Small refactor to centralize registration config checks

davidcassany · davidcassany · commit 40bd06ddd400 · 2023-09-25T06:42:51.000+02:00
Signed-off-by: David Cassany <dcassany@suse.com> (cherry picked from commit 3eec04e)
diff --git a/api/v1beta1/machineregistration_types.go b/api/v1beta1/machineregistration_types.go
@@ -17,7 +17,10 @@ limitations under the License.
 package v1beta1
 
 import (
+	"fmt"
+
 	corev1 "k8s.io/api/core/v1"
+	"k8s.io/apimachinery/pkg/api/meta"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 )
 
@@ -76,7 +79,7 @@ type MachineRegistrationList struct {
 
 // GetClientRegistrationConfig returns the configuration required by the elemental-register
 // to register itself against this MachineRegistration instance.
-func (m MachineRegistration) GetClientRegistrationConfig(cacert string) *Config {
+func (m MachineRegistration) GetClientRegistrationConfig(cacert string) (*Config, error) {
 	conf := m.Spec.Config
 
 	if conf == nil {
@@ -85,6 +88,14 @@ func (m MachineRegistration) GetClientRegistrationConfig(cacert string) *Config
 
 	mRegistration := conf.Elemental.Registration
 
+	if !meta.IsStatusConditionTrue(m.Status.Conditions, ReadyCondition) {
+		return nil, fmt.Errorf("machine registration is not ready")
+	}
+
+	if m.Status.RegistrationURL == "" {
+		return nil, fmt.Errorf("registration URL is not set")
+	}
+
 	return &Config{
 		Elemental: Elemental{
 			Registration: Registration{
@@ -96,7 +107,7 @@ func (m MachineRegistration) GetClientRegistrationConfig(cacert string) *Config
 				Auth:            mRegistration.Auth,
 			},
 		},
-	}
+	}, nil
 }
 
 func init() {
diff --git a/controllers/seedimage_controller.go b/controllers/seedimage_controller.go
@@ -287,7 +287,11 @@ func (r *SeedImageReconciler) reconcileConfigMapObject(ctx context.Context, seed
 
 	podConfigMap := &corev1.ConfigMap{}
 
-	regClientConf := mRegistration.GetClientRegistrationConfig(util.GetRancherCACert(ctx, r))
+	regClientConf, err := mRegistration.GetClientRegistrationConfig(util.GetRancherCACert(ctx, r))
+	if err != nil {
+		return fmt.Errorf("failed processing registration config: %w", err)
+	}
+
 	regData, err := yaml.Marshal(regClientConf)
 	if err != nil {
 		return fmt.Errorf("failed marshalling registration config: %w", err)
diff --git a/controllers/seedimage_controller_test.go b/controllers/seedimage_controller_test.go
@@ -56,6 +56,18 @@ var _ = Describe("reconcile seed image", func() {
 				Name:      "test-name",
 				Namespace: "default",
 			},
+			Status: elementalv1.MachineRegistrationStatus{
+				RegistrationURL:   "https://example.com/token",
+				RegistrationToken: "token",
+				Conditions: []metav1.Condition{
+					{
+						Type:               elementalv1.ReadyCondition,
+						Reason:             elementalv1.SuccessfullyCreatedReason,
+						Status:             metav1.ConditionTrue,
+						LastTransitionTime: metav1.Now(),
+					},
+				},
+			},
 		}
 
 		seedImg = &elementalv1.SeedImage{
@@ -93,9 +105,15 @@ var _ = Describe("reconcile seed image", func() {
 			},
 		}
 
+		statusCopy := mRegistration.Status.DeepCopy()
+
 		Expect(cl.Create(ctx, mRegistration)).To(Succeed())
 		Expect(cl.Create(ctx, seedImg)).To(Succeed())
 		Expect(cl.Create(ctx, setting)).To(Succeed())
+
+		patchBase := client.MergeFrom(mRegistration.DeepCopy())
+		mRegistration.Status = *statusCopy
+		Expect(cl.Status().Patch(ctx, mRegistration, patchBase)).To(Succeed())
 	})
 
 	AfterEach(func() {
@@ -160,6 +178,7 @@ var _ = Describe("reconcile seed image", func() {
 
 var _ = Describe("reconcileBuildImagePod", func() {
 	var r *SeedImageReconciler
+	var setting *managementv3.Setting
 	var mRegistration *elementalv1.MachineRegistration
 	var seedImg *elementalv1.SeedImage
 	var pod *corev1.Pod
@@ -177,6 +196,18 @@ var _ = Describe("reconcileBuildImagePod", func() {
 				Name:      "test-name",
 				Namespace: "default",
 			},
+			Status: elementalv1.MachineRegistrationStatus{
+				RegistrationURL:   "https://example.com/token",
+				RegistrationToken: "token",
+				Conditions: []metav1.Condition{
+					{
+						Type:               elementalv1.ReadyCondition,
+						Reason:             elementalv1.SuccessfullyCreatedReason,
+						Status:             metav1.ConditionTrue,
+						LastTransitionTime: metav1.Now(),
+					},
+				},
+			},
 		}
 
 		seedImg = &elementalv1.SeedImage{
@@ -207,12 +238,26 @@ var _ = Describe("reconcileBuildImagePod", func() {
 			},
 		}
 
+		setting = &managementv3.Setting{
+			ObjectMeta: metav1.ObjectMeta{
+				Name: "server-url",
+			},
+			Value: "https://example.com",
+		}
+
+		statusCopy := mRegistration.Status.DeepCopy()
+
 		Expect(cl.Create(ctx, mRegistration)).To(Succeed())
 		Expect(cl.Create(ctx, seedImg)).To(Succeed())
+		Expect(cl.Create(ctx, setting)).To(Succeed())
+
+		patchBase := client.MergeFrom(mRegistration.DeepCopy())
+		mRegistration.Status = *statusCopy
+		Expect(cl.Status().Patch(ctx, mRegistration, patchBase)).To(Succeed())
 	})
 
 	AfterEach(func() {
-		Expect(test.CleanupAndWait(ctx, cl, mRegistration, seedImg, pod, svc)).To(Succeed())
+		Expect(test.CleanupAndWait(ctx, cl, mRegistration, setting, seedImg, pod, svc)).To(Succeed())
 	})
 
 	It("should return error when a pod with the same name but different owner is there", func() {
@@ -225,7 +270,7 @@ var _ = Describe("reconcileBuildImagePod", func() {
 
 		Expect(cl.Create(ctx, pod)).To(Succeed())
 
-		err := r.reconcileBuildImagePod(ctx, seedImg, &elementalv1.MachineRegistration{})
+		err := r.reconcileBuildImagePod(ctx, seedImg, mRegistration)
 
 		// Pod already there and not owned by the SeedImage obj
 		Expect(err).To(HaveOccurred())
@@ -276,7 +321,8 @@ var _ = Describe("reconcileBuildImagePod", func() {
 		Expect(foundPod.Annotations["elemental.cattle.io/base-image"]).To(Equal(seedImg.Spec.BaseImage))
 
 		seedImg.Spec.BaseImage = "https://example.com/new-base.iso"
-		err = r.reconcileBuildImagePod(ctx, seedImg, &elementalv1.MachineRegistration{})
+
+		err = r.reconcileBuildImagePod(ctx, seedImg, mRegistration)
 		Expect(err).ToNot(HaveOccurred())
 		Expect(cl.Get(ctx, client.ObjectKey{
 			Name:      seedImg.Name,
@@ -309,7 +355,7 @@ var _ = Describe("reconcileBuildImagePod", func() {
 			"write_files": {},
 		}
 
-		err = r.reconcileBuildImagePod(ctx, seedImg, &elementalv1.MachineRegistration{})
+		err = r.reconcileBuildImagePod(ctx, seedImg, mRegistration)
 		Expect(err).ToNot(HaveOccurred())
 		Expect(cl.Get(ctx, client.ObjectKey{
 			Name:      seedImg.Name,
@@ -320,6 +366,7 @@ var _ = Describe("reconcileBuildImagePod", func() {
 
 var _ = Describe("createConfigMapObject", func() {
 	var r *SeedImageReconciler
+	var setting *managementv3.Setting
 	var mRegistration *elementalv1.MachineRegistration
 	var seedImg *elementalv1.SeedImage
 	var configMap *corev1.ConfigMap
@@ -338,6 +385,18 @@ var _ = Describe("createConfigMapObject", func() {
 				Name:      "test-name",
 				Namespace: "default",
 			},
+			Status: elementalv1.MachineRegistrationStatus{
+				RegistrationURL:   "https://example.com/token",
+				RegistrationToken: "token",
+				Conditions: []metav1.Condition{
+					{
+						Type:               elementalv1.ReadyCondition,
+						Reason:             elementalv1.SuccessfullyCreatedReason,
+						Status:             metav1.ConditionTrue,
+						LastTransitionTime: metav1.Now(),
+					},
+				},
+			},
 		}
 
 		seedImg = &elementalv1.SeedImage{
@@ -373,12 +432,26 @@ var _ = Describe("createConfigMapObject", func() {
 			},
 		}
 
