PyPI - qontract-reconcile - Versions diffs - 0.10.0__py3-none-any.whl → 0.10.1.dev1203__py3-none-any.whl - Mend

qontract-reconcile 0.10.0py3-none-any.whl → 0.10.1.dev1203py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (844) hide show

qontract_reconcile-0.10.1.dev1203.dist-info/METADATA +500 -0
qontract_reconcile-0.10.1.dev1203.dist-info/RECORD +771 -0
{qontract_reconcile-0.10.0.dist-info → qontract_reconcile-0.10.1.dev1203.dist-info}/WHEEL +1 -2
{qontract_reconcile-0.10.0.dist-info → qontract_reconcile-0.10.1.dev1203.dist-info}/entry_points.txt +4 -2
reconcile/acs_notifiers.py +126 -0
reconcile/acs_policies.py +243 -0
reconcile/acs_rbac.py +596 -0
reconcile/aus/advanced_upgrade_service.py +621 -8
reconcile/aus/aus_label_source.py +115 -0
reconcile/aus/base.py +1053 -353
reconcile/{utils → aus}/cluster_version_data.py +27 -12
reconcile/aus/healthchecks.py +77 -0
reconcile/aus/metrics.py +158 -0
reconcile/aus/models.py +245 -5
reconcile/aus/node_pool_spec.py +35 -0
reconcile/aus/ocm_addons_upgrade_scheduler_org.py +225 -110
reconcile/aus/ocm_upgrade_scheduler.py +76 -71
reconcile/aus/ocm_upgrade_scheduler_org.py +81 -23
reconcile/aus/version_gate_approver.py +204 -0
reconcile/aus/version_gates/__init__.py +12 -0
reconcile/aus/version_gates/handler.py +33 -0
reconcile/aus/version_gates/ingress_gate_handler.py +32 -0
reconcile/aus/version_gates/ocp_gate_handler.py +26 -0
reconcile/aus/version_gates/sts_version_gate_handler.py +100 -0
reconcile/aws_account_manager/README.md +5 -0
reconcile/aws_account_manager/integration.py +373 -0
reconcile/aws_account_manager/merge_request_manager.py +114 -0
reconcile/aws_account_manager/metrics.py +39 -0
reconcile/aws_account_manager/reconciler.py +403 -0
reconcile/aws_account_manager/utils.py +41 -0
reconcile/aws_ami_cleanup/integration.py +273 -0
reconcile/aws_ami_share.py +18 -14
reconcile/aws_cloudwatch_log_retention/integration.py +253 -0
reconcile/aws_iam_keys.py +1 -1
reconcile/aws_iam_password_reset.py +56 -20
reconcile/aws_saml_idp/integration.py +204 -0
reconcile/aws_saml_roles/integration.py +322 -0
reconcile/aws_support_cases_sos.py +2 -2
reconcile/aws_version_sync/integration.py +430 -0
reconcile/aws_version_sync/merge_request_manager/merge_request.py +156 -0
reconcile/aws_version_sync/merge_request_manager/merge_request_manager.py +160 -0
reconcile/aws_version_sync/utils.py +64 -0
reconcile/blackbox_exporter_endpoint_monitoring.py +2 -5
reconcile/change_owners/README.md +34 -0
reconcile/change_owners/approver.py +7 -9
reconcile/change_owners/bundle.py +134 -9
reconcile/change_owners/change_log_tracking.py +236 -0
reconcile/change_owners/change_owners.py +204 -194
reconcile/change_owners/change_types.py +183 -265
reconcile/change_owners/changes.py +488 -0
reconcile/change_owners/decision.py +120 -41
reconcile/change_owners/diff.py +63 -92
reconcile/change_owners/implicit_ownership.py +19 -16
reconcile/change_owners/self_service_roles.py +158 -35
reconcile/change_owners/tester.py +20 -18
reconcile/checkpoint.py +4 -6
reconcile/cli.py +1523 -242
reconcile/closedbox_endpoint_monitoring_base.py +10 -17
reconcile/cluster_auth_rhidp/integration.py +257 -0
reconcile/cluster_deployment_mapper.py +2 -5
reconcile/cna/assets/asset.py +4 -7
reconcile/cna/assets/null.py +2 -5
reconcile/cna/integration.py +2 -3
reconcile/cna/state.py +6 -9
reconcile/dashdotdb_base.py +31 -10
reconcile/dashdotdb_cso.py +3 -6
reconcile/dashdotdb_dora.py +530 -0
reconcile/dashdotdb_dvo.py +10 -13
reconcile/dashdotdb_slo.py +75 -19
reconcile/database_access_manager.py +753 -0
reconcile/deadmanssnitch.py +207 -0
reconcile/dynatrace_token_provider/dependencies.py +69 -0
reconcile/dynatrace_token_provider/integration.py +656 -0
reconcile/dynatrace_token_provider/metrics.py +62 -0
reconcile/dynatrace_token_provider/model.py +14 -0
reconcile/dynatrace_token_provider/ocm.py +140 -0
reconcile/dynatrace_token_provider/validate.py +48 -0
reconcile/endpoints_discovery/integration.py +348 -0
reconcile/endpoints_discovery/merge_request.py +96 -0
reconcile/endpoints_discovery/merge_request_manager.py +178 -0
reconcile/external_resources/aws.py +204 -0
reconcile/external_resources/factories.py +163 -0
reconcile/external_resources/integration.py +194 -0
reconcile/external_resources/integration_secrets_sync.py +47 -0
reconcile/external_resources/manager.py +405 -0
reconcile/external_resources/meta.py +17 -0
reconcile/external_resources/metrics.py +95 -0
reconcile/external_resources/model.py +350 -0
reconcile/external_resources/reconciler.py +265 -0
reconcile/external_resources/secrets_sync.py +465 -0
reconcile/external_resources/state.py +258 -0
reconcile/gabi_authorized_users.py +19 -11
reconcile/gcr_mirror.py +43 -34
reconcile/github_org.py +4 -6
reconcile/github_owners.py +1 -1
reconcile/github_repo_invites.py +2 -5
reconcile/gitlab_fork_compliance.py +14 -13
reconcile/gitlab_housekeeping.py +185 -91
reconcile/gitlab_labeler.py +15 -14
reconcile/gitlab_members.py +126 -120
reconcile/gitlab_owners.py +53 -66
reconcile/gitlab_permissions.py +167 -6
reconcile/glitchtip/README.md +150 -0
reconcile/glitchtip/integration.py +99 -51
reconcile/glitchtip/reconciler.py +99 -70
reconcile/glitchtip_project_alerts/__init__.py +0 -0
reconcile/glitchtip_project_alerts/integration.py +333 -0
reconcile/glitchtip_project_dsn/integration.py +43 -43
reconcile/gql_definitions/acs/__init__.py +0 -0
reconcile/gql_definitions/acs/acs_instances.py +83 -0
reconcile/gql_definitions/acs/acs_policies.py +239 -0
reconcile/gql_definitions/acs/acs_rbac.py +111 -0
reconcile/gql_definitions/advanced_upgrade_service/aus_clusters.py +46 -8
reconcile/gql_definitions/advanced_upgrade_service/aus_organization.py +38 -8
reconcile/gql_definitions/app_interface_metrics_exporter/__init__.py +0 -0
reconcile/gql_definitions/app_interface_metrics_exporter/onboarding_status.py +61 -0
reconcile/gql_definitions/aws_account_manager/__init__.py +0 -0
reconcile/gql_definitions/aws_account_manager/aws_accounts.py +177 -0
reconcile/gql_definitions/aws_ami_cleanup/__init__.py +0 -0
reconcile/gql_definitions/aws_ami_cleanup/aws_accounts.py +161 -0
reconcile/gql_definitions/aws_saml_idp/__init__.py +0 -0
reconcile/gql_definitions/aws_saml_idp/aws_accounts.py +117 -0
reconcile/gql_definitions/aws_saml_roles/__init__.py +0 -0
reconcile/gql_definitions/aws_saml_roles/aws_accounts.py +117 -0
reconcile/gql_definitions/aws_saml_roles/roles.py +97 -0
reconcile/gql_definitions/aws_version_sync/__init__.py +0 -0
reconcile/gql_definitions/aws_version_sync/clusters.py +83 -0
reconcile/gql_definitions/aws_version_sync/namespaces.py +143 -0
reconcile/gql_definitions/change_owners/queries/change_types.py +16 -29
reconcile/gql_definitions/change_owners/queries/self_service_roles.py +45 -11
reconcile/gql_definitions/cluster_auth_rhidp/__init__.py +0 -0
reconcile/gql_definitions/cluster_auth_rhidp/clusters.py +128 -0
reconcile/gql_definitions/cna/queries/cna_provisioners.py +6 -8
reconcile/gql_definitions/cna/queries/cna_resources.py +3 -5
reconcile/gql_definitions/common/alerting_services_settings.py +2 -2
reconcile/gql_definitions/common/app_code_component_repos.py +9 -5
reconcile/gql_definitions/{glitchtip/glitchtip_settings.py → common/app_interface_custom_messages.py} +14 -16
reconcile/gql_definitions/common/app_interface_dms_settings.py +86 -0
reconcile/gql_definitions/common/app_interface_repo_settings.py +2 -2
reconcile/gql_definitions/common/app_interface_state_settings.py +3 -5
reconcile/gql_definitions/common/app_interface_vault_settings.py +3 -5
reconcile/gql_definitions/common/app_quay_repos_escalation_policies.py +120 -0
reconcile/gql_definitions/common/apps.py +72 -0
reconcile/gql_definitions/common/aws_vpc_requests.py +109 -0
reconcile/gql_definitions/common/aws_vpcs.py +84 -0
reconcile/gql_definitions/common/clusters.py +120 -254
reconcile/gql_definitions/common/clusters_minimal.py +11 -35
reconcile/gql_definitions/common/clusters_with_dms.py +72 -0
reconcile/gql_definitions/common/clusters_with_peering.py +70 -98
reconcile/gql_definitions/common/github_orgs.py +2 -2
reconcile/gql_definitions/common/jira_settings.py +68 -0
reconcile/gql_definitions/common/jiralert_settings.py +68 -0
reconcile/gql_definitions/common/namespaces.py +74 -32
reconcile/gql_definitions/common/namespaces_minimal.py +4 -10
reconcile/gql_definitions/common/ocm_env_telemeter.py +95 -0
reconcile/gql_definitions/common/ocm_environments.py +4 -2
reconcile/gql_definitions/common/pagerduty_instances.py +5 -5
reconcile/gql_definitions/common/pgp_reencryption_settings.py +5 -11
reconcile/gql_definitions/common/pipeline_providers.py +45 -90
reconcile/gql_definitions/common/quay_instances.py +64 -0
reconcile/gql_definitions/common/quay_orgs.py +68 -0
reconcile/gql_definitions/common/reserved_networks.py +94 -0
reconcile/gql_definitions/common/saas_files.py +133 -95
reconcile/gql_definitions/common/saas_target_namespaces.py +41 -26
reconcile/gql_definitions/common/saasherder_settings.py +2 -2
reconcile/gql_definitions/common/slack_workspaces.py +62 -0
reconcile/gql_definitions/common/smtp_client_settings.py +2 -2
reconcile/gql_definitions/common/state_aws_account.py +77 -0
reconcile/gql_definitions/common/users.py +3 -2
reconcile/gql_definitions/cost_report/__init__.py +0 -0
reconcile/gql_definitions/cost_report/app_names.py +68 -0
reconcile/gql_definitions/cost_report/cost_namespaces.py +86 -0
reconcile/gql_definitions/cost_report/settings.py +77 -0
reconcile/gql_definitions/dashdotdb_slo/slo_documents_query.py +42 -12
reconcile/gql_definitions/dynatrace_token_provider/__init__.py +0 -0
reconcile/gql_definitions/dynatrace_token_provider/dynatrace_bootstrap_tokens.py +79 -0
reconcile/gql_definitions/dynatrace_token_provider/token_specs.py +84 -0
reconcile/gql_definitions/endpoints_discovery/__init__.py +0 -0
reconcile/gql_definitions/endpoints_discovery/namespaces.py +127 -0
reconcile/gql_definitions/external_resources/__init__.py +0 -0
reconcile/gql_definitions/external_resources/aws_accounts.py +73 -0
reconcile/gql_definitions/external_resources/external_resources_modules.py +78 -0
reconcile/gql_definitions/external_resources/external_resources_namespaces.py +1111 -0
reconcile/gql_definitions/external_resources/external_resources_settings.py +98 -0
reconcile/gql_definitions/fragments/aus_organization.py +34 -39
reconcile/gql_definitions/fragments/aws_account_common.py +62 -0
reconcile/gql_definitions/fragments/aws_account_managed.py +57 -0
reconcile/gql_definitions/fragments/aws_account_sso.py +35 -0
reconcile/gql_definitions/fragments/aws_infra_management_account.py +2 -2
reconcile/gql_definitions/fragments/aws_vpc.py +47 -0
reconcile/gql_definitions/fragments/aws_vpc_request.py +65 -0
reconcile/gql_definitions/fragments/aws_vpc_request_subnet.py +29 -0
reconcile/gql_definitions/fragments/deplopy_resources.py +7 -7
reconcile/gql_definitions/fragments/disable.py +28 -0
reconcile/gql_definitions/fragments/jumphost_common_fields.py +2 -2
reconcile/gql_definitions/fragments/membership_source.py +47 -0
reconcile/gql_definitions/fragments/minimal_ocm_organization.py +29 -0
reconcile/gql_definitions/fragments/oc_connection_cluster.py +4 -9
reconcile/gql_definitions/fragments/ocm_environment.py +5 -5
reconcile/gql_definitions/fragments/pipeline_provider_retention.py +30 -0
reconcile/gql_definitions/fragments/prometheus_instance.py +48 -0
reconcile/gql_definitions/fragments/resource_limits_requirements.py +29 -0
reconcile/gql_definitions/fragments/{resource_requirements.py → resource_requests_requirements.py} +3 -3
reconcile/gql_definitions/fragments/resource_values.py +2 -2
reconcile/gql_definitions/fragments/saas_target_namespace.py +55 -12
reconcile/gql_definitions/fragments/serviceaccount_token.py +38 -0
reconcile/gql_definitions/fragments/terraform_state.py +36 -0
reconcile/gql_definitions/fragments/upgrade_policy.py +5 -3
reconcile/gql_definitions/fragments/user.py +3 -2
reconcile/gql_definitions/fragments/vault_secret.py +2 -2
reconcile/gql_definitions/gitlab_members/gitlab_instances.py +6 -2
reconcile/gql_definitions/gitlab_members/permissions.py +3 -5
reconcile/gql_definitions/glitchtip/glitchtip_instance.py +16 -2
reconcile/gql_definitions/glitchtip/glitchtip_project.py +22 -23
reconcile/gql_definitions/glitchtip_project_alerts/__init__.py +0 -0
reconcile/gql_definitions/glitchtip_project_alerts/glitchtip_project.py +173 -0
reconcile/gql_definitions/integrations/integrations.py +62 -45
reconcile/gql_definitions/introspection.json +51176 -0
reconcile/gql_definitions/jenkins_configs/jenkins_configs.py +13 -5
reconcile/gql_definitions/jenkins_configs/jenkins_instances.py +79 -0
reconcile/gql_definitions/jira/__init__.py +0 -0
reconcile/gql_definitions/jira/jira_servers.py +80 -0
reconcile/gql_definitions/jira_permissions_validator/__init__.py +0 -0
reconcile/gql_definitions/jira_permissions_validator/jira_boards_for_permissions_validator.py +131 -0
reconcile/gql_definitions/jumphosts/jumphosts.py +3 -5
reconcile/gql_definitions/ldap_groups/__init__.py +0 -0
reconcile/gql_definitions/ldap_groups/roles.py +111 -0
reconcile/gql_definitions/ldap_groups/settings.py +79 -0
reconcile/gql_definitions/maintenance/__init__.py +0 -0
reconcile/gql_definitions/maintenance/maintenances.py +101 -0
reconcile/gql_definitions/membershipsources/__init__.py +0 -0
reconcile/gql_definitions/membershipsources/roles.py +112 -0
reconcile/gql_definitions/ocm_labels/__init__.py +0 -0
reconcile/gql_definitions/ocm_labels/clusters.py +112 -0
reconcile/gql_definitions/ocm_labels/organizations.py +78 -0
reconcile/gql_definitions/ocm_subscription_labels/__init__.py +0 -0
reconcile/gql_definitions/openshift_cluster_bots/__init__.py +0 -0
reconcile/gql_definitions/openshift_cluster_bots/clusters.py +126 -0
reconcile/gql_definitions/openshift_groups/managed_groups.py +2 -2
reconcile/gql_definitions/openshift_groups/managed_roles.py +3 -2
reconcile/gql_definitions/openshift_serviceaccount_tokens/__init__.py +0 -0
reconcile/gql_definitions/openshift_serviceaccount_tokens/tokens.py +132 -0
reconcile/gql_definitions/quay_membership/quay_membership.py +3 -5
reconcile/gql_definitions/rhidp/__init__.py +0 -0
reconcile/gql_definitions/rhidp/organizations.py +96 -0
reconcile/gql_definitions/service_dependencies/jenkins_instance_fragment.py +2 -2
reconcile/gql_definitions/service_dependencies/service_dependencies.py +9 -31
reconcile/gql_definitions/sharding/aws_accounts.py +2 -2
reconcile/gql_definitions/sharding/ocm_organization.py +63 -0
reconcile/gql_definitions/skupper_network/site_controller_template.py +2 -2
reconcile/gql_definitions/skupper_network/skupper_networks.py +12 -38
reconcile/gql_definitions/slack_usergroups/clusters.py +2 -2
reconcile/gql_definitions/slack_usergroups/permissions.py +8 -15
reconcile/gql_definitions/slack_usergroups/users.py +3 -2
reconcile/gql_definitions/slo_documents/__init__.py +0 -0
reconcile/gql_definitions/slo_documents/slo_documents.py +142 -0
reconcile/gql_definitions/status_board/__init__.py +0 -0
reconcile/gql_definitions/status_board/status_board.py +163 -0
reconcile/gql_definitions/statuspage/statuspages.py +56 -7
reconcile/gql_definitions/templating/__init__.py +0 -0
reconcile/gql_definitions/templating/template_collection.py +130 -0
reconcile/gql_definitions/templating/templates.py +108 -0
reconcile/gql_definitions/terraform_cloudflare_dns/app_interface_cloudflare_dns_settings.py +4 -8
reconcile/gql_definitions/terraform_cloudflare_dns/terraform_cloudflare_zones.py +8 -8
reconcile/gql_definitions/terraform_cloudflare_resources/terraform_cloudflare_accounts.py +6 -8
reconcile/gql_definitions/terraform_cloudflare_resources/terraform_cloudflare_resources.py +45 -56
reconcile/gql_definitions/terraform_cloudflare_users/app_interface_setting_cloudflare_and_vault.py +4 -8
reconcile/gql_definitions/terraform_cloudflare_users/terraform_cloudflare_roles.py +4 -8
reconcile/gql_definitions/terraform_init/__init__.py +0 -0
reconcile/gql_definitions/terraform_init/aws_accounts.py +93 -0
reconcile/gql_definitions/terraform_repo/__init__.py +0 -0
reconcile/gql_definitions/terraform_repo/terraform_repo.py +141 -0
reconcile/gql_definitions/terraform_resources/database_access_manager.py +158 -0
reconcile/gql_definitions/terraform_resources/terraform_resources_namespaces.py +153 -162
reconcile/gql_definitions/terraform_tgw_attachments/__init__.py +0 -0
reconcile/gql_definitions/terraform_tgw_attachments/aws_accounts.py +119 -0
reconcile/gql_definitions/unleash_feature_toggles/__init__.py +0 -0
reconcile/gql_definitions/unleash_feature_toggles/feature_toggles.py +113 -0
reconcile/gql_definitions/vault_instances/vault_instances.py +17 -50
reconcile/gql_definitions/vault_policies/vault_policies.py +2 -2
reconcile/gql_definitions/vpc_peerings_validator/vpc_peerings_validator.py +49 -12
reconcile/gql_definitions/vpc_peerings_validator/vpc_peerings_validator_peered_cluster_fragment.py +7 -2
reconcile/integrations_manager.py +25 -13
reconcile/jenkins/types.py +5 -1
reconcile/jenkins_base.py +36 -0
reconcile/jenkins_job_builder.py +10 -48
reconcile/jenkins_job_builds_cleaner.py +40 -25
reconcile/jenkins_job_cleaner.py +1 -3
reconcile/jenkins_roles.py +22 -26
reconcile/jenkins_webhooks.py +9 -6
reconcile/jenkins_worker_fleets.py +11 -6
reconcile/jira_permissions_validator.py +340 -0
reconcile/jira_watcher.py +3 -5
reconcile/ldap_groups/__init__.py +0 -0
reconcile/ldap_groups/integration.py +279 -0
reconcile/ldap_users.py +3 -0
reconcile/ocm/types.py +39 -59
reconcile/ocm_additional_routers.py +0 -1
reconcile/ocm_addons_upgrade_tests_trigger.py +10 -15
reconcile/ocm_aws_infrastructure_access.py +30 -32
reconcile/ocm_clusters.py +217 -130
reconcile/ocm_external_configuration_labels.py +15 -0
reconcile/ocm_github_idp.py +1 -1
reconcile/ocm_groups.py +25 -5
reconcile/ocm_internal_notifications/__init__.py +0 -0
reconcile/ocm_internal_notifications/integration.py +119 -0
reconcile/ocm_labels/__init__.py +0 -0
reconcile/ocm_labels/integration.py +409 -0
reconcile/ocm_machine_pools.py +517 -108
reconcile/ocm_upgrade_scheduler_org_updater.py +15 -11
reconcile/openshift_base.py +609 -207
reconcile/openshift_cluster_bots.py +344 -0
reconcile/openshift_clusterrolebindings.py +15 -15
reconcile/openshift_groups.py +42 -45
reconcile/openshift_limitranges.py +1 -0
reconcile/openshift_namespace_labels.py +22 -28
reconcile/openshift_namespaces.py +22 -22
reconcile/openshift_network_policies.py +4 -8
reconcile/openshift_prometheus_rules.py +43 -0
reconcile/openshift_resourcequotas.py +2 -16
reconcile/openshift_resources.py +12 -10
reconcile/openshift_resources_base.py +304 -328
reconcile/openshift_rolebindings.py +18 -20
reconcile/openshift_saas_deploy.py +105 -21
reconcile/openshift_saas_deploy_change_tester.py +30 -35
reconcile/openshift_saas_deploy_trigger_base.py +39 -36
reconcile/openshift_saas_deploy_trigger_cleaner.py +41 -27
reconcile/openshift_saas_deploy_trigger_configs.py +1 -2
reconcile/openshift_saas_deploy_trigger_images.py +1 -2
reconcile/openshift_saas_deploy_trigger_moving_commits.py +1 -2
reconcile/openshift_saas_deploy_trigger_upstream_jobs.py +1 -2
reconcile/openshift_serviceaccount_tokens.py +138 -74
reconcile/openshift_tekton_resources.py +89 -24
reconcile/openshift_upgrade_watcher.py +110 -62
reconcile/openshift_users.py +16 -15
reconcile/openshift_vault_secrets.py +11 -6
reconcile/oum/__init__.py +0 -0
reconcile/oum/base.py +387 -0
reconcile/oum/labelset.py +55 -0
reconcile/oum/metrics.py +71 -0
reconcile/oum/models.py +69 -0
reconcile/oum/providers.py +59 -0
reconcile/oum/standalone.py +196 -0
reconcile/prometheus_rules_tester/integration.py +31 -23
reconcile/quay_base.py +4 -1
reconcile/quay_membership.py +1 -2
reconcile/quay_mirror.py +111 -61
reconcile/quay_mirror_org.py +34 -21
reconcile/quay_permissions.py +7 -3
reconcile/quay_repos.py +24 -32
reconcile/queries.py +263 -198
reconcile/query_validator.py +3 -5
reconcile/resource_scraper.py +3 -4
reconcile/{template_tester.py → resource_template_tester.py} +3 -3
reconcile/rhidp/__init__.py +0 -0
reconcile/rhidp/common.py +214 -0
reconcile/rhidp/metrics.py +20 -0
reconcile/rhidp/ocm_oidc_idp/__init__.py +0 -0
reconcile/rhidp/ocm_oidc_idp/base.py +221 -0
reconcile/rhidp/ocm_oidc_idp/integration.py +56 -0
reconcile/rhidp/ocm_oidc_idp/metrics.py +22 -0
reconcile/rhidp/sso_client/__init__.py +0 -0
reconcile/rhidp/sso_client/base.py +266 -0
reconcile/rhidp/sso_client/integration.py +60 -0
reconcile/rhidp/sso_client/metrics.py +39 -0
reconcile/run_integration.py +293 -0
reconcile/saas_auto_promotions_manager/integration.py +69 -24
reconcile/saas_auto_promotions_manager/merge_request_manager/batcher.py +208 -0
reconcile/saas_auto_promotions_manager/merge_request_manager/desired_state.py +28 -0
reconcile/saas_auto_promotions_manager/merge_request_manager/merge_request.py +3 -4
reconcile/saas_auto_promotions_manager/merge_request_manager/merge_request_manager_v2.py +172 -0
reconcile/saas_auto_promotions_manager/merge_request_manager/metrics.py +42 -0
reconcile/saas_auto_promotions_manager/merge_request_manager/mr_parser.py +226 -0
reconcile/saas_auto_promotions_manager/merge_request_manager/open_merge_requests.py +23 -0
reconcile/saas_auto_promotions_manager/merge_request_manager/renderer.py +108 -32
reconcile/saas_auto_promotions_manager/meta.py +4 -0
reconcile/saas_auto_promotions_manager/publisher.py +32 -4
reconcile/saas_auto_promotions_manager/s3_exporter.py +77 -0
reconcile/saas_auto_promotions_manager/subscriber.py +110 -23
reconcile/saas_auto_promotions_manager/utils/saas_files_inventory.py +48 -41
reconcile/saas_file_validator.py +16 -6
reconcile/sendgrid_teammates.py +27 -12
reconcile/service_dependencies.py +0 -3
reconcile/signalfx_endpoint_monitoring.py +2 -5
reconcile/skupper_network/integration.py +10 -11
reconcile/skupper_network/models.py +3 -5
reconcile/skupper_network/reconciler.py +28 -35
reconcile/skupper_network/site_controller.py +8 -8
reconcile/slack_base.py +4 -7
reconcile/slack_usergroups.py +249 -171
reconcile/sql_query.py +324 -171
reconcile/status.py +0 -1
reconcile/status_board.py +275 -0
reconcile/statuspage/__init__.py +0 -5
reconcile/statuspage/atlassian.py +219 -80
reconcile/statuspage/integration.py +9 -97
reconcile/statuspage/integrations/__init__.py +0 -0
reconcile/statuspage/integrations/components.py +77 -0
reconcile/statuspage/integrations/maintenances.py +111 -0
reconcile/statuspage/page.py +107 -72
reconcile/statuspage/state.py +6 -11
reconcile/statuspage/status.py +8 -12
reconcile/templates/rosa-classic-cluster-creation.sh.j2 +60 -0
reconcile/templates/rosa-hcp-cluster-creation.sh.j2 +61 -0
reconcile/templating/__init__.py +0 -0
reconcile/templating/lib/__init__.py +0 -0
reconcile/templating/lib/merge_request_manager.py +180 -0
reconcile/templating/lib/model.py +20 -0
reconcile/templating/lib/rendering.py +191 -0
reconcile/templating/renderer.py +410 -0
reconcile/templating/validator.py +153 -0
reconcile/terraform_aws_route53.py +13 -10
reconcile/terraform_cloudflare_dns.py +92 -122
reconcile/terraform_cloudflare_resources.py +15 -13
reconcile/terraform_cloudflare_users.py +27 -27
reconcile/terraform_init/__init__.py +0 -0
reconcile/terraform_init/integration.py +165 -0
reconcile/terraform_init/merge_request.py +57 -0
reconcile/terraform_init/merge_request_manager.py +102 -0
reconcile/terraform_repo.py +403 -0
reconcile/terraform_resources.py +266 -168
reconcile/terraform_tgw_attachments.py +417 -167
reconcile/terraform_users.py +40 -17
reconcile/terraform_vpc_peerings.py +310 -142
reconcile/terraform_vpc_resources/__init__.py +0 -0
reconcile/terraform_vpc_resources/integration.py +220 -0
reconcile/terraform_vpc_resources/merge_request.py +57 -0
reconcile/terraform_vpc_resources/merge_request_manager.py +107 -0
reconcile/typed_queries/alerting_services_settings.py +1 -2
reconcile/typed_queries/app_interface_custom_messages.py +24 -0
reconcile/typed_queries/app_interface_deadmanssnitch_settings.py +17 -0
reconcile/typed_queries/app_interface_metrics_exporter/__init__.py +0 -0
reconcile/typed_queries/app_interface_metrics_exporter/onboarding_status.py +13 -0
reconcile/typed_queries/app_interface_repo_url.py +1 -2
reconcile/typed_queries/app_interface_state_settings.py +1 -3
reconcile/typed_queries/app_interface_vault_settings.py +1 -2
reconcile/typed_queries/app_quay_repos_escalation_policies.py +14 -0
reconcile/typed_queries/apps.py +11 -0
reconcile/typed_queries/aws_vpc_requests.py +9 -0
reconcile/typed_queries/aws_vpcs.py +12 -0
reconcile/typed_queries/cloudflare.py +10 -0
reconcile/typed_queries/clusters.py +7 -5
reconcile/typed_queries/clusters_minimal.py +6 -5
reconcile/typed_queries/clusters_with_dms.py +16 -0
reconcile/typed_queries/cost_report/__init__.py +0 -0
reconcile/typed_queries/cost_report/app_names.py +22 -0
reconcile/typed_queries/cost_report/cost_namespaces.py +43 -0
reconcile/typed_queries/cost_report/settings.py +15 -0
reconcile/typed_queries/dynatrace.py +10 -0
reconcile/typed_queries/dynatrace_environments.py +14 -0
reconcile/typed_queries/dynatrace_token_provider_token_specs.py +14 -0
reconcile/typed_queries/external_resources.py +46 -0
reconcile/typed_queries/get_state_aws_account.py +20 -0
reconcile/typed_queries/glitchtip.py +10 -0
reconcile/typed_queries/jenkins.py +25 -0
reconcile/typed_queries/jira.py +7 -0
reconcile/typed_queries/jira_settings.py +16 -0
reconcile/typed_queries/jiralert_settings.py +22 -0
reconcile/typed_queries/ocm.py +8 -0
reconcile/typed_queries/pagerduty_instances.py +2 -7
reconcile/typed_queries/quay.py +23 -0
reconcile/typed_queries/repos.py +20 -8
reconcile/typed_queries/reserved_networks.py +12 -0
reconcile/typed_queries/saas_files.py +221 -167
reconcile/typed_queries/slack.py +7 -0
reconcile/typed_queries/slo_documents.py +12 -0
reconcile/typed_queries/status_board.py +58 -0
reconcile/typed_queries/tekton_pipeline_providers.py +1 -2
reconcile/typed_queries/terraform_namespaces.py +1 -2
reconcile/typed_queries/terraform_tgw_attachments/__init__.py +0 -0
reconcile/typed_queries/terraform_tgw_attachments/aws_accounts.py +16 -0
reconcile/typed_queries/unleash.py +10 -0
reconcile/typed_queries/users.py +11 -0
reconcile/typed_queries/vault.py +10 -0
reconcile/unleash_feature_toggles/__init__.py +0 -0
reconcile/unleash_feature_toggles/integration.py +287 -0
reconcile/utils/acs/__init__.py +0 -0
reconcile/utils/acs/base.py +81 -0
reconcile/utils/acs/notifiers.py +143 -0
reconcile/utils/acs/policies.py +163 -0
reconcile/utils/acs/rbac.py +277 -0
reconcile/utils/aggregated_list.py +11 -9
reconcile/utils/amtool.py +6 -4
reconcile/utils/aws_api.py +279 -66
reconcile/utils/aws_api_typed/__init__.py +0 -0
reconcile/utils/aws_api_typed/account.py +23 -0
reconcile/utils/aws_api_typed/api.py +273 -0
reconcile/utils/aws_api_typed/dynamodb.py +16 -0
reconcile/utils/aws_api_typed/iam.py +67 -0
reconcile/utils/aws_api_typed/organization.py +152 -0
reconcile/utils/aws_api_typed/s3.py +26 -0
reconcile/utils/aws_api_typed/service_quotas.py +79 -0
reconcile/utils/aws_api_typed/sts.py +36 -0
reconcile/utils/aws_api_typed/support.py +79 -0
reconcile/utils/aws_helper.py +42 -3
reconcile/utils/batches.py +11 -0
reconcile/utils/binary.py +7 -9
reconcile/utils/cloud_resource_best_practice/__init__.py +0 -0
reconcile/utils/cloud_resource_best_practice/aws_rds.py +66 -0
reconcile/utils/clusterhealth/__init__.py +0 -0
reconcile/utils/clusterhealth/providerbase.py +39 -0
reconcile/utils/clusterhealth/telemeter.py +39 -0
reconcile/utils/config.py +3 -4
reconcile/utils/deadmanssnitch_api.py +86 -0
reconcile/utils/differ.py +205 -0
reconcile/utils/disabled_integrations.py +4 -6
reconcile/utils/dynatrace/__init__.py +0 -0
reconcile/utils/dynatrace/client.py +93 -0
reconcile/utils/early_exit_cache.py +289 -0
reconcile/utils/elasticsearch_exceptions.py +5 -0
reconcile/utils/environ.py +2 -2
reconcile/utils/exceptions.py +4 -0
reconcile/utils/expiration.py +4 -8
reconcile/utils/extended_early_exit.py +210 -0
reconcile/utils/external_resource_spec.py +34 -12
reconcile/utils/external_resources.py +48 -20
reconcile/utils/filtering.py +16 -0
reconcile/utils/git.py +49 -16
reconcile/utils/github_api.py +10 -9
reconcile/utils/gitlab_api.py +333 -190
reconcile/utils/glitchtip/client.py +97 -100
reconcile/utils/glitchtip/models.py +89 -11
reconcile/utils/gql.py +157 -58
reconcile/utils/grouping.py +17 -0
reconcile/utils/helm.py +89 -18
reconcile/utils/helpers.py +51 -0
reconcile/utils/imap_client.py +5 -6
reconcile/utils/internal_groups/__init__.py +0 -0
reconcile/utils/internal_groups/client.py +160 -0
reconcile/utils/internal_groups/models.py +71 -0
reconcile/utils/jenkins_api.py +10 -34
reconcile/utils/jinja2/__init__.py +0 -0
reconcile/utils/{jinja2_ext.py → jinja2/extensions.py} +6 -4
reconcile/utils/jinja2/filters.py +142 -0
reconcile/utils/jinja2/utils.py +278 -0
reconcile/utils/jira_client.py +165 -8
reconcile/utils/jjb_client.py +47 -35
reconcile/utils/jobcontroller/__init__.py +0 -0
reconcile/utils/jobcontroller/controller.py +413 -0
reconcile/utils/jobcontroller/models.py +195 -0
reconcile/utils/jsonpath.py +4 -5
reconcile/utils/jump_host.py +13 -12
reconcile/utils/keycloak.py +106 -0
reconcile/utils/ldap_client.py +35 -6
reconcile/utils/lean_terraform_client.py +115 -6
reconcile/utils/membershipsources/__init__.py +0 -0
reconcile/utils/membershipsources/app_interface_resolver.py +60 -0
reconcile/utils/membershipsources/models.py +91 -0
reconcile/utils/membershipsources/resolver.py +110 -0
reconcile/utils/merge_request_manager/__init__.py +0 -0
reconcile/utils/merge_request_manager/merge_request_manager.py +99 -0
reconcile/utils/merge_request_manager/parser.py +67 -0
reconcile/utils/metrics.py +511 -1
reconcile/utils/models.py +123 -0
reconcile/utils/mr/README.md +198 -0
reconcile/utils/mr/__init__.py +14 -10
reconcile/utils/mr/app_interface_reporter.py +2 -2
reconcile/utils/mr/aws_access.py +4 -4
reconcile/utils/mr/base.py +51 -31
reconcile/utils/mr/clusters_updates.py +10 -7
reconcile/utils/mr/glitchtip_access_reporter.py +2 -4
reconcile/utils/mr/labels.py +14 -1
reconcile/utils/mr/notificator.py +1 -3
reconcile/utils/mr/ocm_update_recommended_version.py +1 -2
reconcile/utils/mr/ocm_upgrade_scheduler_org_updates.py +7 -3
reconcile/utils/mr/promote_qontract.py +203 -0
reconcile/utils/mr/user_maintenance.py +24 -4
reconcile/utils/oauth2_backend_application_session.py +132 -0
reconcile/utils/oc.py +194 -170
reconcile/utils/oc_connection_parameters.py +40 -51
reconcile/utils/oc_filters.py +11 -13
reconcile/utils/oc_map.py +14 -35
reconcile/utils/ocm/__init__.py +30 -1
reconcile/utils/ocm/addons.py +228 -0
reconcile/utils/ocm/base.py +618 -5
reconcile/utils/ocm/cluster_groups.py +5 -56
reconcile/utils/ocm/clusters.py +111 -99
reconcile/utils/ocm/identity_providers.py +66 -0
reconcile/utils/ocm/label_sources.py +75 -0
reconcile/utils/ocm/labels.py +139 -54
reconcile/utils/ocm/manifests.py +39 -0
reconcile/utils/ocm/ocm.py +182 -928
reconcile/utils/ocm/products.py +758 -0
reconcile/utils/ocm/search_filters.py +20 -28
reconcile/utils/ocm/service_log.py +32 -79
reconcile/utils/ocm/sre_capability_labels.py +51 -0
reconcile/utils/ocm/status_board.py +66 -0
reconcile/utils/ocm/subscriptions.py +49 -59
reconcile/utils/ocm/syncsets.py +39 -0
reconcile/utils/ocm/upgrades.py +181 -0
reconcile/utils/ocm_base_client.py +71 -36
reconcile/utils/openshift_resource.py +113 -67
reconcile/utils/output.py +18 -11
reconcile/utils/pagerduty_api.py +16 -10
reconcile/utils/parse_dhms_duration.py +13 -1
reconcile/utils/prometheus.py +123 -0
reconcile/utils/promotion_state.py +56 -19
reconcile/utils/promtool.py +5 -8
reconcile/utils/quay_api.py +13 -25
reconcile/utils/raw_github_api.py +3 -5
reconcile/utils/repo_owners.py +2 -8
reconcile/utils/rest_api_base.py +126 -0
reconcile/utils/rosa/__init__.py +0 -0
reconcile/utils/rosa/rosa_cli.py +310 -0
reconcile/utils/rosa/session.py +201 -0
reconcile/utils/ruamel.py +16 -0
reconcile/utils/runtime/__init__.py +0 -1
reconcile/utils/runtime/desired_state_diff.py +9 -20
reconcile/utils/runtime/environment.py +33 -8
reconcile/utils/runtime/integration.py +28 -12
reconcile/utils/runtime/meta.py +1 -3
reconcile/utils/runtime/runner.py +8 -11
reconcile/utils/runtime/sharding.py +93 -36
reconcile/utils/saasherder/__init__.py +1 -1
reconcile/utils/saasherder/interfaces.py +143 -138
reconcile/utils/saasherder/models.py +201 -43
reconcile/utils/saasherder/saasherder.py +508 -378
reconcile/utils/secret_reader.py +22 -27
reconcile/utils/semver_helper.py +15 -1
reconcile/utils/slack_api.py +124 -36
reconcile/utils/smtp_client.py +1 -2
reconcile/utils/sqs_gateway.py +10 -6
reconcile/utils/state.py +276 -127
reconcile/utils/terraform/config_client.py +6 -7
reconcile/utils/terraform_client.py +284 -125
reconcile/utils/terrascript/cloudflare_client.py +38 -17
reconcile/utils/terrascript/cloudflare_resources.py +67 -18
reconcile/utils/terrascript/models.py +2 -3
reconcile/utils/terrascript/resources.py +1 -2
reconcile/utils/terrascript_aws_client.py +1292 -540
reconcile/utils/three_way_diff_strategy.py +157 -0
reconcile/utils/unleash/__init__.py +11 -0
reconcile/utils/{unleash.py → unleash/client.py} +35 -29
reconcile/utils/unleash/server.py +145 -0
reconcile/utils/vault.py +42 -32
reconcile/utils/vaultsecretref.py +2 -4
reconcile/utils/vcs.py +250 -0
reconcile/vault_replication.py +38 -31
reconcile/vpc_peerings_validator.py +82 -13
tools/app_interface_metrics_exporter.py +70 -0
tools/app_interface_reporter.py +44 -157
tools/cli_commands/container_images_report.py +154 -0
tools/cli_commands/cost_report/__init__.py +0 -0
tools/cli_commands/cost_report/aws.py +137 -0
tools/cli_commands/cost_report/cost_management_api.py +155 -0
tools/cli_commands/cost_report/model.py +49 -0
tools/cli_commands/cost_report/openshift.py +166 -0
tools/cli_commands/cost_report/openshift_cost_optimization.py +187 -0
tools/cli_commands/cost_report/response.py +124 -0
tools/cli_commands/cost_report/util.py +72 -0
tools/cli_commands/cost_report/view.py +524 -0
tools/cli_commands/erv2.py +620 -0
tools/cli_commands/gpg_encrypt.py +5 -8
tools/cli_commands/systems_and_tools.py +489 -0
tools/glitchtip_access_revalidation.py +1 -1
tools/qontract_cli.py +2301 -673
tools/saas_metrics_exporter/__init__.py +0 -0
tools/saas_metrics_exporter/commit_distance/__init__.py +0 -0
tools/saas_metrics_exporter/commit_distance/channel.py +63 -0
tools/saas_metrics_exporter/commit_distance/commit_distance.py +103 -0
tools/saas_metrics_exporter/commit_distance/metrics.py +19 -0
tools/saas_metrics_exporter/main.py +99 -0
tools/saas_promotion_state/__init__.py +0 -0
tools/saas_promotion_state/saas_promotion_state.py +105 -0
tools/sd_app_sre_alert_report.py +145 -0
tools/template_validation.py +107 -0
e2e_tests/cli.py +0 -83
e2e_tests/create_namespace.py +0 -43
e2e_tests/dedicated_admin_rolebindings.py +0 -44
e2e_tests/dedicated_admin_test_base.py +0 -39
e2e_tests/default_network_policies.py +0 -47
e2e_tests/default_project_labels.py +0 -52
e2e_tests/network_policy_test_base.py +0 -17
e2e_tests/test_base.py +0 -56
qontract_reconcile-0.10.0.dist-info/LICENSE +0 -201
qontract_reconcile-0.10.0.dist-info/METADATA +0 -63
qontract_reconcile-0.10.0.dist-info/RECORD +0 -586
qontract_reconcile-0.10.0.dist-info/top_level.txt +0 -4
reconcile/ecr_mirror.py +0 -152
reconcile/github_scanner.py +0 -74
reconcile/gitlab_integrations.py +0 -63
reconcile/gql_definitions/ocm_oidc_idp/clusters.py +0 -195
reconcile/gql_definitions/ocp_release_mirror/ocp_release_mirror.py +0 -287
reconcile/integrations_validator.py +0 -18
reconcile/jenkins_plugins.py +0 -129
reconcile/kafka_clusters.py +0 -208
reconcile/ocm_cluster_admin.py +0 -42
reconcile/ocm_oidc_idp.py +0 -198
reconcile/ocp_release_mirror.py +0 -373
reconcile/prometheus_rules_tester_old.py +0 -436
reconcile/saas_auto_promotions_manager/merge_request_manager/merge_request_manager.py +0 -279
reconcile/saas_auto_promotions_manager/utils/vcs.py +0 -141
reconcile/sentry_config.py +0 -613
reconcile/sentry_helper.py +0 -69
reconcile/test/conftest.py +0 -187
reconcile/test/fixtures.py +0 -24
reconcile/test/saas_auto_promotions_manager/conftest.py +0 -69
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/conftest.py +0 -110
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/data_keys.py +0 -10
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/test_housekeeping.py +0 -200
reconcile/test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager/test_merge_request_manager.py +0 -151
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/conftest.py +0 -63
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/data_keys.py +0 -4
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_content_multiple_namespaces.py +0 -46
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_content_single_namespace.py +0 -94
reconcile/test/saas_auto_promotions_manager/merge_request_manager/renderer/test_content_single_target.py +0 -44
reconcile/test/saas_auto_promotions_manager/subscriber/conftest.py +0 -74
reconcile/test/saas_auto_promotions_manager/subscriber/data_keys.py +0 -11
reconcile/test/saas_auto_promotions_manager/subscriber/test_content_hash.py +0 -155
reconcile/test/saas_auto_promotions_manager/subscriber/test_diff.py +0 -173
reconcile/test/saas_auto_promotions_manager/subscriber/test_multiple_channels_config_hash.py +0 -226
reconcile/test/saas_auto_promotions_manager/subscriber/test_multiple_channels_moving_ref.py +0 -224
reconcile/test/saas_auto_promotions_manager/subscriber/test_single_channel_with_single_publisher.py +0 -350
reconcile/test/saas_auto_promotions_manager/test_integration_test.py +0 -129
reconcile/test/saas_auto_promotions_manager/utils/saas_files_inventory/test_multiple_publishers_for_single_channel.py +0 -70
reconcile/test/saas_auto_promotions_manager/utils/saas_files_inventory/test_saas_files_use_target_config_hash.py +0 -63
reconcile/test/saas_auto_promotions_manager/utils/saas_files_inventory/test_saas_files_with_auto_promote.py +0 -74
reconcile/test/saas_auto_promotions_manager/utils/saas_files_inventory/test_saas_files_without_auto_promote.py +0 -65
reconcile/test/test_aggregated_list.py +0 -237
reconcile/test/test_amtool.py +0 -37
reconcile/test/test_auto_promoter.py +0 -295
reconcile/test/test_aws_ami_share.py +0 -68
reconcile/test/test_aws_iam_keys.py +0 -70
reconcile/test/test_aws_iam_password_reset.py +0 -35
reconcile/test/test_aws_support_cases_sos.py +0 -23
reconcile/test/test_checkpoint.py +0 -178
reconcile/test/test_cli.py +0 -41
reconcile/test/test_closedbox_endpoint_monitoring.py +0 -207
reconcile/test/test_gabi_authorized_users.py +0 -72
reconcile/test/test_github_org.py +0 -154
reconcile/test/test_github_repo_invites.py +0 -123
reconcile/test/test_gitlab_housekeeping.py +0 -88
reconcile/test/test_gitlab_labeler.py +0 -129
reconcile/test/test_gitlab_members.py +0 -283
reconcile/test/test_instrumented_wrappers.py +0 -18
reconcile/test/test_integrations_manager.py +0 -995
reconcile/test/test_jenkins_worker_fleets.py +0 -55
reconcile/test/test_jump_host.py +0 -117
reconcile/test/test_ldap_users.py +0 -123
reconcile/test/test_make.py +0 -28
reconcile/test/test_ocm_additional_routers.py +0 -134
reconcile/test/test_ocm_addons_upgrade_scheduler_org.py +0 -149
reconcile/test/test_ocm_clusters.py +0 -598
reconcile/test/test_ocm_clusters_manifest_updates.py +0 -89
reconcile/test/test_ocm_oidc_idp.py +0 -315
reconcile/test/test_ocm_update_recommended_version.py +0 -145
reconcile/test/test_ocm_upgrade_scheduler.py +0 -614
reconcile/test/test_ocm_upgrade_scheduler_org_updater.py +0 -129
reconcile/test/test_openshift_base.py +0 -730
reconcile/test/test_openshift_namespace_labels.py +0 -345
reconcile/test/test_openshift_namespaces.py +0 -256
reconcile/test/test_openshift_resource.py +0 -415
reconcile/test/test_openshift_resources_base.py +0 -440
reconcile/test/test_openshift_saas_deploy_change_tester.py +0 -310
reconcile/test/test_openshift_tekton_resources.py +0 -253
reconcile/test/test_openshift_upgrade_watcher.py +0 -146
reconcile/test/test_prometheus_rules_tester.py +0 -151
reconcile/test/test_prometheus_rules_tester_old.py +0 -77
reconcile/test/test_quay_membership.py +0 -86
reconcile/test/test_quay_mirror.py +0 -109
reconcile/test/test_quay_mirror_org.py +0 -70
reconcile/test/test_quay_repos.py +0 -59
reconcile/test/test_queries.py +0 -53
reconcile/test/test_repo_owners.py +0 -47
reconcile/test/test_requests_sender.py +0 -139
reconcile/test/test_saasherder.py +0 -1074
reconcile/test/test_saasherder_allowed_secret_paths.py +0 -127
reconcile/test/test_secret_reader.py +0 -153
reconcile/test/test_slack_base.py +0 -185
reconcile/test/test_slack_usergroups.py +0 -744
reconcile/test/test_sql_query.py +0 -19
reconcile/test/test_terraform_cloudflare_dns.py +0 -117
reconcile/test/test_terraform_cloudflare_resources.py +0 -106
reconcile/test/test_terraform_cloudflare_users.py +0 -749
reconcile/test/test_terraform_resources.py +0 -257
reconcile/test/test_terraform_tgw_attachments.py +0 -631
reconcile/test/test_terraform_users.py +0 -57
reconcile/test/test_terraform_vpc_peerings.py +0 -499
reconcile/test/test_terraform_vpc_peerings_build_desired_state.py +0 -1061
reconcile/test/test_unleash.py +0 -138
reconcile/test/test_utils_aws_api.py +0 -240
reconcile/test/test_utils_aws_helper.py +0 -80
reconcile/test/test_utils_cluster_version_data.py +0 -177
reconcile/test/test_utils_data_structures.py +0 -13
reconcile/test/test_utils_disabled_integrations.py +0 -86
reconcile/test/test_utils_expiration.py +0 -109
reconcile/test/test_utils_external_resource_spec.py +0 -383
reconcile/test/test_utils_external_resources.py +0 -247
reconcile/test/test_utils_github_api.py +0 -73
reconcile/test/test_utils_gitlab_api.py +0 -20
reconcile/test/test_utils_gpg.py +0 -69
reconcile/test/test_utils_gql.py +0 -81
reconcile/test/test_utils_helm.py +0 -306
reconcile/test/test_utils_helpers.py +0 -55
reconcile/test/test_utils_imap_client.py +0 -65
reconcile/test/test_utils_jjb_client.py +0 -52
reconcile/test/test_utils_jsonpath.py +0 -286
reconcile/test/test_utils_ldap_client.py +0 -51
reconcile/test/test_utils_mr.py +0 -226
reconcile/test/test_utils_mr_clusters_updates.py +0 -77
reconcile/test/test_utils_oc.py +0 -984
reconcile/test/test_utils_ocm.py +0 -110
reconcile/test/test_utils_pagerduty_api.py +0 -251
reconcile/test/test_utils_parse_dhms_duration.py +0 -34
reconcile/test/test_utils_password_validator.py +0 -155
reconcile/test/test_utils_quay_api.py +0 -86
reconcile/test/test_utils_semver_helper.py +0 -19
reconcile/test/test_utils_sharding.py +0 -56
reconcile/test/test_utils_slack_api.py +0 -439
reconcile/test/test_utils_smtp_client.py +0 -73
reconcile/test/test_utils_state.py +0 -256
reconcile/test/test_utils_terraform.py +0 -13
reconcile/test/test_utils_terraform_client.py +0 -585
reconcile/test/test_utils_terraform_config_client.py +0 -219
reconcile/test/test_utils_terrascript_aws_client.py +0 -277
reconcile/test/test_utils_terrascript_cloudflare_client.py +0 -597
reconcile/test/test_utils_terrascript_cloudflare_resources.py +0 -26
reconcile/test/test_vault_replication.py +0 -515
reconcile/test/test_vault_utils.py +0 -47
reconcile/test/test_version_bump.py +0 -18
reconcile/test/test_vpc_peerings_validator.py +0 -103
reconcile/test/test_wrong_region.py +0 -78
reconcile/typed_queries/glitchtip_settings.py +0 -18
reconcile/typed_queries/ocp_release_mirror.py +0 -11
reconcile/unleash_watcher.py +0 -120
reconcile/utils/git_secrets.py +0 -63
reconcile/utils/mr/auto_promoter.py +0 -218
reconcile/utils/sentry_client.py +0 -383
release/test_version.py +0 -50
release/version.py +0 -100
tools/test/test_qontract_cli.py +0 -60
tools/test/test_sre_checkpoints.py +0 -79
/e2e_tests/__init__.py → /reconcile/aus/upgrades.py +0 -0
/reconcile/{gql_definitions/ocp_release_mirror → aws_account_manager}/__init__.py +0 -0
/reconcile/{test → aws_ami_cleanup}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager → aws_cloudwatch_log_retention}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager/merge_request_manager → aws_saml_idp}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager/merge_request_manager/merge_request_manager → aws_saml_roles}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager/merge_request_manager/renderer → aws_version_sync}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager/subscriber → aws_version_sync/merge_request_manager}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager/utils → cluster_auth_rhidp}/__init__.py +0 -0
/reconcile/{test/saas_auto_promotions_manager/utils/saas_files_inventory → dynatrace_token_provider}/__init__.py +0 -0
{release → reconcile/endpoints_discovery}/__init__.py +0 -0
{tools/test → reconcile/external_resources}/__init__.py +0 -0

reconcile/utils/ocm/ocm.py CHANGED Viewed

@@ -1,41 +1,23 @@
 from __future__ import annotations
 import functools
-import logging
-import random
 import re
-import string
-from abc import abstractmethod
-from collections.abc import (
-    Iterable,
-    Mapping,
-)
-from dataclasses import (
-    dataclass,
-    field,
-)
-from typing import (
-    Any,
-    Optional,
-    Union,
-)
+from collections.abc import Mapping
+from typing import Any
 from sretoolbox.utils import retry
 import reconcile.utils.aws_helper as awsh
 from reconcile.gql_definitions.fragments.vault_secret import VaultSecret
 from reconcile.ocm.types import (
-    OCMClusterAutoscale,
-    OCMClusterNetwork,
-    OCMClusterSpec,
-    OCMOidcIdp,
     OCMSpec,
-    OSDClusterSpec,
-    ROSAClusterAWSAccount,
-    ROSAClusterSpec,
-    ROSAOcmAwsAttrs,
 )
-from reconcile.utils.exceptions import ParameterError
+from reconcile.utils.ocm.clusters import get_node_pools
+from reconcile.utils.ocm.products import (
+    OCMProduct,
+    OCMProductPortfolio,
+    build_product_portfolio,
+)
 from reconcile.utils.ocm_base_client import (
     OCMAPIClientConfiguration,
     OCMBaseClient,
@@ -49,11 +31,24 @@ STATUS_DELETING = "deleting"
 AMS_API_BASE = "/api/accounts_mgmt"
 CS_API_BASE = "/api/clusters_mgmt"
-KAS_API_BASE = "/api/kafkas_mgmt"
-MACHINE_POOL_DESIRED_KEYS = {"id", "instance_type", "replicas", "labels", "taints"}
+MACHINE_POOL_DESIRED_KEYS = {
+    "id",
+    "instance_type",
+    "replicas",
+    "autoscaling",
+    "labels",
+    "taints",
+}
 UPGRADE_CHANNELS = {"stable", "fast", "candidate"}
-UPGRADE_POLICY_DESIRED_KEYS = {"id", "schedule_type", "schedule", "next_run", "version"}
+UPGRADE_POLICY_DESIRED_KEYS = {
+    "id",
+    "schedule_type",
+    "schedule",
+    "next_run",
+    "version",
+    "state",
+}
 ADDON_UPGRADE_POLICY_DESIRED_KEYS = {
     "id",
     "addon_id",
@@ -68,511 +63,8 @@ CLUSTER_ADDON_DESIRED_KEYS = {"id", "parameters"}
 DISABLE_UWM_ATTR = "disable_user_workload_monitoring"
 CLUSTER_ADMIN_LABEL_KEY = "capability.cluster.manage_cluster_admin"
-BYTES_IN_GIGABYTE = 1024**3
 REQUEST_TIMEOUT_SEC = 60
-SPEC_ATTR_ACCOUNT = "account"
-SPEC_ATTR_DISABLE_UWM = "disable_user_workload_monitoring"
-SPEC_ATTR_AUTOSCALE = "autoscale"
-SPEC_ATTR_INSTANCE_TYPE = "instance_type"
-SPEC_ATTR_PRIVATE = "private"
-SPEC_ATTR_CHANNEL = "channel"
-SPEC_ATTR_NODES = "nodes"
-SPEC_ATTR_LOAD_BALANCERS = "load_balancers"
-SPEC_ATTR_STORAGE = "storage"
-SPEC_ATTR_ID = "id"
-SPEC_ATTR_EXTERNAL_ID = "external_id"
-SPEC_ATTR_PROVISION_SHARD_ID = "provision_shard_id"
-SPEC_ATTR_VERSION = "version"
-SPEC_ATTR_INITIAL_VERSION = "initial_version"
-SPEC_ATTR_MULTI_AZ = "multi_az"
-SPEC_ATTR_HYPERSHIFT = "hypershift"
-SPEC_ATTR_SUBNET_IDS = "subnet_ids"
-SPEC_ATTR_AVAILABILITY_ZONES = "availability_zones"
-SPEC_ATTR_NETWORK = "network"
-SPEC_ATTR_CONSOLE_URL = "consoleUrl"
-SPEC_ATTR_SERVER_URL = "serverUrl"
-SPEC_ATTR_ELBFQDN = "elbFQDN"
-SPEC_ATTR_PATH = "path"
-OCM_PRODUCT_OSD = "osd"
-OCM_PRODUCT_ROSA = "rosa"
-class OCMProduct:
-    ALLOWED_SPEC_UPDATE_FIELDS: set[str]
-    EXCLUDED_SPEC_FIELDS: set[str]
-    @staticmethod
-    @abstractmethod
-    def create_cluster(ocm: OCM, name: str, cluster: OCMSpec, dry_run: bool):
-        pass
-    @staticmethod
-    @abstractmethod
-    def update_cluster(ocm: OCM, cluster_name: str, update_spec: Mapping[str, Any]):
-        pass
-    @staticmethod
-    @abstractmethod
-    def get_ocm_spec(
-        ocm: OCM, cluster: Mapping[str, Any], init_provision_shards: bool
-    ) -> OCMSpec:
-        pass
-class OCMProductOsd(OCMProduct):
-    ALLOWED_SPEC_UPDATE_FIELDS = {
-        SPEC_ATTR_STORAGE,
-        SPEC_ATTR_LOAD_BALANCERS,
-        SPEC_ATTR_PRIVATE,
-        SPEC_ATTR_CHANNEL,
-        SPEC_ATTR_AUTOSCALE,
-        SPEC_ATTR_NODES,
-        SPEC_ATTR_DISABLE_UWM,
-    }
-    EXCLUDED_SPEC_FIELDS = {
-        SPEC_ATTR_ID,
-        SPEC_ATTR_EXTERNAL_ID,
-        SPEC_ATTR_PROVISION_SHARD_ID,
-        SPEC_ATTR_VERSION,
-        SPEC_ATTR_INITIAL_VERSION,
-        SPEC_ATTR_HYPERSHIFT,
-    }
-    @staticmethod
-    def create_cluster(ocm: OCM, name: str, cluster: OCMSpec, dry_run: bool):
-        ocm_spec = OCMProductOsd._get_create_cluster_spec(name, cluster)
-        api = f"{CS_API_BASE}/v1/clusters"
-        params = {}
-        if dry_run:
-            params["dryRun"] = "true"
-        ocm._post(api, ocm_spec, params)
-    @staticmethod
-    def update_cluster(ocm: OCM, cluster_name: str, update_spec: Mapping[str, Any]):
-        ocm_spec = OCMProductOsd._get_update_cluster_spec(update_spec)
-        cluster_id = ocm.cluster_ids.get(cluster_name)
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}"
-        params: dict[str, Any] = {}
-        ocm._patch(api, ocm_spec, params)
-    @staticmethod
-    def get_ocm_spec(
-        ocm: OCM, cluster: Mapping[str, Any], init_provision_shards: bool
-    ) -> OCMSpec:
-        if init_provision_shards:
-            provision_shard_id = ocm.get_provision_shard(cluster["id"])["id"]
-        else:
-            provision_shard_id = None
-        autoscale = cluster["nodes"].get("autoscale_compute")
-        autoscale_spec = (
-            OCMClusterAutoscale(
-                max_replicas=autoscale.get("max_replicas"),
-                min_replicas=autoscale.get("min_replicas"),
-            )
-            if autoscale
-            else None
-        )
-        spec = OCMClusterSpec(
-            product=cluster["product"]["id"],
-            id=cluster["id"],
-            external_id=cluster["external_id"],
-            provider=cluster["cloud_provider"]["id"],
-            region=cluster["region"]["id"],
-            channel=cluster["version"]["channel_group"],
-            version=cluster["version"]["raw_id"],
-            multi_az=cluster["multi_az"],
-            instance_type=cluster["nodes"]["compute_machine_type"]["id"],
-            private=cluster["api"]["listening"] == "internal",
-            disable_user_workload_monitoring=cluster[
-                "disable_user_workload_monitoring"
-            ],
-            provision_shard_id=provision_shard_id,
-            nodes=cluster["nodes"].get("compute"),
-            autoscale=autoscale_spec,
-            hypershift=cluster["hypershift"]["enabled"],
-        )
-        if not cluster["ccs"]["enabled"]:
-            cluster_spec_data = spec.dict()
-            cluster_spec_data["storage"] = (
-                cluster["storage_quota"]["value"] // BYTES_IN_GIGABYTE
-            )
-            cluster_spec_data["load_balancers"] = cluster["load_balancer_quota"]
-            spec = OSDClusterSpec(**cluster_spec_data)
-        network = OCMClusterNetwork(
-            type=cluster["network"].get("type") or "OVNKubernetes",
-            vpc=cluster["network"]["machine_cidr"],
-            service=cluster["network"]["service_cidr"],
-            pod=cluster["network"]["pod_cidr"],
-        )
-        ocm_spec = OCMSpec(
-            console_url=cluster["console"]["url"],
-            server_url=cluster["api"]["url"],
-            domain=cluster["dns"]["base_domain"],
-            spec=spec,
-            network=network,
-        )
-        return ocm_spec
-    @staticmethod
-    def _get_create_cluster_spec(cluster_name: str, cluster: OCMSpec) -> dict[str, Any]:
-        ocm_spec: dict[str, Any] = {
-            "name": cluster_name,
-            "cloud_provider": {"id": cluster.spec.provider},
-            "region": {"id": cluster.spec.region},
-            "version": {
-                "id": f"openshift-v{cluster.spec.initial_version}",
-                "channel_group": cluster.spec.channel,
-            },
-            "multi_az": cluster.spec.multi_az,
-            "nodes": {"compute_machine_type": {"id": cluster.spec.instance_type}},
-            "network": {
-                "type": cluster.network.type or "OVNKubernetes",
-                "machine_cidr": cluster.network.vpc,
-                "service_cidr": cluster.network.service,
-                "pod_cidr": cluster.network.pod,
-            },
-            "api": {"listening": "internal" if cluster.spec.private else "external"},
-            "disable_user_workload_monitoring": cluster.spec.disable_user_workload_monitoring
-            or True,
-        }
-        # Workaround to enable type checks.
-        # cluster.spec is a Union of pydantic models Union[OSDClusterSpec, RosaClusterSpec].
-        # In this case, cluster.spec will always be an OSDClusterSpec because the type
-        # assignment is managed by pydantic, however, mypy complains if OSD attributes are set
-        # outside the isinstance check because it checks all the types set in the Union.
-        if isinstance(cluster.spec, OSDClusterSpec):
-            ocm_spec["storage_quota"] = {
-                "value": float(cluster.spec.storage * BYTES_IN_GIGABYTE),
-            }
-            ocm_spec["load_balancer_quota"] = cluster.spec.load_balancers
-        provision_shard_id = cluster.spec.provision_shard_id
-        if provision_shard_id:
-            ocm_spec.setdefault("properties", {})
-            ocm_spec["properties"]["provision_shard_id"] = provision_shard_id
-        autoscale = cluster.spec.autoscale
-        if autoscale is not None:
-            ocm_spec["nodes"]["autoscale_compute"] = autoscale.dict()
-        else:
-            ocm_spec["nodes"]["compute"] = cluster.spec.nodes
-        return ocm_spec
-    @staticmethod
-    def _get_update_cluster_spec(update_spec: Mapping[str, Any]) -> dict[str, Any]:
-        ocm_spec: dict[str, Any] = {}
-        storage = update_spec.get("storage")
-        if storage is not None:
-            ocm_spec["storage_quota"] = {"value": float(storage * 1073741824)}  # 1024^3
-        load_balancers = update_spec.get("load_balancers")
-        if load_balancers is not None:
-            ocm_spec["load_balancer_quota"] = load_balancers
-        private = update_spec.get("private")
-        if private is not None:
-            ocm_spec["api"] = {"listening": "internal" if private else "external"}
-        channel = update_spec.get("channel")
-        if channel is not None:
-            ocm_spec["version"] = {"channel_group": channel}
-        autoscale = update_spec.get("autoscale")
-        if autoscale is not None:
-            ocm_spec["nodes"] = {"autoscale_compute": autoscale}
-        nodes = update_spec.get("nodes")
-        if nodes:
-            ocm_spec["nodes"] = {"compute": update_spec["nodes"]}
-        disable_uwm = update_spec.get("disable_user_workload_monitoring")
-        if disable_uwm is not None:
-            ocm_spec["disable_user_workload_monitoring"] = disable_uwm
-        return ocm_spec
-class OCMProductRosa(OCMProduct):
-    ALLOWED_SPEC_UPDATE_FIELDS = {
-        SPEC_ATTR_CHANNEL,
-        SPEC_ATTR_AUTOSCALE,
-        SPEC_ATTR_NODES,
-        SPEC_ATTR_DISABLE_UWM,
-    }
-    EXCLUDED_SPEC_FIELDS = {
-        SPEC_ATTR_ID,
-        SPEC_ATTR_EXTERNAL_ID,
-        SPEC_ATTR_PROVISION_SHARD_ID,
-        SPEC_ATTR_VERSION,
-        SPEC_ATTR_INITIAL_VERSION,
-        SPEC_ATTR_ACCOUNT,
-        SPEC_ATTR_HYPERSHIFT,
-        SPEC_ATTR_SUBNET_IDS,
-        SPEC_ATTR_AVAILABILITY_ZONES,
-    }
-    @staticmethod
-    def create_cluster(ocm: OCM, name: str, cluster: OCMSpec, dry_run: bool):
-        ocm_spec = OCMProductRosa._get_create_cluster_spec(name, cluster)
-        api = f"{CS_API_BASE}/v1/clusters"
-        params = {}
-        if dry_run:
-            params["dryRun"] = "true"
-            if cluster.spec.hypershift:
-                logging.info(
-                    "Dry-Run is not yet implemented for Hosted clusters. Here is the payload:"
-                )
-                logging.info(ocm_spec)
-                return
-        ocm._post(api, ocm_spec, params)
-    @staticmethod
-    def update_cluster(ocm: OCM, cluster_name: str, update_spec: Mapping[str, Any]):
-        ocm_spec = OCMProductRosa._get_update_cluster_spec(update_spec)
-        cluster_id = ocm.cluster_ids.get(cluster_name)
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}"
-        params: dict[str, Any] = {}
-        ocm._patch(api, ocm_spec, params)
-    @staticmethod
-    def get_ocm_spec(
-        ocm: OCM, cluster: Mapping[str, Any], init_provision_shards: bool
-    ) -> OCMSpec:
-        if init_provision_shards:
-            provision_shard_id = ocm.get_provision_shard(cluster["id"])["id"]
-        else:
-            provision_shard_id = None
-        autoscale = cluster["nodes"].get("autoscale_compute")
-        autoscale_spec = (
-            OCMClusterAutoscale(
-                max_replicas=autoscale.get("max_replicas"),
-                min_replicas=autoscale.get("min_replicas"),
-            )
-            if autoscale
-            else None
-        )
-        account = ROSAClusterAWSAccount(
-            uid=cluster["properties"]["rosa_creator_arn"].split(":")[4],
-            rosa=ROSAOcmAwsAttrs(
-                creator_role_arn=cluster["properties"]["rosa_creator_arn"],
-                installer_role_arn=cluster["aws"]["sts"]["role_arn"],
-                support_role_arn=cluster["aws"]["sts"]["support_role_arn"],
-                controlplane_role_arn=cluster["aws"]["sts"]["instance_iam_roles"][
-                    "master_role_arn"
-                ],
-                worker_role_arn=cluster["aws"]["sts"]["instance_iam_roles"][
-                    "worker_role_arn"
-                ],
-            ),
-        )
-        spec = ROSAClusterSpec(
-            product=cluster["product"]["id"],
-            account=account,
-            id=cluster["id"],
-            external_id=cluster.get("external_id"),
-            provider=cluster["cloud_provider"]["id"],
-            region=cluster["region"]["id"],
-            channel=cluster["version"]["channel_group"],
-            version=cluster["version"]["raw_id"],
-            multi_az=cluster["multi_az"],
-            instance_type=cluster["nodes"]["compute_machine_type"]["id"],
-            private=cluster["api"]["listening"] == "internal",
-            disable_user_workload_monitoring=cluster[
-                "disable_user_workload_monitoring"
-            ],
-            provision_shard_id=provision_shard_id,
-            nodes=cluster["nodes"].get("compute"),
-            autoscale=autoscale_spec,
-            hypershift=cluster["hypershift"]["enabled"],
-            subnet_ids=cluster["aws"].get("subnet_ids"),
-            availability_zones=cluster["nodes"].get("availability_zones"),
-        )
-        network = OCMClusterNetwork(
-            type=cluster["network"].get("type") or "OVNKubernetes",
-            vpc=cluster["network"]["machine_cidr"],
-            service=cluster["network"]["service_cidr"],
-            pod=cluster["network"]["pod_cidr"],
-        )
-        ocm_spec = OCMSpec(
-            console_url=cluster["console"]["url"],
-            server_url=cluster["api"]["url"],
-            domain=cluster["dns"]["base_domain"],
-            spec=spec,
-            network=network,
-        )
-        return ocm_spec
-    @staticmethod
-    def _get_create_cluster_spec(cluster_name: str, cluster: OCMSpec) -> dict[str, Any]:
-        operator_roles_prefix = "".join(
-            "".join(random.choices(string.ascii_lowercase + string.digits, k=4))
-        )
-        ocm_spec: dict[str, Any] = {
-            "api": {"listening": "internal" if cluster.spec.private else "external"},
-            "name": cluster_name,
-            "cloud_provider": {"id": cluster.spec.provider},
-            "region": {"id": cluster.spec.region},
-            "version": {
-                "id": f"openshift-v{cluster.spec.initial_version}",
-                "channel_group": cluster.spec.channel,
-            },
-            "hypershift": {"enabled": cluster.spec.hypershift},
-            "multi_az": cluster.spec.multi_az,
-            "nodes": {"compute_machine_type": {"id": cluster.spec.instance_type}},
-            "network": {
-                "type": cluster.network.type or "OVNKubernetes",
-                "machine_cidr": cluster.network.vpc,
-                "service_cidr": cluster.network.service,
-                "pod_cidr": cluster.network.pod,
-            },
-            "disable_user_workload_monitoring": cluster.spec.disable_user_workload_monitoring
-            or True,
-        }
-        provision_shard_id = cluster.spec.provision_shard_id
-        if provision_shard_id:
-            ocm_spec.setdefault("properties", {})
-            ocm_spec["properties"]["provision_shard_id"] = provision_shard_id
-        autoscale = cluster.spec.autoscale
-        if autoscale is not None:
-            ocm_spec["nodes"]["autoscale_compute"] = autoscale.dict()
-        else:
-            ocm_spec["nodes"]["compute"] = cluster.spec.nodes
-        if isinstance(cluster.spec, ROSAClusterSpec):
-            ocm_spec.setdefault("properties", {})
-            ocm_spec["properties"][
-                "rosa_creator_arn"
-            ] = cluster.spec.account.rosa.creator_role_arn
-            rosa_spec: dict[str, Any] = {
-                "product": {"id": "rosa"},
-                "ccs": {"enabled": True},
-                "aws": {
-                    "account_id": cluster.spec.account.uid,
-                    "sts": {
-                        "enabled": True,
-                        "auto_mode": True,
-                        "role_arn": cluster.spec.account.rosa.installer_role_arn,
-                        "support_role_arn": cluster.spec.account.rosa.support_role_arn,
-                        "instance_iam_roles": {
-                            "master_role_arn": cluster.spec.account.rosa.controlplane_role_arn,
-                            "worker_role_arn": cluster.spec.account.rosa.worker_role_arn,
-                        },
-                        "operator_role_prefix": f"{cluster_name}-{operator_roles_prefix}",
-                    },
-                },
-            }
-            if cluster.spec.hypershift:
-                ocm_spec["nodes"][
-                    "availability_zones"
-                ] = cluster.spec.availability_zones
-                rosa_spec["aws"]["subnet_ids"] = cluster.spec.subnet_ids
-        ocm_spec.update(rosa_spec)
-        return ocm_spec
-    @staticmethod
-    def _get_update_cluster_spec(update_spec: Mapping[str, Any]) -> dict[str, Any]:
-        ocm_spec: dict[str, Any] = {}
-        channel = update_spec.get(SPEC_ATTR_CHANNEL)
-        if channel is not None:
-            ocm_spec["version"] = {"channel_group": channel}
-        autoscale = update_spec.get(SPEC_ATTR_AUTOSCALE)
-        if autoscale is not None:
-            ocm_spec["nodes"] = {"autoscale_compute": autoscale}
-        nodes = update_spec.get(SPEC_ATTR_NODES)
-        if nodes:
-            ocm_spec["nodes"] = {"compute": update_spec["nodes"]}
-        disable_uwm = update_spec.get(SPEC_ATTR_DISABLE_UWM)
-        if disable_uwm is not None:
-            ocm_spec["disable_user_workload_monitoring"] = disable_uwm
-        return ocm_spec
-OCM_PRODUCTS_IMPL = {
-    OCM_PRODUCT_OSD: OCMProductOsd,
-    OCM_PRODUCT_ROSA: OCMProductRosa,
-}
-class SectorConfigError(Exception):
-    pass
-@dataclass
-class Sector:
-    name: str
-    ocm: OCM
-    dependencies: list[Sector] = field(default_factory=lambda: [])
-    cluster_infos: list[dict[Any, Any]] = field(default_factory=lambda: [])
-    _validated_dependencies: Optional[set[Sector]] = None
-    def __key(self):
-        return (self.ocm.name, self.name)
-    def __hash__(self) -> int:
-        return hash(self.__key())
-    def __str__(self) -> str:
-        return f"{self.ocm.name}/{self.name}"
-    def ocmspec(self, cluster_name: str) -> OCMSpec:
-        return self.ocm.clusters[cluster_name]
-    def _iter_dependencies(self) -> Iterable[Sector]:
-        """
-        iterate reccursively over all the sector dependencies
-        """
-        logging.debug(f"[{self}] checking dependencies")
-        for dep in self.dependencies or []:
-            if self == dep:
-                raise SectorConfigError(
-                    f"[{self}] infinite sector dependency loop detected: depending on itself"
-                )
-            yield dep
-            for d in dep._iter_dependencies():
-                if self == d:
-                    raise SectorConfigError(
-                        f"[{self}] infinite sector dependency loop detected under {dep} dependencies"
-                    )
-                yield d
-    def validate_dependencies(self) -> bool:
-        list(self._iter_dependencies())
-        return True
 class OCM:  # pylint: disable=too-many-public-methods
     """
@@ -595,18 +87,24 @@ class OCM:  # pylint: disable=too-many-public-methods
         self,
         name,
         org_id,
+        ocm_env: str,
         ocm_client: OCMBaseClient,
         init_provision_shards=False,
         init_addons=False,
         init_version_gates=False,
         blocked_versions=None,
-        sectors: Optional[list[dict[str, Any]]] = None,
-        inheritVersionData: Optional[list[dict[str, Any]]] = None,
+        inheritVersionData: list[dict[str, Any]] | None = None,
+        product_portfolio: OCMProductPortfolio | None = None,
     ):
         """Initiates access token and gets clusters information."""
         self.name = name
         self._ocm_client = ocm_client
         self.org_id = org_id
+        self.ocm_env = ocm_env
+        if product_portfolio is None:
+            self.product_portfolio = build_product_portfolio()
+        else:
+            self.product_portfolio = product_portfolio
         self._init_clusters(init_provision_shards=init_provision_shards)
         if init_addons:
@@ -614,8 +112,6 @@ class OCM:  # pylint: disable=too-many-public-methods
         self._init_blocked_versions(blocked_versions)
-        self.inheritVersionData = inheritVersionData or []
         self.init_version_gates = init_version_gates
         self.version_gates: list[Any] = []
         if init_version_gates:
@@ -629,29 +125,25 @@ class OCM:  # pylint: disable=too-many-public-methods
             self.get_aws_infrastructure_access_role_grants
         )
-        # organization sectors and their dependencies
-        self.sectors: dict[str, Sector] = {}
-        for sector in sectors or []:
-            sector_name = sector["name"]
-            self.sectors[sector_name] = Sector(name=sector_name, ocm=self)
-        for sector in sectors or []:
-            s = self.sectors[sector["name"]]
-            for dep in sector.get("dependencies") or []:
-                s.dependencies.append(self.sectors[dep["name"]])
+    @property
+    def ocm_api(self) -> OCMBaseClient:
+        return self._ocm_client
-    @staticmethod
-    def _ready_for_app_interface(cluster: dict[str, Any]) -> bool:
+    def _ready_for_app_interface(self, cluster: dict[str, Any]) -> bool:
         return (
             cluster["managed"]
             and cluster["state"] == STATUS_READY
-            and cluster["product"]["id"] in OCM_PRODUCTS_IMPL
+            and cluster["product"]["id"] in self.product_portfolio.product_names
         )
     def _init_clusters(self, init_provision_shards: bool):
         api = f"{CS_API_BASE}/v1/clusters"
-        params = {"search": f"organization.id='{self.org_id}'"}
+        product_csv = ",".join([f"'{p}'" for p in self.product_portfolio.product_names])
+        params = {
+            "search": f"organization.id='{self.org_id}' and managed='true' and product.id in ({product_csv})"
+        }
         clusters = self._get_json(api, params=params).get("items", [])
-        self.cluster_ids = {c["name"]: c["id"] for c in clusters}
+        self.cluster_ids: dict[str, str] = {c["name"]: c["id"] for c in clusters}
         self.clusters: dict[str, OCMSpec] = {}
         self.available_cluster_upgrades: dict[str, list[str]] = {}
@@ -668,30 +160,41 @@ class OCM:  # pylint: disable=too-many-public-methods
             else:
                 self.not_ready_clusters.add(cluster_name)
+    @property
+    def non_blocked_cluster_upgrades(self) -> dict[str, list[str]]:
+        return {
+            cluster: [v for v in versions or [] if not self.version_blocked(v)]
+            for cluster, versions in self.available_cluster_upgrades.items()
+        }
     def is_ready(self, cluster):
         return cluster in self.clusters
-    def _get_ocm_impl(self, product: str):
-        return OCM_PRODUCTS_IMPL[product]
+    def get_product_impl(
+        self, product: str, hypershift: bool | None = False
+    ) -> OCMProduct:
+        return self.product_portfolio.get_product_impl(product, hypershift)
     def _get_cluster_ocm_spec(
         self, cluster: Mapping[str, Any], init_provision_shards: bool
     ) -> OCMSpec:
-        impl = self._get_ocm_impl(cluster["product"]["id"])
-        spec = impl.get_ocm_spec(self, cluster, init_provision_shards)
+        impl = self.get_product_impl(
+            cluster["product"]["id"], cluster["hypershift"]["enabled"]
+        )
+        spec = impl.get_ocm_spec(self.ocm_api, cluster, init_provision_shards)
         return spec
     def create_cluster(self, name: str, cluster: OCMSpec, dry_run: bool):
-        impl = self._get_ocm_impl(cluster.spec.product)
-        impl.create_cluster(self, name, cluster, dry_run)
+        impl = self.get_product_impl(cluster.spec.product, cluster.spec.hypershift)
+        impl.create_cluster(self.ocm_api, self.org_id, name, cluster, dry_run)
     def update_cluster(
         self, cluster_name: str, update_spec: Mapping[str, Any], dry_run=False
     ):
         cluster = self.clusters[cluster_name]
-        impl = self._get_ocm_impl(cluster.spec.product)
-        impl.update_cluster(self, cluster_name, update_spec)
+        cluster_id = self.cluster_ids[cluster_name]
+        impl = self.get_product_impl(cluster.spec.product, cluster.spec.hypershift)
+        impl.update_cluster(self.ocm_api, cluster_id, update_spec, dry_run)
     def get_group_if_exists(self, cluster, group_id):
         """Returns a list of users in a group in a cluster.
@@ -749,7 +252,7 @@ class OCM:  # pylint: disable=too-many-public-methods
         )
         self._delete(api)
-    def get_cluster_aws_account_id(self, cluster: str) -> Optional[str]:
+    def get_cluster_aws_account_id(self, cluster: str) -> str | None:
         """Returns the AWS account id of the cluster.
         Since there is no direct API to get this information,
         we hack our way by relying on existing role grants
@@ -870,8 +373,6 @@ class OCM:  # pylint: disable=too-many-public-methods
         for idp in idps:
             if idp["type"] != "GithubIdentityProvider":
                 continue
-            if idp["mapping_method"] != "claim":
-                continue
             idp_name = idp["name"]
             idp_github = idp["github"]
@@ -899,7 +400,7 @@ class OCM:  # pylint: disable=too-many-public-methods
         api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/identity_providers"
         payload = {
             "type": "GithubIdentityProvider",
-            "mapping_method": "claim",
+            "mapping_method": "add",
             "name": spec["name"],
             "github": {
                 "client_id": spec["client_id"],
@@ -909,98 +410,18 @@ class OCM:  # pylint: disable=too-many-public-methods
         }
         self._post(api, payload)
-    def _check_oidc_idp_params(self, oidc_idp: OCMOidcIdp, attrs: Iterable[str]):
-        for attr in attrs:
-            if not getattr(oidc_idp, attr):
-                raise ParameterError(
-                    f"{attrs} are mandatory parameters cannot be empty."
-                )
+    def get_kubeconfig(self, cluster: str) -> str | None:
+        """Returns the cluster credentials (kubeconfig)
+        :param cluster: cluster name
-    def get_oidc_idps(self, cluster: str) -> list[OCMOidcIdp]:
-        """Returns a list of details of OpenID connect IDP providers."""
+        :type cluster: string
+        """
         cluster_id = self.cluster_ids.get(cluster)
         if not cluster_id:
-            return []
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/identity_providers"
-        idps = self._get_json(api).get("items")
-        if not idps:
-            return []
-        results = []
-        for idp in idps:
-            if idp["type"] != "OpenIDIdentityProvider":
-                continue
-            claims = idp["open_id"].get("claims", {})
-            results.append(
-                OCMOidcIdp(
-                    cluster=cluster,
-                    id=idp["id"],
-                    name=idp["name"],
-                    client_id=idp["open_id"]["client_id"],
-                    issuer=idp["open_id"]["issuer"],
-                    email_claims=claims.get("email", []),
-                    name_claims=claims.get("name", []),
-                    username_claims=claims.get("preferred_username", []),
-                    groups_claims=claims.get("groups", []),
-                )
-            )
-        return results
-    def create_oidc_idp(self, oidc_idp: OCMOidcIdp) -> None:
-        """Creates a new OpenID Connect IDP."""
-        cluster_id = self.cluster_ids[oidc_idp.cluster]
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/identity_providers"
-        self._check_oidc_idp_params(
-            oidc_idp,
-            attrs=["email_claims", "name_claims", "username_claims", "client_secret"],
-        )
-        payload = {
-            "type": "OpenIDIdentityProvider",
-            "name": oidc_idp.name,
-            "mapping_method": "claim",
-            "open_id": {
-                "claims": {
-                    "email": oidc_idp.email_claims,
-                    "name": oidc_idp.name_claims,
-                    "preferred_username": oidc_idp.username_claims,
-                    "groups": oidc_idp.groups_claims,
-                },
-                "client_id": oidc_idp.client_id,
-                "client_secret": oidc_idp.client_secret,
-                "issuer": oidc_idp.issuer,
-            },
-        }
-        self._post(api, payload)
-    def update_oidc_idp(self, id: str, oidc_idp: OCMOidcIdp) -> None:
-        """Update an existing OpenID Connect IDP."""
-        cluster_id = self.cluster_ids[oidc_idp.cluster]
-        self._check_oidc_idp_params(
-            oidc_idp,
-            attrs=["email_claims", "name_claims", "username_claims", "client_secret"],
-        )
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/identity_providers/{id}"
-        payload = {
-            "type": "OpenIDIdentityProvider",
-            "open_id": {
-                "claims": {
-                    "email": oidc_idp.email_claims,
-                    "name": oidc_idp.name_claims,
-                    "preferred_username": oidc_idp.username_claims,
-                    "groups": oidc_idp.groups_claims,
-                },
-                "client_id": oidc_idp.client_id,
-                "client_secret": oidc_idp.client_secret,
-                "issuer": oidc_idp.issuer,
-            },
-        }
-        self._patch(api, payload)
-    def delete_idp(self, cluster: str, idp_id: str) -> None:
-        """Delete an IDP."""
-        cluster_id = self.cluster_ids[cluster]
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/identity_providers/{idp_id}"
-        self._delete(api)
+            return None
+        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/credentials"
+        return self._get_json(api).get("kubeconfig")
     def get_external_configuration_labels(self, cluster: str) -> dict[str, str]:
         """Returns details of External Configurations
@@ -1066,32 +487,6 @@ class OCM:  # pylint: disable=too-many-public-methods
         )
         self._delete(api)
-    def _get_subscription_labels_api(self, cluster: str) -> str:
-        cluster_id = self.cluster_ids[cluster]
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}"
-        subscription_api = self._get_json(api)["subscription"]["href"]
-        return f"{subscription_api}/labels"
-    def is_cluster_admin_enabled(self, cluster: str) -> bool:
-        api = self._get_subscription_labels_api(cluster)
-        subcription_labels = self._get_json(api).get("items")
-        for sl in subcription_labels or []:
-            if sl["key"] == CLUSTER_ADMIN_LABEL_KEY and sl["value"] == "true":
-                return True
-        return False
-    def enable_cluster_admin(self, cluster: str):
-        api = self._get_subscription_labels_api(cluster)
-        data = {
-            "key": CLUSTER_ADMIN_LABEL_KEY,
-            "value": "true",
-            "internal": True,
-        }
-        self._post(api, data)
     def get_machine_pools(self, cluster):
         """Returns a list of details of Machine Pools
@@ -1163,6 +558,63 @@ class OCM:  # pylint: disable=too-many-public-methods
         )
         self._delete(api)
+    def get_node_pools(self, cluster):
+        """Returns a list of details of Node Pools
+        :param cluster: cluster name
+        :type cluster: string
+        """
+        results = []
+        cluster_id = self.cluster_ids.get(cluster)
+        if not cluster_id:
+            return results
+        return get_node_pools(self._ocm_client, cluster_id)
+    def delete_node_pool(self, cluster, spec):
+        """Deletes an existing Node Pool
+        :param cluster: cluster name
+        :param spec: required information for node pool update
+        :type cluster: string
+        :type spec: dictionary
+        """
+        cluster_id = self.cluster_ids[cluster]
+        node_pool_id = spec["id"]
+        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/node_pools/" + f"{node_pool_id}"
+        self._delete(api)
+    def create_node_pool(self, cluster, spec):
+        """Creates a new Node Pool
+        :param cluster: cluster name
+        :param spec: required information for node pool creation
+        :type cluster: string
+        :type spec: dictionary
+        """
+        cluster_id = self.cluster_ids[cluster]
+        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/node_pools"
+        self._post(api, spec)
+    def update_node_pool(self, cluster, spec):
+        """Updates an existing Node Pool
+        :param cluster: cluster name
+        :param spec: required information for node pool update
+        :type cluster: string
+        :type spec: dictionary
+        """
+        cluster_id = self.cluster_ids[cluster]
+        node_pool_id = spec["id"]
+        labels = spec.get("labels", {})
+        spec["labels"] = labels
+        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/node_pools/" + f"{node_pool_id}"
+        self._patch(api, spec)
     def addon_version_blocked(self, version: str, addon_id: str) -> bool:
         """Check if an addon version is blocked
@@ -1191,81 +643,16 @@ class OCM:  # pylint: disable=too-many-public-methods
         """
         return any(re.search(b, version) for b in self.blocked_versions)
-    def get_available_upgrades(self, version, channel):
-        """Get available versions to upgrade from specified version
-        in the specified channel
+    def get_available_upgrades(self, cluster_name: str) -> list[str]:
+        """Get available versions to upgrade for a specific cluster.
         Args:
-            version (string): OpenShift version ID
-            channel (string): Upgrade channel
-        Raises:
-            KeyError: if specified channel is not valid
+            cluster_name (string): cluster display name to get available upgrades for
         Returns:
-            list: available versions to upgrade to
-        """
-        if channel not in UPGRADE_CHANNELS:
-            raise KeyError(f"channel should be one of {UPGRADE_CHANNELS}")
-        version_id = f"openshift-v{version}"
-        if channel != "stable":
-            version_id = f"{version_id}-{channel}"
-        api = f"{CS_API_BASE}/v1/versions/{version_id}"
-        return self._get_json(api).get("available_upgrades", [])
-    def get_upgrade_policies(self, cluster, schedule_type=None) -> list[dict[str, Any]]:
-        """Returns a list of details of Upgrade Policies
-        :param cluster: cluster name
-        :type cluster: string
-        """
-        results: list[dict[str, Any]] = []
-        cluster_id = self.cluster_ids.get(cluster)
-        if not cluster_id:
-            return results
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/upgrade_policies"
-        items = self._get_json(api).get("items")
-        if not items:
-            return results
-        for item in items:
-            if schedule_type and item["schedule_type"] != schedule_type:
-                continue
-            result = {k: v for k, v in item.items() if k in UPGRADE_POLICY_DESIRED_KEYS}
-            results.append(result)
-        return results
-    def create_upgrade_policy(self, cluster, spec):
-        """Creates a new Upgrade Policy
-        :param cluster: cluster name
-        :param spec: required information for creation
-        :type cluster: string
-        :type spec: dictionary
-        """
-        cluster_id = self.cluster_ids[cluster]
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/upgrade_policies"
-        self._post(api, spec)
-    def delete_upgrade_policy(self, cluster, spec):
-        """Deletes an existing Upgrade Policy
-        :param cluster: cluster name
-        :param spec: required information for update
-        :type cluster: string
-        :type spec: dictionary
+            list: a non-null but potentially empty list of available versions to upgrade to
         """
-        cluster_id = self.cluster_ids[cluster]
-        upgrade_policy_id = spec["id"]
-        api = (
-            f"{CS_API_BASE}/v1/clusters/{cluster_id}/"
-            + f"upgrade_policies/{upgrade_policy_id}"
-        )
-        self._delete(api)
+        return self.available_cluster_upgrades.get(cluster_name) or []
     def get_additional_routers(self, cluster):
         """Returns a list of Additional Application Routers
@@ -1319,16 +706,6 @@ class OCM:  # pylint: disable=too-many-public-methods
         api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/" + f"ingresses/{router_id}"
         self._delete(api)
-    def get_provision_shard(self, cluster_id):
-        """Returns details of the provision shard
-        :param cluster: cluster id
-        :type cluster: string
-        """
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/provision_shard"
-        return self._get_json(api)
     @staticmethod
     def _get_autoscale(cluster):
         autoscale = cluster["nodes"].get("autoscale_compute", None)
@@ -1346,45 +723,6 @@ class OCM:  # pylint: disable=too-many-public-methods
         api = f"{AMS_API_BASE}/v1/access_token"
         return self._post(api)
-    def get_kafka_clusters(self, fields=None):
-        """Returns details of the Kafka clusters"""
-        api = f"{KAS_API_BASE}/v1/kafkas"
-        clusters = self._get_json(api)["items"]
-        if fields:
-            clusters = [
-                {k: v for k, v in cluster.items() if k in fields}
-                for cluster in clusters
-            ]
-        return clusters
-    def get_kafka_service_accounts(self, fields=None):
-        """Returns details of the Kafka service accounts"""
-        results = []
-        api = f"{KAS_API_BASE}/v1/service_accounts"
-        service_accounts = self._get_json(api)["items"]
-        for sa in service_accounts:
-            sa_id = sa["id"]
-            id_api = f"{api}/{sa_id}"
-            sa_details = self._get_json(id_api)
-            if fields:
-                sa_details = {k: v for k, v in sa_details.items() if k in fields}
-            results.append(sa_details)
-        return results
-    def create_kafka_cluster(self, data):
-        """Creates (async) a Kafka cluster"""
-        api = f"{KAS_API_BASE}/v1/kafkas"
-        params = {"async": "true"}
-        self._post(api, data, params)
-    def create_kafka_service_account(self, name, fields=None):
-        """Creates a Kafka service account"""
-        api = f"{KAS_API_BASE}/v1/service_accounts"
-        result = self._post(api, {"name": name})
-        if fields:
-            result = {k: v for k, v in result.items() if k in fields}
-        return result
     def _init_addons(self):
         """Returns a list of Addons"""
         api = f"{CS_API_BASE}/v1/addons"
@@ -1411,58 +749,6 @@ class OCM:  # pylint: disable=too-many-public-methods
                 return addon["version"]["id"]
         return None
-    def get_addon_upgrade_policies(
-        self, cluster_name: str, addon_id: str = ""
-    ) -> list[dict[str, Any]]:
-        results: list[dict[str, Any]] = []
-        cluster_id = self.cluster_ids.get(cluster_name)
-        if not cluster_id:
-            return results
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/addon_upgrade_policies"
-        items = self._get_json(api).get("items")
-        if not items:
-            return results
-        for item in items:
-            if addon_id and item["addon_id"] != addon_id:
-                continue
-            result = {
-                k: v for k, v in item.items() if k in ADDON_UPGRADE_POLICY_DESIRED_KEYS
-            }
-            results.append(result)
-        return results
-    def create_addon_upgrade_policy(self, cluster_name: str, spec: dict) -> None:
-        """Creates a new Addon Upgrade Policy
-        :param cluster: cluster name
-        :param spec: required information for creation
-        :type cluster: string
-        :type spec: dictionary
-        """
-        cluster_id = self.cluster_ids[cluster_name]
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/addon_upgrade_policies"
-        self._post(api, spec)
-    def delete_addon_upgrade_policy(self, cluster_name: str, spec: dict) -> None:
-        """Deletes an existing Addon Upgrade Policy
-        :param cluster: cluster name
-        :param spec: required information for delete
-        :type cluster: string
-        :type spec: dictionary
-        """
-        cluster_id = self.cluster_ids[cluster_name]
-        upgrade_policy_id = spec["id"]
-        api = (
-            f"{CS_API_BASE}/v1/clusters/{cluster_id}/"
-            + f"addon_upgrade_policies/{upgrade_policy_id}"
-        )
-        self._delete(api)
     def get_version_gates(
         self, version_prefix: str, sts_only: bool = False
     ) -> list[dict[str, Any]]:
@@ -1475,31 +761,17 @@ class OCM:  # pylint: disable=too-many-public-methods
             and g["sts_only"] == sts_only
         ]
-    def get_version_agreement(self, cluster: str) -> list[dict[str, Any]]:
-        cluster_id = self.cluster_ids.get(cluster)
-        if not cluster_id:
-            return []
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/gate_agreements"
-        agreements = self._get_json(api).get("items")
-        if agreements:
-            return agreements
-        return []
-    def create_version_agreement(
-        self, gate_id: str, cluster: str
-    ) -> dict[str, Union[str, bool]]:
-        cluster_id = self.cluster_ids.get(cluster)
-        if not cluster_id:
-            return {}
-        api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/gate_agreements"
-        return self._post(api, {"version_gate": {"id": gate_id}})
     def get_cluster_addons(
-        self, cluster: str, with_version: bool = False
+        self,
+        cluster: str,
+        with_version: bool = False,
+        required_state: str | None = None,
     ) -> list[dict[str, str]]:
         """Returns a list of Addons installed on a cluster
         :param cluster: cluster name
+        :param with_version: include addon version
+        :param required_state: add search parameter to filter by specified state
         :type cluster: string
         """
@@ -1508,7 +780,12 @@ class OCM:  # pylint: disable=too-many-public-methods
         if not cluster_id:
             return results
         api = f"{CS_API_BASE}/v1/clusters/{cluster_id}/addons"
-        items = self._get_json(api).get("items")
+        p: dict[str, Any] | None = None
+        if required_state:
+            p = {"search": f"state='{required_state}'"}
+        items = self._get_json(api, params=p).get("items")
         if not items:
             return results
@@ -1551,7 +828,9 @@ class OCM:  # pylint: disable=too-many-public-methods
             try:
                 re.compile(b)
             except re.error:
-                raise TypeError(f"blocked version is not a valid regex expression: {b}")
+                raise TypeError(
+                    f"blocked version is not a valid regex expression: {b}"
+                ) from None
     @retry(max_attempts=10)
     def _do_get_request(self, api: str, params: Mapping[str, str]) -> dict[str, Any]:
@@ -1565,7 +844,7 @@ class OCM:  # pylint: disable=too-many-public-methods
         return rs["kind"].endswith("List")
     def _get_json(
-        self, api: str, params: Optional[dict[str, Any]] = None, page_size: int = 100
+        self, api: str, params: dict[str, Any] | None = None, page_size: int = 100
     ) -> dict[str, Any]:
         responses = []
         if not params:
@@ -1653,11 +932,11 @@ class OCMMap:  # pylint: disable=too-many-public-methods
         init_provision_shards=False,
         init_addons=False,
         init_version_gates=False,
-    ):
+        product_portfolio: OCMProductPortfolio | None = None,
+    ) -> None:
         """Initiates OCM instances for each OCM referenced in a cluster."""
-        self.clusters_map = {}
-        self.ocm_map = {}
-        self.sector_map = {}
+        self.clusters_map: dict[str, str] = {}
+        self.ocm_map: dict[str, OCM] = {}
         self.calling_integration = integration
         self.settings = settings
@@ -1671,6 +950,7 @@ class OCMMap:  # pylint: disable=too-many-public-methods
                     init_provision_shards,
                     init_addons,
                     init_version_gates=init_version_gates,
+                    product_portfolio=product_portfolio,
                 )
         elif namespaces:
             for namespace_info in namespaces:
@@ -1680,6 +960,7 @@ class OCMMap:  # pylint: disable=too-many-public-methods
                     init_provision_shards,
                     init_addons,
                     init_version_gates=init_version_gates,
+                    product_portfolio=product_portfolio,
                 )
         elif ocms:
             for ocm in ocms:
@@ -1688,20 +969,21 @@ class OCMMap:  # pylint: disable=too-many-public-methods
                     init_provision_shards,
                     init_addons,
                     init_version_gates=init_version_gates,
+                    product_portfolio=product_portfolio,
                 )
         else:
             raise KeyError("expected one of clusters, namespaces or ocm.")
-        # check sectors dependencies loop
-        for ocm in self.ocm_map.values():
-            for sector in ocm.sectors.values():
-                sector.validate_dependencies()
-    def __getitem__(self, ocm_name) -> OCM:
+    def __getitem__(self, ocm_name: str) -> OCM:
         return self.ocm_map[ocm_name]
     def init_ocm_client_from_cluster(
-        self, cluster_info, init_provision_shards, init_addons, init_version_gates
+        self,
+        cluster_info,
+        init_provision_shards,
+        init_addons,
+        init_version_gates,
+        product_portfolio: OCMProductPortfolio | None = None,
     ):
         if self.cluster_disabled(cluster_info):
             return
@@ -1713,22 +995,20 @@ class OCMMap:  # pylint: disable=too-many-public-methods
         if ocm_name not in self.ocm_map:
             self.init_ocm_client(
-                ocm_info, init_provision_shards, init_addons, init_version_gates
+                ocm_info,
+                init_provision_shards,
+                init_addons,
+                init_version_gates,
+                product_portfolio,
             )
-        if (
-            cluster_info.get("upgradePolicy") is not None
-            and cluster_info["upgradePolicy"].get("conditions") is not None
-        ):
-            sector_name = cluster_info["upgradePolicy"]["conditions"].get("sector")
-            if sector_name:
-                ocm = self.ocm_map.get(ocm_name)
-                # ensure our cluster actually runs in an OCM org we have access to
-                if ocm and ocm.is_ready(cluster_name):
-                    ocm.sectors[sector_name].cluster_infos.append(cluster_info)
     def init_ocm_client(
-        self, ocm_info, init_provision_shards, init_addons, init_version_gates
+        self,
+        ocm_info,
+        init_provision_shards,
+        init_addons,
+        init_version_gates,
+        product_portfolio: OCMProductPortfolio | None = None,
     ):
         """
         Initiate OCM client.
@@ -1771,18 +1051,19 @@ class OCMMap:  # pylint: disable=too-many-public-methods
         self.ocm_map[ocm_name] = OCM(
             name,
             org_id,
+            ocm_environment["name"],
             ocm_client,
             init_provision_shards=init_provision_shards,
             init_addons=init_addons,
             blocked_versions=ocm_info.get("blockedVersions"),
             init_version_gates=init_version_gates,
-            sectors=ocm_info.get("sectors"),
             inheritVersionData=ocm_info.get("inheritVersionData"),
+            product_portfolio=product_portfolio,
         )
     def instances(self) -> list[str]:
         """Get list of OCM instance names initiated in the OCM map."""
-        return self.ocm_map.keys()
+        return list(self.ocm_map.keys())
     def cluster_disabled(self, cluster_info):
         """
@@ -1810,46 +1091,19 @@ class OCMMap:  # pylint: disable=too-many-public-methods
         :type cluster: string
         """
         ocm = self.clusters_map[cluster]
-        return self.ocm_map.get(ocm, None)
+        return self.ocm_map[ocm]
     def clusters(self) -> list[str]:
         """Get list of cluster names initiated in the OCM map."""
         return [k for k, v in self.clusters_map.items() if v]
-    def cluster_specs(self) -> tuple[dict[str, OCMSpec], list]:
+    def cluster_specs(self) -> tuple[dict[str, OCMSpec], list[str]]:
         """Get dictionary of cluster names and specs in the OCM map."""
         cluster_specs = {}
         for v in self.ocm_map.values():
             cluster_specs.update(v.clusters)
-        not_ready_cluster_names = []
+        not_ready_cluster_names: list[str] = []
         for v in self.ocm_map.values():
             not_ready_cluster_names.extend(v.not_ready_clusters)
         return cluster_specs, not_ready_cluster_names
-    def kafka_cluster_specs(self):
-        """Get dictionary of Kafka cluster names and specs in the OCM map."""
-        fields = [
-            "id",
-            "status",
-            "cloud_provider",
-            "region",
-            "multi_az",
-            "name",
-            "bootstrap_server_host",
-            "failed_reason",
-        ]
-        cluster_specs = []
-        for ocm in self.ocm_map.values():
-            clusters = ocm.get_kafka_clusters(fields=fields)
-            cluster_specs.extend(clusters)
-        return cluster_specs
-    def kafka_service_account_specs(self):
-        """Get dictionary of Kafka service account specs in the OCM map."""
-        fields = ["name", "client_id"]
-        service_account_specs = []
-        for ocm in self.ocm_map.values():
-            service_accounts = ocm.get_kafka_service_accounts(fields=fields)
-            service_account_specs.extend(service_accounts)
-        return service_account_specs

qontract-reconcile 0.10.0__py3-none-any.whl → 0.10.1.dev1203__py3-none-any.whl

qontract-reconcile 0.10.0py3-none-any.whl → 0.10.1.dev1203py3-none-any.whl