Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support generating Kustomize friendly annotation for CRDs #410

Closed
tamalsaha opened this issue Mar 1, 2020 · 10 comments
Closed

Support generating Kustomize friendly annotation for CRDs #410

tamalsaha opened this issue Mar 1, 2020 · 10 comments
Labels
lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed.

Comments

@tamalsaha
Copy link
Contributor

https://kubectl.docs.kubernetes.io/pages/examples/kustomize.html

# Each entry in this list should be a relative path to
# a file for custom resource definition(CRD) in openAPI definition.
#
# The presence of this field is to allow kustomize be
# aware of CRDs and apply proper
# transformation for any objects in those types.
#
# Typical use case: A CRD object refers to a ConfigMap object.
# In kustomization, the ConfigMap object name may change by adding namePrefix, nameSuffix, or hashing
# The name reference for this ConfigMap object in CRD object need to be
# updated with namePrefix, nameSuffix, or hashing in the same way.
#
# The annotations can be put into openAPI definitions are:
#   "x-kubernetes-annotation": ""
#   "x-kubernetes-label-selector": ""
#   "x-kubernetes-identity": ""
#   "x-kubernetes-object-ref-api-version": "v1",
#   "x-kubernetes-object-ref-kind": "Secret",
#   "x-kubernetes-object-ref-name-key": "name",
crds:
- crds/typeA.json
- crds/typeB.json
@tamalsaha tamalsaha changed the title Generate Kustomize friendly annotation for CRDs Support generating Kustomize friendly annotation for CRDs Mar 1, 2020
@fejta-bot
Copy link

Issues go stale after 90d of inactivity.
Mark the issue as fresh with /remove-lifecycle stale.
Stale issues rot after an additional 30d of inactivity and eventually close.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle stale

@k8s-ci-robot k8s-ci-robot added the lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. label May 30, 2020
@fejta-bot
Copy link

Stale issues rot after 30d of inactivity.
Mark the issue as fresh with /remove-lifecycle rotten.
Rotten issues close after an additional 30d of inactivity.

If this issue is safe to close now please do so with /close.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/lifecycle rotten

@k8s-ci-robot k8s-ci-robot added lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed. and removed lifecycle/stale Denotes an issue or PR has remained open with no activity and has become stale. labels Jun 29, 2020
@fejta-bot
Copy link

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/close

@k8s-ci-robot
Copy link
Contributor

@fejta-bot: Closing this issue.

In response to this:

Rotten issues close after 30d of inactivity.
Reopen the issue with /reopen.
Mark the issue as fresh with /remove-lifecycle rotten.

Send feedback to sig-testing, kubernetes/test-infra and/or fejta.
/close

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository.

@MariusSchiffer
Copy link

MariusSchiffer commented Jan 13, 2025
edited
Loading

I think this is still a useful thing.

Example: A CRD uses PodTemplate, which contains configMapRef. This reference will not be updated by kustomize for the configMapGenerator as it cannot see that this is a configMap reference.

@k8s-ci-robot
Copy link
Contributor

@MariusSchiffer: You can't reopen an issue/PR unless you authored it or you are a collaborator.

In response to this:

I think this is still a useful thing.

Example: A CRD uses PodTemplate, which contains configMapRef. This reference will not be updated by kustomize for the configMapGenerator as it cannot see that this is a configMap reference.

/reopen

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

@sbueringer
Copy link
Member

I don't get it. What is the concrete ask here? Can you give an example what exactly controller-gen could support here?

@MariusSchiffer
Copy link

MariusSchiffer commented Jan 13, 2025
edited
Loading

controller-gen should add x-kubernetes-object-ref-kind and x-kubernetes-object-ref-api-version to the generated CRD schema for core kubernetes objects (or all).
This allows kustomize (and maybe other tools) to know where to find the object definition.

An example why this is useful is kustomize's configMapGenerator feature.
When kustomize generates a configMap, it replaces all mentions of this configMap in configMapRef in the processed resources with the generated name.
But this only works if kustomize correctly recognizes it as a configMapRef. For this, during CRD loading, it checks x-kubernetes-object-ref-kind, see here: https://github.com/kubernetes-sigs/kustomize/blob/880a7a0187f0cb34132baa706d4a48d1ef5b8912/api/internal/accumulator/loadconfigfromcrds.go#L163

Here is an example: kubernetes-sigs/kustomize#681 (comment)

For another concrete example, elastic's cloud-on-k8s has CRDs which includes podTemplate (directly included from kubernetes definitions). Same problem that kustomize cannot recognize the podTemplate.

Definitions here: https://github.com/elastic/cloud-on-k8s/blob/main/pkg/apis/beat/v1beta1/beat_types.go#L96
Output here: https://github.com/elastic/cloud-on-k8s/blob/main/config/crds/v1/resources/beat.k8s.elastic.co_beats.yaml#L89

They actually remove everything below podTemplate as duplicating core kubernetes CRD parts becomes large quickly: https://github.com/elastic/cloud-on-k8s/blob/main/config/crds/v1/patches/beat-patches.yaml#L3

I'm not sure if this is the best approach (I feel like there could be something more native-y than using a x- property).
It also looks like this would require changing JSONSchemaProps.

@JoelSpeed
Copy link
Contributor

If I've read this correctly, you would need to re-ignite kubernetes/kubernetes#82942 and get this support into Kube as part of the CRD apiextensions-apiserver before changing anything in controller-tools.

JSONSchemaProps relates to a Kubernetes API, it's not part of this repo, we cannot just change it, and expect it to work

@MariusSchiffer
Copy link

MariusSchiffer commented Jan 13, 2025
edited
Loading

After some searching I found more on kustomize's side, so this has to be solved there: kubernetes-sigs/kustomize#3418
Thank you for the fast reply

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
lifecycle/rotten Denotes an issue or PR that has aged beyond stale and will be auto-closed.
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
6 participants
@tamalsaha @MariusSchiffer @sbueringer @JoelSpeed @k8s-ci-robot @fejta-bot