arg nit: ctx before client

Author: filipcirtog

controllers/operator/appdbreplicaset_controller.go

@@ -1667,7 +1667,7 @@ func (r *ReconcileAppDbReplicaSet) tryConfigureMonitoringInOpsManager(ctx contex
 		AutoPEMKeyFilePath: agentCertPath,
 		CAFilePath:         util.CAFilePathInContainer,
 	}
-	err = authentication.Configure(r.client, ctx, types.NamespacedName{Namespace: opsManager.Namespace, Name: opsManager.Name}, conn, opts, false, log)
+	err = authentication.Configure(ctx, r.client, types.NamespacedName{Namespace: opsManager.Namespace, Name: opsManager.Name}, conn, opts, false, log)
 	if err != nil {
 		log.Errorf("Could not set Automation Authentication options in Ops/Cloud Manager for the Application Database. "+
 			"Application Database is always configured with authentication enabled, but this will not be "+

controllers/operator/authentication/authentication.go

@@ -86,7 +86,7 @@ type UserOptions struct {
 
 // Configure will configure all the specified authentication Mechanisms. We need to ensure we wait for
 // the agents to reach ready state after each operation as prematurely updating the automation config can cause the agents to get stuck.
-func Configure(client kubernetesClient.Client, ctx context.Context, mdbNamespacedName types.NamespacedName, conn om.Connection, opts Options, isRecovering bool, log *zap.SugaredLogger) error {
+func Configure(ctx context.Context, client kubernetesClient.Client, mdbNamespacedName types.NamespacedName, conn om.Connection, opts Options, isRecovering bool, log *zap.SugaredLogger) error {
 	log.Infow("ensuring correct deployment mechanisms", "ProcessNames", opts.ProcessNames, "Mechanisms", opts.Mechanisms)
 
 	// In case we're recovering, we can push all changes at once, because the mechanism is triggered after 20min by default.
@@ -117,7 +117,7 @@ func Configure(client kubernetesClient.Client, ctx context.Context, mdbNamespace
 
 	// once we have made sure that the deployment authentication mechanism array contains the desired auth mechanism
 	// we can then configure the agent authentication.
-	if err := enableAgentAuthentication(client, ctx, mdbNamespacedName, conn, opts, log); err != nil {
+	if err := enableAgentAuthentication(ctx, client, mdbNamespacedName, conn, opts, log); err != nil {
 		return xerrors.Errorf("error enabling agent authentication: %w", err)
 	}
 	if err := waitForReadyStateIfNeeded(); err != nil {
@@ -262,7 +262,7 @@ func removeUnsupportedAgentMechanisms(conn om.Connection, opts Options, log *zap
 
 // enableAgentAuthentication determines which agent authentication mechanism should be configured
 // and enables it in Ops Manager
-func enableAgentAuthentication(client kubernetesClient.Client, ctx context.Context, mdbNamespacedName types.NamespacedName, conn om.Connection, opts Options, log *zap.SugaredLogger) error {
+func enableAgentAuthentication(ctx context.Context, client kubernetesClient.Client, mdbNamespacedName types.NamespacedName, conn om.Connection, opts Options, log *zap.SugaredLogger) error {
 	ac, err := conn.ReadAutomationConfig()
 	if err != nil {
 		return xerrors.Errorf("error reading automation config: %w", err)
@@ -271,7 +271,7 @@ func enableAgentAuthentication(client kubernetesClient.Client, ctx context.Conte
 	// we then configure the agent authentication for that type
 	mechanism := convertToMechanismOrPanic(opts.AgentMechanism, ac)
 
-	if err := ensureAgentAuthenticationIsConfigured(client, ctx, mdbNamespacedName, conn, opts, ac, mechanism, log); err != nil {
+	if err := ensureAgentAuthenticationIsConfigured(ctx, client, mdbNamespacedName, conn, opts, ac, mechanism, log); err != nil {
 		return xerrors.Errorf("error ensuring agent authentication is configured: %w", err)
 	}
 
@@ -369,7 +369,7 @@ func addOrRemoveAgentClientCertificate(conn om.Connection, opts Options, log *za
 }
 
 // ensureAgentAuthenticationIsConfigured will configure the agent authentication settings based on the desiredAgentAuthMechanism
-func ensureAgentAuthenticationIsConfigured(client kubernetesClient.Client, ctx context.Context, mdbNamespacedName types.NamespacedName, conn om.Connection, opts Options, ac *om.AutomationConfig, mechanism Mechanism, log *zap.SugaredLogger) error {
+func ensureAgentAuthenticationIsConfigured(ctx context.Context, client kubernetesClient.Client, mdbNamespacedName types.NamespacedName, conn om.Connection, opts Options, ac *om.AutomationConfig, mechanism Mechanism, log *zap.SugaredLogger) error {
 	if mechanism.IsAgentAuthenticationConfigured(ac, opts) {
 		log.Infof("Agent authentication mechanism %s is already configured", mechanism.GetName())
 		return nil

controllers/operator/authentication/configure_authentication_test.go

@@ -34,7 +34,7 @@ func TestConfigureScramSha256(t *testing.T) {
 		AgentMechanism:   "SCRAM",
 	}
 
-	if err := Configure(kubeClient, ctx, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
+	if err := Configure(ctx, kubeClient, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
 		t.Fatal(err)
 	}
 
@@ -66,7 +66,7 @@ func TestConfigureX509(t *testing.T) {
 		},
 	}
 
-	if err := Configure(kubeClient, ctx, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
+	if err := Configure(ctx, kubeClient, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
 		t.Fatal(err)
 	}
 
@@ -94,7 +94,7 @@ func TestConfigureScramSha1(t *testing.T) {
 		AgentMechanism:   "SCRAM-SHA-1",
 	}
 
-	if err := Configure(kubeClient, ctx, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
+	if err := Configure(ctx, kubeClient, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
 		t.Fatal(err)
 	}
 
@@ -123,7 +123,7 @@ func TestConfigureMultipleAuthenticationMechanisms(t *testing.T) {
 		},
 	}
 
-	if err := Configure(kubeClient, ctx, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
+	if err := Configure(ctx, kubeClient, mdbNamespacedName, conn, opts, false, zap.S()); err != nil {
 		t.Fatal(err)
 	}
 

controllers/operator/common_controller.go

@@ -514,7 +514,7 @@ func (r *ReconcileCommonController) updateOmAuthentication(ctx context.Context,
 			authOpts.UserOptions = userOpts
 		}
 
-		if err := authentication.Configure(r.client, ctx, types.NamespacedName{Namespace: ar.GetNamespace(), Name: ar.GetName()}, conn, authOpts, isRecovering, log); err != nil {
+		if err := authentication.Configure(ctx, r.client, types.NamespacedName{Namespace: ar.GetNamespace(), Name: ar.GetName()}, conn, authOpts, isRecovering, log); err != nil {
 			return workflow.Failed(err), false
 		}
 	} else if wantToEnableAuthentication {

docker/mongodb-kubernetes-tests/tests/authentication/sharded_cluster_scram_sha_1_switch_project.py

@@ -60,38 +60,38 @@ def test_ops_manager_state_correctly_updated_in_initial_sharded_cluster(
     ):
         test_helper.test_ops_manager_state_with_expected_authentication(0)
 
-    # def test_create_secret(self):
-    #     create_or_update_secret(
-    #         KubernetesTester.get_namespace(),
-    #         self.PASSWORD_SECRET_NAME,
-    #         {
-    #             "password": self.USER_PASSWORD,
-    #         },
-    #     )
-
-    # def test_create_user(self, namespace: str):
-    #     mdb = MongoDBUser.from_yaml(
-    #         load_fixture("scram-sha-user.yaml"),
-    #         namespace=namespace,
-    #     )
-    #     mdb["spec"]["mongodbResourceRef"]["name"] = MDB_RESOURCE_NAME
-
-    #     mdb.update()
-    #     mdb.assert_reaches_phase(Phase.Updated, timeout=150)
-
-    # def test_ops_manager_state_with_users_correctly_updated(
-    #     self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
-    # ):
-    #     user_name = "mms-user-1"
-    #     expected_roles = {
-    #         ("admin", "clusterAdmin"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #         ("admin", "readWrite"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #     }
-    #     test_helper.test_ops_manager_state_with_users(
-    #         user_name=user_name, expected_roles=expected_roles, expected_users=1
-    #     )
+    def test_create_secret(self):
+        create_or_update_secret(
+            KubernetesTester.get_namespace(),
+            self.PASSWORD_SECRET_NAME,
+            {
+                "password": self.USER_PASSWORD,
+            },
+        )
+
+    def test_create_user(self, namespace: str):
+        mdb = MongoDBUser.from_yaml(
+            load_fixture("scram-sha-user.yaml"),
+            namespace=namespace,
+        )
+        mdb["spec"]["mongodbResourceRef"]["name"] = MDB_RESOURCE_NAME
+
+        mdb.update()
+        mdb.assert_reaches_phase(Phase.Updated, timeout=150)
+
+    def test_ops_manager_state_with_users_correctly_updated(
+        self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
+    ):
+        user_name = "mms-user-1"
+        expected_roles = {
+            ("admin", "clusterAdmin"),
+            ("admin", "userAdminAnyDatabase"),
+            ("admin", "readWrite"),
+            ("admin", "userAdminAnyDatabase"),
+        }
+        test_helper.test_ops_manager_state_with_users(
+            user_name=user_name, expected_roles=expected_roles, expected_users=1
+        )
 
     def test_switch_sharded_cluster_project(self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper):
         test_helper.test_switch_sharded_cluster_project()
@@ -104,19 +104,18 @@ def test_sharded_cluster_connectivity_after_switch(
     def test_ops_manager_state_correctly_updated_after_switch(
         self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
     ):
-        test_helper.test_ops_manager_state_with_expected_authentication(expected_users=0)
-
-    # def test_ops_manager_state_with_users_correctly_updated_after_switch(
-    #     self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
-    # ):
-    #     user_name = "mms-user-1"
-    #     expected_roles = {
-    #         ("admin", "clusterAdmin"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #         ("admin", "readWrite"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #     }
-    #     test_helper.test_ops_manager_state_with_users(
-    #         user_name=user_name, expected_roles=expected_roles, expected_users=1
-    #     )
-    # There should be one user (the previously created user should still exist in the automation configuration). We need to investigate further to understand why the user is not being picked up.
+        test_helper.test_ops_manager_state_with_expected_authentication(expected_users=1)
+
+    def test_ops_manager_state_with_users_correctly_updated_after_switch(
+        self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
+    ):
+        user_name = "mms-user-1"
+        expected_roles = {
+            ("admin", "clusterAdmin"),
+            ("admin", "userAdminAnyDatabase"),
+            ("admin", "readWrite"),
+            ("admin", "userAdminAnyDatabase"),
+        }
+        test_helper.test_ops_manager_state_with_users(
+            user_name=user_name, expected_roles=expected_roles, expected_users=1
+        )

docker/mongodb-kubernetes-tests/tests/authentication/sharded_cluster_scram_sha_256_switch_project.py

@@ -60,38 +60,38 @@ def test_ops_manager_state_correctly_updated_in_initial_sharded_cluster(
     ):
         test_helper.test_ops_manager_state_with_expected_authentication(0)
 
-    # def test_create_secret(self):
-    #     create_or_update_secret(
-    #         KubernetesTester.get_namespace(),
-    #         self.PASSWORD_SECRET_NAME,
-    #         {
-    #             "password": self.USER_PASSWORD,
-    #         },
-    #     )
-
-    # def test_create_user(self, namespace: str):
-    #     mdb = MongoDBUser.from_yaml(
-    #         load_fixture("scram-sha-user.yaml"),
-    #         namespace=namespace,
-    #     )
-    #     mdb["spec"]["mongodbResourceRef"]["name"] = MDB_RESOURCE_NAME
-
-    #     mdb.update()
-    #     mdb.assert_reaches_phase(Phase.Updated, timeout=150)
-
-    # def test_ops_manager_state_with_users_correctly_updated(
-    #     self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
-    # ):
-    #     user_name = "mms-user-1"
-    #     expected_roles = {
-    #         ("admin", "clusterAdmin"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #         ("admin", "readWrite"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #     }
-    #     test_helper.test_ops_manager_state_with_users(
-    #         user_name=user_name, expected_roles=expected_roles, expected_users=1
-    #     )
+    def test_create_secret(self):
+        create_or_update_secret(
+            KubernetesTester.get_namespace(),
+            self.PASSWORD_SECRET_NAME,
+            {
+                "password": self.USER_PASSWORD,
+            },
+        )
+
+    def test_create_user(self, namespace: str):
+        mdb = MongoDBUser.from_yaml(
+            load_fixture("scram-sha-user.yaml"),
+            namespace=namespace,
+        )
+        mdb["spec"]["mongodbResourceRef"]["name"] = MDB_RESOURCE_NAME
+
+        mdb.update()
+        mdb.assert_reaches_phase(Phase.Updated, timeout=150)
+
+    def test_ops_manager_state_with_users_correctly_updated(
+        self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
+    ):
+        user_name = "mms-user-1"
+        expected_roles = {
+            ("admin", "clusterAdmin"),
+            ("admin", "userAdminAnyDatabase"),
+            ("admin", "readWrite"),
+            ("admin", "userAdminAnyDatabase"),
+        }
+        test_helper.test_ops_manager_state_with_users(
+            user_name=user_name, expected_roles=expected_roles, expected_users=1
+        )
 
     def test_switch_sharded_cluster_project(self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper):
         test_helper.test_switch_sharded_cluster_project()
@@ -104,19 +104,18 @@ def test_sharded_cluster_connectivity_after_switch(
     def test_ops_manager_state_correctly_updated_after_switch(
         self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
     ):
-        test_helper.test_ops_manager_state_with_expected_authentication(0)
+        test_helper.test_ops_manager_state_with_expected_authentication(expected_users=1)
 
-    # def test_ops_manager_state_with_users_correctly_updated_after_switch(
-    #     self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
-    # ):
-    #     user_name = "mms-user-1"
-    #     expected_roles = {
-    #         ("admin", "clusterAdmin"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #         ("admin", "readWrite"),
-    #         ("admin", "userAdminAnyDatabase"),
-    #     }
-    #     test_helper.test_ops_manager_state_with_users(
-    #         user_name=user_name, expected_roles=expected_roles, expected_users=1
-    #     )
-    # There should be one user (the previously created user should still exist in the automation configuration). We need to investigate further to understand why the user is not being picked up.
+    def test_ops_manager_state_with_users_correctly_updated_after_switch(
+        self, test_helper: ShardedClusterCreationAndProjectSwitchTestHelper
+    ):
+        user_name = "mms-user-1"
+        expected_roles = {
+            ("admin", "clusterAdmin"),
+            ("admin", "userAdminAnyDatabase"),
+            ("admin", "readWrite"),
+            ("admin", "userAdminAnyDatabase"),
+        }
+        test_helper.test_ops_manager_state_with_users(
+            user_name=user_name, expected_roles=expected_roles, expected_users=1
+        )