build

Bumps [minimatch](https://github.com/isaacs/minimatch) from 3.0.4 to 3.1.2.
- [Release notes](https://github.com/isaacs/minimatch/releases)
- [Changelog](https://github.com/isaacs/minimatch/blob/main/changelog.md)
- [Commits](https://github.com/isaacs/minimatch/compare/v3.0.4...v3.1.2)

---
updated-dependencies:
- dependency-name: minimatch
  dependency-type: indirect
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>

.github/ISSUE_TEMPLATE/bugReportForm.yml

@@ -0,0 +1,36 @@
+name: Bug Report
+description: File a bug report specifying all inputs you provided for the action, we will respond to this thread with any questions.
+title: 'Bug: '
+labels: ['bug', 'triage']
+assignees: '@Azure/aks-atlanta'
+body:
+   - type: textarea
+     id: What-happened
+     attributes:
+        label: What happened?
+        description: Tell us what happened and how is it different from the expected?
+        placeholder: Tell us what you see!
+     validations:
+        required: true
+   - type: checkboxes
+     id: Version
+     attributes:
+        label: Version
+        options:
+           - label: I am using the latest version
+             required: true
+   - type: input
+     id: Runner
+     attributes:
+        label: Runner
+        description: What runner are you using?
+        placeholder: Mention the runner info (self-hosted, operating system)
+     validations:
+        required: true
+   - type: textarea
+     id: Logs
+     attributes:
+        label: Relevant log output
+        description: Run in debug mode for the most verbose logs. Please feel free to attach a screenshot of the logs
+     validations:
+        required: true

.github/ISSUE_TEMPLATE/config.yml

@@ -0,0 +1,6 @@
+blank_issues_enabled: false
+contact_links:
+   - name: GitHub Action "k8s-set-context" Support
+     url: https://github.com/Azure/k8s-set-context
+     security: https://github.com/Azure/k8s-set-context/blob/main/SECURITY.md
+     about: Please ask and answer questions here.

.github/ISSUE_TEMPLATE/featureRequestForm.yml

@@ -0,0 +1,13 @@
+name: Feature Request
+description: File a Feature Request form, we will respond to this thread with any questions.
+title: 'Feature Request: '
+labels: ['Feature']
+assignees: '@Azure/aks-atlanta'
+body:
+   - type: textarea
+     id: Feature_request
+     attributes:
+        label: Feature request
+        description: Provide example functionality and links to relevant docs
+     validations:
+        required: true

.github/ISSUE_TEMPLATE/issue--bug-report---feature-request.md

@@ -1,7 +1,7 @@
 ---
-name: "Issue: Bug Report / Feature Request"
+name: 'Issue: Bug Report / Feature Request'
 about: Create a report to help us improve
-title: ""
+title: ''
 labels: need-to-triage
-assignees: "@Azure/aks-atlanta"
+assignees: '@Azure/aks-atlanta'
 ---

.github/workflows/default-labels.yml

@@ -2,34 +2,34 @@ name: Setting Default Labels
 
 # Controls when the action will run.
 on:
-  schedule:
+   schedule:
-    - cron: "0 0/3 * * *"
+      - cron: '0 0/3 * * *'
 
 # A workflow run is made up of one or more jobs that can run sequentially or in parallel
 jobs:
-  build:
+   build:
-    # The type of runner that the job will run on
+      # The type of runner that the job will run on
-    runs-on: ubuntu-latest
+      runs-on: ubuntu-latest
 
-    # Steps represent a sequence of tasks that will be executed as part of the job
+      # Steps represent a sequence of tasks that will be executed as part of the job
-    steps:
+      steps:
-      - uses: actions/stale@v3
+         - uses: actions/stale@v3
-        name: Setting Issue as Idle
+           name: Setting Issue as Idle
-        with:
+           with:
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
+              repo-token: ${{ secrets.GITHUB_TOKEN }}
-          stale-issue-message: "This issue is idle because it has been open for 14 days with no activity."
+              stale-issue-message: 'This issue is idle because it has been open for 14 days with no activity.'
-          stale-issue-label: "idle"
+              stale-issue-label: 'idle'
-          days-before-stale: 14
+              days-before-stale: 14
-          days-before-close: -1
+              days-before-close: -1
-          operations-per-run: 100
+              operations-per-run: 100
-          exempt-issue-labels: "backlog"
+              exempt-issue-labels: 'backlog'
 
-      - uses: actions/stale@v3
+         - uses: actions/stale@v3
-        name: Setting PR as Idle
+           name: Setting PR as Idle
-        with:
+           with:
-          repo-token: ${{ secrets.GITHUB_TOKEN }}
+              repo-token: ${{ secrets.GITHUB_TOKEN }}
-          stale-pr-message: "This PR is idle because it has been open for 14 days with no activity."
+              stale-pr-message: 'This PR is idle because it has been open for 14 days with no activity.'
-          stale-pr-label: "idle"
+              stale-pr-label: 'idle'
-          days-before-stale: 14
+              days-before-stale: 14
-          days-before-close: -1
+              days-before-close: -1
-          operations-per-run: 100
+              operations-per-run: 100

.github/workflows/integration-tests.yml

@@ -1,143 +1,144 @@
 name: Run Integration Tests
 on:
-  pull_request:
+   pull_request:
-    branches:
+      branches:
-      - master
+         - main
-      - "releases/*"
+         - 'releases/*'
-  push:
+   push:
-    branches:
+      branches:
-      - master
+         - main
-      - "releases/*"
+         - 'releases/*'
 
 jobs:
-  kubeconfig-method-integration-test:
+   kubeconfig-method-integration-test:
-    runs-on: ubuntu-latest
+      runs-on: ubuntu-latest
-    steps:
+      steps:
-      - name: Checkout Source Code
+         - name: Checkout Source Code
-        id: checkout-code
+           id: checkout-code
-        uses: actions/checkout@v2
+           uses: actions/checkout@v2
-      - name: Npm Install and Build
+         - name: Npm Install and Build
-        id: npm-build
+           id: npm-build
-        run: |
+           run: |
-          npm install
+              npm install
-          npm run build
+         - name: Build
-      - name: Set Context
+           run: npm run build
-        uses: ./
+         - name: Set Context
-        with:
+           uses: ./
-          method: kubeconfig
+           with:
-          context: exp-scratch
+              method: kubeconfig
-          kubeconfig: |
+              context: exp-scratch
-            apiVersion: v1
+              kubeconfig: |
-            clusters:
+                 apiVersion: v1
-              - cluster:
+                 clusters:
-                  certificate-authority: fake-ca-file
+                   - cluster:
-                  server: https://1.2.3.4
+                       certificate-authority: fake-ca-file
-                name: development
+                       server: https://1.2.3.4
-              - cluster:
+                     name: development
-                  insecure-skip-tls-verify: true
+                   - cluster:
-                  server: https://5.6.7.8
+                       insecure-skip-tls-verify: true
-                name: scratch
+                       server: https://5.6.7.8
-            contexts:
+                     name: scratch
-              - context:
+                 contexts:
-                  cluster: development
+                   - context:
-                  namespace: frontend
+                       cluster: development
-                  user: developer
+                       namespace: frontend
-                name: dev-frontend
+                       user: developer
-              - context:
+                     name: dev-frontend
-                  cluster: development
+                   - context:
-                  namespace: storage
+                       cluster: development
-                  user: developer
+                       namespace: storage
-                name: dev-storage
+                       user: developer
-              - context:
+                     name: dev-storage
-                  cluster: scratch
+                   - context:
-                  namespace: default
+                       cluster: scratch
-                  user: experimenter
+                       namespace: default
-                name: exp-scratch
+                       user: experimenter
-            current-context: ""
+                     name: exp-scratch
-            kind: Config
+                 current-context: ""
-            preferences: {}
+                 kind: Config
-            users:
+                 preferences: {}
-              - name: developer
+                 users:
-                user:
+                   - name: developer
-                  client-certificate: fake-cert-file
+                     user:
-                  client-key: fake-key-file
+                       client-certificate: fake-cert-file
-              - name: experimenter
+                       client-key: fake-key-file
-                user:
+                   - name: experimenter
-                  password: some-password
+                     user:
-                  username: exp
+                       password: some-password
-      - name: Vertify Results
+                       username: exp
-        run: |
+         - name: Vertify Results
-          echo "$EXPECTED_KC" > /tmp/expected_kc.json
+           run: |
-          DIFF=$(diff <(jq -S -c . $KUBECONFIG) <(jq -S -c . /tmp/expected_kc.json))
+              echo "$EXPECTED_KC" > /tmp/expected_kc.json
-          if [ "$DIFF" != "" ]; then exit 1; else echo -e "Kubeconfig matches expected"; fi
+              DIFF=$(diff <(jq -S -c . $KUBECONFIG) <(jq -S -c . /tmp/expected_kc.json))
-        env:
+              if [ "$DIFF" != "" ]; then exit 1; else echo -e "Kubeconfig matches expected"; fi
-          EXPECTED_KC: |
+           env:
-            {
+              EXPECTED_KC: |
-                "apiVersion": "v1",
+                 {
-                "clusters": [
+                     "apiVersion": "v1",
-                    {
+                     "clusters": [
-                        "cluster": {
+                         {
-                            "certificate-authority": "fake-ca-file",
+                             "cluster": {
-                            "insecure-skip-tls-verify": false,
+                                 "certificate-authority": "fake-ca-file",
-                            "server": "https://1.2.3.4"
+                                 "insecure-skip-tls-verify": false,
-                        },
+                                 "server": "https://1.2.3.4"
-                        "name": "development"
+                             },
-                    },
+                             "name": "development"
-                    {
+                         },
-                        "cluster": {
+                         {
-                            "insecure-skip-tls-verify": true,
+                             "cluster": {
-                            "server": "https://5.6.7.8"
+                                 "insecure-skip-tls-verify": true,
-                        },
+                                 "server": "https://5.6.7.8"
-                        "name": "scratch"
+                             },
-                    }
+                             "name": "scratch"
-                ],
+                         }
-                "contexts": [
+                     ],
-                    {
+                     "contexts": [
-                        "context": {
+                         {
-                            "cluster": "development",
+                             "context": {
-                            "name": "dev-frontend",
+                                 "cluster": "development",
-                            "namespace": "frontend",
+                                 "name": "dev-frontend",
-                            "user": "developer"
+                                 "namespace": "frontend",
-                        },
+                                 "user": "developer"
-                        "name": "dev-frontend"
+                             },
-                    },
+                             "name": "dev-frontend"
-                    {
+                         },
-                        "context": {
+                         {
-                            "cluster": "development",
+                             "context": {
-                            "name": "dev-storage",
+                                 "cluster": "development",
-                            "namespace": "storage",
+                                 "name": "dev-storage",
-                            "user": "developer"
+                                 "namespace": "storage",
-                        },
+                                 "user": "developer"
-                        "name": "dev-storage"
+                             },
-                    },
+                             "name": "dev-storage"
-                    {
+                         },
-                        "context": {
+                         {
-                            "cluster": "scratch",
+                             "context": {
-                            "name": "exp-scratch",
+                                 "cluster": "scratch",
-                            "namespace": "default",
+                                 "name": "exp-scratch",
-                            "user": "experimenter"
+                                 "namespace": "default",
-                        },
+                                 "user": "experimenter"
-                        "name": "exp-scratch"
+                             },
-                    }
+                             "name": "exp-scratch"
-                ],
+                         }
-                "current-context": "exp-scratch",
+                     ],
-                "kind": "Config",
+                     "current-context": "exp-scratch",
-                "preferences": {
+                     "kind": "Config",
-                },
+                     "preferences": {
-                "users": [
+                     },
-                    {
+                     "users": [
-                        "name": "developer",
+                         {
-                        "user": {
+                             "name": "developer",
-                            "client-certificate": "fake-cert-file",
+                             "user": {
-                            "client-key": "fake-key-file"
+                                 "client-certificate": "fake-cert-file",
-                        }
+                                 "client-key": "fake-key-file"
-                    },
+                             }
-                    {
+                         },
-                        "name": "experimenter",
+                         {
-                        "user": {
+                             "name": "experimenter",
-                            "password": "some-password",
+                             "user": {
-                            "username": "exp"
+                                 "password": "some-password",
-                        }
+                                 "username": "exp"
-                    }
+                             }
-                ]
+                         }
-            }
+                     ]
+                 }

.github/workflows/prettify-code.yml

@@ -0,0 +1,18 @@
+name: 'Run prettify'
+on:
+   pull_request:
+   push:
+      branches: [main]
+
+jobs:
+   prettier:
+      name: Prettier Check
+      runs-on: ubuntu-latest
+      steps:
+         - name: Checkout Repository
+           uses: actions/checkout@v2
+
+         - name: Enforce Prettier
+           uses: actionsx/prettier@v2
+           with:
+              args: --check .

