add backend service reference

GoogleCloudPlatform · Dec 5, 2024 · 4903616 · 4903616
1 parent bc85425
commit 4903616
Show file tree

Hide file tree

Showing 18 changed files with 341 additions and 197 deletions.
diff --git a/apis/compute/v1beta1/computebackendservice_reference.go b/apis/compute/v1beta1/computebackendservice_reference.go
@@ -0,0 +1,163 @@
+// Copyright 2024 Google LLC
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//      http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+package v1beta1
+
+import (
+	"context"
+	"fmt"
+	"strings"
+
+	"github.com/GoogleCloudPlatform/k8s-config-connector/pkg/k8s"
+
+	refsv1beta1 "github.com/GoogleCloudPlatform/k8s-config-connector/apis/refs/v1beta1"
+
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/types"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+)
+
+var _ refsv1beta1.ExternalNormalizer = &ComputeBackendServiceRef{}
+var ComputeBackendServiceGVK = GroupVersion.WithKind("ComputeBackendService")
+
+// ComputeBackendServiceRef defines the resource reference to ComputeBackendService, which "External" field
+// holds the GCP identifier for the KRM object.
+type ComputeBackendServiceRef struct {
+	// The value of an externally managed ComputeBackendService resource.
+	// Should be in the format "projects/{{project}}/global/backendServices/{{backendService}}"
+	// or "projects/{{project}}/regions/{{region}}/backendServices/{{backendService}}".
+	External string `json:"external,omitempty"`
+
+	// The name of a ComputeBackendService resource.
+	Name string `json:"name,omitempty"`
+
+	// The namespace of a ComputeBackendService resource.
+	Namespace string `json:"namespace,omitempty"`
+
+	//parent *ComputeBackendServiceParent
+}
+
+// NormalizedExternal provision the "External" value for other resource that depends on ComputeBackendService.
+// If the "External" is given in the other resource's spec.ComputeBackendServiceRef, the given value will be used.
+// Otherwise, the "Name" and "Namespace" will be used to query the actual ComputeBackendService object from the cluster.
+func (r *ComputeBackendServiceRef) NormalizedExternal(ctx context.Context, reader client.Reader, otherNamespace string) (string, error) {
+	referenceContext := refsv1beta1.ReferenceContext{IsDirectOnly: false, TargetField: "status.selfLink"}
+	// Get value from spec.ComputeBackendServiceRef.external
+	if r.External != "" {
+		if r.Name != "" {
+			return "", fmt.Errorf("cannot specify both name and external on reference")
+		}
+		if referenceContext.IsDirectOnly {
+			if _, _, err := parseComputeTargetTCPProxyExternal(r.External); err != nil {
+				return "", err
+			}
+		}
+		// To ensure backward compatibility for existing users, we do not enforce external format
+		// for non-direct resources
+		return r.External, nil
+	}
+
+	if r.Name == "" {
+		return "", fmt.Errorf("must specify either name or external on reference")
+	}
+
+	// Get value from the Config Connector object
+	if r.Namespace == "" {
+		r.Namespace = otherNamespace
+	}
+	key := types.NamespacedName{Name: r.Name, Namespace: r.Namespace}
+
+	u, err := refsv1beta1.ResolveResourceName(ctx, reader, key, ComputeBackendServiceGVK)
+	if err != nil {
+		return "", err
+	}
+
+	actualExternalRef, found, err := unstructured.NestedString(u.Object, "status", "externalRef")
+	if err != nil {
+		return "", fmt.Errorf("error getting status.externalRef for %s %s/%s: %w", u.GetKind(), u.GetNamespace(), u.GetName(), err)
+	}
+	// If object is DirectOnly, it is created by direct controller.
+	// Get value from status.externalRef, which is the most trustworthy source.
+	if referenceContext.IsDirectOnly {
+		if !found || actualExternalRef == "" {
+			return "", fmt.Errorf("status.externalRef is required for DirectOnly resources, but is missing or empty for %s %s/%s", u.GetKind(), u.GetNamespace(), u.GetName())
+		}
+		r.External = actualExternalRef
+	}
+
+	// If object not DirectOnly, it can be created by either direct controller or legacy controller, depends on user's settings.
+	// If status.externalRef does not exist, it's created by legacy controller. Get values from target field.
+	if !found {
+		targetField := referenceContext.TargetField
+		tokens := strings.Split(targetField, ".")
+		targetField, found, err := unstructured.NestedString(u.Object, tokens...)
+		if err != nil {
+			return "", fmt.Errorf("error getting target field %s for %s %s/%s: %w", targetField, u.GetKind(), u.GetNamespace(), u.GetName(), err)
+		}
+		if !found || targetField == "" {
+			return "", fmt.Errorf("target field %s is required but is missing or empty for %s %s/%s", targetField, u.GetKind(), u.GetNamespace(), u.GetName())
+		}
+		r.External = targetField
+	} else {
+		// If status.externalRef exists, it's created by direct controller. Get value from status.externalRef.
+		r.External = actualExternalRef
+	}
+	return r.External, nil
+}
+
+func (r *ComputeBackendServiceRef) Parent() (*ComputeBackendServiceParent, error) {
+	if r.External != "" {
+		parent, _, err := ParseComputeBackendServiceExternal(r.External)
+		if err != nil {
+			return nil, err
+		}
+		return parent, nil
+	}
+	return nil, fmt.Errorf("ComputeBackendServiceRef not initialized by `NewComputeBackendServiceRef` or resolved by `ResolveExternal`")
+}
+
+type ComputeBackendServiceParent struct {
+	ProjectID string
+	Region    string
+}
+
+func (p *ComputeBackendServiceParent) String() string {
+	if p.Region == "global" {
+		return "projects/" + p.ProjectID + "/global"
+	} else {
+		return "projects/" + p.ProjectID + "/regions/" + p.Region
+	}
+}
+
+func ParseComputeBackendServiceExternal(external string) (parent *ComputeBackendServiceParent, resourceID string, err error) {
+	external = strings.TrimPrefix(external, "/")
+	tokens := strings.Split(external, "/")
+	if len(tokens) == 5 && tokens[0] == "projects" && tokens[3] == "backendServices" {
+		parent = &ComputeBackendServiceParent{
+			ProjectID: tokens[1],
+			Region:    tokens[2],
+		}
+		resourceID = tokens[4]
+		return parent, resourceID, nil
+	} else if len(tokens) == 6 && tokens[0] == "projects" && tokens[2] == "regions" && tokens[4] == "backendServices" {
+		parent = &ComputeBackendServiceParent{
+			ProjectID: tokens[1],
+			Region:    tokens[3],
+		}
+		resourceID = tokens[5]
+		return parent, resourceID, nil
+	}
+	acceptedFormat := "projects/{{project}}/global/backendServices/{{backendService}} or projects/{{project}}/regions/{{region}}/backendServices/{{backendService}}"
+	return nil, "", k8s.NewInvalidFormatError(external, acceptedFormat)
+}
diff --git a/apis/compute/v1beta1/forwardingrule_types.go b/apis/compute/v1beta1/forwardingrule_types.go
@@ -144,7 +144,7 @@ type ComputeForwardingRuleSpec struct {
 	/* A ComputeBackendService to receive the matched traffic. This is
 	used only for internal load balancing. */
 	// +optional
-	BackendServiceRef *refs.ComputeBackendServiceRef `json:"backendServiceRef,omitempty"`
+	BackendServiceRef *ComputeBackendServiceRef `json:"backendServiceRef,omitempty"`
 
