Kiali Options in a type and make kiali instance

Signed-off-by: Alberto Gutierrez <aljesusg@gmail.com>

Author: aljesusg

pkg/api/toolsets.go

@@ -4,7 +4,6 @@ import (
 	"context"
 	"encoding/json"
 
-	"github.com/containers/kubernetes-mcp-server/pkg/kiali"
 	internalk8s "github.com/containers/kubernetes-mcp-server/pkg/kubernetes"
 	"github.com/containers/kubernetes-mcp-server/pkg/output"
 	"github.com/google/jsonschema-go/jsonschema"
@@ -66,7 +65,6 @@ func NewToolCallResult(content string, err error) *ToolCallResult {
 type ToolHandlerParams struct {
 	context.Context
 	*internalk8s.Kubernetes
-	*kiali.Kiali
 	ToolCallRequest
 	ListOutput output.Output
 }

pkg/config/config.go

@@ -16,6 +16,12 @@ const (
 	ClusterProviderDisabled   = "disabled"
 )
 
+// KialiOptions is the configuration for the kiali toolset.
+type KialiOptions struct {
+	Url      string `toml:"url,omitempty"`
+	Insecure bool   `toml:"insecure,omitempty"`
+}
+
 // StaticConfig is the configuration for the server.
 // It allows to configure server specific settings and tools to be enabled or disabled.
 type StaticConfig struct {
@@ -68,10 +74,8 @@ type StaticConfig struct {
 	// This map holds raw TOML primitives that will be parsed by registered provider parsers
 	ClusterProviderConfigs map[string]toml.Primitive `toml:"cluster_provider_configs,omitempty"`
 
-	// KialiServerURL is the URL of the Kiali server.
-	KialiURL string `toml:"kiali_url,omitempty"`
-	// KialiInsecure indicates whether the server should use insecure TLS for the Kiali server.
-	KialiInsecure bool `toml:"kiali_insecure,omitempty"`
+	// KialiOptions is the configuration for the kiali toolset.
+	KialiOptions KialiOptions `toml:"kiali,omitempty"`
 
 	// Internal: parsed provider configs (not exposed to TOML package)
 	parsedClusterProviderConfigs map[string]ProviderConfig

pkg/kiali/kiali.go

@@ -5,12 +5,10 @@ import (
 	"crypto/tls"
 	"fmt"
 	"io"
+	"k8s.io/klog/v2"
 	"net/http"
 	"net/url"
 	"strings"
-
-	internalk8s "github.com/containers/kubernetes-mcp-server/pkg/kubernetes"
-	"k8s.io/klog/v2"
 )
 
 type Kiali struct {
@@ -63,21 +61,14 @@ func (k *Kiali) createHTTPClient() *http.Client {
 // CurrentAuthorizationHeader returns the Authorization header value that the
 // Kiali client is currently configured to use (Bearer <token>), or empty
 // if no bearer token is configured.
-func (k *Kiali) CurrentAuthorizationHeader(ctx context.Context) string {
-	token, _ := ctx.Value(internalk8s.OAuthAuthorizationHeader).(string)
-	token = strings.TrimSpace(token)
-
+func (k *Kiali) authorizationHeader() string {
+	if k == nil || k.manager == nil {
+		return ""
+	}
+	token := strings.TrimSpace(k.manager.BearerToken)
 	if token == "" {
-		// Fall back to using the same token that the Kubernetes client is using
-		if k == nil || k.manager == nil || k.manager.BearerToken == "" {
-			return ""
-		}
-		token = strings.TrimSpace(k.manager.BearerToken)
-		if token == "" {
-			return ""
-		}
+		return ""
 	}
-	// Normalize to exactly "Bearer <token>" without double prefix
 	lower := strings.ToLower(token)
 	if strings.HasPrefix(lower, "bearer ") {
 		return "Bearer " + strings.TrimSpace(token[7:])
@@ -97,7 +88,7 @@ func (k *Kiali) executeRequest(ctx context.Context, endpoint string) (string, er
 	if err != nil {
 		return "", err
 	}
-	authHeader := k.CurrentAuthorizationHeader(ctx)
+	authHeader := k.authorizationHeader()
 	if authHeader != "" {
 		req.Header.Set("Authorization", authHeader)
 	}

pkg/kiali/kiali_test.go

@@ -1,97 +1,75 @@
 package kiali
 
 import (
-    "context"
-    "net/http"
-    "net/http/httptest"
-    "net/url"
-    "testing"
+	"context"
+	"net/http"
+	"net/http/httptest"
+	"net/url"
+	"testing"
 
-    "github.com/containers/kubernetes-mcp-server/pkg/config"
-    internalk8s "github.com/containers/kubernetes-mcp-server/pkg/kubernetes"
+	"github.com/containers/kubernetes-mcp-server/pkg/config"
 )
 
 func TestValidateAndGetURL_JoinsProperly(t *testing.T) {
-    m := NewManager(&config.StaticConfig{KialiURL: "https://kiali.example/"})
-    k := m.GetKiali()
+	m := NewManager(&config.StaticConfig{KialiOptions: config.KialiOptions{Url: "https://kiali.example/"}})
+	k := m.GetKiali()
 
-    full, err := k.validateAndGetURL("/api/path")
-    if err != nil {
-        t.Fatalf("unexpected error: %v", err)
-    }
-    if full != "https://kiali.example/api/path" {
-        t.Fatalf("unexpected url: %s", full)
-    }
+	full, err := k.validateAndGetURL("/api/path")
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if full != "https://kiali.example/api/path" {
+		t.Fatalf("unexpected url: %s", full)
+	}
 
-    m.KialiURL = "https://kiali.example"
-    full, err = k.validateAndGetURL("api/path")
-    if err != nil {
-        t.Fatalf("unexpected error: %v", err)
-    }
-    if full != "https://kiali.example/api/path" {
-        t.Fatalf("unexpected url: %s", full)
-    }
+	m.KialiURL = "https://kiali.example"
+	full, err = k.validateAndGetURL("api/path")
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if full != "https://kiali.example/api/path" {
+		t.Fatalf("unexpected url: %s", full)
+	}
 
-    // preserve query
-    m.KialiURL = "https://kiali.example"
-    full, err = k.validateAndGetURL("/api/path?x=1&y=2")
-    if err != nil {
-        t.Fatalf("unexpected error: %v", err)
-    }
-    u, _ := url.Parse(full)
-    if u.Path != "/api/path" || u.Query().Get("x") != "1" || u.Query().Get("y") != "2" {
-        t.Fatalf("unexpected parsed url: %s", full)
-    }
+	// preserve query
+	m.KialiURL = "https://kiali.example"
+	full, err = k.validateAndGetURL("/api/path?x=1&y=2")
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	u, _ := url.Parse(full)
+	if u.Path != "/api/path" || u.Query().Get("x") != "1" || u.Query().Get("y") != "2" {
+		t.Fatalf("unexpected parsed url: %s", full)
+	}
 }
 
-func TestCurrentAuthorizationHeader_FromContext(t *testing.T) {
-    m := NewManager(&config.StaticConfig{KialiURL: "https://kiali.example"})
-    k := m.GetKiali()
-    ctx := context.WithValue(context.Background(), internalk8s.OAuthAuthorizationHeader, "bearer  abc")
-    got := k.CurrentAuthorizationHeader(ctx)
-    if got != "Bearer abc" {
-        t.Fatalf("expected normalized bearer header, got '%s'", got)
-    }
-}
-
-func TestCurrentAuthorizationHeader_FromManagerToken(t *testing.T) {
-    m := NewManager(&config.StaticConfig{KialiURL: "https://kiali.example"})
-    m.BearerToken = "abc"
-    k := m.GetKiali()
-    got := k.CurrentAuthorizationHeader(context.Background())
-    if got != "Bearer abc" {
-        t.Fatalf("expected 'Bearer abc', got '%s'", got)
-    }
-}
+// CurrentAuthorizationHeader behavior is now implicit via executeRequest using Manager.BearerToken
 
