Skip to content

Commit 64df76f

Browse files
spowelljrspowelljr
committed
refactor refresh pull secret logic
1 parent 29f7d44 commit 64df76f

File tree

1 file changed

+19
-24
lines changed

1 file changed

+19
-24
lines changed

server.go

Lines changed: 19 additions & 24 deletions
Original file line numberDiff line numberDiff line change
@@ -153,33 +153,21 @@ func createPullSecret(clientset *kubernetes.Clientset, ns *corev1.Namespace, cre
153153
return nil
154154
}
155155

156-
// createAllPullSecrets creates an image registry pull secret for all namespaces
157-
func createAllPullSecrets(clientset *kubernetes.Clientset, namespaces []corev1.Namespace) error {
158-
ctx := context.Background()
159-
creds, err := google.FindDefaultCredentials(ctx)
160-
if err != nil {
161-
return fmt.Errorf("finding default credentials: %v", err)
162-
}
163-
for _, ns := range namespaces {
164-
if err := createPullSecret(clientset, &ns, creds); err != nil {
165-
log.Printf("failed creating pull secret in %s namespace: %v", ns.Name, err)
166-
}
156+
// deletePullSecret deletes the image registry pull secret for the provided namespace
157+
func deletePullSecret(clientset *kubernetes.Clientset, ns corev1.Namespace) error {
158+
secrets := clientset.CoreV1().Secrets(ns.Name)
159+
if err := secrets.Delete(context.TODO(), gcpAuth, metav1.DeleteOptions{}); err != nil {
160+
return fmt.Errorf("deleting %s secret in %s namespace: %v", gcpAuth, ns.Name, err)
167161
}
168162
return nil
169163
}
170164

171-
// deleteAllPullSecrets deletes the image registry pull secret for all namespaces
172-
func deleteAllPullSecrets(clientset *kubernetes.Clientset, namespaces []corev1.Namespace) {
173-
for _, ns := range namespaces {
174-
secrets := clientset.CoreV1().Secrets(ns.Name)
175-
if err := secrets.Delete(context.TODO(), gcpAuth, metav1.DeleteOptions{}); err != nil {
176-
log.Printf("failed deleting %s secret in %s namespace: %v", gcpAuth, ns.Name, err)
177-
}
178-
}
179-
}
180-
181165
// refreshAllPullSecrets deletes and recreates image registry pull secrets for all namespaces
182166
func refreshAllPullSecrets() error {
167+
creds, err := google.FindDefaultCredentials(context.Background())
168+
if err != nil {
169+
return fmt.Errorf("finding default credentials: %v", err)
170+
}
183171
cfg, err := rest.InClusterConfig()
184172
if err != nil {
185173
return fmt.Errorf("getting cluster config: %v", err)
@@ -192,9 +180,16 @@ func refreshAllPullSecrets() error {
192180
if err != nil {
193181
return fmt.Errorf("listing namespaces: %v", err)
194182
}
195-
deleteAllPullSecrets(clientset, namespaceList.Items)
196-
if err := createAllPullSecrets(clientset, namespaceList.Items); err != nil {
197-
return fmt.Errorf("creating all pull secrets: %v", err)
183+
for _, ns := range namespaceList.Items {
184+
if ns.Name == "kube-system" || ns.Name == "gcp-auth" {
185+
continue
186+
}
187+
if err := deletePullSecret(clientset, ns); err != nil {
188+
log.Println(err)
189+
}
190+
if err := createPullSecret(clientset, &ns, creds); err != nil {
191+
log.Println(err)
192+
}
198193
}
199194
return nil
200195
}

0 commit comments

Comments
 (0)