README
¶
CAPI Runtime Extensions
For user docs, please see [https://nutanix-cloud-native.github.io/cluster-api-runtime-extensions-nutanix/].
Development
Install tools
To deploy a local build, either initial install to update an existing deployment, run:
make dev.run-on-kind
eval $(make kind.kubeconfig)
Pro-tip: to redeploy without rebuilding the binaries, images, etc (useful if you have only changed the Helm chart for example), run:
make SKIP_BUILD=true dev.run-on-kind
You can just update the image in the webhook Deployment on an existing KIND cluster:
make KIND_CLUSTER_NAME=<> dev.update-webhook-image-on-kind
Generate a cluster definition from the file specified in the --from flag
and apply the generated resource to actually create the cluster in the API.
For example, the following command will create a Docker cluster with Cilium CNI applied via the Helm addon provider:
export CLUSTER_NAME=docker-cluster-cilium-helm-addon
export CLUSTER_FILE=examples/capi-quick-start/docker-cluster-cilium-helm-addon.yaml
export KUBERNETES_VERSION=v1.30.5
clusterctl generate cluster ${CLUSTER_NAME} \
--from ${CLUSTER_FILE} \
--kubernetes-version ${KUBERNETES_VERSION} \
--worker-machine-count 1 | \
kubectl apply --server-side -f -
Wait until control plane is ready:
kubectl wait clusters/${CLUSTER_NAME} --for=condition=ControlPlaneInitialized --timeout=5m
To get the kubeconfig for the new cluster, run:
clusterctl get kubeconfig ${CLUSTER_NAME} > ${CLUSTER_NAME}.conf
If you are not on Linux, you will also need to fix the generated kubeconfig's server, run:
kubectl config set-cluster ${CLUSTER_NAME} \
--kubeconfig ${CLUSTER_NAME}.conf \
--server=https://$(docker container port ${CLUSTER_NAME}-lb 6443/tcp)
Wait until all nodes are ready (this indicates that CNI has been deployed successfully):
kubectl --kubeconfig ${CLUSTER_NAME}.conf wait nodes --all --for=condition=Ready --timeout=5m
Show that Cilium is running successfully on the workload cluster:
kubectl --kubeconfig ${CLUSTER_NAME}.conf get daemonsets -n kube-system cilium
Deploy kube-vip to provide service load-balancer functionality for Docker clusters:
helm repo add --force-update kube-vip https://kube-vip.github.io/helm-charts
helm repo update
kind_subnet_prefix="$(docker network inspect kind -f '{{ (index .IPAM.Config 0).Subnet }}' | \
grep -o '^[[:digit:]]\+\.[[:digit:]]\+\.')"
kubectl create configmap \
--namespace kube-system kubevip \
--from-literal "range-global=${kind_subnet_prefix}100.0-${kind_subnet_prefix}100.20" \
--dry-run=client -oyaml |
kubectl --kubeconfig ${CLUSTER_NAME}.conf apply --server-side -n kube-system -f -
helm upgrade kube-vip-cloud-provider kube-vip/kube-vip-cloud-provider --version 0.2.2 \
--install \
--wait --wait-for-jobs \
--namespace kube-system \
--kubeconfig ${CLUSTER_NAME}.conf \
--set-string=image.tag=v0.0.6
helm upgrade kube-vip kube-vip/kube-vip --version 0.4.2 \
--install \
--wait --wait-for-jobs \
--namespace kube-system \
--kubeconfig ${CLUSTER_NAME}.conf \
--set-string=image.tag=v0.6.0
Deploy traefik as a LB service:
helm --kubeconfig ${CLUSTER_NAME}.conf repo add traefik https://helm.traefik.io/traefik
helm repo update &>/dev/null
helm --kubeconfig ${CLUSTER_NAME}.conf upgrade --install traefik traefik/traefik \
--version v10.9.1 \
--wait --wait-for-jobs \
--set ports.web.hostPort=80 \
--set ports.websecure.hostPort=443 \
--set service.type=LoadBalancer
Watch for traefik LB service to get an external address:
watch -n 0.5 kubectl --kubeconfig ${CLUSTER_NAME}.conf get service/traefik
To delete the workload cluster, run:
kubectl delete cluster ${CLUSTER_NAME}
Notice that the traefik service is deleted before the cluster is actually finally deleted.
