Currently an attempt to create a DatabaseUser when a cluster resource does not exist results in an error as such:
Error from server (Forbidden): error when creating "sample.yaml": admission webhook "vdatabaseuser.kb.io" denied the request: spec.cluster: Not found: default/my-app-db
While reasonable, it creates issues with automations such as helm/kustomize (and by extension GitOps solutions) because it creates chicken and egg problem between DatabaseCluster and DatabaseUser resource.
If the check, rather than being done during admission, was done by operator itself during resource handling it would allow for the usual Kubernetes eventually consistent workflow with resources at some point arriving at desired state.
Currently an attempt to create a
DatabaseUserwhen a cluster resource does not exist results in an error as such:While reasonable, it creates issues with automations such as helm/kustomize (and by extension GitOps solutions) because it creates chicken and egg problem between
DatabaseClusterandDatabaseUserresource.If the check, rather than being done during admission, was done by operator itself during resource handling it would allow for the usual Kubernetes eventually consistent workflow with resources at some point arriving at desired state.