Make resourceMode optional

J12934 · J12934 · commit bb53edc5067a · 2023-04-18T09:50:58.000+02:00
Default doesn't work work required field in kubernetes@1.24

Signed-off-by: Jannik Hollenbach &lt;jannik@hollenbach.de&gt;
diff --git a/operator/apis/execution/v1/scan_types.go b/operator/apis/execution/v1/scan_types.go
@@ -115,9 +115,10 @@ type ScanSpec struct {
 	ScanType string `json:"scanType,omitempty"`
 
 	// The Resource Mode of the scan: Should it use namespace-local or cluster-wide resources (ScanType vs. ClusterScanType)
+	// +kubebuilder:validation:Optional
 	// +kubebuilder:default:=namespaceLocal
 	// +kubebuilder:validation:Enum="namespaceLocal";"clusterWide"
-	ResourceMode ResourceMode `json:"resourceMode"`
+	ResourceMode *ResourceMode `json:"resourceMode"`
 
 	// All CLI parameters to configure the scan container.
 	// +kubebuilder:validation:Required
diff --git a/operator/apis/execution/v1/zz_generated.deepcopy.go b/operator/apis/execution/v1/zz_generated.deepcopy.go
diff --git a/operator/config/crd/bases/cascading.securecodebox.io_cascadingrules.yaml b/operator/config/crd/bases/cascading.securecodebox.io_cascadingrules.yaml
@@ -4257,8 +4257,6 @@ spec:
                       - name
                       type: object
                     type: array
-                required:
-                - resourceMode
                 type: object
             required:
             - matches
diff --git a/operator/config/crd/bases/execution.securecodebox.io_scans.yaml b/operator/config/crd/bases/execution.securecodebox.io_scans.yaml
@@ -4082,8 +4082,6 @@ spec:
                   - name
                   type: object
                 type: array
-            required:
-            - resourceMode
             type: object
           status:
             description: ScanStatus defines the observed state of Scan
diff --git a/operator/config/crd/bases/execution.securecodebox.io_scheduledscans.yaml b/operator/config/crd/bases/execution.securecodebox.io_scheduledscans.yaml
@@ -4239,8 +4239,6 @@ spec:
                       - name
                       type: object
                     type: array
-                required:
-                - resourceMode
                 type: object
               successfulJobsHistoryLimit:
                 description: SuccessfulJobsHistoryLimit determines how many past Scans
diff --git a/operator/controllers/execution/scans/hook_reconciler.go b/operator/controllers/execution/scans/hook_reconciler.go
@@ -33,7 +33,7 @@ func (r *ScanReconciler) setHookStatus(scan *executionv1.Scan) error {
 
 	var hookStatuses []*executionv1.HookStatus
 
-	if scan.Spec.ResourceMode == executionv1.NamespaceLocal {
+	if scan.Spec.ResourceMode == nil || *scan.Spec.ResourceMode == executionv1.NamespaceLocal {
 		var scanCompletionHooks executionv1.ScanCompletionHookList
 		if err := r.List(ctx, &scanCompletionHooks,
 			client.InNamespace(scan.Namespace),
@@ -192,7 +192,7 @@ func (r *ScanReconciler) processPendingHook(scan *executionv1.Scan, status *exec
 	var hookName string
 	var hookSpec executionv1.ScanCompletionHookSpec
 
-	if scan.Spec.ResourceMode == executionv1.NamespaceLocal {
+	if scan.Spec.ResourceMode == nil || *scan.Spec.ResourceMode == executionv1.NamespaceLocal {
 		var hook executionv1.ScanCompletionHook
 		err = r.Get(ctx, types.NamespacedName{Name: status.HookName, Namespace: scan.Namespace}, &hook)
 		if err != nil {
@@ -201,7 +201,7 @@ func (r *ScanReconciler) processPendingHook(scan *executionv1.Scan, status *exec
 		}
 		hookName = hook.Name
 		hookSpec = hook.Spec
-	} else if scan.Spec.ResourceMode == executionv1.ClusterWide {
+	} else if *scan.Spec.ResourceMode == executionv1.ClusterWide {
 		var clusterHook executionv1.ClusterScanCompletionHook
 		err = r.Get(ctx, types.NamespacedName{Name: status.HookName}, &clusterHook)
 		if err != nil {
diff --git a/operator/controllers/execution/scans/parse_reconciler.go b/operator/controllers/execution/scans/parse_reconciler.go
@@ -39,7 +39,7 @@ func (r *ScanReconciler) startParser(scan *executionv1.Scan) error {
 
