Skip to content

Migrate Bucket controller to runtime/secrets #1852

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 3 commits into from
Jul 31, 2025
Merged

Migrate Bucket controller to runtime/secrets #1852

merged 3 commits into from
Jul 31, 2025
+220 −773

Conversation

@cappyzawa
Copy link
Member

@cappyzawa cappyzawa force-pushed the feat/bucket-controller-runtime-secrets-migration branch from 410ee9f to ebf1405 Compare July 22, 2025 16:56
stefanprodan
stefanprodan reviewed Jul 22, 2025
View reviewed changes
stefanprodan
stefanprodan reviewed Jul 22, 2025
View reviewed changes
@cappyzawa cappyzawa mentioned this pull request Jul 22, 2025
Closed
21 tasks
stefanprodan
stefanprodan reviewed Jul 23, 2025
View reviewed changes
@cappyzawa cappyzawa mentioned this pull request Jul 25, 2025
Open
@cappyzawa cappyzawa force-pushed the feat/bucket-controller-runtime-secrets-migration branch from 1de1e09 to 087d7e7 Compare July 30, 2025 12:31
@cappyzawa
Copy link
Member Author

This PR applies the same TLS configuration updates that were implemented in #1855 and #1856.

The Bucket controller now uses secrets.WithSystemCertPool() to maintain the existing "extend mode" behavior (system CAs + user CA) while following the updated API patterns established in the other controllers.

cappyzawa added 3 commits July 31, 2025 22:05
@cappyzawa
Migrate Bucket controller to runtime/secrets
3caf8f1 
Replaces internal credential management with runtime/secrets package
to standardize authentication, proxy configuration, and TLS handling
across controllers. This migration eliminates code duplication by
leveraging shared utilities and improves maintainability through
consistent error handling patterns.

The refactoring splits the large reconcileSource method into focused
helper functions for better separation of concerns.

Signed-off-by: cappyzawa <[email protected]>
@cappyzawa
Fix missing namespace in OCI Repository Controller secret error
4b18040 
Include namespace in secret error message for better debugging context.
The secret name was already present in the error, but namespace information
was missing, making it harder to identify which secret in which namespace
was not found.

Signed-off-by: cappyzawa <[email protected]>
@cappyzawa
Fix missing namespace in Helm Repository Controller secret error
9463bcf 
Signed-off-by: cappyzawa <[email protected]>
@cappyzawa cappyzawa force-pushed the feat/bucket-controller-runtime-secrets-migration branch from 51cb0e0 to 9463bcf Compare July 31, 2025 13:05
matheuscscp
matheuscscp approved these changes Jul 31, 2025
View reviewed changes
Copy link
Member

@matheuscscp matheuscscp left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! 🚀

stefanprodan
stefanprodan approved these changes Jul 31, 2025
View reviewed changes
Copy link
Member

@stefanprodan stefanprodan left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

Thanks @cappyzawa 🥇

@stefanprodan stefanprodan merged commit c2b572b into fluxcd:main Jul 31, 2025
8 checks passed
@cappyzawa cappyzawa deleted the feat/bucket-controller-runtime-secrets-migration branch July 31, 2025 16:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@matheuscscp matheuscscp matheuscscp approved these changes

@stefanprodan stefanprodan stefanprodan approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@cappyzawa @matheuscscp @stefanprodan