mongodb · vasilevp · Mar 31, 2021 · Mar 16, 2021 · Mar 23, 2021 · Mar 23, 2021
@@ -174,7 +174,7 @@ jobs:
         go version
         go get github.com/onsi/ginkgo/ginkgo && \
         go get github.com/onsi/gomega/...
-        ginkgo --focus "${TEST_NAME}" -nodes=3 test/e2e/
+        ginkgo --focus "${TEST_NAME}" -v -nodes=3 test/e2e/
 
     - name: Upload operator logs
       if: ${{ failure() }}

@@ -220,6 +220,7 @@ func (p *AtlasDatabaseUser) WithName(name string) *AtlasDatabaseUser {
 	p.Name = name
 	return p
 }
+
 func (p *AtlasDatabaseUser) WithAtlasUserName(name string) *AtlasDatabaseUser {
 	p.Spec.Username = name
 	return p
@@ -239,6 +240,7 @@ func (p *AtlasDatabaseUser) WithScope(scopeType ScopeType, name string) *AtlasDa
 	p.Spec.Scopes = append(p.Spec.Scopes, ScopeSpec{Name: name, Type: scopeType})
 	return p
 }
+
 func (p *AtlasDatabaseUser) ClearScopes() *AtlasDatabaseUser {
 	p.Spec.Scopes = make([]ScopeSpec, 0)
 	return p

@@ -48,18 +48,22 @@ func (i IPAccessList) WithComment(comment string) IPAccessList {
 	i.Comment = comment
 	return i
 }
+
 func (i IPAccessList) WithIP(ip string) IPAccessList {
 	i.IPAddress = ip
 	return i
 }
+
 func (i IPAccessList) WithCIDR(cidr string) IPAccessList {
 	i.CIDRBlock = cidr
 	return i
 }
+
 func (i IPAccessList) WithAWSGroup(group string) IPAccessList {
 	i.AwsSecurityGroup = group
 	return i
 }
+
 func (i IPAccessList) WithDeleteAfterDate(date string) IPAccessList {
 	i.DeleteAfterDate = date
 	return i

@@ -10,6 +10,7 @@ func AtlasDatabaseUserPasswordVersion(passwordVersion string) AtlasDatabaseUserS
 		s.PasswordVersion = passwordVersion
 	}
 }
+
 func AtlasDatabaseUserNameOption(name string) AtlasDatabaseUserStatusOption {
 	return func(s *AtlasDatabaseUserStatus) {
 		s.UserName = name

@@ -12,6 +12,7 @@ func AtlasProjectIDOption(id string) AtlasProjectStatusOption {
 		s.ID = id
 	}
 }
+
 func AtlasProjectExpiredIPAccessOption(lists []project.IPAccessList) AtlasProjectStatusOption {
 	return func(s *AtlasProjectStatus) {
 		s.ExpiredIPAccessList = lists

@@ -38,6 +38,7 @@ type Common struct {
 func (c Common) GetConditions() []Condition {
 	return c.Conditions
 }
+
 func (c Common) GetObservedGeneration() int64 {
 	return c.ObservedGeneration
 }
@@ -58,8 +58,6 @@ type AtlasClusterReconciler struct {
 // +kubebuilder:rbac:groups=atlas.mongodb.com,namespace=default,resources=atlasclusters/status,verbs=get;update;patch
 
 func (r *AtlasClusterReconciler) Reconcile(context context.Context, req ctrl.Request) (ctrl.Result, error) {
-	// TODO use the context passed
-	_ = context
 	log := r.Log.With("atlascluster", req.NamespacedName)
 
 	cluster := &mdbv1.AtlasCluster{}
@@ -104,6 +102,11 @@ func (r *AtlasClusterReconciler) Reconcile(context context.Context, req ctrl.Req
 		return result.ReconcileResult(), nil
 	}
 
+	if csResult := ensureConnectionSecrets(ctx, r.Client, project, c); !csResult.IsOk() {
+		ctx.SetConditionFromResult(status.ClusterReadyType, csResult)
+		return csResult.ReconcileResult(), nil
+	}
+
 	ctx.
 		SetConditionTrue(status.ClusterReadyType).
 		EnsureStatusOption(status.AtlasClusterMongoDBVersionOption(c.MongoDBVersion)).

