This repository has been archived by the owner on Jun 14, 2022. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 1
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
🎉 Ran 'operator-sdk new podreplica-operator --repo github.com/wtfjoke…
…/pod-replica'
- Loading branch information
0 parents
commit ac1bfdc
Showing
15 changed files
with
998 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,77 @@ | ||
# Temporary Build Files | ||
build/_output | ||
build/_test | ||
# Created by https://www.gitignore.io/api/go,vim,emacs,visualstudiocode | ||
### Emacs ### | ||
# -*- mode: gitignore; -*- | ||
*~ | ||
\#*\# | ||
/.emacs.desktop | ||
/.emacs.desktop.lock | ||
*.elc | ||
auto-save-list | ||
tramp | ||
.\#* | ||
# Org-mode | ||
.org-id-locations | ||
*_archive | ||
# flymake-mode | ||
*_flymake.* | ||
# eshell files | ||
/eshell/history | ||
/eshell/lastdir | ||
# elpa packages | ||
/elpa/ | ||
# reftex files | ||
*.rel | ||
# AUCTeX auto folder | ||
/auto/ | ||
# cask packages | ||
.cask/ | ||
dist/ | ||
# Flycheck | ||
flycheck_*.el | ||
# server auth directory | ||
/server/ | ||
# projectiles files | ||
.projectile | ||
projectile-bookmarks.eld | ||
# directory configuration | ||
.dir-locals.el | ||
# saveplace | ||
places | ||
# url cache | ||
url/cache/ | ||
# cedet | ||
ede-projects.el | ||
# smex | ||
smex-items | ||
# company-statistics | ||
company-statistics-cache.el | ||
# anaconda-mode | ||
anaconda-mode/ | ||
### Go ### | ||
# Binaries for programs and plugins | ||
*.exe | ||
*.exe~ | ||
*.dll | ||
*.so | ||
*.dylib | ||
# Test binary, build with 'go test -c' | ||
*.test | ||
# Output of the go coverage tool, specifically when used with LiteIDE | ||
*.out | ||
### Vim ### | ||
# swap | ||
.sw[a-p] | ||
.*.sw[a-p] | ||
# session | ||
Session.vim | ||
# temporary | ||
.netrwhist | ||
# auto-generated tag files | ||
tags | ||
### VisualStudioCode ### | ||
.vscode/* | ||
.history | ||
# End of https://www.gitignore.io/api/go,vim,emacs,visualstudiocode |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,15 @@ | ||
FROM registry.access.redhat.com/ubi7/ubi-minimal:latest | ||
|
||
ENV OPERATOR=/usr/local/bin/podreplica-operator \ | ||
USER_UID=1001 \ | ||
USER_NAME=podreplica-operator | ||
|
||
# install operator binary | ||
COPY build/_output/bin/podreplica-operator ${OPERATOR} | ||
|
||
COPY build/bin /usr/local/bin | ||
RUN /usr/local/bin/user_setup | ||
|
||
ENTRYPOINT ["/usr/local/bin/entrypoint"] | ||
|
||
USER ${USER_UID} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,12 @@ | ||
#!/bin/sh -e | ||
|
||
# This is documented here: | ||
# https://docs.openshift.com/container-platform/3.11/creating_images/guidelines.html#openshift-specific-guidelines | ||
|
||
if ! whoami &>/dev/null; then | ||
if [ -w /etc/passwd ]; then | ||
echo "${USER_NAME:-podreplica-operator}:x:$(id -u):$(id -g):${USER_NAME:-podreplica-operator} user:${HOME}:/sbin/nologin" >> /etc/passwd | ||
fi | ||
fi | ||
|
||
exec ${OPERATOR} $@ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,13 @@ | ||
#!/bin/sh | ||
set -x | ||
|
||
# ensure $HOME exists and is accessible by group 0 (we don't know what the runtime UID will be) | ||
mkdir -p ${HOME} | ||
chown ${USER_UID}:0 ${HOME} | ||
chmod ug+rwx ${HOME} | ||
|
||
# runtime user will need to be able to self-insert in /etc/passwd | ||
chmod g+rw /etc/passwd | ||
|
||
# no need for this script to remain in the image after running | ||
rm $0 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,175 @@ | ||
package main | ||
|
||
import ( | ||
"context" | ||
"flag" | ||
"fmt" | ||
"os" | ||
"runtime" | ||
|
||
// Import all Kubernetes client auth plugins (e.g. Azure, GCP, OIDC, etc.) | ||
_ "k8s.io/client-go/plugin/pkg/client/auth" | ||
"k8s.io/client-go/rest" | ||
|
||
"github.com/wtfjoke/pod-replica/pkg/apis" | ||
"github.com/wtfjoke/pod-replica/pkg/controller" | ||
|
||
"github.com/operator-framework/operator-sdk/pkg/k8sutil" | ||
kubemetrics "github.com/operator-framework/operator-sdk/pkg/kube-metrics" | ||
"github.com/operator-framework/operator-sdk/pkg/leader" | ||
