Support multi secret #242
Support multi secret #242
Conversation
pkg/common/utils/k8s/client.go
Outdated
| @@ -229,6 +229,20 @@ func GetConfigMap(ctx context.Context, k8scient client.Client, namespace, name s | |||
| return &configMap, nil | |||
| } | |||
|
|
|||
| // CheckSecretExist check if the secret is in the namespace. | |||
| func CheckSecretExist(ctx context.Context, k8scient client.Client, namespace string, secrets []dorisv1.Secret) { | |||
There was a problem hiding this comment.
This func is not necessary. After checking, it only prints the log and has no effect on subsequent operations. Checking whether it exists can be done later.
There was a problem hiding this comment.
I moved CheckSecretExist to after k8s.ApplyStatefulSet. I think this check is necessary. Without this check and without created the secret, the operator log will not contain the following error log, and the pod will always be in the ContainerCreating state.
…i_secret_0910 # Conflicts: # config/crd/bases/crds.yaml # config/crd/bases/disaggregated.cluster.doris.com_dorisdisaggregatedclusters.yaml # pkg/controller/sub_controller/disaggregated_cluster/computeclusters/controller.go
|
|
||
| // Current Secret Mount Path, default is "/etc/doris" | ||
| // If Secret belongs to the same Secrets, their MountPath cannot be repeated. | ||
| // +optional |
There was a problem hiding this comment.
mountPath can't be repeated.
|
|
||
| # this yaml describe `secret` config in DorisCluster CRD. | ||
| #Compareed to `doriscluster-sample.yaml`, It have `secret` config for fe | ||
| apiVersion: doris.selectdb.com/v1 |
There was a problem hiding this comment.
please add secrets that used in the example, in front of the yaml.
pkg/common/utils/k8s/client.go
Outdated
| @@ -229,6 +229,20 @@ func GetConfigMap(ctx context.Context, k8scient client.Client, namespace, name s | |||
| return &configMap, nil | |||
| } | |||
|
|
|||
| // CheckSecretExist check if the secret is in the namespace. | |||
There was a problem hiding this comment.
ChecSecretExist, check the secret exist or not in specify namespace.
There was a problem hiding this comment.
Done, and I moved this method to sub_controller.go
pkg/common/utils/resource/pod.go
Outdated
| defaultMountPath := "" | ||
| switch componentType { | ||
| case v1.Component_FE, v1.Component_BE, v1.Component_CN, v1.Component_Broker: | ||
| defaultMountPath = config_env_path |
There was a problem hiding this comment.
can't use env_config_path,should use secret_config_path
pkg/common/utils/resource/pod.go
Outdated
| var volumes []corev1.Volume | ||
| var volumeMounts []corev1.VolumeMount | ||
|
|
||
| if bSpec.Secrets == nil { |
There was a problem hiding this comment.
this check is not needed. for golang splice, iterate the nil splice is ok.
| @@ -99,6 +100,11 @@ func (be *Controller) Sync(ctx context.Context, dcr *v1.DorisCluster) error { | |||
| return err | |||
| } | |||
|
|
|||
| // check if the secret exists in the namespace | |||
| if dcr.Spec.BeSpec.Secrets != nil { | |||
There was a problem hiding this comment.
this check should before "applystatefulset" and should output an event on dorislcuster.
…i_secret_0910 # Conflicts: # pkg/common/utils/resource/pod.go # pkg/controller/sub_controller/events.go
issue: #237
Support multi secret: