[Feature] Move TLS Plan Builder logs into Info (#747)

ajanikow · web-flow · commit 51299ac3a565 · 2021-07-02T13:41:54.000+02:00
diff --git a/pkg/deployment/reconcile/plan_builder_tls.go b/pkg/deployment/reconcile/plan_builder_tls.go
@@ -471,13 +471,13 @@ func keyfileRenewalRequired(ctx context.Context,
 		case *url.Error:
 			switch v.Err.(type) {
 			case x509.UnknownAuthorityError, x509.CertificateInvalidError:
-				log.Warn().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")
+				log.Debug().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")
 				return true, true
 			default:
-				log.Warn().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")
+				log.Debug().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")
 			}
 		default:
-			log.Warn().Err(err).Str("type", reflect.TypeOf(err).String()).Msg("Validation of server cert failed")
+			log.Debug().Err(err).Str("type", reflect.TypeOf(err).String()).Msg("Validation of server cert failed")
 		}
 		return false, false
 	}
@@ -493,7 +493,7 @@ func keyfileRenewalRequired(ctx context.Context,
 		}
 
 		if time.Now().Add(CertificateRenewalMargin).After(cert.NotAfter) {
-			log.Warn().Msg("Renewal margin exceeded")
+			log.Info().Msg("Renewal margin exceeded")
 			return true, true
 		}
 	}
@@ -528,7 +528,7 @@ func keyfileRenewalRequired(ctx context.Context,
 		keyfileSha := util.SHA256(keyfile)
 
 		if tls.Result.KeyFile.GetSHA().Checksum() != keyfileSha {
-			log.Warn().Str("current", tls.Result.KeyFile.GetSHA().Checksum()).Str("desired", keyfileSha).Msg("Unable to get tls details")
+			log.Debug().Str("current", tls.Result.KeyFile.GetSHA().Checksum()).Str("desired", keyfileSha).Msg("Unable to get tls details")
 			return true, false
 		}
 	}
diff --git a/pkg/deployment/reconcile/plan_builder_tls_sni.go b/pkg/deployment/reconcile/plan_builder_tls_sni.go
@@ -91,7 +91,7 @@ func createRotateTLSServerSNIPlan(ctx context.Context,
 				return err
 			})
 			if err != nil {
-				log.Warn().Err(err).Msg("Unable to get client")
+				log.Info().Err(err).Msg("Unable to get client")
 				continue
 			}
 
@@ -102,7 +102,7 @@ func createRotateTLSServerSNIPlan(ctx context.Context,
 				return err
 			})
 			if err != nil {
-				log.Warn().Err(err).Msg("SNI compare failed")
+				log.Info().Err(err).Msg("SNI compare failed")
 				return nil
 
 			} else if !ok {

Original file line number	Diff line number	Diff line change
`@@ -471,13 +471,13 @@ func keyfileRenewalRequired(ctx context.Context,`
`471`	`471`	`case *url.Error:`
`472`	`472`	`switch v.Err.(type) {`
`473`	`473`	`case x509.UnknownAuthorityError, x509.CertificateInvalidError:`
`474`		`- log.Warn().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")`
	`474`	`+ log.Debug().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")`
`475`	`475`	`return true, true`
`476`	`476`	`default:`
`477`		`- log.Warn().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")`
	`477`	`+ log.Debug().Err(v.Err).Str("type", reflect.TypeOf(v.Err).String()).Msg("Validation of server cert failed")`
`478`	`478`	`}`
`479`	`479`	`default:`
`480`		`- log.Warn().Err(err).Str("type", reflect.TypeOf(err).String()).Msg("Validation of server cert failed")`
	`480`	`+ log.Debug().Err(err).Str("type", reflect.TypeOf(err).String()).Msg("Validation of server cert failed")`
`481`	`481`	`}`
`482`	`482`	`return false, false`
`483`	`483`	`}`
`@@ -493,7 +493,7 @@ func keyfileRenewalRequired(ctx context.Context,`
`493`	`493`	`}`
`494`	`494`
`495`	`495`	`if time.Now().Add(CertificateRenewalMargin).After(cert.NotAfter) {`
`496`		`- log.Warn().Msg("Renewal margin exceeded")`
	`496`	`+ log.Info().Msg("Renewal margin exceeded")`
`497`	`497`	`return true, true`
`498`	`498`	`}`
`499`	`499`	`}`
`@@ -528,7 +528,7 @@ func keyfileRenewalRequired(ctx context.Context,`
`528`	`528`	`keyfileSha := util.SHA256(keyfile)`
`529`	`529`
`530`	`530`	`if tls.Result.KeyFile.GetSHA().Checksum() != keyfileSha {`
`531`		`- log.Warn().Str("current", tls.Result.KeyFile.GetSHA().Checksum()).Str("desired", keyfileSha).Msg("Unable to get tls details")`
	`531`	`+ log.Debug().Str("current", tls.Result.KeyFile.GetSHA().Checksum()).Str("desired", keyfileSha).Msg("Unable to get tls details")`
`532`	`532`	`return true, false`
`533`	`533`	`}`
`534`	`534`	`}`