ARO-4518 pass custom manifests(MIWI) to hive cluster deployment as secret #3841
Conversation
rajdeepc2792
added
work-in-progress
chainsaw
rajdeepc2792
changed the title
| return secret, nil | ||
| } | ||
|
|
||
| func clusterManifestsSecret(namespace string, customManifests map[string]kruntime.Object) (*corev1.Secret, error) { |
There was a problem hiding this comment.
nit - if this makes sense to you, I suggest a rename of this function to avoid confusion with the clusterManifestsSecret var:
| func clusterManifestsSecret(namespace string, customManifests map[string]kruntime.Object) (*corev1.Secret, error) { | |
| func generateClusterManifestsSecret(namespace string, customManifests map[string]kruntime.Object) (*corev1.Secret, error) { |
There was a problem hiding this comment.
Instead of changing the function name, changed the var name:- https://github.com/Azure/ARO-RP/pull/3841/files#diff-f83dd6c00cfc7b417ce96e6f7bfbe58ce118101ea90630f21d658abf3e96b129R60
generateClusterManifestsSecret name is similar to https://github.com/Azure/ARO-RP/pull/3841/files#diff-71a1dd610bf07a9e4ece9f782af2bad11e6f2d0e03df442019088f8c47265497R281 where the actual generation is taking place and keeping it similar to similar type of secret creations in the file.
rajdeepc2792
force-pushed
the
rajdeepc2792/ARO-4518-pass-the-miwi-secret-manifests-to-hive
branch
from
d2406a2
to
43bbf18
Compare
rajdeepc2792
force-pushed
the
rajdeepc2792/ARO-4518-pass-the-miwi-secret-manifests-to-hive
branch
from
be2d1f6
to
6b916b5
Compare
rajdeepc2792
requested review from
jewzaam,
bennerv,
hawkowl,
rogbas,
petrkotas,
jharrington22,
cblecker,
UlrichSchlueter,
SudoBrendan,
yjst2012,
jaitaiwan,
anshulvermapatel,
hlipsig,
tiguelu,
SrinivasAtmakuri,
mociarain,
kimorris27,
tsatam and
bitoku
as code owners
|
/azp run ci,e2e |
|
No pipelines are associated with this pull request. |
|
Azure Pipelines successfully started running 2 pipeline(s). |
| r, _ := clusterAzureSecret("testNamespace", tt.oc, &subDoc) | ||
|
|
||
| _, ok := r.Data["osServicePrincipal.json"] | ||
| if tt.wantSP != ok { |
There was a problem hiding this comment.
nit: You can use assert pkg.
ARO-RP/pkg/cluster/networkprofile_test.go
Lines 294 to 295 in 5370de9
There was a problem hiding this comment.
While I'm personally in favor of using the assert pkg here, I don't think we have a consistent pattern for these assertions across our codebase's test cases, so I'm fine either way with changing this or letting it merge as-is.
Which issue this PR addresses:
Fixes (https://issues.redhat.com/browse/ARO-4518)
What this PR does / why we need it:
Call generatePlatformWorkloadIdentitySecrets() for generating the Platform Identity Secret for a MIWI cluster.
Pass all the Secrets as a hive cluster secret and pass it the name of hive secret to cluster deployment's
Spec.Provisioning.ManifestsSecretRefThese secrets will be managed in ARO-Installer-Wrapper
Additional Handling of CredentialsSecretRef is required as it is only used for the Non-MIWI clusters, but since it is used to pass the cluster and subscription doc to wrapper it is still neded.
Test plan for issue:
Is there any documentation that needs to be updated for this PR?
No
How do you know this will function as expected in production?