ -23,7 +23,7 @@ type User struct {
 	SSHKeys           SSHKeys      `yaml:"ssh_keys,omitempty" json:"ssh_keys,omitempty"`
 	SSHPWAuth         bool         `yaml:"ssh_pwauth,omitempty" json:"ssh_pwauth,omitempty"`
 	User              string       `yaml:"user,omitempty" json:"user,omitempty"`
-	Users             []string     `yaml:"users,omitempty" json:"-"`
+	Users             []User       `yaml:"users,omitempty" json:"users,omitempty"`
 	WriteFiles        []WriteFiles `yaml:"write_files,omitempty" json:"writeFiles,omitempty"`
 }
 
@@ -49,6 +49,32 @@ type SSHKeys struct {
 	EDSCAPublic  string `yaml:"ecdsa_public,omitempty" json:"ecdsa_public,omitempty"`
 }
 
+type User struct {
+	Name string `yaml:"name" json:"name"`
+	// +kubebuilder:validation:Pattern:="^/d{4}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])$"
+	ExpireDate string `yaml:"expiredate,omitempty" json:"expiredate,omitempty"`
+	GECOS      string `yaml:"gecos,omitempty" json:"gecos,omitempty"`
+	// +kubebuilder:validation:Pattern:=^/.+
+	HomeDir      string   `yaml:"homedir,omitempty" json:"homedir,omitempty"`
+	PrimaryGroup string   `yaml:"primary_group,omitempty" json:"primary_group,omitempty"`
+	Groups       []string `yaml:"groups,omitempty" json:"groups,omitempty"`
+	SELinuxUser  string   `yaml:"selinux_user,omitempty" json:"selinux_user,omitempty"`
+	LockPasswd   bool     `yaml:"lock_passwd,omitempty" json:"lock_passwd,omitempty"`
+	// +kubebuilder:validation:Minimum:=0
+	Inactive          int      `yaml:"inactive,omitempty" json:"inactive,omitempty"`
+	Passwd            string   `yaml:"passwd,omitempty" json:"passwd,omitempty"`
+	NoCreateHome      bool     `yaml:"no_create_home,omitempty" json:"no_create_home,omitempty"`
+	NoUserGroup       bool     `yaml:"no_user_group,omitempty" json:"no_user_group,omitempty"`
+	NoLogInit         bool     `yaml:"no_log_init,omitempty" json:"no_log_init,omitempty"`
+	SSHImportID       []string `yaml:"ssh_import_id,omitempty" json:"ssh_import_id,omitempty"`
+	SSHAuthorizedKeys []string `yaml:"ssh_authorized_keys,omitempty" json:"ssh_authorized_keys,omitempty"`
+	SSHRedirectUser   bool     `yaml:"ssh_redirect_user,omitempty" json:"ssh_redirect_user,omitempty"`
+	Sudo              []string `yaml:"sudo,omitempty" json:"sudo,omitempty"`
+	System            bool     `yaml:"system,omitempty" json:"system,omitempty"`
+	SnapUser          string   `yaml:"snapuser,omitempty" json:"snapuser,omitempty"`
+	Shell             string   `yaml:"shell,omitempty" json:"shell,omitempty"`
+}
+
 type WriteFiles struct {
 	Encoding    string `yaml:"encoding,omitempty" json:"encoding,omitempty"`
 	Path        string `yaml:"path,omitempty" json:"path,omitempty"`
diff --git a/api/v1beta1/zz_generated.deepcopy.go b/api/v1beta1/zz_generated.deepcopy.go
diff --git a/cloud/cloudinit/user.go b/cloud/cloudinit/user.go
@@ -9,23 +9,23 @@ import (
 	infrav1 "github.com/sp-yduck/cluster-api-provider-proxmox/api/v1beta1"
 )
 
-func ParseUser(content string) (*infrav1.User, error) {
-	var config *infrav1.User
+func ParseUserData(content string) (*infrav1.UserData, error) {
+	var config *infrav1.UserData
 	if err := yaml.Unmarshal([]byte(content), &config); err != nil {
 		return nil, err
 	}
 	return config, nil
 }
 
