tessl/maven-io-fabric8--kubernetes-client-project
Java client for Kubernetes and OpenShift providing access to full REST APIs via a fluent DSL
- Workspace
- tessl
- Visibility
- Public
- Created
- Last updated
'%3e%3cpath%20d='m7.15%205.779.281.877c-.001.502.003.991.124%201.48l.116-.082.229-1.265c.723%201.422%202.78%203.325%202.53%205.008-.022.154-.082.3-.158.435.349-.014.375-.38.578-.56.187%201.005.17%201.975-.22%202.932l1.428%203.159c-.007.07-.626.285-.744.226-.087-.044-.629-1.506-.742-1.754-.103-.224-.457-1.044-.592-1.165-.592-.534-2.033-.183-2.773-.256l.488-.115.148-.109c-.68-.08-1.363-.34-1.85-.815.531.046%201.052.121%201.592.087.1-.006.378-.02.432-.114-1.338-.016-2.398-.569-3.16-1.62-1.03-1.422-1.646-3.215-2.658-4.662-.203-.289-.474-.68-.776-.847-.015-.092.076-.054.137-.049.375.034.778.157%201.148.234l1.26.462c-.404-.737-1.332-.637-1.984-.994-.759-.416-1.2-1.386-1.487-2.149-.258-.68-.536-1.495-.492-2.217.282.262.529.573.896.73.087-.102-.838-1.102-.867-1.323C-.051.673.656-.051%201.328.003c1.128.09%202.44%201.953%202.87%202.886.074.069.145-.23.149-.25.029-.154.01-.306.054-.452.67.932%201.64%201.722%202.122%202.768l.626%201.778V5.78Z'/%3e%3cpath%20d='m10.851%206.733.626-1.778c.483-1.047%201.451-1.836%202.122-2.769.045.147.025.299.054.452.005.021.075.32.149.25.43-.932%201.742-2.796%202.87-2.885.672-.054%201.38.67%201.294%201.31-.03.22-.954%201.221-.867%201.322.367-.156.614-.467.896-.729.044.722-.234%201.536-.49%202.218-.288.763-.73%201.733-1.488%202.149-.652.356-1.58.256-1.984.993l1.26-.461c.37-.077.772-.2%201.148-.234.06-.006.152-.044.136.049-.301.166-.573.557-.775.847-.794%201.135-1.347%202.488-2.049%203.68-.635%201.081-1.285%202.087-2.613%202.432.148-.768.005-1.562-.173-2.316l-.32-.092c-.219-1.088-.84-2.001-1.466-2.908l.919-1.475.229%201.265.116.082c.12-.489.125-.979.123-1.48l.283-.877v.955ZM8.017%2014.984c-.238.57-.531%201.119-.78%201.686-.089.204-.446%201.24-.518%201.295-.145.114-.622-.087-.777-.2l1.207-2.78h.868ZM12.008%2013.75c-.059.174-.949.7-1.04.617l.12-.5.92-.117Z'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='a'%3e%3cpath%20fill='%23fff'%20d='M0%200h18v18H0z'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e){kind=small}
To install, run
npx @tessl/cli install tessl/maven-io-fabric8--kubernetes-client-project@6.13.0index.mddocs/
Fabric8 Kubernetes & OpenShift Java Client
The Fabric8 Kubernetes Client provides comprehensive access to both Kubernetes and OpenShift REST APIs through a fluent DSL. It supports both programmatic configuration and automatic configuration from multiple sources including kubeconfig files, service accounts, and environment variables.
Package Information
- Package Name: io.fabric8:kubernetes-client-project
- Package Type: Maven
- Language: Java
- Installation: Add to your
pom.xml:
<dependency>
<groupId>io.fabric8</groupId>
<artifactId>kubernetes-client</artifactId>
<version>6.13.5</version>
</dependency>For OpenShift-specific features:
<dependency>
<groupId>io.fabric8</groupId>
<artifactId>openshift-client</artifactId>
<version>6.13.5</version>
</dependency>Or with Gradle:
implementation 'io.fabric8:kubernetes-client:6.13.5'
// For OpenShift features:
implementation 'io.fabric8:openshift-client:6.13.5'Core Imports
import io.fabric8.kubernetes.client.KubernetesClient;
import io.fabric8.kubernetes.client.KubernetesClientBuilder;
import io.fabric8.openshift.client.OpenShiftClient;
import io.fabric8.openshift.client.OpenShiftConfig;
import io.fabric8.openshift.client.OpenShiftConfigBuilder;
import io.fabric8.openshift.client.NamespacedOpenShiftClient;Resource model imports:
import io.fabric8.openshift.api.model.*;
import io.fabric8.kubernetes.client.dsl.Resource;
import io.fabric8.kubernetes.client.dsl.MixedOperation;Basic Usage
import io.fabric8.kubernetes.client.KubernetesClientBuilder;
import io.fabric8.openshift.client.OpenShiftClient;
// Create OpenShift client using default configuration (kubeconfig, service account, etc.)
