registry: use generated imagestream clientset to retrieve secrets

pkg/dockerregistry/server/blobdescriptorservice_test.go

@@ -48,12 +48,12 @@ func TestBlobDescriptorServiceIsApplied(t *testing.T) {
 	// to make other unit tests working
 	defer m.changeUnsetRepository(false)
 
-	fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 	testImage := registrytest.AddRandomImage(t, fos, "user", "app", "latest")
 
 	ctx := context.Background()
 	ctx = WithConfiguration(ctx, &srvconfig.Configuration{})
-	ctx = WithRegistryClient(ctx, registryclient.NewFakeRegistryClient(client, imageClient))
+	ctx = WithRegistryClient(ctx, registryclient.NewFakeRegistryClient(imageClient))
 	app := handlers.NewApp(ctx, &configuration.Configuration{
 		Loglevel: "debug",
 		Auth: map[string]configuration.Parameters{

pkg/dockerregistry/server/client/client.go

@@ -5,7 +5,6 @@ import (
 	authclientv1 "k8s.io/kubernetes/pkg/client/clientset_generated/clientset/typed/authorization/v1"
 	kcoreclient "k8s.io/kubernetes/pkg/client/clientset_generated/internalclientset/typed/core/internalversion"
 
-	osclient "github.com/openshift/origin/pkg/client"
 	"github.com/openshift/origin/pkg/cmd/util/clientcmd"
 	imageclientv1 "github.com/openshift/origin/pkg/image/generated/clientset/typed/image/v1"
 	userclientv1 "github.com/openshift/origin/pkg/user/generated/clientset/typed/user/v1"
@@ -36,22 +35,19 @@ type Interface interface {
 }
 
 type apiClient struct {
-	oc    osclient.Interface
 	kube  kcoreclient.CoreInterface
 	auth  authclientv1.AuthorizationV1Interface
 	image imageclientv1.ImageV1Interface
 	user  userclientv1.UserV1Interface
 }
 
 func newAPIClient(
-	c osclient.Interface,
 	kc kcoreclient.CoreInterface,
 	authClient authclientv1.AuthorizationV1Interface,
 	imageClient imageclientv1.ImageV1Interface,
 	userClient userclientv1.UserV1Interface,
 ) Interface {
 	return &apiClient{
-		oc:    c,
 		kube:  kc,
 		auth:  authClient,
 		image: imageClient,
@@ -88,9 +84,7 @@ func (c *apiClient) ImageStreamTags(namespace string) ImageStreamTagInterface {
 }
 
 func (c *apiClient) ImageStreamSecrets(namespace string) ImageStreamSecretInterface {
-	// FIXME: When we generate expansions for images clientset, replace this with
-	// the clientset and get rid of the legacy client alltogether.
-	return c.oc.ImageStreamSecrets(namespace)
+	return c.image.ImageStreams(namespace)
 }
 
 func (c *apiClient) LimitRanges(namespace string) LimitRangeInterface {
@@ -106,22 +100,21 @@ func (c *apiClient) SelfSubjectAccessReviews() SelfSubjectAccessReviewInterface
 }
 
 type registryClient struct {
-	kubeConfig      *restclient.Config
-	openshiftConfig *restclient.Config
+	kubeConfig *restclient.Config
 }
 
 // NewRegistryClient provides a new registry client.
+// TODO: Remove clientcmd dependency and move the parsing of required
+// environemtn variable to registry.
 func NewRegistryClient(config *clientcmd.Config) RegistryClient {
 	return &registryClient{
-		kubeConfig:      config.KubeConfig(),
-		openshiftConfig: config.OpenShiftConfig(),
+		kubeConfig: config.KubeConfig(),
 	}
 }
 
