OPTIM/MAJOR: Convert annotations type to simple string

Annotations are a special type defined as:
type StringW struct {
  Value    string
  OldValue string
  Status   Status
}

"OldValue" is not used in controller logic

"Status" introduces additional code complexity by making the developer deal with configuration in terms of separate and
individual annotations that requires separate actions for each status (EMPTY, DELETED, ADDED, etc).
This approach requires extra effort spent in reconciling different annotations and their status.

The alternative approach is to handle annotations as simple string values and try to stick to the following pattern:
1. Generate a configuration object/model/state from current annotations
2. Retrieve current configuration object/model/state
3. 3. 3. Compare both and apply the new config if needbe.

Also this approach is much more easy to reconcile with the upcoming work of handling Custom Resources.

Author: Mo3m3n

controller/annotations/backend.go

@@ -7,13 +7,13 @@ import (
 	"github.com/haproxytech/kubernetes-ingress/controller/store"
 )
 
-func HandleBackendAnnotations(backend *models.Backend, k8sStore store.K8s, client api.HAProxyClient, annotations ...store.MapStringW) {
+func HandleBackendAnnotations(backend *models.Backend, k8sStore store.K8s, client api.HAProxyClient, annotations ...map[string]string) {
 	for _, a := range GetBackendAnnotations(client, backend) {
-		annValue, _ := k8sStore.GetValueFromAnnotations(a.GetName(), annotations...)
-		if annValue == nil {
+		annValue := k8sStore.GetValueFromAnnotations(a.GetName(), annotations...)
+		if annValue == "" {
 			continue
 		}
-		HandleAnnotation(a, annValue.Value)
+		HandleAnnotation(a, annValue)
 	}
 }
 

controller/annotations/global.go

@@ -7,14 +7,14 @@ import (
 	"github.com/haproxytech/kubernetes-ingress/controller/store"
 )
 
-func HandleGlobalAnnotations(global *models.Global, defaults *models.Defaults, k8sStore store.K8s, client api.HAProxyClient, annotations store.MapStringW) {
+func HandleGlobalAnnotations(global *models.Global, defaults *models.Defaults, k8sStore store.K8s, client api.HAProxyClient, annotations map[string]string) {
 	annList := GetGlobalAnnotations(client, global, defaults)
 	for _, a := range annList {
-		annValue, _ := k8sStore.GetValueFromAnnotations(a.GetName(), annotations)
-		if annValue == nil {
+		annValue := k8sStore.GetValueFromAnnotations(a.GetName(), annotations)
+		if annValue == "" {
 			continue
 		}
-		HandleAnnotation(a, annValue.Value)
+		HandleAnnotation(a, annValue)
 	}
 }
 

controller/annotations/server.go

@@ -9,13 +9,13 @@ import (
 )
 
 // HandleServerAnnotations returns a pointer to a server model holding server configuration from annotations
-func HandleServerAnnotations(server *models.Server, k8sStore store.K8s, client api.HAProxyClient, haproxyCerts *haproxy.Certificates, annotations ...store.MapStringW) {
+func HandleServerAnnotations(server *models.Server, k8sStore store.K8s, client api.HAProxyClient, haproxyCerts *haproxy.Certificates, annotations ...map[string]string) {
 	for _, a := range GetServerAnnotations(server, k8sStore, haproxyCerts) {
-		annValue, _ := k8sStore.GetValueFromAnnotations(a.GetName(), annotations...)
-		if annValue == nil {
+		annValue := k8sStore.GetValueFromAnnotations(a.GetName(), annotations...)
+		if annValue == "" {
 			continue
 		}
-		HandleAnnotation(a, annValue.Value)
+		HandleAnnotation(a, annValue)
 	}
 }
 

controller/controller.go

@@ -175,7 +175,7 @@ func (c *HAProxyController) updateHAProxy() {
 				}
 				_, err = c.Cfg.Certificates.HandleTLSSecret(c.Store, haproxy.SecretCtx{
 					DefaultNS:  ingress.Namespace,
-					SecretPath: tls.SecretName.Value,
+					SecretPath: tls.SecretName,
 					SecretType: haproxy.FT_CERT,
 				})
 				logger.Error(err)

controller/frontend-annotations.go

@@ -65,11 +65,11 @@ func (c *HAProxyController) handleGlobalConfig() (reload, restart bool) {
 
 // handleDefaultService configures HAProy default backend provided via cli param "default-backend-service"
 func (c *HAProxyController) handleDefaultService() (reload bool) {
-	dsvcData, _ := c.Store.GetValueFromAnnotations("default-backend-service")
-	if dsvcData == nil {
+	dsvcData := c.Store.GetValueFromAnnotations("default-backend-service")
+	if dsvcData == "" {
 		return
 	}
-	dsvc := strings.Split(dsvcData.Value, "/")
+	dsvc := strings.Split(dsvcData, "/")
 
 	if len(dsvc) != 2 {
 		logger.Errorf("default service '%s': invalid format", dsvcData)
@@ -91,7 +91,7 @@ func (c *HAProxyController) handleDefaultService() (reload bool) {
 	ingress := &store.Ingress{
 		Namespace:   namespace.Name,
 		Name:        "DefaultService",
-		Annotations: store.MapStringW{},
+		Annotations: map[string]string{},
 		DefaultBackend: &store.IngressPath{
 			SvcName:          service.Name,
 			SvcPortInt:       service.Ports[0].Port,
@@ -108,12 +108,12 @@ func (c *HAProxyController) handleDefaultService() (reload bool) {
 
 // handleDefaultCert configures default/fallback HAProxy certificate to use for client HTTPS requests.
 func (c *HAProxyController) handleDefaultCert() {
-	secretAnn, _ := c.Store.GetValueFromAnnotations("ssl-certificate", c.Store.ConfigMaps.Main.Annotations)
-	if secretAnn == nil {
+	secretAnn := c.Store.GetValueFromAnnotations("ssl-certificate", c.Store.ConfigMaps.Main.Annotations)
+	if secretAnn == "" {
 		return
 	}
 	_, err := c.Cfg.Certificates.HandleTLSSecret(c.Store, haproxy.SecretCtx{
-		SecretPath: secretAnn.Value,
+		SecretPath: secretAnn,
 		SecretType: haproxy.FT_DEFAULT_CERT,
 	})
 	logger.Error(err)

controller/global.go

@@ -40,7 +40,7 @@ func (h ErrorFile) Update(k store.K8s, cfg *config.ControllerCfg, api api.HAProx
 	for code, v := range k.ConfigMaps.Errorfiles.Annotations {
 		_, ok := h.files.data[code]
 		if ok {
-			err = h.files.updateFile(code, v.Value)
+			err = h.files.updateFile(code, v)
 			if err != nil {
 				logger.Errorf("failed updating errorfile for code '%s': %s", code, err)
 			}
@@ -50,7 +50,7 @@ func (h ErrorFile) Update(k store.K8s, cfg *config.ControllerCfg, api api.HAProx
 		if err != nil {
 			logger.Errorf("failed creating errorfile for code '%s': %s", code, err)
 		}
-		err = h.files.newFile(code, v.Value)
+		err = h.files.newFile(code, v)
 		if err != nil {
 			logger.Errorf("failed creating errorfile for code '%s': %s", code, err)
 		}

controller/handler/errorfile.go

@@ -72,10 +72,10 @@ func (h HTTPS) bindList(passhthrough bool) (binds []models.Bind) {
 }
 
 func (h HTTPS) handleClientTLSAuth(k store.K8s, cfg *config.ControllerCfg, api api.HAProxyClient) (reload bool, err error) {
-	annTLSAuth, _ := k.GetValueFromAnnotations("client-ca", k.ConfigMaps.Main.Annotations)
-	annTLSVerify, _ := k.GetValueFromAnnotations("client-crt-optional", k.ConfigMaps.Main.Annotations)
-	if annTLSAuth == nil {
-		return
+	annTLSAuth := k.GetValueFromAnnotations("client-ca", k.ConfigMaps.Main.Annotations)
+	annTLSVerify := k.GetValueFromAnnotations("client-crt-optional", k.ConfigMaps.Main.Annotations)
+	if annTLSAuth == "" {
+		return false, nil
 	}
 	binds, err := api.FrontendBindsGet(cfg.FrontHTTPS)
 	if err != nil {
@@ -85,17 +85,17 @@ func (h HTTPS) handleClientTLSAuth(k store.K8s, cfg *config.ControllerCfg, api a
 	var caFile string
 	caFile, err = cfg.Certificates.HandleTLSSecret(k, haproxy.SecretCtx{
 		DefaultNS:  "",
-		SecretPath: annTLSAuth.Value,
+		SecretPath: annTLSAuth,
 		SecretType: haproxy.CA_CERT,
 	})
 	if err != nil {
 		if errors.Is(err, haproxy.ErrCertNotFound) {
-			logger.Warning("unable to configure TLS authentication secret '%s' not found", annTLSAuth.Value)
+			logger.Warningf("unable to configure TLS authentication secret '%s' not found", annTLSAuth)
 			err = nil
 		}
 	}
 	verify := "required"
-	enabled, annErr := utils.GetBoolValue("client-crt-optional", annTLSVerify.Value)
+	enabled, annErr := utils.GetBoolValue(annTLSVerify, "client-crt-optional")
 	logger.Error(annErr)
 	if enabled {
 		verify = "optional"
@@ -246,9 +246,9 @@ func (h HTTPS) toggleSSLPassthrough(passthrough bool, cfg *config.ControllerCfg,
 
