Resolving comments.

Author: sriroopar

internal/controller/constants.go

@@ -171,6 +171,10 @@ const (
 	PostgresSecretHashKey = "hash/postgres-secret"
 	// PostgresCAHashKey is the key of the hash value of the OLS Postgres CA certificate
 	PostgresCAHashKey = "hash/postgres-ca"
+	// PostgresServiceCACertKey is the key for the service CA certificate in the ConfigMap
+	PostgresServiceCACertKey = "service-ca.crt"
+	// PostgresTLSCertKey is the key for the TLS certificate in the Secret
+	PostgresTLSCertKey = "tls.crt"
 	// PostgresServiceName is the name of OLS application Postgres server service
 	PostgresServiceName = "lightspeed-postgres-server"
 	// PostgresSecretName is the name of OLS application Postgres secret

internal/controller/ols_app_postgres_assets.go

@@ -265,12 +265,7 @@ func (r *OLSConfigReconciler) updatePostgresDeployment(ctx context.Context, exis
 		}
 		updateDeploymentAnnotations(existingDeployment, annotations)
 		// update the deployment template annotation triggers the rolling update
-		templateAnnotations := map[string]string{
-			PostgresConfigHashKey: r.stateCache[PostgresConfigHashStateCacheKey],
-			PostgresSecretHashKey: r.stateCache[PostgresSecretHashStateCacheKey],
-			PostgresCAHashKey:     r.stateCache[PostgresCAHashStateCacheKey],
-		}
-		updateDeploymentTemplateAnnotations(existingDeployment, templateAnnotations)
+		updateDeploymentTemplateAnnotations(existingDeployment, annotations)
 
 		if _, err := setDeploymentContainerEnvs(existingDeployment, desiredDeployment.Spec.Template.Spec.Containers[0].Env, PostgresDeploymentName); err != nil {
 			return err
@@ -462,8 +457,7 @@ func (r *OLSConfigReconciler) generatePostgresPVC(cr *olsv1alpha1.OLSConfig) (*c
 	// Create a copy of the storage configuration to avoid modifying the original CR
 	storage := &olsv1alpha1.Storage{}
 	if cr.Spec.OLSConfig.Storage != nil {
-		storage.Size = cr.Spec.OLSConfig.Storage.Size
-		storage.Class = cr.Spec.OLSConfig.Storage.Class
+		storage = cr.Spec.OLSConfig.Storage.DeepCopy()
 	}
 	if err := r.storageDefaults(storage); err != nil {
 		return nil, err

internal/controller/ols_app_postgres_reconciliator.go

@@ -80,12 +80,7 @@ func (r *OLSConfigReconciler) reconcilePostgresDeployment(ctx context.Context, c
 			PostgresCAHashKey:     r.stateCache[PostgresCAHashStateCacheKey],
 		}
 		updateDeploymentAnnotations(desiredDeployment, annotations)
-		templateAnnotations := map[string]string{
-			PostgresConfigHashKey: r.stateCache[PostgresConfigHashStateCacheKey],
-			PostgresSecretHashKey: r.stateCache[PostgresSecretHashStateCacheKey],
-			PostgresCAHashKey:     r.stateCache[PostgresCAHashStateCacheKey],
-		}
-		updateDeploymentTemplateAnnotations(desiredDeployment, templateAnnotations)
+		updateDeploymentTemplateAnnotations(desiredDeployment, annotations)
 		r.logger.Info("creating a new OLS postgres deployment", "deployment", desiredDeployment.Name)
 		err = r.Create(ctx, desiredDeployment)
 		if err != nil {
@@ -283,28 +278,24 @@ func (r *OLSConfigReconciler) reconcilePostgresNetworkPolicy(ctx context.Context
 }
 
 func (r *OLSConfigReconciler) reconcilePostgresCA(ctx context.Context, cr *olsv1alpha1.OLSConfig) error {
-	var caConfigMap *corev1.ConfigMap
-	var servingCertSecret *corev1.Secret
 	certBytes := []byte{}
-	hasAnyInput := false
 
+	// Get service CA certificate from ConfigMap
 	tmpCM := &corev1.ConfigMap{}
 	err := r.Client.Get(ctx, client.ObjectKey{Name: OLSCAConfigMap, Namespace: r.Options.Namespace}, tmpCM)
 	if err != nil {
 		if !errors.IsNotFound(err) {
-			return fmt.Errorf("failed to get openshift-service-ca.crt ConfigMap: %w", err)
+			return fmt.Errorf("failed to get %s ConfigMap: %w", OLSCAConfigMap, err)
 		}
-		r.logger.Info("openshift-service-ca.crt ConfigMap not found, skipping CA bundle")
+		r.logger.Info("CA ConfigMap not found, skipping CA bundle", "configmap", OLSCAConfigMap)
 	} else {
-		caConfigMap = tmpCM
-		if caCert, exists := caConfigMap.Data["service-ca.crt"]; exists {
-			certBytes = append(certBytes, []byte("service-ca.crt")...)
+		if caCert, exists := tmpCM.Data[PostgresServiceCACertKey]; exists {
+			certBytes = append(certBytes, []byte(PostgresServiceCACertKey)...)
 			certBytes = append(certBytes, []byte(caCert)...)
-			hasAnyInput = true
 		}
 	}
 
