add env var for default tag values

Author: jhorwit2

pkg/oci/client/config_validate.go

@@ -62,10 +62,6 @@ func validateAuthConfig(c Config, fldPath *field.Path) field.ErrorList {
 // ValidateConfig validates the OCI Volume Provisioner config file.
 func ValidateConfig(c *Config) field.ErrorList {
 	allErrs := field.ErrorList{}
-	if c.ClusterName == "" {
-		allErrs = append(allErrs, field.Required(field.NewPath("clusterName"), ""))
-	}
-
 	allErrs = append(allErrs, validateAuthConfig(*c, field.NewPath("auth"))...)
 	return allErrs
 }

pkg/oci/client/config_validate_test.go

@@ -37,7 +37,6 @@ func TestValidateConfig(t *testing.T) {
 					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
 					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
 				},
-				ClusterName: "test",
 			},
 			errs: field.ErrorList{},
 		}, {
@@ -49,7 +48,6 @@ func TestValidateConfig(t *testing.T) {
 					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
 					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
 				},
-				ClusterName: "test",
 			},
 			errs: field.ErrorList{
 				&field.Error{Type: field.ErrorTypeRequired, Field: "auth.region", BadValue: ""},
@@ -63,7 +61,6 @@ func TestValidateConfig(t *testing.T) {
 					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
 					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
 				},
-				ClusterName: "test",
 			},
 			errs: field.ErrorList{
 				&field.Error{Type: field.ErrorTypeRequired, Field: "auth.tenancy", BadValue: ""},
@@ -77,7 +74,6 @@ func TestValidateConfig(t *testing.T) {
 					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
 					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
 				},
-				ClusterName: "test",
 			},
 			errs: field.ErrorList{
 				&field.Error{Type: field.ErrorTypeRequired, Field: "auth.user", BadValue: ""},
@@ -91,7 +87,6 @@ func TestValidateConfig(t *testing.T) {
 					UserOCID:    "ocid1.user.oc1..aaaaaaaai77mql2xerv7cn6wu3nhxang3y4jk56vo5bn5l5lysl34avnui3q",
 					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
 				},
-				ClusterName: "test",
 			},
 			errs: field.ErrorList{
 				&field.Error{Type: field.ErrorTypeRequired, Field: "auth.key", BadValue: ""},
@@ -105,30 +100,14 @@ func TestValidateConfig(t *testing.T) {
 					UserOCID:    "ocid1.user.oc1..aaaaaaaai77mql2xerv7cn6wu3nhxang3y4jk56vo5bn5l5lysl34avnui3q",
 					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
 				},
-				ClusterName: "test",
 			},
 			errs: field.ErrorList{
 				&field.Error{Type: field.ErrorTypeRequired, Field: "auth.fingerprint", BadValue: ""},
 			},
-		}, {
-			name: "missing_clusterName",
-			in: &Config{
-				Auth: AuthConfig{
-					Region:      "us-phoenix-1",
-					TenancyOCID: "ocid1.tenancy.oc1..aaaaaaaatyn7scrtwtqedvgrxgr2xunzeo6uanvyhzxqblctwkrpisvke4kq",
-					UserOCID:    "ocid1.user.oc1..aaaaaaaai77mql2xerv7cn6wu3nhxang3y4jk56vo5bn5l5lysl34avnui3q",
-					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
-					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
-				},
-			},
-			errs: field.ErrorList{
-				&field.Error{Type: field.ErrorTypeRequired, Field: "clusterName", BadValue: ""},
-			},
 		}, {
 			name: "valid with instance principals enabled",
 			in: &Config{
 				UseInstancePrincipals: true,
-				ClusterName:           "test",
 			},
 			errs: field.ErrorList{},
 		}, {
@@ -142,7 +121,6 @@ func TestValidateConfig(t *testing.T) {
 					PrivateKey:  "-----BEGIN RSA PRIVATE KEY----- (etc)",
 					Fingerprint: "8c:bf:17:7b:5f:e0:7d:13:75:11:d6:39:0d:e2:84:74",
 				},
-				ClusterName:           "test",
 				UseInstancePrincipals: true,
 			},
 			errs: field.ErrorList{

pkg/provisioner/block/block.go

@@ -38,16 +38,17 @@ import (
 )
 
 const (
-	ociVolumeID            = "ociVolumeID"
-	ociVolumeBackupID      = "volume.beta.kubernetes.io/oci-volume-source"
-	ociTagAnnotation       = "oraclecloud.com/additional-tags"
+	ociVolumeID       = "ociVolumeID"
+	ociVolumeBackupID = "volume.beta.kubernetes.io/oci-volume-source"
+	ociTagAnnotation  = "oraclecloud.com/additional-tags"
+
+	defaultTagsEnvVar      = "OCI_DEFAULT_TAGS"
 	volumePrefixEnvVarName = "OCI_VOLUME_NAME_PREFIX"
 	fsType                 = "fsType"
 )
 