try (OpenShiftClient client = new KubernetesClientBuilder().build().adapt(OpenShiftClient.class)) {
// Get cluster information
System.out.println("OpenShift URL: " + client.getOpenshiftUrl());
System.out.println("Current user: " + client.currentUser().getMetadata().getName());
// List all projects
client.projects().list().getItems().forEach(project ->
System.out.println("Project: " + project.getMetadata().getName()));
// Work with builds in a specific namespace
client.inNamespace("my-project").builds().list().getItems().forEach(build ->
System.out.println("Build: " + build.getMetadata().getName()));
}Capabilities
Client Configuration and Creation
Configure OpenShift client with custom settings, authentication, and connection options.
// Method 1: Using OpenShiftConfig with KubernetesClientBuilder
OpenShiftConfig config = new OpenShiftConfigBuilder()
.withMasterUrl("https://api.openshift-cluster.example.com:6443")
.withOauthToken("your-token")
.withNamespace("default")
.withTrustCerts(true)
.build();
OpenShiftClient client = new KubernetesClientBuilder()
.withConfig(config)
.build()
.adapt(OpenShiftClient.class);
// Method 2: Using ConfigBuilder with KubernetesClientBuilder
Config config = new ConfigBuilder()
.withMasterUrl("https://api.openshift-cluster.example.com:6443")
.withOauthToken("your-token")
.build();
OpenShiftClient client = new KubernetesClientBuilder()
.withConfig(config)
.build()
.adapt(OpenShiftClient.class);Client Configuration and Creation
Build Operations
Manage OpenShift builds and build configurations, including binary builds, webhook triggers, and log streaming.
Build build = client.builds()
.inNamespace("my-project")
.withName("my-app-1")
.get();
String buildLog = client.builds()
.inNamespace("my-project")
.withName("my-app-1")
.getLog();Deployment Operations
Work with OpenShift DeploymentConfigs including scaling, rollouts, and pod operations.
DeploymentConfig dc = client.deploymentConfigs()
.inNamespace("my-project")
.withName("my-app")
.scale(3);
List<Pod> pods = client.deploymentConfigs()
.inNamespace("my-project")
.withName("my-app")
.getPods();Image Operations
Manage container images, image streams, image stream tags, and image imports.
ImageStream imageStream = client.imageStreams()
.inNamespace("my-project")
.withName("my-app")
.get();
ImageStreamImport importResult = client.imageStreamImports()
.inNamespace("my-project")
.create(imageStreamImport);Network Operations
Configure OpenShift routes, network policies, and cluster networking.
Route route = client.routes()
.inNamespace("my-project")
.withName("my-app")
.get();
String routeUrl = "https://" + route.getSpec().getHost();Template Operations
Process OpenShift templates with parameters and instantiate applications.
Template template = client.templates()
.inNamespace("my-project")
.withName("my-template")
.withParameters("PARAM_NAME", "param-value")
.process();Project Operations
Create and manage OpenShift projects with role bindings and quotas.
Project project = client.projects()
.createProjectAndRoleBindings("new-project",
"Project description", "display-name", "admin-user");User and Security Operations
Manage users, groups, roles, role bindings, and security context constraints.
User currentUser = client.currentUser();
List<Role> roles = client.roles()
.inNamespace("my-project")
.list().getItems();API Group Operations
Access specialized OpenShift API groups for configuration, operators, monitoring, and more.
// Access config API group (config.openshift.io)
ClusterVersion clusterVersion = client.config().clusterVersions()
.withName("version")
.get();
// Access monitoring API group (monitoring.coreos.com)
ServiceMonitor monitor = client.monitoring().serviceMonitors()
.inNamespace("my-project")
.withName("my-monitor")
.get();OAuth and Authentication Operations
Manage OpenShift OAuth tokens, clients, and access tokens for authentication.
