Added the feature to use secrets of ListSnapshots

[bells17]

I modified to be able to use secrets in ListSnapshotRequest.

What type of PR is this?
/kind feature

What this PR does / why we need it:
I want to use secrets in ListSnapshots.

Which issue(s) this PR fixes:
Fixes #236
This is a new PR. old PR is #237.
(Because I misunderstood how to support VolumeSnapshotSecret in ListVolumes, I recreated a new PR...)

Special notes for your reviewer:

Does this PR introduce a user-facing change?:

Adds support for ListSnapshots secrets

[k8s-ci-robot]

Hi @bells17. Thanks for your PR.

I'm waiting for a kubernetes-csi member to verify that this patch is reasonable to test. If it is, they should reply with /ok-to-test on its own line. Until that is done, I will not automatically test new commits in this PR, but the usual testing commands by org members will still work. Regular contributors should join the org to skip this step.

Once the patch is verified, the new status will be reflected by the ok-to-test label.

I understand the commands that are listed here.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

[bells17]

@xing-yang I created a new PR. Could you review this PR?

[xing-yang]

/ok-to-test

[xing-yang]

You need to add "release-note" right after ``` above the release note text like this:
```release-note
This is the release note
```

[bells17]

Thank you, I added "release-note".

[xing-yang]

s/failed/Failed
Can you also print out the snapshot class name in the error message.

[xing-yang]

Missing "get":
Failed to get credentials for snapshot ...

[xing-yang]

It's good to have the "err" here as well. You can format a message and have it used in both logging and the return message.

[bells17]

@xing-yang Sorry,

You can format a message and have it used in both logging and the return message.

This means should I create a variable that store formatted error message, and hand over the variable to klog.Errorf argument and return value?
And should I apply the same to other parts as well?

[xing-yang]

Yes. So that means the message needs to start with lower case.

[bells17]

Um...Sorry I can't understand yet.
In this part, should I fix as below?

// Continue with deletion, as the secret may have already been deleted.
klog.Errorf("Failed to credentials for snapshot %s: %s", content.Name, err.Error())
return nil, fmt.Errorf("failed to credentials for snapshot %s: %s", content.Name, err.Error())

[xing-yang]

Yes, that is fine too.

s/to credentials/to get credentials

[bells17]

Thank you. I understand.

[xing-yang]

print err here as well.

[xing-yang]

add snapshot class name here too.

[xing-yang]

/Delete/List

[xing-yang]

I tested this PR to create a snapshot dynamically with secrets for delete and list snapshots. It failed with the following error:

Failed to create snapshot: failed to take snapshot of the volume, 4cbb0970-5024-11ea-9bdb-0242ac110003: "failed to remove CSI Parameters of prefixed keys: found unknown parameter key \"csi.storage.k8s.io/snapshotter-list-secret-name\" with reserved namespace csi.storage.k8s.io/"

In function RemovePrefixedParameters() in util.go, those new prefixed keys for list snapshots secret need to be added. Please add a unit test for create snapshot with unknown keys.

[bells17]

@xing-yang
#252 (comment)

In function RemovePrefixedParameters() in util.go, those new prefixed keys for list snapshots secret need to be added.

Sorry, it went over my head. I'll fix it.

Please add a unit test for create snapshot with unknown keys.

a unit test of checking unknown keys is already exists as below:

external-snapshotter/pkg/utils/util_test.go

Lines 125 to 129 in 3b76de4

	{
	name: "unknown prefixed var",
	params: map[string]string{csiParameterPrefix + "bim": "baz"},
	expectErr: true,
	},

So I think it's maybe better that append parameters that having "csi.storage.k8s.io/snapshotter-list-secret-namespace" and "csi.storage.k8s.io/snapshotter-list-secret-name" to the "default-class" for unit tests is better.

external-snapshotter/pkg/sidecar-controller/snapshot_delete_test.go

Lines 120 to 130 in 3b76de4

	{
	TypeMeta: metav1.TypeMeta{
	Kind: "VolumeSnapshotClass",
	},
	ObjectMeta: metav1.ObjectMeta{
	Name: defaultClass,
	Annotations: map[string]string{utils.IsDefaultSnapshotClassAnnotation: "true"},
	},
	Driver: mockDriverName,
	DeletionPolicy: crdv1.VolumeSnapshotContentDelete,
	},

What do you think about this idea?

[xing-yang]

Yes, your suggestion on unit test sounds good to me.

[bells17]

@xing-yang I fixed RemovePrefixedParameters() and improved log and error messages.
(Also I appended parameters to "default-class" for unit tests)

But I don't test below cases manually yet:

• create a snapshot dynamically with secrets for delete and list snapshots.
• import an existing snapshot with secrets for list.

I'll test above cases tomorrow.
(Because currently Japan now midnight 😅 I'm living in Japan.)

[xing-yang]

@bells17 no problem. Thanks for the heads up!

[bells17]

@xing-yang Hi, I tested below cases:

• create a snapshot dynamically with secrets for delete and list snapshots.
• import an existing snapshot with secrets for list.

I wonder if you could review this PR again.

[xing-yang]

Thanks @bells17 ! I'll take a look.

[xing-yang]

s/for snapshot/for snapshot content

[xing-yang]

Also can you use "%v" to print err?

[xing-yang]

Same as above

[xing-yang]

klog.Errorf("Failed to get snapshot class %s for snapshot content %s: %v", *content.Spec.VolumeSnapshotClassName, content.Name, err)

[xing-yang]

Same as above

[xing-yang]

s/for snapshot/for snapshot content

[xing-yang]

use %v to print err

[xing-yang]

same as above

[xing-yang]

Add a comment: // Prefixed name key for ListSnapshots secret

[xing-yang]

Add a comment: // Prefixed namespace key for ListSnapshots secret

[xing-yang]

Add a comment: // Prefixed name key for DeleteSnapshot secret

[xing-yang]

Add a comment: // Prefixed namespace key for DeleteSnapshot secret

[bells17]

@xing-yang Thank you for your review quickly and I'm sorry about that I have your commented log messages and error messages many times to improve these messages 😢
I reflected your comments.

[xing-yang]

Thanks for your work!
/lgtm
/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: bells17, xing-yang

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [xing-yang]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment