Might be good to also assert health of the central deployment in addition to central-db's health?

+1 for erroring loud and clear on dubious configurations

I can add it. My main reservation against this stemmed from the fact that switching between configurations gets challenging, as you cannot comment out stuff in objects on etcd when doing, e.g., oc edit. But I guess it's not a very important use case to switch back and forth between internal and external DB.

Yeah, I think now I remember the problem, but that problem is even bigger.

The OpenShift console has the very unfortunate property of importing OpenAPI field defaults into the form and then acting as if the user has set those field values. See:

Currently there's no issue because Gorman didn't introduce a default value for the PVC name for the DB, but, arguably, there should be one, as we also have a stackrox-db default for the central persistence, and setting a default for a field is really nothing very unreasonable.

The bigger problem now is that setting a default for any of the fields means a user using OpenShift console can no longer disable central DB. OpenShift console simply does not respect the fact that (non-)nullness of fields in the CR might carry any meaning, it uses a lossy round-trip between the two representations. This, by the way, also applies in the other direction: with the existing CR structure, it is impossible to specify "use central DB, but with default settings" in the form view in OpenShift console, you have to set any of the fields (such as explicitly typing in the default central-db pvc name) or use YAML view.

@porridge I know you had some discussion with Gorman on the original PR re: an explicit boolean field vs the mere presence of another field (this was about external, not the DB as a whole). Putting the aspect of bool vs enum aside: what is your opinion on (a) avoiding explicit enabled/disabled fields and (b) erroring on inconsistent combinations of set fields, in light of these OpenShift console form view realities?

Oh, wow. This is a game-changer. 😞
I guess this means that mere presence of a struct can no longer have any meaning.
This in turn means CentralDBEnabled() needs to look at a new explicit toggle (I would very much prefer an enum on the CentralComponentSpec level rather than bools) rather than at the nilness of .DB 🤔

Please also mention in a (non-user visible) comment somewhere why we don't look at struct nilness. This is probably not obvious for a non-openshift developer.

I think this only makes sense if there's a nil-safe getter for Name. Adding this.

actually, we already check that GetPasswordSecret() is non-nil above, so I don't think this adds any value.

Why not returning the password and setting it from the main function? It feels odd to me because the result of that function is not returned, instead in sets state on the struct.
Setting it from the caller makes it more explicit to me.

I can change it. I don't feel very strongly tbh because the reconciliation execution structs are heavily dependent on modifying state. For example, validate also sets the current password, and this is intended.

Actually, I think it makes more sense to leave the behavior as-is. I will rename the function to readAndSetPassword...

Nice job, did not thought about this test-case.

Can you add a small doc string what this function is used for? I found it hard to understand, looking into the caller also did not really helped me.

done

Oh, wow. This is a game-changer. 😞
I guess this means that mere presence of a struct can no longer have any meaning.
This in turn means CentralDBEnabled() needs to look at a new explicit toggle (I would very much prefer an enum on the CentralComponentSpec level rather than bools) rather than at the nilness of .DB 🤔

Please also mention in a (non-user visible) comment somewhere why we don't look at struct nilness. This is probably not obvious for a non-openshift developer.