Fix docs and run goimports

Kavinraja-G · Kavinraja-G · commit 16274a449f54 · 2024-06-01T21:52:46.000+05:30
diff --git a/docs/guide/service/annotations.md b/docs/guide/service/annotations.md
@@ -386,11 +386,11 @@ You can configure TLS support via the following annotations:
         service.beta.kubernetes.io/aws-load-balancer-ssl-cert: arn:aws:acm:us-west-2:xxxxx:certificate/xxxxxxx
         ```
 
-- <a name="ssl-domains">`service.beta.kubernetes.io/aws-load-balancer-ssl-domains`</a> specifies the domain names for the NLB to which you want auto-discover the SSL certs.
+- <a name="ssl-domains">`service.beta.kubernetes.io/aws-load-balancer-ssl-domains`</a> specifies the domain names for which the controller will automatically discover TLS certificates.
 
     !!!note ""
-        When both the [ssl-cert](#ssl-cert) and [ssl-domains](#ssl-domains) are specified, `service.beta.kubernetes.io/aws-load-balancer-ssl-cert` annotation
-        takes precedence over the `service.beta.kubernetes.io/aws-load-balancer-ssl-domains`.
+        The `service.beta.kubernetes.io/aws-load-balancer-ssl-cert` annotation takes precedence
+        over the `service.beta.kubernetes.io/aws-load-balancer-ssl-domains` annotation.
 
     !!!example
         ```
diff --git a/pkg/service/model_build_listener.go b/pkg/service/model_build_listener.go
@@ -111,16 +111,18 @@ func (t *defaultModelBuildTask) buildSSLNegotiationPolicy(_ context.Context) *st
 func (t *defaultModelBuildTask) buildListenerCertificates(ctx context.Context) ([]elbv2model.Certificate, error) {
 	var rawCertificateARNs []string
 	var rawSSLDomains []string
-	sslCertAnnotationExists := t.annotationParser.ParseStringSliceAnnotation(annotations.SvcLBSuffixSSLCertificate, &rawCertificateARNs, t.service.Annotations)
-
 	var certificates []elbv2model.Certificate
-	for _, cert := range rawCertificateARNs {
-		certificates = append(certificates, elbv2model.Certificate{CertificateARN: aws.String(cert)})
+
+	if t.annotationParser.ParseStringSliceAnnotation(annotations.SvcLBSuffixSSLCertificate, &rawCertificateARNs, t.service.Annotations) {
+		for _, cert := range rawCertificateARNs {
+			certificates = append(certificates, elbv2model.Certificate{CertificateARN: aws.String(cert)})
+		}
+		return certificates, nil
 	}
 
 	// auto-discover ACM certs only if the ssl-domains annotation exists ssl-cert annotations is not present
 	// which means ssl-cert takes precedence over the auto-discovered cert/ss-domains annotation
-	if !sslCertAnnotationExists && t.annotationParser.ParseStringSliceAnnotation(annotations.SvcLBSuffixSSLDomains, &rawSSLDomains, t.service.Annotations) {
+	if t.annotationParser.ParseStringSliceAnnotation(annotations.SvcLBSuffixSSLDomains, &rawSSLDomains, t.service.Annotations) {
 		autoDiscoveredCertARNs, err := t.certDiscovery.Discover(ctx, rawSSLDomains)
 		if err != nil {
 			return certificates, err
diff --git a/pkg/service/model_builder.go b/pkg/service/model_builder.go
@@ -2,11 +2,12 @@ package service
 
 import (
 	"context"
+	"strconv"
+	"sync"
+
 	"github.com/go-logr/logr"
 	"sigs.k8s.io/aws-load-balancer-controller/pkg/aws/services"
 	"sigs.k8s.io/aws-load-balancer-controller/pkg/ingress"
-	"strconv"
-	"sync"
 
 	"github.com/aws/aws-sdk-go/service/ec2"
 	"github.com/go-logr/logr"