.github/workflows/release-pr.yml

@@ -0,0 +1,18 @@
+name: Release Project
+
+on:
+   push:
+      branches:
+         - main
+      paths:
+         - CHANGELOG.md
+   workflow_dispatch:
+
+jobs:
+   release:
+      permissions:
+         actions: read
+         contents: write
+      uses: Azure/action-release-workflows/.github/workflows/release_js_project.yaml@a705b2ab6a3ee889f2b0d925ad0bd2f9eb733ce6
+      with:
+         changelogPath: ./CHANGELOG.md

.github/workflows/tag-and-draft.yml

@@ -0,0 +1,10 @@
+name: Tag and create release draft
+
+on:
+   push:
+      branches:
+         - releases/*
+
+jobs:
+   tag-and-release:
+      uses: OliverMKing/javascript-release-workflow/.github/workflows/tag-and-release.yml@main

.github/workflows/ts-build-check.yml

@@ -1,41 +0,0 @@
-name: TypeScript Build Check
-
-on: pull_request
-
-jobs:
-  ts-build-check:
-    runs-on: ubuntu-latest
-    steps:
-      - name: Checkout Pull Request
-        uses: actions/checkout@v2
-        with:
-          ref: ${{github.event.pull_request.head.ref}}
-          repository: ${{github.event.pull_request.head.repo.full_name}}
-          path: original-pr
-      - name: Setup Node
-        uses: actions/setup-node@v1
-        with:
-          node-version: 12.x
-      - name: Clone and Build Pull Request
-        run: |
-          cp $GITHUB_WORKSPACE/original-pr/ $GITHUB_WORKSPACE/built-pr -r
-          cd $GITHUB_WORKSPACE/built-pr/
-          npm i
-          npm run build
-      - name: Compare Built Directories
-        id: diff
-        run: |
-          DIFF=$(diff $GITHUB_WORKSPACE/original-pr/lib $GITHUB_WORKSPACE/built-pr/lib -rqiEZbwBd)
-          if [ "$DIFF" != "" ]; then exit 1; else echo -e "PR contains up-to-date compiled JavaScript."; fi
-      - name: Comment Unbuilt TypeScript
-        if: failure() && steps.diff.outcome == 'failure'
-        uses: actions/github-script@v2
-        with:
-          github-token: ${{secrets.GITHUB_TOKEN}}
-          script: |
-            github.issues.createComment({
-              issue_number: ${{ github.event.number }},
-              owner: context.repo.owner,
-              repo: context.repo.repo,
-              body: 'Please compile the TypeScript code with `npm run build`. The compiled JavaScript is not up-to-date.'
-            })

.github/workflows/unit-tests.yml

@@ -1,20 +1,20 @@
 name: Run Unit Tests
 on:
-  pull_request:
+   pull_request:
-    branches:
+      branches:
-      - master
+         - main
-      - "releases/*"
+         - 'releases/*'
-  push:
+   push:
-    branches:
+      branches:
-      - master
+         - main
-      - "releases/*"
+         - 'releases/*'
 
 jobs:
-  unit-test:
+   unit-test:
-    runs-on: ubuntu-latest
+      runs-on: ubuntu-latest
-    steps:
+      steps:
-      - uses: actions/checkout@v1
+         - uses: actions/checkout@v1
-      - name: Run Unit Tests
+         - name: Run Unit Tests
-        run: |
+           run: |
-          npm install
+              npm install
-          npm test
+              npm test

.gitignore

@@ -329,3 +329,5 @@ ASALocalRun/
 .mfractor/
 node_modules
 coverage
+
+# Transpiled JS

.prettierignore

@@ -0,0 +1,4 @@
+# dependencies
+/node_modules
+coverage
+/lib

.prettierrc.json

@@ -0,0 +1,8 @@
+{
+   "trailingComma": "none",
+   "bracketSpacing": false,
+   "semi": false,
+   "tabWidth": 3,
+   "singleQuote": true,
+   "printWidth": 80
+}

CHANGELOG.md

@@ -0,0 +1,5 @@
+# Change Log
+
+## [4.0.0] - 2024-02-13
+
+-  #83 update to node20 as node16 is deprecated

CODE_OF_CONDUCT.md

@@ -1,9 +1,9 @@
-# Microsoft Open Source Code of Conduct
+# Microsoft Open Source Code of Conduct
-
+
-This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
+This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
-
+
-Resources:
+Resources:
-
+
-- [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/)
+-  [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/)
-- [Microsoft Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/)
+-  [Microsoft Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/)
-- Contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with questions or concerns
+-  Contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with questions or concerns

README.md

@@ -1,109 +1,109 @@
-# Kubernetes set context
+# Kubernetes set context
-
+
-This action can be used to set cluster context before other actions like [`azure/k8s-deploy`](https://github.com/Azure/k8s-deploy/tree/master) and [`azure/k8s-create-secret`](https://github.com/Azure/k8s-create-secret/tree/master). It should also be used before `kubectl` commands (in script) are run subsequently in the workflow.
+This action can be used to set cluster context before other actions like [`azure/k8s-deploy`](https://github.com/Azure/k8s-deploy/tree/master) and [`azure/k8s-create-secret`](https://github.com/Azure/k8s-create-secret/tree/master). It should also be used before `kubectl` commands (in script) are run subsequently in the workflow.
-
+
-It is a requirement to use [`azure/login`](https://github.com/Azure/login/tree/master) in your workflow before using this action when using the `service-account` or `service-principal` methods.
+It is a requirement to use [`azure/login`](https://github.com/Azure/login/tree/master) in your workflow before using this action when using the `service-account` or `service-principal` methods.
-
+
-There are three approaches for specifying the deployment target:
+There are three approaches for specifying the deployment target:
-
+
-- Kubeconfig file provided as input to the action
+-  Kubeconfig file provided as input to the action
-- Service account approach where the secret associated with the service account is provided as input to the action
+-  Service account approach where the secret associated with the service account is provided as input to the action
-- Service principal approach (only applicable for arc cluster) where service principal provided with 'creds' is used as input to action
+-  Service principal approach (only applicable for arc cluster) where service principal provided with 'creds' is used as input to action
-
+
-In all these approaches it is recommended to store these contents (kubeconfig file content or secret content) in a [secret](https://docs.github.com/en/actions/security-guides/encrypted-secrets/).
+In all these approaches it is recommended to store these contents (kubeconfig file content or secret content) in a [secret](https://docs.github.com/en/actions/security-guides/encrypted-secrets/).
-
+
-Refer to the [action metadata file](./action.yml) for details about inputs. Note that different inputs are required for different method and cluster types. Use the below examples as a reference.
+Refer to the [action metadata file](./action.yml) for details about inputs. Note that different inputs are required for different method and cluster types. Use the below examples as a reference.
-
+
-## Example usage
+## Example usage
-
+
-### Kubeconfig approach
+### Kubeconfig approach
-
+
-```yaml
+```yaml
-- uses: azure/k8s-set-context@v2
+- uses: azure/k8s-set-context@v3
-  with:
+  with:
-    method: kubeconfig
+     method: kubeconfig
-    kubeconfig: <your kubeconfig>
+     kubeconfig: <your kubeconfig>
-    context: <context name> # current-context from kubeconfig is used as default
+     context: <context name> # current-context from kubeconfig is used as default
-```
+```
-
+
-**Please note** that the input requires the _contents_ of the kubeconfig file, and not its path.
+**Please note** that the input requires the _contents_ of the kubeconfig file, and not its path.
-
+
-Following are the ways to fetch kubeconfig file onto your local development machine so that the same can be used in the action input shown above.
+Following are the ways to fetch kubeconfig file onto your local development machine so that the same can be used in the action input shown above.
-
+
-#### Azure Kubernetes Service cluster
+#### Azure Kubernetes Service cluster
-
+
-```bash
+```bash
-az aks get-credentials --name
+az aks get-credentials --name
-                       --resource-group
+                       --resource-group
-                       [--admin]
+                       [--admin]
-                       [--file]
+                       [--file]
-                       [--overwrite-existing]
+                       [--overwrite-existing]
-                       [--subscription]
+                       [--subscription]
-```
+```
-
+
-Further details can be found in [az aks get-credentials documentation](https://docs.microsoft.com/en-us/cli/azure/aks?view=azure-cli-latest#az-aks-get-credentials).
+Further details can be found in [az aks get-credentials documentation](https://docs.microsoft.com/en-us/cli/azure/aks?view=azure-cli-latest#az-aks-get-credentials).
-
+
-#### Generic Kubernetes cluster
+#### Generic Kubernetes cluster
-
+
-Please refer to documentation on fetching [kubeconfig for any generic K8s cluster](https://kubernetes.io/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
+Please refer to documentation on fetching [kubeconfig for any generic K8s cluster](https://kubernetes.io/docs/concepts/configuration/organize-cluster-access-kubeconfig/)
-
+
-### Service account approach
+### Service account approach
-
+
-```yaml
+```yaml
-- uses: azure/k8s-set-context@v2
+- uses: azure/k8s-set-context@v3
-  with:
+  with:
-    method: service-account
+     method: service-account
-    k8s-url: <URL of the cluster's API server>
+     k8s-url: <URL of the cluster's API server>
-    k8s-secret: <secret associated with the service account>
+     k8s-secret: <secret associated with the service account>
-```
+```
-
+
-For fetching Server URL, execute the following command on your shell:
+For fetching Server URL, execute the following command on your shell:
-
+
-```bash
+```bash
-kubectl config view --minify -o 'jsonpath={.clusters[0].cluster.server}'
+kubectl config view --minify -o 'jsonpath={.clusters[0].cluster.server}'
-```
+```
-
+
-For fetching Secret object required to connect and authenticate with the cluster, the following sequence of commands need to be run:
+For fetching Secret object required to connect and authenticate with the cluster, the following sequence of commands need to be run:
-
+
-```bash
+```bash
-kubectl get serviceAccounts <service-account-name> -n <namespace> -o 'jsonpath={.secrets[*].name}'
+kubectl get serviceAccounts <service-account-name> -n <namespace> -o 'jsonpath={.secrets[*].name}'
-
+
-kubectl get secret <service-account-secret-name> -n <namespace> -o yaml
+kubectl get secret <service-account-secret-name> -n <namespace> -o yaml
-```
+```
-
+
-### Service account approach for arc cluster
+### Service account approach for arc cluster
-
+
-```yaml
+```yaml
-- uses: azure/k8s-set-context@v2
+- uses: azure/k8s-set-context@v3
-  with:
+  with:
-    method: service-account
+     method: service-account
-    cluster-type: arc
+     cluster-type: arc
-    cluster-name: <cluster-name>
+     cluster-name: <cluster-name>
-    resource-group: <resource-group>
+     resource-group: <resource-group>
-    token: "${{ secrets.SA_TOKEN }}"
+     token: '${{ secrets.SA_TOKEN }}'
-```
+```
-
+
-### Service principal approach for arc cluster
+### Service principal approach for arc cluster
-
+
-```yaml
+```yaml
-- uses: azure/k8s-set-context@v2
+- uses: azure/k8s-set-context@v3
-  with:
+  with:
-    method: service-principal
+     method: service-principal
-    cluster-type: arc
+     cluster-type: arc
-    cluster-name: <cluster-name>
+     cluster-name: <cluster-name>
-    resource-group: <resource-group>
+     resource-group: <resource-group>
-```
+```
-
+
-## Contributing
+## Contributing
-
+
-This project welcomes contributions and suggestions. Most contributions require you to agree to a
+This project welcomes contributions and suggestions. Most contributions require you to agree to a
-Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us
+Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us
-the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.
+the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.
-
+
-When you submit a pull request, a CLA bot will automatically determine whether you need to provide
+When you submit a pull request, a CLA bot will automatically determine whether you need to provide
-a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions
+a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions
-provided by the bot. You will only need to do this once across all repos using our CLA.
+provided by the bot. You will only need to do this once across all repos using our CLA.
-
+
-This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
+This project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).
-For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or
+For more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or
-contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.
+contact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.

