networkservicemesh · denis-tingaikin · Jul 20, 2022 · Jun 10, 2022 · Jun 15, 2022 · Jun 16, 2022
diff --git a/internal/k8s/selfregister.go b/internal/k8s/selfregister.go
@@ -98,11 +98,35 @@ func (a *AdmissionWebhookRegisterClient) Register(ctx context.Context, c *config
 					{
 						Operations: []admissionv1.OperationType{admissionv1.Create, admissionv1.Update},
 						Rule: admissionv1.Rule{
-							APIGroups:   []string{"extensions"},
+							APIGroups:   []string{"apps"},
 							APIVersions: []string{"v1"},
 							Resources:   []string{"deployments"},
 						},
 					},
+					{
+						Operations: []admissionv1.OperationType{admissionv1.Create, admissionv1.Update},
+						Rule: admissionv1.Rule{
+							APIGroups:   []string{"apps"},
+							APIVersions: []string{"v1"},
+							Resources:   []string{"statefulsets"},
+						},
+					},
+					{
+						Operations: []admissionv1.OperationType{admissionv1.Create, admissionv1.Update},
+						Rule: admissionv1.Rule{
+							APIGroups:   []string{"apps"},
+							APIVersions: []string{"v1"},
+							Resources:   []string{"daemonsets"},
+						},
+					},
+					{
+						Operations: []admissionv1.OperationType{admissionv1.Create, admissionv1.Update},
+						Rule: admissionv1.Rule{
+							APIGroups:   []string{"apps"},
+							APIVersions: []string{"v1"},
+							Resources:   []string{"replicasets"},
+						},
+					},
 				},
 				SideEffects:             &sideEffects,
 				AdmissionReviewVersions: []string{"v1"},

diff --git a/main.go b/main.go
@@ -56,6 +56,12 @@ type admissionWebhookServer struct {
 	logger *zap.SugaredLogger
 }
 
+const (
+	deploymentKind string = "Deployment"
+	podKind        string = "Pod"
+	replicaSetKind string = "ReplicaSet"
+)
+
-const (
-	deploymentKind string = "Deployment"
-	podKind        string = "Pod"
-	replicaSetKind string = "ReplicaSet"
-)
-const (
-	deploymentKind string = "Deployment"
-	podKind        string = "Pod"
-	replicaSetKind string = "ReplicaSet"
-)
 func (s *admissionWebhookServer) Review(in *admissionv1.AdmissionRequest) *admissionv1.AdmissionResponse {
 	var resp = &admissionv1.AdmissionResponse{
 		UID: in.UID,
@@ -100,43 +106,68 @@ func (s *admissionWebhookServer) Review(in *admissionv1.AdmissionRequest) *admis
 
 func (s *admissionWebhookServer) unmarshal(in *admissionv1.AdmissionRequest) (p string, meta *v1.ObjectMeta, spec *corev1.PodSpec) {
 	var podSpec *corev1.PodSpec
-	var metaPtr *v1.ObjectMeta
+	var metaPtr, podMetaPtr *v1.ObjectMeta
 	var target interface{}
 	p = "/spec/template"
 	switch in.Kind.Kind {
-	case "Deployment":
+	case deploymentKind:
-	case deploymentKind:
+	case "Deployment":
-	case deploymentKind:
+	case "Deployment":
 		var deployment appsv1.Deployment
-		metaPtr = &deployment.Spec.Template.ObjectMeta
+		metaPtr = &deployment.ObjectMeta
+		podMetaPtr = &deployment.Spec.Template.ObjectMeta
 		podSpec = &deployment.Spec.Template.Spec
 		target = &deployment
-	case "Pod":
+	case podKind:
-	case podKind:
+	case "Pod":
-	case podKind:
+	case "Pod":
 		var pod corev1.Pod
 		p = ""
-		metaPtr = &pod.ObjectMeta
+		podMetaPtr = &pod.ObjectMeta
 		podSpec = &pod.Spec
 		target = &pod
 	case "DaemonSet":
 		var daemonSet appsv1.DaemonSet
-		metaPtr = &daemonSet.Spec.Template.ObjectMeta
+		metaPtr = &daemonSet.ObjectMeta
+		podMetaPtr = &daemonSet.Spec.Template.ObjectMeta
 		podSpec = &daemonSet.Spec.Template.Spec
 		target = &daemonSet
 	case "StatefulSet":
 		var statefulSet appsv1.StatefulSet
-		metaPtr = &statefulSet.Spec.Template.ObjectMeta
+		metaPtr = &statefulSet.ObjectMeta
+		podMetaPtr = &statefulSet.Spec.Template.ObjectMeta
 		podSpec = &statefulSet.Spec.Template.Spec
 		target = &statefulSet
+	case replicaSetKind:
+		var replicaSet appsv1.ReplicaSet
+		metaPtr = &replicaSet.ObjectMeta
+		podMetaPtr = &replicaSet.Spec.Template.ObjectMeta
+		podSpec = &replicaSet.Spec.Template.Spec
+		target = &replicaSet
+		defer func() {
+			s.logger.Info("Replicaset Defer method")
+			for _, o := range metaPtr.OwnerReferences {
+				if o.Kind == deploymentKind {
+					p, meta, spec = "", nil, nil
+				}
+			}
+		}()
+
 	default:
 		return "", nil, nil
 	}
-
 	if err := json.Unmarshal(in.Object.Raw, target); err != nil {
 		return "", nil, nil
 	}
-	p = path.Join("/", p)
-	if metaPtr.Labels == nil {
-		metaPtr.Labels = make(map[string]string)
+	if podMetaPtr.Labels == nil {
+		podMetaPtr.Labels = make(map[string]string)
 	}
-	return p, metaPtr, podSpec
+	// Annotations shouldn't be applied second time.
+	if in.Kind.Kind != podKind && metaPtr.Annotations != nil {
+		if podMetaPtr.Annotations == nil {
+			podMetaPtr.Annotations = metaPtr.Annotations
+		} else {
+			s.logger.Errorf("Malformed specification. Annotations can't be provided in several places.")
+		}
+	}
+
+	return path.Join("/", p), podMetaPtr, podSpec
 }
 
 func (s *admissionWebhookServer) createVolumesPatch(p string, volumes []corev1.Volume) jsonpatch.JsonPatchOperation {