Bug 1825774: add back missing parts to make openshift-config namespace secret list…

[gabemontero]

…er functional

got a little too aggressive in removing operator related bits for the openshift-config secret lister

still need to create a workqueue and informer to enable it to obtain the secret

even though we no longer copy the secret, still inspect it to make sure it has creds for registry.redhat.io

/assign @ricardomaraschini
/assign @dmage

if one of you all have cycles please review - thanks

[openshift-ci-robot]

@gabemontero: This pull request references Bugzilla bug 1825774, which is valid. The bug has been moved to the POST state. The bug has been updated to refer to the pull request using the external bug tracker.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.5.0) matches configured target release for branch (4.5.0)
• bug is in the state NEW, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)

Details

In response to this:

Bug 1825774: add back missing parts to make openshift-config namespace secret list…

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[openshift-ci-robot]

@gabemontero: This pull request references Bugzilla bug 1825774, which is valid. The bug has been moved to the POST state.

3 validation(s) were run on this bug

• bug is open, matching expected state (open)
• bug target release (4.5.0) matches configured target release for branch (4.5.0)
• bug is in the state NEW, which is one of the valid states (NEW, ASSIGNED, ON_DEV, POST, POST)

Details

In response to this:

Bug 1825774: add back missing parts to make openshift-config namespace secret list…

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[gabemontero]

was able to verify on a local cluster ... able to retrieve the secret now

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: gabemontero

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [gabemontero]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: gabemontero

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• OWNERS [gabemontero]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[ricardomaraschini]

It looks good to me but I admit I don't understand exactly why we need to react to changes on these secrets. Would you mind explain a little bit in here?

[gabemontero]

It looks good to me but I admit I don't understand exactly why we need to react to changes on these secrets. Would you mind explain a little bit in here?

Yep I'll add some comments in the code. I gave a very terse summary in this PR's description, but perhaps too terse. For posterity, I'll clarify here as well:

1. rather than use a vanilla client to access the openshift-config secrets, we want to use the lister/sharedinformer/workqueue controller apparatus so we get watches and caching (so we don't have to hit the api server whenever we access the data)
2. but you cannot just partially set that up, as I originally attempted in remove pull secret copy, defer to image registry #249
3. otherwise the cache never gets populated, and we get "not found" errors when we attempt to get secrets that actually exist

[gabemontero]

ok @ricardomaraschini I've added the comment explaining stuff ... let me know if you think that is sufficient, and if it is, I'll squash, etc.

thanks

[ricardomaraschini]

ok @ricardomaraschini I've added the comment explaining stuff ... let me know if you think that is sufficient, and if it is, I'll squash, etc.

thanks

Yep, thanks for that extra explanation. Squash them and I will LGTM.

[gabemontero]

commits squashed @ricardomaraschini - thanks

[gabemontero]

/test unit

[gabemontero]

/test unit

[gabemontero]

unit test flake gone

[openshift-ci-robot]

@gabemontero: All pull requests linked via external trackers have merged: openshift/cluster-samples-operator#264. Bugzilla bug 1825774 has been moved to the MODIFIED state.

Details

In response to this:

Bug 1825774: add back missing parts to make openshift-config namespace secret list…

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[openshift-ci-robot]

@gabemontero: All pull requests linked via external trackers have merged: openshift/cluster-samples-operator#264. Bugzilla bug 1825774 has been moved to the MODIFIED state.

Details

In response to this:

Bug 1825774: add back missing parts to make openshift-config namespace secret list…

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.