-
Notifications
You must be signed in to change notification settings - Fork 54
/
cforg_validator.go
107 lines (85 loc) · 3.49 KB
/
cforg_validator.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
package workloads
import (
"context"
"fmt"
"strings"
korifiv1alpha1 "code.cloudfoundry.org/korifi/controllers/api/v1alpha1"
"code.cloudfoundry.org/korifi/controllers/webhooks"
apierrors "k8s.io/apimachinery/pkg/api/errors"
"k8s.io/apimachinery/pkg/runtime"
ctrl "sigs.k8s.io/controller-runtime"
logf "sigs.k8s.io/controller-runtime/pkg/log"
"sigs.k8s.io/controller-runtime/pkg/webhook"
)
const (
CFOrgEntityType = "cforg"
OrgDecodingErrorType = "OrgDecodingError"
// Note: the cf cli expects the specfic text `Organization '.*' already exists.` in the error and ignores the error if it matches it.
duplicateOrgNameErrorMessage = "Organization '%s' already exists."
)
var cfOrgLog = logf.Log.WithName("cforg-validate")
//+kubebuilder:webhook:path=/validate-korifi-cloudfoundry-org-v1alpha1-cforg,mutating=false,failurePolicy=fail,sideEffects=None,groups=korifi.cloudfoundry.org,resources=cforgs,verbs=create;update;delete,versions=v1alpha1,name=vcforg.korifi.cloudfoundry.org,admissionReviewVersions={v1,v1beta1}
type CFOrgValidator struct {
duplicateValidator webhooks.NameValidator
placementValidator webhooks.NamespaceValidator
}
var _ webhook.CustomValidator = &CFOrgValidator{}
func NewCFOrgValidator(duplicateValidator webhooks.NameValidator, placementValidator webhooks.NamespaceValidator) *CFOrgValidator {
return &CFOrgValidator{
duplicateValidator: duplicateValidator,
placementValidator: placementValidator,
}
}
func (v *CFOrgValidator) SetupWebhookWithManager(mgr ctrl.Manager) error {
return ctrl.NewWebhookManagedBy(mgr).
For(&korifiv1alpha1.CFOrg{}).
WithValidator(v).
Complete()
}
func (v *CFOrgValidator) ValidateCreate(ctx context.Context, obj runtime.Object) error {
org, ok := obj.(*korifiv1alpha1.CFOrg)
if !ok {
return apierrors.NewBadRequest(fmt.Sprintf("expected a CFOrg but got a %T", obj))
}
err := v.placementValidator.ValidateOrgCreate(*org)
if err != nil {
cfOrgLog.Error(err, err.Error())
return err.ExportJSONError()
}
duplicateErrorMessage := fmt.Sprintf(duplicateOrgNameErrorMessage, org.Spec.DisplayName)
validationErr := v.duplicateValidator.ValidateCreate(ctx, cfOrgLog, org.Namespace, strings.ToLower(org.Spec.DisplayName), duplicateErrorMessage)
if validationErr != nil {
return validationErr.ExportJSONError()
}
return nil
}
func (v *CFOrgValidator) ValidateUpdate(ctx context.Context, oldObj, obj runtime.Object) error {
org, ok := obj.(*korifiv1alpha1.CFOrg)
if !ok {
return apierrors.NewBadRequest(fmt.Sprintf("expected a CFOrg but got a %T", obj))
}
if !org.GetDeletionTimestamp().IsZero() {
return nil
}
oldOrg, ok := oldObj.(*korifiv1alpha1.CFOrg)
if !ok {
return apierrors.NewBadRequest(fmt.Sprintf("expected a CFOrg but got a %T", obj))
}
duplicateErrorMessage := fmt.Sprintf(duplicateOrgNameErrorMessage, org.Spec.DisplayName)
validationErr := v.duplicateValidator.ValidateUpdate(ctx, cfOrgLog, org.Namespace, strings.ToLower(oldOrg.Spec.DisplayName), strings.ToLower(org.Spec.DisplayName), duplicateErrorMessage)
if validationErr != nil {
return validationErr.ExportJSONError()
}
return nil
}
func (v *CFOrgValidator) ValidateDelete(ctx context.Context, obj runtime.Object) error {
org, ok := obj.(*korifiv1alpha1.CFOrg)
if !ok {
return apierrors.NewBadRequest(fmt.Sprintf("expected a CFOrg but got a %T", obj))
}
validationErr := v.duplicateValidator.ValidateDelete(ctx, cfOrgLog, org.Namespace, strings.ToLower(org.Spec.DisplayName))
if validationErr != nil {
return validationErr.ExportJSONError()
}
return nil
}