Skip to content

CLOUDP-353163: remove search 8.0.10 support #559

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
merged 18 commits into from
Nov 4, 2025
+58 −238
Merged

CLOUDP-353163: remove search 8.0.10 support #559

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
18 commits
Select commit Hold shift + click to select a range
3ec055e
[Search] Implement gRPC and mTLS
fealebenpae Oct 13, 2025
6593b18
Merge remote-tracking branch 'origin/master' into fealebenpae/search-…
fealebenpae Oct 16, 2025
b791c36
fix external tests and snippets
fealebenpae Oct 16, 2025
53e9334
try fix enterprise tests
fealebenpae Oct 16, 2025
cdc55d4
update unit tests for wireproto annotation
fealebenpae Oct 16, 2025
83e9b33
bump version of mongod in external snippets
fealebenpae Oct 16, 2025
14bedcf
try fix external tests take 2
fealebenpae Oct 16, 2025
8dc3d81
cheat linter
fealebenpae Oct 16, 2025
f4a1a34
remove searchCoordinator polyfill from external snippets
fealebenpae Oct 16, 2025
75c83de
update the port in external snippets
fealebenpae Oct 20, 2025
83d91a0
remove upgrade test
fealebenpae Oct 23, 2025
c620f73
remove search support for mongod < 8.2.0
anandsyncs Oct 28, 2025
ab48ccb
add changelog
anandsyncs Oct 28, 2025
709430f
Apply suggestion from @anandsyncs
anandsyncs Oct 30, 2025
a6af24e
Apply suggestion from @anandsyncs
anandsyncs Nov 3, 2025
466c072
Merge branch 'master' into anandsyncs/remove-search-8.0.10-support
fealebenpae Nov 3, 2025
1c479a6
fix bad merge
fealebenpae Nov 3, 2025
d61b00a
Apply suggestion from @anandsyncs
anandsyncs Nov 3, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
6 changes: 6 additions & 0 deletions changelog/20251015_other_remove_legacy_search_coordinator_polyfill.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,6 @@
---
kind: other
date: 2025-10-15
---

* Simplified MongoDB Search setup: Removed the custom Search Coordinator polyfill (a piece of compatibility code previously needed to add the required permissions), as MongoDB 8.2.0 and later now include the necessary permissions via the built-in searchCoordinator role.
9 changes: 0 additions & 9 deletions controllers/operator/mongodbreplicaset_controller.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -866,15 +866,6 @@ func (r *ReplicaSetReconcilerHelper) applySearchOverrides(ctx context.Context) b
searchMongodConfig := searchcontroller.GetMongodConfigParameters(search, rs.Spec.GetClusterDomain())
rs.Spec.AdditionalMongodConfig.AddOption("setParameter", searchMongodConfig["setParameter"])

if searchcontroller.NeedsSearchCoordinatorRolePolyfill(rs.Spec.GetMongoDBVersion()) {
log.Infof("Polyfilling the searchCoordinator role for MongoDB %s", rs.Spec.GetMongoDBVersion())

if rs.Spec.Security == nil {
rs.Spec.Security = &mdbv1.Security{}
}
rs.Spec.Security.Roles = append(rs.Spec.Security.Roles, searchcontroller.SearchCoordinatorRole())
}

return true
}

Expand Down
2 changes: 1 addition & 1 deletion controllers/operator/mongodbsearch_controller_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ func newMongoDBCommunity(name, namespace string) *mdbcv1.MongoDBCommunity {
Spec: mdbcv1.MongoDBCommunitySpec{
Type: mdbcv1.ReplicaSet,
Members: 1,
Version: "8.0.10",
Version: "8.2.0",
},
}
}
Expand Down
4 changes: 2 additions & 2 deletions controllers/searchcontroller/community_search_source.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -64,8 +64,8 @@ func (r *CommunitySearchSource) Validate() error {
version, err := semver.ParseTolerant(r.GetMongoDBVersion())
if err != nil {
return xerrors.Errorf("error parsing MongoDB version '%s': %w", r.Spec.Version, err)
} else if version.LT(semver.MustParse("8.0.10")) {
return xerrors.New("MongoDB version must be 8.0.10 or higher")
} else if version.LT(semver.MustParse("8.2.0")) {
return xerrors.New("MongoDB version must be 8.2.0 or higher")
}

