Skip to content

OADP-599: Auto create s3 restic secrets for volsync from BSLs #747

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 27 commits into from
Jul 27, 2022
Merged

OADP-599: Auto create s3 restic secrets for volsync from BSLs #747

merged 27 commits into from
Jul 27, 2022

Conversation

savitharaghunathan
Copy link
Member

No description provided.

@savitharaghunathan savitharaghunathan marked this pull request as draft June 29, 2022 19:40
@openshift-ci openshift-ci bot added the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Jun 29, 2022
@openshift-ci openshift-ci bot requested a review from sseago June 29, 2022 19:44
@savitharaghunathan savitharaghunathan removed the request for review from sseago June 29, 2022 20:09
eemcmullan
eemcmullan reviewed Jun 29, 2022
View reviewed changes
@savitharaghunathan savitharaghunathan marked this pull request as ready for review June 30, 2022 19:49
@savitharaghunathan
Copy link
Member Author

/hold
todo: Add plugin support for passing restic secret name in VSB & VSR CR
Add support for restic secret names in snap mover

@savitharaghunathan savitharaghunathan changed the title WIP Resticsecret update Resticsecret update Jun 30, 2022
@openshift-ci openshift-ci bot added do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. and removed do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. labels Jun 30, 2022
@openshift-ci openshift-ci bot requested review from sseago and removed request for eemcmullan June 30, 2022 19:54
@savitharaghunathan
Copy link
Member Author

/retest

shubham-pampattiwar
shubham-pampattiwar reviewed Jul 5, 2022
View reviewed changes
shubham-pampattiwar
shubham-pampattiwar reviewed Jul 5, 2022
View reviewed changes
shubham-pampattiwar
shubham-pampattiwar reviewed Jul 5, 2022
View reviewed changes
shubham-pampattiwar
shubham-pampattiwar reviewed Jul 5, 2022
View reviewed changes
shubham-pampattiwar
shubham-pampattiwar reviewed Jul 5, 2022
View reviewed changes
@savitharaghunathan
Copy link
Member Author

/test 4.9-operator-e2e-azure

@kaovilai

This comment was marked as off-topic.

Sign in to view
@savitharaghunathan
Copy link
Member Author

/retest-required

shubham-pampattiwar
shubham-pampattiwar reviewed Jul 22, 2022
View reviewed changes
Copy link
Member

@shubham-pampattiwar shubham-pampattiwar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Changes look sane to me, Added some suggestions though. Thank you @savitharaghunathan

@savitharaghunathan
Copy link
Member Author

@shubham-pampattiwar Thanks for the elaborate review. I updated the func according to the last feedback. When you get a moment can you take a look at it please?

@savitharaghunathan
Copy link
Member Author

/retest

shubham-pampattiwar
shubham-pampattiwar reviewed Jul 22, 2022
View reviewed changes
shubham-pampattiwar
shubham-pampattiwar reviewed Jul 22, 2022
View reviewed changes
shubham-pampattiwar
shubham-pampattiwar reviewed Jul 22, 2022
View reviewed changes
controllers/datamover.go

for _, bsl := range backupStorageLocationList.Items {
if strings.Contains(bsl.Name, dpa.Name) {
_, err := r.createResticSecretsPerBSL(&dpa, bsl, dmresticsecretname, res_pass)
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@savitharaghunathan Are we assuming that the given datamover secret will work for the BSL configured ? According to this current code, if I am not wrong, we are creating a dm secret per BSL and password provided in this secret will work for all the BSLs configured ?
For e.g:

  1. OADP has 2 BSLs - AWS and GCP. User supplied one dm secret,this PR will be creating restic secret using the dm secret for both the BSLs, right ? I think we should only create the restic secret for the dm one.
  2. OADP has 2 BSLs - Both AWS. Same issue.

Suggested Solution:
We add a BSLName and Provider field to Deature -> DataMover/ And we create the restic secret only for the BSL specified here. WDYT ?

Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please correct me if I am wrong here.

@savitharaghunathan
Copy link
Member Author

/test 4.8-ci-index

kaovilai
kaovilai requested changes Jul 25, 2022
View reviewed changes
@kaovilai
Copy link
Member

/retest

shubham-pampattiwar
shubham-pampattiwar approved these changes Jul 25, 2022
View reviewed changes
Copy link
Member

@shubham-pampattiwar shubham-pampattiwar left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM ! Thank you so much @savitharaghunathan !

@kaovilai kaovilai mentioned this pull request Jul 26, 2022
Merged
1 task
dymurray
dymurray reviewed Jul 26, 2022
View reviewed changes
controllers/datamover.go
if resticsecret == nil {
return false
}
for key, val := range resticsecret.Data {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

We want to update this to check if the key exists at all, right now I get no error if the key isn't set

@kaovilai kaovilai mentioned this pull request Jul 27, 2022
Merged
@openshift-ci
Copy link

openshift-ci bot commented Jul 27, 2022

@savitharaghunathan: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

@shubham-pampattiwar shubham-pampattiwar removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Jul 27, 2022
@savitharaghunathan
Copy link
Member Author

/hold cancel

@savitharaghunathan savitharaghunathan merged commit c5f87df into openshift:master Jul 27, 2022
hhpatel14 added a commit that referenced this pull request Jul 28, 2022
@hhpatel14
Revert "OADP-599: Auto create s3 restic secrets for volsync from BSLs (
285bdd7 
…#747)"

This reverts commit c5f87df.
@eemcmullan eemcmullan mentioned this pull request Aug 2, 2022
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dymurray dymurray dymurray left review comments

@eemcmullan eemcmullan eemcmullan approved these changes

@kaovilai kaovilai kaovilai requested changes

@shubham-pampattiwar shubham-pampattiwar shubham-pampattiwar approved these changes

@sseago sseago Awaiting requested review from sseago

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
5 participants
@savitharaghunathan @kaovilai @dymurray @shubham-pampattiwar @eemcmullan