Implement vc session manager on vc client

Author: rikatz

pkg/common/connectionmanager/connectionmanager.go

@@ -161,7 +161,7 @@ func (connMgr *ConnectionManager) Connect(ctx context.Context, vcInstance *VSphe
 		klog.Error("Failed to get credentials from Secret Credential Manager with err:", err)
 		return err
 	}
-	vcInstance.Conn.UpdateCredentials(credentials.User, credentials.Password)
+	vcInstance.Conn.UpdateCredentials(credentials.User, credentials.Password, credentials.VCSessionManagerURL, credentials.VCSessionManagerToken)
 	return vcInstance.Conn.Connect(ctx)
 }
 

pkg/common/connectionmanager/zones.go

@@ -292,6 +292,11 @@ func (cm *ConnectionManager) getDIFromMultiVCorDC(ctx context.Context,
 
 func withTagsClient(ctx context.Context, connection *vclib.VSphereConnection, f func(c *rest.Client) error) error {
 	c := rest.NewClient(connection.Client)
+	if connection.SessionManagerURL != "" && connection.SessionManagerToken != "" {
+		c.SessionID(connection.Client.SessionCookie().Value)
+		return nil
+	}
+
 	signer, err := connection.Signer(ctx, connection.Client)
 	if err != nil {
 		return err
@@ -307,6 +312,11 @@ func withTagsClient(ctx context.Context, connection *vclib.VSphereConnection, f
 	}
 
 	defer func() {
+		// When using shared session manager we don't need to logout
+		if connection.SessionManagerURL != "" && connection.SessionManagerToken != "" {
+			return
+		}
+
 		if err := c.Logout(ctx); err != nil {
 			klog.Errorf("failed to logout: %v", err)
 		}

pkg/common/vclib/connection.go

@@ -37,16 +37,18 @@ const (
 
 // VSphereConnection contains information for connecting to vCenter
 type VSphereConnection struct {
-	Client            *vim25.Client
-	Username          string
-	Password          string
-	Hostname          string
-	Port              string
-	CACert            string
-	Thumbprint        string
-	Insecure          bool
-	RoundTripperCount uint
-	credentialsLock   sync.Mutex
+	Client              *vim25.Client
+	Username            string
+	Password            string
+	Hostname            string
+	Port                string
+	CACert              string
+	Thumbprint          string
+	Insecure            bool
+	SessionManagerURL   string
+	SessionManagerToken string
+	RoundTripperCount   uint
+	credentialsLock     sync.Mutex
 }
 
 var (
@@ -132,6 +134,22 @@ func (connection *VSphereConnection) login(ctx context.Context, client *vim25.Cl
 	connection.credentialsLock.Lock()
 	defer connection.credentialsLock.Unlock()
 
+	if connection.SessionManagerURL != "" && connection.SessionManagerToken != "" {
+		token, err := GetSharedToken(ctx, SharedTokenOptions{
+			URL:   connection.SessionManagerURL,
+			Token: connection.SessionManagerToken,
+		})
+		if err != nil {
+			klog.Errorf("error getting shared session token: %s", err)
+			return err
+		}
+		if err := m.CloneSession(ctx, token); err != nil {
+			klog.Errorf("error getting shared cloned session token: %s", err)
+			return err
+		}
+		return nil
+	}
+
 	signer, err := connection.Signer(ctx, client)
 	if err != nil {
 		return err
@@ -196,9 +214,11 @@ func (connection *VSphereConnection) NewClient(ctx context.Context) (*vim25.Clie
 
 // UpdateCredentials updates username and password.
 // Note: Updated username and password will be used when there is no session active
-func (connection *VSphereConnection) UpdateCredentials(username string, password string) {
+func (connection *VSphereConnection) UpdateCredentials(username string, password string, sessionmgrURL string, sessionmgrToken string) {
 	connection.credentialsLock.Lock()
 	defer connection.credentialsLock.Unlock()
 	connection.Username = username
 	connection.Password = password
+	connection.SessionManagerURL = sessionmgrURL
+	connection.SessionManagerToken = sessionmgrToken
 }