CLOUDP-224541: Added terminationProtection flag (#1356)

Added terminationProtection flag & refactored deletion logic

---------

Co-authored-by: Sergiusz Urbaniak <sergiusz.urbaniak@gmail.com>

Author: igor-karpukhin

config/crd/bases/atlas.mongodb.com_atlasdeployments.yaml

@@ -390,6 +390,13 @@ spec:
                       type: object
                     maxItems: 50
                     type: array
+                  terminationProtectionEnabled:
+                    default: false
+                    description: Flag that indicates whether termination protection
+                      is enabled on the cluster. If set to true, MongoDB Cloud won't
+                      delete the cluster. If set to false, MongoDB Cloud will delete
+                      the cluster.
+                    type: boolean
                   versionReleaseSystem:
                     type: string
                 type: object
@@ -594,7 +601,10 @@ spec:
                     type: array
                   terminationProtectionEnabled:
                     default: false
-                    description: TerminationProtectionEnabled flag
+                    description: Flag that indicates whether termination protection
+                      is enabled on the cluster. If set to true, MongoDB Cloud won't
+                      delete the cluster. If set to false, MongoDB Cloud will delete
+                      the cluster.
                     type: boolean
                 required:
                 - name

config/crd/bases/atlas.mongodb.com_atlasprojects.yaml

@@ -157,7 +157,7 @@ spec:
                               types.
                             type: boolean
                           flowName:
-                            description: Flowdock flow namse in lower-case letters.
+                            description: Flowdock flow name in lower-case letters.
                             type: string
                           flowdockApiTokenRef:
                             description: The Flowdock personal API token. Populated
@@ -185,7 +185,7 @@ spec:
                               are sent. Populated for the SMS notifications type.
                             type: string
                           opsGenieApiKeyRef:
-                            description: Opsgenie API Key. Populated for the OPS_GENIE
+                            description: OpsGenie API Key. Populated for the OPS_GENIE
                               notifications type. If the key later becomes invalid,
                               Atlas sends an email to the project owner and eventually
                               removes the token.

pkg/api/v1/atlasdeployment_types.go

@@ -127,6 +127,9 @@ type AdvancedDeploymentSpec struct {
 	CustomZoneMapping []CustomZoneMapping `json:"customZoneMapping,omitempty"`
 	// +optional
 	ManagedNamespaces []ManagedNamespace `json:"managedNamespaces,omitempty"`
+	// Flag that indicates whether termination protection is enabled on the cluster. If set to true, MongoDB Cloud won't delete the cluster. If set to false, MongoDB Cloud will delete the cluster.
+	// +kubebuilder:default:=false
+	TerminationProtectionEnabled bool `json:"terminationProtectionEnabled,omitempty"`
 }
 
 // ToAtlas converts the AdvancedDeploymentSpec to native Atlas client ToAtlas format.
@@ -169,7 +172,7 @@ type ServerlessSpec struct {
 	// Serverless Backup Options
 	BackupOptions ServerlessBackupOptions `json:"backupOptions,omitempty"`
 
-	// TerminationProtectionEnabled flag
+	// Flag that indicates whether termination protection is enabled on the cluster. If set to true, MongoDB Cloud won't delete the cluster. If set to false, MongoDB Cloud will delete the cluster.
 	// +kubebuilder:default:=false
 	TerminationProtectionEnabled bool `json:"terminationProtectionEnabled,omitempty"`
 }

pkg/api/v1/atlasdeployment_types_test.go

@@ -33,7 +33,7 @@ func init() {
 	excludedClusterFieldsTheirs["replicationFactor"] = true
 
 	// Termination protection
-	excludedClusterFieldsTheirs["terminationProtectionEnabled"] = true
+	// excludedClusterFieldsTheirs["terminationProtectionEnabled"] = true
 
 	// Root cert type
 	excludedClusterFieldsTheirs["rootCertType"] = true

pkg/controller/atlasdatabaseuser/atlasdatabaseuser_controller.go

@@ -244,7 +244,7 @@ func (r *AtlasDatabaseUserReconciler) handleDeletion(
 		}
 	}
 
