Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Handle removal of legacy access restriction #2196

Open
wants to merge 2 commits into
base: master
Choose a base branch
from
Open

Handle removal of legacy access restriction #2196

wants to merge 2 commits into from
+79 −19

Conversation

petersutter
Copy link
Member

What this PR does / why we need it:
With gardener/gardener#10883, Gardener no longer automatically removes legacy fields when .spec.accessRestrictions is deleted. This behavior specifically applies to the eu-access-only access restriction. To fully disable the eu-access-only restriction for a Shoot, the legacy fields must also be explicitly removed. This PR implements the necessary changes to handle this scenario.

Additionally, this PR updates the access restriction configuration of the dashboard at runtime by mapping accessRestriction.items[@key="seed.gardener.cloud/eu-access"] to accessRestriction.items[@key="eu-access-only"]. This mapping will be removed in a future version of the dashboard and operators are expected to adapt their config accordingly, if applicable.

Which issue(s) this PR fixes:
Fixes #

Special notes for your reviewer:

Release note:

**Action Required:** The automatic mapping from `accessRestriction.items[@key="seed.gardener.cloud/eu-access"]` to `accessRestriction.items[@key="eu-access-only"]` will be removed in a future dashboard version. Dashboard operators who use `seed.gardener.cloud/eu-access` in their access restriction configuration should update the key to `eu-access-only`. If your configuration does not include `seed.gardener.cloud/eu-access`, no action is required.

@gardener-robot gardener-robot added needs/review Needs review size/m Size of pull request is medium (see gardener-robot robot/bots/size.py) labels Nov 21, 2024
@gardener-robot-ci-1 gardener-robot-ci-1 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Nov 21, 2024
@gardener-robot gardener-robot added size/s Size of pull request is small (see gardener-robot robot/bots/size.py) and removed size/m Size of pull request is medium (see gardener-robot robot/bots/size.py) labels Nov 21, 2024
@gardener-robot-ci-2 gardener-robot-ci-2 added reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) and removed reviewed/ok-to-test Has approval for testing (check PR in detail before setting this label because PR is run on CI/CD) labels Nov 21, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@grolu grolu Awaiting requested review from grolu grolu is a code owner

@holgerkoser holgerkoser Awaiting requested review from holgerkoser holgerkoser is a code owner

At least 1 approving review is required to merge this pull request.

Assignees
No one assigned
Labels
needs/ok-to-test Needs approval for testing (check PR in detail before setting this label because PR is run on CI/CD) needs/review Needs review size/s Size of pull request is small (see gardener-robot robot/bots/size.py)
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@petersutter @gardener-robot-ci-1 @gardener-robot-ci-2 @gardener-robot