Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

don't try to recreate pull secrets for refreshing gcp-auth #11945

Merged
merged 8 commits into from Jul 28, 2021
Merged

don't try to recreate pull secrets for refreshing gcp-auth #11945

Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
a8d366f
don't try to recreate pull secrets for refreshing gcp-auth
sharifelgamal Jul 8, 2021
4dd89f8
Merge branch 'master' of github.com:kubernetes/minikube into gcp-sa
sharifelgamal Jul 13, 2021
0b9a2aa
fix time-to-k8s
sharifelgamal Jul 13, 2021
4a2c2f7
fix time to k8s again
sharifelgamal Jul 13, 2021
5227520
Merge branch 'master' of github.com:kubernetes/minikube into gcp-sa
sharifelgamal Jul 19, 2021
c8379ea
Merge branch 'master' of github.com:kubernetes/minikube into gcp-sa
sharifelgamal Jul 23, 2021
a940203
update instead of delete/create
sharifelgamal Jul 23, 2021
6d710b4
only use update if the secret already exists
sharifelgamal Jul 23, 2021
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
50 changes: 34 additions & 16 deletions pkg/addons/addons_gcpauth.go
View file
Open in desktop
Expand Up @@ -139,18 +139,20 @@ func createPullSecret(cc *config.ClusterConfig, creds *google.Credentials) error
secrets := client.Secrets(n.Name)

exists := false
secList, err := secrets.List(context.TODO(), metav1.ListOptions{})
if err != nil {
return err
}
for _, s := range secList.Items {
if s.Name == secretName {
exists = true
break
if !Refresh {
secList, err := secrets.List(context.TODO(), metav1.ListOptions{})
if err != nil {
return err
}
for _, s := range secList.Items {
if s.Name == secretName {
exists = true
break
}
}
}

if !exists {
if !exists || Refresh {
secretObj := &corev1.Secret{
ObjectMeta: metav1.ObjectMeta{
Name: secretName,
Expand All @@ -159,9 +161,16 @@ func createPullSecret(cc *config.ClusterConfig, creds *google.Credentials) error
Type: "kubernetes.io/dockercfg",
}

_, err = secrets.Create(context.TODO(), secretObj, metav1.CreateOptions{})
if err != nil {
return err
if exists && Refresh {
_, err := secrets.Update(context.TODO(), secretObj, metav1.UpdateOptions{})
if err != nil {
return err
}
} else {
_, err = secrets.Create(context.TODO(), secretObj, metav1.CreateOptions{})
if err != nil {
return err
}
}
}

Expand All @@ -183,10 +192,19 @@ func createPullSecret(cc *config.ClusterConfig, creds *google.Credentials) error

ips := corev1.LocalObjectReference{Name: secretName}
for _, sa := range salist.Items {
sa.ImagePullSecrets = append(sa.ImagePullSecrets, ips)
_, err := serviceaccounts.Update(context.TODO(), &sa, metav1.UpdateOptions{})
if err != nil {
return err
add := true
for _, ps := range sa.ImagePullSecrets {
if ps.Name == secretName {
add = false
break
}
}
if add {
sa.ImagePullSecrets = append(sa.ImagePullSecrets, ips)
_, err := serviceaccounts.Update(context.TODO(), &sa, metav1.UpdateOptions{})
if err != nil {
return err
}
}
}

Expand Down