kubernetes-sigs
diff --git a/‎api/v1alpha4/conversion.go‎
Lines changed: 22 additions & 0 deletions b/‎api/v1alpha4/conversion.go‎
Lines changed: 22 additions & 0 deletions
diff --git a/‎api/v1alpha4/conversion_test.go‎
Lines changed: 0 additions & 1 deletion b/‎api/v1alpha4/conversion_test.go‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎api/v1alpha4/zz_generated.conversion.go‎
Lines changed: 28 additions & 3 deletions b/‎api/v1alpha4/zz_generated.conversion.go‎
Lines changed: 28 additions & 3 deletions
diff --git a/‎api/v1alpha5/types.go‎
Lines changed: 3 additions & 5 deletions b/‎api/v1alpha5/types.go‎
Lines changed: 3 additions & 5 deletions
diff --git a/‎api/v1alpha5/zz_generated.deepcopy.go‎
Lines changed: 2 additions & 7 deletions b/‎api/v1alpha5/zz_generated.deepcopy.go‎
Lines changed: 2 additions & 7 deletions
diff --git a/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackclusters.yaml‎
Lines changed: 12 additions & 36 deletions b/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackclusters.yaml‎
Lines changed: 12 additions & 36 deletions
diff --git a/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackclustertemplates.yaml‎
Lines changed: 3 additions & 10 deletions b/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackclustertemplates.yaml‎
Lines changed: 3 additions & 10 deletions
diff --git a/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackmachines.yaml‎
Lines changed: 3 additions & 9 deletions b/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackmachines.yaml‎
Lines changed: 3 additions & 9 deletions
diff --git a/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackmachinetemplates.yaml‎
Lines changed: 3 additions & 9 deletions b/‎config/crd/bases/infrastructure.cluster.x-k8s.io_openstackmachinetemplates.yaml‎
Lines changed: 3 additions & 9 deletions
diff --git a/‎pkg/cloud/services/networking/port.go‎
Lines changed: 9 additions & 41 deletions b/‎pkg/cloud/services/networking/port.go‎
Lines changed: 9 additions & 41 deletions
@@ -212,6 +212,28 @@ func Convert_v1alpha5_PortOpts_To_v1alpha4_PortOpts(in *infrav1.PortOpts, out *P
 	return nil
 }
 
+func Convert_Slice_string_To_Slice_v1alpha5_SecurityGroupParam(in *[]string, out *[]infrav1.SecurityGroupParam, s conversion.Scope) error {
+	if in != nil {
+		for _, v1alpha4SecurityGroupUID := range *in {
+			if v1alpha4SecurityGroupUID != "" {
+				*out = append(*out, infrav1.SecurityGroupParam{UUID: v1alpha4SecurityGroupUID})
+			}
+		}
+	}
+	return nil
+}
+
+func Convert_Slice_v1alpha5_SecurityGroupParam_To_Slice_string(in *[]infrav1.SecurityGroupParam, out *[]string, s conversion.Scope) error {
+	if in != nil {
+		for _, v1alpha5SecurityGroups := range *in {
+			if v1alpha5SecurityGroups.UUID != "" {
+				*out = append(*out, v1alpha5SecurityGroups.UUID)
+			}
+		}
+	}
+	return nil
+}
+
 func Convert_Slice_v1alpha4_Network_To_Slice_v1alpha5_Network(in *[]Network, out *[]infrav1.Network, s conversion.Scope) error {
 	*out = make([]infrav1.Network, len(*in))
 	for i := range *in {
 
@@ -264,7 +264,6 @@ func TestFuzzyConversion(t *testing.T) {
 						v1alpha5PortOpts.Network = nil
 					}
 				}
-				v1alpha5PortOpts.SecurityGroupFilters = nil
 			},
 			func(v1alpha5FixedIP *infrav1.FixedIP, c fuzz.Continue) {
 				c.FuzzNoCustom(v1alpha5FixedIP)
 
@@ -117,11 +117,9 @@ type PortOpts struct {
 	FixedIPs  []FixedIP `json:"fixedIPs,omitempty"`
 	TenantID  string    `json:"tenantId,omitempty"`
 	ProjectID string    `json:"projectId,omitempty"`
-	// The uuids of the security groups to assign to the instance
-	SecurityGroups *[]string `json:"securityGroups,omitempty"`
-	// The names, uuids, filters or any combination these of the security groups to assign to the instance
-	SecurityGroupFilters []SecurityGroupParam `json:"securityGroupFilters,omitempty"`
-	AllowedAddressPairs  []AddressPair        `json:"allowedAddressPairs,omitempty"`
+	// The names of the security groups to assign to the port
+	SecurityGroups      *[]SecurityGroupParam `json:"securityGroups,omitempty"`
+	AllowedAddressPairs []AddressPair         `json:"allowedAddressPairs,omitempty"`
 	// Enables and disables trunk at port level. If not provided, openStackMachine.Spec.Trunk is inherited.
 	Trunk *bool `json:"trunk,omitempty"`
 
 
@@ -2779,9 +2779,9 @@ spec:
                               type: object
                             projectId:
                               type: string
-                            securityGroupFilters:
-                              description: The names, uuids, filters or any combination
-                                these of the security groups to assign to the instance
+                            securityGroups:
+                              description: The names of the security groups to assign
+                                to the port
                               items:
                                 properties:
                                   filter:
@@ -2823,12 +2823,6 @@ spec:
                                     type: string
                                 type: object
                               type: array
-                            securityGroups:
-                              description: The uuids of the security groups to assign
-                                to the instance
-                              items:
-                                type: string
-                              type: array
                             tags:
                               description: Tags applied to the port (and corresponding
                                 trunk, if a trunk is configured.) These tags are applied
@@ -3298,9 +3292,9 @@ spec:
                               type: object
                             projectId:
                               type: string
-                            securityGroupFilters:
-                              description: The names, uuids, filters or any combination
-                                these of the security groups to assign to the instance
+                            securityGroups:
+                              description: The names of the security groups to assign
+                                to the port
                               items:
                                 properties:
                                   filter:
@@ -3342,12 +3336,6 @@ spec:
                                     type: string
                                 type: object
                               type: array
-                            securityGroups:
-                              description: The uuids of the security groups to assign
-                                to the instance
-                              items:
-                                type: string
-                              type: array
                             tags:
                               description: Tags applied to the port (and corresponding
                                 trunk, if a trunk is configured.) These tags are applied
@@ -3678,9 +3666,9 @@ spec:
                         type: object
                       projectId:
                         type: string
-                      securityGroupFilters:
-                        description: The names, uuids, filters or any combination
-                          these of the security groups to assign to the instance
+                      securityGroups:
+                        description: The names of the security groups to assign to
+                          the port
                         items:
                           properties:
                             filter:
@@ -3722,12 +3710,6 @@ spec:
                               type: string
                           type: object
                         type: array
-                      securityGroups:
-                        description: The uuids of the security groups to assign to
-                          the instance
-                        items:
-                          type: string
-                        type: array
                       tags:
                         description: Tags applied to the port (and corresponding trunk,
                           if a trunk is configured.) These tags are applied in addition
@@ -3972,9 +3954,9 @@ spec:
                         type: object
                       projectId:
                         type: string
-                      securityGroupFilters:
-                        description: The names, uuids, filters or any combination
-                          these of the security groups to assign to the instance
+                      securityGroups:
+                        description: The names of the security groups to assign to
+                          the port
                         items:
                           properties:
                             filter:
@@ -4016,12 +3998,6 @@ spec:
                               type: string
                           type: object
                         type: array
-                      securityGroups:
-                        description: The uuids of the security groups to assign to
-                          the instance
-                        items:
-                          type: string
-                        type: array
                       tags:
                         description: Tags applied to the port (and corresponding trunk,
                           if a trunk is configured.) These tags are applied in addition
 
@@ -1049,10 +1049,9 @@ spec:
                                       type: object
                                     projectId:
                                       type: string
-                                    securityGroupFilters:
-                                      description: The names, uuids, filters or any
-                                        combination these of the security groups to
-                                        assign to the instance
+                                    securityGroups:
+                                      description: The names of the security groups
+                                        to assign to the port
                                       items:
                                         properties:
                                           filter:
@@ -1094,12 +1093,6 @@ spec:
                                             type: string
                                         type: object
                                       type: array
-                                    securityGroups:
-                                      description: The uuids of the security groups
-                                        to assign to the instance
-                                      items:
-                                        type: string
-                                      type: array
                                     tags:
                                       description: Tags applied to the port (and corresponding
                                         trunk, if a trunk is configured.) These tags
 
