operator icon indicating copy to clipboard operation
operator copied to clipboard
verified publisher icon canonical

Fix docs/impl inconsistency in Secret ownership in ops[testing]

Open dimaqq opened this issue 5 months ago • 4 comments

Code:

      def _check_can_manage_secret(
          self,
          secret: Secret,
      ):
          if secret.owner is None:
              raise SecretNotFoundError(
                  'this secret is not owned by this unit/app or granted to it. '
                  'Did you forget passing it to State.secrets?',
              )
          ...

Docs:

owner: Literal['unit', 'app', None] = None Indicates if the secret is owned by this unit, this application, or another application/unit.

If None, the implication is that read access to the secret has been granted to this unit.

dimaqq avatar Oct 01 '25 00:10 dimaqq

cc @tonyandrewmeyer

dimaqq avatar Oct 01 '25 00:10 dimaqq

In term of logic the above is actually correct (this unit can't manage granted secrets).

In term of the error message though, this is confusing, if None really means granted.

dimaqq avatar Oct 01 '25 01:10 dimaqq

quick fix: https://github.com/dimaqq/operator/pull/72

I want to think a bit more about a more comprehensive fix... maybe.

dimaqq avatar Oct 01 '25 05:10 dimaqq

I don't think the code or doc is wrong. None means that it's a secret that the unit only has view access to, so the unit can't do management of the secret, but can view it.

I suspect maybe that error text was wrongly copied from somewhere else. It should instead say that the secret is not owned by the unit/app, did you forget to set the owner.

tonyandrewmeyer avatar Nov 14 '25 07:11 tonyandrewmeyer