profiles

command module
v0.0.2 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: May 20, 2021 License: Apache-2.0 Imports: 18 Imported by: 0

README

profiles

Gitops native package management.

Getting started

Local environment using Kind

  1. Set up local environment: make local-env.

    This will start a local kind cluster and installs the profiles and flux components.

  2. Deploy an example catalog source kubectl apply -f examples/profile-catalog-source.yaml

Installing Profiles
  1. Profiles can be installed using pctl.

Development

Tests

  1. All tests can be run with make test.

  2. Acceptance tests can be run with make acceptance.

  3. For further commands, run make help.

Release process

There are some manual steps right now, should be streamlined soon.

Steps:

  1. Create a new release notes file:

    touch docs/release_notes/<version>.md

  2. Copy-and paste the release notes from the draft on the releases page into this file. Note: sometimes the release drafter is a bit of a pain, verify that the notes are correct by doing something like: git log --first-parent tag1..tag2.

  3. PR the release notes into main.

  4. Create and push a tag with the new version:

    git tag <version>
git push origin <version>

  5. The Create release action should run. Verify that:

    1. The release has been created in Github
      1. With the correct assets
      2. With the correct release notes
    2. The image has been pushed to docker
    3. The image can be pulled and used in a deployment

Terminology

Profile

A Profile is a "package" of Kubernetes deployable objects, known as Artifacts, and configurable values. Artifacts are one of: Helm Chart; Helm Release; raw yaml; Kustomize patch; Profile (nested).

For an example, see the profiles-examples.

Catalog

A Catalog is an in-memory cache of Profiles. There is one Catalog per running Profile Controller. The Catalog is queryable via pctl or the API directly which runs alongside the Profiles Controller.

Profiles can be added to the Catalog by creating a ProfileCatalogSource.

Profile Catalog Source

A ProfileCatalogSource is a custom resource through which approved Profiles can be managed in the Catalog

// ProfileCatalogSourceSpec defines the desired state of ProfileCatalogSource
type ProfileCatalogSourceSpec struct {
	// Profiles is the list of profiles exposed by the catalog
	Profiles []ProfileDescription `json:"profiles,omitempty"`
}

// ProfileDescription defines details about a given profile.
type ProfileDescription struct {
	// Profile name
	Name string `json:"name,omitempty"`
	// Profile description
	Description string `json:"description,omitempty"`
	// Version
	// +optional
	Version string `json:"version,omitempty"`
	// CatalogSource is the name of the catalog the profile is listed in
	// +optional
	CatalogSource string `json:"catalog,omitempty"`
	// URL is the full URL path to the profile.yaml
	// +optional
	URL string `json:"url,omitempty"`
	// Maintainer is the name of the author(s)
	// +optional
	Maintainer string `json:"maintainer,omitempty"`
	// Prerequisites are a list of dependencies required by the profile
	// +optional
	Prerequisites []string `json:"prerequisites,omitempty"`
}

Profiles can therefore be grouped and namespaced within the Catalog.

Profile Subscription

A ProfileSubscription is the top-level Profile installation object. Once a Subscription is applied to the cluster, the requested Profile is parsed and child artifact objects are created.

Artifact objects are processed by Flux components, with the health of Subscription children reflected in the ProfileSubscriptionStatus.

// ProfileSubscriptionSpec defines the desired state of a ProfileSubscription
type ProfileSubscriptionSpec struct {
	// ProfileURL is a fully qualified URL to a profile repo
	ProfileURL string `json:"profileURL,omitempty"`
	// Branch is the git repo branch containing the profile definition (default: main)
	// +kubebuilder:default:=main
	// +optional
	Branch string `json:"branch,omitempty"`

	// Values holds the values for the Helm chart specified in the first artifact
	// +optional
	Values *apiextensionsv1.JSON `json:"values,omitempty"`

	// ValuesFrom holds references to resources containing values for the Helm chart specified in the first artifact
	// +optional
	ValuesFrom []helmv2.ValuesReference `json:"valuesFrom,omitempty"`
}

// ProfileSubscriptionStatus defines the observed state of ProfileSubscription
type ProfileSubscriptionStatus struct {
	// Conditions holds the conditions for the ProfileSubscription
	// +optional
	Conditions []metav1.Condition `json:"conditions,omitempty"`
}

If using pctl, Profiles can only be installed if they are listed in a Catalog Source.

Profile Controller

The Profile Controller reconciles ProfileSubscription resources. See architecture diagrams below for what the reconciliation process does.

Profile Catalog Source Controller

The Profile Catalog Source Controller reconciles ProfileCatalogSource resources. See architecture diagrams below for what the reconciliation process does.

Current Architecture

Catalogs and Sources

Illustration of how Profiles are added to the Catalog and how they can then be queried via the Catalog API:

Profile Subscriptions

Illustration of a basic profile install (aka subscription), using kubectl and a hand-written ProfileSubscription:

Slightly more complex Gitops flow, using pctl and without direct cluster interaction:

Or if swimlanes are more your thing:

Successful installations can be verified by running: kubectl describe pod [-n <namespace>] <pod-name>. The pod name will be comprised of profileSubscriptionName-profileDefinitionName-artifactName-xxxx

Roadmap

Profiles

Install:

  • Install a simple profile which contains a single Helm release artifact
  • Install a simple profile which contains a raw yaml artifact (k8s object manifest)
  • Install a simple profile which contains another profile (single nesting)
  • Install a profile which contains a mix of all artifact types
  • Install a profile which contains nested profiles to depth N
  • Install a profile with pctl in a gitops way (ie there is a PR involved, and nobody touches the cluster)
  • Install a profile which is listed in the catalog
  • Install a profile which is NOT listed in the catalog
  • Install a private profile

Configure:

  • Configure a Helm release artifact installation
  • Reconcile artifacts in case in-line values of a subscription are updated
  • Reconcile artifacts in case ConfigMap or Secrets values are updated defined by valuesFrom
  • Apply Kustomise patches
  • Configure different values across multiple artifacts

Uninstall:

  • Uninstall a profile with pctl in a gitops way (ie there is a PR involved, and nobody touches the cluster)

Update:

  • Discover when there is a newer version available
  • Update a profile
Catalogs

Catalog sources:

  • Create a catalog source
  • Delete a catalog source
  • Grant/Revoke access to CatalogSources

Catalog management:

  • Add profiles to the catalog
  • Update profiles in the catalog
  • Delete profiles from the catalog

API:

  • Search for profiles in the catalog
  • Get more information about a profile in the catalog

Documentation

The Go Gopher

There is no documentation for this package.

Source Files

View all Source files

Directories

Path Synopsis
api
v1alpha1
Package v1alpha1 contains API Schema definitions for the v1alpha1 API group +kubebuilder:object:generate=true +groupName=weave.works
 Package v1alpha1 contains API Schema definitions for the v1alpha1 API group +kubebuilder:object:generate=true +groupName=weave.works
pkg
api
api/fakes
Code generated by counterfeiter.
 Code generated by counterfeiter.
catalog

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.
JackTT - Gopher 🇻🇳