mirror of
https://github.com/1Password/onepassword-operator.git
synced 2025-10-22 15:38:06 +00:00
Compare commits
1 Commits
03b093ac17
...
feature/se
| Author | SHA1 | Date | |
|---|---|---|---|
|
717f9bc33f |
@@ -7,7 +7,10 @@ import (
|
|||||||
func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret) bool {
|
func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret) bool {
|
||||||
for i := 0; i < len(containers); i++ {
|
for i := 0; i < len(containers); i++ {
|
||||||
envVariables := containers[i].Env
|
envVariables := containers[i].Env
|
||||||
|
envVariableNames := map[string]struct{}{}
|
||||||
|
|
||||||
for j := 0; j < len(envVariables); j++ {
|
for j := 0; j < len(envVariables); j++ {
|
||||||
|
envVariableNames[envVariables[j].Name] = struct{}{}
|
||||||
if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil {
|
if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil {
|
||||||
_, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name]
|
_, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name]
|
||||||
if ok {
|
if ok {
|
||||||
@@ -18,6 +21,10 @@ func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string
|
|||||||
envFromVariables := containers[i].EnvFrom
|
envFromVariables := containers[i].EnvFrom
|
||||||
for j := 0; j < len(envFromVariables); j++ {
|
for j := 0; j < len(envFromVariables); j++ {
|
||||||
if envFromVariables[j].SecretRef != nil {
|
if envFromVariables[j].SecretRef != nil {
|
||||||
|
// Skip env variables that will be overwritten by Env
|
||||||
|
if _, ok := envVariableNames[envFromVariables[i].SecretRef.Name]; ok {
|
||||||
|
continue;
|
||||||
|
}
|
||||||
_, ok := secrets[envFromVariables[j].SecretRef.Name]
|
_, ok := secrets[envFromVariables[j].SecretRef.Name]
|
||||||
if ok {
|
if ok {
|
||||||
return true
|
return true
|
||||||
@@ -31,7 +38,10 @@ func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string
|
|||||||
func AppendUpdatedContainerSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret, updatedDeploymentSecrets map[string]*corev1.Secret) map[string]*corev1.Secret {
|
func AppendUpdatedContainerSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret, updatedDeploymentSecrets map[string]*corev1.Secret) map[string]*corev1.Secret {
|
||||||
for i := 0; i < len(containers); i++ {
|
for i := 0; i < len(containers); i++ {
|
||||||
envVariables := containers[i].Env
|
envVariables := containers[i].Env
|
||||||
|
envVariableNames := map[string]struct{}{}
|
||||||
|
|
||||||
for j := 0; j < len(envVariables); j++ {
|
for j := 0; j < len(envVariables); j++ {
|
||||||
|
envVariableNames[envVariables[j].Name] = struct{}{}
|
||||||
if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil {
|
if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil {
|
||||||
secret, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name]
|
secret, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name]
|
||||||
if ok {
|
if ok {
|
||||||
@@ -42,6 +52,10 @@ func AppendUpdatedContainerSecrets(containers []corev1.Container, secrets map[st
|
|||||||
envFromVariables := containers[i].EnvFrom
|
envFromVariables := containers[i].EnvFrom
|
||||||
for j := 0; j < len(envFromVariables); j++ {
|
for j := 0; j < len(envFromVariables); j++ {
|
||||||
if envFromVariables[j].SecretRef != nil {
|
if envFromVariables[j].SecretRef != nil {
|
||||||
|
// Skip env variables that will be overwritten by Env
|
||||||
|
if _, ok := envVariableNames[envFromVariables[i].SecretRef.Name]; ok {
|
||||||
|
continue;
|
||||||
|
}
|
||||||
secret, ok := secrets[envFromVariables[j].SecretRef.LocalObjectReference.Name]
|
secret, ok := secrets[envFromVariables[j].SecretRef.LocalObjectReference.Name]
|
||||||
if ok {
|
if ok {
|
||||||
updatedDeploymentSecrets[secret.Name] = secret
|
updatedDeploymentSecrets[secret.Name] = secret
|
||||||
|
|||||||
Reference in New Issue
Block a user