From 2c0e267c395361f05f16af51a734f91334aad255 Mon Sep 17 00:00:00 2001 From: Diogo Recharte Date: Mon, 12 Feb 2024 13:53:00 +0000 Subject: [PATCH 1/6] EVEREST-832 validate BS allowed namespaces in DBC endpoints --- api/validation.go | 31 ++++++++++++++++++++++--------- 1 file changed, 22 insertions(+), 9 deletions(-) diff --git a/api/validation.go b/api/validation.go index e7e38d71..ede3d146 100644 --- a/api/validation.go +++ b/api/validation.go @@ -531,7 +531,7 @@ func (e *EverestServer) validateDatabaseClusterCR(ctx echo.Context, namespace st return err } - if err = validateBackupStoragesFor(ctx.Request().Context(), databaseCluster, e.validateBackupStoragesAccess); err != nil { + if err = validateBackupStoragesFor(ctx.Request().Context(), namespace, databaseCluster, e.validateBackupStoragesAccess); err != nil { return err } @@ -552,8 +552,9 @@ func (e *EverestServer) validateDatabaseClusterCR(ctx echo.Context, namespace st func validateBackupStoragesFor( //nolint:cyclop ctx context.Context, + namespace string, databaseCluster *DatabaseCluster, - validateBackupStorageAccessFunc func(context.Context, string) (*everestv1alpha1.BackupStorage, error), + validateBackupStorageAccessFunc func(context.Context, string, string) (*everestv1alpha1.BackupStorage, error), ) error { if databaseCluster.Spec.Backup == nil { return nil @@ -561,7 +562,7 @@ func validateBackupStoragesFor( //nolint:cyclop storages := make(map[string]bool) if databaseCluster.Spec.Backup.Schedules != nil { for _, schedule := range *databaseCluster.Spec.Backup.Schedules { - _, err := validateBackupStorageAccessFunc(ctx, schedule.BackupStorageName) + _, err := validateBackupStorageAccessFunc(ctx, namespace, schedule.BackupStorageName) if err != nil { return err } @@ -593,7 +594,7 @@ func validateBackupStoragesFor( //nolint:cyclop if databaseCluster.Spec.Backup.Pitr.BackupStorageName == nil || *databaseCluster.Spec.Backup.Pitr.BackupStorageName == "" { return errPitrNoBackupStorageName } - storage, err := validateBackupStorageAccessFunc(ctx, *databaseCluster.Spec.Backup.Pitr.BackupStorageName) + storage, err := validateBackupStorageAccessFunc(ctx, namespace, *databaseCluster.Spec.Backup.Pitr.BackupStorageName) if err != nil { return err } @@ -606,15 +607,27 @@ func validateBackupStoragesFor( //nolint:cyclop return nil } -func (e *EverestServer) validateBackupStoragesAccess(ctx context.Context, name string) (*everestv1alpha1.BackupStorage, error) { +func (e *EverestServer) validateBackupStoragesAccess(ctx context.Context, namespace, name string) (*everestv1alpha1.BackupStorage, error) { bs, err := e.kubeClient.GetBackupStorage(ctx, name) - if err == nil { - return bs, nil - } if k8serrors.IsNotFound(err) { return nil, fmt.Errorf("backup storage %s does not exist", name) } - return nil, fmt.Errorf("could not validate backup storage %s", name) + if err != nil { + return nil, fmt.Errorf("could not validate backup storage %s", name) + } + + found := false + for _, ns := range bs.Spec.TargetNamespaces { + if ns == namespace { + found = true + break + } + } + if !found { + return nil, fmt.Errorf("backup storage %s is not allowed for namespace %s", name, namespace) + } + + return bs, nil } func validateVersion(version *string, engine *everestv1alpha1.DatabaseEngine) error { From 5fbae81fad7d2ab0b1d5842dbe7f55551319e028 Mon Sep 17 00:00:00 2001 From: Diogo Recharte Date: Mon, 12 Feb 2024 13:54:00 +0000 Subject: [PATCH 2/6] EVEREST-832 validate BS allowed namespaces in DBB endpoints --- api/database_cluster_backup.go | 2 +- api/validation.go | 12 +++++------- 2 files changed, 6 insertions(+), 8 deletions(-) diff --git a/api/database_cluster_backup.go b/api/database_cluster_backup.go index 78f59b5e..f81adf18 100644 --- a/api/database_cluster_backup.go +++ b/api/database_cluster_backup.go @@ -59,7 +59,7 @@ func (e *EverestServer) CreateDatabaseClusterBackup(ctx echo.Context, namespace }) } // TODO: Improve returns status code in EVEREST-616 - if err := validateDatabaseClusterBackup(ctx.Request().Context(), namespace, dbb, e.kubeClient); err != nil { + if err := e.validateDatabaseClusterBackup(ctx.Request().Context(), namespace, dbb); err != nil { e.l.Error(err) return ctx.JSON(http.StatusBadRequest, Error{Message: pointer.ToString(err.Error())}) } diff --git a/api/validation.go b/api/validation.go index ede3d146..b4a02a79 100644 --- a/api/validation.go +++ b/api/validation.go @@ -876,7 +876,7 @@ func validateDatabaseClusterOnUpdate(dbc *DatabaseCluster, oldDB *everestv1alpha return nil } -func validateDatabaseClusterBackup(ctx context.Context, namespace string, backup *DatabaseClusterBackup, kubeClient *kubernetes.Kubernetes) error { +func (e *EverestServer) validateDatabaseClusterBackup(ctx context.Context, namespace string, backup *DatabaseClusterBackup) error { if backup == nil { return errors.New("backup cannot be empty") } @@ -897,22 +897,20 @@ func validateDatabaseClusterBackup(ctx context.Context, namespace string, backup if b.Spec.DBClusterName == "" { return errors.New(".spec.dbClusterName cannot be empty") } - db, err := kubeClient.GetDatabaseCluster(ctx, namespace, b.Spec.DBClusterName) + db, err := e.kubeClient.GetDatabaseCluster(ctx, namespace, b.Spec.DBClusterName) if err != nil { if k8serrors.IsNotFound(err) { return fmt.Errorf("database cluster %s does not exist", b.Spec.DBClusterName) } return err } - _, err = kubeClient.GetBackupStorage(ctx, b.Spec.BackupStorageName) + + _, err = e.validateBackupStoragesAccess(ctx, namespace, b.Spec.BackupStorageName) if err != nil { - if k8serrors.IsNotFound(err) { - return fmt.Errorf("backup storage %s does not exist", b.Spec.BackupStorageName) - } return err } - if err = validatePGReposForBackup(ctx, *db, kubeClient, *b); err != nil { + if err = validatePGReposForBackup(ctx, *db, e.kubeClient, *b); err != nil { return err } From 80641360a02b55d2fbeccd3cafb5e7477e55fe63 Mon Sep 17 00:00:00 2001 From: Diogo Recharte Date: Mon, 12 Feb 2024 15:23:59 +0000 Subject: [PATCH 3/6] EVEREST-832 validate MC allowed namespaces in DBC endpoints --- api/validation.go | 30 +++++++++++++++++++++++++----- 1 file changed, 25 insertions(+), 5 deletions(-) diff --git a/api/validation.go b/api/validation.go index b4a02a79..91c2d98e 100644 --- a/api/validation.go +++ b/api/validation.go @@ -515,11 +515,8 @@ func (e *EverestServer) validateDatabaseClusterCR(ctx echo.Context, namespace st return err } if databaseCluster.Spec != nil && databaseCluster.Spec.Monitoring != nil && databaseCluster.Spec.Monitoring.MonitoringConfigName != nil { - if _, err := e.kubeClient.GetMonitoringConfig(context.Background(), MonitoringNamespace, *databaseCluster.Spec.Monitoring.MonitoringConfigName); err != nil { - if k8serrors.IsNotFound(err) { - return fmt.Errorf("monitoring config %s does not exist", *databaseCluster.Spec.Monitoring.MonitoringConfigName) - } - return fmt.Errorf("failed getting monitoring config %s", *databaseCluster.Spec.Monitoring.MonitoringConfigName) + if _, err := e.validateMonitoringConfigAccess(context.Background(), namespace, *databaseCluster.Spec.Monitoring.MonitoringConfigName); err != nil { + return err } } if databaseCluster.Spec.Proxy != nil && databaseCluster.Spec.Proxy.Type != nil { @@ -630,6 +627,29 @@ func (e *EverestServer) validateBackupStoragesAccess(ctx context.Context, namesp return bs, nil } +func (e *EverestServer) validateMonitoringConfigAccess(ctx context.Context, namespace, name string) (*everestv1alpha1.MonitoringConfig, error) { + mc, err := e.kubeClient.GetMonitoringConfig(ctx, MonitoringNamespace, name) + if err != nil { + if k8serrors.IsNotFound(err) { + return nil, fmt.Errorf("monitoring config %s does not exist", name) + } + return nil, fmt.Errorf("failed getting monitoring config %s", name) + } + + found := false + for _, ns := range mc.Spec.TargetNamespaces { + if