2025-05-27 13:55:31 +12:00
package kubernetes
import (
"net/http"
httperror "github.com/portainer/portainer/pkg/libhttp/error"
"github.com/portainer/portainer/pkg/libhttp/request"
"github.com/portainer/portainer/pkg/libhttp/response"
"github.com/rs/zerolog/log"
k8serrors "k8s.io/apimachinery/pkg/api/errors"
)
// @id getKubernetesEventsForNamespace
// @summary Gets kubernetes events for namespace
// @description Get events by optional query param resourceId for a given namespace.
// @description **Access policy**: Authenticated user.
// @tags kubernetes
// @security ApiKeyAuth || jwt
// @produce json
// @param id path int true "Environment identifier"
// @param namespace path string true "The namespace name the events are associated to"
// @param resourceId query string false "The resource id of the involved kubernetes object" example:"e5b021b6-4bce-4c06-bd3b-6cca906797aa"
2025-06-12 13:39:34 +12:00
// @success 200 {object} []kubernetes.K8sEvent "Success"
2025-05-27 13:55:31 +12:00
// @failure 400 "Invalid request payload, such as missing required fields or fields not meeting validation criteria."
// @failure 401 "Unauthorized access - the user is not authenticated or does not have the necessary permissions. Ensure that you have provided a valid API key or JWT token, and that you have the required permissions."
// @failure 403 "Permission denied - the user is authenticated but does not have the necessary permissions to access the requested resource or perform the specified operation. Check your user roles and permissions."
// @failure 500 "Server error occurred while attempting to retrieve the events within the specified namespace."
// @router /kubernetes/{id}/namespaces/{namespace}/events [get]
func ( handler * Handler ) getKubernetesEventsForNamespace ( w http . ResponseWriter , r * http . Request ) * httperror . HandlerError {
namespace , err := request . RetrieveRouteVariableValue ( r , "namespace" )
if err != nil {
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Str ( "namespace" , namespace ) . Msg ( "Unable to retrieve namespace identifier route variable" )
return httperror . BadRequest ( "Unable to retrieve namespace identifier route variable" , err )
}
resourceId , err := request . RetrieveQueryParameter ( r , "resourceId" , true )
if err != nil {
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Msg ( "Unable to retrieve resourceId query parameter" )
return httperror . BadRequest ( "Unable to retrieve resourceId query parameter" , err )
}
cli , httpErr := handler . getProxyKubeClient ( r )
if httpErr != nil {
log . Error ( ) . Err ( httpErr ) . Str ( "context" , "getKubernetesEvents" ) . Str ( "resourceId" , resourceId ) . Msg ( "Unable to get a Kubernetes client for the user" )
return httperror . InternalServerError ( "Unable to get a Kubernetes client for the user" , httpErr )
}
events , err := cli . GetEvents ( namespace , resourceId )
if err != nil {
if k8serrors . IsUnauthorized ( err ) || k8serrors . IsForbidden ( err ) {
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Msg ( "Unauthorized access to the Kubernetes API" )
return httperror . Forbidden ( "Unauthorized access to the Kubernetes API" , err )
}
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Msg ( "Unable to retrieve events" )
return httperror . InternalServerError ( "Unable to retrieve events" , err )
}
return response . JSON ( w , events )
}
// @id getAllKubernetesEvents
// @summary Gets kubernetes events
// @description Get events by query param resourceId
// @description **Access policy**: Authenticated user.
// @tags kubernetes
// @security ApiKeyAuth || jwt
// @produce json
// @param id path int true "Environment identifier"
// @param resourceId query string false "The resource id of the involved kubernetes object" example:"e5b021b6-4bce-4c06-bd3b-6cca906797aa"
2025-06-12 13:39:34 +12:00
// @success 200 {object} []kubernetes.K8sEvent "Success"
2025-05-27 13:55:31 +12:00
// @failure 400 "Invalid request payload, such as missing required fields or fields not meeting validation criteria."
// @failure 401 "Unauthorized access - the user is not authenticated or does not have the necessary permissions. Ensure that you have provided a valid API key or JWT token, and that you have the required permissions."
// @failure 403 "Permission denied - the user is authenticated but does not have the necessary permissions to access the requested resource or perform the specified operation. Check your user roles and permissions."
// @failure 500 "Server error occurred while attempting to retrieve the events."
// @router /kubernetes/{id}/events [get]
func ( handler * Handler ) getAllKubernetesEvents ( w http . ResponseWriter , r * http . Request ) * httperror . HandlerError {
resourceId , err := request . RetrieveQueryParameter ( r , "resourceId" , true )
if err != nil {
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Msg ( "Unable to retrieve resourceId query parameter" )
return httperror . BadRequest ( "Unable to retrieve resourceId query parameter" , err )
}
cli , httpErr := handler . getProxyKubeClient ( r )
if httpErr != nil {
log . Error ( ) . Err ( httpErr ) . Str ( "context" , "getKubernetesEvents" ) . Str ( "resourceId" , resourceId ) . Msg ( "Unable to get a Kubernetes client for the user" )
return httperror . InternalServerError ( "Unable to get a Kubernetes client for the user" , httpErr )
}
events , err := cli . GetEvents ( "" , resourceId )
if err != nil {
if k8serrors . IsUnauthorized ( err ) || k8serrors . IsForbidden ( err ) {
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Msg ( "Unauthorized access to the Kubernetes API" )
return httperror . Forbidden ( "Unauthorized access to the Kubernetes API" , err )
}
log . Error ( ) . Err ( err ) . Str ( "context" , "getKubernetesEvents" ) . Msg ( "Unable to retrieve events" )
return httperror . InternalServerError ( "Unable to retrieve events" , err )
}
return response . JSON ( w , events )
}
