Acasă Explorează Ajutor
Autentificare
cecf
/
deploy
5
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Arbore: e4538f3d9b
Ramuri Etichete
deploy
/
rook
/
tests
/
integration
/
ceph_object_test.go

ceph_object_test.go 14 KB
Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370 
  1. /*
    2. 

  2. Copyright 2021 The Rook Authors. All rights reserved.
    3. 

  3. 

  4. Licensed under the Apache License, Version 2.0 (the "License");
    5. 

  5. you may not use this file except in compliance with the License.
    6. 

  6. You may obtain a copy of the License at
    7. 

  7. 

  8. 	http://www.apache.org/licenses/LICENSE-2.0
    9. 

  9. 

  10. Unless required by applicable law or agreed to in writing, software
    11. 

  11. distributed under the License is distributed on an "AS IS" BASIS,
    12. 

  12. WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
    13. 

  13. See the License for the specific language governing permissions and
    14. 

  14. limitations under the License.
    15. 

  15. */
    16. 

  16. 

  17. package integration
    18. 

  18. 

  19. import (
    20. 

  20. 	"context"
    21. 

  21. 	"encoding/json"
    22. 

  22. 	"testing"
    23. 

  23. 	"time"
    24. 

  24. 

  25. 	cephv1 "github.com/rook/rook/pkg/apis/ceph.rook.io/v1"
    26. 

  26. 	"github.com/rook/rook/pkg/daemon/ceph/client"
    27. 

  27. 	rgw "github.com/rook/rook/pkg/operator/ceph/object"
    28. 

  28. 	"github.com/rook/rook/tests/framework/clients"
    29. 

  29. 	"github.com/rook/rook/tests/framework/installer"
    30. 

  30. 	"github.com/rook/rook/tests/framework/utils"
    31. 

  31. 	"github.com/stretchr/testify/assert"
    32. 

  32. 	"github.com/stretchr/testify/suite"
    33. 

  33. 	v1 "k8s.io/api/core/v1"
    34. 

  34. 	"k8s.io/apimachinery/pkg/api/errors"
    35. 

  35. 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
    36. 

  36. )
    37. 

  37. 

  38. const (
    39. 

  39. 	objectStoreServicePrefixUniq = "rook-ceph-rgw-"
    40. 

  40. 	objectStoreTLSName           = "tls-test-store"
    41. 

  41. )
    42. 

  42. 

  43. var (
    44. 

  44. 	objectStoreServicePrefix = "rook-ceph-rgw-"
    45. 

  45. )
    46. 

  46. 

  47. func TestCephObjectSuite(t *testing.T) {
    48. 

  48. 	s := new(ObjectSuite)
    49. 

  49. 	defer func(s *ObjectSuite) {
    50. 

  50. 		HandlePanics(recover(), s.TearDownSuite, s.T)
    51. 

  51. 	}(s)
    52. 

  52. 	suite.Run(t, s)
    53. 

  53. }
    54. 

  54. 

  55. type ObjectSuite struct {
    56. 

  56. 	suite.Suite
    57. 

  57. 	helper    *clients.TestClient
    58. 

  58. 	settings  *installer.TestCephSettings
    59. 

  59. 	installer *installer.CephInstaller
    60. 

  60. 	k8sh      *utils.K8sHelper
    61. 

  61. }
    62. 

  62. 

  63. func (s *ObjectSuite) SetupSuite() {
    64. 

  64. 	namespace := "object-ns"
    65. 

  65. 	s.settings = &installer.TestCephSettings{
    66. 

  66. 		ClusterName:             "object-cluster",
    67. 

  67. 		Namespace:               namespace,
    68. 

  68. 		OperatorNamespace:       installer.SystemNamespace(namespace),
    69. 

  69. 		StorageClassName:        installer.StorageClassName(),
    70. 

  70. 		UseHelm:                 false,
    71. 

  71. 		UsePVC:                  installer.UsePVC(),
    72. 

  72. 		Mons:                    3,
    73. 

  73. 		SkipOSDCreation:         false,
    74. 

  74. 		UseCrashPruner:          true,
    75. 

  75. 		EnableVolumeReplication: false,
    76. 

  76. 		RookVersion:             installer.LocalBuildTag,
    77. 

  77. 		CephVersion:             installer.ReturnCephVersion(),
    78. 

  78. 	}
    79. 

