CFE-866: Add secret manager for routes to consume secret_monitor

[chiragkyal]

Description

This PR adds route layer (introduces a new secretmanager package) on top of #1675 to consume the secret_monitor.
These changes primarily focus on enhancing the functionality of managing secrets associated with routes.

Important Functions:

• RegisterRoute: Allows registering a route with a secret, enabling dynamic monitoring of secret changes associated with the route.
• UnregisterRoute: Provides functionality to remove the registration of a route from the monitor.
• GetSecret: Enables retrieving the secret object registered with a route.

Related: CFE-866
Implements: openshift/enhancements#1307

[openshift-ci-robot]

@chiragkyal: This pull request references CFE-866 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.15.0" version, but no target version was set.

Details

In response to this:

Related: CFE-866
Implements: openshift/enhancements#1307

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[chiragkyal]

Continued from #1518

[chiragkyal]

/retest

[deads2k]

solid start

[candita]

/assign @alebedev87

[deads2k]

When the secret name changes, what should happen? Probably a remove and then an add?

[chiragkyal]

Correct, unregister old secret and register new secret.

[deads2k]

Probably worth considering how your consuming layers will expect the "route changed secret" to be represented to them.

[deads2k]

Because you waited for the HasSync in the step above, this wait should no longer be necessary, right?

[chiragkyal]

That HasSync will be called only once after starting the informer. Correct me if I'm wrong, but I think we need to call HasSync for every GetSecret invocation to update the cache with the latest state of the resource.

[chiragkyal]

/test all

[chiragkyal]

As discussed, we'll split this PR into 2 PRs.
I've raised #1675 which will have only secret monitoring logic and this PR will be updated to consume that for routes.

[alebedev87]

Second iteration, mostly the nit picks.

[alebedev87]

Why the error is checked after the exist variable?

[chiragkyal]

Informer's cache (GetByKey()) is returning error even with exists , so we should handle error instead of ignoring it.

[alebedev87]

Sorry, I didn't make the question clear. I meant that why not checking the error before we check exist. It may be misleading as exist may be false just because it's a default value returned in case of an error. This may result in a wrong error returned from the function.

[chiragkyal]

Okay, that makes sense. Moved err check before exist. Thanks!

[chiragkyal]

/hold
For #1675
We want to keep the secretmanager and monitor in two separate PRs.

[alebedev87]

/lgtm

[Miciah]

This looks great. All my comments are suggestions to fix typos in comments or log or error messages and a few minor questions around error values and test code. Feel free to take or leave my suggestions, or handle them in a follow-up.
/lgtm

[Miciah]

Suggested change

	// StartInformer starts and runs the informer util the provided context is canceled,
	// StartInformer starts and runs the informer until the provided context is canceled,

[chiragkyal]

Updated

[Miciah]

Suggested change

	return nil, fmt.Errorf("can not add handler %v to already stopped informer", handler)
	return nil, fmt.Errorf("cannot add handler %v to already stopped informer", handler)

[chiragkyal]

updated

[Miciah]

Suggested change

	// start secret informer if monitor does not exists
	// Start secret informer if monitor does not exist.

[chiragkyal]

Updated

[Miciah]

The // add watch to the list looks conspicuous—is this a stale comment that accidentally got joined with the // add item key to monitors map comment?

[chiragkyal]

Yeah, it was a stale comment. I've removed // add watch to the list comment

[Miciah]

Here and below, are the extra spaces intended to be there?

Suggested change

	klog.Info("secret informer started", " item key ", key)
	klog.Info("secret informer started", "item key", key)

[chiragkyal]

Yes, these are intended because it looks like klog.Info is not putting spaces between two comma , separated strings.

[Miciah]

Ah, I was thinking these were key-value pairs, like go-logr/logr uses. Why not use a format?

Suggested change

	klog.Info("secret informer started", " item key ", key)
	klog.Infof("secret informer started for item with key %v", key)

This is a minor issue and can be addressed in a follow-up if you decide to take my suggestion.

[Miciah]

This recover block highlights an oddity of this test: The "nil handler is provided" test case isn't actually testing the behavior of AddEventHandler; it's testing the behavior of the Go runtime, to verify that dereferencing a nil pointer causes a panic—right?

[chiragkyal]

It was there to recover from panic when handle.GetHandler() is executed inside RemoveEventHandler, given a nil SecretEventHandlerRegistration.

I think a much easier way would be to add if statement inside RemoveEventHandler to check nil SecretEventHandlerRegistration.

I've added the following the latest commit

if handle == nil {
    return fmt.Errorf("nil handler registration is provided")
}

[Miciah]

I like it—the test is simpler, and the method is more robust. Thanks!

[Miciah]

Is this testing something that is expected to happen, or is this testing that RemoveSecretEventHandler behaves correctly if the secret monitor's internal data structures are inexplicably corrupted?

[chiragkyal]

is this testing that RemoveSecretEventHandler behaves correctly if the secret monitor's internal data structures are inexplicably corrupted?

For this reason(^)

It is trying to simulate the condition when the secret monitor does not contain the intended key. This is unlikely to happen, but I think we should have a test to check RemoveSecretEventHandler catches this issue.

m, exists := s.monitors[key]
if !exists {
return fmt.Errorf("secret monitor already removed for item key %v", key)
}

[Miciah]

Suggested change

	t.Fatalf("expected errors to be %t, but got %t", s.expectErr, err != nil)
	t.Fatalf("expected errors to be %t, but got %t", s.expectErr, gotErr != nil)

[chiragkyal]

Updated

[Miciah]

Is there a reason to use apierrors.NewInternalError here? I thought apierrors.NewInternalError was intended for errors that originated from the API server. And even if it's safe to use outside of the API server context, it isn't clear to me why the error needs to be wrapped.

That said, I don't see any router code that uses apierrors.IsInternalError to do something special with such errors, so using apierrors.NewInternalError shouldn't cause any problems for now.

[chiragkyal]

Okay, I also think router code will not make use of this wrapped error by calling apierrors.IsInternalError. So, to keep it consistent, I've drooped the apierrors usage from this package.

[Miciah]

Suggested change

	// get secret from secrt monitor's cache using registered handler
	// Get the secret from the secret monitor's cache using the registered handler.

[chiragkyal]

Updated

[chiragkyal]

Thanks @Miciah for the review comments, I've addressed them. PTAL. If there isn't any new suggestions, would appreciated your lgtm in #1675.
I've cherry-picked the secret monitor related changes (which addressed your comments) into #1675.

[Miciah]

Thanks!
/lgtm

[openshift-ci-robot]

@chiragkyal: This pull request references CFE-866 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.16.0" version, but no target version was set.

Details

In response to this:

This PR adds route layer (secretmanager) on top of #1675 to consume the secret_monitor.

Related: CFE-866
Implements: openshift/enhancements#1307

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[chiragkyal]

/unhold
#1675 is merged. Rebased to master.

[openshift-ci]

@chiragkyal: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[openshift-ci-robot]

@chiragkyal: This pull request references CFE-866 which is a valid jira issue.

Warning: The referenced jira issue has an invalid target version for the target branch this PR targets: expected the story to target the "4.16.0" version, but no target version was set.

Details

In response to this:

Description

This PR adds route layer (introduces a new secretmanager package) on top of #1675 to consume the secret_monitor.
These changes primarily focus on enhancing the functionality of managing secrets associated with routes.

Important Functions:

• RegisterRoute: Allows registering a route with a secret, enabling dynamic monitoring of secret changes associated with the route.
• UnregisterRoute: Provides functionality to remove the registration of a route from the monitor.
• GetSecret: Enables retrieving the secret object registered with a route.

Related: CFE-866
Implements: openshift/enhancements#1307

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the openshift-eng/jira-lifecycle-plugin repository.

[Miciah]

/lgtm

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: alebedev87, chiragkyal, Miciah

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Details

Needs approval from an approver in each of these files:

• pkg/route/OWNERS [Miciah]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment