func()

in pkg/controllers/webhookconfig_controller.go [50:101]

• 40 lines of code
• 8 McCabe index (conditional complexity)

func (c *validatingWebhookConfigController) UpdateWebhookConfigCertificate(
	ctx context.Context, labelSelector string, cert []byte) bool {
	// Get all validating configs with matching label
	vwcList, err := c.vwcInterface.List(ctx, metav1.ListOptions{
		LabelSelector: labelSelector,
	})
	if err != nil {
		klog.Errorf("Failed to retrieve validating webhook config list : %s", err)
		return false
	}

	// Update them one by one
	for _, vwc := range vwcList.Items {
		// Make a copy of the webhook config to update
		newVwc := vwc.DeepCopy()

		// Update all webhooks' CA bundle
		for i := range newVwc.Webhooks {
			newVwc.Webhooks[i].ClientConfig.CABundle = cert
		}

		// Prepare a patch to be applied
		existingJSON, err := json.Marshal(vwc)
		if err != nil {
			klog.Error("Failed to encode existing validating webhook config : ", err)
			return false
		}
		updatedJSON, err := json.Marshal(newVwc)
		if err != nil {
			klog.Error("Failed to encode updated validating webhook config : ", err)
			return false
		}
		patch, err := strategicpatch.CreateTwoWayMergePatch(
			existingJSON, updatedJSON, admissionregistrationv1.ValidatingWebhookConfiguration{})
		if err != nil {
			klog.Error("Failed to generate the patch to be applied : ", err)
			return false
		}

		// Apply the patch
		if newVwc, err = c.vwcInterface.Patch(
			ctx, newVwc.Name, types.StrategicMergePatchType, patch, metav1.PatchOptions{}); err != nil {
			klog.Errorf("Failed to patch validating webhook config %s : %s",
				newVwc.Name, err)
			return false
		}

		klog.Infof("Successfully updated the validatingWebhookConfig '%s' with the certificate", newVwc.Name)
	}

	return true
}