自学教程：Python使用Kubernetes API访问集群

# 查看所有的集群，因为你的 .kubeconfig 文件中可能包含多个上下文kubectl config view -o jsonpath='{"Cluster name/tServer/n"}{range .clusters[*]}{.name}{"/t"}{.cluster.server}{"/n"}{end}'# 从上述命令输出中选择你要与之交互的集群的名称export CLUSTER_NAME="some_server_name"# 指向引用该集群名称的 API 服务器APISERVER=$(kubectl config view -o jsonpath="{.clusters[?(@.name==/"$CLUSTER_NAME/")].cluster.server}")# 获得令牌TOKEN=$(kubectl get secrets -o jsonpath="{.items[?(@.metadata.annotations['kubernetes/.io/service-account/.name']=='default')].data.token}"|base64 -d)# 使用令牌玩转 APIcurl -X GET $APISERVER/api --header "Authorization: Bearer $TOKEN" --insecure

from kubernetes import  client,configfrom kubernetes.stream import streamimport yamlconfig_file = r"D:/Users/JackHe/PycharmProjects/JJ/k8s/auth/kubeconfig.yaml"config.kube_config.load_kube_config(config_file=config_file)Api_Instance = client.CoreV1Api()Api_Batch = client.BatchV1Api()#列出所有的namesapcefor ns in Api_Instance.list_namespace().items:    print(ns.metadata.name)#列出所有的nodesdef list_node():    api_response = Api_Instance.list_node()    data = {}    for i in api_response.items:        data[i.metadata.name] = {"name": i.metadata.name,                                "status": i.status.conditions[-1].type if i.status.conditions[-1].status == "True" else "NotReady",                                "ip": i.status.addresses[0].address,                                "kubelet_version": i.status.node_info.kubelet_version,                                "os_image": i.status.node_info.os_image,                                 }    return datanodes = list_node()print(nodes)

# -*- coding: utf-8 -*-from kubernetes.client import api_clientfrom kubernetes.client.apis import core_v1_apifrom kubernetes import client,configclass KubernetesTools(object):    def __init__(self):        self.k8s_url = 'https://192.168.1.56:6443'    def get_token(self):        """        获取token        :return:        """        with open(r'D:/Users/JackHe/PycharmProjects/JJ/k8s/auth/token', 'r') as file:            Token = file.read().strip('/n')            return Token    def get_api(self):        """        获取API的CoreV1Api版本对象        :return:        """        configuration = client.Configuration()        configuration.host = self.k8s_url        configuration.verify_ssl = False        configuration.api_key = {"authorization": "Bearer " + self.get_token()}        client1 = api_client.ApiClient(configuration=configuration)        api = core_v1_api.CoreV1Api(client1)        return api    def get_namespace_list(self):        """        获取命名空间列表        :return:        """        api = self.get_api()        namespace_list = []        for ns in api.list_namespace().items:            # print(ns.metadata.name)            namespace_list.append(ns.metadata.name)        return namespace_list    def get_pod_list(self):       api = self.get_api()       print("Listing pods with their IPs:")       ret = api.list_pod_for_all_namespaces(watch=False)       for i in ret.items:           print("%s/t%s/t%s" % (i.status.pod_ip, i.metadata.namespace, i.metadata.name))    def get_service_list(self):        api = self.get_api()        ret = api.list_service_for_all_namespaces(watch=False)        for i in ret.items:            print("%s /t%s /t%s /t%s /t%s /n" %(i.kind,i.metadata.namespace,i.metadata.name,i.spec.cluster_ip,i.spec.ports))if __name__ == '__main__':    namespace_list = KubernetesTools().get_namespace_list()    pod_list = KubernetesTools().get_pod_list()    service = KubernetesTools().get_service_list()    print(namespace_list)    print(pod_list)    print(service)