feat: add indexers for ConnectionSecret controller

Author: andrpac

internal/indexer/atlasdatabaseuserbyspecusername.go

@@ -0,0 +1,86 @@
+// Copyright 2025 MongoDB Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+//nolint:dupl
+package indexer
+
+import (
+	"context"
+	"fmt"
+
+	"go.uber.org/zap"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+
+	akov2 "github.com/mongodb/mongodb-atlas-kubernetes/v2/api/v1"
+)
+
+const (
+	AtlasDatabaseUserBySpecUsernameAndProjectID = "atlasdatabaseuser.projectID/spec.username"
+)
+
+type AtlasDatabaseUserBySpecUsernameIndexer struct {
+	ctx    context.Context
+	client client.Client
+	logger *zap.SugaredLogger
+}
+
+func NewAtlasDatabaseUserBySpecUsernameIndexer(ctx context.Context, client client.Client, logger *zap.Logger) *AtlasDatabaseUserBySpecUsernameIndexer {
+	return &AtlasDatabaseUserBySpecUsernameIndexer{
+		ctx:    ctx,
+		client: client,
+		logger: logger.Named(AtlasDatabaseUserBySpecUsernameAndProjectID).Sugar(),
+	}
+}
+
+func (*AtlasDatabaseUserBySpecUsernameIndexer) Object() client.Object {
+	return &akov2.AtlasDatabaseUser{}
+}
+
+func (*AtlasDatabaseUserBySpecUsernameIndexer) Name() string {
+	return AtlasDatabaseUserBySpecUsernameAndProjectID
+}
+
+func (a *AtlasDatabaseUserBySpecUsernameIndexer) Keys(object client.Object) []string {
+	user, ok := object.(*akov2.AtlasDatabaseUser)
+	if !ok {
+		a.logger.Errorf("expected *v1.AtlasDatabaseUser but got %T", object)
+		return nil
+	}
+
+	username := user.Spec.Username
+	if username == "" {
+		return nil
+	}
+
+	// First check ExternalProjectRef
+	if user.Spec.ExternalProjectRef != nil && user.Spec.ExternalProjectRef.ID != "" {
+		return []string{fmt.Sprintf("%s/%s", user.Spec.ExternalProjectRef.ID, username)}
+	}
+
+	// Fallback to resolving ProjectRef (name-based)
+	if user.Spec.ProjectRef != nil && user.Spec.ProjectRef.Name != "" {
+		project := &akov2.AtlasProject{}
+		err := a.client.Get(a.ctx, *user.Spec.ProjectRef.GetObject(user.Namespace), project)
+		if err != nil {
+			a.logger.Errorf("unable to find project to index: %s", err)
+			return nil
+		}
+
+		if project.ID() != "" {
+			return []string{fmt.Sprintf("%s/%s", project.ID(), username)}
+		}
+	}
+
+	return nil
+}