Check the pod logs:
kubectl logs deployment/cluster-api-runtime-extensions-nutanix -f
To delete the dev KinD cluster, run:
make kind.delete
Directories
¶
| Path | Synopsis |
|---|---|
|
api
module
|
|
|
common
module
|
|
|
hack
|
|
|
tools
Module
|
|
|
internal
|
|
|
pkg
|
|
|
controllers/namespacesync
Package syncclusterclass provides a controller that copies ClusterClasses and their referenced Templates from a source namespace to target namespaces.
|
Package syncclusterclass provides a controller that copies ClusterClasses and their referenced Templates from a source namespace to target namespaces. |
|
handlers/generic/lifecycle/ccm
Package calico provides a handler for managing Calico deployments on clusters, configurable via labels and annotations.
|
Package calico provides a handler for managing Calico deployments on clusters, configurable via labels and annotations. |
|
handlers/generic/lifecycle/clusterautoscaler
Package clusterautoscaler provides a handler for managing ClusterAutoscaler deployments on clusters
|
Package clusterautoscaler provides a handler for managing ClusterAutoscaler deployments on clusters |
|
handlers/generic/lifecycle/cni/calico
Package calico provides a handler for managing Calico deployments on clusters, configurable via variables on the Cluster resource.
|
Package calico provides a handler for managing Calico deployments on clusters, configurable via variables on the Cluster resource. |
|
handlers/generic/lifecycle/cni/cilium
Package cilium provides a handler for managing Cilium deployments on clusters, configurable via variables on the Cluster resource.
|
Package cilium provides a handler for managing Cilium deployments on clusters, configurable via variables on the Cluster resource. |
|
handlers/generic/lifecycle/csi
Package calico provides a handler for managing Calico deployments on clusters, configurable via labels and annotations.
|
Package calico provides a handler for managing Calico deployments on clusters, configurable via labels and annotations. |
|
handlers/generic/lifecycle/nfd
Package nfd provides a handler for managing NFD deployments on clusters
|
Package nfd provides a handler for managing NFD deployments on clusters |
|
handlers/generic/lifecycle/servicelbgc
+kubebuilder:rbac:groups="",resources=secrets,verbs=watch;list;get
|
+kubebuilder:rbac:groups="",resources=secrets,verbs=watch;list;get |
|
handlers/generic/mutation/httpproxy
+kubebuilder:rbac:groups=cluster.x-k8s.io,resources=clusters,verbs=watch;list;get
|
+kubebuilder:rbac:groups=cluster.x-k8s.io,resources=clusters,verbs=watch;list;get |
|
handlers/generic/mutation/imageregistries/credentials
+kubebuilder:rbac:groups="",resources=secrets,verbs=watch;list;get;patch;create;update
|
+kubebuilder:rbac:groups="",resources=secrets,verbs=watch;list;get;patch;create;update |
|
handlers/generic/mutation/imageregistries/credentials/credentialprovider
Package credentialprovider includes Functions copied from https://github.com/kubernetes/kubernetes/blob/v1.26.1/pkg/credentialprovider/keyring.go#L160-L233.
|
Package credentialprovider includes Functions copied from https://github.com/kubernetes/kubernetes/blob/v1.26.1/pkg/credentialprovider/keyring.go#L160-L233. |
|
webhook/cluster
+kubebuilder:webhook:path=/mutate-v1beta1-cluster,mutating=true,failurePolicy=fail,groups="cluster.x-k8s.io",resources=clusters,verbs=create;update,versions=*,name=cluster-defaulter.caren.nutanix.com,admissionReviewVersions=v1,sideEffects=None +kubebuilder:webhook:path=/validate-v1beta1-cluster,mutating=false,failurePolicy=fail,groups="cluster.x-k8s.io",resources=clusters,verbs=create;update,versions=*,name=cluster-validator.caren.nutanix.com,admissionReviewVersions=v1,sideEffects=None
|
+kubebuilder:webhook:path=/mutate-v1beta1-cluster,mutating=true,failurePolicy=fail,groups="cluster.x-k8s.io",resources=clusters,verbs=create;update,versions=*,name=cluster-defaulter.caren.nutanix.com,admissionReviewVersions=v1,sideEffects=None +kubebuilder:webhook:path=/validate-v1beta1-cluster,mutating=false,failurePolicy=fail,groups="cluster.x-k8s.io",resources=clusters,verbs=create;update,versions=*,name=cluster-validator.caren.nutanix.com,admissionReviewVersions=v1,sideEffects=None |
|
test
|
|
|
helpers
Package helpers provides a set of utilities for testing controllers.
|
Package helpers provides a set of utilities for testing controllers. |
Click to show internal directories.
Click to hide internal directories.