-func GenerateUserYaml(config infrav1.User) (string, error) {
+func GenerateUserDataYaml(config infrav1.UserData) (string, error) {
 	b, err := yaml.Marshal(&config)
 	if err != nil {
 		return "", err
 	}
 	return fmt.Sprintf("#cloud-config\n%s", string(b)), nil
 }
 
-func MergeUsers(a, b *infrav1.User) (*infrav1.User, error) {
+func MergeUserDatas(a, b *infrav1.UserData) (*infrav1.UserData, error) {
 	if err := mergo.Merge(a, b, mergo.WithAppendSlice); err != nil {
 		return nil, err
 	}
diff --git a/cloud/cloudinit/user_test.go b/cloud/cloudinit/user_test.go
@@ -22,7 +22,7 @@ runcmd:
   - "chmod +x /usr/local/bin/kubectl"
   - "reboot now"
   `
-	_, err := cloudinit.ParseUser(testYaml)
+	_, err := cloudinit.ParseUserData(testYaml)
 	if err != nil {
 		t.Errorf("failed to parse user: %v", err)
 	}
@@ -35,7 +35,7 @@ owner: root:root
     content: |
       asdfasdfasdf
   `
-	user, err := cloudinit.ParseUser(testYaml)
+	user, err := cloudinit.ParseUserData(testYaml)
 	if err == nil {
 		t.Errorf("should returns an error. user=%v", *user)
 	}
@@ -56,31 +56,31 @@ runcmd:
   - "reboot now"
   `
 
-	uc, err := cloudinit.ParseUser(testYaml)
+	uc, err := cloudinit.ParseUserData(testYaml)
 	if err != nil {
 		t.Fatalf("failed to parse user: %v", err)
 	}
 
-	_, err = cloudinit.GenerateUserYaml(*uc)
+	_, err = cloudinit.GenerateUserDataYaml(*uc)
 	if err != nil {
 		t.Fatalf("generate : %v", err)
 	}
 }
 
 func TestMergeUsers(t *testing.T) {
-	a := infrav1.User{
+	a := infrav1.UserData{
 		User:   "override-user",
 		RunCmd: []string{"command A", "command B"},
 	}
-	b := infrav1.User{
+	b := infrav1.UserData{
 		User:   "test-user",
 		RunCmd: []string{"command C"},
 	}
-	expected := infrav1.User{
+	expected := infrav1.UserData{
 		User:   "override-user",
 		RunCmd: []string{"command A", "command B", "command C"},
 	}
-	c, err := cloudinit.MergeUsers(&a, &b)
+	c, err := cloudinit.MergeUserDatas(&a, &b)
 	if err != nil {
 		t.Errorf("failed to merge cloud init user data: %v", err)
 	}
diff --git a/cloud/services/compute/instance/cloudinit.go b/cloud/services/compute/instance/cloudinit.go
@@ -20,7 +20,7 @@ func (s *Service) reconcileCloudInit(ctx context.Context) error {
 	log := log.FromContext(ctx)
 	log.Info("Reconciling cloud init")
 
-	// user
+	// user-data
 	if err := s.reconcileCloudInitUser(ctx); err != nil {
 		return err
 	}
@@ -55,18 +55,18 @@ func (s *Service) reconcileCloudInitUser(ctx context.Context) error {
 		log.Error(err, "Error getting bootstrap data for machine")
 		return errors.Wrap(err, "failed to retrieve bootstrap data")
 	}
-	bootstrapConfig, err := cloudinit.ParseUser(bootstrap)
+	bootstrapConfig, err := cloudinit.ParseUserData(bootstrap)
 	if err != nil {
 		return err
 	}
 
 	vmName := s.scope.Name()
-	cloudConfig, err := mergeUserDatas(bootstrapConfig, baseUserData(vmName), s.scope.GetCloudInit().User)
+	cloudConfig, err := mergeUserDatas(bootstrapConfig, baseUserData(vmName), s.scope.GetCloudInit().UserData)
 	if err != nil {
 		return err
 	}
 