ns == namespace { + found = true + break + } + } + if !found { + return nil, fmt.Errorf("monitoring config %s is not allowed for namespace %s", name, namespace) + } + + return mc, nil +} + func validateVersion(version *string, engine *everestv1alpha1.DatabaseEngine) error { if version != nil { if len(engine.Spec.AllowedVersions) > 0 { From 95cc3fea4c41a2839adcf18cd50fb69c79e15c00 Mon Sep 17 00:00:00 2001 From: Diogo Recharte Date: Mon, 12 Feb 2024 16:35:41 +0000 Subject: [PATCH 4/6] EVEREST-832 Refactor validateMonitoringConfigAccess Co-authored-by: Oksana Grishchenko <91597950+oksana-grishchenko@users.noreply.github.com> --- api/validation.go | 10 ++-------- 1 file changed, 2 insertions(+), 8 deletions(-) diff --git a/api/validation.go b/api/validation.go index 91c2d98e..41fd1232 100644 --- a/api/validation.go +++ b/api/validation.go @@ -636,18 +636,12 @@ func (e *EverestServer) validateMonitoringConfigAccess(ctx context.Context, name return nil, fmt.Errorf("failed getting monitoring config %s", name) } - found := false for _, ns := range mc.Spec.TargetNamespaces { if ns == namespace { - found = true - break + return mc, nil } } - if !found { - return nil, fmt.Errorf("monitoring config %s is not allowed for namespace %s", name, namespace) - } - - return mc, nil + return nil, fmt.Errorf("monitoring config %s is not allowed for namespace %s", name, namespace) } func validateVersion(version *string, engine *everestv1alpha1.DatabaseEngine) error { From 57749c547c56f4d1c1e5736299d56c7ce1a8c57f Mon Sep 17 00:00:00 2001 From: Diogo Recharte Date: Mon, 12 Feb 2024 16:35:57 +0000 Subject: [PATCH 5/6] EVEREST-832 Refactor validateBackupStoragesAccess Co-authored-by: Oksana Grishchenko <91597950+oksana-grishchenko@users.noreply.github.com> --- api/validation.go | 10 ++-------- 1 file changed, 2 insertions(+), 8 deletions(-) diff --git a/api/validation.go b/api/validation.go index 41fd1232..286e7970 100644 --- a/api/validation.go +++ b/api/validation.go @@ -613,18 +613,12 @@ func (e *EverestServer) validateBackupStoragesAccess(ctx context.Context, namesp return nil, fmt.Errorf("could not validate backup storage %s", name) } - found := false for _, ns := range bs.Spec.TargetNamespaces { if ns == namespace { - found = true - break + return bs, nil } } - if !found { - return nil, fmt.Errorf("backup storage %s is not allowed for namespace %s", name, namespace) - } - - return bs, nil + return nil, fmt.Errorf("backup storage %s is not allowed for namespace %s", name, namespace) } func (e *EverestServer) validateMonitoringConfigAccess(ctx context.Context, namespace, name string) (*everestv1alpha1.MonitoringConfig, error) { From 90027021de1ad36b82646e55d0aac77431a36e19 Mon Sep 17 00:00:00 2001 From: Diogo Recharte Date: Mon, 12 Feb 2024 16:36:14 +0000 Subject: [PATCH 6/6] EVEREST-832 fix validation unit tests --- api/validation_test.go | 66 +++++++++++++++++++++++------------------- 1 file changed, 37 insertions(+), 29 deletions(-) diff --git a/api/validation_test.go b/api/validation_test.go index 290b51ef..8e7b3b14 100644 --- a/api/validation_test.go +++ b/api/validation_test.go @@ -450,46 +450,53 @@ func TestValidateBackupSpec(t *testing.T) { func TestValidateBackupStoragesFor(t *testing.T) { t.Parallel() cases := []struct { - name string - cluster []byte - storage []byte - err error + name string + namespace string + cluster []byte + storage []byte + err error }{ { - name: "errPSMDBMultipleStorages", - cluster: []byte(`{"spec": {"backup": {"enabled": true, "schedules": [{"enabled": true, "name": "name", "backupStorageName": "storage1"}, {"enabled": true, "name": "name2", "backupStorageName": "storage2"}]}, "engine": {"type": "psmdb"}}}`), - storage: []byte(`{"spec": {"type": "s3"}}`), - err: errPSMDBMultipleStorages, + name: "errPSMDBMultipleStorages", + namespace: "everest", + cluster: []byte(`{"spec": {"backup": {"enabled": true, "schedules": [{"enabled": true, "name": "name", "backupStorageName": "storage1"}, {"enabled": true, "name": "name2", "backupStorageName": "storage2"}]}, "engine": {"type": "psmdb"}}}`), + storage: []byte(`{"spec": {"type": "s3"}}`), + err: errPSMDBMultipleStorages, }, { - name: "errPSMDBViolateActiveStorage", - cluster: []byte(`{"status": {"activeStorage": "storage1"}, "spec": {"backup": {"enabled": true, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage2"}]}, "engine": {"type": "psmdb"}}}`), - storage: []byte(`{"spec": {"type": "s3"}}`), - err: errPSMDBViolateActiveStorage, + name: "errPSMDBViolateActiveStorage", + namespace: "everest", + cluster: []byte(`{"status": {"activeStorage": "storage1"}, "spec": {"backup": {"enabled": true, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage2"}]}, "engine": {"type": "psmdb"}}}`), + storage: []byte(`{"spec": {"type": "s3"}}`), + err: errPSMDBViolateActiveStorage, }, { - name: "no errPSMDBViolateActiveStorage", - cluster: []byte(`{"status": {"activeStorage": ""}, "spec": {"backup": {"enabled": true, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage2"}]}, "engine": {"type": "psmdb"}}}`), - storage: []byte(`{"spec": {"type": "s3"}}`), - err: nil, + name: "no errPSMDBViolateActiveStorage", + namespace: "everest", + cluster: []byte(`{"status": {"activeStorage": ""}, "spec": {"backup": {"enabled": true, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage2"}]}, "engine": {"type": "psmdb"}}}`), + storage: []byte(`{"spec": {"type": "s3"}}`), + err: nil, }, { - name: "errPXCPitrS3Only", - cluster: []byte(`{"status":{},"spec": {"backup": {"enabled": true, "pitr": {"enabled": true, "backupStorageName": "storage"}, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage"}]}, "engine": {"type": "pxc"}}}`), - storage: []byte(`{"spec": {"type": "azure"}}`), - err: errPXCPitrS3Only, + name: "errPXCPitrS3Only", + namespace: "everest", + cluster: []byte(`{"status":{},"spec": {"backup": {"enabled": true, "pitr": {"enabled": true, "backupStorageName": "storage"}, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage"}]}, "engine": {"type": "pxc"}}}`), + storage: []byte(`{"spec": {"type": "azure"}}`), + err: errPXCPitrS3Only, }, { - name: "errPitrNoBackupStorageName", - cluster: []byte(`{"status":{},"spec": {"backup": {"enabled": true, "pitr": {"enabled": true}, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage"}]}, "engine": {"type": "pxc"}}}`), - storage: []byte(`{"spec": {"type": "s3"}}`), - err: errPitrNoBackupStorageName, + name: "errPitrNoBackupStorageName", + namespace: "everest", + cluster: []byte(`{"status":{},"spec": {"backup": {"enabled": true, "pitr": {"enabled": true}, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage"}]}, "engine": {"type": "pxc"}}}`), + storage: []byte(`{"spec": {"type": "s3"}}`), + err: errPitrNoBackupStorageName, }, { - name: "valid", - cluster: []byte(`{"status":{},"spec": {"backup": {"enabled": true, "pitr": {"enabled": true, "backupStorageName": "storage2"}, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage"}]}, "engine": {"type": "pxc"}}}`), - storage: []byte(`{"spec": {"type": "s3"}}`), - err: nil, + name: "valid", + namespace: "everest", + cluster: []byte(`{"status":{},"spec": {"backup": {"enabled": true, "pitr": {"enabled": true, "backupStorageName": "storage2"}, "schedules": [{"enabled": true, "name": "otherName", "backupStorageName": "storage"}]}, "engine": {"type": "pxc"}}}`), + storage: []byte(`{"spec": {"type": "s3"}}`), + err: nil, }, } for _, tc := range cases { @@ -506,8 +513,9 @@ func TestValidateBackupStoragesFor(t *testing.T) { err = validateBackupStoragesFor( context.Background(), + tc.namespace, cluster, - func(ctx context.Context, s string) (*everestv1alpha1.BackupStorage, error) { return storage, nil }, + func(context.Context, string, string) (*everestv1alpha1.BackupStorage, error) { return storage, nil }, ) if tc.err == nil { require.NoError(t, err)