azimuth-cloud · JohnGarbutt · May 9, 2025 · Apr 28, 2025 · Apr 28, 2025 · Apr 28, 2025
@@ -4,12 +4,35 @@
 import yaml
 
 import easykube
-from easykube.rest.util import PropertyDict
+import httpx
 
-from capi_janitor.openstack import operator, openstack
+from capi_janitor.openstack import openstack
+from capi_janitor.openstack import operator
 from capi_janitor.openstack.operator import OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY
 
 
+# Helper to create an async iterable
+class AsyncIterList:
+    def __init__(self, items):
+        self.items = items
+        self.kwargs = None
+
+    async def list(self, **kwargs):
+        self.kwargs = kwargs
+        for item in self.items:
+            yield item
+
+    def __aiter__(self):
+        self._iter = iter(self.items)
+        return self
+
+    async def __anext__(self):
+        try:
+            return next(self._iter)
+        except StopIteration:
+            raise StopAsyncIteration
+
+
 class TestOperator(unittest.IsolatedAsyncioTestCase):
     async def test_operator(self):
         mock_easykube = mock.AsyncMock(spec=easykube.AsyncClient)
@@ -19,6 +42,183 @@ async def test_operator(self):
 
         mock_easykube.aclose.assert_awaited_once_with()
 
+    async def test_fips_for_cluster(self):
+        prefix = "Floating IP for Kubernetes external service from cluster"
+        fips = [
+            mock.Mock(description=f"{prefix} mycluster"),
+            mock.Mock(description=f"{prefix} asdf"),
+            mock.Mock(description="Some other description"),
+            mock.Mock(description=f"{prefix} mycluster"),
+        ]
+        resource_mock = AsyncIterList(fips)
+
+        result = [
+            fip async for fip in operator.fips_for_cluster(resource_mock, "mycluster")
+        ]
+
+        self.assertEqual(len(result), 2)
+        self.assertEqual(result[0], fips[0])
+        self.assertEqual(result[1], fips[3])
+        self.assertEqual(resource_mock.kwargs, {})
+
+    async def test_lbs_for_cluster(self):
+        lbs = [
+            mock.Mock(name="lb0"),
+            mock.Mock(name="lb1"),
+            mock.Mock(name="lb2"),
+            mock.Mock(name="lb3"),
+        ]
+        # can't pass name into mock.Mock() to do this
+        lbs[0].name = "kube_service_mycluster_api"
+        lbs[1].name = "kube_service_othercluster_api"
+        lbs[2].name = "fake_service_mycluster_api"
+        lbs[3].name = "kube_service_mycluster_ui"
+        resource_mock = AsyncIterList(lbs)
+
+        result = [
+            lb async for lb in operator.lbs_for_cluster(resource_mock, "mycluster")
+        ]
+
+        self.assertEqual(len(result), 2)
+        self.assertEqual(result[0], lbs[0])
+        self.assertEqual(result[1], lbs[3])
+
+    async def test_secgroups_for_cluster(self):
+        prefix = "Security Group for Service LoadBalancer in cluster"
+        secgroups = [
+            mock.Mock(description=f"{prefix} mycluster"),
+            mock.Mock(description=f"{prefix} othercluster"),
+            mock.Mock(description="Other description"),
+            mock.Mock(description=f"{prefix} mycluster"),
+        ]
+        resource_mock = AsyncIterList(secgroups)
+
+        result = []
+        async for sg in operator.secgroups_for_cluster(resource_mock, "mycluster"):
+            result.append(sg)
+
+        self.assertEqual(len(result), 2)
+        self.assertEqual(result[0], secgroups[0])
+        self.assertEqual(result[1], secgroups[3])
+
+    async def test_filtered_volumes_for_cluster(self):
+        volumes = [
+            mock.Mock(
+                metadata={
+                    "cinder.csi.openstack.org/cluster": "mycluster",
+                    OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY: "false",
+                }
+            ),
+            mock.Mock(
+                metadata={
+                    "cinder.csi.openstack.org/cluster": "mycluster",
+                    OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY: "true",
+                }
+            ),
+            mock.Mock(
+                metadata={
+                    "cinder.csi.openstack.org/cluster": "othercluster",
+                    OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY: "false",
+                }
+            ),
+            mock.Mock(
+                metadata={
+                    "cinder.csi.openstack.org/cluster": "mycluster",
+                }
+            ),
+            mock.Mock(metadata={"other_key": "value"}),
+        ]
+        resource_mock = AsyncIterList(volumes)
+
+        result = []
+        async for vol in operator.filtered_volumes_for_cluster(
+            resource_mock, "mycluster"
+        ):
+            result.append(vol)
+
+        self.assertEqual(len(result), 2)
+        self.assertEqual(result[0], volumes[0])
+        self.assertEqual(result[1], volumes[3])
+
+    async def test_snapshots_for_cluster(self):
+        snapshots = [
+            mock.Mock(metadata={"cinder.csi.openstack.org/cluster": "mycluster"}),
+            mock.Mock(metadata={"cinder.csi.openstack.org/cluster": "othercluster"}),
+            mock.Mock(metadata={"cinder.csi.openstack.org/cluster": "mycluster"}),
+            mock.Mock(metadata={"cinder.csi.openstack.org/cluster": "othercluster"}),
+            # Volumes with invalid metadata
+            mock.Mock(metadata={"another_key": "value"}),
+        ]
+        resource_mock = AsyncIterList(snapshots)
+
+        result = []
+        async for snap in operator.snapshots_for_cluster(resource_mock, "mycluster"):
+            result.append(snap)
+
+        self.assertEqual(len(result), 2)
+        self.assertEqual(result[0], snapshots[0])
+        self.assertEqual(result[1], snapshots[2])
+
+    async def test_empty_iterator_returns_true(self):
+        async_iter = AsyncIterList([]).__aiter__()
+        result = await operator.empty(async_iter)
+        self.assertTrue(result)
+
+    async def test_non_empty_iterator_returns_false(self):
+        async_iter = AsyncIterList([1, 2, 3]).__aiter__()
+        result = await operator.empty(async_iter)
+        self.assertFalse(result)
+
+    async def test_try_delete_success(self):
+        instances = [mock.Mock(id=1), mock.Mock(id=2)]
+        resource = mock.Mock()
+        resource.delete = mock.AsyncMock()
+        resource.singular_name = "test_resource"
+        logger = mock.Mock()
+
+        result = await operator.try_delete(logger, resource, AsyncIterList(instances))
+
+        self.assertTrue(result)
+        resource.delete.assert_any_await(1)
+        resource.delete.assert_any_await(2)
+        logger.warn.assert_not_called()
+
+    async def test_try_delete_with_400_and_409_errors(self):
+        instances = [mock.Mock(id=1), mock.Mock(id=2)]
+        resource = mock.Mock()
+        resource.singular_name = "test_resource"
+        logger = mock.Mock()
+
+        resource.delete = mock.AsyncMock(
+            side_effect=[
+                httpx.HTTPStatusError(
+                    "error", request=mock.Mock(), response=mock.Mock(status_code=400)
+                ),
+                httpx.HTTPStatusError(
+                    "error", request=mock.Mock(), response=mock.Mock(status_code=409)
+                ),
+            ]
+        )
+        result = await operator.try_delete(logger, resource, AsyncIterList(instances))
+
+        self.assertTrue(result)
+        self.assertEqual(resource.delete.await_count, 2)
+        self.assertEqual(logger.warn.call_count, 2)
+
+    async def test_delete_with_unexpected_error_raises(self):
+        instances = [mock.Mock(id=1)]
+        resource = mock.Mock()
+        resource.singular_name = "test_resource"
+        logger = mock.Mock()
+
+        resource.delete = mock.AsyncMock(
+            side_effect=httpx.HTTPStatusError(
+                "error", request=mock.Mock(), response=mock.Mock(status_code=500)
+            )
+        )
+        with self.assertRaises(httpx.HTTPStatusError):
+            await operator.try_delete(logger, resource, AsyncIterList(instances))
+
     @mock.patch.object(operator, "patch_finalizers")
     @mock.patch.object(operator, "_get_os_cluster_client")
     async def test_on_openstackcluster_event_adds_finalizers(
@@ -147,47 +347,125 @@ async def test_on_openstackcluster_event_calls_purge(
             ]
         )
 
-    @mock.patch.object(openstack, "Resource")
-    async def test_user_keep_volumes_filter(self, mock_volumes_resource):
-        # Arrange
-        async def _list_volumes():
-            test_volumes = [
-                {
-                    "id": "123",
-                    "name": "volume-1",
-                    "metadata": {
-                        "cinder.csi.openstack.org/cluster": "cluster-1",
-                        OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY: "anything-but-true",
-                    },
-                },
-                {
-                    "id": "456",
-                    "name": "volume-2",
-                    "metadata": {
-                        "cinder.csi.openstack.org/cluster": "cluster-1",
-                        OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY: "true",
-                    },
-                },
-                {
-                    "id": "789",
-                    "name": "volume-3",
-                    "metadata": {
-                        "cinder.csi.openstack.org/cluster": "cluster-2",
-                        OPENSTACK_USER_VOLUMES_RECLAIM_PROPERTY: "true",
+    @mock.patch.object(openstack.Cloud, "from_clouds")
+    async def test_purge_openstack_resources_raises(self, mock_from_clouds):
+        mock_networkapi = mock.AsyncMock()
+        mock_networkapi.resource.side_effect = lambda resource: resource
+
+        mock_cloud = mock.AsyncMock()
+        mock_cloud.__aenter__.return_value = mock_cloud
+        mock_cloud.is_authenticated = False
+        mock_cloud.current_user_id = "user"
+        mock_cloud.api_client.return_value = mock_networkapi
+
+        mock_from_clouds.return_value = mock_cloud
+
+        logger = mock.Mock()
+        clouds_yaml_data = {
+            "clouds": {
+                "openstack": {
+                    "auth": {
+                        "auth_url": "https://example.com:5000/v3",
+                        "application_credential_id": "user",
+                        "application_credential_secret": "pass",
                     },
-                },
-            ]
-            for volume in map(PropertyDict, test_volumes):
-                yield volume
-
-        mock_volumes_resource.list.return_value = _list_volumes()
-        # Act
-        filtered_volumes = [
-            v
-            async for v in operator.filtered_volumes_for_cluster(
-                mock_volumes_resource, "cluster-1"
+                    "region_name": "RegionOne",
+                    "interface": "public",
+                    "identity_api_version": 3,
+                    "auth_type": "v3applicationcredential",
+                }
+            }
+        }
+        with self.assertRaises(openstack.AuthenticationError) as e:
+            await operator.purge_openstack_resources(
+                logger,
+                clouds_yaml_data,
+                "openstack",
+                None,
+                "mycluster",
+                True,
+                False,
             )
-        ]
-        # Assert
-        self.assertEqual(len(filtered_volumes), 1)
-        self.assertEqual(filtered_volumes[0].get("name"), "volume-1")
+        self.assertEqual(
+            str(e.exception),
+            "failed to authenticate as user: user",
+        )
+
+    # @mock.patch.object(openstack.Cloud, "from_clouds")
+    # async def test_purge_openstack_resources_success(self, mock_from_clouds):
+    #     # Mocking the cloud object and API clients
+    #     mock_cloud = mock.AsyncMock()
+    #     mock_networkapi = mock.AsyncMock()
+    #     mock_lbapi = mock.AsyncMock()
+    #     mock_volumeapi = mock.AsyncMock()
+    #     mock_identityapi = mock.AsyncMock()
+
+    #     # Mock the __aenter__ to return the mock_cloud
+    #     mock_cloud.__aenter__.return_value = mock_cloud
+    #     mock_cloud.is_authenticated = True
+    #     mock_cloud.current_user_id = "user"
+    #     mock_cloud.api_client.return_value = mock_networkapi
+
+    #     # Return mock clients for different services when requested
+    #     mock_from_clouds.return_value = mock_cloud
+
+    #     # Mocking the resources for Network, Load Balancer, and Volume APIs
+    #     mock_networkapi.resource.side_effect = lambda resource: {
+    #         "floatingips": mock.AsyncMock(),
+    #         "security-groups": mock.AsyncMock(),
+    #     }.get(resource, None)
+
+    #     mock_lbapi.resource.side_effect = lambda resource: {
+    #         "loadbalancers": mock.AsyncMock(),
+    #     }.get(resource, None)
+
+    #     mock_volumeapi.resource.side_effect = lambda resource: {
+    #         "snapshots/detail": mock.AsyncMock(),
+    #         "snapshots": mock.AsyncMock(),
+    #         "volumes/detail": mock.AsyncMock(),
+    #         "volumes": mock.AsyncMock(),
+    #     }.get(resource, None)
+
+    #     mock_identityapi.resource.side_effect = lambda resource: {
+    #         "application_credentials": mock.AsyncMock(),
+    #     }.get(resource, None)
+
+    #     # Mock logger
+    #     logger = mock.Mock()
+
+    #     clouds_yaml_data = {
+    #         "clouds": {
+    #             "openstack": {
+    #                 "auth": {
+    #                     "auth_url": "https://example.com:5000/v3",
+    #                     "application_credential_id": "user",
+    #                     "application_credential_secret": "pass",
+    #                 },
+    #                 "region_name": "RegionOne",
+    #                 "interface": "public",
+    #                 "identity_api_version": 3,
+    #                 "auth_type": "v3applicationcredential",
+    #             }
+    #         }
+    #     }
+
+    #     # Simulate the purge_openstack_resources method behavior
+    #     await operator.purge_openstack_resources(
+    #         logger,
+    #         clouds_yaml_data,  # Pass the mock cloud config
+    #         "openstack",
+    #         None,
+    #         "mycluster",
+    #         True,
+    #         False,
+    #     )
+
+    #     # Add assertions here based on expected behavior
+    #     # Example: Check that the resources were interacted with
+    #     mock_networkapi.resource.assert_any_call("floatingips")
+    #     mock_lbapi.resource.assert_any_call("loadbalancers")
+    #     mock_volumeapi.resource.assert_any_call("snapshots")
+    #     mock_volumeapi.resource.assert_any_call("volumes")
+
+    #     # Example: Validate if appcred deletion was attempted
+    #     mock_identityapi.resource.assert_any_call("application_credentials")
@@ -17,7 +17,6 @@ commands = stestr run {posargs}
 
 [testenv:pep8]
 commands =
-    ruff check {tox_root}
     ruff format {tox_root}
     codespell {tox_root} -w
     flake8 {postargs}