MGMT-15704 Assisted service should create Day2 import CR for hub cluster.

[paul-maidment]

When using assisted-service in KubeAPI mode, we want to import the local cluster automatically, allowing it to be managed in a similar fashion to the spoke cluster.

The intent is to allow the user to perform day2 operations on the local cluster, to allow the addition of workers and so on.

Presently this is only possible via manual efforts and is not very customer friendly.

This PR aims to resolve this by adding functionality to import the local cluster as described above.

The behaviour during upgrade will be dealt with in another ticket.

List all the issues related to this PR

• New Feature
• Enhancement
• Bug fix
• Tests
• Documentation
• CI/CD

What environments does this code impact?

• Automation (CI, tools, etc)
• Cloud
• Operator Managed Deployments
• None

How was this code tested?

• assisted-test-infra environment
• dev-scripts environment
• Reviewer's test appreciated
• Waiting for CI to do a full test run
• Manual (Elaborate on how it was tested)
• No tests needed

Checklist

• Title and description added to both, commit and PR.
• Relevant issues have been associated (see CONTRIBUTING guide)
• This change does not require a documentation update (docstring, docs, README, etc)
• Does this change include unit-tests (note that code changes require unit-tests)

Reviewers Checklist

• Are the title and description (in both PR and commit) meaningful and clear?
• Is there a bug required (and linked) for this change?
• Should this PR be backported?

[openshift-ci]

Skipping CI for Draft Pull Request.
If you want CI signal for your change, please convert it to an actual PR.
You can still manually trigger a test run with /test all

[filanov]

Using ZTP in the commit message is incorrect, here you are referring to kube-api or the operator, have nothing to do with ZTP

[filanov]

/assign @nmagnezi

[codecov]

Codecov Report

Merging #5459 (eeca32d) into master (52448cd) will decrease coverage by 0.06%.
Report is 4 commits behind head on master.
The diff coverage is 63.72%.

❗ Current head eeca32d differs from pull request most recent head c2aabc3. Consider uploading reports for the commit c2aabc3 to get more accurate results

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #5459      +/-   ##
==========================================
- Coverage   67.74%   67.68%   -0.06%     
==========================================
  Files         229      232       +3     
  Lines       33571    33968     +397     
==========================================
+ Hits        22741    22992     +251     
- Misses       8790     8929     +139     
- Partials     2040     2047       +7     

Files Changed	Coverage Δ
...oller/controllers/clusterdeployments_controller.go	71.23% <ø> (ø)
...alclusterimport/local_cluster_import_operations.go	0.00% <0.00%> (ø)
...terimport/local_cluster_import_operations_mocks.go	76.10% <76.10%> (ø)
pkg/localclusterimport/import_local_cluster.go	90.27% <90.27%> (ø)

... and 1 file with indirect coverage changes

[filanov]

Please add in the commit message why did you had to add permissions to specific resources

General comment about if else
usually it's cleaner to handle the error first, then you will not need the else in most cases

[nmagnezi]

Are there any checks we can do here to ensure that cluster is actually healthy?
Also, why is ZTP mentioned here?

[paul-maidment]

I'm not sure that this is possible at this stage.

The one thing we do perform is a check of the cluster-version history, which will show up as completed if the last update was applied.

[filanov]

i'm not sure which tests can be done in this case, domain resolution and valid kubeconfig, but if you are taking them from the cluster and even if they are invalid, what can be done?

[nmagnezi]

Few things about this function:

1. It does to many things, which should be split to sub functions for both readability and tests.
2. It can potentially fail in too many places (which is related to the first point, in part). I also think that for many things here it is worth to use multiErr to aggregate a much of the problems and reflect them to the user as early as possible.

[paul-maidment]

1: Done
2: Done

[paul-maidment]

Using ZTP in the commit message is incorrect, here you are referring to kube-api or the operator, have nothing to do with ZTP

Fixed now

Using ZTP in the commit message is incorrect, here you are referring to kube-api or the operator, have nothing to do with ZTP

Fixed

[filanov]

can be info, it's not something periodic

[filanov]

please make sure with ACM/MCE that they are not using the same namespace

[filanov]

what will happen is it's already exists?
same question to all the resources.

[paul-maidment]

It would fail to write the cluster image set and the old one would remain in place.
Not sure what the best thing to do is, on one hand, we could delete anything we find when performing this write, but seems to me that this would not be the smart choice until we have looked into the impact of the update ticket.

[filanov]

until we handle upgrade it should be good enough

[filanov]

As we talked, this function can be removed and you will try to create all the objects and if they are already exist you will ignore them, using k8serrors.IsAlreadyExists(err) to check the error

[filanov]

get cannot return already exist

[filanov]

it can return already exist

[filanov]

minor comment - you already handling already exist error inside createNamespace

[paul-maidment]

I actually changed this, I need to be able to mock this so I moved the handling of this stuff into import_local_cluster

[filanov]

minor comment - you already handling already exist error inside createAdminKubeConfig

[paul-maidment]

I actually changed this, I need to be able to mock this so I moved the handling of this stuff into import_local_cluster

[paul-maidment]

/retest

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: filanov, paul-maidment

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [filanov,paul-maidment]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[openshift-ci]

@paul-maidment: all tests passed!

Full PR test history. Your PR dashboard.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[paul-maidment]

/cherry-pick release-ocm-2.8

[openshift-cherrypick-robot]

@paul-maidment: #5459 failed to apply on top of branch "release-ocm-2.8":

Applying: MGMT-15704: Assisted service should create Day2 import CR for hub cluster.
Using index info to reconstruct a base tree...
M	cmd/main.go
M	deploy/olm-catalog/manifests/assisted-service-operator.clusterserviceversion.yaml
M	go.mod
M	internal/controller/controllers/clusterdeployments_controller.go
Falling back to patching base and 3-way merge...
Auto-merging internal/controller/controllers/clusterdeployments_controller.go
Auto-merging go.mod
CONFLICT (content): Merge conflict in go.mod
Auto-merging deploy/olm-catalog/manifests/assisted-service-operator.clusterserviceversion.yaml
Auto-merging cmd/main.go
error: Failed to merge in the changes.
hint: Use 'git am --show-current-patch=diff' to see the failed patch
Patch failed at 0001 MGMT-15704: Assisted service should create Day2 import CR for hub cluster.
When you have resolved this problem, run "git am --continue".
If you prefer to skip this patch, run "git am --skip" instead.
To restore the original branch and stop patching, run "git am --abort".

In response to this:

/cherry-pick release-ocm-2.8

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.