 func (h HTTPS) sslPassthroughRules(k store.K8s, cfg *config.ControllerCfg) error {
 	inspectTimeout := utils.PtrInt64(5000)
-	annTimeout, _ := k.GetValueFromAnnotations("timeout-client", k.ConfigMaps.Main.Annotations)
-	if annTimeout != nil {
-		if value, errParse := utils.ParseTime(annTimeout.Value); errParse == nil {
+	annTimeout := k.GetValueFromAnnotations("timeout-client", k.ConfigMaps.Main.Annotations)
+	if annTimeout != "" {
+		if value, errParse := utils.ParseTime(annTimeout); errParse == nil {
 			inspectTimeout = value
 		} else {
 			logger.Error(errParse)

controller/handler/https.go

@@ -47,12 +47,12 @@ func (h PatternFiles) Update(k store.K8s, cfg *config.ControllerCfg, api api.HAP
 	for name, v := range k.ConfigMaps.PatternFiles.Annotations {
 		_, ok := h.files.data[name]
 		if ok {
-			err = h.files.updateFile(name, v.Value)
+			err = h.files.updateFile(name, v)
 			if err != nil {
 				logger.Errorf("failed updating patternFile '%s': %s", name, err)
 			}
 		} else {
-			err = h.files.newFile(name, v.Value)
+			err = h.files.newFile(name, v)
 			if err != nil {
 				logger.Errorf("failed creating patternFile '%s': %s", name, err)
 			}

controller/handler/pattern-files.go

@@ -29,18 +29,14 @@ type ProxyProtocol struct{}
 
 func (p ProxyProtocol) Update(k store.K8s, cfg *config.ControllerCfg, api api.HAProxyClient) (reload bool, err error) {
 	//  Get annotation status
-	annProxyProtocol, _ := k.GetValueFromAnnotations("proxy-protocol", k.ConfigMaps.Main.Annotations)
-	if annProxyProtocol == nil {
-		return false, nil
-	}
-	if annProxyProtocol.Status == store.DELETED {
-		logger.Trace("Deleting ProxyProtocol configuration")
+	annProxyProtocol := k.GetValueFromAnnotations("proxy-protocol", k.ConfigMaps.Main.Annotations)
+	if annProxyProtocol == "" {
 		return false, nil
 	}
 	// Validate annotation
-	mapName := "proxy-protocol-" + utils.Hash([]byte(annProxyProtocol.Value))
+	mapName := "proxy-protocol-" + utils.Hash([]byte(annProxyProtocol))
 	if !cfg.MapFiles.Exists(mapName) {
-		for _, address := range strings.Split(annProxyProtocol.Value, ",") {
+		for _, address := range strings.Split(annProxyProtocol, ",") {
 			address = strings.TrimSpace(address)
 			if ip := net.ParseIP(address); ip == nil {
 				if _, _, err = net.ParseCIDR(address); err != nil {

controller/handler/proxy-protocol.go

@@ -25,8 +25,8 @@ type Refresh struct{}
 
 func (h Refresh) Update(k store.K8s, cfg *config.ControllerCfg, api api.HAProxyClient) (reload bool, err error) {
 	cleanCrts := true
-	if cleanCrtAnn, _ := k.GetValueFromAnnotations("clean-certs", k.ConfigMaps.Main.Annotations); cleanCrtAnn != nil && cleanCrtAnn.Status != store.DELETED {
-		cleanCrts, err = utils.GetBoolValue(cleanCrtAnn.Value, "clean-certs")
+	if cleanCrtAnn := k.GetValueFromAnnotations("clean-certs", k.ConfigMaps.Main.Annotations); cleanCrtAnn != "" {
+		cleanCrts, err = utils.GetBoolValue(cleanCrtAnn, "clean-certs")
 	}
 	if cleanCrts {
 		reload = cfg.Certificates.Refresh() || reload

controller/handler/refresh.go

@@ -35,7 +35,7 @@ func (t TCPServices) Update(k store.K8s, cfg *config.ControllerCfg, api api.HAPr
 	var p tcpSvcParser
 	for port, tcpSvcAnn := range k.ConfigMaps.TCPServices.Annotations {
 		frontendName := fmt.Sprintf("tcp-%s", port)
-		p, err = t.parseTCPService(k, tcpSvcAnn.Value)
+		p, err = t.parseTCPService(k, tcpSvcAnn)
 		if err != nil {
 			logger.Error(err)
 			continue
@@ -184,7 +184,7 @@ func (t TCPServices) updateTCPFrontend(api api.HAProxyClient, frontend models.Fr
 	}
 	ingress := &store.Ingress{
 		Namespace:   p.service.Namespace,
-		Annotations: store.MapStringW{},
+		Annotations: make(map[string]string),
 		DefaultBackend: &store.IngressPath{
 			SvcName:    p.service.Name,
 			SvcPortInt: p.port,

controller/handler/tcp-services.go

@@ -32,9 +32,7 @@ import (
 func (c *HAProxyController) igClassIsSupported(ingress *store.Ingress) bool {
 	var igClassAnn string
 	var igClass *store.IngressClass
-	if ann, _ := c.Store.GetValueFromAnnotations("ingress.class", ingress.Annotations); ann != nil {
-		igClassAnn = ann.Value
-	}
+	igClassAnn = c.Store.GetValueFromAnnotations("ingress.class", ingress.Annotations)
 
 	// If ingress class is unassigned and the controller is controlling any resource without explicit ingress class then support it.
 	if igClassAnn == "" && c.OSArgs.EmptyIngressClass {
@@ -81,16 +79,16 @@ func (c *HAProxyController) handleIngressPath(ingress *store.Ingress, host strin
 		BackendName:    backendName,
 		SSLPassthrough: sslPassthrough,
 	}
-	routeACLAnn, _ := c.Store.GetValueFromAnnotations("route-acl", svc.GetService().Annotations)
-	if routeACLAnn == nil {
+	routeACLAnn := c.Store.GetValueFromAnnotations("route-acl", svc.GetService().Annotations)
+	if routeACLAnn == "" {
 		if _, ok := route.CustomRoutes[backendName]; ok {
 			delete(route.CustomRoutes, backendName)
 			logger.Debugf("Custom Route to backend '%s' deleted, reload required", backendName)
 			routeReload = true
 		}
 		err = route.AddHostPathRoute(ingRoute, c.Cfg.MapFiles)
 	} else {
-		routeReload, err = route.AddCustomRoute(ingRoute, *routeACLAnn, c.Client)
+		routeReload, err = route.AddCustomRoute(ingRoute, routeACLAnn, c.Client)
 	}
 	if err != nil {
 		return
@@ -145,23 +143,23 @@ func (c *HAProxyController) setDefaultService(ingress *store.Ingress, frontends
 }
 
 func (c *HAProxyController) sslPassthroughEnabled(ingress *store.Ingress, path *store.IngressPath) bool {
-	var annSSLPassthrough *store.StringW
+	var annSSLPassthrough string
 	var service *store.Service
 	ok := false
 	if path != nil {
 		service, ok = c.Store.Namespaces[ingress.Namespace].Services[path.SvcName]
 	}
 	if ok {
-		annSSLPassthrough, _ = c.Store.GetValueFromAnnotations("ssl-passthrough", service.Annotations, ingress.Annotations, c.Store.ConfigMaps.Main.Annotations)
+		annSSLPassthrough = c.Store.GetValueFromAnnotations("ssl-passthrough", service.Annotations, ingress.Annotations, c.Store.ConfigMaps.Main.Annotations)
 	} else {
-		annSSLPassthrough, _ = c.Store.GetValueFromAnnotations("ssl-passthrough", ingress.Annotations, c.Store.ConfigMaps.Main.Annotations)
+		annSSLPassthrough = c.Store.GetValueFromAnnotations("ssl-passthrough", ingress.Annotations, c.Store.ConfigMaps.Main.Annotations)
 	}
-	enabled, err := utils.GetBoolValue(annSSLPassthrough.Value, "ssl-passthrough")
-	if err != nil {
-		logger.Errorf("ssl-passthrough annotation: %s", err)
+	if annSSLPassthrough == "" {
 		return false
 	}
-	if annSSLPassthrough.Status == DELETED {
+	enabled, err := utils.GetBoolValue(annSSLPassthrough, "ssl-passthrough")
+	if err != nil {
+		logger.Errorf("ssl-passthrough annotation: %s", err)
 		return false
 	}
 	if enabled {

controller/ingress.go

@@ -226,7 +226,7 @@ func (k *K8s) convertToEndpoints(obj interface{}, status store.Status) (*store.E
 	}
 	item := &store.Endpoints{
 		Namespace: data.GetNamespace(),
-		Service:   store.StringW{Value: data.GetName()},
+		Service:   data.GetName(),
 		Ports:     make(map[string]*store.PortEndpoints),
 		Status:    status,
 	}
@@ -363,7 +363,7 @@ func (k *K8s) EventsServices(channel chan SyncDataEvent, stop chan struct{}, inf
 			item := &store.Service{
 				Namespace:   data.GetNamespace(),
 				Name:        data.GetName(),
-				Annotations: store.ConvertToMapStringW(data.ObjectMeta.Annotations),
+				Annotations: store.CopyAnnotations(data.ObjectMeta.Annotations),
 				Ports:       []store.ServicePort{},
 				Status:      status,
 			}
@@ -398,7 +398,7 @@ func (k *K8s) EventsServices(channel chan SyncDataEvent, stop chan struct{}, inf
 			item := &store.Service{
 				Namespace:   data.GetNamespace(),
 				Name:        data.GetName(),
-				Annotations: store.ConvertToMapStringW(data.ObjectMeta.Annotations),
+				Annotations: store.CopyAnnotations(data.ObjectMeta.Annotations),
 				Status:      status,
 			}
 			if data.Spec.Type == corev1.ServiceTypeExternalName {
@@ -435,7 +435,7 @@ func (k *K8s) EventsServices(channel chan SyncDataEvent, stop chan struct{}, inf
 			item1 := &store.Service{
 				Namespace:   data1.GetNamespace(),
 				Name:        data1.GetName(),
-				Annotations: store.ConvertToMapStringW(data1.ObjectMeta.Annotations),
+				Annotations: store.CopyAnnotations(data1.ObjectMeta.Annotations),
 				Ports:       []store.ServicePort{},
 				Status:      status,
 			}
@@ -453,7 +453,7 @@ func (k *K8s) EventsServices(channel chan SyncDataEvent, stop chan struct{}, inf
 			item2 := &store.Service{
 				Namespace:   data2.GetNamespace(),
 				Name:        data2.GetName(),
-				Annotations: store.ConvertToMapStringW(data2.ObjectMeta.Annotations),
+				Annotations: store.CopyAnnotations(data2.ObjectMeta.Annotations),
 				Ports:       []store.ServicePort{},
 				Status:      status,
 			}
@@ -499,7 +499,7 @@ func (k *K8s) EventsConfigfMaps(channel chan SyncDataEvent, stop chan struct{},
 				item := &store.ConfigMap{
 					Namespace:   data.GetNamespace(),
 					Name:        data.GetName(),
-					Annotations: store.ConvertToMapStringW(data.Data),
+					Annotations: store.CopyAnnotations(data.Data),
 					Status:      status,
 				}
 				k.Logger.Tracef("%s %s: %s", CONFIGMAP, item.Status, item.Name)
@@ -515,7 +515,7 @@ func (k *K8s) EventsConfigfMaps(channel chan SyncDataEvent, stop chan struct{},
 				item := &store.ConfigMap{
 					Namespace:   data.GetNamespace(),
 					Name:        data.GetName(),
-					Annotations: store.ConvertToMapStringW(data.Data),
+					Annotations: store.CopyAnnotations(data.Data),
 					Status:      status,
 				}
 				k.Logger.Tracef("%s %s: %s", CONFIGMAP, item.Status, item.Name)
@@ -536,13 +536,13 @@ func (k *K8s) EventsConfigfMaps(channel chan SyncDataEvent, stop chan struct{},
 				item1 := &store.ConfigMap{
 					Namespace:   data1.GetNamespace(),
 					Name:        data1.GetName(),
-					Annotations: store.ConvertToMapStringW(data1.Data),
+					Annotations: store.CopyAnnotations(data1.Data),
 					Status:      status,
 				}
 				item2 := &store.ConfigMap{
 					Namespace:   data2.GetNamespace(),
 					Name:        data2.GetName(),
-					Annotations: store.ConvertToMapStringW(data2.Data),
+					Annotations: store.CopyAnnotations(data2.Data),
 					Status:      status,
 				}
 				if item2.Equal(item1) {