-
Notifications
You must be signed in to change notification settings - Fork 74
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Migration Design: Rename Bundle to ClusterBundle #485
base: main
Are you sure you want to change the base?
Conversation
Skipping CI for Draft Pull Request. |
e3e7033
to
0db10c1
Compare
/hold We want to discuss this proposal in our next bi-weekly meeting and allow some time to add missing details. |
The design looks good to me 👍 Suppose that an user is currently using the version X. We introduce the version X+1 and then Y. After a few weeks, the user do an |
Thanks for reviewing @damsien! ❤️
That's why I named it version Y, and not version X+2. 😉 You are addressing a real risk, and we should allow some time (maybe many releases) for users to migrate from |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Since I suggested a bunch of the ideas here, I've added a few thoughts/comments, but feel free to ignore any input that's not helpful -- it's your project, not mine. 😁
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think this is brilliantly written and it does fill me with confidence to see this written down! The link to the chat on k8s slack was enlightening too, thanks for that!
General comment: if we implemented this design as written, the only reason for someone to migrate to ClusterBundle
is because we (the maintainers) are saying they have to migrate.
There's no new features or anything to draw people to the new name, it's just a thing we changed. That doesn't mean we can't make this change (or that this is a bad change generally), but I think it's better if there's a reason for people to want to migrate, not just a reason they have migrate.
I wrote in one of my review comments about us adding ClusterBundle
and making no effort to migrate (yet). If we did that - and started only adding new features to ClusterBundle
- eventually, there'd be a reason that people would want to migrate. I think that's worth considering at least? But I wouldn't block progress over this, and this design is great either way!
What do you think? (sorry that's a lot of words)
This is addressed by the motivation IMO. Doing this rename will allow us more flexibility in adding new (and already requested) features. In particular a new namespace-scoped If the proposed API changes during migration is accepted, we will provide one new feature:
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
/lgtm
I don't see any reason we couldn't proceed with this personally, thanks for the effort on this Erik!
[APPROVALNOTIFIER] This PR is APPROVED This pull-request has been approved by: SgtCoDFish The full list of commands accepted by this bot can be found here. The pull request process is described here
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
5a570ee
to
6b04cd9
Compare
New changes are detected. LGTM label has been removed. |
Could you add an example YAML of how the new spec will look? |
It makes to add an example of how we could improve the API when migrating to ClusterBundle. At the same time, this design is mainly a proposal on how to migrate from |
Signed-off-by: Erik Godding Boye <egboye@gmail.com>
|
||
### Risks and Mitigations | ||
|
||
#### Target configmaps/secrets are accidentally deleted |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
There are two conflicting goals here:
- we do not want to break the behavior when deleting the
Bundle
resource - we want to support users who remove the
Bundle
resource and start using theClusterBundle
instead.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
An alternative approach here would be to add owner references and document how to remove those owner references when you want to start using the ClusterBundle
as the new "source of truth".
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
If "owner references" are too complex, we can also implement our own garbage collector (eg. using labels).
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why do you consider this as "conflicting goals"? I did not mention "do not want to break the behavior when deleting the Bundle resource" as a goal specifically, did I? 🤔 Considering the alpha state of Bundle API, I don't see a big harm in potentially orphaning some resources that can easily be deleted by the user as a workaround. The alternative could be a lot more destructive.
As a user, I don't want my ClusterBundle
to be deleted when the corresponding Bundle
is deleted. Maybe I am missing your point. Please clarify!
Since the APIs should be quite similar, this should be a simple controller. | ||
|
||
- `Bundle` `.spec` should be copied (and eventually slightly converted) into `ClusterBundle` `.spec` | ||
- `Bundle` `.status` should be updated from `ClusterBundle` `.status` |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I think we should also add a clear message in the Bundle
.status
stating that using the Bundle
is deprecated.
Also, the validation webhook should throw a warning explaining that the Bundle
resources are deprecated.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
CRDs supports deprecating APIs/versions, and we can tailor the warning message. Isn't this enough?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Im pretty sure the CRD deprecation warning tells you every time you run kubectl against it, we can test this though to make sure thats true with all the commands (describe, get, apply). If that is the case then I think a CRD deprecation warning is enough
- configMap: | ||
name: my-ca | ||
key: ca.crt | ||
target: |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I've often thought that instead of having spec.target.configMap
and spec.target.secret
we should just have spec.targets
which is an array of object references including apiVersion and kind.
This makes supporting future sources much easier, say for example if we wanted to add a plugin system like cert-manager has.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Interesting! Could you draw an example? 😊
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
🤦 I was thinking of sources not targets, for example:
apiVersion: trust-manager.io/v1alpha1
kind: ClusterBundle
metadata:
name: my-bundle
spec:
sources:
# Using apiVersion/kind means we can utilise this same array for
# any future "extensions"/"plugins".
#
# Loading from other sources could be a valuable feature and this API change
# would enable that option in the future.
- apiVersion: v1
kind: ConfigMap
name: my-ca
key: ca.crt
...
In my head it would mean that AWS for example could release an operator that exposes the AWSPrivateCABundleSource
that a user creates to reference their private ca. Then by referencing that AWSPrivateCABundleSource
object in a bundle we pick up the CA.
That kind of support would be added in the longer term, not this piece of work, but the API change could enable that future.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Good input, thanks! I suggest moving the detailed API changes discussion to #242. I have also opened #486, which will be modified to change the initially unserved ClusterBundle
- after it's introduced.
For this design, I suggest we agree that we should consider changing the API. And not exactly what we want to change. Are you ok with this approach?
### Goals | ||
|
||
- `Bundle` resource is renamed to `ClusterBundle` | ||
- `ClusterBundle` is created in the new `trust-manager.io` API group |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
to trust-manager.io from cert-manager.io?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Yes, from trust.cert-manager.io
to trust-manager.io
- as a grown-up. 😉
Proposal on how to implement #63.
The proposed solution is based on input from "the greater community". 🥇