 // blockProvisioner is the internal provisioner for OCI block volumes
 type blockProvisioner struct {
-	clusterName           string
 	client                client.ProvisionerClient
 	metadata              instancemeta.Interface
 	volumeRoundingEnabled bool
@@ -57,9 +58,8 @@ type blockProvisioner struct {
 var _ plugin.ProvisionerPlugin = &blockProvisioner{}
 
 // NewBlockProvisioner creates a new instance of the block storage provisioner
-func NewBlockProvisioner(client client.ProvisionerClient, metadata instancemeta.Interface, volumeRoundingEnabled bool, minVolumeSize resource.Quantity, clusterName string) plugin.ProvisionerPlugin {
+func NewBlockProvisioner(client client.ProvisionerClient, metadata instancemeta.Interface, volumeRoundingEnabled bool, minVolumeSize resource.Quantity) plugin.ProvisionerPlugin {
 	return &blockProvisioner{
-		clusterName:           clusterName,
 		client:                client,
 		metadata:              metadata,
 		volumeRoundingEnabled: volumeRoundingEnabled,
@@ -83,10 +83,6 @@ func roundUpSize(volumeSizeBytes int64, allocationUnitBytes int64) int64 {
 	return (volumeSizeBytes + allocationUnitBytes - 1) / allocationUnitBytes
 }
 
-func (block *blockProvisioner) clusterTag() string {
-	return fmt.Sprintf("kubernetes.io/cluster/%s", block.clusterName)
-}
-
 // Provision creates an OCI block volume
 func (block *blockProvisioner) Provision(options controller.VolumeOptions, ad *identity.AvailabilityDomain) (*v1.PersistentVolume, error) {
 	for _, accessMode := range options.PVC.Spec.AccessModes {
@@ -188,42 +184,69 @@ func (block *blockProvisioner) Provision(options controller.VolumeOptions, ad *i
 }
 
 func getTags(annotations map[string]string) (defined map[string]map[string]interface{}, freeform map[string]string, err error) {
-	if annotations == nil {
-		return
+	defaultDefinedTags, defaultFreeformTags, err := parseTags(os.Getenv(defaultTagsEnvVar))
+	if err != nil {
+		return nil, nil, err
+	}
+
+	definedTags, freeformTags, err := parseTags(annotations[ociTagAnnotation])
+	if err != nil {
+		return nil, nil, err
+	}
+
+	// merge annotation tags with default tags
+	for namespace, tags := range definedTags {
+		if _, ok := defaultDefinedTags[namespace]; !ok {
+			defaultDefinedTags[namespace] = map[string]interface{}{}
+		}
+
+		for tag, value := range tags {
+			defaultDefinedTags[namespace][tag] = value
+		}
+	}
+
+	for tag, value := range freeformTags {
+		defaultFreeformTags[tag] = value
 	}
 
+	return defaultDefinedTags, defaultFreeformTags, nil
+}
+
+func parseTags(tagStr string) (defined map[string]map[string]interface{}, freeform map[string]string, err error) {
+
 	defined = map[string]map[string]interface{}{}
 	freeform = map[string]string{}
 
-	tagStr, ok := annotations[ociTagAnnotation]
-	if ok {
-		for _, tag := range strings.Split(tagStr, ",") {
-			parts := strings.Split(tag, "=")
-			if len(parts) != 2 {
-				return nil, nil, fmt.Errorf("tag format must follow (<namespace>.)<tagkey>=<value>: %q", tag)
-			}
+	if tagStr == "" {
+		return
+	}
 