SECURITY.md

@@ -1,35 +1,35 @@
-<!-- BEGIN MICROSOFT SECURITY.MD V0.0.1 BLOCK -->
+<!-- BEGIN MICROSOFT SECURITY.MD V0.0.1 BLOCK -->
-
+
-## Security
+## Security
-
+
-Microsoft takes the security of our software products and services seriously, which includes all source code repositories managed through our GitHub organizations, which include [Microsoft](https://github.com/Microsoft), [Azure](https://github.com/Azure), [DotNet](https://github.com/dotnet), [AspNet](https://github.com/aspnet), [Xamarin](https://github.com/xamarin), and [many more](https://opensource.microsoft.com/).
+Microsoft takes the security of our software products and services seriously, which includes all source code repositories managed through our GitHub organizations, which include [Microsoft](https://github.com/Microsoft), [Azure](https://github.com/Azure), [DotNet](https://github.com/dotnet), [AspNet](https://github.com/aspnet), [Xamarin](https://github.com/xamarin), and [many more](https://opensource.microsoft.com/).
-
+
-If you believe you have found a security vulnerability in any Microsoft-owned repository that meets Microsoft's [definition](https://docs.microsoft.com/en-us/previous-versions/tn-archive/cc751383(v=technet.10)) of a security vulnerability, please report it to us as described below.
+If you believe you have found a security vulnerability in any Microsoft-owned repository that meets Microsoft's [definition](<https://docs.microsoft.com/en-us/previous-versions/tn-archive/cc751383(v=technet.10)>) of a security vulnerability, please report it to us as described below.
-
+
-## Reporting Security Issues
+## Reporting Security Issues
-
+
-**Please do not report security vulnerabilities through public GitHub issues.** Instead, please report them to the Microsoft Security Response Center at [secure@microsoft.com](mailto:secure@microsoft.com).  If possible, encrypt your message with our PGP key; please download it from the [Microsoft Security Response Center PGP Key page](https://technet.microsoft.com/en-us/security/dn606155).
+**Please do not report security vulnerabilities through public GitHub issues.** Instead, please report them to the Microsoft Security Response Center at [secure@microsoft.com](mailto:secure@microsoft.com). If possible, encrypt your message with our PGP key; please download it from the [Microsoft Security Response Center PGP Key page](https://technet.microsoft.com/en-us/security/dn606155).
-
+
-You should receive a response within 24 hours. If for some reason you do not, please follow up via email to ensure we received your original message. Additional information can be found at [microsoft.com/msrc](https://www.microsoft.com/msrc).
+You should receive a response within 24 hours. If for some reason you do not, please follow up via email to ensure we received your original message. Additional information can be found at [microsoft.com/msrc](https://www.microsoft.com/msrc).
-
+
-Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
+Please include the requested information listed below (as much as you can provide) to help us better understand the nature and scope of the possible issue:
-
+
-  * Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
+-  Type of issue (e.g. buffer overflow, SQL injection, cross-site scripting, etc.)
-  * Full paths of source file(s) related to the manifestation of the issue
+-  Full paths of source file(s) related to the manifestation of the issue
-  * The location of the affected source code (tag/branch/commit or direct URL)
+-  The location of the affected source code (tag/branch/commit or direct URL)
-  * Any special configuration required to reproduce the issue
+-  Any special configuration required to reproduce the issue
-  * Step-by-step instructions to reproduce the issue
+-  Step-by-step instructions to reproduce the issue
-  * Proof-of-concept or exploit code (if possible)
+-  Proof-of-concept or exploit code (if possible)
-  * Impact of the issue, including how an attacker might exploit the issue
+-  Impact of the issue, including how an attacker might exploit the issue
-
+
-This information will help us triage your report more quickly.
+This information will help us triage your report more quickly.
-
+
-## Preferred Languages
+## Preferred Languages
-
+
-We prefer all communications to be in English.
+We prefer all communications to be in English.
-
+
-## Policy
+## Policy
-
+
-Microsoft follows the principle of [Coordinated Vulnerability Disclosure](https://www.microsoft.com/en-us/msrc/cvd).
+Microsoft follows the principle of [Coordinated Vulnerability Disclosure](https://www.microsoft.com/en-us/msrc/cvd).
-
+
-<!-- END MICROSOFT SECURITY.MD BLOCK -->
+<!-- END MICROSOFT SECURITY.MD BLOCK -->

action.yml

@@ -1,39 +1,39 @@
-name: "Kubernetes Set Context"
+name: 'Kubernetes Set Context'
-description: "Set the context of a target Kubernetes cluster and export the kubeconfig which will be used by other actions like azure/k8s-deploy"
+description: 'Set the context of a target Kubernetes cluster and export the kubeconfig which is used by subsequent actions'
-inputs:
+inputs:
-  # Please ensure you have used azure/login in the workflow before this action
+   # Please ensure you have used azure/login in the workflow before this action
-  cluster-type:
+   cluster-type:
-    description: "Acceptable values: generic or arc"
+      description: 'Acceptable values: generic or arc'
-    required: true
+      required: true
-    default: "generic"
+      default: 'generic'
-  method:
+   method:
-    description: "Acceptable values: kubeconfig or service-account or service-principal"
+      description: 'Acceptable values: kubeconfig or service-account or service-principal'
-    required: true
+      required: true
-    default: "kubeconfig"
+      default: 'kubeconfig'
-  kubeconfig:
+   kubeconfig:
-    description: "Contents of kubeconfig file"
+      description: 'Contents of kubeconfig file'
-    required: false
+      required: false
-  context:
+   context:
-    description: "If your kubeconfig has multiple contexts, use this field to use a specific context, otherwise the default one would be chosen"
+      description: 'If your kubeconfig has multiple contexts, use this field to use a specific context, otherwise the default one would be chosen'
-    required: false
+      required: false
-  k8s-url:
+   k8s-url:
-    description: "Cluster Url"
+      description: 'Cluster Url'
-    required: false
+      required: false
-  k8s-secret:
+   k8s-secret:
-    description: "Service account secret (run kubectl get serviceaccounts <service-account-name> -o yaml and copy the service-account-secret-name)"
+      description: 'Service account secret (run kubectl get serviceaccounts <service-account-name> -o yaml and copy the service-account-secret-name)'
-    required: false
+      required: false
-  token:
+   token:
-    description: "Token extracted from the secret of service account (should be base 64 decoded)"
+      description: 'Token extracted from the secret of service account (should be base 64 decoded)'
-    required: false
+      required: false
-  resource-group:
+   resource-group:
-    description: "Azure resource group name"
+      description: 'Azure resource group name'
-    required: false
+      required: false
-  cluster-name:
+   cluster-name:
-    description: "Azure connected cluster name"
+      description: 'Azure connected cluster name'
-    required: false
+      required: false
-
+
-branding:
+branding:
-  color: "blue"
+   color: 'blue'
-runs:
+runs:
-  using: "node12"
+   using: 'node20'
-  main: "lib/run.js"
+   main: 'lib/index.js'

jest.config.js

@@ -1,20 +1,20 @@
 module.exports = {
-  restoreMocks: true,
+   restoreMocks: true,
-  clearMocks: true,
+   clearMocks: true,
-  resetMocks: true,
+   resetMocks: true,
-  moduleFileExtensions: ["js", "ts"],
+   moduleFileExtensions: ['js', 'ts'],
-  testEnvironment: "node",
+   testEnvironment: 'node',
-  testMatch: ["**/*.test.ts"],
+   testMatch: ['**/*.test.ts'],
-  transform: {
+   transform: {
-    "^.+\\.ts$": "ts-jest",
+      '^.+\\.ts$': 'ts-jest'
-  },
+   },
-  verbose: true,
+   verbose: true,
-  coverageThreshold: {
+   coverageThreshold: {
-    global: {
+      global: {
-      branches: 0,
+         branches: 0,
-      functions: 40,
+         functions: 40,
-      lines: 22,
+         lines: 22,
-      statements: 22,
+         statements: 22
-    },
+      }
-  },
+   }
-};
+}

lib/exec-child.js

@@ -0,0 +1,39 @@
+if (require.main !== module) {
+  throw new Error('This file should not be required');
+}
+
+var childProcess = require('child_process');
+var fs = require('fs');
+
+var paramFilePath = process.argv[2];
+
+var serializedParams = fs.readFileSync(paramFilePath, 'utf8');
+var params = JSON.parse(serializedParams);
+
+var cmd = params.command;
+var execOptions = params.execOptions;
+var pipe = params.pipe;
+var stdoutFile = params.stdoutFile;
+var stderrFile = params.stderrFile;
+
+var c = childProcess.exec(cmd, execOptions, function (err) {
+  if (!err) {
+    process.exitCode = 0;
+  } else if (err.code === undefined) {
+    process.exitCode = 1;
+  } else {
+    process.exitCode = err.code;
+  }
+});
+
+var stdoutStream = fs.createWriteStream(stdoutFile);
+var stderrStream = fs.createWriteStream(stderrFile);
+
+c.stdout.pipe(stdoutStream);
+c.stderr.pipe(stderrStream);
+c.stdout.pipe(process.stdout);
+c.stderr.pipe(process.stderr);
+
+if (pipe) {
+  c.stdin.end(pipe);
+}

lib/kubeconfigs/arc.js

@@ -1,84 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.getArcKubeconfig = exports.KUBECONFIG_LOCATION = void 0;
-const core = __importStar(require("@actions/core"));
-const io = __importStar(require("@actions/io"));
-const method_1 = require("../types/method");
-const path = __importStar(require("path"));
-const azCommands_1 = require("./azCommands");
-const RUNNER_TEMP = process.env["RUNNER_TEMP"] || "";
-exports.KUBECONFIG_LOCATION = path.join(RUNNER_TEMP, `arc_kubeconfig_${Date.now()}`);
-/**
- * Gets the kubeconfig based on provided method for an Arc Kubernetes cluster
- * @returns The kubeconfig wrapped in a Promise
- */
-function getArcKubeconfig() {
-    return __awaiter(this, void 0, void 0, function* () {
-        const resourceGroupName = core.getInput("resource-group", { required: true });
-        const clusterName = core.getInput("cluster-name", { required: true });
-        const azPath = yield io.which("az", true);
-        const method = method_1.parseMethod(core.getInput("method", { required: true }));
-        yield azCommands_1.runAzCliCommand(azPath, ["extension", "add", "-n", "connectedk8s"]);
-        switch (method) {
-            case method_1.Method.SERVICE_ACCOUNT:
-                const saToken = core.getInput("token", { required: true });
-                return yield azCommands_1.runAzKubeconfigCommandBlocking(azPath, [
-                    "connectedk8s",
-                    "proxy",
-                    "-n",
-                    clusterName,
-                    "-g",
-                    resourceGroupName,
-                    "--token",
-                    saToken,
-                    "-f",
-                    exports.KUBECONFIG_LOCATION,
-                ], exports.KUBECONFIG_LOCATION);
-            case method_1.Method.SERVICE_PRINCIPAL:
-                return yield azCommands_1.runAzKubeconfigCommandBlocking(azPath, [
-                    "connectedk8s",
-                    "proxy",
-                    "-n",
-                    clusterName,
-                    "-g",
-                    resourceGroupName,
-                    "-f",
-                    exports.KUBECONFIG_LOCATION,
-                ], exports.KUBECONFIG_LOCATION);
-            case undefined:
-                core.warning("Defaulting to kubeconfig method");
-            case method_1.Method.KUBECONFIG:
-            default:
-                throw Error("Kubeconfig method not supported for Arc cluster");
-        }
-    });
-}
-exports.getArcKubeconfig = getArcKubeconfig;

lib/kubeconfigs/azCommands.js

@@ -1,67 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.runAzKubeconfigCommandBlocking = exports.runAzCliCommand = void 0;
-const fs = __importStar(require("fs"));
-const exec_1 = require("@actions/exec");
-const child_process_1 = require("child_process");
-const AZ_TIMEOUT_SECONDS = 120;
-/**
- * Executes an az cli command
- * @param azPath The path to the az tool
- * @param args The arguments to be invoked
- * @param options Optional options for the command execution
- */
-function runAzCliCommand(azPath, args, options = {}) {
-    return __awaiter(this, void 0, void 0, function* () {
-        yield exec_1.exec(azPath, args, options);
-    });
-}
-exports.runAzCliCommand = runAzCliCommand;
-/**
- * Executes an az cli command that will set the kubeconfig
- * @param azPath The path to the az tool
- * @param args The arguments to be be invoked
- * @param kubeconfigPath The path to the kubeconfig that is updated by the command
- * @returns The contents of the kubeconfig
- */
-function runAzKubeconfigCommandBlocking(azPath, args, kubeconfigPath) {
-    return __awaiter(this, void 0, void 0, function* () {
-        const proc = child_process_1.spawn(azPath, args, {
-            detached: true,
-            stdio: "ignore",
-        });
-        proc.unref();
-        yield sleep(AZ_TIMEOUT_SECONDS);
-        return fs.readFileSync(kubeconfigPath).toString();
-    });
-}
-exports.runAzKubeconfigCommandBlocking = runAzKubeconfigCommandBlocking;
-const sleep = (seconds) => new Promise((resolve) => setTimeout(resolve, seconds * 1000));

lib/kubeconfigs/default.js

@@ -1,87 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.createKubeconfig = exports.getDefaultKubeconfig = void 0;
-const core = __importStar(require("@actions/core"));
-const jsyaml = __importStar(require("js-yaml"));
-const k8sSecret_1 = require("../types/k8sSecret");
-const method_1 = require("../types/method");
-/**
- * Gets the kubeconfig based on provided method for a default Kubernetes cluster
- * @returns The kubeconfig
- */
-function getDefaultKubeconfig() {
-    const method = method_1.parseMethod(core.getInput("method", { required: true }));
-    switch (method) {
-        case method_1.Method.SERVICE_ACCOUNT: {
-            const clusterUrl = core.getInput("k8s-url", { required: true });
-            core.debug("Found clusterUrl. Creating kubeconfig using certificate and token");
-            const k8sSecret = core.getInput("k8s-secret", {
-                required: true,
-            });
-            const parsedK8sSecret = k8sSecret_1.parseK8sSecret(jsyaml.load(k8sSecret));
-            const certAuth = parsedK8sSecret.data["ca.crt"];
-            const token = Buffer.from(parsedK8sSecret.data.token, "base64").toString();
-            return createKubeconfig(certAuth, token, clusterUrl);
-        }
-        case method_1.Method.SERVICE_PRINCIPAL: {
-            core.warning("Service Principal method not supported for default cluster type");
-        }
-        case undefined: {
-            core.warning("Defaulting to kubeconfig method");
-        }
-        default: {
-            core.debug("Setting context using kubeconfig");
-            return core.getInput("kubeconfig", { required: true });
-        }
-    }
-}
-exports.getDefaultKubeconfig = getDefaultKubeconfig;
-/**
- * Creates a kubeconfig and returns the string representation
- * @param certAuth The certificate authentication of the cluster
- * @param token The user token
- * @param clusterUrl The server url of the cluster
- * @returns The kubeconfig as a string
- */
-function createKubeconfig(certAuth, token, clusterUrl) {
-    const kubeconfig = {
-        apiVersion: "v1",
-        kind: "Config",
-        clusters: [
-            {
-                cluster: {
-                    "certificate-authority-data": certAuth,
-                    server: clusterUrl,
-                },
-            },
-        ],
-        users: [
-            {
-                user: {
-                    token: token,
-                },
-            },
-        ],
-    };
-    return JSON.stringify(kubeconfig);
-}
-exports.createKubeconfig = createKubeconfig;

lib/run.js

@@ -1,61 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.run = void 0;
-const core = __importStar(require("@actions/core"));
-const path = __importStar(require("path"));
-const fs = __importStar(require("fs"));
-const cluster_1 = require("./types/cluster");
-const utils_1 = require("./utils");
-/**
- * Sets the Kubernetes context based on supplied action inputs
- */
-function run() {
-    return __awaiter(this, void 0, void 0, function* () {
-        // get inputs
-        const clusterType = cluster_1.parseCluster(core.getInput("cluster-type", {
-            required: true,
-        }));
-        const runnerTempDirectory = process.env["RUNNER_TEMP"];
-        const kubeconfigPath = path.join(runnerTempDirectory, `kubeconfig_${Date.now()}`);
-        // get kubeconfig and update context
-        const kubeconfig = yield utils_1.getKubeconfig(clusterType);
-        const kubeconfigWithContext = utils_1.setContext(kubeconfig);
-        // output kubeconfig
-        core.debug(`Writing kubeconfig contents to ${kubeconfigPath}`);
-        fs.writeFileSync(kubeconfigPath, kubeconfigWithContext);
-        fs.chmodSync(kubeconfigPath, "600");
-        core.debug("Setting KUBECONFIG environment variable");
-        core.exportVariable("KUBECONFIG", kubeconfigPath);
-    });
-}
-exports.run = run;
-// Run the application
-run().catch(core.setFailed);

lib/types/cluster.js

@@ -1,14 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.parseCluster = exports.Cluster = void 0;
-var Cluster;
-(function (Cluster) {
-    Cluster["ARC"] = "arc";
-    Cluster["GENERIC"] = "generic";
-})(Cluster = exports.Cluster || (exports.Cluster = {}));
-/**
- * Converts a string to the Cluster enum
- * @param str The cluster type (case insensitive)
- * @returns The Cluster enum or undefined if it can't be parsed
- */
-exports.parseCluster = (str) => Cluster[Object.keys(Cluster).filter((k) => Cluster[k].toString().toLowerCase() === str.toLowerCase())[0]];

lib/types/k8sSecret.js

@@ -1,41 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.parseK8sSecret = void 0;
-const util = __importStar(require("util"));
-/**
- * Throws an error if an object does not have all required fields to be a K8sSecret
- * @param secret
- * @returns A type guarded K8sSecret
- */
-function parseK8sSecret(secret) {
-    if (!secret)
-        throw Error("K8s secret yaml is invalid");
-    if (!secret.data)
-        throw k8sSecretMissingFieldError("data");
-    if (!secret.data.token)
-        throw k8sSecretMissingFieldError("token");
-    if (!secret.data["ca.crt"])
-        throw k8sSecretMissingFieldError("ca.crt");
-    return secret;
-}
-exports.parseK8sSecret = parseK8sSecret;
-const k8sSecretMissingFieldError = (field) => Error(util.format("K8s secret yaml does not contain %s field", field));

lib/types/method.js

@@ -1,15 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.parseMethod = exports.Method = void 0;
-var Method;
-(function (Method) {
-    Method["KUBECONFIG"] = "kubeconfig";
-    Method["SERVICE_ACCOUNT"] = "service-account";
-    Method["SERVICE_PRINCIPAL"] = "service-principal";
-})(Method = exports.Method || (exports.Method = {}));
-/**
- * Converts a string to the Method enum
- * @param str The method (case insensitive)
- * @returns The Method enum or undefined if it can't be parsed
- */
-exports.parseMethod = (str) => Method[Object.keys(Method).filter((k) => Method[k].toString().toLowerCase() === str.toLowerCase())[0]];

lib/utils.js

@@ -1,76 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    Object.defineProperty(o, k2, { enumerable: true, get: function() { return m[k]; } });
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
-    Object.defineProperty(o, "default", { enumerable: true, value: v });
-}) : function(o, v) {
-    o["default"] = v;
-});
-var __importStar = (this && this.__importStar) || function (mod) {
-    if (mod && mod.__esModule) return mod;
-    var result = {};
-    if (mod != null) for (var k in mod) if (Object.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
-    __setModuleDefault(result, mod);
-    return result;
-};
-var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
-    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
-    return new (P || (P = Promise))(function (resolve, reject) {
-        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
-        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
-        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
-        step((generator = generator.apply(thisArg, _arguments || [])).next());
-    });
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.setContext = exports.getKubeconfig = void 0;
-const core = __importStar(require("@actions/core"));
-const client_node_1 = require("@kubernetes/client-node");
-const default_1 = require("./kubeconfigs/default");
-const arc_1 = require("./kubeconfigs/arc");
-const cluster_1 = require("./types/cluster");
-/**
- * Gets the kubeconfig based on Kubernetes cluster type
- * @param type The cluster type for the kubeconfig (defaults to generic)
- * @returns A promise of the kubeconfig
- */
-function getKubeconfig(type) {
-    return __awaiter(this, void 0, void 0, function* () {
-        switch (type) {
-            case cluster_1.Cluster.ARC: {
-                return yield arc_1.getArcKubeconfig();
-            }
-            case undefined: {
-                core.warning("Cluster type not recognized. Defaulting to generic.");
-            }
-            default: {
-                return default_1.getDefaultKubeconfig();
-            }
-        }
-    });
-}
-exports.getKubeconfig = getKubeconfig;
-/**
- * Sets the context by updating the kubeconfig
- * @param kubeconfig The kubeconfig
- * @returns Updated kubeconfig with the context
- */
-function setContext(kubeconfig) {
-    const context = core.getInput("context");
-    if (!context) {
-        core.debug("Can't set context because context is unspecified.");
-        return kubeconfig;
-    }
-    // load current kubeconfig
-    const kc = new client_node_1.KubeConfig();
-    kc.loadFromString(kubeconfig);
-    // update kubeconfig
-    kc.setCurrentContext(context);
-    return kc.exportConfig();
-}
-exports.setContext = setContext;

package.json

@@ -1,33 +1,38 @@
-{
+{
-  "name": "k8s-set-context-action",
+   "name": "k8s-set-context-action",
-  "version": "1.0.0",
+   "version": "4.0.0",
-  "private": true,
+   "private": true,
-  "main": "lib/run.js",
+   "main": "lib/index.js",
-  "scripts": {
+   "scripts": {
-    "build": "tsc --outDir ./lib --rootDir ./src",
+      "prebuild": "npm i @vercel/ncc",
-    "test": "jest",
+      "build": "ncc build src/run.ts -o lib",
-    "test-coverage": "jest --coverage"
+      "test": "jest",
-  },
+      "test-coverage": "jest --coverage",
-  "keywords": [
+      "format": "prettier --write .",
-    "actions",
+      "format-check": "prettier --check ."
-    "node",
+   },
-    "setup"
+   "keywords": [
-  ],
+      "actions",
-  "author": "GitHub",
+      "node",
-  "license": "MIT",
+      "setup"
-  "dependencies": {
+   ],
-    "@actions/core": "^1.2.6",
+   "author": "GitHub",
-    "@actions/exec": "^1.0.0",
+   "license": "MIT",
-    "@actions/tool-cache": "^1.0.0",
+   "dependencies": {
-    "@kubernetes/client-node": "^0.16.0",
+      "@actions/core": "^1.10.0",
-    "js-yaml": "^3.13.1"
+      "@actions/exec": "^1.0.0",
-  },
+      "@actions/io": "^1.1.2",
-  "devDependencies": {
+      "@kubernetes/client-node": "^0.16.0",
-    "@types/jest": "^25.2.2",
+      "js-yaml": "^4.1.0"
-    "@types/js-yaml": "^4.0.4",
+   },
-    "@types/node": "^12.0.4",
+   "devDependencies": {
-    "jest": "^26.6.3",
+      "@types/jest": "^28.1.2",
-    "ts-jest": "^25.5.1",
+      "@types/js-yaml": "^4.0.4",
-    "typescript": "3.9.2"
+      "@types/node": "^16.0.0",
-  }
+      "@vercel/ncc": "^0.34.0",
-}
+      "jest": "^28.1.1",
+      "prettier": "2.7.1",
+      "ts-jest": "^28.0.5",
+      "typescript": "4.7.4"
+   }
+}

src/action.test.ts

@@ -0,0 +1,30 @@
+import {getRequiredInputError} from '../tests/util'
+import {run} from './action'
+import fs from 'fs'
+import * as utils from './utils'
+
+describe('Run', () => {
+   it('throws error without cluster type', async () => {
+      await expect(run()).rejects.toThrow(getRequiredInputError('cluster-type'))
+   })
+
+   it('writes kubeconfig and sets context', async () => {
+      const kubeconfig = 'kubeconfig'
+
+      process.env['INPUT_CLUSTER-TYPE'] = 'default'
+      process.env['RUNNER_TEMP'] = '/sample/path'
+
+      jest
+         .spyOn(utils, 'getKubeconfig')
+         .mockImplementation(async () => kubeconfig)
+      jest.spyOn(fs, 'writeFileSync').mockImplementation(() => {})
+      jest.spyOn(fs, 'chmodSync').mockImplementation(() => {})
+      jest.spyOn(utils, 'setContext').mockImplementation(() => kubeconfig)
+
+      expect(await run())
+      expect(utils.getKubeconfig).toHaveBeenCalled()
+      expect(fs.writeFileSync).toHaveBeenCalled()
+      expect(fs.chmodSync).toHaveBeenCalled()
+      expect(utils.setContext).toHaveBeenCalled()
+   })
+})

src/action.ts

@@ -0,0 +1,33 @@
+import * as core from '@actions/core'
+import * as path from 'path'
+import * as fs from 'fs'
+import {Cluster, parseCluster} from './types/cluster'
+import {setContext, getKubeconfig} from './utils'
+
+/**
+ * Sets the Kubernetes context based on supplied action inputs
+ */
+export async function run() {
+   // get inputs
+   const clusterType: Cluster | undefined = parseCluster(
+      core.getInput('cluster-type', {
+         required: true
+      })
+   )
+   const runnerTempDirectory: string = process.env['RUNNER_TEMP']
+   const kubeconfigPath: string = path.join(
+      runnerTempDirectory,
+      `kubeconfig_${Date.now()}`
+   )
+
+   // get kubeconfig and update context
+   const kubeconfig: string = await getKubeconfig(clusterType)
+   const kubeconfigWithContext: string = setContext(kubeconfig)
+
+   // output kubeconfig
+   core.debug(`Writing kubeconfig contents to ${kubeconfigPath}`)
+   fs.writeFileSync(kubeconfigPath, kubeconfigWithContext)
+   fs.chmodSync(kubeconfigPath, '600')
+   core.debug('Setting KUBECONFIG environment variable')
+   core.exportVariable('KUBECONFIG', kubeconfigPath)
+}

src/kubeconfigs/arc.test.ts

@@ -1,103 +1,103 @@
-import * as actions from "@actions/exec";
+import * as actions from '@actions/exec'
-import * as io from "@actions/io";
+import * as io from '@actions/io'
-import { getRequiredInputError } from "../../tests/util";
+import {getRequiredInputError} from '../../tests/util'
-import { getArcKubeconfig, KUBECONFIG_LOCATION } from "./arc";
+import {getArcKubeconfig, KUBECONFIG_LOCATION} from './arc'
-import * as az from "./azCommands";
+import * as az from './azCommands'
 
