CLOUDP-347497: Single cluster Replica Set Controller Refactoring

[Julien-Ben]

CLOUDP-347497 - Single cluster Replica Set Controller Refactoring

Why this refactoring

The single-cluster RS controller was mixing two concerns:

• Kubernetes stuff (StatefulSets, pods, volumes)
• Ops Manager/MongoDB stuff (MongoDB processes, replication config)

This worked fine for single-cluster, but it's a problem when you think about multi-cluster:

• Multi-cluster has multiple StatefulSets (one per cluster) but only one logical ReplicaSet in Ops Manager
• The OM automation config doesn't care about how many K8s clusters you have or how the pods are deployed

So we need to separate these layers properly.

Main changes

1. Broke down the huge Reconcile() method

Before: ~300 lines of inline logic in Reconcile()

Now:

Reconcile()
  ├── reconcileMemberResources()        // Handles all K8s resource creation
  │   ├── reconcileHostnameOverrideConfigMap()
  │   ├── ensureRoles()
  │   └── reconcileStatefulSet()        // StatefulSet-specific logic isolated here
  │       └── buildStatefulSetOptions() // Builds STS configuration
  └── updateOmDeploymentRs()            // Handles Ops Manager automation config updates

This makes it way easier to understand what's happening and matches the multi-cluster controller structure.

2. Removed StatefulSet dependency from OM operations

Created new helper functions that work directly with MongoDB resources instead of StatefulSets:

• CreateMongodProcessesFromMongoDB() - was using StatefulSet before
• BuildFromMongoDBWithReplicas() - same
• WaitForRsAgentsToRegisterByResource() - same

These mirror the existing ...FromStatefulSet functions but take MongoDB resources instead.

Why it matters: The OM layer now only cares about the MongoDB resource definition, not how it's deployed in K8s. This makes the code work the same way for both single-cluster and multi-cluster.

3. Added publishAutomationConfigFirstRS checks

Dedicated function for RS instead of using the shared one. Does not rely on a statefulset object.

Important for review

The ideal way to review this PR is to compare the new structure to the mongodbmultireplicaset_controller.go. The aim of the refactoring is to get the single cluster controller closer to it.

Look at:

• reconcileMemberResources() in both controllers - similar structure now
• updateOmDeploymentRs() - no more StatefulSet dependency
• New helper functions in om/process and om/replicaset - mirror existing patterns

Bug found along the way

The logic to handle scale up + disable TLS at the same time doesn't actually work properly and should be blocked by validation (see draft PR #490 for more details).

Tests added

Added tests for the new helper functions:

• TestCreateMongodProcessesFromMongoDB - basic scenarios, scaling, custom domains, TLS, additional config
• TestBuildFromMongoDBWithReplicas - integration test checking ReplicaSet structure and member options propagation
• TestPublishAutomationConfigFirstRS - automation config publish logic with various TLS/auth scenarios

[github-actions]

⚠️ (this preview might not be accurate if the PR is not rebased on current master branch)

MCK 1.5.0 Release Notes

New Features

• Improve automation agent certificate rotation: the agent now restarts automatically when its certificate is renewed, ensuring smooth operation without manual intervention and allowing seamless certificate updates without requiring manual Pod restarts.

Bug Fixes

• MongoDBMultiCluster: fix resource stuck in Pending state if any clusterSpecList item has 0 members. After the fix, a value of 0 members is handled correctly, similarly to how it's done in the MongoDB resource.

[m1kola]

Early review: I had a quick-ish look at the controllers and couldn't spot anything obviously wrong with it. I didn't review the tests at all.

Looks good so far.

[Julien-Ben]

Brought it closer to where it's actually used

[Julien-Ben]

This comment was old (<2022)

[Julien-Ben]

I added these as helpers for myself at the beginning of the refactoring, to keep track of where I was in the hundreds of lines of the reconcile loop

I'm okay to remove them now if they feel like noise more than useful comments

[m1kola]

Looks good to me: I didn't pot any issues.

Let a few comments\suggestions, but I do not consider them blocking.

[m1kola]

This test and TestCreateMongodProcessesFromMongoDB_AdditionalConfig seem to be testing om.NewMongodProcess (already has own unit tests) and dns.GetDNSNames (doesn't have own unit tests).

I think it is better to unit-test om.NewMongodProcess and dns.GetDNSNames separately. Once you have unit tests for these building blocks you wouldn't need to test the integration so thoroughly.

This also would (indirectly) cover WaitForRsAgentsToRegisterByResource and other places where these functions used.

[m1kola]

Nit: I think a long list of arguments is better than a struct. It is easier to pass a struct around, but arguments are more explicit: you only pass what you need in a given function. With plain arguments it is easier to spot unused arguments as well.

There is also no question like - why some cert related stuff is in the struct, but tlsCertPath and internalClusterCertPath is not?

I would leave arguments as is.

[lucian-tosa]

I agree with Mikalai here, it is a bit confusing

[Julien-Ben]

That's a valid concern, I hesitated and did it mostly to match what we do in the sharded cluster controller:

type deploymentOptions struct {
	podEnvVars           *env.PodEnvVars
	currentAgentAuthMode string
	caFilePath           string
	agentCertPath        string
	agentCertHash        string
	certTLSType          map[string]bool
	finalizing           bool
	processNames         []string
	prometheusCertHash   string
}

If we decide to keep the struct, I will put more variables into it for sure while working on the unification, for more consistency.

I'm happy to hear the team's opinion about this

[lucian-tosa]

LGTM, just a couple of questions

[lucian-tosa]

I agree with Mikalai here, it is a bit confusing

[lucian-tosa]

Why define a new function here? There is a very similar one in common controller?

[lucian-tosa]

nit: Why did you rename this variable? It might be a bit too vague now

[anandsyncs]

I would say that even this is too long, something like applyOverrides would be sufficient.
If you feel that this would not make the purpose of the variable clear enough it is because the function is too big and a lot is going on here.
It should ideally be broken into smaller chunks called by an orchestrator function so that flow of logic is easier to follow.

I have posted a comment above about this.

https://go.dev/wiki/CodeReviewComments#variable-names

[anandsyncs]

Left some thoughts on further refactoring and a couple of nits.

[anandsyncs]

Suggested change

	return r.updateStatus(ctx, rs, workflow.Failed(err), log)
	return r.updateStatus(ctx, rs, workflow.Failed(xerrors.Errorf("could not generate certificates for Prometheus: %w", err)), log)

other errors are more descriptive, is it better to clarify this one too?

[anandsyncs]

We probably need a nil check on .Security

[anandsyncs]

updateOmDeploymentRs is carrying a lot of responsibilities: waiting for agents, TLS disable coordination, replica-set building, authentication sync, automation-config reconciliation, and cleanup.
 

func (r *ReconcileMongoDbReplicaSet) updateOmDeploymentRs(
ctx context.Context,
conn om.Connection,
membersBefore int,
rs *mdbv1.MongoDB,
log *zap.SugaredLogger,
tlsCertPath, internalClusterCertPath string,
opts deploymentOptionsRS,
shouldMirrorKeyfile, isRecovering bool,
) workflow.Status {
inputs, status := r.prepareOmDeploymentInputs(ctx, conn, membersBefore, rs, tlsCertPath, opts, shouldMirrorKeyfile, isRecovering, log)
if !status.IsOK() {
return status
}
 
if status := r.applyReplicaSetAutomation(ctx, conn, rs, inputs, internalClusterCertPath, log); !status.IsOK() {
return status
}
 
return r.finalizeOmDeployment(ctx, conn, rs, membersBefore, inputs, internalClusterCertPath, isRecovering, log)
}

 
Each helper focuses on one concern:
 

type omDeploymentInputs struct {
replicasTarget           int
replicaSet               replicaset.ReplicaSet
processNames             []string
prometheusConfiguration  PrometheusConfiguration
additionalReconcileNeeded bool
}
 
func (r *ReconcileMongoDbReplicaSet) prepareOmDeploymentInputs(...) (omDeploymentInputs, workflow.Status) { /* wait for agents, handle TLS disable, build replicaSet */ }
 
func (r *ReconcileMongoDbReplicaSet) applyReplicaSetAutomation(...) workflow.Status { /* auth reconciliation + ReadUpdateDeployment */ }
 
func (r *ReconcileMongoDbReplicaSet) finalizeOmDeployment(...) workflow.Status { /* wait for ready, log rotate, host diff, backup */ }

[anandsyncs]

You can also use parameters instead of omDeploymentInputs

[anandsyncs]

I would say that even this is too long, something like applyOverrides would be sufficient.
If you feel that this would not make the purpose of the variable clear enough it is because the function is too big and a lot is going on here.
It should ideally be broken into smaller chunks called by an orchestrator function so that flow of logic is easier to follow.

I have posted a comment above about this.

https://go.dev/wiki/CodeReviewComments#variable-names