Goal Seeking Keyvaults

[theunrepentantgeek]

What this PR does / why we need it:

Implements goal seeking for KeyVaults as described in our ADR.

We add two additional options to createMode:

• createOrRecover - creates a new KeyVault, unless there's a soft-deleted one to recover
• purgeThenCreate - any existing soft-deleted KeyVault is purged, then a new one created.

Closes #1415

Special notes for your reviewer:

The option purgeThenCreate is dangerous because it results in ASO turning a soft-delete into a hard delete without warning and without the possibility of recovery. Our documentation will call this out.

Prerequisites

• Add reflection helper SetProperty #3348

How does this PR make you feel:

If applicable:

• this PR contains tests

[super-harsh]

Can we use the code-gen enums instead?

[theunrepentantgeek]

No, we can't.

The enums only exist in the API variants, not the storage variants, and I don't want to couple this extension to a particular API version.

[super-harsh]

I'd suggest something like below here to re-use the code:

// LogSection creates a distinctive header in the log to aid scanning
func (tc *KubePerTestContext) LogSectionf(section string, args ...any) {
	tc.logf(subsection, "=", args)
}

// LogSection creates a distinctive header in the log to aid scanning
func (tc *KubePerTestContext) LogSubsectionf(subsection string, args ...any) {
	tc.logf(subsection, "-", args)
}

func (tc *KubePerTestContext) logf(s string, r string, args ...any) {
	msg := fmt.Sprintf(s, args...)
	line := strings.Repeat(r, len(msg))
	tc.T.Log(line)
	tc.T.Log(msg)
	tc.T.Log(line)
}

[theunrepentantgeek]

Done.

[matthchr]

minor: I think these two should go down below in the "local imports" section so that there are a total of 3 sections.

[theunrepentantgeek]

I've been deliberately separating out the named imports from the vanilla ones; still respecting the stdlib/library/local order though, so I'll move these down.

[theunrepentantgeek]

Moved.

[matthchr]

Fine with these being added but may not be needed if you follow the suggestion by @super-harsh to use the SDK for Go instead.

[theunrepentantgeek]

Removed, since we don't need them.

[super-harsh]

Do we still use this method?

[theunrepentantgeek]

No, not anymore.

[super-harsh]

Since KV names should be globally unique - Not sure what happens in the case where the soft-deleted KV is in another subscription and it's just the name that is not available.

Just double-checking if the user would get the name not available event/log anyway ?

[theunrepentantgeek]

If the existing KeyVault is in a different subscription, we can't recover nor purge it - and the user gets an appropriate error in the condition of the resource; this is unchanged.

[codecov-commenter]

Codecov Report

Merging #3357 (6a96978) into main (00f2427) will decrease coverage by 0.05%.
The diff coverage is 64.23%.

@@            Coverage Diff             @@
##             main    #3357      +/-   ##
==========================================
- Coverage   54.37%   54.33%   -0.05%     
==========================================
  Files        1544     1545       +1     
  Lines      649180   649311     +131     
==========================================
- Hits       353016   352820     -196     
- Misses     238722   239035     +313     
- Partials    57442    57456      +14     

Files	Coverage Δ
...t/v1api20210401preview/vault_spec_arm_types_gen.go	33.33% <ø> (ø)
.../v1beta20210401preview/vault_spec_arm_types_gen.go	33.33% <ø> (ø)
v2/internal/testcommon/kube_per_test_context.go	79.13% <100.00%> (+0.76%)	⬆️
...ools/generator/internal/config/type_transformer.go	74.70% <100.00%> (+0.40%)	⬆️
v2/api/keyvault/customizations/vault_extensions.go	57.01% <57.01%> (ø)

... and 36 files with indirect coverage changes