  79. 	s.settings.ApplyEnvVars()
    80. 

  80. 	s.installer, s.k8sh = StartTestCluster(s.T, s.settings)
    81. 

  81. 	s.helper = clients.CreateTestClient(s.k8sh, s.installer.Manifests)
    82. 

  82. }
    83. 

  83. 

  84. func (s *ObjectSuite) AfterTest(suiteName, testName string) {
    85. 

  85. 	s.installer.CollectOperatorLog(suiteName, testName)
    86. 

  86. }
    87. 

  87. 

  88. func (s *ObjectSuite) TearDownSuite() {
    89. 

  89. 	s.installer.UninstallRook()
    90. 

  90. }
    91. 

  91. 

  92. func (s *ObjectSuite) TestWithTLS() {
    93. 

  93. 	if utils.IsPlatformOpenShift() {
    94. 

  94. 		s.T().Skip("object store tests skipped on openshift")
    95. 

  95. 	}
    96. 

  96. 

  97. 	tls := true
    98. 

  98. 	objectStoreServicePrefix = objectStoreServicePrefixUniq
    99. 

  99. 	runObjectE2ETest(s.helper, s.k8sh, s.installer, &s.Suite, s.settings.Namespace, tls)
    100. 

  100. 	err := s.k8sh.Clientset.CoreV1().Secrets(s.settings.Namespace).Delete(context.TODO(), objectTLSSecretName, metav1.DeleteOptions{})
    101. 

  101. 	if err != nil {
    102. 

  102. 		if !errors.IsNotFound(err) {
    103. 

  103. 			logger.Fatal("failed to deleted store TLS secret")
    104. 

  104. 		}
    105. 

  105. 	}
    106. 

  106. 	logger.Info("successfully deleted store TLS secret")
    107. 

  107. }
    108. 

  108. 

  109. func (s *ObjectSuite) TestWithoutTLS() {
    110. 

  110. 	if utils.IsPlatformOpenShift() {
    111. 

  111. 		s.T().Skip("object store tests skipped on openshift")
    112. 

  112. 	}
    113. 

  113. 

  114. 	tls := false
    115. 

  115. 	objectStoreServicePrefix = objectStoreServicePrefixUniq
    116. 

  116. 	runObjectE2ETest(s.helper, s.k8sh, s.installer, &s.Suite, s.settings.Namespace, tls)
    117. 

  117. }
    118. 

  118. 

  119. // Smoke Test for ObjectStore - Test check the following operations on ObjectStore in order
    120. 

  120. // Create object store, Create User, Connect to Object Store, Create Bucket, Read/Write/Delete to bucket,
    121. 

  121. // Check issues in MGRs, Delete Bucket and Delete user
    122. 

  122. // Test for ObjectStore with and without TLS enabled
    123. 

  123. func runObjectE2ETest(helper *clients.TestClient, k8sh *utils.K8sHelper, installer *installer.CephInstaller, s *suite.Suite, namespace string, tlsEnable bool) {
    124. 

  124. 	storeName := "test-store"
    125. 

  125. 	if tlsEnable {
    126. 

  126. 		storeName = objectStoreTLSName
    127. 

  127. 	}
    128. 

  128. 

  129. 	logger.Infof("Running on Rook Cluster %s", namespace)
    130. 

  130. 	createCephObjectStore(s.T(), helper, k8sh, installer, namespace, storeName, 3, tlsEnable)
    131. 

  131. 

  132. 	// test that a second object store can be created (and deleted) while the first exists
    133. 

  133. 	s.T().Run("run a second object store", func(t *testing.T) {
    134. 

  134. 		otherStoreName := "other-" + storeName
    135. 

  135. 		// The lite e2e test is perfect, as it only creates a cluster, checks that it is healthy,
    136. 

  136. 		// and then deletes it.
    137. 

  137. 		deleteStore := true
    138. 

  138. 		runObjectE2ETestLite(t, helper, k8sh, installer, namespace, otherStoreName, 1, deleteStore, tlsEnable)
    139. 

  139. 	})
    140. 

  140. 

  141. 	// now test operation of the first object store
    142. 

  142. 	testObjectStoreOperations(s, helper, k8sh, namespace, storeName)
    143. 

  143. 

  144. 	bucketNotificationTestStoreName := "bucket-notification-" + storeName
    145. 

  145. 	createCephObjectStore(s.T(), helper, k8sh, installer, namespace, bucketNotificationTestStoreName, 1, tlsEnable)
    146. 

  146. 	testBucketNotifications(s, helper, k8sh, namespace, bucketNotificationTestStoreName)
    147. 

  147. 	if !tlsEnable {
    148. 

  148. 		// TODO : need to fix COSI driver to support TLS
    149. 

  149. 		logger.Info("Testing COSI driver")
    150. 

  150. 		testCOSIDriver(s, helper, k8sh, installer, namespace)
    151. 

  151. 	} else {
    152. 

  152. 		logger.Info("Skipping COSI driver test as TLS is enabled")
    153. 

  153. 	}
    154. 

  154. }
    155. 

  155. 

  156. func testObjectStoreOperations(s *suite.Suite, helper *clients.TestClient, k8sh *utils.K8sHelper, namespace, storeName string) {
    157. 

  157. 	ctx := context.TODO()
    158. 

  158. 	clusterInfo := client.AdminTestClusterInfo(namespace)
    159. 

  159. 	t := s.T()
    160. 

  160. 

  161. 	logger.Infof("Testing Object Operations on %s", storeName)
    162. 

  162. 	t.Run("create CephObjectStoreUser", func(t *testing.T) {
    163. 

  163. 		createCephObjectUser(s, helper, k8sh, namespace, storeName, userid, true, true)
    164. 

  164. 		i := 0
    165. 

  165. 		for i = 0; i < 4; i++ {
    166. 

  166. 			if helper.ObjectUserClient.UserSecretExists(namespace, storeName, userid) {
    167. 

  167. 				break
    168. 

  168. 			}
    169. 

  169. 			logger.Info("waiting 5 more seconds for user secret to exist")
    170. 

  170. 			time.Sleep(5 * time.Second)
    171. 

  171. 		}
    172. 

  172. 		assert.NotEqual(t, 4, i)
    173. 

  173. 	})
    174. 

  174. 

  175. 	context := k8sh.MakeContext()
    176. 

  176. 	objectStore, err := k8sh.RookClientset.CephV1().CephObjectStores(namespace).Get(ctx, storeName, metav1.GetOptions{})
    177. 

  177. 	assert.Nil(t, err)
    178. 

  178. 	rgwcontext, err := rgw.NewMultisiteContext(context, clusterInfo, objectStore)
    179. 

  179. 	assert.Nil(t, err)
    180. 

  180. 	t.Run("create ObjectBucketClaim", func(t *testing.T) {
    181. 

  181. 		logger.Infof("create OBC %q with storageclass %q - using reclaim policy 'delete' so buckets don't block deletion", obcName, bucketStorageClassName)
    182. 

  182. 		cobErr := helper.BucketClient.CreateBucketStorageClass(namespace, storeName, bucketStorageClassName, "Delete")
    183. 

  183. 		assert.Nil(t, cobErr)
    184. 

  184. 		cobcErr := helper.BucketClient.CreateObc(obcName, bucketStorageClassName, bucketname, maxObject, true)
    185. 

  185. 		assert.Nil(t, cobcErr)
    186. 

  186. 		created := utils.Retry(20, 2*time.Second, "OBC is created", func() bool {
    187. 

  187. 			return helper.BucketClient.CheckOBC(obcName, "bound")
    188. 

  188. 		})
    189. 

  189. 		assert.True(t, created)
    190. 

  190. 		logger.Info("OBC created successfully")
    191. 

  191. 

  192. 		var bkt rgw.ObjectBucket
    193. 

  193. 		i := 0
    194. 

  194. 		for i = 0; i < 4; i++ {
    195. 

  195. 			b, code, err := rgw.GetBucket(rgwcontext, bucketname)
    196. 

  196. 			if b != nil && err == nil {
    197. 

  197. 				bkt = *b
    198. 

  198. 				break
    199. 

  199. 			}
    200. 

  200. 			logger.Warningf("cannot get bucket %q, retrying... bucket: %v. code: %d, err: %v", bucketname, b, code, err)
    201. 

  201. 			logger.Infof("(%d) check bucket exists, sleeping for 5 seconds ...", i)
    202. 

  202. 			time.Sleep(5 * time.Second)
    203. 

  203. 		}
    204. 

  204. 		assert.NotEqual(t, 4, i)
    205. 

  205. 		assert.Equal(t, bucketname, bkt.Name)
    206. 

  206. 		logger.Info("OBC, Secret and ConfigMap created")
    207. 

  207. 	})
    208. 

  208. 

  209. 	t.Run("S3 access to OBC bucket", func(t *testing.T) {
    210. 

  210. 		var s3client *rgw.S3Agent
    211. 

  211. 		s3endpoint, _ := helper.ObjectClient.GetEndPointUrl(namespace, storeName)
    212. 

  212. 		s3AccessKey, _ := helper.BucketClient.GetAccessKey(obcName)
    213. 

  213. 		s3SecretKey, _ := helper.BucketClient.GetSecretKey(obcName)
    214. 

  214. 		if objectStore.Spec.IsTLSEnabled() {
    215. 

  215. 			s3client, err = rgw.NewInsecureS3Agent(s3AccessKey, s3SecretKey, s3endpoint, true)
    216. 

  216. 		} else {
    217. 

  217. 			s3client, err = rgw.NewS3Agent(s3AccessKey, s3SecretKey, s3endpoint, true, nil)
    218. 

  218. 		}
    219. 

  219. 

  220. 		assert.Nil(t, err)
    221. 

  221. 		logger.Infof("endpoint (%s) Accesskey (%s) secret (%s)", s3endpoint, s3AccessKey, s3SecretKey)
    222. 

  222. 

  223. 		t.Run("put object", func(t *testing.T) {
    224. 

  224. 			_, poErr := s3client.PutObjectInBucket(bucketname, ObjBody, ObjectKey1, contentType)
    225. 

  225. 			assert.Nil(t, poErr)
    226. 

  226. 		})
    227. 

  227. 

  228. 		t.Run("get object", func(t *testing.T) {
    229. 

  229. 			read, err := s3client.GetObjectInBucket(bucketname, ObjectKey1)
    230. 

  230. 			assert.Nil(t, err)
    231. 

  231. 			assert.Equal(t, ObjBody, read)
    232. 

  232. 		})
    233. 

  233. 

  234. 		t.Run("quota enforcement", func(t *testing.T) {
    235. 

  235. 			_, poErr := s3client.PutObjectInBucket(bucketname, ObjBody, ObjectKey2, contentType)
    236. 

  236. 			assert.Nil(t, poErr)
    237. 

  237. 			logger.Infof("Testing the max object limit")
    238. 

  238. 			_, poErr = s3client.PutObjectInBucket(bucketname, ObjBody, ObjectKey3, contentType)
    239. 

  239. 			assert.Error(t, poErr)
    240. 

  240. 		})
    241. 

  241. 

  242. 		t.Run("update quota limits", func(t *testing.T) {
    243. 

  243. 			poErr := helper.BucketClient.UpdateObc(obcName, bucketStorageClassName, bucketname, newMaxObject, true)
    244. 

  244. 			assert.Nil(t, poErr)
    245. 

  245. 			updated := utils.Retry(20, 2*time.Second, "OBC is updated", func() bool {
    246. 

  246. 				return helper.BucketClient.CheckOBMaxObject(obcName, newMaxObject)
    247. 

  247. 			})
    248. 

  248. 			assert.True(t, updated)
    249. 

  249. 			logger.Infof("Testing the updated object limit")
    250. 

  250. 			_, poErr = s3client.PutObjectInBucket(bucketname, ObjBody, ObjectKey3, contentType)
    251. 

  251. 			assert.NoError(t, poErr)
    252. 

  252. 			_, poErr = s3client.PutObjectInBucket(bucketname, ObjBody, ObjectKey4, contentType)
    253. 

  253. 			assert.Error(t, poErr)
    254. 

  254. 		})
    255. 

  255. 

  256. 		t.Run("delete objects", func(t *testing.T) {
    257. 

  257. 			_, delobjErr := s3client.DeleteObjectInBucket(bucketname, ObjectKey1)
    258. 

  258. 			assert.Nil(t, delobjErr)
    259. 

  259. 			_, delobjErr = s3client.DeleteObjectInBucket(bucketname, ObjectKey2)
    260. 

  260. 			assert.Nil(t, delobjErr)
    261. 

  261. 			_, delobjErr = s3client.DeleteObjectInBucket(bucketname, ObjectKey3)
    262. 

  262. 			assert.Nil(t, delobjErr)
    263. 

  263. 			logger.Info("Objects deleted on bucket successfully")
    264. 

  264. 		})
    265. 

  265. 	})
    266. 

  266. 

  267. 	t.Run("Regression check: OBC does not revert to Pending phase", func(t *testing.T) {
    268. 

  268. 		// A bug exists in older versions of lib-bucket-provisioner that will revert a bucket and claim
    269. 

  269. 		// back to "Pending" phase after being created and initially "Bound" by looping infinitely in
    270. 

  270. 		// the bucket provision/creation loop. Verify that the OBC is "Bound" and stays that way.
    271. 

  271. 		// The OBC reconcile loop runs again immediately b/c the OBC is modified to refer to its OB.
    272. 

  272. 		// Wait a short amount of time before checking just to be safe.
    273. 

  273. 		created := utils.Retry(15, 2*time.Second, "OBC is created", func() bool {
    274. 

  274. 			return helper.BucketClient.CheckOBC(obcName, "bound")
    275. 

  275. 		})
    276. 

  276. 		assert.True(t, created)
    277. 

  277. 	})
    278. 

  278. 

  279. 	t.Run("delete CephObjectStore should be blocked by OBC bucket and CephObjectStoreUser", func(t *testing.T) {
    280. 

  280. 		deleteObjectStore(t, k8sh, namespace, storeName)
    281. 

  281. 

  282. 		store := &cephv1.CephObjectStore{}
    283. 

  283. 		i := 0
    284. 

  284. 		for i = 0; i < 4; i++ {
    285. 

  285. 			storeStr, err := k8sh.GetResource("-n", namespace, "CephObjectStore", storeName, "-o", "json")
    286. 

  286. 			assert.NoError(t, err)
    287. 

  287. 

  288. 			err = json.Unmarshal([]byte(storeStr), &store)
    289. 

  289. 			assert.NoError(t, err)
    290. 

  290. 

  291. 			cond := cephv1.FindStatusCondition(store.Status.Conditions, cephv1.ConditionDeletionIsBlocked)
    292. 

  292. 			if cond != nil {
    293. 

  293. 				break
    294. 

  294. 			}
    295. 

  295. 			logger.Info("waiting 2 more seconds for CephObjectStore to reach Deleting state")
    296. 

  296. 			time.Sleep(2 * time.Second)
    297. 

  297. 		}
    298. 

  298. 		assert.NotEqual(t, 4, i)
    299. 

  299. 

  300. 		assert.Equal(t, cephv1.ConditionDeleting, store.Status.Phase) // phase == "Deleting"
    301. 

  301. 		// verify deletion is blocked b/c object has dependents
    302. 

  302. 		cond := cephv1.FindStatusCondition(store.Status.Conditions, cephv1.ConditionDeletionIsBlocked)
    303. 

  303. 		logger.Infof("condition: %+v", cond)
    304. 

  304. 		assert.Equal(t, v1.ConditionTrue, cond.Status)
    305. 

  305. 		assert.Equal(t, cephv1.ObjectHasDependentsReason, cond.Reason)
    306. 

  306. 		// the CephObjectStoreUser and the bucket should both block deletion
    307. 

  307. 		assert.Contains(t, cond.Message, "CephObjectStoreUsers")
    308. 

  308. 		assert.Contains(t, cond.Message, userid)
    309. 

  309. 		assert.Contains(t, cond.Message, "buckets")
    310. 

  310. 		assert.Contains(t, cond.Message, bucketname)
    311. 

  311. 

  312. 		// The event is created by the same method that adds that condition, so we can be pretty
    313. 

  313. 		// sure it exists here. No need to do extra work to validate the event.
    314. 

  314. 	})
    315. 

  315. 

  316. 	t.Run("delete OBC", func(t *testing.T) {
    317. 

  317. 		i := 0
    318. 

  318. 		dobcErr := helper.BucketClient.DeleteObc(obcName, bucketStorageClassName, bucketname, maxObject, true)
    319. 

  319. 		assert.Nil(t, dobcErr)
    320. 

  320. 		logger.Info("Checking to see if the obc, secret, and cm have all been deleted")
    321. 

  321. 		for i = 0; i < 4 && !helper.BucketClient.CheckOBC(obcName, "deleted"); i++ {
    322. 

  322. 			logger.Infof("(%d) obc deleted check, sleeping for 5 seconds ...", i)
    323. 

  323. 			time.Sleep(5 * time.Second)
    324. 

  324. 		}
    325. 

  325. 		assert.NotEqual(t, 4, i)
    326. 

  326. 

  327. 		logger.Info("ensure OBC bucket was deleted")
    328. 

  328. 		var rgwErr int
    329. 

  329. 		for i = 0; i < 4; i++ {
    330. 

  330. 			_, rgwErr, _ = rgw.GetBucket(rgwcontext, bucketname)
    331. 

  331. 			if rgwErr == rgw.RGWErrorNotFound {
    332. 

  332. 				break
    333. 

  333. 			}
    334. 

  334. 			logger.Infof("(%d) check bucket deleted, sleeping for 5 seconds ...", i)
    335. 

  335. 			time.Sleep(5 * time.Second)
    336. 

  336. 		}
    337. 

  337. 		assert.NotEqual(t, 4, i)
    338. 

  338. 		assert.Equal(t, rgwErr, rgw.RGWErrorNotFound)
    339. 

  339. 

  340. 		dobErr := helper.BucketClient.DeleteBucketStorageClass(namespace, storeName, bucketStorageClassName, "Delete")
    341. 

  341. 		assert.Nil(t, dobErr)
    342. 

  342. 	})
    343. 

  343. 

  344. 	t.Run("delete CephObjectStoreUser", func(t *testing.T) {
    345. 

  345. 		dosuErr := helper.ObjectUserClient.Delete(namespace, userid)
    346. 

  346. 		assert.Nil(t, dosuErr)
    347. 

  347. 		logger.Info("Object store user deleted successfully")
    348. 

  348. 		logger.Info("Checking to see if the user secret has been deleted")
    349. 

  349. 		i := 0
    350. 

  350. 		for i = 0; i < 4 && helper.ObjectUserClient.UserSecretExists(namespace, storeName, userid) == true; i++ {
    351. 

  351. 			logger.Infof("(%d) secret check sleeping for 5 seconds ...", i)
    352. 

  352. 			time.Sleep(5 * time.Second)
    353. 

  353. 		}
    354. 

  354. 		assert.False(t, helper.ObjectUserClient.UserSecretExists(namespace, storeName, userid))
    355. 

  355. 	})
    356. 

  356. 

  357. 	t.Run("Regression check: mgrs are not in a crashloop", func(t *testing.T) {
    358. 

  358. 		assert.True(t, k8sh.CheckPodCountAndState("rook-ceph-mgr", namespace, 1, "Running"))
    359. 

  359. 	})
    360. 

  360. 

  361. 	// tests are complete, now delete the objectstore
    362. 

  362. 	s.T().Run("CephObjectStore should delete now that dependents are gone", func(t *testing.T) {
    363. 

  363. 		// wait initially since it will almost never detect on the first try without this.
    364. 

  364. 		time.Sleep(3 * time.Second)
    365. 

  365. 

  366. 		assertObjectStoreDeletion(t, k8sh, namespace, storeName)
    367. 

  367. 	})
    368. 

  368. 

  369. 	// TODO : Add case for brownfield/cleanup s3 client}
    370. 

  370. }
    371.