-	if customresource.IsResourceProtected(dbUser, r.ObjectDeletionProtection) {
+	if customresource.IsResourcePolicyKeepOrDefault(dbUser, r.ObjectDeletionProtection) {
 		log.Info("Not removing Atlas database user from Atlas as per configuration")
 
 		err := customresource.ManageFinalizer(ctx, r.Client, dbUser, customresource.UnsetFinalizer)

pkg/controller/atlasdatafederation/datafederation_controller.go

@@ -156,7 +156,7 @@ func (r *AtlasDataFederationReconciler) Reconcile(context context.Context, req c
 
 	if !dataFederation.GetDeletionTimestamp().IsZero() {
 		if customresource.HaveFinalizer(dataFederation, customresource.FinalizerLabel) {
-			if customresource.IsResourceProtected(dataFederation, r.ObjectDeletionProtection) {
+			if customresource.IsResourcePolicyKeepOrDefault(dataFederation, r.ObjectDeletionProtection) {
 				log.Info("Not removing AtlasDataFederation from Atlas as per configuration")
 			} else {
 				if err = r.deleteDataFederationFromAtlas(context, atlasClient, dataFederation, project, log); err != nil {

pkg/controller/atlasdeployment/atlasdeployment_controller.go

@@ -272,40 +272,51 @@ func (r *AtlasDeploymentReconciler) handleDeletion(
 				return true, workflow.Terminate(workflow.Internal, err.Error())
 			}
 		}
+
+		return false, workflow.OK()
 	}
 
-	if !deployment.GetDeletionTimestamp().IsZero() {
-		if customresource.HaveFinalizer(deployment, customresource.FinalizerLabel) {
-			if err := r.cleanupBindings(workflowCtx.Context, deployment); err != nil {
-				result := workflow.Terminate(workflow.Internal, err.Error())
-				log.Errorw("failed to cleanup deployment bindings (backups)", "error", err)
-				return true, result
-			}
-			isProtected := customresource.IsResourceProtected(deployment, r.ObjectDeletionProtection)
-			if isProtected {
-				log.Info("Not removing Atlas deployment from Atlas as per configuration")
-			} else {
-				if customresource.ResourceShouldBeLeftInAtlas(deployment) {
-					log.Infof("Not removing Atlas Deployment from Atlas as the '%s' annotation is set", customresource.ResourcePolicyAnnotation)
-				} else {
-					if err := r.deleteDeploymentFromAtlas(workflowCtx, log, project, deployment); err != nil {
-						log.Errorf("failed to remove deployment from Atlas: %s", err)
-						result := workflow.Terminate(workflow.Internal, err.Error())
-						workflowCtx.SetConditionFromResult(status.DeploymentReadyType, result)
-						return true, result
-					}
-				}
-			}
-			err := customresource.ManageFinalizer(workflowCtx.Context, r.Client, deployment, customresource.UnsetFinalizer)
-			if err != nil {
-				result := workflow.Terminate(workflow.Internal, err.Error())
-				log.Errorw("failed to remove finalizer", "error", err)
-				return true, result
-			}
-		}
+	if !customresource.HaveFinalizer(deployment, customresource.FinalizerLabel) {
 		return true, prevResult
 	}
-	return false, workflow.OK()
+
+	if err := r.cleanupBindings(workflowCtx.Context, deployment); err != nil {
+		result := workflow.Terminate(workflow.Internal, err.Error())
+		log.Errorw("failed to cleanup deployment bindings (backups)", "error", err)
+		return true, result
+	}
+
+	switch {
+	case customresource.IsResourcePolicyKeepOrDefault(deployment, r.ObjectDeletionProtection):
+		log.Info("Not removing Atlas deployment from Atlas as per configuration")
+	case customresource.IsResourcePolicyKeep(deployment):
+		log.Infof("Not removing Atlas deployment from Atlas as the '%s' annotation is set", customresource.ResourcePolicyAnnotation)
+	case isTerminationProtectionEnabled(deployment):
+		msg := fmt.Sprintf("Termination protection for %s deployment enabled. Deployment in Atlas won't be removed", deployment.GetName())
+		log.Info(msg)
+		r.EventRecorder.Event(deployment, "Warning", "AtlasDeploymentTermination", msg)
+	default:
+		if err := r.deleteDeploymentFromAtlas(workflowCtx, log, project, deployment); err != nil {
+			log.Errorf("failed to remove deployment from Atlas: %s", err)
+			result := workflow.Terminate(workflow.Internal, err.Error())
+			workflowCtx.SetConditionFromResult(status.DeploymentReadyType, result)
+			return true, result
+		}
+	}
+
+	if err := customresource.ManageFinalizer(workflowCtx.Context, r.Client, deployment, customresource.UnsetFinalizer); err != nil {
+		result := workflow.Terminate(workflow.Internal, err.Error())
+		log.Errorw("failed to remove finalizer", "error", err)
+		return true, result
+	}
+
+	return true, prevResult
+}
+
+func isTerminationProtectionEnabled(deployment *mdbv1.AtlasDeployment) bool {
+	return (deployment.Spec.DeploymentSpec != nil &&
+		deployment.Spec.DeploymentSpec.TerminationProtectionEnabled) || (deployment.Spec.ServerlessSpec != nil &&
+		deployment.Spec.ServerlessSpec.TerminationProtectionEnabled)
 }
 