-describe("Arc kubeconfig", () => {
+describe('Arc kubeconfig', () => {
-  test("it throws error without resource group", async () => {
+   test('it throws error without resource group', async () => {
-    await expect(getArcKubeconfig()).rejects.toThrow(
-      getRequiredInputError("resource-group")
-    );
-  });
-
-  test("it throws error without cluster name", async () => {
-    process.env["INPUT_RESOURCE-GROUP"] = "group";
-    await expect(getArcKubeconfig()).rejects.toThrow(
-      getRequiredInputError("cluster-name")
-    );
-  });
-
-  describe("runs az cli commands", () => {
-    const group = "group";
-    const name = "name";
-    const path = "path";
-    const kubeconfig = "kubeconfig";
-
-    beforeEach(() => {
-      process.env["INPUT_RESOURCE-GROUP"] = group;
-      process.env["INPUT_CLUSTER-NAME"] = name;
-
-      jest.spyOn(io, "which").mockImplementation(async () => path);
-      jest.spyOn(az, "runAzCliCommand").mockImplementation(async () => {});
-      jest
-        .spyOn(az, "runAzKubeconfigCommandBlocking")
-        .mockImplementation(async () => kubeconfig);
-    });
-
-    it("throws an error without method", async () => {
       await expect(getArcKubeconfig()).rejects.toThrow(
-        getRequiredInputError("method")
+         getRequiredInputError('resource-group')
-      );
+      )
-    });
+   })
+
+   test('it throws error without cluster name', async () => {
+      process.env['INPUT_RESOURCE-GROUP'] = 'group'
+      await expect(getArcKubeconfig()).rejects.toThrow(
+         getRequiredInputError('cluster-name')
+      )
+   })
+
+   describe('runs az cli commands', () => {
+      const group = 'group'
+      const name = 'name'
+      const path = 'path'
+      const kubeconfig = 'kubeconfig'
 
-    describe("service account method", () => {
       beforeEach(() => {
-        process.env["INPUT_METHOD"] = "service-account";
+         process.env['INPUT_RESOURCE-GROUP'] = group
-      });
+         process.env['INPUT_CLUSTER-NAME'] = name
 
-      it("throws an error without token", async () => {
+         jest.spyOn(io, 'which').mockImplementation(async () => path)
-        await expect(getArcKubeconfig()).rejects.toThrow(
+         jest.spyOn(az, 'runAzCliCommand').mockImplementation(async () => {})
-          getRequiredInputError("token")
+         jest
-        );
+            .spyOn(az, 'runAzKubeconfigCommandBlocking')
-      });
+            .mockImplementation(async () => kubeconfig)
+      })
 
-      it("gets the kubeconfig", async () => {
+      it('throws an error without method', async () => {
-        const token = "token";
+         await expect(getArcKubeconfig()).rejects.toThrow(
-        process.env["INPUT_TOKEN"] = token;
+            getRequiredInputError('method')
+         )
+      })
 
-        expect(await getArcKubeconfig()).toBe(kubeconfig);
+      describe('service account method', () => {
-        expect(az.runAzKubeconfigCommandBlocking).toHaveBeenCalledWith(
+         beforeEach(() => {
-          path,
+            process.env['INPUT_METHOD'] = 'service-account'
-          [
+         })
-            "connectedk8s",
-            "proxy",
-            "-n",
-            name,
-            "-g",
-            group,
-            "--token",
-            token,
-            "-f",
-            KUBECONFIG_LOCATION,
-          ],
-          KUBECONFIG_LOCATION
-        );
-      });
-    });
 
-    describe("service principal method", () => {
+         it('throws an error without token', async () => {
-      beforeEach(() => {
+            await expect(getArcKubeconfig()).rejects.toThrow(
-        process.env["INPUT_METHOD"] = "service-principal";
+               getRequiredInputError('token')
-      });
+            )
+         })
 
-      it("gets the kubeconfig", async () => {
+         it('gets the kubeconfig', async () => {
-        expect(await getArcKubeconfig()).toBe(kubeconfig);
+            const token = 'token'
-        expect(az.runAzKubeconfigCommandBlocking).toHaveBeenCalledWith(
+            process.env['INPUT_TOKEN'] = token
-          path,
+
-          [
+            expect(await getArcKubeconfig()).toBe(kubeconfig)
-            "connectedk8s",
+            expect(az.runAzKubeconfigCommandBlocking).toHaveBeenCalledWith(
-            "proxy",
+               path,
-            "-n",
+               [
-            name,
+                  'connectedk8s',
-            "-g",
+                  'proxy',
-            group,
+                  '-n',
-            "-f",
+                  name,
-            KUBECONFIG_LOCATION,
+                  '-g',
-          ],
+                  group,
-          KUBECONFIG_LOCATION
+                  '--token',
-        );
+                  token,
-      });
+                  '-f',
-    });
+                  KUBECONFIG_LOCATION
-  });
+               ],
-});
+               KUBECONFIG_LOCATION
+            )
+         })
+      })
+
+      describe('service principal method', () => {
+         beforeEach(() => {
+            process.env['INPUT_METHOD'] = 'service-principal'
+         })
+
+         it('gets the kubeconfig', async () => {
+            expect(await getArcKubeconfig()).toBe(kubeconfig)
+            expect(az.runAzKubeconfigCommandBlocking).toHaveBeenCalledWith(
+               path,
+               [
+                  'connectedk8s',
+                  'proxy',
+                  '-n',
+                  name,
+                  '-g',
+                  group,
+                  '-f',
+                  KUBECONFIG_LOCATION
+               ],
+               KUBECONFIG_LOCATION
+            )
+         })
+      })
+   })
+})

src/kubeconfigs/arc.ts

@@ -1,68 +1,68 @@
-import * as core from "@actions/core";
+import * as core from '@actions/core'
-import * as io from "@actions/io";
+import * as io from '@actions/io'
-import { Method, parseMethod } from "../types/method";
+import {Method, parseMethod} from '../types/method'
-import * as path from "path";
+import * as path from 'path'
-import { runAzCliCommand, runAzKubeconfigCommandBlocking } from "./azCommands";
+import {runAzCliCommand, runAzKubeconfigCommandBlocking} from './azCommands'
 
-const RUNNER_TEMP: string = process.env["RUNNER_TEMP"] || "";
+const RUNNER_TEMP: string = process.env['RUNNER_TEMP'] || ''
 export const KUBECONFIG_LOCATION: string = path.join(
-  RUNNER_TEMP,
+   RUNNER_TEMP,
-  `arc_kubeconfig_${Date.now()}`
+   `arc_kubeconfig_${Date.now()}`
-);
+)
 
 /**
  * Gets the kubeconfig based on provided method for an Arc Kubernetes cluster
  * @returns The kubeconfig wrapped in a Promise
  */
 export async function getArcKubeconfig(): Promise<string> {
-  const resourceGroupName = core.getInput("resource-group", { required: true });
+   const resourceGroupName = core.getInput('resource-group', {required: true})
-  const clusterName = core.getInput("cluster-name", { required: true });
+   const clusterName = core.getInput('cluster-name', {required: true})
-  const azPath = await io.which("az", true);
+   const azPath = await io.which('az', true)
 
-  const method: Method | undefined = parseMethod(
+   const method: Method | undefined = parseMethod(
-    core.getInput("method", { required: true })
+      core.getInput('method', {required: true})
-  );
+   )
 
-  await runAzCliCommand(azPath, ["extension", "add", "-n", "connectedk8s"]);
+   await runAzCliCommand(azPath, ['extension', 'add', '-n', 'connectedk8s'])
 
-  switch (method) {
+   switch (method) {
-    case Method.SERVICE_ACCOUNT:
+      case Method.SERVICE_ACCOUNT:
-      const saToken = core.getInput("token", { required: true });
+         const saToken = core.getInput('token', {required: true})
-      return await runAzKubeconfigCommandBlocking(
+         return await runAzKubeconfigCommandBlocking(
-        azPath,
+            azPath,
-        [
+            [
-          "connectedk8s",
+               'connectedk8s',
-          "proxy",
+               'proxy',
-          "-n",
+               '-n',
-          clusterName,
+               clusterName,
-          "-g",
+               '-g',
-          resourceGroupName,
+               resourceGroupName,
-          "--token",
+               '--token',
-          saToken,
+               saToken,
-          "-f",
+               '-f',
-          KUBECONFIG_LOCATION,
+               KUBECONFIG_LOCATION
-        ],
+            ],
-        KUBECONFIG_LOCATION
+            KUBECONFIG_LOCATION
-      );
+         )
-    case Method.SERVICE_PRINCIPAL:
+      case Method.SERVICE_PRINCIPAL:
-      return await runAzKubeconfigCommandBlocking(
+         return await runAzKubeconfigCommandBlocking(
-        azPath,
+            azPath,
-        [
+            [
-          "connectedk8s",
+               'connectedk8s',
-          "proxy",
+               'proxy',
-          "-n",
+               '-n',
-          clusterName,
+               clusterName,
-          "-g",
+               '-g',
-          resourceGroupName,
+               resourceGroupName,
-          "-f",
+               '-f',
-          KUBECONFIG_LOCATION,
+               KUBECONFIG_LOCATION
-        ],
+            ],
-        KUBECONFIG_LOCATION
+            KUBECONFIG_LOCATION
-      );
+         )
-    case undefined:
+      case undefined:
-      core.warning("Defaulting to kubeconfig method");
+         core.warning('Defaulting to kubeconfig method')
-    case Method.KUBECONFIG:
+      case Method.KUBECONFIG:
-    default:
+      default:
-      throw Error("Kubeconfig method not supported for Arc cluster");
+         throw Error('Kubeconfig method not supported for Arc cluster')
-  }
+   }
 }

src/kubeconfigs/azCommands.test.ts

@@ -1,14 +1,14 @@
-import * as actions from "@actions/exec";
+import * as actions from '@actions/exec'
-import { runAzCliCommand } from "./azCommands";
+import {runAzCliCommand} from './azCommands'
 
-describe("Az commands", () => {
+describe('Az commands', () => {
-  test("it runs an az cli command", async () => {
+   test('it runs an az cli command', async () => {
-    const path = "path";
+      const path = 'path'
-    const args = ["args"];
+      const args = ['args']
 
-    jest.spyOn(actions, "exec").mockImplementation(async () => 0);
+      jest.spyOn(actions, 'exec').mockImplementation(async () => 0)
 
-    expect(await runAzCliCommand(path, args));
+      expect(await runAzCliCommand(path, args))
-    expect(actions.exec).toBeCalledWith(path, args, {});
+      expect(actions.exec).toBeCalledWith(path, args, {})
-  });
+   })
-});
+})

src/kubeconfigs/azCommands.ts

@@ -1,9 +1,9 @@
-import * as fs from "fs";
+import * as fs from 'fs'
-import { ExecOptions } from "@actions/exec/lib/interfaces";
+import {ExecOptions} from '@actions/exec/lib/interfaces'
-import { exec } from "@actions/exec";
+import {exec} from '@actions/exec'
-import { spawn } from "child_process";
+import {spawn} from 'child_process'
 
-const AZ_TIMEOUT_SECONDS: number = 120;
+const AZ_TIMEOUT_SECONDS: number = 120
 
 /**
  * Executes an az cli command
@@ -12,11 +12,11 @@ const AZ_TIMEOUT_SECONDS: number = 120;
  * @param options Optional options for the command execution
  */
 export async function runAzCliCommand(
-  azPath: string,
+   azPath: string,
-  args: string[],
+   args: string[],
-  options: ExecOptions = {}
+   options: ExecOptions = {}
 ) {
-  await exec(azPath, args, options);
+   await exec(azPath, args, options)
 }
 /**
  * Executes an az cli command that will set the kubeconfig
@@ -26,19 +26,19 @@ export async function runAzCliCommand(
  * @returns The contents of the kubeconfig
  */
 export async function runAzKubeconfigCommandBlocking(
-  azPath: string,
+   azPath: string,
-  args: string[],
+   args: string[],
-  kubeconfigPath: string
+   kubeconfigPath: string
 ): Promise<string> {
-  const proc = spawn(azPath, args, {
+   const proc = spawn(azPath, args, {
-    detached: true,
+      detached: true,
-    stdio: "ignore",
+      stdio: 'ignore'
-  });
+   })
-  proc.unref();
+   proc.unref()
 
-  await sleep(AZ_TIMEOUT_SECONDS);
+   await sleep(AZ_TIMEOUT_SECONDS)
-  return fs.readFileSync(kubeconfigPath).toString();
+   return fs.readFileSync(kubeconfigPath).toString()
 }
 
 const sleep = (seconds: number) =>
-  new Promise((resolve) => setTimeout(resolve, seconds * 1000));
+   new Promise((resolve) => setTimeout(resolve, seconds * 1000))

src/kubeconfigs/default.test.ts

@@ -1,128 +1,149 @@
-import * as fs from "fs";
+import * as fs from 'fs'
-import { getRequiredInputError } from "../../tests/util";
+import {getRequiredInputError} from '../../tests/util'
-import { createKubeconfig, getDefaultKubeconfig } from "./default";
+import {createKubeconfig, getDefaultKubeconfig} from './default'
 
-describe("Default kubeconfig", () => {
+describe('Default kubeconfig', () => {
-  test("it creates a kubeconfig with proper format", () => {
+   test('it creates a kubeconfig with proper format', () => {
-    const certAuth = "certAuth";
+      const certAuth = 'certAuth'
-    const token = "token";
+      const token = 'token'
-    const clusterUrl = "clusterUrl";
+      const clusterUrl = 'clusterUrl'
 
-    const kc = createKubeconfig(certAuth, token, clusterUrl);
+      const kc = createKubeconfig(certAuth, token, clusterUrl)
-    const expected = JSON.stringify({
+      const expected = JSON.stringify({
-      apiVersion: "v1",
+         apiVersion: 'v1',
-      kind: "Config",
+         kind: 'Config',
-      clusters: [
+         clusters: [
-        {
+            {
-          cluster: {
+               name: 'default',
-            "certificate-authority-data": certAuth,
+               cluster: {
-            server: clusterUrl,
+                  server: clusterUrl,
-          },
+                  'certificate-authority-data': certAuth,
-        },
+                  'insecure-skip-tls-verify': false
-      ],
+               }
-      users: [
+            }
-        {
+         ],
-          user: {
+         users: [{name: 'default-user', user: {token}}],
-            token: token,
+         contexts: [
-          },
+            {
-        },
+               name: 'loaded-context',
-      ],
+               context: {
-    });
+                  cluster: 'default',
+                  user: 'default-user',
+                  name: 'loaded-context'
+               }
+            }
+         ],
+         preferences: {},
+         'current-context': 'loaded-context'
+      })
+      expect(kc).toBe(expected)
+   })
 
-    expect(kc).toBe(expected);
+   test('it throws error without method', () => {
-  });
-
-  test("it throws error without method", () => {
-    expect(() => getDefaultKubeconfig()).toThrow(
-      getRequiredInputError("method")
-    );
-  });
-
-  describe("default method", () => {
-    beforeEach(() => {
-      process.env["INPUT_METHOD"] = "default";
-    });
-
-    test("it throws error without kubeconfig", () => {
       expect(() => getDefaultKubeconfig()).toThrow(
-        getRequiredInputError("kubeconfig")
+         getRequiredInputError('method')
-      );
+      )
-    });
+   })
 
-    test("it gets default config through kubeconfig input", () => {
+   describe('default method', () => {
-      const kc = "example kc";
+      beforeEach(() => {
-      process.env["INPUT_KUBECONFIG"] = kc;
+         process.env['INPUT_METHOD'] = 'default'
+      })
 
-      expect(getDefaultKubeconfig()).toBe(kc);
+      test('it throws error without kubeconfig', () => {
-    });
+         expect(() => getDefaultKubeconfig()).toThrow(
-  });
+            getRequiredInputError('kubeconfig')
+         )
+      })
 
-  test("it defaults to default method", () => {
+      test('it gets default config through kubeconfig input', () => {
-    process.env["INPUT_METHOD"] = "unknown";
+         const kc = 'example kc'
+         process.env['INPUT_KUBECONFIG'] = kc
 
-    const kc = "example kc";
+         expect(getDefaultKubeconfig()).toBe(kc)
-    process.env["INPUT_KUBECONFIG"] = kc;
+      })
+   })
 
-    expect(getDefaultKubeconfig()).toBe(kc);
+   test('it defaults to default method', () => {
-  });
+      process.env['INPUT_METHOD'] = 'unknown'
 
-  test("it defaults to default method from service-principal", () => {
+      const kc = 'example kc'
-    process.env["INPUT_METHOD"] = "service-principal";
+      process.env['INPUT_KUBECONFIG'] = kc
 
-    const kc = "example kc";
+      expect(getDefaultKubeconfig()).toBe(kc)
-    process.env["INPUT_KUBECONFIG"] = kc;
+   })
 
-    expect(getDefaultKubeconfig()).toBe(kc);
+   test('it defaults to default method from service-principal', () => {
-  });
+      process.env['INPUT_METHOD'] = 'service-principal'
 
-  describe("service-account method", () => {
+      const kc = 'example kc'
-    beforeEach(() => {
+      process.env['INPUT_KUBECONFIG'] = kc
-      process.env["INPUT_METHOD"] = "service-account";
-    });
 
-    test("it throws error without cluster url", () => {
+      expect(getDefaultKubeconfig()).toBe(kc)
-      expect(() => getDefaultKubeconfig()).toThrow(
+   })
-        getRequiredInputError("k8s-url")
-      );
-    });
 
-    test("it throws error without k8s secret", () => {
+   describe('service-account method', () => {
-      process.env["INPUT_K8S-URL"] = "url";
+      beforeEach(() => {
+         process.env['INPUT_METHOD'] = 'service-account'
+      })
 
-      expect(() => getDefaultKubeconfig()).toThrow(
+      test('it throws error without cluster url', () => {
-        getRequiredInputError("k8s-secret")
+         expect(() => getDefaultKubeconfig()).toThrow(
-      );
+            getRequiredInputError('k8s-url')
-    });
+         )
+      })
 
-    test("it gets kubeconfig through service-account", () => {
+      test('it throws error without k8s secret', () => {
-      const k8sUrl = "https://testing-dns-4za.hfp.earth.azmk8s.io:443";
+         process.env['INPUT_K8S-URL'] = 'url'
-      const token = "ZXlKaGJHY2lPcUpTVXpJMU5pSX=";
-      const cert = "LS0tLS1CRUdJTiBDRWyUSUZJQ";
-      const k8sSecret = fs.readFileSync("tests/sample-secret.yml").toString();
 
-      process.env["INPUT_K8S-URL"] = k8sUrl;
+         expect(() => getDefaultKubeconfig()).toThrow(
-      process.env["INPUT_K8S-SECRET"] = k8sSecret;
+            getRequiredInputError('k8s-secret')
+         )
+      })
 
-      const expectedConfig = JSON.stringify({
+      test('it gets kubeconfig through service-account', () => {
-        apiVersion: "v1",
+         const k8sUrl = 'https://testing-dns-4za.hfp.earth.azmk8s.io:443'
-        kind: "Config",
+         const token = 'ZXlKaGJHY2lPcUpTVXpJMU5pSX='
-        clusters: [
+         const cert = 'LS0tLS1CRUdJTiBDRWyUSUZJQ'
-          {
+         const k8sSecret = fs.readFileSync('tests/sample-secret.yml').toString()
-            cluster: {
+
-              "certificate-authority-data": cert,
+         process.env['INPUT_K8S-URL'] = k8sUrl
-              server: k8sUrl,
+         process.env['INPUT_K8S-SECRET'] = k8sSecret
-            },
+
-          },
+         const expectedConfig = JSON.stringify({
-        ],
+            apiVersion: 'v1',
-        users: [
+            kind: 'Config',
-          {
+            clusters: [
-            user: {
+               {
-              token: Buffer.from(token, "base64").toString(),
+                  name: 'default',
-            },
+                  cluster: {
-          },
+                     server: k8sUrl,
-        ],
+                     'certificate-authority-data': cert,
-      });
+                     'insecure-skip-tls-verify': false
-      expect(getDefaultKubeconfig()).toBe(expectedConfig);
+                  }
-    });
+               }
-  });
+            ],
-});
+            users: [
+               {
+                  name: 'default-user',
+                  user: {token: Buffer.from(token, 'base64').toString()}
+               }
+            ],
+            contexts: [
+               {
+                  name: 'loaded-context',
+                  context: {
+                     cluster: 'default',
+                     user: 'default-user',
+                     name: 'loaded-context'
+                  }
+               }
+            ],
+            preferences: {},
+            'current-context': 'loaded-context'
+         })
+
+         expect(getDefaultKubeconfig()).toBe(expectedConfig)
+      })
+   })
+})

src/kubeconfigs/default.ts

@@ -1,49 +1,52 @@
-import * as core from "@actions/core";
+import * as core from '@actions/core'
-import * as jsyaml from "js-yaml";
+import * as jsyaml from 'js-yaml'
-import { K8sSecret, parseK8sSecret } from "../types/k8sSecret";
+import {KubeConfig} from '@kubernetes/client-node'
-import { Method, parseMethod } from "../types/method";
+import {K8sSecret, parseK8sSecret} from '../types/k8sSecret'
+import {Method, parseMethod} from '../types/method'
 
 /**
  * Gets the kubeconfig based on provided method for a default Kubernetes cluster
  * @returns The kubeconfig
  */
 export function getDefaultKubeconfig(): string {
-  const method: Method | undefined = parseMethod(
+   const method: Method | undefined = parseMethod(
-    core.getInput("method", { required: true })
+      core.getInput('method', {required: true})
-  );
+   )
 
-  switch (method) {
+   switch (method) {
-    case Method.SERVICE_ACCOUNT: {
+      case Method.SERVICE_ACCOUNT: {
-      const clusterUrl = core.getInput("k8s-url", { required: true });
+         const clusterUrl = core.getInput('k8s-url', {required: true})
-      core.debug(
+         core.debug(
-        "Found clusterUrl. Creating kubeconfig using certificate and token"
+            'Found clusterUrl. Creating kubeconfig using certificate and token'
-      );
+         )
 
-      const k8sSecret: string = core.getInput("k8s-secret", {
+         const k8sSecret: string = core.getInput('k8s-secret', {
-        required: true,
+            required: true
-      });
+         })
-      const parsedK8sSecret: K8sSecret = parseK8sSecret(jsyaml.load(k8sSecret));
+         const parsedK8sSecret: K8sSecret = parseK8sSecret(
-      const certAuth: string = parsedK8sSecret.data["ca.crt"];
+            jsyaml.load(k8sSecret)
-      const token: string = Buffer.from(
+         )
-        parsedK8sSecret.data.token,
+         const certAuth: string = parsedK8sSecret.data['ca.crt']
-        "base64"
+         const token: string = Buffer.from(
-      ).toString();
+            parsedK8sSecret.data.token,
+            'base64'
+         ).toString()
 
-      return createKubeconfig(certAuth, token, clusterUrl);
+         return createKubeconfig(certAuth, token, clusterUrl)
-    }
+      }
-    case Method.SERVICE_PRINCIPAL: {
+      case Method.SERVICE_PRINCIPAL: {
-      core.warning(
+         core.warning(
-        "Service Principal method not supported for default cluster type"
+            'Service Principal method not supported for default cluster type'
-      );
+         )
-    }
+      }
-    case undefined: {
+      case undefined: {
-      core.warning("Defaulting to kubeconfig method");
+         core.warning('Defaulting to kubeconfig method')
-    }
+      }
-    default: {
+      default: {
-      core.debug("Setting context using kubeconfig");
+         core.debug('Setting context using kubeconfig')
-      return core.getInput("kubeconfig", { required: true });
+         return core.getInput('kubeconfig', {required: true})
-    }
+      }
-  }
+   }
 }
 
 /**
@@ -54,29 +57,22 @@ export function getDefaultKubeconfig(): string {
  * @returns The kubeconfig as a string
  */
 export function createKubeconfig(
-  certAuth: string,
+   certAuth: string,
-  token: string,
+   token: string,
-  clusterUrl: string
+   clusterUrl: string
 ): string {
-  const kubeconfig = {
+   const kc = new KubeConfig()
-    apiVersion: "v1",
+   kc.loadFromClusterAndUser(
-    kind: "Config",
-    clusters: [
       {
-        cluster: {
+         name: 'default',
-          "certificate-authority-data": certAuth,
+         server: clusterUrl,
-          server: clusterUrl,
+         caData: certAuth,
-        },
+         skipTLSVerify: false
       },
-    ],
-    users: [
       {
-        user: {
+         name: 'default-user',
-          token: token,
+         token
-        },
+      }
-      },
+   )
-    ],
+   return kc.exportConfig()
-  };
-
-  return JSON.stringify(kubeconfig);
 }

src/run.test.ts

@@ -1,30 +0,0 @@
-import { getRequiredInputError } from "../tests/util";
-import { run } from "./run";
-import fs from "fs";
-import * as utils from "./utils";
-
-describe("Run", () => {
-  it("throws error without cluster type", async () => {
-    await expect(run()).rejects.toThrow(getRequiredInputError("cluster-type"));
-  });
-
-  it("writes kubeconfig and sets context", async () => {
-    const kubeconfig = "kubeconfig";
-
-    process.env["INPUT_CLUSTER-TYPE"] = "default";
-    process.env["RUNNER_TEMP"] = "/sample/path";
-
-    jest
-      .spyOn(utils, "getKubeconfig")
-      .mockImplementation(async () => kubeconfig);
-    jest.spyOn(fs, "writeFileSync").mockImplementation(() => {});
-    jest.spyOn(fs, "chmodSync").mockImplementation(() => {});
-    jest.spyOn(utils, "setContext").mockImplementation(() => kubeconfig);
-
-    expect(await run());
-    expect(utils.getKubeconfig).toHaveBeenCalled();
-    expect(fs.writeFileSync).toHaveBeenCalled();
-    expect(fs.chmodSync).toHaveBeenCalled();
-    expect(utils.setContext).toHaveBeenCalled();
-  });
-});

src/run.ts

@@ -1,36 +1,5 @@
-import * as core from "@actions/core";
+import {run} from './action'
-import * as path from "path";
+import * as core from '@actions/core'
-import * as fs from "fs";
-import { Cluster, parseCluster } from "./types/cluster";
-import { setContext, getKubeconfig } from "./utils";
-
-/**
- * Sets the Kubernetes context based on supplied action inputs
- */
-export async function run() {
-  // get inputs
-  const clusterType: Cluster | undefined = parseCluster(
-    core.getInput("cluster-type", {
-      required: true,
-    })
-  );
-  const runnerTempDirectory: string = process.env["RUNNER_TEMP"];
-  const kubeconfigPath: string = path.join(
-    runnerTempDirectory,
-    `kubeconfig_${Date.now()}`
-  );
-
-  // get kubeconfig and update context
-  const kubeconfig: string = await getKubeconfig(clusterType);
-  const kubeconfigWithContext: string = setContext(kubeconfig);
-
-  // output kubeconfig
-  core.debug(`Writing kubeconfig contents to ${kubeconfigPath}`);
-  fs.writeFileSync(kubeconfigPath, kubeconfigWithContext);
-  fs.chmodSync(kubeconfigPath, "600");
-  core.debug("Setting KUBECONFIG environment variable");
-  core.exportVariable("KUBECONFIG", kubeconfigPath);
-}
 
 // Run the application
-run().catch(core.setFailed);
+run().catch(core.setFailed)

src/types/cluster.test.ts

@@ -1,24 +1,24 @@
-import { Cluster, parseCluster } from "./cluster";
+import {Cluster, parseCluster} from './cluster'
 
-describe("Cluster type", () => {
+describe('Cluster type', () => {
-  test("it has required values", () => {
+   test('it has required values', () => {
-    const vals = <any>Object.values(Cluster);
+      const vals = <any>Object.values(Cluster)
-    expect(vals.includes("arc")).toBe(true);
+      expect(vals.includes('arc')).toBe(true)
-    expect(vals.includes("generic")).toBe(true);
+      expect(vals.includes('generic')).toBe(true)
-  });
+   })
 
-  test("it can parse valid values from a string", () => {
+   test('it can parse valid values from a string', () => {
-    expect(parseCluster("arc")).toBe(Cluster.ARC);
+      expect(parseCluster('arc')).toBe(Cluster.ARC)
-    expect(parseCluster("Arc")).toBe(Cluster.ARC);
+      expect(parseCluster('Arc')).toBe(Cluster.ARC)
-    expect(parseCluster("ARC")).toBe(Cluster.ARC);
+      expect(parseCluster('ARC')).toBe(Cluster.ARC)
 
-    expect(parseCluster("generic")).toBe(Cluster.GENERIC);
+      expect(parseCluster('generic')).toBe(Cluster.GENERIC)
-    expect(parseCluster("Generic")).toBe(Cluster.GENERIC);
+      expect(parseCluster('Generic')).toBe(Cluster.GENERIC)
-    expect(parseCluster("GENERIC")).toBe(Cluster.GENERIC);
+      expect(parseCluster('GENERIC')).toBe(Cluster.GENERIC)
-  });
+   })
 
-  test("it will return undefined if it can't parse values from a string", () => {
+   test("it will return undefined if it can't parse values from a string", () => {
-    expect(parseCluster("invalid")).toBe(undefined);
+      expect(parseCluster('invalid')).toBe(undefined)
-    expect(parseCluster("unsupportedType")).toBe(undefined);
+      expect(parseCluster('unsupportedType')).toBe(undefined)
-  });
+   })
-});
+})

src/types/cluster.ts

@@ -1,6 +1,6 @@
 export enum Cluster {
-  ARC = "arc",
+   ARC = 'arc',
-  GENERIC = "generic",
+   GENERIC = 'generic'
 }
 
 /**
@@ -9,8 +9,8 @@ export enum Cluster {
  * @returns The Cluster enum or undefined if it can't be parsed
  */
 export const parseCluster = (str: string): Cluster | undefined =>
-  Cluster[
+   Cluster[
-    Object.keys(Cluster).filter(
+      Object.keys(Cluster).filter(
-      (k) => Cluster[k].toString().toLowerCase() === str.toLowerCase()
+         (k) => Cluster[k].toString().toLowerCase() === str.toLowerCase()
-    )[0] as keyof typeof Cluster
+      )[0] as keyof typeof Cluster
-  ];
+   ]

src/types/k8sSecret.test.ts

@@ -1,33 +1,33 @@
-import { parseK8sSecret, K8sSecret } from "./k8sSecret";
+import {parseK8sSecret, K8sSecret} from './k8sSecret'
 
-describe("K8sSecret type", () => {
+describe('K8sSecret type', () => {
-  describe("Parsing from any", () => {
+   describe('Parsing from any', () => {
-    test("it returns a type guarded secret", () => {
+      test('it returns a type guarded secret', () => {
-      const secret = { data: { token: "token", "ca.crt": "cert" } };
+         const secret = {data: {token: 'token', 'ca.crt': 'cert'}}
-      expect(() => parseK8sSecret(secret)).not.toThrow();
+         expect(() => parseK8sSecret(secret)).not.toThrow()
-    });
+      })
 
-    test("it throws an error when secret not provided", () => {
+      test('it throws an error when secret not provided', () => {
-      expect(() => parseK8sSecret(undefined)).toThrow();
+         expect(() => parseK8sSecret(undefined)).toThrow()
-    });
+      })
 
-    test("it throws an error when there is no data field", () => {
+      test('it throws an error when there is no data field', () => {
-      const secret = {};
+         const secret = {}
-      expect(() => parseK8sSecret(secret)).toThrow();
+         expect(() => parseK8sSecret(secret)).toThrow()
-    });
+      })
 
-    test("it throws an error when there is no token", () => {
+      test('it throws an error when there is no token', () => {
-      const secret = {
+         const secret = {
-        data: {
+            data: {
-          "ca.crt": "cert",
+               'ca.crt': 'cert'
-        },
+            }
-      };
+         }
-      expect(() => parseK8sSecret(secret)).toThrow();
+         expect(() => parseK8sSecret(secret)).toThrow()
-    });
+      })
 
-    test("it throws an error when there is no ca.crt field", () => {
+      test('it throws an error when there is no ca.crt field', () => {
-      const secret = { data: { token: "token" } };
+         const secret = {data: {token: 'token'}}
-      expect(() => parseK8sSecret(secret)).toThrow();
+         expect(() => parseK8sSecret(secret)).toThrow()
-    });
+      })
-  });
+   })
-});
+})

src/types/k8sSecret.ts

@@ -1,10 +1,10 @@
-import * as util from "util";
+import * as util from 'util'
 
 export interface K8sSecret {
-  data: {
+   data: {
-    token: string;
+      token: string
-    "ca.crt": string;
+      'ca.crt': string
-  };
+   }
 }
 
 /**
@@ -13,13 +13,13 @@ export interface K8sSecret {
  * @returns A type guarded K8sSecret
  */
 export function parseK8sSecret(secret: any): K8sSecret {
-  if (!secret) throw Error("K8s secret yaml is invalid");
+   if (!secret) throw Error('K8s secret yaml is invalid')
-  if (!secret.data) throw k8sSecretMissingFieldError("data");
+   if (!secret.data) throw k8sSecretMissingFieldError('data')
-  if (!secret.data.token) throw k8sSecretMissingFieldError("token");
+   if (!secret.data.token) throw k8sSecretMissingFieldError('token')
-  if (!secret.data["ca.crt"]) throw k8sSecretMissingFieldError("ca.crt");
+   if (!secret.data['ca.crt']) throw k8sSecretMissingFieldError('ca.crt')
 
-  return secret as K8sSecret;
+   return secret as K8sSecret
 }
 
 const k8sSecretMissingFieldError = (field: string): Error =>
-  Error(util.format("K8s secret yaml does not contain %s field", field));
+   Error(util.format('K8s secret yaml does not contain %s field', field))

src/types/method.test.ts

@@ -1,29 +1,29 @@
-import { Method, parseMethod } from "./method";
+import {Method, parseMethod} from './method'
 
-describe("Method type", () => {
+describe('Method type', () => {
-  test("it has required values", () => {
+   test('it has required values', () => {
-    const vals = <any>Object.values(Method);
+      const vals = <any>Object.values(Method)
-    expect(vals.includes("kubeconfig")).toBe(true);
+      expect(vals.includes('kubeconfig')).toBe(true)
-    expect(vals.includes("service-account")).toBe(true);
+      expect(vals.includes('service-account')).toBe(true)
-    expect(vals.includes("service-principal")).toBe(true);
+      expect(vals.includes('service-principal')).toBe(true)
-  });
+   })
 
-  test("it can parse valid values from a string", () => {
+   test('it can parse valid values from a string', () => {
-    expect(parseMethod("kubeconfig")).toBe(Method.KUBECONFIG);
+      expect(parseMethod('kubeconfig')).toBe(Method.KUBECONFIG)
-    expect(parseMethod("Kubeconfig")).toBe(Method.KUBECONFIG);
+      expect(parseMethod('Kubeconfig')).toBe(Method.KUBECONFIG)
-    expect(parseMethod("KUBECONFIG")).toBe(Method.KUBECONFIG);
+      expect(parseMethod('KUBECONFIG')).toBe(Method.KUBECONFIG)
 
-    expect(parseMethod("service-account")).toBe(Method.SERVICE_ACCOUNT);
+      expect(parseMethod('service-account')).toBe(Method.SERVICE_ACCOUNT)
-    expect(parseMethod("Service-Account")).toBe(Method.SERVICE_ACCOUNT);
+      expect(parseMethod('Service-Account')).toBe(Method.SERVICE_ACCOUNT)
-    expect(parseMethod("SERVICE-ACCOUNT")).toBe(Method.SERVICE_ACCOUNT);
+      expect(parseMethod('SERVICE-ACCOUNT')).toBe(Method.SERVICE_ACCOUNT)
 
-    expect(parseMethod("service-principal")).toBe(Method.SERVICE_PRINCIPAL);
+      expect(parseMethod('service-principal')).toBe(Method.SERVICE_PRINCIPAL)
-    expect(parseMethod("Service-Principal")).toBe(Method.SERVICE_PRINCIPAL);
+      expect(parseMethod('Service-Principal')).toBe(Method.SERVICE_PRINCIPAL)
-    expect(parseMethod("SERVICE-PRINCIPAL")).toBe(Method.SERVICE_PRINCIPAL);
+      expect(parseMethod('SERVICE-PRINCIPAL')).toBe(Method.SERVICE_PRINCIPAL)
-  });
+   })
 
