Skip to content

Commit ae0290e

Browse files
jstueverjstuever
committed
privatelink: selectHostedZoneVPC to return a pointer to the selected vpc
1 parent 2c6274d commit ae0290e

File tree

2 files changed

+12
-16
lines changed

2 files changed

+12
-16
lines changed

pkg/controller/privatelink/actuator/awsactuator/awshubactuator.go

+8-10
Original file line numberDiff line numberDiff line change
@@ -217,7 +217,7 @@ func (a *AWSHubActuator) ensureHostedZone(cd *hivev1.ClusterDeployment, metadata
217217
return false, "", err
218218
}
219219

220-
newHzID, err := a.createHostedZone(&selectedVPC, apiDomain)
220+
newHzID, err := a.createHostedZone(selectedVPC, apiDomain)
221221
if err != nil {
222222
return false, "", err
223223
}
@@ -709,9 +709,7 @@ func (a *AWSHubActuator) getEndpointVPC(cd *hivev1.ClusterDeployment, metadata *
709709
return endpointVPC, nil
710710
}
711711

712-
func (a *AWSHubActuator) selectHostedZoneVPC(cd *hivev1.ClusterDeployment, metadata *hivev1.ClusterMetadata, logger log.FieldLogger) (hivev1.AWSAssociatedVPC, error) {
713-
selectedVPC := hivev1.AWSAssociatedVPC{}
714-
712+
func (a *AWSHubActuator) selectHostedZoneVPC(cd *hivev1.ClusterDeployment, metadata *hivev1.ClusterMetadata, logger log.FieldLogger) (*hivev1.AWSAssociatedVPC, error) {
715713
// For clusterdeployments that are on AWS, use the VPCEndpoint VPC
716714
if cd.Status.Platform != nil &&
717715
cd.Status.Platform.AWS != nil &&
@@ -720,29 +718,29 @@ func (a *AWSHubActuator) selectHostedZoneVPC(cd *hivev1.ClusterDeployment, metad
720718

721719
endpointVPC, err := a.getEndpointVPC(cd, metadata)
722720
if err != nil {
723-
return selectedVPC, errors.Wrap(err, "error getting Endpoint VPC")
721+
return nil, errors.Wrap(err, "error getting Endpoint VPC")
724722
}
725723

726724
if endpointVPC.VPCID == "" {
727-
return selectedVPC, errors.New("unable to select Endpoint VPC: Endpoint not found")
725+
return nil, errors.New("unable to select Endpoint VPC: Endpoint not found")
728726
}
729727

730-
return endpointVPC, nil
728+
return &endpointVPC, nil
731729
}
732730

733731
associatedVPCS, err := a.getAssociatedVPCs(cd, metadata, logger)
734732
if err != nil {
735-
return selectedVPC, errors.Wrap(err, "error getting associated VPCs")
733+
return nil, errors.Wrap(err, "error getting associated VPCs")
736734
}
737735

738736
// Select the first associatedVPC that uses the primary AWS PrivateLink credential.
739737
// This is necessary because a Hosted Zone can only be created using a VPC owned by the same account.
740738
for _, associatedVPC := range associatedVPCS {
741739
if associatedVPC.CredentialsSecretRef == nil || *associatedVPC.CredentialsSecretRef == a.config.CredentialsSecretRef {
742-
return associatedVPC, nil
740+
return &associatedVPC, nil
743741
}
744742
}
745743

746744
// No VPCs found that match the criteria, return an error.
747-
return selectedVPC, errors.New("unable to find an associatedVPC that uses the primary AWS PrivateLink credentials")
745+
return nil, errors.New("unable to find an associatedVPC that uses the primary AWS PrivateLink credentials")
748746
}

pkg/controller/privatelink/actuator/awsactuator/awshubactuator_test.go

+4-6
Original file line numberDiff line numberDiff line change
@@ -1792,7 +1792,7 @@ func Test_selectHostedZoneVPC(t *testing.T) {
17921792

17931793
AWSClientConfig func(*mock.MockClient)
17941794

1795-
expect hivev1.AWSAssociatedVPC
1795+
expect *hivev1.AWSAssociatedVPC
17961796
expectError string
17971797
}{{ // There should be an error if VPCEndpointID is set and getEndpointVPC fails
17981798
name: "VPCEndpointID, getEndpointVPC failure",
@@ -1808,7 +1808,6 @@ func Test_selectHostedZoneVPC(t *testing.T) {
18081808
AWSClientConfig: func(m *mock.MockClient) {
18091809
m.EXPECT().DescribeVpcEndpoints(gomock.Any()).Return(nil, awserr.New("AccessDenied", "not authorized to DescribeVpcEndpoints", nil))
18101810
},
1811-
expect: hivev1.AWSAssociatedVPC{},
18121811
expectError: "error getting Endpoint VPC: error getting the VPC Endpoint: AccessDenied: not authorized to DescribeVpcEndpoints",
18131812
}, { // There should be an error if VPCEndPointID is set and getEndpointVPC returns an empty VPCID
18141813
name: "VPCEndpointID, getEndpointVPC return empty vpcid",
@@ -1826,7 +1825,6 @@ func Test_selectHostedZoneVPC(t *testing.T) {
18261825
VpcEndpoints: []*ec2.VpcEndpoint{{VpcId: aws.String("")}},
18271826
}, nil)
18281827
},
1829-
expect: hivev1.AWSAssociatedVPC{},
18301828
expectError: "unable to select Endpoint VPC: Endpoint not found",
18311829
}, { // The AWS VPCEndpointID VPC should be used when set
18321830
name: "VPCEndpointID, success",
@@ -1844,7 +1842,7 @@ func Test_selectHostedZoneVPC(t *testing.T) {
18441842
VpcEndpoints: []*ec2.VpcEndpoint{mockEndpoint},
18451843
}, nil)
18461844
},
1847-
expect: hivev1.AWSAssociatedVPC{
1845+
expect: &hivev1.AWSAssociatedVPC{
18481846
AWSPrivateLinkVPC: hivev1.AWSPrivateLinkVPC{
18491847
VPCID: *mockEndpoint.VpcId,
18501848
Region: testRegion,
@@ -1863,7 +1861,7 @@ func Test_selectHostedZoneVPC(t *testing.T) {
18631861
AWSPrivateLinkVPC: hivev1.AWSPrivateLinkVPC{VPCID: "vpc-2", Region: testRegion},
18641862
}},
18651863
},
1866-
expect: hivev1.AWSAssociatedVPC{
1864+
expect: &hivev1.AWSAssociatedVPC{
18671865
AWSPrivateLinkVPC: hivev1.AWSPrivateLinkVPC{
18681866
VPCID: "vpc-2",
18691867
Region: testRegion,
@@ -1881,7 +1879,7 @@ func Test_selectHostedZoneVPC(t *testing.T) {
18811879
CredentialsSecretRef: &corev1.LocalObjectReference{Name: "credential-1"},
18821880
}},
18831881
},
1884-
expect: hivev1.AWSAssociatedVPC{
1882+
expect: &hivev1.AWSAssociatedVPC{
18851883
AWSPrivateLinkVPC: hivev1.AWSPrivateLinkVPC{
18861884
VPCID: "vpc-2",
18871885
Region: testRegion,

0 commit comments

Comments
 (0)