 	/* Immutable. An optional description of this resource. Provide this property when
 	you create the resource. */

diff --git a/apis/compute/v1beta1/targettcpproxy_types.go b/apis/compute/v1beta1/targettcpproxy_types.go
@@ -15,7 +15,6 @@
 package v1beta1
 
 import (
-	refs "github.com/GoogleCloudPlatform/k8s-config-connector/apis/refs/v1beta1"
 	"github.com/GoogleCloudPlatform/k8s-config-connector/pkg/apis/k8s/v1alpha1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/runtime/schema"
@@ -34,7 +33,7 @@ var (
 type ComputeTargetTCPProxySpec struct {
 	// A reference to the ComputeBackendService resource.
 	// +required
-	BackendServiceRef *refs.ComputeBackendServiceRef `json:"backendServiceRef"`
+	BackendServiceRef *ComputeBackendServiceRef `json:"backendServiceRef"`
 
 	// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="Description is immutable"
 	// Immutable. An optional description of this resource.

diff --git a/apis/compute/v1beta1/zz_generated.deepcopy.go b/apis/compute/v1beta1/zz_generated.deepcopy.go
diff --git a/apis/refs/v1beta1/computerefs.go b/apis/refs/v1beta1/computerefs.go
@@ -256,15 +256,6 @@ type ComputeAddressRef struct {
 	Namespace string `json:"namespace,omitempty"`
 }
 
-type ComputeBackendServiceRef struct {
-	/* The ComputeBackendService selflink in the form "projects/{{project}}/global/backendServices/{{name}}" or "projects/{{project}}/regions/{{region}}/backendServices/{{name}}" when not managed by Config Connector. */
-	External string `json:"external,omitempty"`
-	/* The `name` field of a `ComputeBackendService` resource. */
-	Name string `json:"name,omitempty"`
-	/* The `namespace` field of a `ComputeBackendService` resource. */
-	Namespace string `json:"namespace,omitempty"`
-}
-
 type ComputeServiceAttachmentRef struct {
 	/* The ComputeServiceAttachment selflink in the form "projects/{{project}}/regions/{{region}}/serviceAttachments/{{name}}" when not managed by Config Connector. */
 	External string `json:"external,omitempty"`

diff --git a/apis/refs/v1beta1/helper.go b/apis/refs/v1beta1/helper.go
@@ -15,8 +15,14 @@
 package v1beta1
 
 import (
+	"context"
 	"fmt"
 
+	"github.com/GoogleCloudPlatform/k8s-config-connector/pkg/k8s"
+	apierrors "k8s.io/apimachinery/pkg/api/errors"
+	"k8s.io/apimachinery/pkg/runtime/schema"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+
 	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
 )
 
@@ -41,3 +47,16 @@ func GetLocation(u *unstructured.Unstructured) (string, error) {
 	}
 	return location, nil
 }
+
+func ResolveResourceName(ctx context.Context, reader client.Reader, key client.ObjectKey, gvk schema.GroupVersionKind) (*unstructured.Unstructured, error) {
+	resource := &unstructured.Unstructured{}
+	resource.SetGroupVersionKind(gvk)
+	if err := reader.Get(ctx, key, resource); err != nil {
+		if apierrors.IsNotFound(err) {
+			return nil, k8s.NewReferenceNotFoundError(resource.GroupVersionKind(), key)
+		}
+		return nil, fmt.Errorf("error reading referenced %v %v: %w", gvk.Kind, key, err)
+	}
+
+	return resource, nil
+}
diff --git a/apis/refs/v1beta1/interface.go b/apis/refs/v1beta1/interface.go
@@ -20,6 +20,15 @@ import (
 	"sigs.k8s.io/controller-runtime/pkg/client"
 )
 
+type ReferenceContext struct {
+	// Whether a referenced resource is only managed by direct controller
+	IsDirectOnly bool
+
+	// the referenced resource's field that will be extracted and set as the value of referenced field
+	// If IsDirectOnly is false, TargetField is required
+	TargetField string
+}
+
 type ExternalNormalizer interface {
 	// NormalizedExternal expects the implemented struct has a "External" field, and this function
 	// assigns a value to the "External" field if it is empty.

diff --git a/....io_v1_customresourcedefinition_computeforwardingrules.compute.cnrm.cloud.google.com.yaml b/....io_v1_customresourcedefinition_computeforwardingrules.compute.cnrm.cloud.google.com.yaml
@@ -113,16 +113,15 @@ spec:
                   - external
                 properties:
                   external:
-                    description: The ComputeBackendService selflink in the form "projects/{{project}}/global/backendServices/{{name}}"
-                      or "projects/{{project}}/regions/{{region}}/backendServices/{{name}}"
-                      when not managed by Config Connector.
+                    description: The value of an externally managed ComputeBackendService
+                      resource. Should be in the format "projects/{{project}}/global/backendServices/{{backendService}}"
+                      or "projects/{{project}}/regions/{{region}}/backendServices/{{backendService}}".
                     type: string
                   name:
-                    description: The `name` field of a `ComputeBackendService` resource.
+                    description: The name of a ComputeBackendService resource.
                     type: string
                   namespace:
-                    description: The `namespace` field of a `ComputeBackendService`
-                      resource.
+                    description: The namespace of a ComputeBackendService resource.
                     type: string
                 type: object
               description:

diff --git a/...io_v1_customresourcedefinition_computetargettcpproxies.compute.cnrm.cloud.google.com.yaml b/...io_v1_customresourcedefinition_computetargettcpproxies.compute.cnrm.cloud.google.com.yaml
@@ -80,16 +80,15 @@ spec:
                   - external
                 properties:
                   external:
-                    description: The ComputeBackendService selflink in the form "projects/{{project}}/global/backendServices/{{name}}"
-                      or "projects/{{project}}/regions/{{region}}/backendServices/{{name}}"
-                      when not managed by Config Connector.
+                    description: The value of an externally managed ComputeBackendService
+                      resource. Should be in the format "projects/{{project}}/global/backendServices/{{backendService}}"
+                      or "projects/{{project}}/regions/{{region}}/backendServices/{{backendService}}".
                     type: string
                   name:
-                    description: The `name` field of a `ComputeBackendService` resource.
+                    description: The name of a ComputeBackendService resource.
                     type: string
                   namespace:
-                    description: The `namespace` field of a `ComputeBackendService`
-                      resource.
+                    description: The namespace of a ComputeBackendService resource.
                     type: string
                 type: object
               description: