start moving the code towards beta quality

[stlaz]

What type of PR is this?

/kind feature
/kind api-change
/kind cleanup

What this PR does / why we need it:
This PR aims to improve the code quality and maintainability of the whole project. It depends on changes from #168.

Outstanding fixes:

• no more adding controller-specific empty annotations and labels to the secret, validation is kept
• cleaning up function arguments, flattening unnecessarily deep OOP hierarchies
• fixing undocumented and questionable behavior of private key fetches
• decomposing the Reconcile func of the main controller
• complete rewrite of the conditions system

Which issue(s) this PR fixes:

Special notes for your reviewer:

This is to move towards the https://github.com/kubernetes-sigs/secrets-store-sync-controller/milestone/6 milestone, even though code quality improvements are not specifically called out there.

/cc @aramase

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by: stlaz
Once this PR has been reviewed and has the lgtm label, please assign enj for approval. For more information see the Code Review Process.

The full list of commands accepted by this bot can be found here.

Details

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

This issue is currently awaiting triage.

If secrets-store-sync-controller contributors determine this is a relevant issue, they will accept it by applying the triage/accepted label and provide further guidance.

The triage/accepted label can be added by org members by writing /triage accepted in a comment.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

[codecov-commenter]

Codecov Report

❌ Patch coverage is 76.40449% with 42 lines in your changes missing coverage. Please review.
✅ Project coverage is 42.85%. Comparing base (9f4597d) to head (3cc6587).
⚠️ Report is 76 commits behind head on main.

Files with missing lines	Patch %	Lines
internal/controller/secretsync_controller.go	76.84%	15 Missing and 7 partials ⚠️
pkg/util/secretutil/secret.go	63.15%	10 Missing and 4 partials ⚠️
pkg/token/token_manager.go	81.81%	2 Missing and 2 partials ⚠️
cmd/main.go	0.00%	2 Missing ⚠️

Additional details and impacted files

@@             Coverage Diff             @@
##             main     #173       +/-   ##
===========================================
- Coverage   56.32%   42.85%   -13.48%     
===========================================
  Files          12       11        -1     
  Lines        1051      742      -309     
===========================================
- Hits          592      318      -274     
+ Misses        415      395       -20     
+ Partials       44       29       -15     

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.

[stlaz]

rebased on current main

[stlaz]

/hold
there's a good chance the labels/annotations validation might've broken a usecase where we'd sync into an already existing secret

[stlaz]

/hold cancel
fixed now