squash: feat: mysql support

Squashed commit of the following:

* tests: optimizations ; local run script for integration tests

Signed-off-by: Florian Bauer <[email protected]>

* tests: add test configuration for percona

Signed-off-by: Florian Bauer <[email protected]>

* fix: improve integration tests; do not use manifests as a template any more

Signed-off-by: Florian Bauer <[email protected]>

* fix(mysql): add some logging

Signed-off-by: Florian Bauer <[email protected]>

* chore(.dockerignore): Add newline at end of file

* chore(integration-tests): Add newline at end of setup.sh

* ci: use custom build container image

Signed-off-by: Florian Bauer <[email protected]>

* tests(kubernetes): remove parallel execution from TestDatabase

Signed-off-by: Florian Bauer <[email protected]>

* fix(deployment): Update image version to latest

* feat: mysql support

Signed-off-by: Florian Bauer <[email protected]>

See merge request https://ref.ci/fsrvcorp/integration/external-db-operator/-/merge_requests/19

Author: fsrv-xyz

.dockerignore

@@ -0,0 +1,7 @@
+manifests/
+integration-tests/
+assets/
+.gitlab/
+.idea/
+README.md
+.gitlab-ci.yml

.gitlab-ci.yml

@@ -25,11 +25,12 @@ Integration Tests:
   variables:
     KUBECONFIG: /etc/rancher/k3s/k3s.yaml
   before_script:
-    - (apt update && apt install -y curl) > /dev/null 2>&1
+    - (apt update && apt install -y curl git) > /dev/null 2>&1
     - curl -sSL https://go.dev/dl/go1.21.5.linux-amd64.tar.gz | tar -C /usr/local -xzf -
     - /usr/local/go/bin/go install gotest.tools/gotestsum@latest
   script:
     - bash -x integration-tests/setup.sh
+    - eval $(cat .env)
     - /usr/local/go/bin/go test -v ./integration-tests/... --tags integration -json | /root/go/bin/gotestsum --junitfile report.xml --format testname --raw-command -- cat
   artifacts:
     reports:

README.md

@@ -10,6 +10,7 @@ Operator Features:
 
 Supported Databases:
 - PostgreSQL (via [pgx](https://github.com/jackc/pgx))
+- MySQL / MariaDB / Percona (via [go-sql-driver/mysql](https://github.com/go-sql-driver/mysql))
 
 Other databases can be added by implementing the [Provider](internal/database/database.go) interface.
 

go.mod

@@ -4,6 +4,7 @@ go 1.21
 
 require (
 	github.com/alecthomas/kingpin/v2 v2.4.0
+	github.com/go-sql-driver/mysql v1.7.1
 	github.com/google/uuid v1.5.0
 	github.com/hellofresh/health-go/v5 v5.5.1
 	github.com/jackc/pgx/v5 v5.5.1

go.sum

@@ -19,6 +19,8 @@ github.com/go-openapi/jsonreference v0.20.3 h1:EjGcjTW8pD1mRis6+w/gmoBdqv5+RbE9B
 github.com/go-openapi/jsonreference v0.20.3/go.mod h1:FviDZ46i9ivh810gqzFLl5NttD5q3tSlMLqLr6okedM=
 github.com/go-openapi/swag v0.22.5 h1:fVS63IE3M0lsuWRzuom3RLwUMVI2peDH01s6M70ugys=
 github.com/go-openapi/swag v0.22.5/go.mod h1:Gl91UqO+btAM0plGGxHqJcQZ1ZTy6jbmridBTsDy8A0=
+github.com/go-sql-driver/mysql v1.7.1 h1:lUIinVbN1DY0xBg0eMOzmmtGoHwWBbvnWubQUrtU8EI=
+github.com/go-sql-driver/mysql v1.7.1/go.mod h1:OXbVy3sEdcQ2Doequ6Z5BW6fXNQTmx+9S1MCJN5yJMI=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572 h1:tfuBGBXKqDEevZMzYi5KSi8KkcZtzBcTgAUUtapy0OI=
 github.com/go-task/slim-sprig v0.0.0-20230315185526-52ccab3ef572/go.mod h1:9Pwr4B2jHnOSGXyyzV8ROjYa2ojvAY6HCGYYfMoC3Ls=
 github.com/gogo/protobuf v1.3.2 h1:Ov1cvc58UF3b5XjBnZv7+opcTcQFZebYjWzi34vdm4Q=

integration-tests/kubernetes_test.go

@@ -3,63 +3,326 @@
 package integration_tests
 
 import (
-	"io"
+	"context"
 	"os"
 	"os/exec"
 	"strings"
 	"testing"
+	"time"
+
+	"github.com/google/uuid"
+	appsv1 "k8s.io/api/apps/v1"
+	batchv1 "k8s.io/api/batch/v1"
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/apis/meta/v1/unstructured"
+	"k8s.io/apimachinery/pkg/runtime/schema"
+	"k8s.io/apimachinery/pkg/util/intstr"
+	"k8s.io/client-go/dynamic"
+	"k8s.io/client-go/kubernetes"
+	"k8s.io/client-go/tools/clientcmd"
 )
 
 func kubectl(args ...string) *exec.Cmd {
 	return exec.Command("kubectl", args...)
 }
 