foundScram := false
Expand Down
46 changes: 23 additions & 23 deletions controllers/searchcontroller/community_search_source_test.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -50,120 +50,120 @@ func TestCommunitySearchSource_Validate(t *testing.T) {
version: "7.0.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: true,
expectedErrMsg: "MongoDB version must be 8.0.10 or higher",
expectedErrMsg: "MongoDB version must be 8.2.0 or higher",
},
{
name: "Version just below minimum",
version: "8.0.9",
version: "8.1.9",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: true,
expectedErrMsg: "MongoDB version must be 8.0.10 or higher",
expectedErrMsg: "MongoDB version must be 8.2.0 or higher",
},
{
name: "Valid minimum version",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: false,
},
{
name: "Version above minimum",
version: "8.1.0",
version: "8.3.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: false,
},
{
name: "Version with build number",
version: "8.1.0-rc1",
version: "8.3.0-rc1",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: false,
},
// Authentication mode tests - empty/nil cases
{
name: "Empty auth modes",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{},
expectError: false,
},
{
name: "Nil auth modes",
version: "8.0.10",
version: "8.2.0",
authModes: nil,
expectError: false,
},
{
name: "X509 mode only",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"X509"},
expectError: true,
expectedErrMsg: "MongoDBSearch requires SCRAM authentication to be enabled",
},
{
name: "X509 and SCRAM",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"X509", "SCRAM-SHA-256"},
expectError: false,
},
{
name: "Multiple auth modes with SCRAM first",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-1", "X509"},
expectError: false,
},
{
name: "Multiple auth modes with SCRAM last",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"PLAIN", "X509", "SCRAM-SHA-256"},
expectError: false,
},
{
name: "Multiple non-SCRAM modes",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"PLAIN", "X509"},
expectError: true,
expectedErrMsg: "MongoDBSearch requires SCRAM authentication to be enabled",
},
// SCRAM variant tests
{
name: "SCRAM only",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"SCRAM"},
expectError: false,
},
{
name: "SCRAM-SHA-1 only",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-1"},
expectError: false,
},
{
name: "SCRAM-SHA-256 only",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: false,
},
{
name: "All SCRAM variants",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"SCRAM", "SCRAM-SHA-1", "SCRAM-SHA-256"},
expectError: false,
},
// Case-insensitive tests (now supported with ToUpper)
{
name: "Lowercase SCRAM",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"scram-sha-256"},
expectError: false,
},
{
name: "Mixed case SCRAM",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"Scram-Sha-256"},
expectError: false,
},
// Edge case tests
{
name: "PLAIN only",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"PLAIN"},
expectError: true,
expectedErrMsg: "MongoDBSearch requires SCRAM authentication to be enabled",
Expand All @@ -174,11 +174,11 @@ func TestCommunitySearchSource_Validate(t *testing.T) {
version: "7.0.0",
authModes: []mdbcv1.AuthMode{"SCRAM-SHA-256"},
expectError: true,
expectedErrMsg: "MongoDB version must be 8.0.10 or higher",
expectedErrMsg: "MongoDB version must be 8.2.0 or higher",
},
{
name: "Valid version with invalid auth",
version: "8.0.10",
version: "8.2.0",
authModes: []mdbcv1.AuthMode{"X509"},
expectError: true,
expectedErrMsg: "MongoDBSearch requires SCRAM authentication to be enabled",
Expand All @@ -188,7 +188,7 @@ func TestCommunitySearchSource_Validate(t *testing.T) {
version: "7.0.0",
authModes: []mdbcv1.AuthMode{"X509"},
expectError: true,
expectedErrMsg: "MongoDB version must be 8.0.10 or higher", // Should fail on version first
expectedErrMsg: "MongoDB version must be 8.2.0 or higher", // Should fail on version first
},
}

Expand Down
4 changes: 2 additions & 2 deletions controllers/searchcontroller/enterprise_search_source.go
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -55,8 +55,8 @@ func (r EnterpriseResourceSearchSource) Validate() error {
version, err := semver.ParseTolerant(util.StripEnt(r.Spec.GetMongoDBVersion()))
if err != nil {
return xerrors.Errorf("error parsing MongoDB version '%s': %w", r.Spec.GetMongoDBVersion(), err)
} else if version.LT(semver.MustParse("8.0.10")) {
return xerrors.New("MongoDB version must be 8.0.10 or higher")
} else if version.LT(semver.MustParse("8.2.0")) {
return xerrors.New("MongoDB version must be 8.2.0 or higher")
}

if r.Spec.GetTopology() != mdbv1.ClusterTopologySingleCluster {
Expand Down
Loading