 	// get the parse definition matching the parseType of the scan result
 	var parseDefinitionSpec executionv1.ParseDefinitionSpec
-	if scan.Spec.ResourceMode == executionv1.NamespaceLocal {
+	if scan.Spec.ResourceMode == nil || *scan.Spec.ResourceMode == executionv1.NamespaceLocal {
 		var parseDefinition executionv1.ParseDefinition
 		if err := r.Get(ctx, types.NamespacedName{Name: parseType, Namespace: scan.Namespace}, &parseDefinition); err != nil {
 			log.V(7).Info("Unable to fetch ParseDefinition")
@@ -55,7 +55,7 @@ func (r *ScanReconciler) startParser(scan *executionv1.Scan) error {
 		}
 		log.Info("Matching ParseDefinition Found", "ParseDefinition", parseType)
 		parseDefinitionSpec = parseDefinition.Spec
-	} else if scan.Spec.ResourceMode == executionv1.ClusterWide {
+	} else if *scan.Spec.ResourceMode == executionv1.ClusterWide {
 		var clusterParseDefinition executionv1.ClusterParseDefinition
 		if err := r.Get(ctx, types.NamespacedName{Name: parseType}, &clusterParseDefinition); err != nil {
 			log.V(7).Info("Unable to fetch ClusterParseDefinition")
diff --git a/operator/controllers/execution/scans/scan_reconciler.go b/operator/controllers/execution/scans/scan_reconciler.go
@@ -50,7 +50,7 @@ func (r *ScanReconciler) startScan(scan *executionv1.Scan) error {
 
 	// get the ScanType for the scan
 	var scanTypeSpec executionv1.ScanTypeSpec
-	if scan.Spec.ResourceMode == executionv1.NamespaceLocal {
+	if scan.Spec.ResourceMode == nil || *scan.Spec.ResourceMode == executionv1.NamespaceLocal {
 		var scanType executionv1.ScanType
 		if err := r.Get(ctx, types.NamespacedName{Name: scan.Spec.ScanType, Namespace: scan.Namespace}, &scanType); err != nil {
 
@@ -67,7 +67,7 @@ func (r *ScanReconciler) startScan(scan *executionv1.Scan) error {
 		}
 		log.Info("Matching ScanType Found", "ScanType", scanType.Name)
 		scanTypeSpec = scanType.Spec
-	} else if scan.Spec.ResourceMode == executionv1.ClusterWide {
+	} else if *scan.Spec.ResourceMode == executionv1.ClusterWide {
 		var clusterScanType executionv1.ClusterScanType
 
 		if err := r.Get(ctx, types.NamespacedName{Name: scan.Spec.ScanType}, &clusterScanType); err != nil {
diff --git a/operator/controllers/execution/test_utils_test.go b/operator/controllers/execution/test_utils_test.go
@@ -64,6 +64,8 @@ func createScanType(ctx context.Context, namespace string) {
 }
 
 func createScheduledScan(ctx context.Context, namespace string, retriggerOnScanTypeChange bool) executionv1.ScheduledScan {
+	namespaceLocalResourceMode := executionv1.NamespaceLocal
+
 	scheduledScan := executionv1.ScheduledScan{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:      "test-scan",
@@ -74,7 +76,7 @@ func createScheduledScan(ctx context.Context, namespace string, retriggerOnScanT
 			RetriggerOnScanTypeChange: retriggerOnScanTypeChange,
 			ScanSpec: &executionv1.ScanSpec{
 				ScanType:     "nmap",
-				ResourceMode: executionv1.NamespaceLocal,
+				ResourceMode: &namespaceLocalResourceMode,
 				Parameters:   []string{"scanme.nmap.org"},
 			},
 		},
diff --git a/operator/crds/cascading.securecodebox.io_cascadingrules.yaml b/operator/crds/cascading.securecodebox.io_cascadingrules.yaml
@@ -4832,8 +4832,6 @@ spec:
                           - name
                         type: object
                       type: array
-                  required:
-                    - resourceMode
                   type: object
               required:
                 - matches
diff --git a/operator/crds/execution.securecodebox.io_scans.yaml b/operator/crds/execution.securecodebox.io_scans.yaml
@@ -4642,8 +4642,6 @@ spec:
                       - name
                     type: object
                   type: array
-              required:
-                - resourceMode
               type: object
             status:
               description: ScanStatus defines the observed state of Scan
diff --git a/operator/crds/execution.securecodebox.io_scheduledscans.yaml b/operator/crds/execution.securecodebox.io_scheduledscans.yaml
@@ -4812,8 +4812,6 @@ spec:
                           - name
                         type: object
                       type: array
-                  required:
-                    - resourceMode
                   type: object
                 successfulJobsHistoryLimit:
                   description:
