Merge pull request #525 from vshn/fix/user-management-sequence

Sequence user management for postgresql and mariadb

Author: vshnbot

pkg/comp-functions/functions/vshnmariadb/user_management.go

@@ -31,16 +31,41 @@ func UserManagement(ctx context.Context, comp *vshnv1.VSHNMariaDB, svc *runtime.
 
 	for _, access := range comp.Spec.Parameters.Service.Access {
 
+		// We don't have a dependency for the user
+		// Checking for existence of the helm release does not mean that mariadb is ready to accept connections
 		userPasswordRef := addUser(comp, svc, *access.User)
 
 		dbname := *access.User
 		if access.Database != nil {
 			dbname = *access.Database
 		}
 
-		addDatabase(comp, svc, dbname)
+		userName := fmt.Sprintf("%s-%s-role", comp.GetName(), *access.User)
+		dbName := fmt.Sprintf("%s-%s-database", comp.GetName(), dbname)
+		grantName := fmt.Sprintf("%s-%s-%s-grants", comp.GetName(), *access.User, dbname)
+
+		// Only add database if user is ready
+		// We also check for self-existence to prevent deletion when the depending resource turns unready
+		userReady, userErr := svc.IsResourceReady(userName)
+		if (userErr == nil && userReady) || svc.ResourceExistsInObserved(dbName) {
+			addDatabase(comp, svc, dbname)
+		} else if userErr != nil {
+			svc.Log.Info("User not yet ready, skipping database creation", "user", userName, "error", userErr.Error())
+		}
 
-		addGrants(comp, svc, *access.User, dbname, access.Privileges)
+		// Only add grants if both user and database are ready
+		// We also check for self-existence to prevent deletion when the depending resource turns unready
+		dbReady, dbErr := svc.IsResourceReady(dbName)
+		if (userErr == nil && userReady && dbErr == nil && dbReady) || svc.ResourceExistsInObserved(grantName) {
+			addGrants(comp, svc, *access.User, dbname, access.Privileges)
+		} else {
+			if userErr != nil {
+				svc.Log.Info("User not yet ready, skipping grant creation", "user", userName, "error", userErr.Error())
+			}
+			if dbErr != nil {
+				svc.Log.Info("Database not yet ready, skipping grant creation", "database", dbName, "error", dbErr.Error())
+			}
+		}
 
 		addConnectionDetail(comp, svc, userPasswordRef, *access.User, dbname, access.WriteConnectionSecretToReference)
 	}

pkg/comp-functions/functions/vshnmariadb/user_management_test.go

@@ -86,7 +86,7 @@ func Test_addGrants(t *testing.T) {
 }
 
 func TestUserManagement(t *testing.T) {
-	// given with empty accesss object
+	// given with empty access object
 	svc := commontest.LoadRuntimeFromFile(t, "vshnmariadb/usermanagement/01-emptyaccess.yaml")
 
 	// when applied
@@ -99,7 +99,7 @@ func TestUserManagement(t *testing.T) {
 	db := &my1alpha1.Database{}
 	assert.Error(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
 
-	// when adding an user
+	// when adding a user
 	comp.Spec.Parameters.Service.Access = []vshnv1.VSHNAccess{
 		{
 			User: ptr.To("prod"),
@@ -111,9 +111,13 @@ func TestUserManagement(t *testing.T) {
 	assert.NoError(t, svc.SetDesiredCompositeStatus(comp))
 	assert.Nil(t, UserManagement(context.TODO(), &vshnv1.VSHNMariaDB{}, svc))
 
-	// then expect database
+	// then expect user to be created but not database yet (sequencing: user must be ready first)
+	user := &my1alpha1.User{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(user, fmt.Sprintf("%s-%s-role", comp.GetName(), "prod")))
+
+	// Database should not be created yet since user is not in observed state
 	db = &my1alpha1.Database{}
-	assert.NoError(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
+	assert.Error(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
 
 	// when adding user pointing to same db
 	comp.Spec.Parameters.Service.Access = append(comp.Spec.Parameters.Service.Access, vshnv1.VSHNAccess{
@@ -126,9 +130,15 @@ func TestUserManagement(t *testing.T) {
 	assert.NoError(t, svc.SetDesiredCompositeStatus(comp))
 	assert.Nil(t, UserManagement(context.TODO(), &vshnv1.VSHNMariaDB{}, svc))
 
