From 66b8d0281191b8a50f59b9597e3d6c1024c2fbda Mon Sep 17 00:00:00 2001 From: Jan Hutar Date: Mon, 29 Jul 2024 14:39:40 +0200 Subject: [PATCH] fix(KONFLUX-3854): Cleanup MPC secrets as well if any --- pkg/clients/common/secret.go | 29 +++++++++++++++++++- tests/load-tests/pkg/journey/handle_purge.go | 5 ++++ 2 files changed, 33 insertions(+), 1 deletion(-) diff --git a/pkg/clients/common/secret.go b/pkg/clients/common/secret.go index 27c5bd359..65be6bb15 100644 --- a/pkg/clients/common/secret.go +++ b/pkg/clients/common/secret.go @@ -13,6 +13,7 @@ import ( k8sErrors "k8s.io/apimachinery/pkg/api/errors" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "k8s.io/apimachinery/pkg/util/wait" + "k8s.io/apimachinery/pkg/labels" ) // Creates a new secret in a specified namespace @@ -25,11 +26,37 @@ func (s *SuiteController) GetSecret(ns string, name string) (*corev1.Secret, err return s.KubeInterface().CoreV1().Secrets(ns).Get(context.Background(), name, metav1.GetOptions{}) } -// Deleted a secret in a specified namespace +// Delete a secret in a specified namespace func (s *SuiteController) DeleteSecret(ns string, name string) error { return s.KubeInterface().CoreV1().Secrets(ns).Delete(context.Background(), name, metav1.DeleteOptions{}) } +// ListSecrets return a list of secrets from a namespace by label and selection limits +func (s *SuiteController) ListSecrets(ns string, labelKey string, labelValue string, selectionLimit int64) (*corev1.SecretList, error) { + labelSelector := metav1.LabelSelector{MatchLabels: map[string]string{labelKey: labelValue}} + listOptions := metav1.ListOptions{ + LabelSelector: labels.Set(labelSelector.MatchLabels).String(), + Limit: selectionLimit, + } + return s.KubeInterface().CoreV1().Secrets(ns).List(context.Background(), listOptions) +} + +// Delete all secrets in a specified namespace matching to label +func (s *SuiteController) DeleteSecretsByLabel(ns string, labelKey string, labelValue string) error { + secretList, err := s.ListSecrets(ns, labelKey, labelValue, 1024) + if err != nil { + return err + } + + for _, secret := range secretList.Items { + err = s.DeleteSecret(ns, secret.Name) + if err != nil { + return err + } + } + return nil +} + // Links a secret to a specified serviceaccount, if argument addImagePullSecrets is true secret will be added also to ImagePullSecrets of SA. func (s *SuiteController) LinkSecretToServiceAccount(ns, secret, serviceaccount string, addImagePullSecrets bool) error { timeout := 20 * time.Second diff --git a/tests/load-tests/pkg/journey/handle_purge.go b/tests/load-tests/pkg/journey/handle_purge.go index ef0001bf6..998985c46 100644 --- a/tests/load-tests/pkg/journey/handle_purge.go +++ b/tests/load-tests/pkg/journey/handle_purge.go @@ -25,6 +25,11 @@ func purgeStage(f *framework.Framework, namespace string) error { return fmt.Errorf("Error when deleting pipeline runs in namespace %s: %v", namespace, err) } + err = f.AsKubeDeveloper.CommonController.DeleteSecretsByLabel(namespace, "build.appstudio.redhat.com/multi-platform-secret", "true") + if err != nil { + return fmt.Errorf("Error when deleting MPC secrets in namespace %s: %v", namespace, err) + } + logging.Logger.Debug("Finished purging namespace %s", namespace) return nil }