@@ -1044,9 +1044,9 @@ spec:
                       type: object
                     projectId:
                       type: string
-                    securityGroupFilters:
-                      description: The names, uuids, filters or any combination these
-                        of the security groups to assign to the instance
+                    securityGroups:
+                      description: The names of the security groups to assign to the
+                        port
                       items:
                         properties:
                           filter:
@@ -1088,12 +1088,6 @@ spec:
                             type: string
                         type: object
                       type: array
-                    securityGroups:
-                      description: The uuids of the security groups to assign to the
-                        instance
-                      items:
-                        type: string
-                      type: array
                     tags:
                       description: Tags applied to the port (and corresponding trunk,
                         if a trunk is configured.) These tags are applied in addition
 
@@ -951,9 +951,9 @@ spec:
                               type: object
                             projectId:
                               type: string
-                            securityGroupFilters:
-                              description: The names, uuids, filters or any combination
-                                these of the security groups to assign to the instance
+                            securityGroups:
+                              description: The names of the security groups to assign
+                                to the port
                               items:
                                 properties:
                                   filter:
@@ -995,12 +995,6 @@ spec:
                                     type: string
                                 type: object
                               type: array
-                            securityGroups:
-                              description: The uuids of the security groups to assign
-                                to the instance
-                              items:
-                                type: string
-                              type: array
                             tags:
                               description: Tags applied to the port (and corresponding
                                 trunk, if a trunk is configured.) These tags are applied
 
@@ -89,9 +89,15 @@ func (s *Service) GetOrCreatePort(eventObject runtime.Object, clusterName string
 				MACAddress: ap.MACAddress,
 			})
 		}
-		securityGroups, err = s.CollectPortSecurityGroups(eventObject, portOpts.SecurityGroups, portOpts.SecurityGroupFilters)
-		if err != nil {
-			return nil, err
+		portSecurityGroups := portOpts.SecurityGroups
+		if portSecurityGroups != nil {
+			portSecurityGroups, err := s.GetSecurityGroups(*portSecurityGroups)
+			if err != nil {
+				return nil, fmt.Errorf("error getting security groups: %v", err)
+			}
+			if len(portSecurityGroups) > 0 {
+				securityGroups = &portSecurityGroups
+			}
 		}
 		// inherit port security groups from the instance if not explicitly specified
 		if securityGroups == nil || len(*securityGroups) == 0 {
@@ -258,41 +264,3 @@ func (s *Service) GarbageCollectErrorInstancesPort(eventObject runtime.Object, i
 
 	return nil
 }
-
-// CollectPortSecurityGroups collects distinct securityGroups from port.SecurityGroups and port.SecurityGroupFilter fields.
-func (s *Service) CollectPortSecurityGroups(eventObject runtime.Object, portSecurityGroups *[]string, portSecurityGroupFilters []infrav1.SecurityGroupParam) (*[]string, error) {
-	var allSecurityGroupIDs []string
-	// security groups provided with the portSecurityGroupFilters fields
-	securityGroupFiltersByID, err := s.GetSecurityGroups(portSecurityGroupFilters)
-	if err != nil {
-		return portSecurityGroups, fmt.Errorf("error getting security groups: %v", err)
-	}
-	allSecurityGroupIDs = append(allSecurityGroupIDs, securityGroupFiltersByID...)
-	securityGroupCount := 0
-	// security groups provided with the portSecurityGroups fields
-	if portSecurityGroups != nil {
-		allSecurityGroupIDs = append(allSecurityGroupIDs, *portSecurityGroups...)
-	}
-	// generate unique values
-	uids := make(map[string]int)
-	for _, sg := range allSecurityGroupIDs {
-		if sg == "" {
-			continue
-		}
-		// count distinct values
-		_, ok := uids[sg]
-		if !ok {
-			securityGroupCount++
-		}
-		uids[sg] = 1
-	}
-	distinctSecurityGroupIDs := make([]string, 0, securityGroupCount)
-	// collect distict values
-	for key := range uids {
-		if key == "" {
-			continue
-		}
-		distinctSecurityGroupIDs = append(distinctSecurityGroupIDs, key)
-	}
-	return &distinctSecurityGroupIDs, nil
-}
Original file line number	Diff line number	Diff line change
`@@ -264,7 +264,6 @@ func TestFuzzyConversion(t *testing.T) {`
`264`	`264`	`v1alpha5PortOpts.Network = nil`
`265`	`265`	`}`
`266`	`266`	`}`
`267`		`- v1alpha5PortOpts.SecurityGroupFilters = nil`
`268`	`267`	`},`
`269`	`268`	`func(v1alpha5FixedIP *infrav1.FixedIP, c fuzz.Continue) {`
`270`	`269`	`c.FuzzNoCustom(v1alpha5FixedIP)`