From 55adb3926063e823a720dbfa2ad78d37ce7b4dcb Mon Sep 17 00:00:00 2001 From: Ben Meier Date: Fri, 17 May 2024 13:01:39 +0100 Subject: [PATCH] fix: fixed sorting of env vars with secret refs Signed-off-by: Ben Meier --- internal/convert/container_variables.go | 8 +++++ internal/convert/container_variables_test.go | 31 ++++++++++++++++++++ 2 files changed, 39 insertions(+) diff --git a/internal/convert/container_variables.go b/internal/convert/container_variables.go index 3a014ed..145e710 100644 --- a/internal/convert/container_variables.go +++ b/internal/convert/container_variables.go @@ -108,6 +108,14 @@ func convertContainerVariables(variables scoretypes.ContainerVariables, substitu } } slices.SortFunc(out, func(a, b coreV1.EnvVar) int { + // note __ref-'s must always be first! + aRef, bRef := strings.HasPrefix(a.Name, "__ref_"), strings.HasPrefix(b.Name, "__ref_") + if aRef && !bRef { + return -1 + } else if bRef && !aRef { + return 1 + } + // anything else gets sorted naturally return strings.Compare(a.Name, b.Name) }) return out, nil diff --git a/internal/convert/container_variables_test.go b/internal/convert/container_variables_test.go index 9d51634..ec7d992 100644 --- a/internal/convert/container_variables_test.go +++ b/internal/convert/container_variables_test.go @@ -88,3 +88,34 @@ func Test_convertContainerVariable_2_secret(t *testing.T) { {Name: "KEY", Value: "$(__ref_0960osB2KjQY08QKfHliCg) $(__ref_mWObImRl7lfuP04NHDPsvA)"}, }, out) } + +func Test_convertContainerVariables_sorting(t *testing.T) { + out, err := convertContainerVariables(map[string]string{ + "BUZZ": "FIZZ", + "KEY": "${foo.bar} ${a.b}", + "FIZZ": "BUZZ", + }, func(s string) (string, error) { + return map[string]string{ + "foo.bar": internal.EncodeSecretReference("default", "some-key"), + "a.b": internal.EncodeSecretReference("default", "other-key"), + }[s], nil + }) + assert.NoError(t, err) + assert.Equal(t, []coreV1.EnvVar{ + {Name: "__ref_0960osB2KjQY08QKfHliCg", ValueFrom: &coreV1.EnvVarSource{ + SecretKeyRef: &coreV1.SecretKeySelector{ + LocalObjectReference: coreV1.LocalObjectReference{Name: "default"}, + Key: "some-key", + }, + }}, + {Name: "__ref_mWObImRl7lfuP04NHDPsvA", ValueFrom: &coreV1.EnvVarSource{ + SecretKeyRef: &coreV1.SecretKeySelector{ + LocalObjectReference: coreV1.LocalObjectReference{Name: "default"}, + Key: "other-key", + }, + }}, + {Name: "BUZZ", Value: "FIZZ"}, + {Name: "FIZZ", Value: "BUZZ"}, + {Name: "KEY", Value: "$(__ref_0960osB2KjQY08QKfHliCg) $(__ref_mWObImRl7lfuP04NHDPsvA)"}, + }, out) +}