+func mapIncludesKeys[T any](m map[string]T, keys ...string) bool {
+	for _, key := range keys {
+		if _, ok := m[key]; !ok {
+			return false
+		}
+	}
+	return true
+}
+
+func deployOperator(kubernetesApiClient *kubernetes.Clientset, name, provider, dsn string) error {
+	operatorLabels := map[string]string{
+		"app.kubernetes.io/name":     "external-db-operator",
+		"app.kubernetes.io/instance": name,
+	}
+
+	image, operatorImageGiven := os.LookupEnv("OPERATOR_IMAGE")
+	if !operatorImageGiven {
+		image = "registry.fsrv.services/fsrvcorp/integration/external-db-operator:latest"
+	}
+
+	deploymentConfiguration := &appsv1.Deployment{
+		ObjectMeta: metav1.ObjectMeta{
+			Name: "external-db-operator-" + name,
+		},
+		Spec: appsv1.DeploymentSpec{
+			Selector: &metav1.LabelSelector{
+				MatchLabels: operatorLabels,
+			},
+			Template: corev1.PodTemplateSpec{
+				ObjectMeta: metav1.ObjectMeta{
+					Labels: operatorLabels,
+				},
+				Spec: corev1.PodSpec{
+					ServiceAccountName: "external-db-operator-sa",
+					RestartPolicy:      corev1.RestartPolicyAlways,
+					InitContainers: []corev1.Container{
+						{
+							Name:  "wait-for-database",
+							Image: "alpine:latest",
+							Command: []string{
+								"sh",
+								"-c",
+								"until getent hosts " + name + ".databases.svc.cluster.local; do echo 'Waiting for database connection...' && sleep 1; done",
+							},
+						},
+					},
+					Containers: []corev1.Container{
+						{
+							Name:  "external-db-operator",
+							Image: image,
+							ReadinessProbe: &corev1.Probe{
+								InitialDelaySeconds: 5,
+								PeriodSeconds:       2,
+								ProbeHandler: corev1.ProbeHandler{
+									HTTPGet: &corev1.HTTPGetAction{
+										Path: "/status",
+										Port: intstr.FromInt32(8080),
+									},
+								},
+							},
+							Env: []corev1.EnvVar{
+								{
+									Name:  "DATABASE_PROVIDER",
+									Value: provider,
+								},
+								{
+									Name:  "DATABASE_DSN",
+									Value: dsn,
+								},
+								{
+									Name:  "INSTANCE_NAME",
+									Value: name,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	// check if deployment already exists
+	_, getDeploymentError := kubernetesApiClient.AppsV1().Deployments("default").Get(context.Background(), deploymentConfiguration.Name, metav1.GetOptions{})
+	if getDeploymentError == nil {
+		// deployment already exists, delete it
+		deleteDeploymentError := kubernetesApiClient.AppsV1().Deployments("default").Delete(context.Background(), deploymentConfiguration.Name, metav1.DeleteOptions{})
+		if deleteDeploymentError != nil {
+			return deleteDeploymentError
+		}
+	}
+
+	_, operatorDeployError := kubernetesApiClient.AppsV1().Deployments("default").Create(context.Background(), deploymentConfiguration, metav1.CreateOptions{})
+
+	return operatorDeployError
+}
+
 func TestDatabase(t *testing.T) {
+	clientConfig, _ := clientcmd.BuildConfigFromFlags("", os.Getenv("KUBECONFIG"))
+	kubernetesApiClient := kubernetes.NewForConfigOrDie(clientConfig)
+	kubernetesDynamicClient := dynamic.NewForConfigOrDie(clientConfig)
+
 	kubectl("apply", "-f", "../manifests/crd.yaml").Run()
 	kubectl("apply", "-f", "../manifests/rbac.yaml").Run()
 