internal/indexer/atlasdatabaseuserbyspecusername_test.go

@@ -0,0 +1,199 @@
+// Copyright 2025 MongoDB Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+//nolint:dupl
+package indexer
+
+import (
+	"context"
+	"sort"
+	"testing"
+
+	"github.com/stretchr/testify/assert"
+	"go.uber.org/zap"
+	"go.uber.org/zap/zapcore"
+	"go.uber.org/zap/zaptest/observer"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/runtime"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+	"sigs.k8s.io/controller-runtime/pkg/client/fake"
+
+	akov2 "github.com/mongodb/mongodb-atlas-kubernetes/v2/api/v1"
+	"github.com/mongodb/mongodb-atlas-kubernetes/v2/api/v1/common"
+	"github.com/mongodb/mongodb-atlas-kubernetes/v2/api/v1/status"
+)
+
+func TestAtlasDatabaseUserBySpecUsernameIndexer(t *testing.T) {
+	tests := map[string]struct {
+		object       client.Object
+		expectedKeys []string
+		expectedLogs []observer.LoggedEntry
+	}{
+		"should return nil on wrong type": {
+			object: &akov2.AtlasStreamInstance{},
+			expectedLogs: []observer.LoggedEntry{
+				{
+					Context: []zapcore.Field{},
+					Entry:   zapcore.Entry{LoggerName: AtlasDatabaseUserBySpecUsernameAndProjectID, Level: zap.ErrorLevel, Message: "expected *v1.AtlasDatabaseUser but got *v1.AtlasStreamInstance"},
+				},
+			},
+		},
+		"should return nil when username is empty": {
+			object: &akov2.AtlasDatabaseUser{
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "",
+				},
+			},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should return nil when there are no references": {
+			object: &akov2.AtlasDatabaseUser{
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+				},
+			},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should return nil when there is an empty external reference": {
+			object: &akov2.AtlasDatabaseUser{
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+					ProjectDualReference: akov2.ProjectDualReference{
+						ExternalProjectRef: &akov2.ExternalProjectReference{},
+					},
+				},
+			},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should return key with external project ID": {
+			object: &akov2.AtlasDatabaseUser{
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+					ProjectDualReference: akov2.ProjectDualReference{
+						ExternalProjectRef: &akov2.ExternalProjectReference{
+							ID: "external-project-id",
+						},
+					},
+				},
+			},
+			expectedKeys: []string{"external-project-id/user"},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should return nil when internal projectRef is empty": {
+			object: &akov2.AtlasDatabaseUser{
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+					ProjectDualReference: akov2.ProjectDualReference{
+						ProjectRef: &common.ResourceRefNamespaced{},
+					},
+				},
+			},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should return key from internal projectRef (same ns)": {
+			object: &akov2.AtlasDatabaseUser{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "user",
+					Namespace: "ns",
+				},
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+					ProjectDualReference: akov2.ProjectDualReference{
+						ProjectRef: &common.ResourceRefNamespaced{
+							Name: "internal-project-id",
+						},
+					},
+				},
+			},
+			expectedKeys: []string{"external-project-id/user"},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should return key from internal projectRef (explicit ns)": {
+			object: &akov2.AtlasDatabaseUser{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "user",
+					Namespace: "nsUser",
+				},
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+					ProjectDualReference: akov2.ProjectDualReference{
+						ProjectRef: &common.ResourceRefNamespaced{
+							Name:      "internal-project-id",
+							Namespace: "ns",
+						},
+					},
+				},
+			},
+			expectedKeys: []string{"external-project-id/user"},
+			expectedLogs: []observer.LoggedEntry{},
+		},
+		"should log error if internal project not found": {
+			object: &akov2.AtlasDatabaseUser{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "user",
+					Namespace: "ns",
+				},
+				Spec: akov2.AtlasDatabaseUserSpec{
+					Username: "user",
+					ProjectDualReference: akov2.ProjectDualReference{
+						ProjectRef: &common.ResourceRefNamespaced{
+							Name: "not-found-project",
+						},
+					},
+				},
+			},
+			expectedLogs: []observer.LoggedEntry{
+				{
+					Context: []zapcore.Field{},
+					Entry:   zapcore.Entry{LoggerName: AtlasDatabaseUserBySpecUsernameAndProjectID, Level: zap.ErrorLevel, Message: "unable to find project to index: atlasprojects.atlas.mongodb.com \"not-found-project\" not found"},
+				},
+			},
+		},
+	}
+
+	for name, tt := range tests {
+		t.Run(name, func(t *testing.T) {
+			project := &akov2.AtlasProject{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:      "internal-project-id",
+					Namespace: "ns",
+				},
+				Spec: akov2.AtlasProjectSpec{
+					Name: "Some Project",
+				},
+				Status: status.AtlasProjectStatus{
+					ID: "external-project-id",
+				},
+			}
+
+			scheme := runtime.NewScheme()
+			assert.NoError(t, akov2.AddToScheme(scheme))
+
+			client := fake.NewClientBuilder().
+				WithScheme(scheme).
+				WithObjects(project).
+				WithStatusSubresource(project).
+				Build()
+
+			core, logs := observer.New(zap.DebugLevel)
+			indexer := NewAtlasDatabaseUserBySpecUsernameIndexer(context.Background(), client, zap.New(core))
+
+			keys := indexer.Keys(tt.object)
+			sort.Strings(keys)
+
+			assert.Equal(t, tt.expectedKeys, keys)
+			assert.Equal(t, tt.expectedLogs, logs.AllUntimed())
+		})
+	}
+}

internal/indexer/atlasdeploymentbyproject.go

@@ -0,0 +1,79 @@
+// Copyright 2025 MongoDB Inc
+//
+// Licensed under the Apache License, Version 2.0 (the "License");
+// you may not use this file except in compliance with the License.
+// You may obtain a copy of the License at
+//
+//     http://www.apache.org/licenses/LICENSE-2.0
+//
+// Unless required by applicable law or agreed to in writing, software
+// distributed under the License is distributed on an "AS IS" BASIS,
+// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+// See the License for the specific language governing permissions and
+// limitations under the License.
+
+//nolint:dupl
+package indexer
+
+import (
+	"context"
+
+	"go.uber.org/zap"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+
+	akov2 "github.com/mongodb/mongodb-atlas-kubernetes/v2/api/v1"
+)
+
+const (
+	AtlasDeploymentByProject = "atlasdeployment.spec.projectRef,externalProjectID"
+)
+
+type AtlasDeploymentByProjectIndexer struct {
+	ctx    context.Context
+	client client.Client
+	logger *zap.SugaredLogger
+}
+
+func NewAtlasDeploymentByProjectIndexer(ctx context.Context, client client.Client, logger *zap.Logger) *AtlasDeploymentByProjectIndexer {
+	return &AtlasDeploymentByProjectIndexer{
+		ctx:    ctx,
+		client: client,
+		logger: logger.Named(AtlasDeploymentByProject).Sugar(),
+	}
+}
+
+func (*AtlasDeploymentByProjectIndexer) Object() client.Object {
+	return &akov2.AtlasDeployment{}
+}
+
+func (*AtlasDeploymentByProjectIndexer) Name() string {
+	return AtlasDeploymentByProject
+}
+
+func (a *AtlasDeploymentByProjectIndexer) Keys(object client.Object) []string {
+	deployment, ok := object.(*akov2.AtlasDeployment)
+	if !ok {
+		a.logger.Errorf("expected *v1.AtlasDeployment but got %T", object)
+		return nil
+	}
+
+	if deployment.Spec.ExternalProjectRef != nil && deployment.Spec.ExternalProjectRef.ID != "" {
+		return []string{deployment.Spec.ExternalProjectRef.ID}
+	}
+
+	if deployment.Spec.ProjectRef != nil && deployment.Spec.ProjectRef.Name != "" {
+		project := &akov2.AtlasProject{}
+		err := a.client.Get(a.ctx, *deployment.Spec.ProjectRef.GetObject(deployment.Namespace), project)
+		if err != nil {
+			a.logger.Errorf("unable to find project to index: %s", err)
+
+			return nil
+		}
+
+		if project.ID() != "" {
+			return []string{project.ID()}
+		}
+	}
+
+	return nil
+}