add support for customer SA namespace in snap meta lister tool

[Rakshith-R]

What type of PR is this?
/kind bug

What this PR does / why we need it:
Add support for customer SA namespace in snap meta lister tool.
Currently SA namespace is picked up from snapshot namespace which is very limiting.

Special notes for your reviewer:

Does this PR introduce a user-facing change?:

NONE

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: Rakshith-R
Once this PR has been reviewed and has the lgtm label, please assign prasadg193 for approval. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

Hi @Rakshith-R. Thanks for your PR.

I'm waiting for a kubernetes-csi member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[carlbraganza]

Good functional addition.

Some minor issues...

[carlbraganza]

1. Please don't break the arguments over multiple lines.
2. Since you've introduced serviceAccountNamespace please rename serviceAccount to serviceAccountName. It would be acceptable to shorten these to saName and saNamespace.
3. If possible, put the namespace argument before the name argument.

[carlbraganza]

Please stick with the style: I generally avoid multiple lines in a function call except if an argument data structure is assembled as part of the call. Exceptions are allowed of course, when the argument list gets complex, but this is not such a case.

[carlbraganza]

You should change the error message to:

fmt.Errorf("ServiceAccounts.CreateToken(%s/%s): %v", serviceAccountNamespace, serviceAccount, err)

[carlbraganza]

1. This is optional and should be stated so. I suggest combining the comment for the two as follows:

	// Specify the ServiceAccount object used to construct a security token
	// with the audience string from the SnapshotMetadataService CR.
	// If either of the following fields are unspecified, the default for the given client will be used.
	ServiceAccountNamespace string
	ServiceAccount string

It would be good if ServiceAccount was renamed to ServiceAccountName.

2. The args.Validate function should be enhanced to ensure that either both fields are empty or both are set - impacts validation UTs too.

[carlbraganza]

The check for an empty name (only) is fine as long as args.Validate ensures both or none semantics.

[carlbraganza]

Looking good. Minor nits ...

[carlbraganza]

nit: The error message should refer to the fields - you're now calling them SAName and SANamespace and not ServiceAccountName and ServiceAccountNamespace

[carlbraganza]

nit: Could you please make it clear in the function signature which return argument is the name and which is the namespace? e.g.

func (iter *iterator) getDefaultServiceAccount(ctx context.Context) (namespace string, name string, err error)