@@ -9,10 +9,15 @@ import (
 	"github.com/google/go-cmp/cmp/cmpopts"
 	"go.mongodb.org/atlas/mongodbatlas"
 	"go.uber.org/zap"
+	v1 "k8s.io/api/core/v1"
+	"sigs.k8s.io/controller-runtime/pkg/client"
 
 	mdbv1 "github.com/mongodb/mongodb-atlas-kubernetes/pkg/api/v1"
+	"github.com/mongodb/mongodb-atlas-kubernetes/pkg/api/v1/status"
+	"github.com/mongodb/mongodb-atlas-kubernetes/pkg/controller/connectionsecret"
 	"github.com/mongodb/mongodb-atlas-kubernetes/pkg/controller/workflow"
 	"github.com/mongodb/mongodb-atlas-kubernetes/pkg/util/compat"
+	"github.com/mongodb/mongodb-atlas-kubernetes/pkg/util/stringutil"
 )
 
 func (r *AtlasClusterReconciler) ensureClusterState(ctx *workflow.Context, project *mdbv1.AtlasProject, cluster *mdbv1.AtlasCluster) (atlasCluster *mongodbatlas.Cluster, _ workflow.Result) {
@@ -152,3 +157,50 @@ func ClustersEqual(log *zap.SugaredLogger, clusterAtlas mongodbatlas.Cluster, cl
 
 	return d == ""
 }
+
+func ensureConnectionSecrets(ctx *workflow.Context, k8sClient client.Client, project *mdbv1.AtlasProject, cluster *mongodbatlas.Cluster) workflow.Result {
+	databaseUsers := mdbv1.AtlasDatabaseUserList{}
+	err := k8sClient.List(context.TODO(), &databaseUsers, client.InNamespace(project.Namespace))
+	if err != nil {
+		return workflow.Terminate(workflow.Internal, err.Error())
+	}
+
+	for _, dbUser := range databaseUsers.Items {
+		found := false
+		for _, c := range dbUser.Status.Conditions {
+			if c.Type == status.ReadyType && c.Status == v1.ConditionTrue {
+				found = true
+				break
+			}
+		}
+
+		if !found {
+			ctx.Log.Debugw("AtlasDatabaseUser not ready - not creating connection secret", "user.name", dbUser.Name)
+			continue
+		}
+
+		scopes := dbUser.GetScopes(mdbv1.ClusterScopeType)
+		if len(scopes) != 0 && !stringutil.Contains(scopes, cluster.Name) {
+			continue
+		}
+
+		password, err := dbUser.ReadPassword(k8sClient)
+		if err != nil {
+			return workflow.Terminate(workflow.ClusterConnectionSecretsNotCreated, err.Error())
+		}
+
+		data := connectionsecret.ConnectionData{
+			DBUserName: dbUser.Spec.Username,
+			ConnURL:    cluster.ConnectionStrings.Standard,
+			SrvConnURL: cluster.ConnectionStrings.StandardSrv,
+			Password:   password,
+		}
+
+		_, err = connectionsecret.Ensure(k8sClient, project.Namespace, project.Spec.Name, project.ID(), cluster.Name, data)
+		if err != nil {
+			return workflow.Terminate(workflow.ClusterConnectionSecretsNotCreated, err.Error())
+		}
+	}
+
+	return workflow.OK()
+}
@@ -79,12 +79,15 @@ func TestClusterMatchesSpec(t *testing.T) {
 	t.Run("Clusters match when Atlas adds default ReplicationSpecs", func(t *testing.T) {
 		atlasCluster, err := mdbv1.DefaultAWSCluster("test-ns", "project-name").Spec.Cluster()
 		assert.NoError(t, err)
-		atlasCluster.ReplicationSpecs = []mongodbatlas.ReplicationSpec{{
-			ID:        "id",
-			NumShards: int64ptr(1),
-			ZoneName:  "zone1",
-			RegionsConfig: map[string]mongodbatlas.RegionsConfig{
-				"US_EAST": {AnalyticsNodes: int64ptr(0), ElectableNodes: int64ptr(3), Priority: int64ptr(7), ReadOnlyNodes: int64ptr(0)}}},
+		atlasCluster.ReplicationSpecs = []mongodbatlas.ReplicationSpec{
+			{
+				ID:        "id",
+				NumShards: int64ptr(1),
+				ZoneName:  "zone1",
+				RegionsConfig: map[string]mongodbatlas.RegionsConfig{
+					"US_EAST": {AnalyticsNodes: int64ptr(0), ElectableNodes: int64ptr(3), Priority: int64ptr(7), ReadOnlyNodes: int64ptr(0)},
+				},
+			},
 		}
 		operatorCluster := mdbv1.DefaultAWSCluster("test-ns", "project-name")
 		operatorCluster.Spec.ReplicationSpecs = []mdbv1.ReplicationSpec{{
@@ -101,12 +104,15 @@ func TestClusterMatchesSpec(t *testing.T) {
 	t.Run("Clusters don't match when Atlas adds default ReplicationSpecs and Operator overrides something", func(t *testing.T) {
 		atlasCluster, err := mdbv1.DefaultAWSCluster("test-ns", "project-name").Spec.Cluster()
 		assert.NoError(t, err)
-		atlasCluster.ReplicationSpecs = []mongodbatlas.ReplicationSpec{{
-			ID:        "id",
-			NumShards: int64ptr(1),
-			ZoneName:  "zone1",
-			RegionsConfig: map[string]mongodbatlas.RegionsConfig{
-				"US_EAST": {AnalyticsNodes: int64ptr(0), ElectableNodes: int64ptr(3), Priority: int64ptr(7), ReadOnlyNodes: int64ptr(0)}}},
+		atlasCluster.ReplicationSpecs = []mongodbatlas.ReplicationSpec{
+			{
+				ID:        "id",
+				NumShards: int64ptr(1),
+				ZoneName:  "zone1",
+				RegionsConfig: map[string]mongodbatlas.RegionsConfig{
+					"US_EAST": {AnalyticsNodes: int64ptr(0), ElectableNodes: int64ptr(3), Priority: int64ptr(7), ReadOnlyNodes: int64ptr(0)},
+				},
+			},
 		}
 		operatorCluster := mdbv1.DefaultAWSCluster("test-ns", "project-name")
 		operatorCluster.Spec.ReplicationSpecs = []mdbv1.ReplicationSpec{{
@@ -117,12 +123,15 @@ func TestClusterMatchesSpec(t *testing.T) {
 		merged, err := MergedCluster(*atlasCluster, operatorCluster.Spec)
 		assert.NoError(t, err)
 
