The NiFiKop NiFi Kubernetes operator makes it easy to run Apache NiFi on Kubernetes. Apache NiFI is a free, open-source solution that support powerful and scalable directed graphs of data routing, transformation, and system mediation logic.
The nifi user controller hits a condition where a NifiUser is marked for deletion and the controller revokes certs and deletes secrets. However, it then immediately reconciles the certs & secrets again which re-creates them. The code which does this is here. This causes NifiCluster deletions in ArgoCD to hang and not delete cleanly because the operator is re-creating resources that had just been deleted.
I tested this by deploying a NifiCluster via ArgoCD. Once it came all the way up & certs had been generated, I deleted the cluster in ArgoCD. Prior to this change, the deletion would get hung up on Certificates/Secrets that the operator re-created. With this change, clusters are gracefully deleted by ArgoCD and re-created.
Why?
To correctly reconcile resources associated with NifiUser objects.
What's in this PR?
The nifi user controller hits a condition where a
NifiUseris marked for deletion and the controller revokes certs and deletes secrets. However, it then immediately reconciles the certs & secrets again which re-creates them. The code which does this is here. This causesNifiClusterdeletions in ArgoCD to hang and not delete cleanly because the operator is re-creating resources that had just been deleted.I tested this by deploying a
NifiClustervia ArgoCD. Once it came all the way up & certs had been generated, I deleted the cluster in ArgoCD. Prior to this change, the deletion would get hung up on Certificates/Secrets that the operator re-created. With this change, clusters are gracefully deleted by ArgoCD and re-created.Why?
To correctly reconcile resources associated with
NifiUserobjects.Checklist