refactor: status conditions

Author: rxbn

api/v1/account_types.go

@@ -62,6 +62,16 @@ type Account struct {
 	Status AccountStatus `json:"status,omitempty"`
 }
 
+// GetConditions returns the status conditions of the object.
+func (in *Account) GetConditions() []metav1.Condition {
+	return in.Status.Conditions
+}
+
+// SetConditions sets the status conditions on the object.
+func (in *Account) SetConditions(conditions []metav1.Condition) {
+	in.Status.Conditions = conditions
+}
+
 // +kubebuilder:object:root=true
 
 // AccountList contains a list of Account

api/v1/condition_types.go

@@ -0,0 +1,31 @@
+/*
+Copyright 2025 containeroo
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package v1
+
+const (
+	// ConditionTypeReady represents the fact that the object is ready.
+	ConditionTypeReady string = "Ready"
+
+	// ConditionReasonReady represents the fact that the object is ready.
+	ConditionReasonReady string = "Ready"
+
+	// ConditionReasonNotReady represents the fact that the object is not ready.
+	ConditionReasonNotReady string = "NotReady"
+
+	// ConditionReasonFailed represents the fact that the object has failed.
+	ConditionReasonFailed string = "Failed"
+)

api/v1/dnsrecord_types.go

@@ -99,6 +99,16 @@ type DNSRecord struct {
 	Status DNSRecordStatus `json:"status,omitempty"`
 }
 
+// GetConditions returns the status conditions of the object.
+func (in *DNSRecord) GetConditions() []metav1.Condition {
+	return in.Status.Conditions
+}
+
+// SetConditions sets the status conditions on the object.
+func (in *DNSRecord) SetConditions(conditions []metav1.Condition) {
+	in.Status.Conditions = conditions
+}
+
 // +kubebuilder:object:root=true
 
 // DNSRecordList contains a list of DNSRecord

api/v1/ip_types.go

@@ -91,6 +91,16 @@ type IP struct {
 	Status IPStatus `json:"status,omitempty"`
 }
 
+// GetConditions returns the status conditions of the object.
+func (in *IP) GetConditions() []metav1.Condition {
+	return in.Status.Conditions
+}
+
+// SetConditions sets the status conditions on the object.
+func (in *IP) SetConditions(conditions []metav1.Condition) {
+	in.Status.Conditions = conditions
+}
+
 // +kubebuilder:object:root=true
 
 // IPList contains a list of IP

api/v1/zone_types.go

@@ -64,6 +64,16 @@ type Zone struct {
 	Status ZoneStatus `json:"status,omitempty"`
 }
 
+// GetConditions returns the status conditions of the object.
+func (in *Zone) GetConditions() []metav1.Condition {
+	return in.Status.Conditions
+}
+
+// SetConditions sets the status conditions on the object.
+func (in *Zone) SetConditions(conditions []metav1.Condition) {
+	in.Status.Conditions = conditions
+}
+
 // +kubebuilder:object:root=true
 
 // ZoneList contains a list of Zone

go.mod

@@ -5,7 +5,6 @@ go 1.23.0
 require (
 	github.com/cloudflare/cloudflare-go v0.115.0
 	github.com/fluxcd/pkg/runtime v0.53.1
-	github.com/go-logr/logr v1.4.2
 	github.com/itchyny/gojq v0.12.17
 	github.com/prometheus/client_golang v1.20.5
 	golang.org/x/net v0.35.0
@@ -25,6 +24,7 @@ require (
 	github.com/fluxcd/pkg/apis/meta v1.10.0 // indirect
 	github.com/fsnotify/fsnotify v1.8.0 // indirect
 	github.com/fxamacker/cbor/v2 v2.7.0 // indirect
+	github.com/go-logr/logr v1.4.2 // indirect
 	github.com/go-logr/zapr v1.3.0 // indirect
 	github.com/go-openapi/jsonpointer v0.21.0 // indirect
 	github.com/go-openapi/jsonreference v0.21.0 // indirect

internal/common/status_conditions.go

@@ -0,0 +1,74 @@
+/*
+Copyright 2025 containeroo
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package common
+
+import (
+	cloudflareoperatoriov1 "github.com/containeroo/cloudflare-operator/api/v1"
+	"github.com/containeroo/cloudflare-operator/internal/metrics"
+	"github.com/fluxcd/pkg/runtime/conditions"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// SetCondition updates the Kubernetes condition status dynamically
+func SetCondition(to conditions.Setter, status metav1.ConditionStatus, reason, msg string) {
+	conditions.Set(to, &metav1.Condition{
+		Type:    cloudflareoperatoriov1.ConditionTypeReady,
+		Status:  status,
+		Reason:  reason,
+		Message: msg,
+	})
+
+	updateMetrics(to, status)
+}
+
+// updateMetrics handles updating the failure counters for each type
+func updateMetrics(to conditions.Setter, status metav1.ConditionStatus) {
+	var value float64
+	switch status {
+	case metav1.ConditionTrue:
+		value = 0
+	case metav1.ConditionFalse:
+		value = 1
+	}
+
+	switch o := to.(type) {
+	case *cloudflareoperatoriov1.Account:
+		metrics.AccountFailureCounter.WithLabelValues(o.Name).Set(value)
+
+	case *cloudflareoperatoriov1.Zone:
+		metrics.ZoneFailureCounter.WithLabelValues(o.Name, o.Spec.Name).Set(value)
+
+	case *cloudflareoperatoriov1.IP:
+		metrics.IpFailureCounter.WithLabelValues(o.Name, o.Spec.Type).Set(value)
+
+	case *cloudflareoperatoriov1.DNSRecord:
+		metrics.DnsRecordFailureCounter.WithLabelValues(o.Namespace, o.Name, o.Spec.Name).Set(value)
+	}
+}
+
+// Convenience wrappers
+func MarkFalse(to conditions.Setter, err error) {
+	SetCondition(to, metav1.ConditionFalse, cloudflareoperatoriov1.ConditionReasonFailed, err.Error())
+}
+
+func MarkTrue(to conditions.Setter, msg string) {
+	SetCondition(to, metav1.ConditionTrue, cloudflareoperatoriov1.ConditionReasonReady, msg)
+}
+
+func MarkUnknown(to conditions.Setter, msg string) {
+	SetCondition(to, metav1.ConditionUnknown, cloudflareoperatoriov1.ConditionReasonNotReady, msg)
+}

internal/controller/account_controller.go

@@ -26,8 +26,6 @@ import (
 	"github.com/cloudflare/cloudflare-go"
 	"github.com/fluxcd/pkg/runtime/patch"
 	corev1 "k8s.io/api/core/v1"
-	apimeta "k8s.io/apimachinery/pkg/api/meta"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"sigs.k8s.io/controller-runtime/pkg/reconcile"
 
 	"k8s.io/apimachinery/pkg/runtime"
@@ -102,34 +100,26 @@ func (r *AccountReconciler) Reconcile(ctx context.Context, req ctrl.Request) (re
 func (r *AccountReconciler) reconcileAccount(ctx context.Context, account *cloudflareoperatoriov1.Account) ctrl.Result {
 	secret := &corev1.Secret{}
 	if err := r.Get(ctx, client.ObjectKey{Namespace: account.Spec.ApiToken.SecretRef.Namespace, Name: account.Spec.ApiToken.SecretRef.Name}, secret); err != nil {
-		r.markFailed(account, err)
+		common.MarkFalse(account, err)
 		return ctrl.Result{RequeueAfter: time.Second * 30}
 	}
 
 	cfApiToken := string(secret.Data["apiToken"])
 	if cfApiToken == "" {
-		r.markFailed(account, errors.New("Secret has no key named \"apiToken\""))
+		common.MarkFalse(account, errors.New("Secret has no key named \"apiToken\""))
 		return ctrl.Result{RequeueAfter: time.Second * 30}
 	}
 
 	if r.Cf.APIToken != cfApiToken {
 		cf, err := cloudflare.NewWithAPIToken(cfApiToken)
 		if err != nil {
-			r.markFailed(account, err)
+			common.MarkFalse(account, err)
 			return ctrl.Result{RequeueAfter: time.Second * 30}
 		}
 		*r.Cf = *cf
 	}
 
-	apimeta.SetStatusCondition(&account.Status.Conditions, metav1.Condition{
-		Type:               "Ready",
-		Status:             metav1.ConditionTrue,
-		Reason:             "Ready",
-		Message:            "Account is ready",
-		ObservedGeneration: account.Generation,
-	})
-
-	metrics.AccountFailureCounter.WithLabelValues(account.Name).Set(0)
+	common.MarkTrue(account, "Account is ready")
 
 	return ctrl.Result{RequeueAfter: account.Spec.Interval.Duration}
 }
@@ -139,15 +129,3 @@ func (r *AccountReconciler) reconcileDelete(account *cloudflareoperatoriov1.Acco
 	metrics.AccountFailureCounter.DeleteLabelValues(account.Name)
 	controllerutil.RemoveFinalizer(account, common.CloudflareOperatorFinalizer)
 }
-
-// markFailed marks the account as failed
-func (r *AccountReconciler) markFailed(account *cloudflareoperatoriov1.Account, err error) {
-	metrics.AccountFailureCounter.WithLabelValues(account.Name).Set(1)
-	apimeta.SetStatusCondition(&account.Status.Conditions, metav1.Condition{
-		Type:               "Ready",
-		Status:             metav1.ConditionFalse,
-		Reason:             "Failed",
-		Message:            err.Error(),
-		ObservedGeneration: account.Generation,
-	})
-}

internal/controller/dnsrecord_controller.go

@@ -24,12 +24,11 @@ import (
 	"reflect"
 	"time"
 
+	"github.com/fluxcd/pkg/runtime/conditions"
 	"github.com/fluxcd/pkg/runtime/patch"
 	"golang.org/x/net/publicsuffix"
 	apiextensionsv1 "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
 	apierrors "k8s.io/apimachinery/pkg/api/errors"
-	apimeta "k8s.io/apimachinery/pkg/api/meta"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/runtime"
 	apierrutil "k8s.io/apimachinery/pkg/util/errors"
 	ctrl "sigs.k8s.io/controller-runtime"
@@ -124,7 +123,7 @@ func (r *DNSRecordReconciler) Reconcile(ctx context.Context, req ctrl.Request) (
 	}
 
 	if len(zones.Items) == 0 {
-		r.markFailed(dnsrecord, fmt.Errorf("Zone %q not found", zoneName))
+		common.MarkFalse(dnsrecord, fmt.Errorf("Zone %q not found", zoneName))
 		return ctrl.Result{}, nil
 	}
 
@@ -149,24 +148,12 @@ func (r *DNSRecordReconciler) Reconcile(ctx context.Context, req ctrl.Request) (
 // reconcileDNSRecord reconciles the dnsrecord
 func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord *cloudflareoperatoriov1.DNSRecord, zone *cloudflareoperatoriov1.Zone) ctrl.Result {
 	if r.Cf.APIToken == "" {
-		apimeta.SetStatusCondition(&dnsrecord.Status.Conditions, metav1.Condition{
-			Type:               "Ready",
-			Status:             metav1.ConditionFalse,
-			Reason:             "NotReady",
-			Message:            "Cloudflare account is not ready",
-			ObservedGeneration: dnsrecord.Generation,
-		})
+		common.MarkUnknown(dnsrecord, "Cloudflare account is not ready")
 		return ctrl.Result{RequeueAfter: time.Second * 5}
 	}
 
-	if condition := apimeta.FindStatusCondition(zone.Status.Conditions, "Ready"); condition == nil || condition.Status != metav1.ConditionTrue {
-		apimeta.SetStatusCondition(&dnsrecord.Status.Conditions, metav1.Condition{
-			Type:               "Ready",
-			Status:             metav1.ConditionFalse,
-			Reason:             "NotReady",
-			Message:            "Zone is not ready",
-			ObservedGeneration: dnsrecord.Generation,
-		})
+	if !conditions.IsTrue(zone, cloudflareoperatoriov1.ConditionTypeReady) {
+		common.MarkUnknown(dnsrecord, "Zone is not ready")
 		return ctrl.Result{RequeueAfter: time.Second * 5}
 	}
 
@@ -175,7 +162,7 @@ func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord
 		var err error
 		existingRecord, err = r.Cf.GetDNSRecord(ctx, cloudflare.ZoneIdentifier(zone.Status.ID), dnsrecord.Status.RecordID)
 		if err != nil {
-			r.markFailed(dnsrecord, err)
+			common.MarkFalse(dnsrecord, err)
 			return ctrl.Result{}
 		}
 	} else {
@@ -185,7 +172,7 @@ func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord
 			Content: dnsrecord.Spec.Content,
 		})
 		if err != nil {
-			r.markFailed(dnsrecord, err)
+			common.MarkFalse(dnsrecord, err)
 			return ctrl.Result{}
 		}
 		if len(cfExistingRecords) > 0 {
@@ -196,7 +183,7 @@ func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord
 	if (dnsrecord.Spec.Type == "A" || dnsrecord.Spec.Type == "AAAA") && dnsrecord.Spec.IPRef.Name != "" {
 		ip := &cloudflareoperatoriov1.IP{}
 		if err := r.Get(ctx, client.ObjectKey{Name: dnsrecord.Spec.IPRef.Name}, ip); err != nil {
-			r.markFailed(dnsrecord, err)
+			common.MarkFalse(dnsrecord, err)
 			return ctrl.Result{RequeueAfter: time.Second * 30}
 		}
 		if ip.Spec.Address != dnsrecord.Spec.Content {
@@ -205,7 +192,7 @@ func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord
 	}
 
 	if *dnsrecord.Spec.Proxied && dnsrecord.Spec.TTL != 1 {
-		r.markFailed(dnsrecord, errors.New("TTL must be 1 when proxied"))
+		common.MarkFalse(dnsrecord, errors.New("TTL must be 1 when proxied"))
 		return ctrl.Result{}
 	}
 
@@ -220,7 +207,7 @@ func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord
 			Data:     dnsrecord.Spec.Data,
 		})
 		if err != nil {
-			r.markFailed(dnsrecord, err)
+			common.MarkFalse(dnsrecord, err)
 			return ctrl.Result{RequeueAfter: time.Second * 30}
 		}
 		dnsrecord.Status.RecordID = newDNSRecord.ID
@@ -235,20 +222,12 @@ func (r *DNSRecordReconciler) reconcileDNSRecord(ctx context.Context, dnsrecord
 			Priority: dnsrecord.Spec.Priority,
 			Data:     dnsrecord.Spec.Data,
 		}); err != nil {
-			r.markFailed(dnsrecord, err)
+			common.MarkFalse(dnsrecord, err)
 			return ctrl.Result{RequeueAfter: time.Second * 30}
 		}
 	}
 
-	apimeta.SetStatusCondition(&dnsrecord.Status.Conditions, metav1.Condition{
-		Type:               "Ready",
-		Status:             metav1.ConditionTrue,
-		Reason:             "Ready",
-		Message:            "DNS record synced",
-		ObservedGeneration: dnsrecord.Generation,
-	})
-
-	metrics.DnsRecordFailureCounter.WithLabelValues(dnsrecord.Namespace, dnsrecord.Name, dnsrecord.Spec.Name).Set(0)
+	common.MarkTrue(dnsrecord, "DNS record synced")
 
 	return ctrl.Result{RequeueAfter: dnsrecord.Spec.Interval.Duration}
 }
@@ -264,18 +243,6 @@ func (r *DNSRecordReconciler) reconcileDelete(ctx context.Context, zoneID string
 	return nil
 }
 
-// markFailed marks the dnsrecord as failed
-func (r *DNSRecordReconciler) markFailed(dnsrecord *cloudflareoperatoriov1.DNSRecord, err error) {
-	metrics.DnsRecordFailureCounter.WithLabelValues(dnsrecord.Namespace, dnsrecord.Name, dnsrecord.Spec.Name).Set(1)
-	apimeta.SetStatusCondition(&dnsrecord.Status.Conditions, metav1.Condition{
-		Type:               "Ready",
-		Status:             metav1.ConditionFalse,
-		Reason:             "Failed",
-		Message:            err.Error(),
-		ObservedGeneration: dnsrecord.Generation,
-	})
-}
-
 // comparePriority compares the priority nil safe
 func comparePriority(a, b *uint16) bool {
 	if a == nil && b == nil {