Operator refactor - validation and import cleanup

[pweil-]

Round 1 - go!

Let's see what clean up we can do here @timflannagan1.

This has the following commits that can be reviewed independently

1. move the type declarations to their own file and try to comment them up for future readers
2. since the reporting operator was not exporting anything, introduce an interface and unexport the type. Consumers deal with the interface now
3. move all the smaller validation blurbs from the various sections that are called during New, newOperator, and Run methods and consolidate on a single validation call to ensure the config is good during New. No good config == no operator to run. Bonus: Add tests for all validations
4. rename cb* imports to remove references to chargeback

There are a couple questions sprinkled in where things weren't obvious.

[pweil-]

/assign @timflannagan1

[timflannagan]

If we're tackling this kind of work now, I would expect to also rename this import and all of its occurrences too, to something like meteringClientset or anything that doesn't involve the old "chargeback" name.

[pweil-]

If we're tackling this kind of work now

We don't have to merge this now, I think it should be no-op so it shouldn't be too risky but bugs first and we can merge these when master opens if that't the right thing to do.

I would expect to also rename this import and all of its occurrences too, to something like meteringClientset or anything that doesn't involve the old "chargeback" name.

Easy enough, I'll add a new commit for this refactor

[timflannagan]

I can take a better look tomorrow when my brain is probably fresher, but I think this is awesome so far. A lot of this part of the codebase has been somewhat neglected for a while now and could use some general maintenance work.

[timflannagan]

Something else that I would like to tackle, but is probably out of the scope of this kind of work, is improving (or adding) comments to types/methods/functions to the various reporting-operator components, like what does New() ... or op.Run achieve such that a person not familiar with controllers would be able to see what we're trying to achieve with those functions.

[timflannagan]

Building off my comment from above, I wonder if we should be doing all of the reporting configuration validation in the cmd/reporting-operator driver function that provides the entry point for this operator, rather than in the constructor.

[pweil-]

it can be called from the cmd package but it should not be done there. Commands in Kube/OpenShift follow a pattern of Complete, Validate, Run. We should refactor ours to match and call the IsValidConfig method in the command's Validate method. However we should keep it in new as well to protect against programmatic access to the operator no matter how it's started in the future.

[pweil-]

Example of the recommended pattern: https://github.com/openshift/oc/blob/a695d74ef1aee9a3f605d38dd8b6fae2062b63fc/pkg/cli/tag/tag.go#L93-L116

[pweil-]

improving (or adding) comments to types/methods/functions to the various reporting-operator components,

this is 100% a goal here. Anything we touch in a refactor should get comments IMO, hence the API comments.

[pweil-]

Some other observations for the discussion (perhaps this PR, perhaps future)

1. figure out why we have so many threads in a single operator pod and if we can reduce and maintain performance (possibly removing the need for any mutex guarded code depending on the answer)

2. reduce the configuration complexity where possible. Example is the namespace configuration where we require AllNamespaces to be set with TargetNamespaces when we could just key on TargetNamespaces and do the right thing. Same for the TLS configs with a boolean that turns it off or on when we could just have the existence of the certs enable it.

3. move items that are ancillary to the operator into their own packages

[pweil-]

time="08-04-2020 13:35:39" level=debug msg="Created the mysql namespace" context=metering-validhdfs-mysqldatabase
error: multiple images or templates matched "mysql:5.7"

The argument "mysql:5.7" could apply to the following Docker images, OpenShift image streams, or templates:

* Image stream "mysql" (tag "8.0") in project "openshift"
  Use --image-stream="openshift/mysql:8.0" to specify this image or template

* Image stream "mysql" (tag "latest") in project "openshift"
  Use --image-stream="openshift/mysql:latest" to specify this image or template

[timflannagan]

time="08-04-2020 13:35:39" level=debug msg="Created the mysql namespace" context=metering-validhdfs-mysqldatabase
error: multiple images or templates matched "mysql:5.7"

The argument "mysql:5.7" could apply to the following Docker images, OpenShift image streams, or templates:

* Image stream "mysql" (tag "8.0") in project "openshift"
  Use --image-stream="openshift/mysql:8.0" to specify this image or template

* Image stream "mysql" (tag "latest") in project "openshift"
  Use --image-stream="openshift/mysql:latest" to specify this image or template

#1353

[pweil-]

/retest

[pweil-]

/retest

[pweil-]

/retest

[pweil-]

Removing WIP from this - it's probably big enough that we shouldn't add anything else too it yet if we want to merge. I am going to call out a few pieces (in review comments) that I think we need to be aware of though before we merge.

[pweil-]

/retest

[pweil-]

this will fail if a port is not given - can someone confirm that that is a correct behavior?

[bentito]

This gets called on api, metrics, pprof, presto, hive

I think it's valid to make the admin config the port for our API.
Metrics = Prom, has a default, might be ok to not spec.
pprof seems like it has a default port as well, so maybe okay to not spec.
Presto has a default port, might be ok to not spec.
Hive has a default thrift service port as well, so maybe that might not need being requeired to specify either.

[pweil-]

Ok, I will remove the calls/tests for apis that have default ports.

[pweil-]

previously we stated that one overrides the other. Introducing this will cause explicit failure. Acceptable?

[timflannagan]

I'm not sure where I land on this validation check. I think it sounds reasonable looking at the codebase and making sure we reject configurations that won't be respected. @bentito any opinion on this validation check.

[pweil-]

@bentito - thoughts on this one?

[bentito]

Reading the usage in start.go, it seems like this validates the stated usage. If it's Prom import question, they're both just ways of getting at how far back to try to grab Prom data when metering somehow gets out of sync. I think PrometheusDataSourceGlobalImportFromTime has more potential to be pretty awful for cluster workload, but I don't think that's being asked here.

[pweil-]

just validation of input. Sounds like I can leave it. Thanks

[pweil-]

previously we allowed config to be set even if this was set to false. Should we continue?

[timflannagan]

Same as my comment below. I think this is fine UX, reject any configurations like this if you're disabling TLS on the reporting-operator side for that component.

[pweil-]

previously we allowed config to be set even if this was set to false. Should we continue?

[timflannagan]

I would imagine that makes sense, i.e. rejecting a configuration where you explicitly set TLS-related flags yet disable TLS entirely for the reporting-operator -> presto communications.

[pweil-]

/retest

[pweil-]

@bentito @timflannagan1 updates from the review in the last commit. Thanks.

[pweil-]

/retest

[pweil-]

/retest

[pweil-]

/retest

[pweil-]

/retest

[pweil-]

/retest

[timflannagan]

/retest

[timflannagan]

@pweil- @bentito where are we at with this? There's nothing in here that I think we should hold off until 4.7 master opens up so merging this sooner than later is probably best.

[pweil-]

@timflannagan1 all review comments from @bentito have been addressed (left the prometheusDataSourceGlobalImportFromTime/prometheusDataSourceMaxBackfillImportDuration and removed the non-api host/port validations and tests).

Unless there is anything else I think this can merge.

[timflannagan]

/lgtm
/approve

[openshift-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: pweil-, timflannagan1

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [timflannagan1]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[pweil-]

/retest

[timflannagan]

🎉