-	deploymentFile, deploymentFileOpenError := os.Open("../manifests/deployment.yaml")
-	if deploymentFileOpenError != nil {
-		t.Fatalf("failed to open deployment manifest: %v", deploymentFileOpenError)
-	}
-	deploymentFileContent, manifestLoadError := io.ReadAll(deploymentFile)
-	if manifestLoadError != nil {
-		t.Fatalf("failed to load manifest: %v", manifestLoadError)
+	databaseNamespace := "databases"
+	kubectl("delete", "namespace", databaseNamespace).Run()
+	kubectl("create", "namespace", databaseNamespace).Run()
+
+	type check struct {
+		packages []string
+		command  string
 	}
-	deploymentManifest := string(deploymentFileContent)
+
+	mysqlProviderCheckCommand := "mysql -h $(cat /etc/db-credentials/host) -P $(cat /etc/db-credentials/port) -u $(cat /etc/db-credentials/username) -p$(cat /etc/db-credentials/password) $(cat /etc/db-credentials/database) -e 'SELECT 1'"
 
 	for _, testCase := range []struct {
 		name     string
 		provider string
 		dsn      string
+		check    check
 	}{
 		{
 			name:     "postgres",
 			provider: "postgres",
-			dsn:      "postgres://postgres:postgres@postgres:5432/postgres?sslmode=disable",
+			dsn:      "postgres://postgres:[email protected]:5432/postgres?sslmode=disable",
+			check: check{
+				packages: []string{"postgresql-client"},
+				command:  "PGPASSWORD=$(cat /etc/db-credentials/password) psql -h $(cat /etc/db-credentials/host) -p $(cat /etc/db-credentials/port) -U $(cat /etc/db-credentials/username) -d $(cat /etc/db-credentials/database) -c 'SELECT 1'",
+			},
+		},
+		{
+			name:     "mysql",
+			provider: "mysql",
+			dsn:      "root:password@tcp(mysql.databases.svc.cluster.local:3306)/mysql?charset=utf8mb4&parseTime=True&loc=Local",
+			check: check{
+				packages: []string{"default-mysql-client"},
+				command:  mysqlProviderCheckCommand,
+			},
+		},
+		{
+			name:     "mariadb",
+			provider: "mysql",
+			dsn:      "root:password@tcp(mariadb.databases.svc.cluster.local:3306)/mysql?charset=utf8mb4&parseTime=True&loc=Local",
+			check: check{
+				packages: []string{"default-mysql-client"},
+				command:  mysqlProviderCheckCommand,
+			},
+		},
+		{
+			name:     "percona",
+			provider: "mysql",
+			dsn:      "root:password@tcp(percona.databases.svc.cluster.local:3306)/mysql?charset=utf8mb4&parseTime=True&loc=Local",
+			check: check{
+				packages: []string{"default-mysql-client"},
+				command:  mysqlProviderCheckCommand,
+			},
 		},
 	} {
 		t.Run(testCase.name, func(t *testing.T) {
 			// Deploy test database
-			kubectl("apply", "-f", "../manifests/databases/"+testCase.provider+".yaml").Run()
-
-			testCaseDeploymentManifest := strings.Replace(deploymentManifest, "<DSN>", testCase.dsn, -1)
-			testCaseDeploymentManifest = strings.Replace(testCaseDeploymentManifest, "<PROVIDER>", testCase.provider, -1)
-			apply := kubectl("apply", "-f", "-")
-			apply.Stdin = strings.NewReader(testCaseDeploymentManifest)
-			if applyOperatorOutput, applyOperatorError := apply.CombinedOutput(); applyOperatorError != nil {
-				t.Errorf("failed to apply operator: %v \n %v", applyOperatorError, string(applyOperatorOutput))
-				return
-			} else {
-				t.Log(string(applyOperatorOutput))
-			}
+			t.Run("deploy test database", func(t *testing.T) {
+				if deployTestDatabaseOutput, deployTestDatabaseError := kubectl("apply", "-n", databaseNamespace, "-f", "../manifests/databases/"+testCase.name+".yaml").CombinedOutput(); deployTestDatabaseError != nil {
+					t.Errorf("failed to deploy test database: %v \n %v", deployTestDatabaseError, string(deployTestDatabaseOutput))
+					return
+				} else {
+					t.Log(string(deployTestDatabaseOutput))
+				}
+			})
+
+			// Deploy operator
+			t.Run("deploy operator", func(t *testing.T) {
+				deployOperatorError := deployOperator(kubernetesApiClient, testCase.name, testCase.provider, testCase.dsn)
+				if deployOperatorError != nil {
+					t.Fatalf("failed to deploy operator: %v", deployOperatorError)
+				}
 
