aksd: Fix importing AKS project from managed namespaces

It was always trying to set up the kubeconfig without the namespace
info.

Author: joaquimrocha

app/electron/aks-cluster.ts

@@ -235,6 +235,7 @@ function mergeKubeconfig(existingConfig: string, newConfig: string): KubeConfig
  * @param clusterName - AKS cluster name
  * @param isDev - Whether running in development mode
  * @param resourcesPath - Path to resources directory
+ * @param managedNamespace - Optional managed namespace name to use for scoped credentials
  * @returns Promise with success status and message
  */
 export async function registerAKSCluster(
@@ -243,27 +244,49 @@ export async function registerAKSCluster(
   clusterName: string,
   isAzureRBACEnabled: boolean,
   isDev: boolean,
-  resourcesPath: string
+  resourcesPath: string,
+  managedNamespace?: string
 ): Promise<RegisterAKSClusterResult> {
   const tempKubeconfigPath = path.join(os.tmpdir(), `kubeconfig-${Date.now()}.yaml`);
 
   try {
     // Step 1: Get the kubeconfig to a temporary file with --format azure
-    console.log('[AKS] Getting credentials for cluster:', clusterName);
-    const args = [
-      'aks',
-      'get-credentials',
-      '--subscription',
-      subscriptionId,
-      '--resource-group',
-      resourceGroup,
-      '--name',
-      clusterName,
-      '--format',
-      'azure',
-      '--file',
-      tempKubeconfigPath,
-    ];
+    // Use namespace get-credentials if a managed namespace is provided
+    const args: string[] = ['aks'];
+
+    if (managedNamespace) {
+      console.log(
+        '[AKS] Getting namespace credentials for cluster:',
+        clusterName,
+        'namespace:',
+        managedNamespace
+      );
+      args.push(
+        'namespace',
+        'get-credentials',
+        '--cluster-name',
+        clusterName,
+        '--resource-group',
+        resourceGroup,
+        '--name',
+        managedNamespace,
+        '--subscription',
+        subscriptionId
+      );
+    } else {
+      console.log('[AKS] Getting credentials for cluster:', clusterName);
+      args.push(
+        'get-credentials',
+        '--subscription',
+        subscriptionId,
+        '--resource-group',
+        resourceGroup,
+        '--name',
+        clusterName
+      );
+    }
+
+    args.push('--format', 'azure', '--file', tempKubeconfigPath);
 
     try {
       // Use the shared command execution logic from runCmd.ts
@@ -306,7 +329,7 @@ export async function registerAKSCluster(
       console.log('[AKS] Skipping az-kubelogin since Azure RBAC is disabled');
       modifiedKubeconfig = tempKubeconfig;
     }
-    
+
     // Step 3: Merge into main kubeconfig
     const kubeconfigPath = path.join(os.homedir(), '.kube', 'config');
     const kubeconfigDir = path.dirname(kubeconfigPath);

app/electron/main.ts

@@ -1821,7 +1821,13 @@ async function startElecron() {
       'register-aks-cluster',
       async (
         event,
-        data: { subscriptionId: string; resourceGroup: string; clusterName: string, isAzureRBACEnabled: boolean }
+        data: {
+          subscriptionId: string;
+          resourceGroup: string;
+          clusterName: string;
+          isAzureRBACEnabled: boolean;
+          managedNamespace?: string;
+        }
       ) => {
         const { registerAKSCluster } = await import('./aks-cluster');
         const resourcesDir = isDev
@@ -1833,7 +1839,8 @@ async function startElecron() {
           data.clusterName,
           data.isAzureRBACEnabled,
           isDev,
-          resourcesDir
+          resourcesDir,
+          data.managedNamespace
         );
       }
     );

app/electron/preload.ts

@@ -69,13 +69,15 @@ contextBridge.exposeInMainWorld('desktopApi', {
     subscriptionId: string,
     resourceGroup: string,
     clusterName: string,
-    isAzureRBACEnabled: boolean
+    isAzureRBACEnabled: boolean,
+    managedNamespace?: string
   ): Promise<{ success: boolean; message: string }> => {
     return ipcRenderer.invoke('register-aks-cluster', {
       subscriptionId,
       resourceGroup,
       clusterName,
       isAzureRBACEnabled,
+      managedNamespace,
     });
   },