-	configYaml, err := cloudinit.GenerateUserYaml(*cloudConfig)
+	configYaml, err := cloudinit.GenerateUserDataYaml(*cloudConfig)
 	if err != nil {
 		return err
 	}
@@ -87,15 +87,15 @@ func (s *Service) reconcileCloudInitUser(ctx context.Context) error {
 
 // a and b must not be nil
 // only c can be nil
-func mergeUserDatas(a, b, c *infrav1.User) (*infrav1.User, error) {
+func mergeUserDatas(a, b, c *infrav1.UserData) (*infrav1.UserData, error) {
 	var err error
 	if c != nil {
-		c, err = cloudinit.MergeUsers(c, b)
+		c, err = cloudinit.MergeUserDatas(c, b)
 		if err != nil {
 			return nil, err
 		}
 	}
-	c, err = cloudinit.MergeUsers(c, a)
+	c, err = cloudinit.MergeUserDatas(c, a)
 	if err != nil {
 		return nil, err
 	}
@@ -106,8 +106,8 @@ func userSnippetPath(vmName string) string {
 	return fmt.Sprintf(userSnippetPathFormat, vmName)
 }
 
-func baseUserData(vmName string) *infrav1.User {
-	return &infrav1.User{
+func baseUserData(vmName string) *infrav1.UserData {
+	return &infrav1.UserData{
 		HostName: vmName,
 		Packages: []string{"qemu-guest-agent"},
 		RunCmd:   []string{"systemctl start qemu-guest-agent"},
diff --git a/config/crd/bases/infrastructure.cluster.x-k8s.io_proxmoxmachines.yaml b/config/crd/bases/infrastructure.cluster.x-k8s.io_proxmoxmachines.yaml
@@ -129,6 +129,64 @@ spec:
                         type: boolean
                       user:
                         type: string
+                      users:
+                        items:
+                          properties:
+                            expiredate:
+                              pattern: ^/d{4}-(0[1-9]|1[012])-(0[1-9]|[12][0-9]|3[01])$
+                              type: string
+                            gecos:
+                              type: string
+                            groups:
+                              items:
+                                type: string
+                              type: array
+                            homedir:
+                              pattern: ^/.+
+                              type: string
+                            inactive:
+                              minimum: 0
+                              type: integer
+                            lock_passwd:
+                              type: boolean
+                            name:
+                              type: string
+                            no_create_home:
+                              type: boolean
+                            no_log_init:
+                              type: boolean
+                            no_user_group:
+                              type: boolean
+                            passwd:
+                              type: string
+                            primary_group:
+                              type: string
+                            selinux_user:
+                              type: string
+                            shell:
+                              type: string
+                            snapuser:
+                              type: string
+                            ssh_authorized_keys:
+                              items:
+                                type: string
+                              type: array
+                            ssh_import_id:
+                              items:
+                                type: string
+                              type: array
+                            ssh_redirect_user:
+                              type: boolean
+                            sudo:
+                              items:
+                                type: string
+                              type: array
+                            system:
+                              type: boolean
+                          required:
+                          - name
+                          type: object
+                        type: array
                       writeFiles:
                         items:
                           properties:
diff --git a/config/crd/bases/infrastructure.cluster.x-k8s.io_proxmoxmachinetemplates.yaml b/config/crd/bases/infrastructure.cluster.x-k8s.io_proxmoxmachinetemplates.yaml

Original file line number	Diff line number	Diff line change
`@@ -9,23 +9,23 @@ import (`
`9`	`9`	`infrav1 "github.com/sp-yduck/cluster-api-provider-proxmox/api/v1beta1"`
`10`	`10`	`)`
`11`	`11`
`12`		`-func ParseUser(content string) (*infrav1.User, error) {`
`13`		`- var config *infrav1.User`
	`12`	`+func ParseUserData(content string) (*infrav1.UserData, error) {`
	`13`	`+ var config *infrav1.UserData`
`14`	`14`	`if err := yaml.Unmarshal([]byte(content), &config); err != nil {`
`15`	`15`	`return nil, err`
`16`	`16`	`}`
`17`	`17`	`return config, nil`
`18`	`18`	`}`
`19`	`19`
`20`		`-func GenerateUserYaml(config infrav1.User) (string, error) {`
	`20`	`+func GenerateUserDataYaml(config infrav1.UserData) (string, error) {`
`21`	`21`	`b, err := yaml.Marshal(&config)`
`22`	`22`	`if err != nil {`
`23`	`23`	`return "", err`
`24`	`24`	`}`
`25`	`25`	`return fmt.Sprintf("#cloud-config\n%s", string(b)), nil`
`26`	`26`	`}`
`27`	`27`
`28`		`-func MergeUsers(a, b infrav1.User) (infrav1.User, error) {`
	`28`	`+func MergeUserDatas(a, b infrav1.UserData) (infrav1.UserData, error) {`
`29`	`29`	`if err := mergo.Merge(a, b, mergo.WithAppendSlice); err != nil {`
`30`	`30`	`return nil, err`
`31`	`31`	`}`
Original file line number	Diff line number	Diff line change
`@@ -22,7 +22,7 @@ runcmd:`
`22`	`22`	`- "chmod +x /usr/local/bin/kubectl"`
`23`	`23`	`- "reboot now"`
`24`	`24`	`
`25`		`- _, err := cloudinit.ParseUser(testYaml)`
	`25`	`+ _, err := cloudinit.ParseUserData(testYaml)`
`26`	`26`	`if err != nil {`
`27`	`27`	`t.Errorf("failed to parse user: %v", err)`
`28`	`28`	`}`
`@@ -35,7 +35,7 @@ owner: root:root`
`35`	`35`	`content: \|`
`36`	`36`	`asdfasdfasdf`
`37`	`37`	`
`38`		`- user, err := cloudinit.ParseUser(testYaml)`
	`38`	`+ user, err := cloudinit.ParseUserData(testYaml)`
`39`	`39`	`if err == nil {`
`40`	`40`	`t.Errorf("should returns an error. user=%v", *user)`
`41`	`41`	`}`
`@@ -56,31 +56,31 @@ runcmd:`
`56`	`56`	`- "reboot now"`
`57`	`57`	`
`58`	`58`
`59`		`- uc, err := cloudinit.ParseUser(testYaml)`
	`59`	`+ uc, err := cloudinit.ParseUserData(testYaml)`
`60`	`60`	`if err != nil {`
`61`	`61`	`t.Fatalf("failed to parse user: %v", err)`
`62`	`62`	`}`
`63`	`63`
`64`		`- _, err = cloudinit.GenerateUserYaml(*uc)`
	`64`	`+ _, err = cloudinit.GenerateUserDataYaml(*uc)`
`65`	`65`	`if err != nil {`
`66`	`66`	`t.Fatalf("generate : %v", err)`
`67`	`67`	`}`
`68`	`68`	`}`
`69`	`69`
`70`	`70`	`func TestMergeUsers(t *testing.T) {`
`71`		`- a := infrav1.User{`
	`71`	`+ a := infrav1.UserData{`
`72`	`72`	`User: "override-user",`
`73`	`73`	`RunCmd: []string{"command A", "command B"},`
`74`	`74`	`}`
`75`		`- b := infrav1.User{`
	`75`	`+ b := infrav1.UserData{`
`76`	`76`	`User: "test-user",`
`77`	`77`	`RunCmd: []string{"command C"},`
`78`	`78`	`}`
`79`		`- expected := infrav1.User{`
	`79`	`+ expected := infrav1.UserData{`
`80`	`80`	`User: "override-user",`
`81`	`81`	`RunCmd: []string{"command A", "command B", "command C"},`
`82`	`82`	`}`
`83`		`- c, err := cloudinit.MergeUsers(&a, &b)`
	`83`	`+ c, err := cloudinit.MergeUserDatas(&a, &b)`
`84`	`84`	`if err != nil {`
`85`	`85`	`t.Errorf("failed to merge cloud init user data: %v", err)`
`86`	`86`	`}`