use ownerReference control the lifecycle of user's kubeconfig and kubectl pod

Signed-off-by: hongming <talonwan@yunify.com>
2020-05-23 21:26:28 +08:00
parent 8f93266ec0
commit 57acaeba41
7 changed files with 51 additions and 57 deletions
--- a/pkg/models/kubeconfig/kubeconfig.go
+++ b/pkg/models/kubeconfig/kubeconfig.go
@@ -58,7 +58,6 @@ const (
 type Interface interface {
 	GetKubeConfig(username string) (string, error)
 	CreateKubeConfig(user *iamv1alpha2.User) error
-	DelKubeConfig(username string) error
 	UpdateKubeconfig(username string, certificate []byte) error
 }

@@ -135,7 +134,7 @@ func (o *operator) CreateKubeConfig(user *iamv1alpha2.User) error {
 	}

 	cm := &corev1.ConfigMap{TypeMeta: metav1.TypeMeta{Kind: configMapKind, APIVersion: configMapAPIVersion},
-		ObjectMeta: metav1.ObjectMeta{Name: configName, Annotations: map[string]string{constants.UsernameAnnotationKey: user.Name}},
+		ObjectMeta: metav1.ObjectMeta{Name: configName, Labels: map[string]string{constants.UsernameLabelKey: user.Name}},
 		Data:       map[string]string{kubeconfigFileName: string(kubeconfig)}}

 	err = controllerutil.SetControllerReference(user, cm, scheme.Scheme)
@@ -188,18 +187,6 @@ func (o *operator) GetKubeConfig(username string) (string, error) {
 	return string(data), nil
 }

-func (o *operator) DelKubeConfig(username string) error {
-	configName := fmt.Sprintf(kubeconfigNameFormat, username)
-
-	deletePolicy := metav1.DeletePropagationBackground
-	err := o.k8sclient.CoreV1().ConfigMaps(constants.KubeSphereControlNamespace).Delete(configName, &metav1.DeleteOptions{PropagationPolicy: &deletePolicy})
-	if err != nil {
-		klog.Errorln(err)
-		return err
-	}
-	return nil
-}
-
 func (o *operator) createCSR(username string) ([]byte, error) {
 	csrConfig := &certutil.Config{
 		CommonName:   username,
@@ -247,8 +234,8 @@ func (o *operator) createCSR(username string) ([]byte, error) {
 			APIVersion: "certificates.k8s.io/v1beta1",
 		},
 		ObjectMeta: metav1.ObjectMeta{
-			Name:        csrName,
-			Annotations: map[string]string{constants.UsernameAnnotationKey: username},
+			Name:   csrName,
+			Labels: map[string]string{constants.UsernameLabelKey: username},
 		},
 		Spec: certificatesv1beta1.CertificateSigningRequestSpec{
 			Request:  csr,