From 4cdeb6bb2367494bf92f1a06ea58e0ca17bdc0b6 Mon Sep 17 00:00:00 2001
From: OZGCloud <ozgcloud@mgm-tp.com>
Date: Wed, 23 Aug 2023 12:38:55 +0200
Subject: [PATCH] OZG-3961 clarify username for resourceNames

---
 src/main/helm/templates/ozg_operator_secrets_read_role.yaml | 2 +-
 src/test/helm/ozg_operator_secrets_read_role_test.yaml      | 4 ++++
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/src/main/helm/templates/ozg_operator_secrets_read_role.yaml b/src/main/helm/templates/ozg_operator_secrets_read_role.yaml
index 503dd33387..b5a916f111 100644
--- a/src/main/helm/templates/ozg_operator_secrets_read_role.yaml
+++ b/src/main/helm/templates/ozg_operator_secrets_read_role.yaml
@@ -9,7 +9,7 @@ rules:
       - "*"
     resourceNames:
     {{ range $user := .Values.sso.keycloak_users }}
-      - {{ $user.name }}-credentials    
+      - {{ regexReplaceAll "[^a-zA-Z0-9]" $user.name "" }}-credentials    
     {{ end }} 
     resources:
       - secrets
diff --git a/src/test/helm/ozg_operator_secrets_read_role_test.yaml b/src/test/helm/ozg_operator_secrets_read_role_test.yaml
index 5455390320..fec3055af2 100644
--- a/src/test/helm/ozg_operator_secrets_read_role_test.yaml
+++ b/src/test/helm/ozg_operator_secrets_read_role_test.yaml
@@ -33,6 +33,8 @@ tests:
         keycloak_users:
           - name: peter
           - name: sabine
+          - name: _with_underscore_
+          - name: .with.dot.
     asserts:
       - contains:
           path: rules
@@ -42,6 +44,8 @@ tests:
             resourceNames:
                - peter-credentials
                - sabine-credentials
+               - withunderscore-credentials
+               - withdot-credentials
             resources:
                - secrets
             verbs:
-- 
GitLab