-	// then expect database
+	// then expect both users but still no database (dependencies not ready)
+	user = &my1alpha1.User{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(user, fmt.Sprintf("%s-%s-role", comp.GetName(), "prod")))
+	user2 := &my1alpha1.User{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(user2, fmt.Sprintf("%s-%s-role", comp.GetName(), "another")))
+
+	// Database still not created since users are not in observed state
 	db = &my1alpha1.Database{}
-	assert.NoError(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
+	assert.Error(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
 
 	// When deleting user pointing to same db
 	comp.Spec.Parameters.Service.Access = []vshnv1.VSHNAccess{
@@ -140,9 +150,9 @@ func TestUserManagement(t *testing.T) {
 
 	assert.NoError(t, setObservedComposition(svc, comp))
 
-	// then expect database
-	db = &my1alpha1.Database{}
-	assert.NoError(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
+	// then expect the other user to still be in desired
+	user = &my1alpha1.User{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(user, fmt.Sprintf("%s-%s-role", comp.GetName(), "another")))
 }
 
 func setObservedComposition(svc *runtime.ServiceRuntime, comp *vshnv1.VSHNMariaDB) error {

pkg/comp-functions/functions/vshnpostgres/user_management.go

@@ -38,6 +38,8 @@ func UserManagement(ctx context.Context, comp *vshnv1.VSHNPostgreSQL, svc *runti
 
 	for _, access := range comp.Spec.Parameters.Service.Access {
 
+		// We don't have a dependency for the user
+		// Checking for existence of sgcluster does not mean that postgres is ready to accept connections
 		userPasswordRef := addUser(comp, svc, *access.User)
 
 		dbuser := *access.User
@@ -46,9 +48,32 @@ func UserManagement(ctx context.Context, comp *vshnv1.VSHNPostgreSQL, svc *runti
 			dbname = *access.Database
 		}
 
-		addDatabase(comp, svc, dbuser, dbname)
+		roleName := fmt.Sprintf("%s-%s-role", comp.GetName(), dbuser)
+		dbName := fmt.Sprintf("%s-%s-database", comp.GetName(), dbname)
+		grantName := fmt.Sprintf("%s-%s-%s-grants", comp.GetName(), dbuser, dbname)
+
+		// Only add database if role is ready
+		// We also check for self-existence to prevent deletion when the depending resource turns unready
+		roleReady, roleErr := svc.IsResourceReady(roleName)
+		if (roleErr == nil && roleReady) || svc.ResourceExistsInObserved(dbName) {
+			addDatabase(comp, svc, dbuser, dbname)
+		} else if roleErr != nil {
+			svc.Log.Info("Role not yet ready, skipping database creation", "role", roleName, "error", roleErr.Error())
+		}
 
-		addGrants(comp, svc, dbuser, dbname, access.Privileges)
+		// Only add grants if both role and database are ready
+		// We also check for self-existence to prevent deletion when the depending resource turns unready
+		dbReady, dbErr := svc.IsResourceReady(dbName)
+		if (roleErr == nil && roleReady && dbErr == nil && dbReady) || svc.ResourceExistsInObserved(grantName) {
+			addGrants(comp, svc, dbuser, dbname, access.Privileges)
+		} else {
+			if roleErr != nil {
+				svc.Log.Info("Role not yet ready, skipping grant creation", "role", roleName, "error", roleErr.Error())
+			}
+			if dbErr != nil {
+				svc.Log.Info("Database not yet ready, skipping grant creation", "database", dbName, "error", dbErr.Error())
+			}
+		}
 
 		err := addConnectionDetail(comp, svc, userPasswordRef, *access.User, dbname, access.WriteConnectionSecretToReference)
 		if err != nil {

pkg/comp-functions/functions/vshnpostgres/user_management_test.go

@@ -122,7 +122,7 @@ func Test_addGrants(t *testing.T) {
 }
 
 func TestUserManagement(t *testing.T) {
-	// given with empty accesss object
+	// given with empty access object
 	svc := commontest.LoadRuntimeFromFile(t, "vshn-postgres/usermanagement/01-emptyaccess.yaml")
 
 	// when applied
@@ -135,7 +135,7 @@ func TestUserManagement(t *testing.T) {
 	db := &pgv1alpha1.Database{}
 	assert.Error(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
 
