Skip to content

inge4pres/k8s.zig

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

7 Commits
docs
docs
 
 
examples
examples
 
 
proto
proto
 
 
src
src
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
ROADMAP.md
ROADMAP.md
 
 
build.zig
build.zig
 
 
build.zig.zon
build.zig.zon
 
 

Repository files navigation

k8s.zig

A native Zig client library for Kubernetes using protobuf-based API communication.

Features

Implemented ✅

  • Type-safe Kubernetes API client
  • HTTP/HTTPS communication with TLS support
  • Kubeconfig file parsing (YAML and JSON formats)
    • Inline certificate data (certificate-authority-data, client-certificate-data, client-key-data)
    • File path references (certificate-authority, client-certificate, client-key)
    • Automatic base64 encoding/decoding with whitespace handling
    • Multiple context support
  • Certificate-based authentication (client cert + key)
  • Bearer token authentication
  • In-cluster authentication (service account)
  • HTTP chunked transfer encoding support
  • CRUD operations (Create, Read, Update, Delete, Patch)
  • API path builder for core and grouped resources
  • Generated Zig types from Kubernetes protobuf definitions
  • Support for core/v1, apps/v1, and batch/v1 resources
  • Generic ResourceClient(T) pattern for type-safe operations

Partially Implemented ⚠️

  • Protobuf type deserialization (works for simple responses; complex Kubernetes runtime fields need work)
  • Hybrid approach recommended: raw JSON for API calls + std.json for parsing

Planned 🚧

  • Watch functionality for real-time updates
  • Strategic merge patch and JSON merge patch
  • Label and field selectors
  • More API group support (networking, rbac, policy, etc.)
  • Robust protobuf deserialization for all Kubernetes response types

Status

Active Development - Core functionality is working. See ROADMAP.md for detailed implementation plan.

Requirements

  • Zig 0.15.1 or later
  • protoc (Protocol Buffers compiler) - for generating code from proto files

Building

# Build the library
zig build

# Run tests
zig build test

# Build example programs
zig build examples

# Generate Zig code from protobuf definitions
zig build gen-proto

Quick Start

Using Kubeconfig (Recommended)

const std = @import("std");
const k8s = @import("k8s");

pub fn main() !void {
    var gpa = std.heap.GeneralPurposeAllocator(.{}){};
    defer _ = gpa.deinit();
    const allocator = gpa.allocator();

    // Load client from YAML kubeconfig (standard ~/.kube/config format)
    var client = try k8s.Client.fromKubeconfigFile(allocator, "/home/user/.kube/config");
    defer client.deinit();

    // List pods in the default namespace
    var response = try client.listPods("default");
    defer response.deinit();

    std.debug.print("Status: {}\n", .{response.status});
    std.debug.print("Pods: {s}\n", .{response.body});
}

The library supports both YAML and JSON kubeconfig formats, and handles both inline certificate data and file path references automatically.

Manual Configuration

var client = try k8s.Client.init(allocator, "https://kubernetes.default.svc");
defer client.deinit();

// Set bearer token authentication
client.setAuthToken("your-bearer-token");

// Or use certificate-based authentication
try client.setClientCert(cert_pem, key_pem);

See examples/ for more usage examples:

  • examples/from_kubeconfig.zig - Loading from kubeconfig
  • examples/typed_resources.zig - Using ResourceClient and typed access
  • examples/list_pods.zig - Listing pods
  • examples/get_deployment.zig - Getting deployments

Architecture

k8s.zig/
├── src/
│   ├── lib.zig              # Main library entry point
│   ├── client.zig           # Kubernetes API client
│   ├── tls_http_client.zig  # HTTP client with TLS support
│   ├── resource_client.zig  # Generic ResourceClient(T) pattern
│   ├── kubeconfig.zig       # Kubeconfig file parsing
│   └── proto/               # Generated protobuf types
│       └── k8s/io/
│           ├── api/         # API resource types (Pod, Deployment, etc.)
│           └── apimachinery/  # Common types (ObjectMeta, TypeMeta)
├── proto/                   # Kubernetes protobuf definitions
│   └── k8s.io/             # Symlinked structure matching imports
│       ├── api/
│       │   ├── core/v1/
│       │   ├── apps/v1/
│       │   └── batch/v1/
│       └── apimachinery/pkg/
│           ├── apis/meta/v1/
│           ├── runtime/
│           └── util/
├── examples/                # Usage examples
│   ├── from_kubeconfig.zig  # Load client from kubeconfig
│   ├── typed_resources.zig  # Type-safe resource access
│   ├── list_pods.zig        # List pods example
│   └── get_deployment.zig   # Get deployment example
└── docs/                    # Documentation
    └── IMPLEMENTATION_SUMMARY.md

API Reference

Client

// Create a client from YAML kubeconfig (recommended)
var client = try k8s.Client.fromKubeconfigFile(allocator, kubeconfig_path);
defer client.deinit();

// Or from JSON kubeconfig
var client = try k8s.Client.fromKubeconfigJSONFile(allocator, kubeconfig_path);
defer client.deinit();

// Or create manually with TLS options
var client = try k8s.Client.init(allocator, base_url, .{
    .certificate_authority_data = ca_cert_base64,
    .client_certificate_data = client_cert_base64,
    .client_key_data = client_key_base64,
});
defer client.deinit();
client.setAuthToken(token);

// Convenience methods for common resources
var response = try client.listPods("namespace");
var response = try client.getPod("namespace", "pod-name");
var response = try client.listDeployments("namespace");
var response = try client.getDeployment("namespace", "deployment-name");

// Generic CRUD operations
var response = try client.get(path, .json);
var response = try client.create(path, body, .json);
var response = try client.update(path, body, .json);
var response = try client.patch(path, body, .json);
var response = try client.delete(path, .json);

ResourceClient (Generic Type-Safe Pattern)

const v1 = k8s.proto.k8s.io.api.core.v1;

// Create a type-specific client - resource name and API version are automatically inferred!
const pod_client = k8s.ResourceClient(v1.Pod).init(&client);

// Operations (note: currently limited to simple responses)
const pod = try pod_client.get("namespace", "pod-name");
const list = try pod_client.list("namespace");
const created = try pod_client.create("namespace", pod_object);
const updated = try pod_client.update("namespace", "pod-name", pod_object);
try pod_client.delete("namespace", "pod-name");

// Works with 30+ standard Kubernetes resource types
const svc_client = k8s.ResourceClient(v1.Service).init(&client);
const ns_client = k8s.ResourceClient(v1.Namespace).init(&client);

CustomResourceClient (For CRDs)

// For custom resources (CRDs), use CustomResourceClient and specify the resource name and API version
const crd_client = k8s.CustomResourceClient(MyCRD).init(&client, "mycrds", "mygroup.io/v1");

// Same operations as ResourceClient
const resource = try crd_client.get("namespace", "resource-name");

Content Types

// JSON (recommended - most compatible)
var response = try client.get(path, .json);

// Protobuf (experimental - for future use)
var response = try client.get(path, .protobuf);

Development

Adding More API Groups

  1. Download the proto file:
curl -sL https://raw.githubusercontent.com/kubernetes/api/master/networking/v1/generated.proto \
  -o proto/networking_v1_generated.proto

  1. Add it to build.zig in the proto_files array

  2. Regenerate:

zig build gen-proto

Contributing

Contributions are welcome! Please see ROADMAP.md for planned features.

License

MIT

About

Kubernetes client helpers for the @ziglang programming language

Resources

Readme

License

MIT license
Activity

Stars

3 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages