(feat: certs) Remove RotationStage, update MRC state consts

schristoff · schristoff · commit e47a29195888 · 2022-06-16T10:36:13.000-06:00
Add additional MRC state constants to have all rollout and
rollback stages. Remove RotationStage and keep only the single
state.

Signed-off-by: Sarah Christoff &lt;sarah.christoff13@gmail.com&gt;
diff --git a/cmd/osm-bootstrap/crds/config_mesh_root_certificate.yaml b/cmd/osm-bootstrap/crds/config_mesh_root_certificate.yaml
@@ -35,14 +35,10 @@ spec:
       served: true
       storage: true
       additionalPrinterColumns:
-        - description: Current state of the MeshRootCertificate config
+        - description: Provider state of the MeshRootCertificate config
           jsonPath: .status.currentState
           name: State
           type: string
-        - description: Current rotationStage of the MeshRootCertificate config
-          jsonPath: .status.currentRotationStage
-          name: RotationStage
-          type: string
       schema:
         openAPIV3Schema:
           type: object
diff --git a/cmd/osm-bootstrap/osm-bootstrap.go b/cmd/osm-bootstrap/osm-bootstrap.go
@@ -423,8 +423,7 @@ func buildMeshRootCertificate(presetMeshRootCertificateConfigMap *corev1.ConfigM
 		},
 		Spec: presetMeshRootCertificateSpec,
 		Status: configv1alpha2.MeshRootCertificateStatus{
-			State:         constants.MRCStateComplete,
-			RotationStage: constants.MRCStageIssuing,
+			State: constants.MRCStateActive,
 		},
 	}
 
diff --git a/cmd/osm-bootstrap/osm-bootstrap_test.go b/cmd/osm-bootstrap/osm-bootstrap_test.go
@@ -97,8 +97,7 @@ var testMeshRootCertificate *configv1alpha2.MeshRootCertificate = &configv1alpha
 	},
 	Spec: configv1alpha2.MeshRootCertificateSpec{},
 	Status: configv1alpha2.MeshRootCertificateStatus{
-		State:         constants.MRCStateComplete,
-		RotationStage: constants.MRCStageIssuing,
+		State: constants.MRCStateActive,
 	},
 }
 
diff --git a/pkg/apis/config/v1alpha2/meshrootcertificate.go b/pkg/apis/config/v1alpha2/meshrootcertificate.go
@@ -113,14 +113,9 @@ type TresorCASpec struct {
 
 // MeshRootCertificateStatus defines the status of the MeshRootCertificate resource
 type MeshRootCertificateStatus struct {
-	// State specifies the state of the root certificate rotation
+	// State specifies the state of the certificate provider
+	// All states are specified in constants.go
 	State string `json:"state"`
-
-	// RotationStage specifies the stage of the rotation indicating how a
-	// root certificate is currently being used within the mesh. The exact
-	// meaning of the RotationStage status is determined by the accompanying
-	// State status
-	RotationStage string `json:"rotationStage"`
 }
 
 // MeshRootCertificateList defines the list of MeshRootCertificate objects
diff --git a/pkg/certificate/providers/config.go b/pkg/certificate/providers/config.go
@@ -69,8 +69,7 @@ func NewCertificateManager(kubeClient kubernetes.Interface, kubeConfig *rest.Con
 			},
 			// TODO(#4502): Detect if an actual MRC exists, and set the status accordingly.
 			Status: v1alpha2.MeshRootCertificateStatus{
-				State:         constants.MRCStateComplete,
-				RotationStage: constants.MRCStageIssuing,
+				State: constants.MRCStateActive,
 			},
 		},
 	}
diff --git a/pkg/constants/constants.go b/pkg/constants/constants.go
@@ -166,14 +166,26 @@ const (
 	// MRCVersionAnnotation is the annotation used for the version of the MeshRootCertificate
 	MRCVersionAnnotation = "openservicemesh.io/mrc-version"
 
-	// MRCStageValidating is the validating status option for the rotation stage of the MeshRootCertificate
-	MRCStageValidating = "validating"
+	// MRCStateValidatingRollout is the validating rollout status option for the State of the MeshRootCertificate
+	MRCStateValidatingRollout = "validatingRollout"
 
-	// MRCStageIssuing is the issuing status option for the rotation stage of the MeshRootCertificate
-	MRCStageIssuing = "issuing"
+	// MRCStateIssuingRollout is the issuing rollout status option for the State of the MeshRootCertificate
+	MRCStateIssuingRollout = "issuingRollout"
 
-	// MRCStateComplete is the complete status option for the state of the MeshRootCertificate
-	MRCStateComplete = "complete"
+	// MRCStateActive is the active status option for the State of the MeshRootCertificate
+	MRCStateActive = "active"
+
+	// MRCStateIssuingRollback is the issuing rollback status option for the State of the MeshRootCertificate
+	MRCStateIssuingRollback = "issuingRollback"
+
+	// MRCStateValidatingRollback is the validating rollback status option for the State of the MeshRootCertificate
+	MRCStateValidatingRollback = "validatingRollback"
+
+	// MRCStateInactive is the inactive status option for the State of the MeshRootCertificate
+	MRCStateInactive = "inactive"
+
+	// MRCStateError is the error status option for the State of the MeshRootCertificate
+	MRCStateError = "error"
 )
 
 // Labels used by the control plane

Original file line number	Diff line number	Diff line change
`@@ -423,8 +423,7 @@ func buildMeshRootCertificate(presetMeshRootCertificateConfigMap *corev1.ConfigM`
`423`	`423`	`},`
`424`	`424`	`Spec: presetMeshRootCertificateSpec,`
`425`	`425`	`Status: configv1alpha2.MeshRootCertificateStatus{`
`426`		`- State: constants.MRCStateComplete,`
`427`		`- RotationStage: constants.MRCStageIssuing,`
	`426`	`+ State: constants.MRCStateActive,`
`428`	`427`	`},`
`429`	`428`	`}`
`430`	`429`
Original file line number	Diff line number	Diff line change
`@@ -97,8 +97,7 @@ var testMeshRootCertificate *configv1alpha2.MeshRootCertificate = &configv1alpha`
`97`	`97`	`},`
`98`	`98`	`Spec: configv1alpha2.MeshRootCertificateSpec{},`
`99`	`99`	`Status: configv1alpha2.MeshRootCertificateStatus{`
`100`		`- State: constants.MRCStateComplete,`
`101`		`- RotationStage: constants.MRCStageIssuing,`
	`100`	`+ State: constants.MRCStateActive,`
`102`	`101`	`},`
`103`	`102`	`}`
`104`	`103`