 func (r *AtlasDeploymentReconciler) cleanupBindings(context context.Context, deployment *mdbv1.AtlasDeployment) error {

pkg/controller/atlasproject/atlasproject_controller.go

@@ -241,7 +241,7 @@ func (r *AtlasProjectReconciler) ensureDeletionFinalizer(workflowCtx *workflow.C
 
 	if !project.GetDeletionTimestamp().IsZero() {
 		if customresource.HaveFinalizer(project, customresource.FinalizerLabel) {
-			if customresource.IsResourceProtected(project, r.ObjectDeletionProtection) {
+			if customresource.IsResourcePolicyKeepOrDefault(project, r.ObjectDeletionProtection) {
 				log.Info("Not removing Project from Atlas as per configuration")
 				result = workflow.OK()
 			} else {

pkg/controller/atlasproject/team_reconciler.go

@@ -123,7 +123,7 @@ func (r *AtlasProjectReconciler) teamReconcile(
 		if !team.GetDeletionTimestamp().IsZero() {
 			if customresource.HaveFinalizer(team, customresource.FinalizerLabel) {
 				log.Warnf("team %s is assigned to a project. Remove it from all projects before delete", team.Name)
-			} else if customresource.IsResourceProtected(team, r.ObjectDeletionProtection) {
+			} else if customresource.IsResourcePolicyKeepOrDefault(team, r.ObjectDeletionProtection) {
 				log.Info("Not removing Team from Atlas as per configuration")
 				return workflow.OK().ReconcileResult(), nil
 			} else {

pkg/controller/customresource/customresource.go

@@ -83,8 +83,16 @@ func MarkReconciliationStarted(client client.Client, resource mdbv1.AtlasCustomR
 	return ctx
 }
 
-// ResourceShouldBeLeftInAtlas returns 'true' if the resource should not be removed from Atlas on K8s resource removal.
-func ResourceShouldBeLeftInAtlas(resource mdbv1.AtlasCustomResource) bool {
+func IsResourcePolicyKeepOrDefault(resource mdbv1.AtlasCustomResource, protectionFlag bool) bool {
+	if policy, ok := resource.GetAnnotations()[ResourcePolicyAnnotation]; ok {
+		return policy == ResourcePolicyKeep
+	}
+
+	return protectionFlag
+}
+
+// IsResourcePolicyKeep returns 'true' if the resource should not be removed from Atlas on K8s resource removal.
+func IsResourcePolicyKeep(resource mdbv1.AtlasCustomResource) bool {
 	if v, ok := resource.GetAnnotations()[ResourcePolicyAnnotation]; ok {
 		return v == ResourcePolicyKeep
 	}