Skip to content
This repository has been archived by the owner on Dec 15, 2022. It is now read-only.

Issue while passing the securityGroupIds through patches to elasticsearch.aws.jet.crossplane.io #232

Open
VishnuPrasad-Xyram opened this issue Sep 9, 2022 · 3 comments
Open

Issue while passing the securityGroupIds through patches to elasticsearch.aws.jet.crossplane.io #232

VishnuPrasad-Xyram opened this issue Sep 9, 2022 · 3 comments
Labels
bug Something isn't working

Comments

@VishnuPrasad-Xyram
Copy link

What happened?

I created securityGroup as part of the composition and patched securityGroup-ID to composite resource using below patch

- type: ToCompositeFieldPath
  fromFieldPath: status.atProvider.securityGroupID
  toFieldPath: status.securityGroupID
  policy:
    fromFieldPath: Required

Then patching securityGroup-ID to elasticsearch.aws.jet.crossplane.io using below patch

- type: FromCompositeFieldPath
  fromFieldPath: status.securityGroupID
  toFieldPath: spec.forProvider.vpcOptions[0].securityGroupIds[0]
  policy:
    fromFieldPath: Required

After that when I describe Domain.elasticsearch.aws.jet.crossplane.io/NAME, I could see the correct securityGroup-ID being patched to the resource, but when I checked in the AWS console it took the default securityGroup-ID while creating the elasticSearch Domain.

What environment did it happen in?

  • Crossplane version: crossplane/crossplane:v1.9.0
  • Crossplane provider: crossplane-contrib/[email protected]
  • apiVersion: elasticsearch.aws.jet.crossplane.io/v1alpha1
  • kind: Domain
  • Cloud provider : AWS
  • Kubernetes version : 1.22
  • Kubernetes distribution : Amazon EKS
@VishnuPrasad-Xyram VishnuPrasad-Xyram added the bug Something isn't working label Sep 9, 2022
@haarchri
Copy link
Member

can you check status for securityGroup ? think in jet provider it is simply id status.atProvider.id

https://doc.crds.dev/github.com/crossplane-contrib/provider-jet-aws/ec2.aws.jet.crossplane.io/SecurityGroup/[email protected]#status-atProvider-id

@VishnuPrasad-Xyram
Copy link
Author

VishnuPrasad-Xyram commented Sep 10, 2022
edited
Loading

@haarchri
Yes, it's status.atProvider.id in jet provider.
Am able to patch the securityGroupID to the elastic search resource, When I describe Domain.elasticsearch.aws.jet.crossplane.io/NAME
I could see the securityGroupIds being passed to the elasticSearch as per the image attached.
But when I see in the AWS console, the elasticSearch resource is taking the default securityGroup-ID.

It's same for status.atProvider.id and also for status.atProvider.securityGroupID.
image

But, when we hardcode the securityGroupIds we get what we expect. But I am not able to dynamically create and patch the securityGroupId to the elasticsearch.aws.jet.crossplane.io.

@VishnuPrasad-Xyram
Copy link
Author

@haarchri
We tried with both provider-aws and provider-jet-aws for securityGroups.
And patched the IDs to elasticsearch.aws.jet.crossplane.io using status.atProvider.id for provider-jet-aws and status.atProvider.securityGroupID for provider-aws.

In both cases securityGroup-ID is being patched to composite resource and we were able to refer and patch those IDs to elasticsearch.aws.jet.crossplane.io which I could see when I describe the Domain.elasticsearch.aws.jet.crossplane.io/NAME as mentioned in the screenshot attached in above comment.

In Both the cases(status.atProvider.id and also for status.atProvider.securityGroupID) the elasticsearch.aws.jet.crossplane.io resource is getting created using the default securityGroup.

Thanks in Advance

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
bug Something isn't working
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@haarchri @VishnuPrasad-Xyram