-	// Serving cert Secret
+	// Get serving cert from Secret
 	tmpSec := &corev1.Secret{}
 	err = r.Client.Get(ctx, client.ObjectKey{Name: PostgresCertsSecretName, Namespace: r.Options.Namespace}, tmpSec)
 	if err != nil {
@@ -313,23 +304,17 @@ func (r *OLSConfigReconciler) reconcilePostgresCA(ctx context.Context, cr *olsv1
 		}
 		r.logger.Info("serving cert Secret not found, skipping server certificate", "secret", PostgresCertsSecretName)
 	} else {
-		servingCertSecret = tmpSec
-		if tlsCert, exists := servingCertSecret.Data["tls.crt"]; exists {
-			certBytes = append(certBytes, []byte("tls.crt")...)
+		if tlsCert, exists := tmpSec.Data[PostgresTLSCertKey]; exists {
+			certBytes = append(certBytes, []byte(PostgresTLSCertKey)...)
 			certBytes = append(certBytes, tlsCert...)
-			hasAnyInput = true
 		}
 	}
 
 	// Calculate hash based on available inputs
-	var combinedHash string
-	if !hasAnyInput {
-		// No cert inputs available - use empty hash
-		combinedHash = ""
-	} else {
+	combinedHash := ""
+	if len(certBytes) > 0 {
 		var err error
-		combinedHash, err = hashBytes(certBytes)
-		if err != nil {
+		if combinedHash, err = hashBytes(certBytes); err != nil {
 			return fmt.Errorf("failed to generate Postgres CA hash: %w", err)
 		}
 	}
@@ -345,7 +330,7 @@ func (r *OLSConfigReconciler) reconcilePostgresCA(ctx context.Context, cr *olsv1
 		return nil
 	}
 
-	r.logger.Info("Postgres CA hash updated,deployment will be updated via updatePostgresDeployment")
+	r.logger.Info("Postgres CA hash updated, deployment will be updated via updatePostgresDeployment")
 
 	return nil
 }

internal/controller/ols_app_server_deployment.go

@@ -450,15 +450,7 @@ func (r *OLSConfigReconciler) updateOLSDeployment(ctx context.Context, existingD
 		}
 		updateDeploymentAnnotations(existingDeployment, annotations)
 		// update the deployment template annotation triggers the rolling update
-		templateAnnotations := map[string]string{
-			OLSConfigHashKey:      r.stateCache[OLSConfigHashStateCacheKey],
-			OLSAppTLSHashKey:      r.stateCache[OLSAppTLSHashStateCacheKey],
-			LLMProviderHashKey:    r.stateCache[LLMProviderHashStateCacheKey],
-			AdditionalCAHashKey:   r.stateCache[AdditionalCAHashStateCacheKey],
-			PostgresSecretHashKey: r.stateCache[PostgresSecretHashStateCacheKey],
-			PostgresCAHashKey:     r.stateCache[PostgresCAHashStateCacheKey],
-		}
-		updateDeploymentTemplateAnnotations(existingDeployment, templateAnnotations)
+		updateDeploymentTemplateAnnotations(existingDeployment, annotations)
 		changed = true
 	}
 

internal/controller/ols_app_server_reconciliator.go

@@ -287,14 +287,7 @@ func (r *OLSConfigReconciler) reconcileDeployment(ctx context.Context, cr *olsv1
 			PostgresCAHashKey:     r.stateCache[PostgresCAHashStateCacheKey],
 		}
 		updateDeploymentAnnotations(desiredDeployment, annotations)
-		templateAnnotations := map[string]string{
-			OLSConfigHashKey:      r.stateCache[OLSConfigHashStateCacheKey],
-			OLSAppTLSHashKey:      r.stateCache[OLSAppTLSHashStateCacheKey],
-			LLMProviderHashKey:    r.stateCache[LLMProviderHashStateCacheKey],
-			PostgresSecretHashKey: r.stateCache[PostgresSecretHashStateCacheKey],
-			PostgresCAHashKey:     r.stateCache[PostgresCAHashStateCacheKey],
-		}
-		updateDeploymentTemplateAnnotations(desiredDeployment, templateAnnotations)
+		updateDeploymentTemplateAnnotations(desiredDeployment, annotations)
 		r.logger.Info("creating a new deployment", "deployment", desiredDeployment.Name)
 		err = r.Create(ctx, desiredDeployment)
 		if err != nil {