migrate private endpoints service to use ASO framework

CAPZ sets the following fields on ASO: - ApplicationSecurityGroups - AzureName - CustomNetworkInterfaceName - IpConfigurations - Location - ManualPrivateLinkServiceConnections - Owner - PrivateLinkServiceConnections - Subnet - Tags Fields not managed by CAPZ - ExtendedLocation Changes: - added private endpoints CRDs to CAPZ - refactored privateEndpoints spec to ASO - updated CRDs - updated role.yaml - updated spect_test.go - dropped the redundant unit test of privateendpoint_test.go
kubernetes-sigs · Oct 24, 2023 · cd87db8 · cd87db8
1 parent 6e074c7
commit cd87db8
Show file tree

Hide file tree

Showing 17 changed files with 1,305 additions and 1,036 deletions.
diff --git a/Makefile b/Makefile
@@ -158,7 +158,7 @@ WEBHOOK_ROOT ?= $(MANIFEST_ROOT)/webhook
 RBAC_ROOT ?= $(MANIFEST_ROOT)/rbac
 ASO_CRDS_PATH := $(MANIFEST_ROOT)/aso/crds.yaml
 ASO_VERSION := v2.3.0
-ASO_CRDS := resourcegroups.resources.azure.com natgateways.network.azure.com
+ASO_CRDS := resourcegroups.resources.azure.com privateendpoints.network.azure.com natgateways.network.azure.com
 
 # Allow overriding the imagePullPolicy
 PULL_POLICY ?= Always

diff --git a/azure/scope/cluster.go b/azure/scope/cluster.go
@@ -1056,13 +1056,13 @@ func (s *ClusterScope) SetAnnotation(key, value string) {
 }
 
 // PrivateEndpointSpecs returns the private endpoint specs.
-func (s *ClusterScope) PrivateEndpointSpecs() []azure.ResourceSpecGetter {
+func (s *ClusterScope) PrivateEndpointSpecs() []azure.ASOResourceSpecGetter[*asonetworkv1.PrivateEndpoint] {
 	numberOfSubnets := len(s.AzureCluster.Spec.NetworkSpec.Subnets)
 	if s.IsAzureBastionEnabled() {
 		numberOfSubnets++
 	}
 
-	privateEndpointSpecs := make([]azure.ResourceSpecGetter, 0, numberOfSubnets)
+	privateEndpointSpecs := make([]azure.ASOResourceSpecGetter[*asonetworkv1.PrivateEndpoint], 0, numberOfSubnets)
 
 	subnets := s.AzureCluster.Spec.NetworkSpec.Subnets
 	if s.IsAzureBastionEnabled() {
@@ -1076,12 +1076,13 @@ func (s *ClusterScope) PrivateEndpointSpecs() []azure.ResourceSpecGetter {
 	return privateEndpointSpecs
 }
 
-func (s *ClusterScope) getPrivateEndpoints(subnet infrav1.SubnetSpec) []azure.ResourceSpecGetter {
-	privateEndpointSpecs := make([]azure.ResourceSpecGetter, 0)
+func (s *ClusterScope) getPrivateEndpoints(subnet infrav1.SubnetSpec) []azure.ASOResourceSpecGetter[*asonetworkv1.PrivateEndpoint] {
+	privateEndpointSpecs := make([]azure.ASOResourceSpecGetter[*asonetworkv1.PrivateEndpoint], 0)
 
 	for _, privateEndpoint := range subnet.PrivateEndpoints {
 		privateEndpointSpec := &privateendpoints.PrivateEndpointSpec{
 			Name:                       privateEndpoint.Name,
+			Namespace:                  s.Namespace(),
 			ResourceGroup:              s.ResourceGroup(),
 			Location:                   privateEndpoint.Location,
 			CustomNetworkInterfaceName: privateEndpoint.CustomNetworkInterfaceName,

diff --git a/azure/scope/managedcontrolplane.go b/azure/scope/managedcontrolplane.go
@@ -22,6 +22,7 @@ import (
 	"strings"
 	"time"
 
+	asonetworkv1 "github.com/Azure/azure-service-operator/v2/api/network/v1api20220701"
 	asoresourcesv1 "github.com/Azure/azure-service-operator/v2/api/resources/v1api20200601"
 	"github.com/pkg/errors"
 	"golang.org/x/mod/semver"
@@ -807,8 +808,8 @@ func (s *ManagedControlPlaneScope) AvailabilityStatusFilter(cond *clusterv1.Cond
 }
 
 // PrivateEndpointSpecs returns the private endpoint specs.
-func (s *ManagedControlPlaneScope) PrivateEndpointSpecs() []azure.ResourceSpecGetter {
-	privateEndpointSpecs := make([]azure.ResourceSpecGetter, len(s.ControlPlane.Spec.VirtualNetwork.Subnet.PrivateEndpoints))
+func (s *ManagedControlPlaneScope) PrivateEndpointSpecs() []azure.ASOResourceSpecGetter[*asonetworkv1.PrivateEndpoint] {
+	privateEndpointSpecs := make([]azure.ASOResourceSpecGetter[*asonetworkv1.PrivateEndpoint], len(s.ControlPlane.Spec.VirtualNetwork.Subnet.PrivateEndpoints))
 
 	for _, privateEndpoint := range s.ControlPlane.Spec.VirtualNetwork.Subnet.PrivateEndpoints {
 		privateEndpointSpec := &privateendpoints.PrivateEndpointSpec{

diff --git a/azure/services/privateendpoints/client.go b/azure/services/privateendpoints/client.go
diff --git a/azure/services/privateendpoints/mock_privateendpoints/client_mock.go b/azure/services/privateendpoints/mock_privateendpoints/client_mock.go
diff --git a/azure/services/privateendpoints/mock_privateendpoints/doc.go b/azure/services/privateendpoints/mock_privateendpoints/doc.go
@@ -16,8 +16,6 @@ limitations under the License.
 
 // Run go generate to regenerate this mock.
 //
-//go:generate ../../../../hack/tools/bin/mockgen -destination client_mock.go -package mock_privateendpoints -source ../client.go Client
 //go:generate ../../../../hack/tools/bin/mockgen -destination privateendpoints_mock.go -package mock_privateendpoints -source ../privateendpoints.go PrivateEndpointScope
-//go:generate /usr/bin/env bash -c "cat ../../../../hack/boilerplate/boilerplate.generatego.txt client_mock.go > _client_mock.go && mv _client_mock.go client_mock.go"
 //go:generate /usr/bin/env bash -c "cat ../../../../hack/boilerplate/boilerplate.generatego.txt privateendpoints_mock.go > _privateendpoints_mock.go && mv _privateendpoints_mock.go privateendpoints_mock.go"
 package mock_privateendpoints
diff --git a/azure/services/privateendpoints/mock_privateendpoints/privateendpoints_mock.go b/azure/services/privateendpoints/mock_privateendpoints/privateendpoints_mock.go