-			key, value := parts[0], parts[1]
-
-			keyParts := strings.Split(key, ".")
-			if len(keyParts) == 1 {
-				freeform[key] = value
-			} else if len(keyParts) == 2 {
-				namespace, key := keyParts[0], keyParts[1]
-				namespaceTags, ok := defined[namespace]
-				if !ok {
-					namespaceTags = map[string]interface{}{}
-					defined[namespace] = namespaceTags
-				}
-
-				namespaceTags[key] = value
-			} else {
-				return nil, nil, fmt.Errorf("tag format must follow (<namespace>.)<tagkey>=<value>: %q", tag)
+	for _, tag := range strings.Split(tagStr, ",") {
+		parts := strings.Split(tag, "=")
+		if len(parts) != 2 {
+			return nil, nil, fmt.Errorf("tag format must follow (<namespace>.)<tagkey>=<value>: %q", tag)
+		}
+
+		key, value := parts[0], parts[1]
+
+		keyParts := strings.Split(key, ".")
+		if len(keyParts) == 1 {
+			freeform[key] = value
+		} else if len(keyParts) == 2 {
+			namespace, key := keyParts[0], keyParts[1]
+			namespaceTags, ok := defined[namespace]
+			if !ok {
+				namespaceTags = map[string]interface{}{}
+				defined[namespace] = namespaceTags
 			}
+
+			namespaceTags[key] = value
+		} else {
+			return nil, nil, fmt.Errorf("tag format must follow (<namespace>.)<tagkey>=<value>: %q", tag)
 		}
 	}
 
-	return defined, freeform, nil
+	return
 }
 
 // Delete destroys a OCI volume created by Provision

pkg/provisioner/block/block_test.go

@@ -17,6 +17,7 @@ package block
 import (
 	"context"
 	"fmt"
+	"os"
 	"reflect"
 	"testing"
 	"time"
@@ -164,7 +165,7 @@ func TestVolumeRoundingLogic(t *testing.T) {
 				CompartmentOCID: "",
 				Region:          "phx",
 			})
-			block := NewBlockProvisioner(NewClientProvisioner(nil), metadata, tt.enabled, tt.minVolumeSize, "test")
+			block := NewBlockProvisioner(NewClientProvisioner(nil), metadata, tt.enabled, tt.minVolumeSize)
 			provisionedVolume, err := block.Provision(volumeOptions, &defaultAD)
 			if err != nil {
 				t.Fatalf("Expected no error but got %s", err)
@@ -184,32 +185,60 @@ func TestVolumeRoundingLogic(t *testing.T) {
 
 func TestGetTags(t *testing.T) {
 	testCases := map[string]struct {
+		setup                func()
 		annotations          map[string]string
 		expectedDefinedTags  map[string]map[string]interface{}
 		expectedFreeformTags map[string]string
 	}{
-		"valid tags": {
+		"valid tags only default": {
+			setup: func() {
+				os.Setenv(defaultTagsEnvVar, "namespace1.default=test,default=test")
+			},
+			annotations: map[string]string{},
+			expectedDefinedTags: map[string]map[string]interface{}{
+				"namespace1": map[string]interface{}{
+					"default": "test",
+				},
+			},
+			expectedFreeformTags: map[string]string{
+				"default": "test",
+			},
+		},
+		"valid tags with default": {
+			setup: func() {
+				os.Setenv(defaultTagsEnvVar, "namespace1.default=test,default=test")
+			},
 			annotations: map[string]string{
 				ociTagAnnotation: "namespace1.test=foo,namespace2.test=bar,bar=baz,namespace1.test2=bar,foo=bar",
 			},
 			expectedDefinedTags: map[string]map[string]interface{}{
 				"namespace1": map[string]interface{}{
-					"test":  "foo",
-					"test2": "bar",
+					"test":    "foo",
+					"test2":   "bar",
+					"default": "test",
 				},
 				"namespace2": map[string]interface{}{
 					"test": "bar",
 				},
 			},
 			expectedFreeformTags: map[string]string{
-				"bar": "baz",
-				"foo": "bar",
+				"bar":     "baz",
+				"foo":     "bar",
+				"default": "test",
 			},
 		},
 	}
 
 	for name, tc := range testCases {
 		t.Run(name, func(t *testing.T) {
+			defer func() {
+				os.Setenv(defaultTagsEnvVar, "")
+			}()
+
+			if tc.setup != nil {
+				tc.setup()
+			}
+
 			defined, freeform, err := getTags(tc.annotations)
 			if err != nil {
 				t.Fatal(err)

pkg/provisioner/core/provisioner.go

@@ -77,7 +77,7 @@ func NewOCIProvisioner(kubeClient kubernetes.Interface, nodeInformer informersv1
 		glog.Fatalf("Unable to create volume provisioner client: %v", err)
 	}
 
-	blockProvisioner := block.NewBlockProvisioner(client, instancemeta.New(), volumeRoundingEnabled, minVolumeSize, cfg.ClusterName)
+	blockProvisioner := block.NewBlockProvisioner(client, instancemeta.New(), volumeRoundingEnabled, minVolumeSize)
 
 	return &OCIProvisioner{
 		client:           client,