cache-server: expose apiresourceschemas and apiexports

[p0lyn0mial]

Summary

exposes schema-less apiresourceschemas and apiexports resources. It allows us to store any fields we need. Since this server will be used by the shards, schemas will be implicit.

I did the following manual test which indicates storing "foo": "bar" with an apiexport obj works.

POST:

curl -k -X POST 'https://localhost:6443/apis/apis.kcp.dev/v1alpha1/apiexports' -H 'Content-Type: application/json' -d '{"apiVersion":"apis.kcp.dev/v1alpha1","kind":"APIExport","metadata":{"name":"ab"},"foo":"bar"}'

GET:

curl -k 'https://localhost:6443/apis/apis.kcp.dev/v1alpha1/apiexports/ab'
{
  "apiVersion": "apis.kcp.dev/v1alpha1",
  "foo": "bar",
  "kind": "APIExport",
  "metadata": {
    "annotations": {
      "kcp.dev/cluster": "system:admin"
    },
    "creationTimestamp": "2022-08-24T08:50:09Z",
    "generation": 1,
    "managedFields": [
      {
        "apiVersion": "apis.kcp.dev/v1alpha1",
        "fieldsType": "FieldsV1",
        "fieldsV1": {
          "f:foo": {}
        },
        "manager": "curl",
        "operation": "Update",
        "time": "2022-08-24T08:50:09Z"
      }
    ],
    "name": "ab",
    "resourceVersion": "11",
    "uid": "b4b9447e-5ea8-4b73-a996-eb4a98eae3e0"
  }
}

note for now passing a logical cluster name is not required in the future it might be required along with a shard name.

Related issue(s)

requires kcp-dev/kubernetes#93

[p0lyn0mial]

/hold

I still need to test it manually.

[p0lyn0mial]

creating crds with empty schemas is cheap and doesn't require creating an in-memory storage implementation.

it can be reworked in the future if we don't like it.

[p0lyn0mial]

the storage is required for listing CRDs and for discovery (not implemented yet).

[p0lyn0mial]

/hold cancel

[stevekuznetsov]

Mostly seems reasonable, some small comments

[stevekuznetsov]

This is a constant somewhere already, could we import it?

[p0lyn0mial]

I think we should treat it as a distinct value, I picked up the same logical cluster for symmetry.

[stevekuznetsov]

A comment to explain that would be great! Makes sense.

[stevekuznetsov]

Is this the only diff from the other bootstrap functions? could we DRY this out?

[p0lyn0mial]

we could call CreateSingle from this function and retry on any error.

[stevekuznetsov]

nit: we're moving to the context-based clients instead of NewCluster - can we do that here as well to save Varsha some work in the future? :)

[p0lyn0mial]

np, mind sharing an example?

[stevekuznetsov]

Look for any use of logicalcluster.WithCluster() e.g.:

	return c.kubeClusterClient.CoreV1().Namespaces().Patch(logicalcluster.WithCluster(ctx, clusterName), name, pt, data, opts, subresources...)

[p0lyn0mial]

okay, but I need a Wildcard logical cluster for informers, it seems like informers don't support the new way of passing a cluster name.

[stevekuznetsov]

Yes, that is the one case where this approach does not work

[stevekuznetsov]

#1813 fixes that :)

[p0lyn0mial]

do we need 2 clients until it merges?

[stevekuznetsov]

Not sure I follow actually - you need a cluster-scoped client for the factory:

# github.com/kcp-dev/kcp/pkg/client/informers
func NewSharedInformerFactoryWithOptions( ... versioned.Interface, ... ) {}

Where you can get such a thing from .Cluster(logicalcluster.Wildcard) which should be identical to SetCluster() on the *rest.Config, no?

# github.com/kcp-dev/kcp/pkg/client/clientset/versioned
func (c *Cluster) Cluster(name v2.Name) Interface {}

So NewClusterForConfig(cfg).Cluster(logicalcluster.Wildcard) would become NewClientForConfig(kcpclienthelper.SetCluster(rest.CopyConfig(cfg), logicalcluster.Wildcard))?

[p0lyn0mial]

something is broken, I think I have to use it along with NewClusterRoundTripper but then the path seems to be incorrect /clusters/*/clusters/system:system-crds/apis/apiextensions.k8s.io/v1/customresourcedefinitions/apiresourceschemas.apis.kcp.dev

I'd like to proceed with this PR if that's okay. I can revisit using the context-based clients in the future

[p0lyn0mial]

I don't like creating common/utils pkgs :P

[stevekuznetsov]

You and @sttts both ... but I like copy-pasting something 100x even less than I like creating a utility package ;)

[p0lyn0mial]

moved to a util pkg

[sttts]

util packages 😱

[ncdc]

@p0lyn0mial if you wouldn't mind, please prefix the PR titles with the area they're for (it makes it easier to know at a glance) - thanks!

/retitle cache-server: expose apiresourceschemas and apiexports

[stevekuznetsov]

Other comments can/will be follow-ups.

[stevekuznetsov]

nit: If I had a crystal ball, I think I'd make the prophecy that Stefan would want this helper to end up in this upstream package ... :^)

[sttts]

How about moving that into the upstream package?

[openshift-ci]

[APPROVALNOTIFIER] This PR is APPROVED

Approval requirements bypassed by manually added approval.

This pull-request has been approved by: stevekuznetsov

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [stevekuznetsov]
• config/crds/OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[stevekuznetsov]

#342