@@ -132,6 +132,16 @@ def approval_state(self) -> Optional[str]:
132132 """Return approval state of this ResourceClaim."""
133133 return self .status .get ('approval' , {}).get ('state' )
134134
135+ @property
136+ def auto_delete_when (self ) -> Optional [str ]:
137+ """Return condition which triggers automatic delete if defined."""
138+ return self .spec .get ('autoDelete' , {}).get ('when' )
139+
140+ @property
141+ def auto_detach_when (self ) -> Optional [str ]:
142+ """Return condition which triggers automatic detach if defined."""
143+ return self .spec .get ('autoDetach' , {}).get ('when' )
144+
135145 @property
136146 def claim_is_initialized (self ) -> bool :
137147 return f"{ Poolboy .operator_domain } in self .annotations
@@ -181,6 +191,13 @@ def is_approved(self) -> bool:
181191 If claim is already has a resource hadle then it is considered approved."""
182192 return self .has_resource_handle or self .approval_state == 'approved'
183193
194+ @property
195+ def is_detached (self ) -> bool :
196+ """Return whether this ResourceClaim has been detached from its ResourceHandle."""
197+ if not self .status :
198+ return False
199+ return self .status .get ('resourceHandle' , {}).get ('detached' , False )
200+
184201 @property
185202 def lifespan_end_datetime (self ) -> Optional [datetime ]:
186203 """Return datetime object representing when this ResourceClaim will be automatically deleted.
@@ -365,6 +382,53 @@ async def bind_resource_handle(self,
365382
366383 return resource_handle
367384
385+ def check_condition (self , when_condition , resource_handle , resource_provider ):
386+ # resource_provider may be None if there is no top-level provider.
387+ resource_provider_vars = resource_provider .vars if resource_provider else {}
388+ vars_ = {
389+ ** resource_provider_vars ,
390+ ** resource_handle .vars ,
391+ "resource_claim" : self ,
392+ "resource_handle" : resource_handle ,
393+ "resource_provider" : resource_provider ,
394+ "metadata" : self .meta ,
395+ "spec" : self .spec ,
396+ "status" : self .status ,
397+ }
398+ check_value = recursive_process_template_strings (
399+ '{{(' + when_condition + ')|bool}}' ,
400+ variables = vars_
401+ )
402+ return check_value
403+
404+ def check_auto_delete (self , logger , resource_handle , resource_provider ) -> bool :
405+ if not self .auto_delete_when :
406+ return False
407+ try :
408+ check_value = self .check_condition (
409+ resource_handle = resource_handle ,
410+ resource_provider = resource_provider ,
411+ when_condition = self .auto_delete_when
412+ )
413+ return check_value
414+ except Exception as exception :
415+ logger .warning (f"Auto delete check failed for { self } { exception } )
416+ return False
417+
418+ def check_auto_detach (self , logger , resource_handle , resource_provider ):
419+ if not self .auto_detach_when :
420+ return False
421+ try :
422+ check_value = self .check_condition (
423+ resource_handle = resource_handle ,
424+ resource_provider = resource_provider ,
425+ when_condition = self .auto_detach_when
426+ )
427+ return check_value
428+ except Exception as exception :
429+ logger .warning (f"Auto detach check failed for { self } { exception } )
430+ return False
431+
368432 def get_resource_state_from_status (self , resource_number ):
369433 if not self .status \
370434 or not 'resources' in self .status \
@@ -522,6 +586,14 @@ async def delete(self):
522586 version = Poolboy .operator_version ,
523587 )
524588
589+ async def detach (self , resource_handle ):
590+ await self .merge_patch_status ({
591+ "resourceHandle" : {
592+ "detached" : True
593+ }
594+ })
595+ await resource_handle .delete ()
596+
525597 async def get_resource_handle (self ):
526598 return await resourcehandle .ResourceHandle .get (self .resource_handle_name )
527599
@@ -598,6 +670,17 @@ async def manage(self, logger) -> None:
598670 and self .lifespan_start_datetime > datetime .utcnow ():
599671 return
600672
673+ if self .is_detached :
674+ # Normally lifespan end is tracked by the ResourceHandle.
675+ # Detached ResourceClaims have no handle.
676+ if self .lifespan_end_datetime \
677+ and self .lifespan_start_datetime < datetime .utcnow ():
678+ logger .info (f"Deleting detacthed { self } )
679+ await self .delete ()
680+ # No further processing for detached ResourceClaim
681+ return
682+
683+ resource_provider = None
601684 if self .has_resource_provider :
602685 if self .has_spec_resources :
603686 raise kopf .TemporaryError (
@@ -619,7 +702,7 @@ async def manage(self, logger) -> None:
619702 )
620703
621704 try :
622- provider = await self .get_resource_provider ()
705+ resource_provider = await self .get_resource_provider ()
623706 except kubernetes_asyncio .client .exceptions .ApiException as e :
624707 if e .status == 404 :
625708 raise kopf .TemporaryError (
@@ -629,11 +712,11 @@ async def manage(self, logger) -> None:
629712 else :
630713 raise
631714
632- if provider .approval_required :
715+ if resource_provider .approval_required :
633716 if not 'approval' in self .status :
634717 await self .merge_patch_status ({
635718 "approval" : {
636- "message" : provider .approval_pending_message ,
719+ "message" : resource_provider .approval_pending_message ,
637720 "state" : "pending"
638721 }
639722 })
@@ -683,6 +766,16 @@ async def manage(self, logger) -> None:
683766 resource_claim_resources = resource_claim_resources ,
684767 )
685768
769+ if self .check_auto_delete (logger = logger , resource_handle = resource_handle , resource_provider = resource_provider ):
770+ logger .info (f"auto-delete of { self } )
771+ await self .delete ()
772+ return
773+
774+ if self .check_auto_detach (logger = logger , resource_handle = resource_handle , resource_provider = resource_provider ):
775+ logger .info (f"auto-detach of { self } )
776+ await self .detach (resource_handle = resource_handle )
777+ return
778+
686779 await self .__manage_resource_handle (
687780 logger = logger ,
688781 resource_claim_resources = resource_claim_resources ,
0 commit comments