mirror of
				https://github.com/1Password/onepassword-operator.git
				synced 2025-10-25 00:40:49 +00:00 
			
		
		
		
	Compare commits
	
		
			1 Commits
		
	
	
		
			v1.7.1
			...
			feature/se
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
|   | 717f9bc33f | 
| @@ -7,7 +7,10 @@ import ( | |||||||
| func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret) bool { | func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret) bool { | ||||||
| 	for i := 0; i < len(containers); i++ { | 	for i := 0; i < len(containers); i++ { | ||||||
| 		envVariables := containers[i].Env | 		envVariables := containers[i].Env | ||||||
|  | 		envVariableNames := map[string]struct{}{} | ||||||
|  |  | ||||||
| 		for j := 0; j < len(envVariables); j++ { | 		for j := 0; j < len(envVariables); j++ { | ||||||
|  | 			envVariableNames[envVariables[j].Name] = struct{}{} | ||||||
| 			if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil { | 			if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil { | ||||||
| 				_, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name] | 				_, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name] | ||||||
| 				if ok { | 				if ok { | ||||||
| @@ -18,6 +21,10 @@ func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string | |||||||
| 		envFromVariables := containers[i].EnvFrom | 		envFromVariables := containers[i].EnvFrom | ||||||
| 		for j := 0; j < len(envFromVariables); j++ { | 		for j := 0; j < len(envFromVariables); j++ { | ||||||
| 			if envFromVariables[j].SecretRef != nil { | 			if envFromVariables[j].SecretRef != nil { | ||||||
|  | 				// Skip env variables that will be overwritten by Env | ||||||
|  | 				if _, ok := envVariableNames[envFromVariables[i].SecretRef.Name]; ok { | ||||||
|  | 					continue; | ||||||
|  | 				} | ||||||
| 				_, ok := secrets[envFromVariables[j].SecretRef.Name] | 				_, ok := secrets[envFromVariables[j].SecretRef.Name] | ||||||
| 				if ok { | 				if ok { | ||||||
| 					return true | 					return true | ||||||
| @@ -31,7 +38,10 @@ func AreContainersUsingSecrets(containers []corev1.Container, secrets map[string | |||||||
| func AppendUpdatedContainerSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret, updatedDeploymentSecrets map[string]*corev1.Secret) map[string]*corev1.Secret { | func AppendUpdatedContainerSecrets(containers []corev1.Container, secrets map[string]*corev1.Secret, updatedDeploymentSecrets map[string]*corev1.Secret) map[string]*corev1.Secret { | ||||||
| 	for i := 0; i < len(containers); i++ { | 	for i := 0; i < len(containers); i++ { | ||||||
| 		envVariables := containers[i].Env | 		envVariables := containers[i].Env | ||||||
|  | 		envVariableNames := map[string]struct{}{} | ||||||
|  |  | ||||||
| 		for j := 0; j < len(envVariables); j++ { | 		for j := 0; j < len(envVariables); j++ { | ||||||
|  | 			envVariableNames[envVariables[j].Name] = struct{}{} | ||||||
| 			if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil { | 			if envVariables[j].ValueFrom != nil && envVariables[j].ValueFrom.SecretKeyRef != nil { | ||||||
| 				secret, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name] | 				secret, ok := secrets[envVariables[j].ValueFrom.SecretKeyRef.Name] | ||||||
| 				if ok { | 				if ok { | ||||||
| @@ -42,6 +52,10 @@ func AppendUpdatedContainerSecrets(containers []corev1.Container, secrets map[st | |||||||
| 		envFromVariables := containers[i].EnvFrom | 		envFromVariables := containers[i].EnvFrom | ||||||
| 		for j := 0; j < len(envFromVariables); j++ { | 		for j := 0; j < len(envFromVariables); j++ { | ||||||
| 			if envFromVariables[j].SecretRef != nil { | 			if envFromVariables[j].SecretRef != nil { | ||||||
|  | 				// Skip env variables that will be overwritten by Env | ||||||
|  | 				if _, ok := envVariableNames[envFromVariables[i].SecretRef.Name]; ok { | ||||||
|  | 					continue; | ||||||
|  | 				} | ||||||
| 				secret, ok := secrets[envFromVariables[j].SecretRef.LocalObjectReference.Name] | 				secret, ok := secrets[envFromVariables[j].SecretRef.LocalObjectReference.Name] | ||||||
| 				if ok { | 				if ok { | ||||||
| 					updatedDeploymentSecrets[secret.Name] = secret | 					updatedDeploymentSecrets[secret.Name] = secret | ||||||
|   | |||||||
		Reference in New Issue
	
	Block a user