-	// when adding an user
+	// when adding a user
 	comp.Spec.Parameters.Service.Access = []vshnv1.VSHNAccess{
 		{
 			User: ptr.To("prod"),
@@ -147,9 +147,13 @@ func TestUserManagement(t *testing.T) {
 	assert.NoError(t, svc.SetDesiredCompositeStatus(comp))
 	assert.Nil(t, UserManagement(context.TODO(), &vshnv1.VSHNPostgreSQL{}, svc))
 
-	// then expect database
+	// then expect role to be created but not database yet (sequencing: role must be ready first)
+	role := &pgv1alpha1.Role{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(role, fmt.Sprintf("%s-%s-role", comp.GetName(), "prod")))
+
+	// Database should not be created yet since role is not in observed state
 	db = &pgv1alpha1.Database{}
-	assert.NoError(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
+	assert.Error(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
 
 	// when adding user pointing to same db
 	comp.Spec.Parameters.Service.Access = append(comp.Spec.Parameters.Service.Access, vshnv1.VSHNAccess{
@@ -162,9 +166,15 @@ func TestUserManagement(t *testing.T) {
 	assert.NoError(t, svc.SetDesiredCompositeStatus(comp))
 	assert.Nil(t, UserManagement(context.TODO(), &vshnv1.VSHNPostgreSQL{}, svc))
 
-	// then expect database
+	// then expect both roles but still no database (dependencies not ready)
+	role = &pgv1alpha1.Role{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(role, fmt.Sprintf("%s-%s-role", comp.GetName(), "prod")))
+	role2 := &pgv1alpha1.Role{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(role2, fmt.Sprintf("%s-%s-role", comp.GetName(), "another")))
+
+	// Database still not created since roles are not in observed state
 	db = &pgv1alpha1.Database{}
-	assert.NoError(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
+	assert.Error(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
 
 	// When deleting user pointing to same db
 	comp.Spec.Parameters.Service.Access = []vshnv1.VSHNAccess{
@@ -176,9 +186,9 @@ func TestUserManagement(t *testing.T) {
 
 	assert.NoError(t, setObservedComposition(svc, comp))
 
-	// then expect database
-	db = &pgv1alpha1.Database{}
-	assert.NoError(t, svc.GetDesiredComposedResourceByName(db, fmt.Sprintf("%s-%s-database", comp.GetName(), "prod")))
+	// then expect the other role to still be in desired
+	role = &pgv1alpha1.Role{}
+	assert.NoError(t, svc.GetDesiredComposedResourceByName(role, fmt.Sprintf("%s-%s-role", comp.GetName(), "another")))
 }
 
 func setObservedComposition(svc *runtime.ServiceRuntime, comp *vshnv1.VSHNPostgreSQL) error {

pkg/comp-functions/runtime/function_mgr.go

@@ -1533,3 +1533,38 @@ func (s *ServiceRuntime) CopyKubeResource(ctx context.Context, obj client.Object
 
 	return instObj, nil
 }
+
+// IsResourceReady checks if a resource exists in observed state with Ready=True condition.
+func (s *ServiceRuntime) IsResourceReady(resourceName string) (bool, error) {
+	observed, err := s.GetAllObserved()
+	if err != nil {
+		return false, fmt.Errorf("cannot get observed resources: %w", err)
+	}
+
+	res, ok := observed[resource.Name(resourceName)]
+	if !ok {
+		return false, fmt.Errorf("resource %s not in observed state", resourceName)
+	}
+
+	cond := res.Resource.GetCondition(xpv1.TypeReady)
+	if cond.Status != corev1.ConditionTrue {
+		return false, fmt.Errorf("resource %s is not ready: %s", resourceName, cond.Reason)
+	}
+
+	return true, nil
+}
+
+// ResourceExistsInObserved checks if a resource exists in observed state.
+// Useful for preventing deletion when dependencies become temporarily unavailable.
+// If GetAllObserved fails, returns true (safer default) and adds a fatal result to halt composition.
+func (s *ServiceRuntime) ResourceExistsInObserved(resourceName string) bool {
+	observed, err := s.GetAllObserved()
+	if err != nil {
+		s.Log.Error(err, "Failed to get observed resources, halting composition", "resourceName", resourceName)
+		s.AddResult(NewFatalResult(fmt.Errorf("cannot get observed resources to check if %s exists: %w", resourceName, err)))
+		return true
+	}
+
+	_, ok := observed[resource.Name(resourceName)]
+	return ok
+}