Unable to reset the annotation k8s.cloudscale.ch/loadbalancer-listener-allowed-cidrs #19
Description
Bug
After configuring an annotation k8s.cloudscale.ch/loadbalancer-listener-allowed-cidrs the IP is correct set and configured.
However if you try to remove the annotation k8s.cloudscale.ch/loadbalancer-listener-allowed-cidrs the load balancer allow list is not removed, but the cloud controller react with errors:
I0407 13:29:32.273421 1 controller.go:398] Ensuring load balancer for service test-namespace/my-kubernetes-service
I0407 13:29:32.274534 1 event.go:376] "Event occurred" object="test-namespace/my-kubernetes-service" fieldPath="" kind="Service" apiVersion="v1" type="Normal" reason="EnsuringLoadBalancer" message="Ensuring load balancer"
I0407 13:29:33.310793 1 reconcile.go:787] "executing action" label="await-lb(k8s-service-62778fa0-6c6e-405e-988d-64151d5ef7cc is running)"
I0407 13:29:33.310814 1 reconcile.go:787] "executing action" label="update-cidrs(b2b9c5f2-35f2-2e31-94d6-51ea15115aaf/)"
E0407 13:29:33.331940 1 controller.go:298] error processing service test-namespace/my-kubernetes-service (retrying with exponential backoff): failed to ensure load balancer: error during update-cidrs(b2b9c5f2-35f2-2e31-94d6-51ea15115aaf/): detail: Please provide at least one parameter to update this resource.
I0407 13:29:33.332033 1 event.go:376] "Event occurred" object="test-namespace/my-kubernetes-service" fieldPath="" kind="Service" apiVersion="v1" type="Warning" reason="SyncLoadBalancerFailed" message="Error syncing load balancer: failed to ensure load balancer: error during update-cidrs(b2b9c5f2-35f2-2e31-94d6-51ea15115aaf/): detail: Please provide at least one parameter to update this resource."
The user expects the allow list would be [] or ["0.0.0.0/0].
Workaround
It is possible to set the range `0.0.0.0/0' to allow again all the traffic.
apiversion: v1
kind: Service
metadata:
annotations:
k8s.cloudscale.ch/loadbalancer-listener-allowed-cidrs: '["0.0.0.0/32"]'