+		setting = &managementv3.Setting{
+			ObjectMeta: metav1.ObjectMeta{
+				Name: "server-url",
+			},
+			Value: "https://example.com",
+		}
+
+		statusCopy := mRegistration.Status.DeepCopy()
+
 		Expect(cl.Create(ctx, mRegistration)).To(Succeed())
 		Expect(cl.Create(ctx, seedImg)).To(Succeed())
+		Expect(cl.Create(ctx, setting)).To(Succeed())
+
+		patchBase := client.MergeFrom(mRegistration.DeepCopy())
+		mRegistration.Status = *statusCopy
+		Expect(cl.Status().Patch(ctx, mRegistration, patchBase)).To(Succeed())
 	})
 
 	AfterEach(func() {
-		Expect(test.CleanupAndWait(ctx, cl, mRegistration, seedImg, configMap, pod, svc)).To(Succeed())
+		Expect(test.CleanupAndWait(ctx, cl, mRegistration, seedImg, setting, configMap, pod, svc)).To(Succeed())
 	})
 
 	It("should create a configmap with empty cloud-config data", func() {
diff --git a/pkg/server/api_registration.go b/pkg/server/api_registration.go
@@ -123,8 +123,12 @@ func (i *InventoryServer) apiRegistration(resp http.ResponseWriter, req *http.Re
 }
 
 func (i *InventoryServer) unauthenticatedResponse(registration *elementalv1.MachineRegistration, writer io.Writer) error {
+	config, err := registration.GetClientRegistrationConfig(i.getRancherCACert())
+	if err != nil {
+		return err
+	}
 	return yaml.NewEncoder(writer).
-		Encode(registration.GetClientRegistrationConfig(i.getRancherCACert()))
+		Encode(config)
 }
 
 func (i *InventoryServer) writeMachineInventoryCloudConfig(conn *websocket.Conn, protoVersion register.MessageType, inventory *elementalv1.MachineInventory, registration *elementalv1.MachineRegistration) error {
@@ -159,37 +163,28 @@ func (i *InventoryServer) writeMachineInventoryCloudConfig(conn *websocket.Conn,
 		registration.Spec.Config = &elementalv1.Config{}
 	}
 
-	if registration.Status.RegistrationURL == "" {
-		return fmt.Errorf("registration URL is not set")
+	config, err := registration.GetClientRegistrationConfig(i.getRancherCACert())
+	if err != nil {
+		return err
 	}
-
-	elementalConf := elementalv1.Elemental{
-		Registration: elementalv1.Registration{
-			URL:    registration.Status.RegistrationURL,
-			CACert: i.getRancherCACert(),
-		},
-		SystemAgent: elementalv1.SystemAgent{
-			URL:             fmt.Sprintf("%s/k8s/clusters/local", serverURL),
-			Token:           string(secret.Data["token"]),
-			SecretName:      inventory.Name,
-			SecretNamespace: inventory.Namespace,
-		},
-		Install: registration.Spec.Config.Elemental.Install,
-		Reset:   registration.Spec.Config.Elemental.Reset,
+	config.Elemental.SystemAgent = elementalv1.SystemAgent{
+		URL:             fmt.Sprintf("%s/k8s/clusters/local", serverURL),
+		Token:           string(secret.Data["token"]),
+		SecretName:      inventory.Name,
+		SecretNamespace: inventory.Namespace,
 	}
+	config.Elemental.Install = registration.Spec.Config.Elemental.Install
+	config.Elemental.Reset = registration.Spec.Config.Elemental.Reset
 
 	cloudConf := registration.Spec.Config.CloudConfig
 
 	// legacy register client (old ISO): we should send serialization of legacy (pre-kubebuilder) config.
 	if protoVersion == register.MsgUndefined {
 		log.Debugf("Detected old register client: sending legacy CloudConfig serialization.")
-		return sendLegacyConfig(conn, elementalConf, cloudConf)
+		return sendLegacyConfig(conn, config.Elemental, cloudConf)
 	}
 
-	config := elementalv1.Config{
-		Elemental:   elementalConf,
-		CloudConfig: cloudConf,
-	}
+	config.CloudConfig = cloudConf
 
 	// If client does not support MsgConfig we send back the config as a
 	// byte-stream without a message-type to keep backwards-compatibility.
diff --git a/pkg/server/api_registration_test.go b/pkg/server/api_registration_test.go
@@ -84,6 +84,14 @@ func TestUnauthenticatedResponse(t *testing.T) {
 		registration := elementalv1.MachineRegistration{}
 		registration.Spec.Config = test.config
 		registration.Status.RegistrationURL = test.regUrl
+		registration.Status.Conditions = []metav1.Condition{
+			{
+				Type:               elementalv1.ReadyCondition,
+				Reason:             elementalv1.SuccessfullyCreatedReason,
+				Status:             metav1.ConditionTrue,
+				LastTransitionTime: metav1.Now(),
+			},
+		}
 
 		buffer := new(bytes.Buffer)
 
