Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

contrib/k8s.io/client-go: inject the traceID as kube auditID #351

Merged
merged 6 commits into from
Oct 31, 2018
Merged

contrib/k8s.io/client-go: inject the traceID as kube auditID #351

merged 6 commits into from
Oct 31, 2018

Conversation

JulienBalestra
Copy link
Contributor

This allows to provide the Kubernetes Audit-ID to the kube-apiserver see.

With this change, we could then use datadog distributing tracing capabilities (audit logs) in the apiserver side.

@JulienBalestra JulienBalestra added this to the next milestone Oct 28, 2018
gbbr
gbbr reviewed Oct 29, 2018
View reviewed changes
contrib/k8s.io/client-go/kubernetes/kubernetes.go Show resolved Hide resolved
contrib/k8s.io/client-go/kubernetes/kubernetes.go Outdated
}
kubeAuditID := strconv.FormatUint(traceID, 10)
req.Header.Set("Audit-Id", kubeAuditID)
span.SetTag("kubernetes.auditID", kubeAuditID)
Copy link
Contributor

@gbbr gbbr Oct 29, 2018
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think kubernetes.audit_id would be more standard to APM (and the actual header itself). Would this change be troublesome for you?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Not at all 👍

contrib/k8s.io/client-go/kubernetes/kubernetes.go
}))
}

func requestToResource(method, path string) string {
func RequestToResource(method, path string) string {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why was this made public API? If there's a good reason it's fine, but then let's clearly document it.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I would like to use this part of the code to generate traces from the apiserver side while parsing the Kubernetes audit logs.
It avoids me to repeat this function and keep a coherence there.
The goal of this is to set a distributed trace.
Does it make sense ?
I'll document this properly.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure. Let's keep it then. Was just making sure this was intentional.

gbbr
gbbr reviewed Oct 30, 2018
View reviewed changes
Copy link
Contributor

@gbbr gbbr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good, happy to merge this once the small changes are applied.

contrib/k8s.io/client-go/kubernetes/kubernetes.go Show resolved Hide resolved
contrib/k8s.io/client-go/kubernetes/kubernetes.go Outdated Show resolved Hide resolved
contrib/k8s.io/client-go/kubernetes/kubernetes.go
}))
}

func requestToResource(method, path string) string {
func RequestToResource(method, path string) string {
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sure. Let's keep it then. Was just making sure this was intentional.

JulienBalestra and others added 4 commits October 30, 2018 14:39
@JulienBalestra
kubernetes: inject the traceID as kube auditID
306f724
@JulienBalestra
fix tests, pr feedback
1462ac0
@gbbr @JulienBalestra
kube: add comment
7cb028f 
Co-Authored-By: JulienBalestra <julien.balestra@gmail.com>
@gbbr @JulienBalestra
kube: rephrase doc
3271bf4 
Co-Authored-By: JulienBalestra <julien.balestra@gmail.com>
@gbbr gbbr changed the title kubernetes: inject the traceID as kube auditID contrib/k8s.io/client-go: inject the traceID as kube auditID Oct 31, 2018
gbbr
gbbr reviewed Oct 31, 2018
View reviewed changes
contrib/k8s.io/client-go/kubernetes/kubernetes.go
traceID := span.Context().TraceID()
if traceID == 0 {
// tracer is not running
return
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

What's wrong with the alignment here?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I accepted the github suggestion 😆 going to fix it in the old way

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Ok then I'll take the fall for that 😅

@JulienBalestra
kubernetes: add comment
4a9ba3a 
Signed-off-by: JulienBalestra <julien.balestra@datadoghq.com>
gbbr
gbbr approved these changes Oct 31, 2018
View reviewed changes
Copy link
Contributor

@gbbr gbbr left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for this change and for being patient with my review.

@gbbr gbbr merged commit b2aa429 into v1 Oct 31, 2018
@gbbr
Copy link
Contributor

gbbr commented Oct 31, 2018

Will include this in 1.5.0 next week.

@gbbr gbbr deleted the JulienBalestra/kube-audit branch October 31, 2018 13:48
@JulienBalestra JulienBalestra removed the request for review from dd-caleb March 20, 2019 15:02
mingrammer pushed a commit to mingrammer/dd-trace-go that referenced this pull request Dec 22, 2020
@JulienBalestra @mingrammer
contrib/k8s.io/client-go: inject the traceID as kube auditID (DataDog…
f197ff7 
…#351)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@gbbr gbbr gbbr approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
1.5.0
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@JulienBalestra @gbbr