"github.com/operator-framework/operator-sdk/pkg/log/zap" | ||
"github.com/operator-framework/operator-sdk/pkg/metrics" | ||
"github.com/operator-framework/operator-sdk/pkg/restmapper" | ||
sdkVersion "github.com/operator-framework/operator-sdk/version" | ||
"github.com/spf13/pflag" | ||
v1 "k8s.io/api/core/v1" | ||
"k8s.io/apimachinery/pkg/util/intstr" | ||
"sigs.k8s.io/controller-runtime/pkg/client/config" | ||
"sigs.k8s.io/controller-runtime/pkg/manager" | ||
logf "sigs.k8s.io/controller-runtime/pkg/runtime/log" | ||
"sigs.k8s.io/controller-runtime/pkg/runtime/signals" | ||
) | ||
|
||
// Change below variables to serve metrics on different host or port. | ||
var ( | ||
metricsHost = "0.0.0.0" | ||
metricsPort int32 = 8383 | ||
operatorMetricsPort int32 = 8686 | ||
) | ||
var log = logf.Log.WithName("cmd") | ||
|
||
func printVersion() { | ||
log.Info(fmt.Sprintf("Go Version: %s", runtime.Version())) | ||
log.Info(fmt.Sprintf("Go OS/Arch: %s/%s", runtime.GOOS, runtime.GOARCH)) | ||
log.Info(fmt.Sprintf("Version of operator-sdk: %v", sdkVersion.Version)) | ||
} | ||
|
||
func main() { | ||
// Add the zap logger flag set to the CLI. The flag set must | ||
// be added before calling pflag.Parse(). | ||
pflag.CommandLine.AddFlagSet(zap.FlagSet()) | ||
|
||
// Add flags registered by imported packages (e.g. glog and | ||
// controller-runtime) | ||
pflag.CommandLine.AddGoFlagSet(flag.CommandLine) | ||
|
||
pflag.Parse() | ||
|
||
// Use a zap logr.Logger implementation. If none of the zap | ||
// flags are configured (or if the zap flag set is not being | ||
// used), this defaults to a production zap logger. | ||
// | ||
// The logger instantiated here can be changed to any logger | ||
// implementing the logr.Logger interface. This logger will | ||
// be propagated through the whole operator, generating | ||
// uniform and structured logs. | ||
logf.SetLogger(zap.Logger()) | ||
|
||
printVersion() | ||
|
||
namespace, err := k8sutil.GetWatchNamespace() | ||
if err != nil { | ||
log.Error(err, "Failed to get watch namespace") | ||
os.Exit(1) | ||
} | ||
|
||
// Get a config to talk to the apiserver | ||
cfg, err := config.GetConfig() | ||
if err != nil { | ||
log.Error(err, "") | ||
os.Exit(1) | ||
} | ||
|
||
ctx := context.TODO() | ||
// Become the leader before proceeding | ||
err = leader.Become(ctx, "podreplica-operator-lock") | ||
if err != nil { | ||
log.Error(err, "") | ||
os.Exit(1) | ||
} | ||
|
||
// Create a new Cmd to provide shared dependencies and start components | ||
mgr, err := manager.New(cfg, manager.Options{ | ||
Namespace: namespace, | ||
MapperProvider: restmapper.NewDynamicRESTMapper, | ||
MetricsBindAddress: fmt.Sprintf("%s:%d", metricsHost, metricsPort), | ||
}) | ||
if err != nil { | ||
log.Error(err, "") | ||
os.Exit(1) | ||
} | ||
|
||
log.Info("Registering Components.") | ||
|
||
// Setup Scheme for all resources | ||
if err := apis.AddToScheme(mgr.GetScheme()); err != nil { | ||
log.Error(err, "") | ||
os.Exit(1) | ||
} | ||
|
||
// Setup all Controllers | ||
if err := controller.AddToManager(mgr); err != nil { | ||
log.Error(err, "") | ||
os.Exit(1) | ||
} | ||
|
||
if err = serveCRMetrics(cfg); err != nil { | ||
log.Info("Could not generate and serve custom resource metrics", "error", err.Error()) | ||
} | ||
|
||
// Add to the below struct any other metrics ports you want to expose. | ||
servicePorts := []v1.ServicePort{ | ||
{Port: metricsPort, Name: metrics.OperatorPortName, Protocol: v1.ProtocolTCP, TargetPort: intstr.IntOrString{Type: intstr.Int, IntVal: metricsPort}}, | ||
{Port: operatorMetricsPort, Name: metrics.CRPortName, Protocol: v1.ProtocolTCP, TargetPort: intstr.IntOrString{Type: intstr.Int, IntVal: operatorMetricsPort}}, | ||
} | ||
// Create Service object to expose the metrics port(s). | ||
service, err := metrics.CreateMetricsService(ctx, cfg, servicePorts) | ||
if err != nil { | ||
log.Info("Could not create metrics Service", "error", err.Error()) | ||
} | ||
|
||
// CreateServiceMonitors will automatically create the prometheus-operator ServiceMonitor resources | ||
