Fix for Webhook Validations & ManagedCluster Spec Updation

vishu2498 · vishu2498 · commit 2c4e26333ee3 · 2025-04-22T11:09:14.000+05:30
diff --git a/api/v1beta1/azuremanagedcontrolplane_webhook.go b/api/v1beta1/azuremanagedcontrolplane_webhook.go
@@ -534,27 +534,24 @@ func validateManagedClusterNetwork(cli client.Client, labels map[string]string,
 		Name:      clusterName,
 	}
 
-	if err := cli.Get(ctx, key, ownerCluster); err != nil {
-		allErrs = append(allErrs, field.InternalError(field.NewPath("Cluster", "spec", "clusterNetwork"), err))
-		return allErrs
-	}
-
-	if clusterNetwork := ownerCluster.Spec.ClusterNetwork; clusterNetwork != nil {
-		if clusterNetwork.Services != nil {
-			// A user may provide zero or one CIDR blocks. If they provide an empty array,
-			// we ignore it and use the default. AKS doesn't support > 1 Service/Pod CIDR.
-			if len(clusterNetwork.Services.CIDRBlocks) > 1 {
-				allErrs = append(allErrs, field.TooMany(field.NewPath("Cluster", "spec", "clusterNetwork", "services", "cidrBlocks"), len(clusterNetwork.Services.CIDRBlocks), 1))
-			}
-			if len(clusterNetwork.Services.CIDRBlocks) == 1 {
-				serviceCIDR = clusterNetwork.Services.CIDRBlocks[0]
+	if err := cli.Get(ctx, key, ownerCluster); err == nil {
+		if clusterNetwork := ownerCluster.Spec.ClusterNetwork; clusterNetwork != nil {
+			if clusterNetwork.Services != nil {
+				// A user may provide zero or one CIDR blocks. If they provide an empty array,
+				// we ignore it and use the default. AKS doesn't support > 1 Service/Pod CIDR.
+				if len(clusterNetwork.Services.CIDRBlocks) > 1 {
+					allErrs = append(allErrs, field.TooMany(field.NewPath("Cluster", "spec", "clusterNetwork", "services", "cidrBlocks"), len(clusterNetwork.Services.CIDRBlocks), 1))
+				}
+				if len(clusterNetwork.Services.CIDRBlocks) == 1 {
+					serviceCIDR = clusterNetwork.Services.CIDRBlocks[0]
+				}
 			}
-		}
-		if clusterNetwork.Pods != nil {
-			// A user may provide zero or one CIDR blocks. If they provide an empty array,
-			// we ignore it and use the default. AKS doesn't support > 1 Service/Pod CIDR.
-			if len(clusterNetwork.Pods.CIDRBlocks) > 1 {
-				allErrs = append(allErrs, field.TooMany(field.NewPath("Cluster", "spec", "clusterNetwork", "pods", "cidrBlocks"), len(clusterNetwork.Pods.CIDRBlocks), 1))
+			if clusterNetwork.Pods != nil {
+				// A user may provide zero or one CIDR blocks. If they provide an empty array,
+				// we ignore it and use the default. AKS doesn't support > 1 Service/Pod CIDR.
+				if len(clusterNetwork.Pods.CIDRBlocks) > 1 {
+					allErrs = append(allErrs, field.TooMany(field.NewPath("Cluster", "spec", "clusterNetwork", "pods", "cidrBlocks"), len(clusterNetwork.Pods.CIDRBlocks), 1))
+				}
 			}
 		}
 	}
diff --git a/azure/services/managedclusters/spec.go b/azure/services/managedclusters/spec.go
@@ -20,10 +20,6 @@ import (
 	"context"
 	"encoding/base64"
 	"fmt"
-	"net"
-	"sort"
-	"time"
-
 	asocontainerservicev1 "github.com/Azure/azure-service-operator/v2/api/containerservice/v1api20231001"
 	asocontainerservicev1preview "github.com/Azure/azure-service-operator/v2/api/containerservice/v1api20231102preview"
 	asocontainerservicev1hub "github.com/Azure/azure-service-operator/v2/api/containerservice/v1api20240901/storage"
@@ -33,8 +29,10 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/utils/ptr"
+	"net"
 	"sigs.k8s.io/cluster-api/util/secret"
 	"sigs.k8s.io/controller-runtime/pkg/conversion"
+	"sort"
 
 	infrav1 "sigs.k8s.io/cluster-api-provider-azure/api/v1beta1"
 	"sigs.k8s.io/cluster-api-provider-azure/azure"
@@ -762,57 +760,59 @@ func (s *ManagedClusterSpec) Parameters(ctx context.Context, existingObj genrunt
 
 	managedCluster.Spec.AgentPoolProfiles = prevAgentPoolProfiles
 
-	if existingObj != nil {
-		hub := &asocontainerservicev1hub.ManagedCluster{}
-		if err := existingObj.(conversion.Convertible).ConvertTo(hub); err != nil {
-			return nil, err
-		}
-		existingMC := hub
-
-		ps := *existingMC.Status.ProvisioningState
-		if ps != string(infrav1.Canceled) && ps != string(infrav1.Failed) && ps != string(infrav1.Succeeded) {
-			return nil, azure.WithTransientError(errors.Errorf("Unable to update existing managed cluster in non-terminal state. Managed cluster must be in one of the following provisioning states: Canceled, Failed, or Succeeded. Actual state: %s", ps), 20*time.Second)
-		}
-
-		if managedCluster.Spec.AddonProfiles == nil && existingMC.Spec.AddonProfiles != nil {
-			managedCluster.Spec.AddonProfiles = map[string]asocontainerservicev1hub.ManagedClusterAddonProfile{}
-		}
-
-		for key, item := range existingMC.Spec.AddonProfiles {
-			if managedCluster.Spec.AddonProfiles == nil {
-				managedCluster.Spec.AddonProfiles = map[string]asocontainerservicev1hub.ManagedClusterAddonProfile{}
-			}
-
-			if _, ok := managedCluster.Spec.AddonProfiles[key]; !ok {
-				addonProfile := asocontainerservicev1hub.ManagedClusterAddonProfile{
-					Enabled: item.Enabled,
-				}
-				if item.Config != nil {
-					addonProfile.Config = item.Config
-				}
-				managedCluster.Spec.AddonProfiles[key] = addonProfile
-			}
-		}
-
-		// Normalize the LoadBalancerProfile so the diff below doesn't get thrown off by AKS added properties.
-		if managedCluster.Spec.NetworkProfile.LoadBalancerProfile == nil {
-			// If our LoadBalancerProfile generated by the spec is nil, then don't worry about what AKS has added.
-			existingMC.Spec.NetworkProfile.LoadBalancerProfile = nil
-		} else {
-			// If our LoadBalancerProfile generated by the spec is not nil, then remove the effective outbound IPs from
-			// AKS.
-			existingMC.Spec.NetworkProfile.LoadBalancerProfile.EffectiveOutboundIPs = nil
-		}
-
-		// Avoid changing agent pool profiles through AMCP and just use the existing agent pool profiles
-		// AgentPool changes are managed through AMMP.
-		managedCluster.Spec.AgentPoolProfiles = existingMC.Spec.AgentPoolProfiles
-
-		diff := computeDiffOfNormalizedClusters(*managedCluster, *existingMC)
-		if diff == "" {
-			return nil, nil
-		}
-	}
+	//if existingObj != nil {
+	//	hub := &asocontainerservicev1hub.ManagedCluster{}
+	//	if err := existingObj.(conversion.Convertible).ConvertTo(hub); err != nil {
+	//		return nil, err
+	//	}
+	//	existingMC := hub
+	//
+	//	if existingMC.Status.ProvisioningState != nil {
+	//		ps := *existingMC.Status.ProvisioningState
+	//		if ps != string(infrav1.Canceled) && ps != string(infrav1.Failed) && ps != string(infrav1.Succeeded) {
+	//			return nil, azure.WithTransientError(errors.Errorf("Unable to update existing managed cluster in non-terminal state. Managed cluster must be in one of the following provisioning states: Canceled, Failed, or Succeeded. Actual state: %s", ps), 20*time.Second)
+	//		}
+	//	}
+	//
+	//	if managedCluster.Spec.AddonProfiles == nil && existingMC.Spec.AddonProfiles != nil {
+	//		managedCluster.Spec.AddonProfiles = map[string]asocontainerservicev1hub.ManagedClusterAddonProfile{}
+	//	}
+	//
+	//	for key, item := range existingMC.Spec.AddonProfiles {
+	//		if managedCluster.Spec.AddonProfiles == nil {
+	//			managedCluster.Spec.AddonProfiles = map[string]asocontainerservicev1hub.ManagedClusterAddonProfile{}
+	//		}
+	//
+	//		if _, ok := managedCluster.Spec.AddonProfiles[key]; !ok {
+	//			addonProfile := asocontainerservicev1hub.ManagedClusterAddonProfile{
+	//				Enabled: item.Enabled,
+	//			}
+	//			if item.Config != nil {
+	//				addonProfile.Config = item.Config
+	//			}
+	//			managedCluster.Spec.AddonProfiles[key] = addonProfile
+	//		}
+	//	}
+	//
+	//	// Normalize the LoadBalancerProfile so the diff below doesn't get thrown off by AKS added properties.
+	//	if managedCluster.Spec.NetworkProfile.LoadBalancerProfile == nil {
+	//		// If our LoadBalancerProfile generated by the spec is nil, then don't worry about what AKS has added.
+	//		existingMC.Spec.NetworkProfile.LoadBalancerProfile = nil
+	//	} else {
+	//		// If our LoadBalancerProfile generated by the spec is not nil, then remove the effective outbound IPs from
+	//		// AKS.
+	//		existingMC.Spec.NetworkProfile.LoadBalancerProfile.EffectiveOutboundIPs = nil
+	//	}
+	//
+	//	// Avoid changing agent pool profiles through AMCP and just use the existing agent pool profiles
+	//	// AgentPool changes are managed through AMMP.
+	//	managedCluster.Spec.AgentPoolProfiles = existingMC.Spec.AgentPoolProfiles
+	//
+	//	diff := computeDiffOfNormalizedClusters(*managedCluster, *existingMC)
+	//	if diff == "" {
+	//		return nil, nil
+	//	}
+	//}
 
 	if s.Preview {
 		prev := &asocontainerservicev1preview.ManagedCluster{}
