feat(secrets): allow creating secrets beyond opaque [EE-2625] (#7709)

2025-07-28 17:59:45 +02:00 · 2022-09-23 16:35:47 +12:00 · 2022-09-23 16:35:47 +12:00 · 4e20d70a99
commit 4e20d70a99
parent 3b2f0ff9eb
23 changed files with 659 additions and 135 deletions
--- a/app/kubernetes/views/configurations/validation.js
+++ b/app/kubernetes/views/configurations/validation.js
@ -0,0 +1,59 @@
+import { KubernetesSecretTypes } from '@/kubernetes/models/configuration/models';
+import { KubernetesConfigurationKinds } from '@/kubernetes/models/configuration/models';
+
+export function isConfigurationFormValid(alreadyExist, isDataValid, formValues) {
+  const uniqueCheck = !alreadyExist && isDataValid;
+  let secretWarningMessage = '';
+  let isFormValid = false;
+
+  if (formValues.IsSimple) {
+    if (formValues.Kind === KubernetesConfigurationKinds.SECRET) {
+      let isSecretDataValid = true;
+      const secretTypeValue = typeof formValues.Type === 'string' ? formValues.Type : formValues.Type.value;
+
+      switch (secretTypeValue) {
+        case KubernetesSecretTypes.SERVICEACCOUNTTOKEN.value:
+          // data isn't required for service account tokens
+          isFormValid = uniqueCheck && formValues.ResourcePool;
+          return [isFormValid, ''];
+        case KubernetesSecretTypes.DOCKERCFG.value:
+          // needs to contain a .dockercfg key
+          isSecretDataValid = formValues.Data.some((entry) => entry.Key === '.dockercfg');
+          secretWarningMessage = isSecretDataValid ? '' : 'A data entry with a .dockercfg key is required.';
+          break;
+        case KubernetesSecretTypes.DOCKERCONFIGJSON.value:
+          // needs to contain a .dockerconfigjson key
+          isSecretDataValid = formValues.Data.some((entry) => entry.Key === '.dockerconfigjson');
+          secretWarningMessage = isSecretDataValid ? '' : 'A data entry with a .dockerconfigjson key. is required.';
+          break;
+        case KubernetesSecretTypes.BASICAUTH.value:
+          isSecretDataValid = formValues.Data.some((entry) => entry.Key === 'username' || entry.Key === 'password');
+          secretWarningMessage = isSecretDataValid ? '' : 'A data entry with a username or password key is required.';
+          break;
+        case KubernetesSecretTypes.SSHAUTH.value:
+          isSecretDataValid = formValues.Data.some((entry) => entry.Key === 'ssh-privatekey');
+          secretWarningMessage = isSecretDataValid ? '' : `A data entry with a 'ssh-privatekey' key is required.`;
+          break;
+        case KubernetesSecretTypes.TLS.value:
+          isSecretDataValid = formValues.Data.some((entry) => entry.Key === 'tls.crt') && formValues.Data.some((entry) => entry.Key === 'tls.key');
+          secretWarningMessage = isSecretDataValid ? '' : `Data entries containing a 'tls.crt' key and a 'tls.key' key are required.`;
+          break;
+        case KubernetesSecretTypes.BOOTSTRAPTOKEN.value:
+          isSecretDataValid = formValues.Data.some((entry) => entry.Key === 'token-id') && formValues.Data.some((entry) => entry.Key === 'token-secret');
+          secretWarningMessage = isSecretDataValid ? '' : `Data entries containing a 'token-id' key and a 'token-secret' key are required.`;
+          break;
+        default:
+          break;
+      }
+
+      isFormValid = uniqueCheck && formValues.ResourcePool && formValues.Data.length >= 1 && isSecretDataValid;
+      return [isFormValid, secretWarningMessage];
+    }
+
+    isFormValid = formValues.Data.length > 0 && uniqueCheck && formValues.ResourcePool;
+    return [isFormValid, secretWarningMessage];
+  }
+
+  isFormValid = uniqueCheck && formValues.ResourcePool;
+  return [isFormValid, secretWarningMessage];
+}