cloudfoundry · julian-hj · Mar 29, 2022 · Mar 31, 2022 · kieron-dev · Mar 30, 2022
diff --git a/api/apis/integration/integration_suite_test.go b/api/apis/integration/integration_suite_test.go
@@ -68,7 +68,7 @@ var (
 	rootNamespaceUserRole *rbacv1.ClusterRole
 	rootNamespace         string
 	clientFactory         repositories.UserK8sClientFactory
-	nsPermissions         *authorization.NamespacePermissions
+	nsPermissions         repositories.NamespacePermissions
 )
 
 var _ = BeforeSuite(func() {
@@ -105,7 +105,7 @@ var _ = BeforeSuite(func() {
 	dynamicClient, err := dynamic.NewForConfig(k8sConfig)
 	Expect(err).NotTo(HaveOccurred())
 	Expect(dynamicClient).NotTo(BeNil())
-	namespaceRetriever = repositories.NewNamespaceRetriver(dynamicClient)
+	namespaceRetriever = repositories.NewNamespaceRetriever(dynamicClient)
 	Expect(namespaceRetriever).NotTo(BeNil())
 
 	rand.Seed(time.Now().UnixNano())

diff --git a/api/authorization/namespace_permissions.go b/api/authorization/namespace_permissions.go
@@ -24,29 +24,29 @@ type IdentityProvider interface {
 	GetIdentity(context.Context, Info) (Identity, error)
 }
 
-type NamespacePermissions struct {
+type namespacePermissions struct {
 	privilegedClient client.Client
 	identityProvider IdentityProvider
 	rootNamespace    string
 }
 
-func NewNamespacePermissions(privilegedClient client.Client, identityProvider IdentityProvider, rootNamespace string) *NamespacePermissions {
-	return &NamespacePermissions{
+func NewNamespacePermissions(privilegedClient client.Client, identityProvider IdentityProvider, rootNamespace string) *namespacePermissions {
+	return &namespacePermissions{
 		privilegedClient: privilegedClient,
 		identityProvider: identityProvider,
 		rootNamespace:    rootNamespace,
 	}
 }
 
-func (o *NamespacePermissions) GetAuthorizedOrgNamespaces(ctx context.Context, info Info) (map[string]bool, error) {
+func (o *namespacePermissions) GetAuthorizedOrgNamespaces(ctx context.Context, info Info) (map[string]bool, error) {
 	return o.getAuthorizedNamespaces(ctx, info, orgLevel, "Org")
 }
 
-func (o *NamespacePermissions) GetAuthorizedSpaceNamespaces(ctx context.Context, info Info) (map[string]bool, error) {
+func (o *namespacePermissions) GetAuthorizedSpaceNamespaces(ctx context.Context, info Info) (map[string]bool, error) {
 	return o.getAuthorizedNamespaces(ctx, info, spaceLevel, "Space")
 }
 
-func (o *NamespacePermissions) getAuthorizedNamespaces(ctx context.Context, info Info, orgSpaceLevel, resourceType string) (map[string]bool, error) {
+func (o *namespacePermissions) getAuthorizedNamespaces(ctx context.Context, info Info, orgSpaceLevel, resourceType string) (map[string]bool, error) {
 	identity, err := o.identityProvider.GetIdentity(ctx, info)
 	if err != nil {
 		return nil, fmt.Errorf("failed to get identity: %w", err)
@@ -84,7 +84,7 @@ func (o *NamespacePermissions) getAuthorizedNamespaces(ctx context.Context, info
 	return authorizedNamespaces, nil
 }
 
-func (o *NamespacePermissions) AuthorizedIn(ctx context.Context, identity Identity, namespace string) (bool, error) {
+func (o *namespacePermissions) AuthorizedIn(ctx context.Context, identity Identity, namespace string) (bool, error) {
 	var rolebindings rbacv1.RoleBindingList
 	err := o.privilegedClient.List(ctx, &rolebindings, client.InNamespace(namespace))
 	if err != nil {

diff --git a/api/authorization/namespace_permissions_test.go b/api/authorization/namespace_permissions_test.go
@@ -1,6 +1,7 @@
 package authorization_test
 
 import (
+	"code.cloudfoundry.org/cf-k8s-controllers/api/repositories"
 	"context"
 	"errors"
 	"fmt"
@@ -20,7 +21,7 @@ import (
 var _ = Describe("Namespace Permissions", func() {
 	var (
 		ctx              context.Context
-		nsPerms          *authorization.NamespacePermissions
+		nsPerms          repositories.NamespacePermissions
 		namespaces       map[string]bool
 		getErr           error
 		authInfo         authorization.Info

diff --git a/api/main.go b/api/main.go
@@ -81,7 +81,7 @@ func main() {
 	if err != nil {
 		panic(fmt.Sprintf("could not create dynamic k8s client: %v", err))
 	}
-	namespaceRetriever := repositories.NewNamespaceRetriver(dynamicClient)
+	namespaceRetriever := repositories.NewNamespaceRetriever(dynamicClient)
 
 	mapper, err := apiutil.NewDynamicRESTMapper(k8sClientConfig)
 	if err != nil {

diff --git a/api/repositories/app_repository.go b/api/repositories/app_repository.go
@@ -41,10 +41,10 @@ const (
 type AppRepo struct {
 	namespaceRetriever   NamespaceRetriever
 	userClientFactory    UserK8sClientFactory
-	namespacePermissions *authorization.NamespacePermissions
+	namespacePermissions NamespacePermissions
 }
 
-func NewAppRepo(namespaceRetriever NamespaceRetriever, userClientFactory UserK8sClientFactory, authPerms *authorization.NamespacePermissions) *AppRepo {
+func NewAppRepo(namespaceRetriever NamespaceRetriever, userClientFactory UserK8sClientFactory, authPerms NamespacePermissions) *AppRepo {
 	return &AppRepo{
 		namespaceRetriever:   namespaceRetriever,
 		userClientFactory:    userClientFactory,
@@ -160,7 +160,7 @@ func (f *AppRepo) GetApp(ctx context.Context, authInfo authorization.Info, appGU
 
 	userClient, err := f.userClientFactory.BuildClient(authInfo)
 	if err != nil {
-		return AppRecord{}, fmt.Errorf("get-app failed to build user client: %w", err)
+		return AppRecord{}, fmt.Errorf("failed to build user client: %w", err)
 	}
 
 	app := workloadsv1alpha1.CFApp{}
@@ -395,7 +395,7 @@ func (f *AppRepo) CreateOrPatchAppEnvVars(ctx context.Context, authInfo authoriz
 func (f *AppRepo) SetCurrentDroplet(ctx context.Context, authInfo authorization.Info, message SetCurrentDropletMessage) (CurrentDropletRecord, error) {
 	userClient, err := f.userClientFactory.BuildClient(authInfo)
 	if err != nil {
-		return CurrentDropletRecord{}, fmt.Errorf("set-current-droplet: failed to create k8s user client: %w", err)
+		return CurrentDropletRecord{}, fmt.Errorf("failed to build user client: %w", err)
 	}
 
 	baseCFApp := &workloadsv1alpha1.CFApp{