 // Client returns the authenticated client to use with the server.
 func (c *registryClient) Client() (Interface, error) {
 	return newAPIClient(
-		osclient.NewOrDie(c.openshiftConfig),
 		kcoreclient.NewForConfigOrDie(c.kubeConfig),
 		authclientv1.NewForConfigOrDie(c.kubeConfig),
 		imageclientv1.NewForConfigOrDie(c.kubeConfig),
@@ -132,14 +125,9 @@ func (c *registryClient) Client() (Interface, error) {
 // ClientFromToken returns the client based on the bearer token.
 func (c *registryClient) ClientFromToken(token string) (Interface, error) {
 	newClient := *c
-	newOpenshiftConfig := clientcmd.AnonymousClientConfig(newClient.openshiftConfig)
-	newOpenshiftConfig.BearerToken = token
-
-	newKubeconfig := *newClient.kubeConfig
+	newKubeconfig := restclient.AnonymousClientConfig(newClient.kubeConfig)
 	newKubeconfig.BearerToken = token
-
-	newClient.kubeConfig = &newKubeconfig
-	newClient.openshiftConfig = &newOpenshiftConfig
+	newClient.kubeConfig = newKubeconfig
 
 	return newClient.Client()
 }

pkg/dockerregistry/server/client/interfaces.go

@@ -3,6 +3,7 @@ package client
 import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	kapi "k8s.io/kubernetes/pkg/api"
+	kapiv1 "k8s.io/kubernetes/pkg/api/v1"
 	kcoreclient "k8s.io/kubernetes/pkg/client/clientset_generated/internalclientset/typed/core/internalversion"
 
 	imageapiv1 "github.com/openshift/origin/pkg/image/apis/image/v1"
@@ -103,8 +104,10 @@ type ImageStreamTagInterface interface {
 	Delete(name string, options *metav1.DeleteOptions) error
 }
 
+var _ ImageStreamSecretInterface = imageclientv1.ImageStreamInterface(nil)
+
 type ImageStreamSecretInterface interface {
-	Secrets(name string, options metav1.ListOptions) (*kapi.SecretList, error)
+	Secrets(name string, options metav1.ListOptions) (*kapiv1.SecretList, error)
 }
 
 var _ LimitRangeInterface = kcoreclient.LimitRangeInterface(nil)

pkg/dockerregistry/server/client/test.go

@@ -3,29 +3,26 @@ package client
 import (
 	kcoreclient "k8s.io/kubernetes/pkg/client/clientset_generated/internalclientset/typed/core/internalversion"
 
-	"github.com/openshift/origin/pkg/client"
 	imageclientv1 "github.com/openshift/origin/pkg/image/generated/clientset/typed/image/v1"
 )
 
 type fakeRegistryClient struct {
 	RegistryClient
 
-	client client.Interface
 	images imageclientv1.ImageV1Interface
 }
 
-func NewFakeRegistryClient(c client.Interface, imageclient imageclientv1.ImageV1Interface) RegistryClient {
+func NewFakeRegistryClient(imageclient imageclientv1.ImageV1Interface) RegistryClient {
 	return &fakeRegistryClient{
 		RegistryClient: &registryClient{},
-		client:         c,
 		images:         imageclient,
 	}
 }
 
 func (c *fakeRegistryClient) Client() (Interface, error) {
-	return newAPIClient(c.client, nil, nil, c.images, nil), nil
+	return newAPIClient(nil, nil, c.images, nil), nil
 }
 
-func NewFakeRegistryAPIClient(c client.Interface, kc kcoreclient.CoreInterface, imageclient imageclientv1.ImageV1Interface) Interface {
-	return newAPIClient(c, nil, nil, imageclient, nil)
+func NewFakeRegistryAPIClient(kc kcoreclient.CoreInterface, imageclient imageclientv1.ImageV1Interface) Interface {
+	return newAPIClient(nil, nil, imageclient, nil)
 }

pkg/dockerregistry/server/manifestservice_test.go

@@ -19,11 +19,11 @@ func TestManifestServiceExists(t *testing.T) {
 	repo := "app"
 	tag := "latest"
 
-	fos, client, imageClient := testutil.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := testutil.NewFakeOpenShiftWithClient()
 	testImage := testutil.AddRandomImage(t, fos, namespace, repo, tag)
 
 	r := newTestRepository(t, namespace, repo, testRepositoryOptions{
-		client: registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+		client: registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 	})
 
 	ms := &manifestService{
@@ -51,7 +51,7 @@ func TestManifestServiceGetDoesntChangeDockerImageReference(t *testing.T) {
 	repo := "app"
 	tag := "latest"
 
