🐛 (go/v4,kustomize/v2): Fix problems by simplify scaffold and removing webhookcainjection_patch. Clarifying replacements for cert-manager #4123
Conversation
|
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: camilamacedo86 The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
the
cncf-cla: yes
k8s-ci-robot
added
approved
camilamacedo86
changed the title
camilamacedo86
changed the title
camilamacedo86
force-pushed
the
simplify-replaces
branch
from
924c1fa
to
0fcbbdd
Compare
camilamacedo86
changed the title
camilamacedo86
changed the title
camilamacedo86
changed the title
camilamacedo86
force-pushed
the
simplify-replaces
branch
3 times, most recently
from
8d61421
to
146865f
Compare
camilamacedo86
changed the title
camilamacedo86
force-pushed
the
simplify-replaces
branch
from
146865f
to
34d079d
Compare
| # - select: | ||
| # kind: ValidatingWebhookConfiguration | ||
| # fieldPaths: | ||
| # - .metadata.annotations.[cert-manager.io/inject-ca-from] |
There was a problem hiding this comment.
@camilamacedo86 one question in this - replacements are executed sequentially. If we enable all defaulting, mutating and conversion - wouldn't the annotation be overwritten given the field path is the same?
There was a problem hiding this comment.
In our e2e tests, we have enabled all of them. You can see the changes here: Link to GitHub PR (we uncommented all tests, and they work as expected).
Additionally, the paths are different for each configuration. One will replace the ValidatingWebhookConfiguration, another will replace the MutatingWebhookConfiguration, and so on.
Moreover, in the e2e tests for the deploy image sample, we are specifically checking the scenario where only validating webhooks are scaffolded. You can review that here: Link to GitHub Workflow.
However, If you identify any scenarios where this could potentially cause issues, please let us know. We can then add e2e tests to ensure everything is functioning correctly.
There was a problem hiding this comment.
/hold
We are working to improve the coverage /tests so that we can ensure this one better
There was a problem hiding this comment.
/hold cancel
Now, see that we are testing with e2e all samples under testdata and the tutorial ones
Also, for go/v4 we added a test to validate webhooks when they are applied in a ns that is not the same where the operator and its server is running
So, it is very well covered too.
camilamacedo86
force-pushed
the
simplify-replaces
branch
2 times, most recently
from
a7347f4
to
f4df3c6
Compare
camilamacedo86
force-pushed
the
simplify-replaces
branch
from
f4df3c6
to
c26de0e
Compare
camilamacedo86
force-pushed
the
simplify-replaces
branch
2 times, most recently
from
0ed05fd
to
bd3991f
Compare
k8s-ci-robot
added
the
do-not-merge/hold
camilamacedo86
force-pushed
the
simplify-replaces
branch
2 times, most recently
from
495d670
to
d0fd88b
Compare
camilamacedo86
force-pushed
the
simplify-replaces
branch
3 times, most recently
from
b252b3b
to
2ae2852
Compare
…tch and clarify replacements. - Removed config/default/webhookcainjection_patch.yaml to streamline the scaffold. - Clarified replacements blocks in kustomization.yaml for easier understanding. Each block is now labeled with instructions for uncommenting based on specific webhook scenarios (ValidatingWebhook, DefaultingWebhook, ConvertingWebhook).
camilamacedo86
force-pushed
the
simplify-replaces
branch
from
2ae2852
to
ccce3ae
Compare
k8s-ci-robot
removed
the
do-not-merge/hold
|
c/c @lentzi90 |
|
Hi @erikgb You might be a good person to help us with the review of this one. |
Closes: #3538
Closes: #4119