Skip to content

Commit

Permalink
feat: Implement SpaceBindingRequest controller main logic (#848)
Browse files Browse the repository at this point in the history 
* implement SBR main logic
Co-authored-by: Matous Jobanek <[email protected]>
  • Loading branch information
@mfrancisc
mfrancisc authored Aug 23, 2023
1 parent 73b335d commit 6c9e07d
Show file tree
Hide file tree
Showing 8 changed files with 1,025 additions and 47 deletions.
351 changes: 350 additions & 1 deletion controllers/spacebindingrequest/spacebindingrequest_controller.go
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,10 +2,17 @@ package spacebindingrequest

import (
"context"
"fmt"
"time"

toolchainv1alpha1 "github.com/codeready-toolchain/api/api/v1alpha1"
"github.com/codeready-toolchain/host-operator/pkg/cluster"
"github.com/codeready-toolchain/toolchain-common/pkg/condition"
"github.com/codeready-toolchain/toolchain-common/pkg/spacebinding"
"github.com/go-logr/logr"
errs "github.com/pkg/errors"
"github.com/redhat-cop/operator-utils/pkg/util"
corev1 "k8s.io/api/core/v1"
"k8s.io/apimachinery/pkg/api/errors"
"k8s.io/apimachinery/pkg/runtime"
"k8s.io/apimachinery/pkg/types"
Expand Down Expand Up @@ -92,7 +99,349 @@ func (r *Reconciler) Reconcile(ctx context.Context, request ctrl.Request) (ctrl.
}
logger.Info("spacebindingrequest found", "member cluster", memberClusterWithSpaceBindingRequest.Name)

// todo implement logic
if util.IsBeingDeleted(spaceBindingRequest) {
logger.Info("spaceBindingRequest is being deleted")
return reconcile.Result{}, r.ensureSpaceBindingDeletion(logger, memberClusterWithSpaceBindingRequest, spaceBindingRequest)
}
// Add the finalizer if it is not present
if err := r.addFinalizer(logger, memberClusterWithSpaceBindingRequest, spaceBindingRequest); err != nil {
return reconcile.Result{}, err
}

// create spacebinding if not found for given spaceBindingRequest
spaceBinding, err := r.getSpaceBinding(spaceBindingRequest)
if err != nil {
return reconcile.Result{}, err
}
err = r.ensureSpaceBinding(logger, memberClusterWithSpaceBindingRequest, spaceBindingRequest, spaceBinding)
if err != nil {
if errStatus := r.setStatusFailedToCreateSpaceBinding(logger, memberClusterWithSpaceBindingRequest, spaceBindingRequest, err); errStatus != nil {
logger.Error(errStatus, "error updating SpaceBindingRequest status")
}
return reconcile.Result{}, err
}

// set ready condition on spaceBindingRequest
err = r.updateStatus(spaceBindingRequest, memberClusterWithSpaceBindingRequest, toolchainv1alpha1.Condition{
Type: toolchainv1alpha1.ConditionReady,
Status: corev1.ConditionTrue,
Reason: toolchainv1alpha1.SpaceBindingRequestProvisionedReason,
})

return ctrl.Result{}, err
}

func (r *Reconciler) ensureSpaceBindingDeletion(logger logr.Logger, memberClusterWithSpaceBindingRequest cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) error {
logger.Info("ensure spacebinding deletion")
if !util.HasFinalizer(spaceBindingRequest, toolchainv1alpha1.FinalizerName) {
// finalizer was already removed, nothing to delete anymore...
return nil
}
spaceBinding, err := r.getSpaceBinding(spaceBindingRequest)
if err != nil {
return err
}
if isBeingDeleted, err := r.deleteSpaceBinding(logger, spaceBinding); err != nil {
return r.setStatusTerminatingFailed(logger, memberClusterWithSpaceBindingRequest, spaceBindingRequest, err)
} else if isBeingDeleted {
return r.setStatusTerminating(memberClusterWithSpaceBindingRequest, spaceBindingRequest)
}

// Remove finalizer from SpaceBindingRequest
util.RemoveFinalizer(spaceBindingRequest, toolchainv1alpha1.FinalizerName)
if err := memberClusterWithSpaceBindingRequest.Client.Update(context.TODO(), spaceBindingRequest); err != nil {
return r.setStatusTerminatingFailed(logger, memberClusterWithSpaceBindingRequest, spaceBindingRequest, errs.Wrap(err, "failed to remove finalizer"))
}
logger.Info("removed finalizer")
return nil
}

// getSpaceBinding retrieves the spacebinding created by the spacebindingrequest
func (r *Reconciler) getSpaceBinding(spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) (*toolchainv1alpha1.SpaceBinding, error) {
spaceBindings := &toolchainv1alpha1.SpaceBindingList{}
spaceBindingLabels := runtimeclient.MatchingLabels{
toolchainv1alpha1.SpaceBindingRequestLabelKey: spaceBindingRequest.GetName(),
toolchainv1alpha1.SpaceBindingRequestNamespaceLabelKey: spaceBindingRequest.GetNamespace(),
}
err := r.Client.List(context.TODO(), spaceBindings, spaceBindingLabels, runtimeclient.InNamespace(r.Namespace))
if err != nil {
return nil, errs.Wrap(err, "unable to list spacebindings")
}

// spacebinding not found
if len(spaceBindings.Items) == 0 {
return nil, nil
}

return &spaceBindings.Items[0], nil // all good
}

// deleteSpaceBinding deletes a given spacebinding object in case deletion was not issued already.
// returns true/nil if the deletion of the spacebinding was triggered
// returns false/nil if the spacebinding was already deleted
// return false/err if something went wrong
func (r *Reconciler) deleteSpaceBinding(logger logr.Logger, spaceBinding *toolchainv1alpha1.SpaceBinding) (bool, error) {
// spacebinding not found, was already deleted
if spaceBinding == nil {
return false, nil
}
if util.IsBeingDeleted(spaceBinding) {
logger.Info("the spacebinding resource is already being deleted")
deletionTimestamp := spaceBinding.GetDeletionTimestamp()
if time.Since(deletionTimestamp.Time) > 120*time.Second {
return false, fmt.Errorf("spacebinding deletion has not completed in over 2 minutes")
}
return true, nil // spacebinding is still being deleted
}

logger.Info("deleting the spacebinding resource", "spacebinding name", spaceBinding.Name)
if err := r.Client.Delete(context.TODO(), spaceBinding); err != nil {
if errors.IsNotFound(err) {
return false, nil // was already deleted
}
return false, errs.Wrap(err, "unable to delete spacebinding") // something wrong happened
}
logger.Info("deleted the spacebinding resource", "spacebinding name", spaceBinding.Name)
return true, nil
}

// setFinalizers sets the finalizers for the SpaceBindingRequest
func (r *Reconciler) addFinalizer(logger logr.Logger, memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) error {
// Add the finalizer if it is not present
if !util.HasFinalizer(spaceBindingRequest, toolchainv1alpha1.FinalizerName) {
logger.Info("adding finalizer on SpaceBindingRequest")
util.AddFinalizer(spaceBindingRequest, toolchainv1alpha1.FinalizerName)
if err := memberCluster.Client.Update(context.TODO(), spaceBindingRequest); err != nil {
return errs.Wrap(err, "error while adding finalizer")
}
}
return nil
}

func (r *Reconciler) ensureSpaceBinding(logger logr.Logger, memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, spaceBinding *toolchainv1alpha1.SpaceBinding) error {
logger.Info("ensuring spacebinding")

// find space from namespace labels
space, err := r.getSpace(memberCluster, spaceBindingRequest)
if err != nil {
return err
}
// space is being deleted
if util.IsBeingDeleted(space) {
return errs.New("space is being deleted")
}

// validate MUR
mur, err := r.getMUR(spaceBindingRequest)
if err != nil {
return err
}
// mur is being deleted
if util.IsBeingDeleted(mur) {
return errs.New("mur is being deleted")
}

// validate Role
if err := r.validateRole(spaceBindingRequest, space); err != nil {
return err
}

// spacebinding not found, creating it
if spaceBinding == nil {
return r.createNewSpaceBinding(logger, memberCluster, spaceBindingRequest, mur, space)
}

logger.Info("SpaceBinding already exists")
return r.updateExistingSpaceBinding(logger, spaceBindingRequest, spaceBinding)
}

// updateExistingSpaceBinding updates the spacebinding with the config from the spaceBindingRequest.
// returns true/nil if the spacebinding was updated
// returns false/nil if the spacebinding was already up-to-date
// returns false/err if something went wrong or the spacebinding is being deleted
func (r *Reconciler) updateExistingSpaceBinding(logger logr.Logger, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, spaceBinding *toolchainv1alpha1.SpaceBinding) error {
// check if spacebinding is being deleted
if util.IsBeingDeleted(spaceBinding) {
return errs.New("cannot update SpaceBinding because it is currently being deleted")
}
return r.updateSpaceBinding(logger, spaceBinding, spaceBindingRequest)
}

// updateSpaceBinding updates the MUR and Role from the spaceBindingRequest to the spacebinding object
// if they are not up-to-date.
// returns false/nil if everything is up-to-date
// returns true/nil if spacebinding was updated
// returns false/err if something went wrong
func (r *Reconciler) updateSpaceBinding(logger logr.Logger, spaceBinding *toolchainv1alpha1.SpaceBinding, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) error {
logger.Info("update spaceBinding")
if spaceBindingRequest.Spec.MasterUserRecord == spaceBinding.Spec.MasterUserRecord &&
spaceBindingRequest.Spec.SpaceRole == spaceBinding.Spec.SpaceRole {
// everything is up-to-date let's return
return nil
}

// update SpaceRole and MUR
logger.Info("updating spaceBinding", "spaceBinding.Name", spaceBinding.Name)
spaceBinding.Spec.SpaceRole = spaceBindingRequest.Spec.SpaceRole
spaceBinding.Spec.MasterUserRecord = spaceBindingRequest.Spec.MasterUserRecord
// update also the MUR label
spaceBinding.Labels[toolchainv1alpha1.SpaceBindingMasterUserRecordLabelKey] = spaceBindingRequest.Spec.MasterUserRecord
err := r.Client.Update(context.TODO(), spaceBinding)
if err != nil {
return errs.Wrap(err, "unable to update SpaceRole and MasterUserRecord fields")
}

logger.Info("spaceBinding updated", "spaceBinding.name", spaceBinding.Name, "spaceBinding.Spec.Space", spaceBinding.Spec.Space, "spaceBinding.Spec.SpaceRole", spaceBinding.Spec.SpaceRole, "spaceBinding.Spec.MasterUserRecord", spaceBinding.Spec.MasterUserRecord)
return nil
}

func (r *Reconciler) createNewSpaceBinding(logger logr.Logger, memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, mur *toolchainv1alpha1.MasterUserRecord, space *toolchainv1alpha1.Space) error {
spaceBinding := spacebinding.NewSpaceBinding(mur, space, spaceBindingRequest.Name)
// set SBR labels on spacebinding
spaceBinding.Labels[toolchainv1alpha1.SpaceBindingRequestLabelKey] = spaceBindingRequest.GetName()
spaceBinding.Labels[toolchainv1alpha1.SpaceBindingRequestNamespaceLabelKey] = spaceBindingRequest.GetNamespace()
logger.Info("creating spacebinding", "spaceBinding.Name", spaceBinding.Name)
if err := r.setStatusProvisioning(memberCluster, spaceBindingRequest); err != nil {
return err
}
if err := r.Client.Create(context.TODO(), spaceBinding); err != nil {
return errs.Wrap(err, "unable to create SpaceBinding")
}
logger.Info("Created SpaceBinding", "MUR", mur.Name, "Space", space.Name)
return nil
}

// getSpace retrieves the name of the space that provisioned the namespace in which the spacebindingrequest was issued.
func (r *Reconciler) getSpace(memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) (*toolchainv1alpha1.Space, error) {
space := &toolchainv1alpha1.Space{}
namespace := &corev1.Namespace{}
err := memberCluster.Client.Get(context.TODO(), types.NamespacedName{
Namespace: "",
Name: spaceBindingRequest.Namespace,
}, namespace)
if err != nil {
return nil, errs.Wrap(err, "unable to get namespace")
}
// get the Space name from the namespace resource
spaceName, found := namespace.Labels[toolchainv1alpha1.SpaceLabelKey]
if !found || spaceName == "" {
return nil, errs.Errorf("unable to find space label %s on namespace %s", toolchainv1alpha1.SpaceLabelKey, namespace.GetName())
}

// get space object
err = r.Client.Get(context.TODO(), types.NamespacedName{
Namespace: r.Namespace,
Name: spaceName,
}, space)
if err != nil {
return nil, errs.Wrap(err, "unable to get space")
}

return space, nil // all good
}

// getMUR retrieves the MUR specified in the spaceBindingRequest.
func (r *Reconciler) getMUR(spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) (*toolchainv1alpha1.MasterUserRecord, error) {
if spaceBindingRequest.Spec.MasterUserRecord == "" {
return nil, fmt.Errorf("MasterUserRecord cannot be blank")
}
mur := &toolchainv1alpha1.MasterUserRecord{}
// check that MUR object exists
err := r.Client.Get(context.TODO(), types.NamespacedName{
Namespace: r.Namespace,
Name: spaceBindingRequest.Spec.MasterUserRecord,
}, mur)
if err != nil {
return nil, errs.Wrap(err, "unable to get MUR")
}

return mur, nil // all good
}

// validateRole checks if the role is within the allowed spaceroles from the NSTemplateTier
func (r *Reconciler) validateRole(spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, space *toolchainv1alpha1.Space) error {
if spaceBindingRequest.Spec.SpaceRole == "" {
return fmt.Errorf("SpaceRole cannot be blank")
}
// get the tier
nsTemplTier := &toolchainv1alpha1.NSTemplateTier{}
if err := r.Client.Get(context.TODO(), types.NamespacedName{
Namespace: r.Namespace,
Name: space.Spec.TierName,
}, nsTemplTier); err != nil {
// Error reading the object - requeue the request.
return errs.Wrap(err, "unable to get the current NSTemplateTier")
}

// search for the role
for actual := range nsTemplTier.Spec.SpaceRoles {
if spaceBindingRequest.Spec.SpaceRole == actual {
return nil
}
}
return fmt.Errorf("invalid role '%s' for space '%s'", spaceBindingRequest.Spec.SpaceRole, space.Name)
}

func (r *Reconciler) setStatusTerminating(memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) error {
return r.updateStatus(
spaceBindingRequest,
memberCluster,
toolchainv1alpha1.Condition{
Type: toolchainv1alpha1.ConditionReady,
Status: corev1.ConditionFalse,
Reason: toolchainv1alpha1.SpaceBindingRequestTerminatingReason,
})
}

func (r *Reconciler) setStatusTerminatingFailed(logger logr.Logger, memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, cause error) error {
if err := r.updateStatus(
spaceBindingRequest,
memberCluster,
toolchainv1alpha1.Condition{
Type: toolchainv1alpha1.ConditionReady,
Status: corev1.ConditionFalse,
Reason: toolchainv1alpha1.SpaceBindingRequestTerminatingFailedReason,
Message: cause.Error(),
}); err != nil {
logger.Error(cause, "unable to terminate SpaceBinding")
return err
}
return cause
}

func (r *Reconciler) setStatusFailedToCreateSpaceBinding(logger logr.Logger, memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, cause error) error {
if err := r.updateStatus(
spaceBindingRequest,
memberCluster,
toolchainv1alpha1.Condition{
Type: toolchainv1alpha1.ConditionReady,
Status: corev1.ConditionFalse,
Reason: toolchainv1alpha1.SpaceBindingRequestUnableToCreateSpaceBindingReason,
Message: cause.Error(),
}); err != nil {
logger.Error(err, "unable to create SpaceBinding")
return err
}
return cause
}

func (r *Reconciler) setStatusProvisioning(memberCluster cluster.Cluster, spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest) error {
return r.updateStatus(
spaceBindingRequest,
memberCluster,
toolchainv1alpha1.Condition{
Type: toolchainv1alpha1.ConditionReady,
Status: corev1.ConditionFalse,
Reason: toolchainv1alpha1.SpaceBindingRequestProvisioningReason,
})
}

func (r *Reconciler) updateStatus(spaceBindingRequest *toolchainv1alpha1.SpaceBindingRequest, memberCluster cluster.Cluster, conditions ...toolchainv1alpha1.Condition) error {
var updated bool
spaceBindingRequest.Status.Conditions, updated = condition.AddOrUpdateStatusConditions(spaceBindingRequest.Status.Conditions, conditions...)
if !updated {
// Nothing changed
return nil
}
return memberCluster.Client.Status().Update(context.TODO(), spaceBindingRequest)
}
Loading

0 comments on commit 6c9e07d

Please sign in to comment.