get route from IM configmap

YCShen1010 · YCShen1010 · commit bf8dbbf48f28 · 2025-08-26T08:24:11.000-07:00
Signed-off-by: YuChen &lt;yuchen.shen@mail.utoronto.ca&gt;
diff --git a/velero/schedule/common-service-db/cs-db-br-script-cm-4.6.10.4.11.yaml b/velero/schedule/common-service-db/cs-db-br-script-cm-4.6.10.4.11.yaml
@@ -121,41 +121,53 @@ data:
     function update_idp_config {
         info "Updating IDP configuration with actual cluster domain..."
         
-        # Get the cluster domain from the management ingress
-        CLUSTER_DOMAIN=$(oc get route console -n openshift-console -o jsonpath='{.spec.host}' | sed 's/^console-openshift-console\.//')
+        # Get the cluster domain from ibmcloud-cluster-info configmap
+        CLUSTER_DOMAIN=$(oc get cm ibmcloud-cluster-info -n $CSDB_NAMESPACE -o jsonpath='{.data.cluster_address}' 2>/dev/null || echo "")
         
         if [[ -z $CLUSTER_DOMAIN ]]; then
-            error "Could not determine cluster domain. Please update IDP configuration manually."
+            error "Could not determine cluster domain from ibmcloud-cluster-info configmap. Please update IDP configuration manually."
             return 1
         fi
         
         info "Detected cluster domain: $CLUSTER_DOMAIN"
         
-        NEW_IDP_URL="https://cp-console.${CSDB_NAMESPACE}.${CLUSTER_DOMAIN}/idprovider/v1/auth"
+        NEW_IDP_URL="https://${CLUSTER_DOMAIN}/idprovider/v1/auth"
         
-        info "Updating IDP URLs to: $NEW_IDP_URL"
+        info "Target IDP URL: $NEW_IDP_URL"
         
         # Check if account_iam database exists
         ACCOUNT_IAM_EXISTS=$(oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -c "\list" | grep "account_iam" || echo False)
         
         if [[ $ACCOUNT_IAM_EXISTS != "False" ]]; then
-            oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
-                UPDATE accountiam.idp_config 
-                SET idp = '$NEW_IDP_URL', 
-                    modified_ts = NOW()
-                WHERE idp LIKE '%/idprovider/v1/%';
-            "
+            # Check current IDP configuration
+            CURRENT_IDP=$(oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -t -c "SELECT DISTINCT idp FROM accountiam.idp_config WHERE idp LIKE '%/idprovider/v1/%' LIMIT 1;" | xargs || echo "")
             
-            info "Verifying IDP configuration update..."
-            oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
-                SELECT uid, realm, idp, modified_ts 
-                FROM accountiam.idp_config 
-                ORDER BY modified_ts DESC;
-            "
-            
-            success "IDP configuration updated successfully."
+            if [[ -n $CURRENT_IDP ]] && [[ $CURRENT_IDP != $NEW_IDP_URL ]]; then
+                info "Current IDP URL: $CURRENT_IDP"
+                info "Updating IDP configuration..."
+                
+                oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
+                    UPDATE accountiam.idp_config 
+                    SET idp = '$NEW_IDP_URL', 
+                        modified_ts = NOW()
+                    WHERE idp LIKE '%/idprovider/v1/%';
+                "
+                echo ""
+                info "Verifying IDP configuration update..."
+                oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
+                    SELECT uid, realm, idp, modified_ts 
+                    FROM accountiam.idp_config 
+                    ORDER BY modified_ts DESC;
+                "
+                
+                success "IDP configuration updated successfully in account_iam database."
+            elif [[ $CURRENT_IDP == $NEW_IDP_URL ]]; then
+                info "IDP configuration already matches target URL, no update needed."
+            else
+                info "No IDP configuration found in database, skipping update."
+            fi
         else
-            warning "account_iam database not found, skipping IDP configuration update."
+            info "account_iam database not found, IDP configuration update not applicable."
         fi
     }
 
diff --git a/velero/schedule/common-service-db/test-idp-update.sh b/velero/schedule/common-service-db/test-idp-update.sh
@@ -33,32 +33,41 @@ oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres
     ORDER BY modified_ts DESC;
 "
 
-echo "Getting cluster domain..."
-CLUSTER_DOMAIN=$(oc get route console -n openshift-console -o jsonpath='{.spec.host}' | sed 's/^console-openshift-console\.//')
+echo "Getting cluster domain from ibmcloud-cluster-info configmap..."
+CLUSTER_DOMAIN=$(oc get cm ibmcloud-cluster-info -n $CSDB_NAMESPACE -o jsonpath='{.data.cluster_address}' 2>/dev/null || echo "")
 
 if [[ -z $CLUSTER_DOMAIN ]]; then
-    echo "Warning: Could not determine cluster domain from console route, trying alternative method..."
-    CLUSTER_DOMAIN=$(oc get ingress.config.openshift.io cluster -o jsonpath='{.spec.domain}')
-fi
-
-if [[ -z $CLUSTER_DOMAIN ]]; then
-    echo "Error: Could not determine cluster domain. Using example.com for testing."
-    CLUSTER_DOMAIN="example.com"
+    echo "Error: Could not determine cluster domain from ibmcloud-cluster-info configmap."
+    echo "Please ensure the ibmcloud-cluster-info configmap exists in namespace $CSDB_NAMESPACE"
+    exit 1
 fi
 
 echo "Detected cluster domain: $CLUSTER_DOMAIN"
 
-NEW_IDP_URL="https://cp-console.${CSDB_NAMESPACE}.${CLUSTER_DOMAIN}/idprovider/v1/auth"
-echo "New IDP URL will be: $NEW_IDP_URL"
-
-# Perform the update
-echo "Updating IDP configuration..."
-oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
-    UPDATE accountiam.idp_config 
-    SET idp = '$NEW_IDP_URL', 
-        modified_ts = NOW()
-    WHERE idp LIKE '%/idprovider/v1/%';
-"
+NEW_IDP_URL="https://${CLUSTER_DOMAIN}/idprovider/v1/auth"
+echo "Target IDP URL: $NEW_IDP_URL"
+
+# Check current IDP configuration first
+echo "Checking current IDP configuration..."
+CURRENT_IDP=$(oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -t -c "SELECT DISTINCT idp FROM accountiam.idp_config WHERE idp LIKE '%/idprovider/v1/%' LIMIT 1;" | xargs || echo "")
+
+if [[ -n $CURRENT_IDP ]] && [[ $CURRENT_IDP != $NEW_IDP_URL ]]; then
+    echo "Current IDP URL: $CURRENT_IDP"
+    echo "Updating IDP configuration..."
+    
+    # Perform the update
+    oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
+        UPDATE accountiam.idp_config 
+        SET idp = '$NEW_IDP_URL', 
+            modified_ts = NOW()
+        WHERE idp LIKE '%/idprovider/v1/%';
+    "
+elif [[ $CURRENT_IDP == $NEW_IDP_URL ]]; then
+    echo "IDP configuration already matches target URL, no update needed."
+    echo "Current IDP URL: $CURRENT_IDP"
+else
+    echo "No IDP configuration found in database, skipping update."
+fi
 
 echo "IDP configuration AFTER update:"
 oc -n $CSDB_NAMESPACE exec -t $CNPG_PRIMARY_POD -c postgres -- psql -U postgres -d account_iam -c "