-  test("it will return undefined if it can't parse values from a string", () => {
+   test("it will return undefined if it can't parse values from a string", () => {
-    expect(parseMethod("invalid")).toBe(undefined);
+      expect(parseMethod('invalid')).toBe(undefined)
-    expect(parseMethod("unsupportedType")).toBe(undefined);
+      expect(parseMethod('unsupportedType')).toBe(undefined)
-  });
+   })
-});
+})

src/types/method.ts

@@ -1,7 +1,7 @@
 export enum Method {
-  KUBECONFIG = "kubeconfig",
+   KUBECONFIG = 'kubeconfig',
-  SERVICE_ACCOUNT = "service-account",
+   SERVICE_ACCOUNT = 'service-account',
-  SERVICE_PRINCIPAL = "service-principal",
+   SERVICE_PRINCIPAL = 'service-principal'
 }
 
 /**
@@ -10,8 +10,8 @@ export enum Method {
  * @returns The Method enum or undefined if it can't be parsed
  */
 export const parseMethod = (str: string): Method | undefined =>
-  Method[
+   Method[
-    Object.keys(Method).filter(
+      Object.keys(Method).filter(
-      (k) => Method[k].toString().toLowerCase() === str.toLowerCase()
+         (k) => Method[k].toString().toLowerCase() === str.toLowerCase()
-    )[0] as keyof typeof Method
+      )[0] as keyof typeof Method
-  ];
+   ]

src/utils.test.ts

@@ -1,47 +1,47 @@
-import fs from "fs";
+import fs from 'fs'
-import * as arc from "./kubeconfigs/arc";
+import * as arc from './kubeconfigs/arc'
-import * as def from "./kubeconfigs/default";
+import * as def from './kubeconfigs/default'
-import { Cluster } from "./types/cluster";
+import {Cluster} from './types/cluster'
-import { getKubeconfig, setContext } from "./utils";
+import {getKubeconfig, setContext} from './utils'
 
-describe("Utils", () => {
+describe('Utils', () => {
-  describe("get kubeconfig", () => {
+   describe('get kubeconfig', () => {
-    test("it gets arc kubeconfig when type is arc", async () => {
+      test('it gets arc kubeconfig when type is arc', async () => {
-      const arcKubeconfig = "arckubeconfig";
+         const arcKubeconfig = 'arckubeconfig'
-      jest
+         jest
-        .spyOn(arc, "getArcKubeconfig")
+            .spyOn(arc, 'getArcKubeconfig')
-        .mockImplementation(async () => arcKubeconfig);
+            .mockImplementation(async () => arcKubeconfig)
 
-      expect(await getKubeconfig(Cluster.ARC)).toBe(arcKubeconfig);
+         expect(await getKubeconfig(Cluster.ARC)).toBe(arcKubeconfig)
-    });
+      })
 
-    test("it defaults to default kubeconfig", async () => {
+      test('it defaults to default kubeconfig', async () => {
-      const defaultKubeconfig = "arckubeconfig";
+         const defaultKubeconfig = 'arckubeconfig'
-      jest
+         jest
-        .spyOn(def, "getDefaultKubeconfig")
+            .spyOn(def, 'getDefaultKubeconfig')
-        .mockImplementation(() => defaultKubeconfig);
+            .mockImplementation(() => defaultKubeconfig)
 
-      expect(await getKubeconfig(undefined)).toBe(defaultKubeconfig);
+         expect(await getKubeconfig(undefined)).toBe(defaultKubeconfig)
-      expect(await getKubeconfig(Cluster.GENERIC)).toBe(defaultKubeconfig);
+         expect(await getKubeconfig(Cluster.GENERIC)).toBe(defaultKubeconfig)
-    });
+      })
-  });
+   })
 
-  describe("set context", () => {
+   describe('set context', () => {
-    const kc = fs.readFileSync("tests/sample-kubeconfig.yml").toString();
+      const kc = fs.readFileSync('tests/sample-kubeconfig.yml').toString()
 
-    test("it doesn't change kubeconfig without context", () => {
+      test("it doesn't change kubeconfig without context", () => {
-      expect(setContext(kc)).toBe(kc);
+         expect(setContext(kc)).toBe(kc)
-    });
+      })
 
-    test("it writes the context to the kubeconfig", () => {
+      test('it writes the context to the kubeconfig', () => {
-      process.env["INPUT_CONTEXT"] = "example";
+         process.env['INPUT_CONTEXT'] = 'example'
 
-      const received = JSON.parse(setContext(kc));
+         const received = JSON.parse(setContext(kc))
-      const expectedKc = JSON.parse(
+         const expectedKc = JSON.parse(
-        fs.readFileSync("tests/expected-kubeconfig.json").toString()
+            fs.readFileSync('tests/expected-kubeconfig.json').toString()
-      );
+         )
 
-      expect(received).toMatchObject(expectedKc);
+         expect(received).toMatchObject(expectedKc)
-    });
+      })
-  });
+   })
-});
+})

src/utils.ts

@@ -1,9 +1,9 @@
-import * as core from "@actions/core";
+import * as core from '@actions/core'
-import * as fs from "fs";
+import * as fs from 'fs'
-import { KubeConfig } from "@kubernetes/client-node";
+import {KubeConfig} from '@kubernetes/client-node'
-import { getDefaultKubeconfig } from "./kubeconfigs/default";
+import {getDefaultKubeconfig} from './kubeconfigs/default'
-import { getArcKubeconfig } from "./kubeconfigs/arc";
+import {getArcKubeconfig} from './kubeconfigs/arc'
-import { Cluster } from "./types/cluster";
+import {Cluster} from './types/cluster'
 
 /**
  * Gets the kubeconfig based on Kubernetes cluster type
@@ -11,19 +11,19 @@ import { Cluster } from "./types/cluster";
  * @returns A promise of the kubeconfig
  */
 export async function getKubeconfig(
-  type: Cluster | undefined
+   type: Cluster | undefined
 ): Promise<string> {
-  switch (type) {
+   switch (type) {
-    case Cluster.ARC: {
+      case Cluster.ARC: {
-      return await getArcKubeconfig();
+         return await getArcKubeconfig()
-    }
+      }
-    case undefined: {
+      case undefined: {
-      core.warning("Cluster type not recognized. Defaulting to generic.");
+         core.warning('Cluster type not recognized. Defaulting to generic.')
-    }
+      }
-    default: {
+      default: {
-      return getDefaultKubeconfig();
+         return getDefaultKubeconfig()
-    }
+      }
-  }
+   }
 }
 
 /**
@@ -32,17 +32,17 @@ export async function getKubeconfig(
  * @returns Updated kubeconfig with the context
  */
 export function setContext(kubeconfig: string): string {
-  const context: string = core.getInput("context");
+   const context: string = core.getInput('context')
-  if (!context) {
+   if (!context) {
-    core.debug("Can't set context because context is unspecified.");
+      core.debug("Can't set context because context is unspecified.")
-    return kubeconfig;
+      return kubeconfig
-  }
+   }
 
-  // load current kubeconfig
+   // load current kubeconfig
-  const kc = new KubeConfig();
+   const kc = new KubeConfig()
-  kc.loadFromString(kubeconfig);
+   kc.loadFromString(kubeconfig)
 
-  // update kubeconfig
+   // update kubeconfig
-  kc.setCurrentContext(context);
+   kc.setCurrentContext(context)
-  return kc.exportConfig();
+   return kc.exportConfig()
 }

tests/expected-kubeconfig.json

@@ -1,27 +1,27 @@
 {
-  "apiVersion": "v1",
+   "apiVersion": "v1",
-  "kind": "Config",
+   "kind": "Config",
-  "clusters": [
+   "clusters": [
-    {
+      {
-      "name": "example",
+         "name": "example",
-      "cluster": {
+         "cluster": {
-        "server": "http://example.com:8080",
+            "server": "http://example.com:8080",
-        "insecure-skip-tls-verify": false
+            "insecure-skip-tls-verify": false
+         }
       }
-    }
+   ],
-  ],
+   "users": [],
-  "users": [],
+   "contexts": [
-  "contexts": [
+      {
-    {
+         "name": "example",
-      "name": "example",
+         "context": {
-      "context": {
+            "cluster": "example",
-        "cluster": "example",
+            "name": "example",
-        "name": "example",
+            "user": "example",
-        "user": "example",
+            "namespace": "example"
-        "namespace": "example"
+         }
       }
-    }
+   ],
-  ],
+   "preferences": {},
-  "preferences": {},
+   "current-context": "example"
-  "current-context": "example"
 }

tests/sample-kubeconfig.yml

@@ -1,12 +1,12 @@
 apiVersion: v1
 kind: Config
 clusters:
-  - cluster:
+   - cluster:
-      server: http://example.com:8080
+        server: http://example.com:8080
-    name: example
+     name: example
 contexts:
-  - context:
+   - context:
-      cluster: example
+        cluster: example
-      namespace: example
+        namespace: example
-      user: example
+        user: example
-    name: example
+     name: example

tests/sample-secret.yml

@@ -1,35 +1,35 @@
 apiVersion: v1
 data:
-  ca.crt: LS0tLS1CRUdJTiBDRWyUSUZJQ
+   ca.crt: LS0tLS1CRUdJTiBDRWyUSUZJQ
-  namespace: ZGVmBXUsLdA==
+   namespace: ZGVmBXUsLdA==
-  token: ZXlKaGJHY2lPcUpTVXpJMU5pSX=
+   token: ZXlKaGJHY2lPcUpTVXpJMU5pSX=
 kind: Secret
 metadata:
-  annotations:
+   annotations:
-    kubernetes.io/service-account.name: default
+      kubernetes.io/service-account.name: default
-    kubernetes.io/service-account.uid: e1414a3z-22fe-48d1-ab9e-18e4a5b91c
+      kubernetes.io/service-account.uid: e1414a3z-22fe-48d1-ab9e-18e4a5b91c
-  creationTimestamp: "2020-03-02T06:40:31Z"
+   creationTimestamp: '2020-03-02T06:40:31Z'
-  managedFields:
+   managedFields:
-  - apiVersion: v1
+      - apiVersion: v1
-    fieldsType: FieldsV1
+        fieldsType: FieldsV1
-    fieldsV1:
+        fieldsV1:
-      f:data:
+           f:data:
-        .: {}
+              .: {}
-        f:ca.crt: {}
+              f:ca.crt: {}
-        f:namespace: {}
+              f:namespace: {}
-        f:token: {}
+              f:token: {}
-      f:metadata:
+           f:metadata:
-        f:annotations:
+              f:annotations:
-          .: {}
+                 .: {}
-          f:kubernetes.io/service-account.name: {}
+                 f:kubernetes.io/service-account.name: {}
-          f:kubernetes.io/service-account.uid: {}
+                 f:kubernetes.io/service-account.uid: {}
-      f:type: {}
+           f:type: {}
-    manager: kube-controller-manager
+        manager: kube-controller-manager
-    operation: Update
+        operation: Update
-    time: "2020-03-02T06:40:31Z"
+        time: '2020-03-02T06:40:31Z'
-  name: default-token-bl8ra
+   name: default-token-bl8ra
-  namespace: default
+   namespace: default
-  resourceVersion: "278"
+   resourceVersion: '278'
-  selfLink: /api/v1/namespaces/default/secrets/default-token-bl8ra
+   selfLink: /api/v1/namespaces/default/secrets/default-token-bl8ra
-  uid: e6d8b21b-2e3a-4606-98za-54fb44fdc
+   uid: e6d8b21b-2e3a-4606-98za-54fb44fdc
 type: kubernetes.io/service-account-token

tests/util.ts

@@ -4,4 +4,4 @@
  * @returns Error with explanation message
  */
 export const getRequiredInputError = (inputName) =>
-  Error(`Input required and not supplied: ${inputName}`);
+   Error(`Input required and not supplied: ${inputName}`)

tsconfig.json

@@ -1,8 +1,8 @@
-{
+{
-  "compilerOptions": {
+   "compilerOptions": {
-    "target": "ES6",
+      "target": "ES6",
-    "module": "commonjs",
+      "module": "commonjs",
-    "esModuleInterop": true
+      "esModuleInterop": true
-  },
+   },
-  "exclude": ["node_modules", "tests", "src/**/*.test.ts"]
+   "exclude": ["node_modules", "tests", "src/**/*.test.ts"]
-}
+}