refactor: Embed variable schema

Author: jimmidyson

api/v1alpha1/clusterconfig_types.go

@@ -191,56 +191,25 @@ func (ImageRegistries) VariableSchema() clusterv1.VariableSchema {
 			Description: "Configuration for image registries.",
 			Type:        "object",
 			Properties: map[string]clusterv1.JSONSchemaProps{
-				"credentials": imageRegistryCredentialsSchema,
+				"credentials": ImageRegistryCredentials{}.VariableSchema().OpenAPIV3Schema,
 			},
 		},
 	}
 }
 
-var (
-	imageRegistryCredentialsSchema = clusterv1.JSONSchemaProps{
-		Type:        "array",
-		UniqueItems: true,
-		Items:       &imageRegistryCredentialsResourceSchema,
-	}
-
-	imageRegistryCredentialsResourceSchema = clusterv1.JSONSchemaProps{
-		Description: "Image registry credentials to set up on all Nodes in the cluster. " +
-			"Enabling this will the Kubelets with https://kubernetes.io/docs/tasks/administer-cluster/kubelet-credential-provider/.",
-		Type: "object",
-		Properties: map[string]clusterv1.JSONSchemaProps{
-			"url": {
-				Description: "Registry URL.",
-				Type:        "string",
-			},
-			"secretRef": {
-				Description: "The Secret containing the registry credentials. " +
-					"The Secret should have keys 'username' and 'password'. " +
-					"This credentials Secret is not required for some registries, e.g. ECR.",
-				Type: "object",
-				Properties: map[string]clusterv1.JSONSchemaProps{
-					"name": {
-						Description: "The name of the Secret containing the registry credentials.",
-						Type:        "string",
-					},
-					"namespace": {
-						Description: "The namespace of the Secret containing the registry credentials. " +
-							"Defaults to the namespace of the KubeadmControlPlaneTemplate and KubeadmConfigTemplate" +
-							" that reference this variable.",
-						Type: "string",
-					},
-				},
-			},
-		},
-		Required: []string{"url"},
-	}
-)
-
 type ImageRegistryCredentials []ImageRegistryCredentialsResource
 
 func (ImageRegistryCredentials) VariableSchema() clusterv1.VariableSchema {
+	resourceSchema := ImageRegistryCredentialsResource{}.VariableSchema().OpenAPIV3Schema
+
 	return clusterv1.VariableSchema{
-		OpenAPIV3Schema: imageRegistryCredentialsSchema,
+		OpenAPIV3Schema: clusterv1.JSONSchemaProps{
+			Description: "Image registry credentials to set up on all Nodes in the cluster. " +
+				"Enabling this will configure the Kubelets with " +
+				"https://kubernetes.io/docs/tasks/administer-cluster/kubelet-credential-provider/.",
+			Type:  "array",
+			Items: &resourceSchema,
+		},
 	}
 }
 
@@ -258,7 +227,34 @@ type ImageRegistryCredentialsResource struct {
 
 func (ImageRegistryCredentialsResource) VariableSchema() clusterv1.VariableSchema {
 	return clusterv1.VariableSchema{
-		OpenAPIV3Schema: imageRegistryCredentialsResourceSchema,
+		OpenAPIV3Schema: clusterv1.JSONSchemaProps{
+			Type: "object",
+			Properties: map[string]clusterv1.JSONSchemaProps{
+				"url": {
+					Description: "Registry URL.",
+					Type:        "string",
+				},
+				"secretRef": {
+					Description: "The Secret containing the registry credentials. " +
+						"The Secret should have keys 'username' and 'password'. " +
+						"This credentials Secret is not required for some registries, e.g. ECR.",
+					Type: "object",
+					Properties: map[string]clusterv1.JSONSchemaProps{
+						"name": {
+							Description: "The name of the Secret containing the registry credentials.",
+							Type:        "string",
+						},
+						"namespace": {
+							Description: "The namespace of the Secret containing the registry credentials. " +
+								"Defaults to the namespace of the KubeadmControlPlaneTemplate and KubeadmConfigTemplate" +
+								" that reference this variable.",
+							Type: "string",
+						},
+					},
+				},
+			},
+			Required: []string{"url"},
+		},
 	}
 }
 

api/v1alpha1/zz_generated.deepcopy.go

@@ -61,7 +61,8 @@ func ValidateGeneratePatches[T mutation.GeneratePatches](
 			if tt.ExpectedFailure {
 				expectedStatus = runtimehooksv1.ResponseStatusFailure
 			}
-			g.Expect(resp.Status).To(gomega.Equal(expectedStatus), fmt.Sprintf("Message: %s", resp.Message))
+			g.Expect(resp.Status).
+				To(gomega.Equal(expectedStatus), fmt.Sprintf("Message: %s", resp.Message))
 
 			if len(tt.ExpectedPatchMatchers) == 0 {
 				g.Expect(resp.Items).To(gomega.BeEmpty())

common/pkg/testutils/capitest/patches.go

@@ -40,9 +40,7 @@ var (
 	kubeletImageCredentialProviderConfigPatch []byte
 )
 
-var (
-	ErrCredentialsNotFound = errors.New("registry credentials not found")
-)
+var ErrCredentialsNotFound = errors.New("registry credentials not found")
 
 type providerConfig struct {
 	URL      string
@@ -66,7 +64,9 @@ func templateFilesForImageCredentialProviderConfigs(config providerConfig) ([]ca
 		files = append(files, *kubeletCredentialProviderConfigFile)
 	}
 
-	kubeletDynamicCredentialProviderConfigFile, err := templateDynamicCredentialProviderConfig(config)
+	kubeletDynamicCredentialProviderConfigFile, err := templateDynamicCredentialProviderConfig(
+		config,
+	)
 	if err != nil {
 		return nil, err
 	}
@@ -84,10 +84,7 @@ func templateKubeletCredentialProviderConfig() (*cabpkv1.File, error) {
 		return nil, fmt.Errorf("failed to parse go template: %w", err)
 	}
 
-	providerBinary, providerArgs, providerAPIVersion, err := kubeletCredentialProvider()
-	if err != nil {
-		return nil, err
-	}
+	providerBinary, providerArgs, providerAPIVersion := kubeletCredentialProvider()
 
 	templateInput := struct {
 		ProviderBinary     string
@@ -129,7 +126,9 @@ func templateDynamicCredentialProviderConfig(
 		return nil, ErrCredentialsNotFound
 	}
 
-	providerBinary, providerArgs, providerAPIVersion, err := dynamicCredentialProvider(registryHostWithPath)
+	providerBinary, providerArgs, providerAPIVersion, err := dynamicCredentialProvider(
+		registryHostWithPath,
+	)
 	if err != nil {
 		return nil, err
 	}
@@ -149,13 +148,10 @@ func templateDynamicCredentialProviderConfig(
 	return fileFromTemplate(t, templateInput, kubeletDynamicCredentialProviderConfigOnRemote)
 }
 
-func kubeletCredentialProvider() (
-	providerBinary string, providerArgs []string, providerAPIVersion string, err error,
-) {
+func kubeletCredentialProvider() (providerBinary string, providerArgs []string, providerAPIVersion string) {
 	return "dynamic-credential-provider",
 		[]string{"get-credentials", "-c", kubeletDynamicCredentialProviderConfigOnRemote},
-		credentialproviderv1beta1.SchemeGroupVersion.String(),
-		nil
+		credentialproviderv1beta1.SchemeGroupVersion.String()
 }
 
 func dynamicCredentialProvider(host string) (
@@ -187,7 +183,7 @@ func dynamicCredentialProvider(host string) (
 func fileFromTemplate(
 	t *template.Template,
 	templateInput any,
-	path string,
+	fPath string,
 ) (*cabpkv1.File, error) {
 	var b bytes.Buffer
 	err := t.Execute(&b, templateInput)
@@ -196,7 +192,7 @@ func fileFromTemplate(
 	}
 
 	return &cabpkv1.File{
-		Path:        path,
+		Path:        fPath,
 		Content:     b.String(),
 		Permissions: "0600",
 	}, nil

pkg/handlers/generic/mutation/imageregistries/credentials/credential_provider_config_files.go

@@ -7,11 +7,12 @@ import (
 	"testing"
 
 	"github.com/stretchr/testify/assert"
-
 	cabpkv1 "sigs.k8s.io/cluster-api/bootstrap/kubeadm/api/v1beta1"
 )
 
 func Test_templateKubeletCredentialProviderConfig(t *testing.T) {
+	t.Parallel()
+
 	tests := []struct {
 		name    string
 		config  providerConfig
@@ -93,6 +94,8 @@ providers:
 }
 
 func Test_templateDynamicCredentialProviderConfig(t *testing.T) {
+	t.Parallel()
+
 	tests := []struct {
 		name        string
 		credentials providerConfig

pkg/handlers/generic/mutation/imageregistries/credentials/credential_provider_config_files_test.go

@@ -25,23 +25,20 @@ const (
 	credentialProviderTargetDir = "/etc/kubernetes/image-credential-provider/"
 )
 
-var (
-	//go:embed templates/install-kubelet-credential-providers.sh.gotmpl
-	installKubeletCredentialProvidersScript []byte
-)
+//go:embed templates/install-kubelet-credential-providers.sh.gotmpl
+var installKubeletCredentialProvidersScript []byte
 
 func templateFilesAndCommandsForInstallKubeletCredentialProviders() ([]cabpkv1.File, []string, error) {
 	var files []cabpkv1.File
 	var commands []string
 
-	installKubeletCredentialProvidersScriptFile, installKubeletCredentialProvidersScriptCommand, err :=
-		templateInstallKubeletCredentialProviders()
+	installKCPScriptFile, installKCPScriptCommand, err := templateInstallKubeletCredentialProviders()
 	if err != nil {
 		return nil, nil, err
 	}
-	if installKubeletCredentialProvidersScriptFile != nil {
-		files = append(files, *installKubeletCredentialProvidersScriptFile)
-		commands = append(commands, installKubeletCredentialProvidersScriptCommand)
+	if installKCPScriptFile != nil {
+		files = append(files, *installKCPScriptFile)
+		commands = append(commands, installKCPScriptCommand)
 	}
 
 	return files, commands, nil

pkg/handlers/generic/mutation/imageregistries/credentials/credential_provider_insall_files.go

@@ -3,8 +3,6 @@
 
 package credentials
 
-const ()
-
 func addImageCredentialProviderArgs(args map[string]string) {
 	args["image-credential-provider-bin-dir"] = credentialProviderTargetDir
 	args["image-credential-provider-config"] = kubeletImageCredentialProviderConfigOnRemote

pkg/handlers/generic/mutation/imageregistries/credentials/credential_provider_kubelet_args.go

@@ -11,22 +11,19 @@ import (
 	"strings"
 	"text/template"
 
-	cabpkv1 "sigs.k8s.io/cluster-api/bootstrap/kubeadm/api/v1beta1"
-
 	corev1 "k8s.io/api/core/v1"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	clusterv1 "sigs.k8s.io/cluster-api/api/v1beta1"
+	cabpkv1 "sigs.k8s.io/cluster-api/bootstrap/kubeadm/api/v1beta1"
 	clusterctlv1 "sigs.k8s.io/cluster-api/cmd/clusterctl/api/v1alpha3"
 )
 
 const (
-	secretKeyForStaticCredentialProviderConfig = "static-credential-provider"
+	secretKeyForStaticCredentialProviderConfig = "static-credential-provider" //nolint:gosec // Not a credential.
 )
 
-var (
-	//go:embed templates/static-credential-provider.json.gotmpl
-	staticCredentialProviderConfigPatch []byte
-)
+//go:embed templates/static-credential-provider.json.gotmpl
+var staticCredentialProviderConfigPatch []byte
 
 func generateCredentialsSecretFile(config providerConfig, ownerName string) []cabpkv1.File {
 	if config.isCredentialsEmpty() {
@@ -55,7 +52,9 @@ func generateCredentialsSecret(
 		return nil, nil
 	}
 
-	staticCredentialProviderSecretContents, err := kubeletStaticCredentialProviderSecretContents(config)
+	staticCredentialProviderSecretContents, err := kubeletStaticCredentialProviderSecretContents(
+		config,
+	)
 	if err != nil {
 		return nil, err
 	}