change authentication x-auth-token

takara9 · takara9 · commit ff74a8c9bceb · 2025-08-14T01:25:30.000Z
diff --git a/pkg/monitor-hw/cmd/prom.go b/pkg/monitor-hw/cmd/prom.go
@@ -27,6 +27,7 @@ func startExporter(ruleGetter redfish.RuleGetter, client redfish.Client) error {
 
 	well.Go(func(ctx context.Context) error {
 		for {
+			client.Login(ctx)
 			collector.Update(ctx)
 			select {
 			case <-time.After(time.Duration(opts.interval) * time.Second):
diff --git a/pkg/monitor-hw/cmd/root.go b/pkg/monitor-hw/cmd/root.go
@@ -78,6 +78,7 @@ var rootCmd = &cobra.Command{
 			if err != nil {
 				return err
 			}
+
 			client = cl
 			ruleGetter = func(ctx context.Context) (*redfish.CollectRule, error) {
 				version, err := cl.GetVersion(ctx)
diff --git a/redfish/collector.go b/redfish/collector.go
@@ -16,6 +16,8 @@ const namespace = "hw"
 type Client interface {
 	Traverse(ctx context.Context, rule *CollectRule) Collected
 	GetVersion(ctx context.Context) (string, error)
+	Login(ctx context.Context) error
+	CheckSession(ctx context.Context) error
 }
 
 // NewCollected creates a new Collected instance
diff --git a/redfish/mock.go b/redfish/mock.go
@@ -116,3 +116,11 @@ func (c *mockClient) Traverse(ctx context.Context, rule *CollectRule) Collected
 func (c *mockClient) GetVersion(ctx context.Context) (string, error) {
 	return "1.0.0", nil
 }
+
+func (c *mockClient) Login(ctx context.Context) error {
+	return nil
+}
+
+func (c *mockClient) CheckSession(ctx context.Context) error {
+	return nil
+}
diff --git a/redfish/redfish.go b/redfish/redfish.go
@@ -1,10 +1,12 @@
 package redfish
 
 import (
+	"bytes"
 	"context"
 	"crypto/tls"
 	"encoding/json"
 	"fmt"
+	"io"
 	"net/http"
 	"net/url"
 	"reflect"
@@ -21,6 +23,8 @@ type redfishClient struct {
 	password   string
 	httpClient *http.Client
 	noEscape   bool
+	token      string
+	sessionId  string
 }
 
 // ClientConfig is a set of configurations for redfishClient.
@@ -163,8 +167,9 @@ func (c *redfishClient) newRequest(ctx context.Context, path string) (*http.Requ
 	if err != nil {
 		return nil, err
 	}
-	req.SetBasicAuth(c.user, c.password)
+	req.Header.Set("X-auth-token", c.token)
 	req.Header.Set("Accept", "application/json")
+
 	req = req.WithContext(ctx)
 
 	return req, nil
@@ -194,3 +199,90 @@ func (c *redfishClient) follow(ctx context.Context, parsed *gabs.Container, cl C
 		return
 	}
 }
+
+type BasicAuthentication struct {
+	Username string `json:"UserName"`
+	Password string `json:"Password"`
+}
+
+type ResultAuthentication struct {
+	Id string `json:"Id"`
+}
+
+func (c *redfishClient) Login(ctx context.Context) error {
+	if c.CheckSession(ctx) == nil {
+		return nil
+	}
+
+	bAuth := BasicAuthentication{
+		Username: c.user,
+		Password: c.password,
+	}
+	jsonBody, err := json.Marshal(bAuth)
+	if err != nil {
+		return fmt.Errorf("error marshaling JSON: %s", err)
+	}
+
+	tr := http.DefaultTransport.(*http.Transport).Clone()
+	tr.TLSClientConfig = &tls.Config{
+		InsecureSkipVerify: true, // For self-signed certificates
+	}
+
+	c.httpClient = &http.Client{Transport: tr, Timeout: 5 * time.Second}
+	url := fmt.Sprintf("%s/%s", c.endpoint, "redfish/v1/SessionService/Sessions")
+	req, err := http.NewRequestWithContext(ctx, "POST", url, bytes.NewBuffer(jsonBody))
+	if err != nil {
+		return fmt.Errorf("error making NewRequest: %s", err)
+	}
+	req.Header.Set("Content-Type", "application/json")
+
+	resp, err := c.httpClient.Do(req)
+	if err != nil {
+		return fmt.Errorf("error accessing rest service: %s", err)
+	}
+
+	byteJSON, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return fmt.Errorf("error reading http body: %s", err)
+	}
+
+	var ses ResultAuthentication
+	json.Unmarshal(byteJSON, &ses)
+	c.sessionId = ses.Id
+	c.token = resp.Header.Get("X-auth-token")
+
+	return nil
+}
+
+func (c *redfishClient) CheckSession(ctx context.Context) error {
+	tr := http.DefaultTransport.(*http.Transport).Clone()
+	tr.TLSClientConfig = &tls.Config{
+		InsecureSkipVerify: true, // For self-signed certificates
+	}
+	c.httpClient = &http.Client{Transport: tr, Timeout: 5 * time.Second}
+
+	url := fmt.Sprintf("%s/%s/%s", c.endpoint, "redfish/v1/SessionService/Sessions", c.sessionId)
+	req, err := http.NewRequestWithContext(ctx, "GET", url, nil)
+	if err != nil {
+		return fmt.Errorf("error making NewRequest: %s", err)
+	}
+	req.Header.Set("Content-Type", "application/json")
+	req.Header.Set("X-auth-token", c.token)
+
+	resp, err := c.httpClient.Do(req)
+	if err != nil {
+		return fmt.Errorf("error accessing rest service: %s", err)
+	}
+
+	var ses ResultAuthentication
+	byteJSON, err := io.ReadAll(resp.Body)
+	if err != nil {
+		return fmt.Errorf("error reading http body: %s", err)
+	}
+
+	json.Unmarshal(byteJSON, &ses)
+	if c.sessionId == ses.Id && c.sessionId != "" {
+		return nil
+	}
+	return fmt.Errorf("not exist session")
+}
diff --git a/redfish/stub_client_test.go b/redfish/stub_client_test.go
@@ -89,3 +89,11 @@ func (c *stubClient) Traverse(ctx context.Context, rule *CollectRule) Collected
 func (c *stubClient) GetVersion(ctx context.Context) (string, error) {
 	return "1.0.0", nil
 }
+
+func (c *stubClient) Login(ctx context.Context) error {
+	return nil
+}
+
+func (c *stubClient) CheckSession(ctx context.Context) error {
+	return nil
+}

Original file line number	Diff line number	Diff line change
`@@ -78,6 +78,7 @@ var rootCmd = &cobra.Command{`
`78`	`78`	`if err != nil {`
`79`	`79`	`return err`
`80`	`80`	`}`
	`81`	`+`
`81`	`82`	`client = cl`
`82`	`83`	`ruleGetter = func(ctx context.Context) (*redfish.CollectRule, error) {`
`83`	`84`	`version, err := cl.GetVersion(ctx)`
Original file line number	Diff line number	Diff line change
`@@ -16,6 +16,8 @@ const namespace = "hw"`
`16`	`16`	`type Client interface {`
`17`	`17`	`Traverse(ctx context.Context, rule *CollectRule) Collected`
`18`	`18`	`GetVersion(ctx context.Context) (string, error)`
	`19`	`+ Login(ctx context.Context) error`
	`20`	`+ CheckSession(ctx context.Context) error`
`19`	`21`	`}`
`20`	`22`
`21`	`23`	`// NewCollected creates a new Collected instance`