feat: 'kportal generate' subcommand to bulk-add forwards from a cluster

New subcommand that connects to a chosen kube context and walks the
user through three picker steps before writing forwards to the config:

  1. Namespace multi-select (no system-namespace exclusion)
  2. Service multi-select grouped by namespace, with already-configured
     rows greyed out and locked off
  3. Starting-port input with a live preview of consecutive local-port
     assignments, skipping any port already taken by the existing config
     or another row in the batch

Multi-port services emit one forward per port. Non-TCP ports are
skipped with a one-line warning at the end (kportal forward layer is
TCP-only). --dry-run prints the planned forwards without writing.

Subcommand dispatch lives in cmd/kportal/main.go: when os.Args[1] ==
'generate', runGenerate(os.Args[2:]) is invoked before the main
flag.Parse() so the flag.NewFlagSet 'generate' parses its own
'--context', '--config', '--dry-run' flags. Invalid contexts list
the available ones for quick correction.

Tests in internal/ui/generate_test.go cover:
  - namespace toggle / toggle-all / filter
  - service multi-select with locked already-configured rows and
    non-TCP filtering
  - port-collision-aware consecutive assignment using a real Mutator
    against a tempdir config
  - reject + recover for starting-port < 1024
  - dry-run does not invoke the mutator
  - end-to-end Update() walk through the three steps
  - parse-starting-port boundary table
  - port-step view rendering
  - ServiceCandidate.Key() determinism

README updated with a 'Generate Forwards from a Cluster' section
describing the flow and the three flags.
This commit is contained in:
2026-05-06 13:09:12 +01:00
parent e02edb68ef
commit f4adeedb8f
5 changed files with 1705 additions and 0 deletions
+156
View File
@@ -0,0 +1,156 @@
package main
import (
"errors"
"flag"
"fmt"
"io"
"os"
"path/filepath"
"strings"
"github.com/lukaszraczylo/kportal/internal/config"
"github.com/lukaszraczylo/kportal/internal/k8s"
"github.com/lukaszraczylo/kportal/internal/logger"
"github.com/lukaszraczylo/kportal/internal/ui"
)
// runGenerate parses generate-specific flags, validates them, and runs the
// generate flow. Returns the process exit code.
func runGenerate(args []string) int {
fs := flag.NewFlagSet("generate", flag.ContinueOnError)
fs.SetOutput(os.Stderr)
fs.Usage = func() {
fmt.Fprintf(os.Stderr, "Usage: kportal generate --context=NAME [--config=PATH] [--dry-run]\n\n")
fmt.Fprintf(os.Stderr, "Discover services in the chosen Kubernetes context, pick which ones\n")
fmt.Fprintf(os.Stderr, "to forward, and append them to the kportal config file.\n\n")
fmt.Fprintf(os.Stderr, "Flags:\n")
fs.PrintDefaults()
}
contextFlag := fs.String("context", "", "Kubernetes context to scan (required)")
configFlag := fs.String("config", defaultConfigFile, "Path to kportal configuration file")
dryRunFlag := fs.Bool("dry-run", false, "Print the planned forwards but do not modify the config")
if err := fs.Parse(args); err != nil {
if errors.Is(err, flag.ErrHelp) {
return 0
}
return 1
}
if *contextFlag == "" {
fmt.Fprintln(os.Stderr, "Error: --context is required")
fs.Usage()
return 1
}
// Initialise a discard logger so kubernetes client-go silence is honoured —
// the bubbletea TUI cannot tolerate stderr writes.
logger.Init(logger.LevelError, logger.FormatText, io.Discard)
// Resolve and sanitise config path the same way main does.
configPath, ok := resolveGenerateConfigPath(*configFlag)
if !ok {
return 1
}
// Build kubernetes client pool and verify the requested context exists.
pool, err := k8s.NewClientPool()
if err != nil {
fmt.Fprintf(os.Stderr, "Error: failed to load kubeconfig: %v\n", err)
return 1
}
contexts, err := pool.ListContexts()
if err != nil {
fmt.Fprintf(os.Stderr, "Error: failed to list kubeconfig contexts: %v\n", err)
return 1
}
if !contains(contexts, *contextFlag) {
fmt.Fprintf(os.Stderr, "Error: context %q not found in kubeconfig\n", *contextFlag)
fmt.Fprintf(os.Stderr, "Available contexts: %s\n", strings.Join(contexts, ", "))
return 1
}
discovery := k8s.NewDiscovery(pool)
mutator := config.NewMutator(configPath)
// Load existing config (or treat as empty if missing) to gather already-configured forwards.
var existingForwards []config.Forward
cfg, loadErr := config.LoadConfig(configPath)
switch {
case loadErr == nil:
existingForwards = cfg.GetAllForwards()
case errors.Is(loadErr, config.ErrConfigNotFound):
// Config does not exist yet — that's fine; we'll create it on save.
existingForwards = nil
default:
fmt.Fprintf(os.Stderr, "Error: failed to load config: %v\n", loadErr)
return 1
}
result, err := ui.RunGenerate(discovery, mutator, *contextFlag, configPath, *dryRunFlag, existingForwards)
if err != nil {
fmt.Fprintf(os.Stderr, "Error: %v\n", err)
return 1
}
if result.Cancelled {
fmt.Fprintln(os.Stderr, "Cancelled.")
return 1
}
if result.UsedDryRun {
fmt.Printf("[dry-run] Would add %d forwards to %s\n", len(result.PlannedForwards), configPath)
for _, f := range result.PlannedForwards {
fmt.Printf(" %d → %s/%s/%s:%d\n", f.LocalPort, f.GetContext(), f.GetNamespace(), f.Resource, f.Port)
}
if result.SkippedNonTCP > 0 {
fmt.Fprintf(os.Stderr, "Warning: skipped %d non-TCP service ports (kportal forward layer is TCP-only)\n", result.SkippedNonTCP)
}
return 0
}
if len(result.Errors) > 0 {
fmt.Fprintf(os.Stderr, "Added %d forwards before error; remaining failed:\n", result.Added)
for _, e := range result.Errors {
fmt.Fprintf(os.Stderr, " - %s\n", e)
}
return 1
}
fmt.Printf("Added %d forwards to %s\n", result.Added, configPath)
if result.SkippedNonTCP > 0 {
fmt.Fprintf(os.Stderr, "Warning: skipped %d non-TCP service ports (kportal forward layer is TCP-only)\n", result.SkippedNonTCP)
}
return 0
}
// resolveGenerateConfigPath mirrors the path validation main applies before
// loading config: absolute, cleaned, and not inside protected system directories.
func resolveGenerateConfigPath(path string) (string, bool) {
if path == "" {
fmt.Fprintln(os.Stderr, "Error: --config cannot be empty")
return "", false
}
abs, err := filepath.Abs(path)
if err != nil {
fmt.Fprintf(os.Stderr, "Error: invalid config path: %v\n", err)
return "", false
}
abs = filepath.Clean(abs)
for _, sysDir := range []string{"/etc", "/sys", "/proc", "/dev"} {
if strings.HasPrefix(abs, sysDir) {
fmt.Fprintf(os.Stderr, "Error: config file cannot be in system directory: %s\n", sysDir)
return "", false
}
}
return abs, true
}
func contains(haystack []string, needle string) bool {
for _, s := range haystack {
if s == needle {
return true
}
}
return false
}
+7
View File
@@ -68,6 +68,13 @@ func promptCreateConfig(path string) bool {
}
func main() {
// Subcommand dispatch. Must run BEFORE flag.Parse() because the global flag
// set is reused from here and we don't want generate-specific flags to be
// rejected as unknown by the main flag set.
if len(os.Args) >= 2 && os.Args[1] == "generate" {
os.Exit(runGenerate(os.Args[2:]))
}
flag.Parse()
if *showVersion {