// necessary to configure Prometheus to scrape metrics from this operator. | ||
services := []*v1.Service{service} | ||
_, err = metrics.CreateServiceMonitors(cfg, namespace, services) | ||
if err != nil { | ||
log.Info("Could not create ServiceMonitor object", "error", err.Error()) | ||
// If this operator is deployed to a cluster without the prometheus-operator running, it will return | ||
// ErrServiceMonitorNotPresent, which can be used to safely skip ServiceMonitor creation. | ||
if err == metrics.ErrServiceMonitorNotPresent { | ||
log.Info("Install prometheus-operator in your cluster to create ServiceMonitor objects", "error", err.Error()) | ||
} | ||
} | ||
|
||
log.Info("Starting the Cmd.") | ||
|
||
// Start the Cmd | ||
if err := mgr.Start(signals.SetupSignalHandler()); err != nil { | ||
log.Error(err, "Manager exited non-zero") | ||
os.Exit(1) | ||
} | ||
} | ||
|
||
// serveCRMetrics gets the Operator/CustomResource GVKs and generates metrics based on those types. | ||
// It serves those metrics on "http://metricsHost:operatorMetricsPort". | ||
func serveCRMetrics(cfg *rest.Config) error { | ||
// Below function returns filtered operator/CustomResource specific GVKs. | ||
// For more control override the below GVK list with your own custom logic. | ||
filteredGVK, err := k8sutil.GetGVKsFromAddToScheme(apis.AddToScheme) | ||
if err != nil { | ||
return err | ||
} | ||
// Get the namespace the operator is currently deployed in. | ||
operatorNs, err := k8sutil.GetOperatorNamespace() | ||
if err != nil { | ||
return err | ||
} | ||
// To generate metrics in other namespaces, add the values below. | ||
ns := []string{operatorNs} | ||
// Generate and serve custom resource specific metrics. | ||
err = kubemetrics.GenerateAndServeCRMetrics(cfg, ns, filteredGVK, metricsHost, operatorMetricsPort) | ||
if err != nil { | ||
return err | ||
} | ||
return nil | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,33 @@ | ||
apiVersion: apps/v1 | ||
kind: Deployment | ||
metadata: | ||
name: podreplica-operator | ||
spec: | ||
replicas: 1 | ||
selector: | ||
matchLabels: | ||
name: podreplica-operator | ||
template: | ||
metadata: | ||
labels: | ||
name: podreplica-operator | ||
spec: | ||
serviceAccountName: podreplica-operator | ||
containers: | ||
- name: podreplica-operator | ||
# Replace this with the built image name | ||
image: REPLACE_IMAGE | ||
command: | ||
- podreplica-operator | ||
imagePullPolicy: Always | ||
env: | ||
- name: WATCH_NAMESPACE | ||
valueFrom: | ||
fieldRef: | ||
fieldPath: metadata.namespace | ||
- name: POD_NAME | ||
valueFrom: | ||
fieldRef: | ||
fieldPath: metadata.name | ||
- name: OPERATOR_NAME | ||
value: "podreplica-operator" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,54 @@ | ||
kind: Role | ||
apiVersion: rbac.authorization.k8s.io/v1 | ||
metadata: | ||
name: podreplica-operator | ||
rules: | ||
- apiGroups: | ||
- "" | ||
resources: | ||
- pods | ||
- services | ||
- services/finalizers | ||
- endpoints | ||
- persistentvolumeclaims | ||
- events | ||
- configmaps | ||
- secrets | ||
verbs: | ||
- "*" | ||
- apiGroups: | ||
- apps | ||
resources: | ||
- deployments | ||
- daemonsets | ||
- replicasets | ||
- statefulsets | ||
verbs: | ||
- "*" | ||
- apiGroups: | ||
- monitoring.coreos.com | ||
resources: | ||
- servicemonitors | ||
verbs: | ||
- "get" | ||
- "create" | ||
- apiGroups: | ||
- apps | ||
resources: | ||
- deployments/finalizers | ||
resourceNames: | ||
- podreplica-operator | ||
verbs: | ||
- "update" | ||
- apiGroups: | ||
- "" | ||
resources: | ||
- pods | ||
verbs: | ||
- get | ||
- apiGroups: | ||
- apps | ||
resources: | ||
- replicasets | ||
verbs: | ||
- get |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,11 @@ | ||
kind: RoleBinding | ||
apiVersion: rbac.authorization.k8s.io/v1 | ||
metadata: | ||
name: podreplica-operator | ||
subjects: | ||
- kind: ServiceAccount | ||
name: podreplica-operator | ||
roleRef: | ||
kind: Role | ||
name: podreplica-operator | ||
apiGroup: rbac.authorization.k8s.io |
Oops, something went wrong.