-			if output, waitError := kubectl("wait", "--for=condition=Available", "--timeout=1m", "deployment/external-db-operator-"+testCase.provider).CombinedOutput(); waitError != nil {
-				t.Errorf("failed to wait for operator: %v \n %v", waitError, string(output))
+				// Wait for operator to be ready
+				if output, waitError := kubectl("wait", "--for=condition=Available", "--timeout=1m", "deployment/external-db-operator-"+testCase.name).CombinedOutput(); waitError != nil {
+					t.Errorf("failed to wait for operator: %v \n %v", waitError, string(output))
+					return
+				} else {
+					t.Log(string(output))
+				}
+			})
+
+			databaseResourceNamespace := "test-namespace-" + testCase.name
+
+			// Create test database
+			kubectl("delete", "namespace", databaseResourceNamespace).Run()
+			kubectl("create", "namespace", databaseResourceNamespace).Run()
+			_, createTestDatabaseError := kubernetesDynamicClient.Resource(schema.GroupVersionResource(metav1.GroupVersionResource{
+				Group:    "bonsai-oss.org",
+				Version:  "v1",
+				Resource: "databases",
+			})).Namespace(databaseResourceNamespace).Create(context.Background(), &unstructured.Unstructured{
+				Object: map[string]interface{}{
+					"apiVersion": "bonsai-oss.org/v1",
+					"kind":       "Database",
+					"metadata": map[string]interface{}{
+						"name": "demo",
+						"labels": map[string]interface{}{
+							"bonsai-oss.org/external-db-operator": testCase.provider + "-" + testCase.name,
+						},
+					},
+				},
+			}, metav1.CreateOptions{})
+
+			if createTestDatabaseError != nil {
+				t.Errorf("failed to create test database: %v", createTestDatabaseError)
 				return
-			} else {
-				t.Log(string(output))
 			}
+
+			time.Sleep(5 * time.Second)
+			t.Run("check secret integrity", func(t *testing.T) {
+				secret, secretGetError := kubernetesApiClient.
+					CoreV1().
+					Secrets(databaseResourceNamespace).
+					Get(context.Background(), "edb-demo", metav1.GetOptions{})
+				if secretGetError != nil {
+					t.Errorf("failed to get secret: %v", secretGetError)
+					return
+				}
+
+				if !mapIncludesKeys(secret.Data, "username", "password", "host", "port", "database") {
+					t.Errorf("secret does not contain all required keys")
+					return
+				}
+			})
+
+			t.Run("check database integrity", func(t *testing.T) {
+				_, jobError := kubernetesApiClient.BatchV1().Jobs(databaseResourceNamespace).Create(context.Background(), &batchv1.Job{
+					ObjectMeta: metav1.ObjectMeta{
+						Name: "db-integrity-check-" + uuid.NewString(),
+					},
+					Spec: batchv1.JobSpec{
+						BackoffLimit: func() *int32 { i := int32(0); return &i }(),
+						Template: corev1.PodTemplateSpec{
+							Spec: corev1.PodSpec{
+								RestartPolicy: corev1.RestartPolicyNever,
+								Volumes: []corev1.Volume{
+									{
+										Name: "db-credentials",
+										VolumeSource: corev1.VolumeSource{
+											Secret: &corev1.SecretVolumeSource{
+												SecretName: "edb-demo",
+											},
+										},
+									},
+								},
+								Containers: []corev1.Container{
+									{
+										Name:  "db-integrity-check",
+										Image: "debian:sid",
+										Command: []string{
+											"bash",
+											"-xc",
+											"(apt update && apt install -y " + strings.Join(testCase.check.packages, " ") + ") >/dev/null 2>&1 && " + testCase.check.command,
+										},
+										VolumeMounts: []corev1.VolumeMount{
+											{
+												Name:      "db-credentials",
+												MountPath: "/etc/db-credentials",
+											},
+										},
+									},
+								},
+							},
+						},
+					},
+				}, metav1.CreateOptions{})
+				if jobError != nil {
+					t.Errorf("failed to create job: %v", jobError)
+					return
+				}
+
+				// check for job completion
+				watcher, _ := kubernetesApiClient.BatchV1().Jobs(databaseResourceNamespace).Watch(context.Background(), metav1.ListOptions{
+					Watch: true,
+				})
+				defer watcher.Stop()
+
+				for event := range watcher.ResultChan() {
+					job, _ := event.Object.(*batchv1.Job)
+					if len(job.Status.Conditions) == 0 {
+						continue
+					}
+
+					switch job.Status.Conditions[0].Type {
+					case batchv1.JobComplete:
+						return
+					default:
+						t.Errorf("job failed: %v", job.Status.Conditions[0].Message)
+						return
+					}
+				}
+			})
 		})
 	}
 }