Refactor error handling to report relevant fields

Author: dlipovetsky

pkg/webhook/preflight/nutanix/checker.go

@@ -12,135 +12,83 @@ import (
 
 	prismv4 "github.com/nutanix-cloud-native/prism-go-client/v4"
 
-	carenv1 "github.com/nutanix-cloud-native/cluster-api-runtime-extensions-nutanix/api/v1alpha1"
-	"github.com/nutanix-cloud-native/cluster-api-runtime-extensions-nutanix/api/variables"
 	"github.com/nutanix-cloud-native/cluster-api-runtime-extensions-nutanix/pkg/webhook/preflight"
 )
 
-type Checker struct {
-	client                                 ctrlclient.Client
-	cluster                                *clusterv1.Cluster
-	nutanixSpec                            *carenv1.NutanixSpec
-	nutanixControlPlaneNodeSpec            *carenv1.NutanixNodeSpec
-	nutanixNodeSpecByMachineDeploymentName map[string]*carenv1.NutanixNodeSpec
-	v4client                               *prismv4.Client
-}
+type Checker struct{}
 
 func (n *Checker) Init(
 	ctx context.Context,
-	client ctrlclient.Client,
+	kclient ctrlclient.Client,
 	cluster *clusterv1.Cluster,
 ) []preflight.Check {
-	n.client = client
-	n.cluster = cluster
-
-	var err error
+	prismCentralEndpointSpec,
+		controlPlaneNutanixNodeSpec,
+		nutanixNodeSpecByMachineDeploymentName,
+		errCauses := readNutanixSpecs(cluster)
+	if len(errCauses) > 0 {
+		return initErrorCheck(errCauses...)
+	}
 
-	n.nutanixSpec, n.nutanixControlPlaneNodeSpec, n.nutanixNodeSpecByMachineDeploymentName, err = getData(cluster)
-	if err != nil {
-		return []preflight.Check{
-			errorCheck("TBD", "TBD"),
-		}
+	if controlPlaneNutanixNodeSpec == nil && len(nutanixNodeSpecByMachineDeploymentName) == 0 {
+		// No Nutanix specs found, no checks to run.
+		return nil
 	}
 
-	credentials, err := getCredentials(ctx, client, cluster, n.nutanixSpec)
-	if err != nil {
-		return []preflight.Check{
-			errorCheck(
-				fmt.Sprintf("failed to get Nutanix credentials: %s", err),
-				"cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.credentials",
-			),
-		}
+	// At least one Nutanix spec is defined. Get credentials and create a client,
+	// because all checks require them.
+	credentials, errCauses := getCredentials(ctx, kclient, cluster, prismCentralEndpointSpec)
+	if len(errCauses) > 0 {
+		return initErrorCheck(errCauses...)
 	}
 
-	n.v4client, err = v4client(credentials, n.nutanixSpec)
+	nv4client, err := prismv4.NewV4Client(*credentials)
 	if err != nil {
-		return []preflight.Check{
-			errorCheck(
-				fmt.Sprintf("failed to initialize Nutanix v4 client: %s", err),
-				"cluster.spec.topology.variables[.name=clusterConfig].nutanix",
-			),
-		}
+		return initErrorCheck(
+			preflight.Cause{
+				Message: fmt.Sprintf("failed to initialize Nutanix v4 client: %s", err),
+				Field:   "",
+			})
 	}
 
 	// Initialize checks.
 	checks := []preflight.Check{}
-	if n.nutanixControlPlaneNodeSpec != nil {
+	if controlPlaneNutanixNodeSpec != nil {
 		checks = append(checks,
-			func(ctx context.Context) preflight.CheckResult {
-				return n.vmImageCheckForMachineDetails(
-					&n.nutanixControlPlaneNodeSpec.MachineDetails,
-					"cluster.spec.topology[.name=clusterConfig].value.controlPlane.nutanix.machineDetails",
-				)
-			},
+			vmImageCheck(
+				nv4client,
+				controlPlaneNutanixNodeSpec,
+				"cluster.spec.topology[.name=clusterConfig].value.controlPlane.nutanix",
+			),
 		)
 	}
-	for mdName, nodeSpec := range n.nutanixNodeSpecByMachineDeploymentName {
+	for _, md := range cluster.Spec.Topology.Workers.MachineDeployments {
+		if nutanixNodeSpecByMachineDeploymentName[md.Name] == nil {
+			continue
+		}
 		checks = append(checks,
-			func(ctx context.Context) preflight.CheckResult {
-				return n.vmImageCheckForMachineDetails(
-					&nodeSpec.MachineDetails,
-					fmt.Sprintf(
-						"cluster.spec.topology.workers.machineDeployments[.name=%s]"+
-							".overrides[.name=workerConfig].value.nutanix.machineDetails",
-						mdName,
-					),
-				)
-			},
+			vmImageCheck(
+				nv4client,
+				nutanixNodeSpecByMachineDeploymentName[md.Name],
+				fmt.Sprintf(
+					"cluster.spec.topology.workers.machineDeployments[.name=%s].variables[.name=workerConfig].value.nutanix",
+					md.Name,
+				),
+			),
 		)
 	}
 	return checks
 }
 
-func errorCheck(msg, field string) preflight.Check {
-	return func(ctx context.Context) preflight.CheckResult {
-		return preflight.CheckResult{
-			Name:    "Nutanix",
-			Allowed: false,
-			Error:   true,
-			Causes: []preflight.Cause{
-				{
-					Message: msg,
-					Field:   field,
-				},
-			},
-		}
-	}
-}
-
-func getData(
-	cluster *clusterv1.Cluster,
-) (*carenv1.NutanixSpec, *carenv1.NutanixNodeSpec, map[string]*carenv1.NutanixNodeSpec, error) {
-	nutanixSpec := &carenv1.NutanixSpec{}
-	controlPlaneNutanixNodeSpec := &carenv1.NutanixNodeSpec{}
-	nutanixNodeSpecByMachineDeploymentName := make(map[string]*carenv1.NutanixNodeSpec)
-
-	clusterConfig, err := variables.UnmarshalClusterConfigVariable(cluster.Spec.Topology.Variables)
-	if err != nil {
-		return nil, nil, nil, fmt.Errorf("failed to unmarshal .variables[.name=clusterConfig]: %w", err)
-	}
-	if clusterConfig != nil && clusterConfig.Nutanix != nil {
-		nutanixSpec = clusterConfig.Nutanix
-	}
-
-	if clusterConfig.ControlPlane != nil && clusterConfig.ControlPlane.Nutanix != nil {
-		controlPlaneNutanixNodeSpec = clusterConfig.ControlPlane.Nutanix
-	}
-
-	if cluster.Spec.Topology.Workers != nil {
-		for _, md := range cluster.Spec.Topology.Workers.MachineDeployments {
-			workerConfig, err := variables.UnmarshalWorkerConfigVariable(md.Variables.Overrides)
-			if err != nil {
-				return nil, nil, nil, fmt.Errorf(
-					"failed to unmarshal .variables[.name=workerConfig] for machine deployment %s: %w",
-					md.Name, err,
-				)
+func initErrorCheck(causes ...preflight.Cause) []preflight.Check {
+	return []preflight.Check{
+		func(ctx context.Context) preflight.CheckResult {
+			return preflight.CheckResult{
+				Name:    "Nutanix",
+				Allowed: false,
+				Error:   true,
+				Causes:  causes,
 			}
-			if workerConfig != nil && workerConfig.Nutanix != nil {
-				nutanixNodeSpecByMachineDeploymentName[md.Name] = workerConfig.Nutanix
-			}
-		}
+		},
 	}
-
-	return nutanixSpec, controlPlaneNutanixNodeSpec, nutanixNodeSpecByMachineDeploymentName, nil
 }

pkg/webhook/preflight/nutanix/client.go

@@ -9,10 +9,11 @@ import (
 	clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1"
 	ctrlclient "sigs.k8s.io/controller-runtime/pkg/client"
 
+	prismgoclient "github.com/nutanix-cloud-native/prism-go-client"
 	prismcredentials "github.com/nutanix-cloud-native/prism-go-client/environment/credentials"
-	prismtypes "github.com/nutanix-cloud-native/prism-go-client/environment/types"
 
 	carenv1 "github.com/nutanix-cloud-native/cluster-api-runtime-extensions-nutanix/api/v1alpha1"
+	"github.com/nutanix-cloud-native/cluster-api-runtime-extensions-nutanix/pkg/webhook/preflight"
 )
 
 const credentialsSecretDataKey = "credentials"
@@ -21,41 +22,86 @@ func getCredentials(
 	ctx context.Context,
 	client ctrlclient.Client,
 	cluster *clusterv1.Cluster,
-	nutanixSpec *carenv1.NutanixSpec,
-) (*prismtypes.ApiCredentials, error) {
-	if nutanixSpec.PrismCentralEndpoint.Credentials.SecretRef.Name == "" {
-		return nil, fmt.Errorf("secretRef.name has no value")
+	prismCentralEndpointSpec *carenv1.NutanixPrismCentralEndpointSpec,
+) (*prismgoclient.Credentials, []preflight.Cause) {
+	if prismCentralEndpointSpec == nil {
+		return nil, []preflight.Cause{
+			{
+				Message: "Prism Central endpoint specification is missing",
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint",
+			},
+		}
+	}
+
+	if prismCentralEndpointSpec.Credentials.SecretRef.Name == "" {
+		return nil, []preflight.Cause{
+			{
+				Message: "Prism Central credentials secret reference is missing the name",
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.credentials.secretRef.name",
+			},
+		}
 	}
 
 	credentialsSecret := &corev1.Secret{}
 	if err := client.Get(
 		ctx,
 		types.NamespacedName{
 			Namespace: cluster.Namespace,
-			Name:      nutanixSpec.PrismCentralEndpoint.Credentials.SecretRef.Name,
+			Name:      prismCentralEndpointSpec.Credentials.SecretRef.Name,
 		},
 		credentialsSecret,
 	); err != nil {
-		return nil, fmt.Errorf("failed to get Secret: %w", err)
+		return nil, []preflight.Cause{
+			{
+				Message: fmt.Sprintf("failed to get the credentials Secret: %s", err),
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.credentials.secretRef",
+			},
+		}
 	}
 
 	if len(credentialsSecret.Data) == 0 {
-		return nil, fmt.Errorf(
-			"the Secret %s/%s has no data",
-			cluster.Namespace,
-			nutanixSpec.PrismCentralEndpoint.Credentials.SecretRef.Name,
-		)
+		return nil, []preflight.Cause{
+			{
+				Message: fmt.Sprintf("credentials Secret has no data"),
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.credentials.secretRef",
+			},
+		}
 	}
 
 	data, ok := credentialsSecret.Data[credentialsSecretDataKey]
 	if !ok {
-		return nil, fmt.Errorf(
-			"the Secret %s/%s has no data for key %s",
-			cluster.Namespace,
-			nutanixSpec.PrismCentralEndpoint.Credentials.SecretRef.Name,
-			credentialsSecretDataKey,
-		)
+		return nil, []preflight.Cause{
+			{
+				Message: fmt.Sprintf("credentials Secret data is missing the key '%s'", credentialsSecretDataKey),
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.credentials.secretRef",
+			},
+		}
+	}
+
+	usernamePassword, err := prismcredentials.ParseCredentials(data)
+	if err != nil {
+		return nil, []preflight.Cause{
+			{
+				Message: fmt.Sprintf("failed to parse credentials from Secret: %s", err),
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.credentials.secretRef",
+			},
+		}
 	}
-	// Get username and password
-	return prismcredentials.ParseCredentials(data)
+
+	host, port, err := prismCentralEndpointSpec.ParseURL()
+	if err != nil {
+		return nil, []preflight.Cause{
+			{
+				Message: fmt.Sprintf("failed to parse Prism Central URL: %s", err),
+				Field:   "cluster.spec.topology.variables[.name=clusterConfig].nutanix.prismCentralEndpoint.url",
+			},
+		}
+	}
+
+	return &prismgoclient.Credentials{
+		Endpoint: fmt.Sprintf("%s:%d", host, port),
+		Username: usernamePassword.Username,
+		Password: usernamePassword.Password,
+		Insecure: prismCentralEndpointSpec.Insecure,
+	}, nil
 }

pkg/webhook/preflight/nutanix/credentials.go

@@ -1,6 +1,7 @@
 package nutanix
 
 import (
+	"context"
 	"fmt"
 
 	vmmv4 "github.com/nutanix/ntnx-api-golang-clients/vmm-go-client/v4/models/vmm/v4/content"
@@ -12,7 +13,38 @@ import (
 	"github.com/nutanix-cloud-native/cluster-api-runtime-extensions-nutanix/pkg/webhook/preflight"
 )
 
-func (n *Checker) vmImageCheckForMachineDetails(
+func vmImageCheck(
+	client *prismv4.Client,
+	nutanixNodeSpec *carenv1.NutanixNodeSpec,
+	nutanixNodeSpecField string,
+) preflight.Check {
+	if nutanixNodeSpec == nil {
+		return func(ctx context.Context) preflight.CheckResult {
+			return preflight.CheckResult{
+				Name:    "VMImage",
+				Allowed: false,
+				Error:   true,
+				Causes: []preflight.Cause{
+					{
+						Message: fmt.Sprintf("NutanixNodeSpec is missing"),
+						Field:   nutanixNodeSpecField,
+					},
+				},
+			}
+		}
+	}
+
+	return func(ctx context.Context) preflight.CheckResult {
+		return vmImageCheckForMachineDetails(
+			client,
+			&nutanixNodeSpec.MachineDetails,
+			fmt.Sprintf("%s.machineDetails", nutanixNodeSpecField),
+		)
+	}
+}
+
+func vmImageCheckForMachineDetails(
+	client *prismv4.Client,
 	details *carenv1.NutanixMachineDetails,
 	field string,
 ) preflight.CheckResult {
@@ -36,7 +68,7 @@ func (n *Checker) vmImageCheckForMachineDetails(
 		errCh := make(chan error)
 		defer close(errCh)
 
-		images, err := getVMImages(n.v4client, details.Image)
+		images, err := getVMImages(client, details.Image)
 		if err != nil {
 			result.Allowed = false
 			result.Error = true