// OAuth access tokens
List<OAuthAccessToken> tokens = client.oAuthAccessTokens().list().getItems();
// OAuth clients
OAuthClient oauthClient = client.oAuthClients()
.withName("my-oauth-client")
.get();
// User OAuth access tokens
List<UserOAuthAccessToken> userTokens = client.userOAuthAccessTokens()
.list().getItems();Identity and User Management Operations
Manage OpenShift identities, users, and user identity mappings.
// Get current user
User currentUser = client.currentUser();
// List users
List<User> users = client.users().list().getItems();
// List identities
List<Identity> identities = client.identities().list().getItems();
// Create user identity mapping
UserIdentityMapping mapping = client.userIdentityMappings()
.create(userIdentityMapping);Cluster-Level Network Operations
Manage cluster-wide networking resources including cluster networks and host subnets.
// Cluster networks
List<ClusterNetwork> clusterNetworks = client.clusterNetworks()
.list().getItems();
// Host subnets
List<HostSubnet> hostSubnets = client.hostSubnets()
.list().getItems();
// Net namespaces
List<NetNamespace> netNamespaces = client.netNamespaces()
.list().getItems();Quota and Resource Management
Access OpenShift quota API group for advanced resource management.
// Access quota API group resources
client.quotas().clusterResourceQuotas()
.list().getItems();Machine Configuration Operations
Manage OpenShift Machine Config Operator resources for cluster configuration.
// Access machine configuration API group
client.machineConfigurations().machineConfigs()
.list().getItems();
// Machine API group
client.machine().machines()
.inNamespace("openshift-machine-api")
.list().getItems();Version and Cluster Information
Get OpenShift cluster version and cluster information.
// Get OpenShift version
VersionInfo openshiftVersion = client.getOpenShiftV3Version();
String v4Version = client.getOpenShiftV4Version();
// Get cluster URL
URL openshiftUrl = client.getOpenshiftUrl();
// Check API group support
boolean supportsApiGroup = client.supportsOpenShiftAPIGroup("config.openshift.io");Authorization Reviews
Perform access reviews and security policy validations.
SubjectAccessReviewResponse response = client.subjectAccessReviews()
.create(subjectAccessReview);
boolean canAccess = response.getAllowed();Architecture
The OpenShift client extends the Kubernetes client with OpenShift-specific functionality:
- OpenShiftClient: Main interface extending KubernetesClient
- NamespacedOpenShiftClient: Namespace-scoped operations
- OpenShiftConfig: Configuration with OpenShift-specific settings
- Specialized DSL interfaces: Custom operations for OpenShift resources
- API Group DSLs: Access to specialized OpenShift API groups
- OAuth interceptor: Automatic OpenShift authentication handling
Types
Core Client Types
public interface OpenShiftClient extends KubernetesClient, SupportTestingClient {
String BASE_API_GROUP = "openshift.io";
// Core OpenShift client methods
URL getOpenshiftUrl();
User currentUser();
boolean supportsOpenShiftAPIGroup(String apiGroup);
VersionInfo getOpenShiftV3Version();
String getOpenShiftV4Version();
// API Group DSLs
OpenShiftConfigAPIGroupDSL config();
OpenShiftConsoleAPIGroupDSL console();
OpenShiftClusterAutoscalingAPIGroupDSL clusterAutoscaling();
OpenShiftHiveAPIGroupDSL hive();
OpenShiftOperatorAPIGroupDSL operator();
OpenShiftOperatorHubAPIGroupDSL operatorHub();
OpenShiftMonitoringAPIGroupDSL monitoring();
MachineConfigurationAPIGroupDSL machineConfigurations();
OpenShiftMachineAPIGroupDSL machine();
OpenShiftQuotaAPIGroupDSL quotas();
OpenShiftTunedAPIGroupDSL tuned();
OpenShiftStorageVersionMigratorApiGroupDSL kubeStorageVersionMigrator();
OpenShiftWhereaboutsAPIGroupDSL whereabouts();
// Resource operations
MixedOperation<Build, BuildList, BuildResource> builds();
MixedOperation<BuildConfig, BuildConfigList, BuildConfigResource<BuildConfig, Void, Build>> buildConfigs();
