feat: Garbage collector input

api/v1alpha1/dataprotectionapplication_types.go

@@ -447,6 +447,11 @@ type NonAdmin struct {
 	// which restore spec field values to enforce
 	// +optional
 	EnforceRestoreSpec *velero.RestoreSpec `json:"enforceRestoreSpec,omitempty"`
+
+	// GarbageCollectionPeriod defines how frequently to look for possible leftover non admin related objects in OADP namespace.
+	// By default 24h
+	// +optional
+	GarbageCollectionPeriod *metav1.Duration `json:"garbageCollectionPeriod,omitempty"`
 }
 
 // DataMover defines the various config for DPA data mover

bundle/manifests/oadp.openshift.io_dataprotectionapplications.yaml

@@ -2123,6 +2123,11 @@ spec:
                               type: boolean
                           type: object
                       type: object
+                    garbageCollectionPeriod:
+                      description: |-
+                        GarbageCollectionPeriod defines how frequently to look for possible leftover non admin related objects in OADP namespace.
+                        By default 24h
+                      type: string
                   type: object
                 podAnnotations:
                   additionalProperties:

config/crd/bases/oadp.openshift.io_dataprotectionapplications.yaml

@@ -2123,6 +2123,11 @@ spec:
                               type: boolean
                           type: object
                       type: object
+                    garbageCollectionPeriod:
+                      description: |-
+                        GarbageCollectionPeriod defines how frequently to look for possible leftover non admin related objects in OADP namespace.
+                        By default 24h
+                      type: string
                   type: object
                 podAnnotations:
                   additionalProperties:

internal/controller/nonadmin_controller.go

@@ -25,8 +25,9 @@ const (
 	nonAdminObjectName = "non-admin-controller"
 	controlPlaneKey    = "control-plane"
 
-	enforcedBackupSpecKey  = "enforced-backup-spec"
-	enforcedRestoreSpecKey = "enforced-restore-spec"
+	enforcedBackupSpecKey      = "enforced-backup-spec"
+	enforcedRestoreSpecKey     = "enforced-restore-spec"
+	garbageCollectionPeriodKey = "garbage-collection-period"
 )
 
 var (
@@ -42,10 +43,12 @@ var (
 		"app.kubernetes.io/part-of":    common.OADPOperator,
 	}
 
-	previousEnforcedBackupSpec    *velero.BackupSpec  = nil
-	dpaBackupSpecResourceVersion                      = ""
-	previousEnforcedRestoreSpec   *velero.RestoreSpec = nil
-	dpaRestoreSpecResourceVersion                     = ""
+	previousEnforcedBackupSpec          *velero.BackupSpec  = nil
+	dpaBackupSpecResourceVersion                            = ""
+	previousEnforcedRestoreSpec         *velero.RestoreSpec = nil
+	dpaRestoreSpecResourceVersion                           = ""
+	previousGarbageCollectionPeriod     *metav1.Duration    = nil
+	dpaGarbageCollectionResourceVersion                     = ""
 )
 
 func (r *DataProtectionApplicationReconciler) ReconcileNonAdminController(log logr.Logger) (bool, error) {
@@ -163,9 +166,14 @@ func ensureRequiredSpecs(deploymentObject *appsv1.Deployment, dpa *oadpv1alpha1.
 		dpaRestoreSpecResourceVersion = dpa.GetResourceVersion()
 	}
 	previousEnforcedRestoreSpec = dpa.Spec.NonAdmin.EnforceRestoreSpec
+	if len(dpaGarbageCollectionResourceVersion) == 0 || !reflect.DeepEqual(dpa.Spec.NonAdmin.GarbageCollectionPeriod, previousGarbageCollectionPeriod) {
+		dpaGarbageCollectionResourceVersion = dpa.GetResourceVersion()
+	}
+	previousGarbageCollectionPeriod = dpa.Spec.NonAdmin.GarbageCollectionPeriod
 	enforcedSpecAnnotation := map[string]string{
-		enforcedBackupSpecKey:  dpaBackupSpecResourceVersion,
-		enforcedRestoreSpecKey: dpaRestoreSpecResourceVersion,
+		enforcedBackupSpecKey:      dpaBackupSpecResourceVersion,
+		enforcedRestoreSpecKey:     dpaRestoreSpecResourceVersion,
+		garbageCollectionPeriodKey: dpaGarbageCollectionResourceVersion,
 	}
 