-	fos, client, imageClient := testutil.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := testutil.NewFakeOpenShiftWithClient()
 
 	testImage, err := testutil.CreateRandomImage(namespace, repo)
 	if err != nil {
@@ -77,7 +77,7 @@ func TestManifestServiceGetDoesntChangeDockerImageReference(t *testing.T) {
 	}
 
 	r := newTestRepository(t, namespace, repo, testRepositoryOptions{
-		client: registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+		client: registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 	})
 
 	ms := &manifestService{
@@ -113,7 +113,7 @@ func TestManifestServicePut(t *testing.T) {
 	repo := "app"
 	repoName := fmt.Sprintf("%s/%s", namespace, repo)
 
-	_, client, imageClient := testutil.NewFakeOpenShiftWithClient()
+	_, _, imageClient := testutil.NewFakeOpenShiftWithClient()
 
 	bs := newTestBlobStore(map[digest.Digest][]byte{
 		"test:1": []byte("{}"),
@@ -122,7 +122,7 @@ func TestManifestServicePut(t *testing.T) {
 	tms := newTestManifestService(repoName, nil)
 
 	r := newTestRepository(t, namespace, repo, testRepositoryOptions{
-		client: registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+		client: registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 		blobs:  bs,
 	})
 
@@ -146,7 +146,7 @@ func TestManifestServicePut(t *testing.T) {
 		},
 	}
 
-	osclient, err := registryclient.NewFakeRegistryClient(client, imageClient).Client()
+	osclient, err := registryclient.NewFakeRegistryClient(imageClient).Client()
 	if err != nil {
 		t.Fatal(err)
 	}
@@ -161,7 +161,7 @@ func TestManifestServicePut(t *testing.T) {
 
 	// recreate repository to reset cached image stream
 	r = newTestRepository(t, namespace, repo, testRepositoryOptions{
-		client: registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+		client: registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 		blobs:  bs,
 	})
 

pkg/dockerregistry/server/pullthroughblobstore_test.go

@@ -46,7 +46,7 @@ func TestPullthroughServeBlob(t *testing.T) {
 	os.Setenv("OPENSHIFT_DEFAULT_REGISTRY", serverURL.Host)
 	testImage.DockerImageReference = fmt.Sprintf("%s/%s@%s", serverURL.Host, repoName, testImage.Name)
 
-	fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 	registrytest.AddImageStream(t, fos, namespace, name, map[string]string{
 		imageapi.InsecureRepositoryAnnotation: "true",
 	})
@@ -137,7 +137,7 @@ func TestPullthroughServeBlob(t *testing.T) {
 
 		ctx := WithTestPassthroughToUpstream(context.Background(), false)
 		repo := newTestRepository(t, namespace, name, testRepositoryOptions{
-			client:            registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+			client:            registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 			enablePullThrough: true,
 		})
 		ptbs := &pullthroughBlobStore{
@@ -278,7 +278,7 @@ func TestPullthroughServeNotSeekableBlob(t *testing.T) {
 	}
 	testImage.DockerImageReference = fmt.Sprintf("%s/%s@%s", serverURL.Host, repoName, testImage.Name)
 
-	fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 	registrytest.AddImageStream(t, fos, namespace, name, map[string]string{
 		imageapi.InsecureRepositoryAnnotation: "true",
 	})
@@ -288,7 +288,7 @@ func TestPullthroughServeNotSeekableBlob(t *testing.T) {
 
 	ctx := WithTestPassthroughToUpstream(context.Background(), false)
 	repo := newTestRepository(t, namespace, name, testRepositoryOptions{
-		client:            registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+		client:            registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 		enablePullThrough: true,
 	})
 	ptbs := &pullthroughBlobStore{
@@ -598,7 +598,7 @@ func TestPullthroughServeBlobInsecure(t *testing.T) {
 			expectedBytesServed:   int64(m1img.DockerImageLayers[0].LayerSize),
 		},
 	} {
-		fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+		fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 
 		tc.fakeOpenShiftInit(fos)
 
@@ -607,7 +607,7 @@ func TestPullthroughServeBlobInsecure(t *testing.T) {
 		ctx := WithTestPassthroughToUpstream(context.Background(), false)
 
 		repo := newTestRepository(t, namespace, repo1, testRepositoryOptions{
-			client:            registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+			client:            registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 			enablePullThrough: true,
 		})
 

pkg/dockerregistry/server/pullthroughmanifestservice_test.go

@@ -93,7 +93,7 @@ func TestPullthroughManifests(t *testing.T) {
 	image.DockerImageReference = fmt.Sprintf("%s/%s/%s@%s", serverURL.Host, namespace, repo, image.Name)
 	image.DockerImageManifest = ""
 
-	fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 	registrytest.AddImageStream(t, fos, namespace, repo, map[string]string{
 		imageapi.InsecureRepositoryAnnotation: "true",
 	})
@@ -136,7 +136,7 @@ func TestPullthroughManifests(t *testing.T) {
 		localManifestService := newTestManifestService(repoName, tc.localData)
 
 		repo := newTestRepository(t, namespace, repo, testRepositoryOptions{
-			client:            registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+			client:            registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 			enablePullThrough: true,
 		})
 
@@ -351,15 +351,15 @@ func TestPullthroughManifestInsecure(t *testing.T) {
 			},
 		},
 	} {
-		fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+		fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 
 		tc.fakeOpenShiftInit(fos)
 
 		localManifestService := newTestManifestService(repoName, tc.localData)
 
 		ctx := WithTestPassthroughToUpstream(context.Background(), false)
 		repo := newTestRepository(t, namespace, repo, testRepositoryOptions{
-			client:            registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+			client:            registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 			enablePullThrough: true,
 		})
 		ctx = withRepository(ctx, repo)
@@ -459,7 +459,7 @@ func TestPullthroughManifestDockerReference(t *testing.T) {
 	image2 := *img
 	image2.DockerImageReference = dockerImageReference(server2, "foo/bar")
 
-	fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 	registrytest.AddImageStream(t, fos, namespace, repo1, map[string]string{
 		imageapi.InsecureRepositoryAnnotation: "true",
 	})
@@ -493,7 +493,7 @@ func TestPullthroughManifestDockerReference(t *testing.T) {
 		}
 
 		r := newTestRepository(t, namespace, tc.repoName, testRepositoryOptions{
-			client:            registryclient.NewFakeRegistryAPIClient(client, nil, imageClient),
+			client:            registryclient.NewFakeRegistryAPIClient(nil, imageClient),
 			enablePullThrough: true,
 		})
 

pkg/dockerregistry/server/repositorymiddleware_test.go

@@ -297,7 +297,7 @@ func TestRepositoryBlobStat(t *testing.T) {
 			ctx = withDeferredErrors(ctx, tc.deferredErrors)
 		}
 
-		fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+		fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 
 		for _, is := range tc.imageStreams {
 			_, err = fos.CreateImageStream(is.Namespace, &is)
@@ -313,7 +313,7 @@ func TestRepositoryBlobStat(t *testing.T) {
 			}
 		}
 
-		reg, err := newTestRegistry(ctx, registryclient.NewFakeRegistryAPIClient(client, nil, imageClient), driver, defaultBlobRepositoryCacheTTL, tc.pullthrough, true)
+		reg, err := newTestRegistry(ctx, registryclient.NewFakeRegistryAPIClient(nil, imageClient), driver, defaultBlobRepositoryCacheTTL, tc.pullthrough, true)
 		if err != nil {
 			t.Errorf("[%s] unexpected error: %v", tc.name, err)
 			continue
@@ -375,11 +375,11 @@ func TestRepositoryBlobStatCacheEviction(t *testing.T) {
 		t.Fatal(err)
 	}
 
-	fos, client, imageClient := registrytest.NewFakeOpenShiftWithClient()
+	fos, _, imageClient := registrytest.NewFakeOpenShiftWithClient()
 	registrytest.AddImageStream(t, fos, "nm", "is", nil)
 	registrytest.AddImage(t, fos, testImage, "nm", "is", "latest")
 
-	reg, err := newTestRegistry(ctx, registryclient.NewFakeRegistryAPIClient(client, nil, imageClient), driver, blobRepoCacheTTL, false, false)
+	reg, err := newTestRegistry(ctx, registryclient.NewFakeRegistryAPIClient(nil, imageClient), driver, blobRepoCacheTTL, false, false)
 	if err != nil {
 		t.Fatalf("unexpected error: %v", err)
 	}