 func TestExecuteRequest_SetsAuthAndCallsServer(t *testing.T) {
-    // setup test server to assert path and auth header
-    var seenAuth string
-    var seenPath string
-    srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
-        seenAuth = r.Header.Get("Authorization")
-        seenPath = r.URL.String()
-        _, _ = w.Write([]byte("ok"))
-    }))
-    defer srv.Close()
+	// setup test server to assert path and auth header
+	var seenAuth string
+	var seenPath string
+	srv := httptest.NewServer(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		seenAuth = r.Header.Get("Authorization")
+		seenPath = r.URL.String()
+		_, _ = w.Write([]byte("ok"))
+	}))
+	defer srv.Close()
 
-    m := NewManager(&config.StaticConfig{KialiURL: srv.URL})
-    k := m.GetKiali()
-    ctx := context.WithValue(context.Background(), internalk8s.OAuthAuthorizationHeader, "Bearer token-xyz")
-
-    out, err := k.executeRequest(ctx, "/api/ping?q=1")
-    if err != nil {
-        t.Fatalf("unexpected error: %v", err)
-    }
-    if out != "ok" {
-        t.Fatalf("unexpected body: %s", out)
-    }
-    if seenAuth != "Bearer token-xyz" {
-        t.Fatalf("expected auth header to be set, got '%s'", seenAuth)
-    }
-    if seenPath != "/api/ping?q=1" {
-        t.Fatalf("unexpected path: %s", seenPath)
-    }
+	m := NewManager(&config.StaticConfig{KialiOptions: config.KialiOptions{Url: srv.URL}})
+	m.BearerToken = "token-xyz"
+	k := m.GetKiali()
+	out, err := k.executeRequest(context.Background(), "/api/ping?q=1")
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if out != "ok" {
+		t.Fatalf("unexpected body: %s", out)
+	}
+	if seenAuth != "Bearer token-xyz" {
+		t.Fatalf("expected auth header to be set, got '%s'", seenAuth)
+	}
+	if seenPath != "/api/ping?q=1" {
+		t.Fatalf("unexpected path: %s", seenPath)
+	}
 }
-
-

pkg/kiali/manager.go

@@ -2,11 +2,8 @@ package kiali
 
 import (
 	"context"
-	"strings"
 
 	"github.com/containers/kubernetes-mcp-server/pkg/config"
-	internalk8s "github.com/containers/kubernetes-mcp-server/pkg/kubernetes"
-	"k8s.io/klog/v2"
 )
 
 type Manager struct {
@@ -18,22 +15,11 @@ type Manager struct {
 func NewManager(config *config.StaticConfig) *Manager {
 	return &Manager{
 		BearerToken:   "",
-		KialiURL:      config.KialiURL,
-		KialiInsecure: config.KialiInsecure,
+		KialiURL:      config.KialiOptions.Url,
+		KialiInsecure: config.KialiOptions.Insecure,
 	}
 }
 
-func (m *Manager) Derived(ctx context.Context) (*Kiali, error) {
-	authorization, ok := ctx.Value(internalk8s.OAuthAuthorizationHeader).(string)
-	if !ok || !strings.HasPrefix(authorization, "Bearer ") {
-		return &Kiali{manager: m}, nil
-	}
-	// Authorization header is present; nothing special is needed for the Kiali HTTP client
-	klog.V(5).Infof("%s header found (Bearer), using provided bearer token", internalk8s.OAuthAuthorizationHeader)
-
-	return &Kiali{manager: &Manager{
-		BearerToken:   strings.TrimPrefix(authorization, "Bearer "),
-		KialiURL:      m.KialiURL,
-		KialiInsecure: m.KialiInsecure,
-	}}, nil
+func (m *Manager) Derived(_ context.Context) (*Kiali, error) {
+	return &Kiali{manager: m}, nil
 }

pkg/kiali/manager_test.go

@@ -1,56 +1,53 @@
 package kiali
 
 import (
-    "context"
-    "testing"
+	"context"
+	"testing"
 
-    "github.com/containers/kubernetes-mcp-server/pkg/config"
-    internalk8s "github.com/containers/kubernetes-mcp-server/pkg/kubernetes"
+	"github.com/containers/kubernetes-mcp-server/pkg/config"
 )
 
 func TestNewManagerUsesConfigFields(t *testing.T) {
-    cfg := &config.StaticConfig{KialiURL: "https://kiali.example", KialiInsecure: true}
-    m := NewManager(cfg)
-    if m == nil {
-        t.Fatalf("expected manager, got nil")
-    }
-    if m.KialiURL != cfg.KialiURL {
-        t.Fatalf("expected KialiURL %s, got %s", cfg.KialiURL, m.KialiURL)
-    }
-    if m.KialiInsecure != cfg.KialiInsecure {
-        t.Fatalf("expected KialiInsecure %v, got %v", cfg.KialiInsecure, m.KialiInsecure)
-    }
+	cfg := &config.StaticConfig{KialiOptions: config.KialiOptions{Url: "https://kiali.example", Insecure: true}}
+	m := NewManager(cfg)
+	if m == nil {
+		t.Fatalf("expected manager, got nil")
+	}
+	if m.KialiURL != cfg.KialiOptions.Url {
+		t.Fatalf("expected KialiURL %s, got %s", cfg.KialiOptions.Url, m.KialiURL)
+	}
+	if m.KialiInsecure != cfg.KialiOptions.Insecure {
+		t.Fatalf("expected KialiInsecure %v, got %v", cfg.KialiOptions.Insecure, m.KialiInsecure)
+	}
 }
 
 func TestDerivedWithoutAuthorizationReturnsOriginalManager(t *testing.T) {
-    cfg := &config.StaticConfig{KialiURL: "https://kiali.example"}
-    m := NewManager(cfg)
-    k, err := m.Derived(context.Background())
-    if err != nil {
-        t.Fatalf("unexpected error: %v", err)
-    }
-    if k == nil || k.manager != m {
-        t.Fatalf("expected derived Kiali to keep original manager")
-    }
+	cfg := &config.StaticConfig{KialiOptions: config.KialiOptions{Url: "https://kiali.example"}}
+	m := NewManager(cfg)
+	k, err := m.Derived(context.Background())
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if k == nil || k.manager != m {
+		t.Fatalf("expected derived Kiali to keep original manager")
+	}
 }
 
-func TestDerivedWithAuthorizationPreservesURLAndToken(t *testing.T) {
-    cfg := &config.StaticConfig{KialiURL: "https://kiali.example", KialiInsecure: true}
-    m := NewManager(cfg)
-    ctx := context.WithValue(context.Background(), internalk8s.OAuthAuthorizationHeader, "Bearer token-abc")
-    k, err := m.Derived(ctx)
-    if err != nil {
-        t.Fatalf("unexpected error: %v", err)
-    }
-    if k == nil || k.manager == nil {
-        t.Fatalf("expected derived Kiali with manager")
-    }
-    if k.manager.BearerToken != "token-abc" {
-        t.Fatalf("expected bearer token 'token-abc', got '%s'", k.manager.BearerToken)
-    }
-    if k.manager.KialiURL != m.KialiURL || k.manager.KialiInsecure != m.KialiInsecure {
-        t.Fatalf("expected Kiali URL/insecure preserved")
-    }
+func TestDerivedPreservesURLAndToken(t *testing.T) {
+	cfg := &config.StaticConfig{KialiOptions: config.KialiOptions{Url: "https://kiali.example", Insecure: true}}
+	m := NewManager(cfg)
+	m.BearerToken = "token-abc"
+	k, err := m.Derived(context.Background())
+	if err != nil {
+		t.Fatalf("unexpected error: %v", err)
+	}
+	if k == nil || k.manager == nil {
+		t.Fatalf("expected derived Kiali with manager")
+	}
+	if k.manager.BearerToken != "token-abc" {
+		t.Fatalf("expected bearer token 'token-abc', got '%s'", k.manager.BearerToken)
+	}
+	if k.manager.KialiURL != m.KialiURL || k.manager.KialiInsecure != m.KialiInsecure {
+		t.Fatalf("expected Kiali URL/insecure preserved")
+	}
 }
-
-