-		expectedReplicationSpecs := []mongodbatlas.ReplicationSpec{{
-			ID:        "id",
-			NumShards: int64ptr(2),
-			ZoneName:  "zone5",
-			RegionsConfig: map[string]mongodbatlas.RegionsConfig{
-				"US_EAST": {AnalyticsNodes: int64ptr(0), ElectableNodes: int64ptr(3), Priority: int64ptr(7), ReadOnlyNodes: int64ptr(0)}}},
+		expectedReplicationSpecs := []mongodbatlas.ReplicationSpec{
+			{
+				ID:        "id",
+				NumShards: int64ptr(2),
+				ZoneName:  "zone5",
+				RegionsConfig: map[string]mongodbatlas.RegionsConfig{
+					"US_EAST": {AnalyticsNodes: int64ptr(0), ElectableNodes: int64ptr(3), Priority: int64ptr(7), ReadOnlyNodes: int64ptr(0)},
+				},
+			},
 		}
 		assert.Equal(t, expectedReplicationSpecs, merged.ReplicationSpecs)
 
@@ -167,6 +176,7 @@ func TestClusterMatchesSpec(t *testing.T) {
 		assert.False(t, equal)
 	})
 }
+
 func int64ptr(i int64) *int64 {
 	return &i
 }
@@ -14,8 +14,7 @@ import (
 	"github.com/mongodb/mongodb-atlas-kubernetes/pkg/util/stringutil"
 )
 
-// createOrUpdateConnectionSecrets
-func createOrUpdateConnectionSecrets(ctx *workflow.Context, k8sClient client.Client, project mdbv1.AtlasProject, dbUser mdbv1.AtlasDatabaseUser) workflow.Result {
+func CreateOrUpdateConnectionSecrets(ctx *workflow.Context, k8sClient client.Client, project mdbv1.AtlasProject, dbUser mdbv1.AtlasDatabaseUser) workflow.Result {
 	clusters, _, err := ctx.Client.Clusters.List(context.Background(), project.ID(), &mongodbatlas.ListOptions{})
 	if err != nil {
 		return workflow.Terminate(workflow.DatabaseUserConnectionSecretsNotCreated, err.Error())

@@ -43,7 +43,7 @@ func (r *AtlasDatabaseUserReconciler) ensureDatabaseUser(ctx *workflow.Context,
 		return result
 	}
 
-	if result := createOrUpdateConnectionSecrets(ctx, r.Client, project, dbUser); !result.IsOk() {
+	if result := CreateOrUpdateConnectionSecrets(ctx, r.Client, project, dbUser); !result.IsOk() {
 		return result
 	}
 
@@ -131,6 +131,7 @@ func performUpdateInAtlas(ctx *workflow.Context, k8sClient client.Client, projec
 		// after the successful update we'll retry reconciliation so that clusters had a chance to start working
 		return retryAfterUpdate
 	}
+
 	return workflow.OK()
 }
 

@@ -19,10 +19,11 @@ const (
 
 // Atlas Cluster reasons
 const (
-	ClusterNotCreatedInAtlas ConditionReason = "ClusterNotCreatedInAtlas"
-	ClusterNotUpdatedInAtlas ConditionReason = "ClusterNotUpdatedInAtlas"
-	ClusterCreating          ConditionReason = "ClusterCreating"
-	ClusterUpdating          ConditionReason = "ClusterUpdating"
+	ClusterNotCreatedInAtlas           ConditionReason = "ClusterNotCreatedInAtlas"
+	ClusterNotUpdatedInAtlas           ConditionReason = "ClusterNotUpdatedInAtlas"
+	ClusterCreating                    ConditionReason = "ClusterCreating"
+	ClusterUpdating                    ConditionReason = "ClusterUpdating"
+	ClusterConnectionSecretsNotCreated ConditionReason = "ClusterConnectionSecretsNotCreated"
 )
 
 // Atlas Database User reasons

@@ -46,6 +46,7 @@ func TestNormalizeIdentifier(t *testing.T) {
 		}
 	})
 }
+
 func TestNormalizeLabelValue(t *testing.T) {
 	t.Run("Valid Label Value", func(t *testing.T) {
 		successCases := []string{

@@ -117,7 +117,6 @@ func getMongoClient() (*mongo.Client, error) {
 
 func getMongoCollection(DbName string, CollectionName string) (*mongo.Collection, error) {
 	client, err := getMongoClient()
-
 	if err != nil {
 		return nil, err
 	}

@@ -1,12 +1,11 @@
 package kube
 
 import (
+	"encoding/json"
 	"fmt"
 	"os"
 	"strings"
 
-	"encoding/json"
-
 	. "github.com/onsi/gomega"
 	. "github.com/onsi/gomega/gbytes"
 	"github.com/onsi/gomega/gexec"

@@ -27,10 +27,9 @@ type testDataProvider struct {
 }
 
 var _ = Describe("[cluster-ns] Configuration namespaced. Deploy cluster", func() {
-
 	var data testDataProvider
 
-	var _ = AfterEach(func() {
+	_ = AfterEach(func() {
 		GinkgoWriter.Write([]byte("===============================================\n"))
 		GinkgoWriter.Write([]byte("Operator namespace: " + data.resources.Namespace + "\n"))
 		GinkgoWriter.Write([]byte("===============================================\n"))
@@ -47,7 +46,6 @@ var _ = Describe("[cluster-ns] Configuration namespaced. Deploy cluster", func()
 		} else {
 			Eventually(kube.DeleteNamespace(data.resources.Namespace)).Should(Say("deleted"), "Cant delete namespace after testing")
 		}
-
 	})
 
 	// TODO remove portGroup (nodePort for the app)

@@ -15,11 +15,10 @@ import (
 )
 
 var _ = Describe("[cluster-wide] Users (Norton and Nimnul) can work with one Cluster wide operator", func() {
-
 	var NortonSpec, NimnulSpec model.UserInputs
 	commonClusterName := "megacluster"
 
-	var _ = BeforeEach(func() {
+	_ = BeforeEach(func() {
 		By("User Install CRD, cluster wide Operator", func() {
 			Eventually(kube.Apply(ConfigAll)).Should(
 				Say("customresourcedefinition.apiextensions.k8s.io/atlasclusters.atlas.mongodb.com"),
@@ -31,7 +30,7 @@ var _ = Describe("[cluster-wide] Users (Norton and Nimnul) can work with one Clu
 		})
 	})
 
-	var _ = AfterEach(func() {
+	_ = AfterEach(func() {
 		By("Delete clusters", func() {
 			if CurrentGinkgoTestDescription().Failed {
 				GinkgoWriter.Write([]byte("Resources wasn't clean"))

@@ -2,10 +2,9 @@ package utils
 
 import (
 	"encoding/json"
-	"os"
-
 	"io/ioutil"
 	"log"
+	"os"
 	"path/filepath"
 
 	yaml "gopkg.in/yaml.v3"
-Original file line number
+Diff line change
@@ Expand Up / @@ -46,6 +46,7 @@ func TestNormalizeIdentifier(t *testing.T) { @@
     		}
     	})
     }
     func TestNormalizeLabelValue(t *testing.T) {
     	t.Run("Valid Label Value", func(t *testing.T) {
     		successCases := []string{
@@ Expand Down @@