 	deploymentObject.Spec.Replicas = ptr.To(int32(1))
@@ -187,6 +195,7 @@ func ensureRequiredSpecs(deploymentObject *appsv1.Deployment, dpa *oadpv1alpha1.
 	} else {
 		templateObjectAnnotations[enforcedBackupSpecKey] = enforcedSpecAnnotation[enforcedBackupSpecKey]
 		templateObjectAnnotations[enforcedRestoreSpecKey] = enforcedSpecAnnotation[enforcedRestoreSpecKey]
+		templateObjectAnnotations[garbageCollectionPeriodKey] = enforcedSpecAnnotation[garbageCollectionPeriodKey]
 		deploymentObject.Spec.Template.SetAnnotations(templateObjectAnnotations)
 	}
 

internal/controller/validator.go

@@ -83,37 +83,45 @@ func (r *DataProtectionApplicationReconciler) ValidateDataProtectionCR(log logr.
 	}
 
 	// validate non-admin enable and tech-preview-ack
-	if r.dpa.Spec.NonAdmin != nil && r.dpa.Spec.NonAdmin.Enable != nil && *r.dpa.Spec.NonAdmin.Enable {
-		if !(r.dpa.Spec.UnsupportedOverrides[oadpv1alpha1.TechPreviewAck] == TrueVal) {
-			return false, errors.New("in order to enable/disable the non-admin feature please set dpa.spec.unsupportedOverrides[tech-preview-ack]: \"true\"")
-		}
+	if r.dpa.Spec.NonAdmin != nil {
+		if r.dpa.Spec.NonAdmin.Enable != nil && *r.dpa.Spec.NonAdmin.Enable {
+			if r.dpa.Spec.UnsupportedOverrides[oadpv1alpha1.TechPreviewAck] != TrueVal {
+				return false, errors.New("in order to enable/disable the non-admin feature please set dpa.spec.unsupportedOverrides[tech-preview-ack]: \"true\"")
+			}
 
-		dpaList := &oadpv1alpha1.DataProtectionApplicationList{}
-		err = r.ClusterWideClient.List(r.Context, dpaList)
-		if err != nil {
-			return false, err
-		}
-		for _, dpa := range dpaList.Items {
-			if dpa.Namespace != r.NamespacedName.Namespace && (&DataProtectionApplicationReconciler{dpa: &dpa}).checkNonAdminEnabled() {
-				nonAdminDeployment := &appsv1.Deployment{
-					ObjectMeta: metav1.ObjectMeta{
-						Name:      nonAdminObjectName,
-						Namespace: dpa.Namespace,
-					},
-				}
-				if err := r.ClusterWideClient.Get(
-					r.Context,
-					types.NamespacedName{
-						Name:      nonAdminDeployment.Name,
-						Namespace: nonAdminDeployment.Namespace,
-					},
-					nonAdminDeployment,
-				); err == nil {
-					return false, fmt.Errorf("only a single instance of Non-Admin Controller can be installed across the entire cluster. Non-Admin controller is already configured and installed in %s namespace", dpa.Namespace)
+			dpaList := &oadpv1alpha1.DataProtectionApplicationList{}
+			err = r.ClusterWideClient.List(r.Context, dpaList)
+			if err != nil {
+				return false, err
+			}
+			for _, dpa := range dpaList.Items {
+				if dpa.Namespace != r.NamespacedName.Namespace && (&DataProtectionApplicationReconciler{dpa: &dpa}).checkNonAdminEnabled() {
+					nonAdminDeployment := &appsv1.Deployment{
+						ObjectMeta: metav1.ObjectMeta{
+							Name:      nonAdminObjectName,
+							Namespace: dpa.Namespace,
+						},
+					}
+					if err := r.ClusterWideClient.Get(
+						r.Context,
+						types.NamespacedName{
+							Name:      nonAdminDeployment.Name,
+							Namespace: nonAdminDeployment.Namespace,
+						},
+						nonAdminDeployment,
+					); err == nil {
+						return false, fmt.Errorf("only a single instance of Non-Admin Controller can be installed across the entire cluster. Non-Admin controller is already configured and installed in %s namespace", dpa.Namespace)
+					}
 				}
 			}
 		}
 
+		garbageCollectionPeriod := r.dpa.Spec.NonAdmin.GarbageCollectionPeriod
+		if garbageCollectionPeriod != nil {
+			if garbageCollectionPeriod.Duration < 0 {
+				return false, fmt.Errorf("DPA spec.nonAdmin.garbageCollectionPeriod can not be negative")
+			}
+		}
 	}
 
 	return true, nil