fixup! common: add helper func to determine whether OIDC is enabled o…

…n KAS pods

pkg/controllers/common/external_oidc.go

@@ -37,6 +37,10 @@ func ExternalOIDCConfigAvailable(authLister configv1listers.AuthenticationLister
 		observedRevisions.Insert(nodeStatus.CurrentRevision)
 	}
 
+	if observedRevisions.Len() == 0 {
+		return false, nil
+	}
+
 	for _, revision := range observedRevisions.UnsortedList() {
 		// ensure every observed revision includes an auth-config revisioned configmap
 		_, err := cmLister.ConfigMaps("openshift-kube-apiserver").Get(fmt.Sprintf("auth-config-%d", revision))

pkg/controllers/common/external_oidc_test.go

@@ -28,6 +28,12 @@ func TestExternalOIDCConfigAvailable(t *testing.T) {
 		expectAvailable bool
 		expectError     bool
 	}{
+		{
+			name:            "no node statuses observed",
+			authType:        configv1.AuthenticationTypeOIDC,
+			expectAvailable: false,
+			expectError:     false,
+		},
 		{
 			name:       "oidc disabled, no rollout",
 			configMaps: []*corev1.ConfigMap{cm("config-10", "config.yaml", kasConfigJSONWithoutOIDC)},