Skip to content

refactor: extract dereference and validate steps into controller modules #783

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
adwk67 merged 11 commits into from
May 21, 2026
Merged

refactor: extract dereference and validate steps into controller modules #783

Show file tree
Hide file tree
Changes from 6 commits
Commits
Show all changes
11 commits
Select commit Hold shift + click to select a range
0ffac00
refactor: extract dereference and validate steps into controller modules
adwk67 May 18, 2026
3933eb8
changelog
adwk67 May 18, 2026
db7d455
formatting
adwk67 May 18, 2026
7eb5752
extend assert step to increase test coverage by checking most generat…
adwk67 May 18, 2026
ff26624
Merge branch 'main' into refactor/reconcile-dereference-validate
adwk67 May 19, 2026
4010522
added resources assert and re-org as per hive review feedback
adwk67 May 20, 2026
9024b2e
extend STS definition for the assert and remove duplicate envOverride…
adwk67 May 21, 2026
6ff108f
Expand smoke test assertions with full STS specs and ConfigMap snapshots
adwk67 May 21, 2026
3f7b18b
linting
adwk67 May 21, 2026
88af4ae
more linting
adwk67 May 21, 2026
83e1076
Use jq to normalise trailing newlines in ConfigMap snapshot diffs
adwk67 May 21, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,10 +16,12 @@ All notable changes to this project will be documented in this file.
`security.properties`).
Previously, arbitrary file names were silently accepted and ignored ([#777]).
- Bump `stackable-operator` to 0.111.1 ([#777], [#778]).
- Internal operator refactoring: introduce dereference() and validate() steps in the reconciler ([#783]).

[#770]: https://github.com/stackabletech/hdfs-operator/pull/770
[#777]: https://github.com/stackabletech/hdfs-operator/pull/777
[#778]: https://github.com/stackabletech/hdfs-operator/pull/778
[#783]: https://github.com/stackabletech/hdfs-operator/pull/783

## [26.3.0] - 2026-03-16

Expand Down
18 changes: 9 additions & 9 deletions Cargo.nix
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

18 changes: 9 additions & 9 deletions crate-hashes.json
View file
Open in desktop

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

30 changes: 30 additions & 0 deletions rust/operator-binary/src/controller/dereference.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,30 @@
use snafu::{ResultExt, Snafu};

use crate::{crd::v1alpha1, security::opa::HdfsOpaConfig};

#[derive(Snafu, Debug)]
pub enum Error {
#[snafu(display("invalid OPA configuration"))]
InvalidOpaConfig { source: crate::security::opa::Error },
}

/// External references resolved during the dereference step.
pub struct DereferencedObjects {
pub hdfs_opa_config: Option<HdfsOpaConfig>,
}

pub async fn dereference(
client: &stackable_operator::client::Client,
hdfs: &v1alpha1::HdfsCluster,
) -> Result<DereferencedObjects, Error> {
let hdfs_opa_config = match &hdfs.spec.cluster_config.authorization {
Some(opa_config) => Some(
HdfsOpaConfig::from_opa_config(client, hdfs, opa_config)
.await
.context(InvalidOpaConfigSnafu)?,
),
None => None,
};

Ok(DereferencedObjects { hdfs_opa_config })
}
2 changes: 2 additions & 0 deletions rust/operator-binary/src/controller/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,2 @@
pub mod dereference;
pub mod validate;
115 changes: 115 additions & 0 deletions rust/operator-binary/src/controller/validate.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,115 @@
use std::{collections::BTreeMap, str::FromStr};

use product_config::ProductConfigManager;
use snafu::{ResultExt, Snafu};
use stackable_operator::{
commons::product_image_selection,
product_config_utils::{transform_all_roles_to_config, validate_all_roles_and_groups_config},
role_utils::GenericRoleConfig,
};

use crate::{
crd::{HdfsNodeRole, v1alpha1},
hdfs_controller::{
CONTAINER_IMAGE_BASE_NAME, ValidatedCluster, ValidatedRoleConfig, ValidatedRoleGroupConfig,
},
security::opa::HdfsOpaConfig,
};

#[derive(Snafu, Debug)]
pub enum Error {
#[snafu(display("failed to resolve product image"))]
ResolveProductImage {
source: product_image_selection::Error,
},

#[snafu(display("invalid role properties"))]
RoleProperties { source: crate::crd::Error },

#[snafu(display("failed to generate product config"))]
GenerateProductConfig {
source: stackable_operator::product_config_utils::Error,
},

#[snafu(display("invalid product configuration"))]
InvalidProductConfig {
source: stackable_operator::product_config_utils::Error,
},

#[snafu(display("could not parse HDFS role [{role}]"))]
UnidentifiedHdfsRole {
source: strum::ParseError,
role: String,
},

#[snafu(display("failed to resolve and merge config for role and role group"))]
FailedToResolveConfig { source: crate::crd::Error },
}

pub fn validate_cluster(
hdfs: &v1alpha1::HdfsCluster,
image_repository: &str,
product_config_manager: &ProductConfigManager,
hdfs_opa_config: Option<HdfsOpaConfig>,
) -> Result<ValidatedCluster, Error> {
let resolved_product_image = hdfs
.spec
.image
.resolve(
CONTAINER_IMAGE_BASE_NAME,
image_repository,
crate::built_info::PKG_VERSION,
)
.context(ResolveProductImageSnafu)?;

let roles = hdfs.build_role_properties().context(RolePropertiesSnafu)?;

let validated_config = validate_all_roles_and_groups_config(
&resolved_product_image.product_version,
&transform_all_roles_to_config(hdfs, &roles).context(GenerateProductConfigSnafu)?,
product_config_manager,
false,
false,
)
.context(InvalidProductConfigSnafu)?;

let mut role_groups = BTreeMap::new();
let mut role_configs = BTreeMap::new();

for (role_name, group_config) in validated_config.iter() {
let hdfs_role = HdfsNodeRole::from_str(role_name).context(UnidentifiedHdfsRoleSnafu {
role: role_name.to_string(),
})?;

if let Some(GenericRoleConfig {
pod_disruption_budget: pdb,
}) = hdfs.role_config(&hdfs_role)
{
role_configs.insert(hdfs_role, ValidatedRoleConfig { pdb: pdb.clone() });
}

let mut group_configs = BTreeMap::new();
for (rolegroup_name, rolegroup_config) in group_config.iter() {
let merged_config = hdfs_role
.merged_config(hdfs, rolegroup_name)
.context(FailedToResolveConfigSnafu)?;

group_configs.insert(
rolegroup_name.clone(),
ValidatedRoleGroupConfig {
merged_config,
product_config_properties: rolegroup_config.clone(),
},
);
}

role_groups.insert(hdfs_role, group_configs);
}

Ok(ValidatedCluster {
image: resolved_product_image,
role_groups,
role_configs,
hdfs_opa_config,
})
}
4 changes: 3 additions & 1 deletion rust/operator-binary/src/crd/mod.rs
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -993,7 +993,7 @@ pub struct CommonNodeConfig {
}

/// Configuration for a rolegroup of an unknown type.
#[derive(Debug)]
#[derive(Clone, Debug)]
pub enum AnyNodeConfig {
Name(NameNodeConfig),
Data(DataNodeConfig),
Expand Down Expand Up @@ -1087,7 +1087,9 @@ impl AnyNodeConfig {
Eq,
Hash,
JsonSchema,
Ord,
PartialEq,
PartialOrd,
Serialize,
)]
pub enum HdfsNodeRole {
Expand Down
Loading
Loading