Skip to content

Commit bf7415a

Browse files
pdabelf5pdabelf5
committed
expand special secret validation
1 parent 3ca3d6e commit bf7415a

File tree

1 file changed

+15
-17
lines changed

1 file changed

+15
-17
lines changed

internal/k8s/controller.go

Lines changed: 15 additions & 17 deletions
Original file line numberDiff line numberDiff line change
@@ -1763,7 +1763,8 @@ func (lbc *LoadBalancerController) handleSecretUpdate(secret *api_v1.Secret, res
17631763
lbc.updateResourcesStatusAndEvents(resources, warnings, addOrUpdateErr)
17641764
}
17651765

1766-
func (lbc *LoadBalancerController) validationTLSSpecialSecret(secret *api_v1.Secret, secretName string, secretList *[]string) {
1766+
func (lbc *LoadBalancerController) validationTLSSpecialSecret(secret *api_v1.Secret, secretName string) {
1767+
var specialSecretsToUpdate []string
17671768
secretNsName := secret.Namespace + "/" + secret.Name
17681769

17691770
err := secrets.ValidateTLSSecret(secret)
@@ -1772,28 +1773,25 @@ func (lbc *LoadBalancerController) validationTLSSpecialSecret(secret *api_v1.Sec
17721773
lbc.recorder.Eventf(secret, api_v1.EventTypeWarning, "Rejected", "the special Secret %v was rejected, using the previous version: %v", secretNsName, err)
17731774
return
17741775
}
1775-
*secretList = append(*secretList, secretName)
1776-
}
1776+
specialSecretsToUpdate = append(specialSecretsToUpdate, secretName)
17771777

1778-
func (lbc *LoadBalancerController) handleSpecialSecretUpdate(secret *api_v1.Secret) {
1779-
var specialTLSSecretsToUpdate []string
1780-
secretNsName := secret.Namespace + "/" + secret.Name
1781-
switch secretNsName {
1782-
case lbc.specialSecrets.defaultServerSecret:
1783-
lbc.validationTLSSpecialSecret(secret, configs.DefaultServerSecretFileName, &specialTLSSecretsToUpdate)
1784-
case lbc.specialSecrets.wildcardTLSSecret:
1785-
lbc.validationTLSSpecialSecret(secret, configs.WildcardSecretFileName, &specialTLSSecretsToUpdate)
1786-
default:
1787-
nl.Warnf(lbc.Logger, "special secret not found")
1788-
return
1789-
}
1790-
err := lbc.configurator.AddOrUpdateSpecialTLSSecrets(secret, specialTLSSecretsToUpdate)
1778+
err = lbc.configurator.AddOrUpdateSpecialTLSSecrets(secret, specialSecretsToUpdate)
17911779
if err != nil {
17921780
nl.Errorf(lbc.Logger, "Error when updating the special Secret %v: %v", secretNsName, err)
17931781
lbc.recorder.Eventf(secret, api_v1.EventTypeWarning, "UpdatedWithError", "the special Secret %v was updated, but not applied: %v", secretNsName, err)
17941782
return
17951783
}
1796-
lbc.recorder.Eventf(secret, api_v1.EventTypeNormal, "Updated", "the special Secret %v was updated", secretNsName)
1784+
}
1785+
1786+
func (lbc *LoadBalancerController) handleSpecialSecretUpdate(secret *api_v1.Secret) {
1787+
switch secret.Name {
1788+
case lbc.specialSecrets.defaultServerSecret:
1789+
lbc.validationTLSSpecialSecret(secret, configs.DefaultServerSecretFileName)
1790+
case lbc.specialSecrets.wildcardTLSSecret:
1791+
lbc.validationTLSSpecialSecret(secret, configs.WildcardSecretFileName)
1792+
}
1793+
1794+
lbc.recorder.Eventf(secret, api_v1.EventTypeNormal, "Updated", "the special Secret %v was updated", secret.Namespace+"/"+secret.Name)
17971795
}
17981796

17991797
func getStatusFromEventTitle(eventTitle string) string {

0 commit comments

Comments
 (0)