MixedOperation<DeploymentConfig, DeploymentConfigList, DeployableScalableResource<DeploymentConfig>> deploymentConfigs();
MixedOperation<Route, RouteList, Resource<Route>> routes();
ParameterMixedOperation<Template, TemplateList, TemplateResource> templates();
MixedOperation<ImageStream, ImageStreamList, Resource<ImageStream>> imageStreams();
MixedOperation<ImageStreamTag, ImageStreamTagList, Resource<ImageStreamTag>> imageStreamTags();
// Project operations
ProjectOperation projects();
ProjectRequestOperation projectrequests();
// Security and RBAC
NonNamespaceOperation<SecurityContextConstraints, SecurityContextConstraintsList, Resource<SecurityContextConstraints>> securityContextConstraints();
MixedOperation<Role, RoleList, Resource<Role>> roles();
MixedOperation<RoleBinding, RoleBindingList, Resource<RoleBinding>> roleBindings();
NonNamespaceOperation<ClusterRole, ClusterRoleList, Resource<ClusterRole>> clusterRoles();
MixedOperation<ClusterRoleBinding, ClusterRoleBindingList, Resource<ClusterRoleBinding>> clusterRoleBindings();
// User and identity management
NonNamespaceOperation<User, UserList, Resource<User>> users();
NonNamespaceOperation<Group, GroupList, Resource<Group>> groups();
NonNamespaceOperation<Identity, IdentityList, Resource<Identity>> identities();
// OAuth operations
NonNamespaceOperation<OAuthAccessToken, OAuthAccessTokenList, Resource<OAuthAccessToken>> oAuthAccessTokens();
NonNamespaceOperation<OAuthClient, OAuthClientList, Resource<OAuthClient>> oAuthClients();
NonNamespaceOperation<UserOAuthAccessToken, UserOAuthAccessTokenList, Resource<UserOAuthAccessToken>> userOAuthAccessTokens();
// Network operations
NonNamespaceOperation<ClusterNetwork, ClusterNetworkList, Resource<ClusterNetwork>> clusterNetworks();
NonNamespaceOperation<HostSubnet, HostSubnetList, Resource<HostSubnet>> hostSubnets();
NonNamespaceOperation<NetNamespace, NetNamespaceList, Resource<NetNamespace>> netNamespaces();
MixedOperation<EgressNetworkPolicy, EgressNetworkPolicyList, Resource<EgressNetworkPolicy>> egressNetworkPolicies();
// Authorization reviews
InOutCreateable<SubjectAccessReview, SubjectAccessReviewResponse> subjectAccessReviews();
InOutCreateable<ResourceAccessReview, ResourceAccessReviewResponse> resourceAccessReviews();
NamespacedInOutCreateable<LocalSubjectAccessReview, SubjectAccessReviewResponse> localSubjectAccessReviews();
NamespacedInOutCreateable<LocalResourceAccessReview, ResourceAccessReviewResponse> localResourceAccessReviews();
}
public interface NamespacedOpenShiftClient extends OpenShiftClient, NamespacedKubernetesClient {
}
public class OpenShiftConfig extends Config {
public static final Long DEFAULT_BUILD_TIMEOUT = 5 * 60 * 1000L;
public String getOapiVersion();
public String getOpenShiftUrl();
public long getBuildTimeout();
public boolean isDisableApiGroupCheck();
}Configuration Builder
public class OpenShiftConfigBuilder {
public OpenShiftConfigBuilder withMasterUrl(String masterUrl);
public OpenShiftConfigBuilder withOauthToken(String token);
public OpenShiftConfigBuilder withUsername(String username);
public OpenShiftConfigBuilder withPassword(String password);
public OpenShiftConfigBuilder withNamespace(String namespace);
public OpenShiftConfigBuilder withTrustCerts(boolean trustCerts);
public OpenShiftConfigBuilder withBuildTimeout(long timeout);
public OpenShiftConfig build();
}Client Creation Patterns
// Recommended approach using KubernetesClientBuilder
OpenShiftClient client = new KubernetesClientBuilder().build().adapt(OpenShiftClient.class);
// With custom configuration
OpenShiftClient client = new KubernetesClientBuilder()
.withConfig(config)
.build()
.adapt(OpenShiftClient.class);
// Legacy approach (deprecated)
@Deprecated
OpenShiftClient client = new DefaultOpenShiftClient();
@Deprecated
OpenShiftClient client = new DefaultOpenShiftClient(config);