New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add separate cluster for configured kiali instance #6927
Conversation
6744ef7
to
7ad5c4a
Compare
I believe you need to use Deploy kiali on both clusters including the "west" cluster. |
step 3 - you need to know to pass
Updated the PR description with some additional things to the test procedures that make it easier on testers. |
That is going to need a release notes blurb - "deprecated: feature flags.clustering has moved up one level, the feature flags.clustering will be removed in a future release." |
I see this now, but notice I don't see the instance name in the Kiali column. I just see The relevant kiali CR section: clustering:
autodetect_secrets:
enabled: true
label: kiali.io/multiCluster=true
clusters:
- name: east
accessible: false
kiali_urls:
- cluster_name: east
url: http://localhost:20001/kiali
name: kiali
namespace: istio-system |
@jmazzitelli I had the config wrong initially in the setup instructions. It should be |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Added an e2e integration test for this and removed the |
Also added a |
I confirm seeing the inaccessible 'east' cluster in mash page with configured link. |
What I'm not sure I love the name |
@nrfox to be more clear, is it possible to override "accessible" cluster's auto discovered Kiali's url by setting |
Ah ok I haven't tested that out yet but I didn't change that part of the code so it should still work: Lines 383 to 395 in b1dd7b2
|
Fixed |
Using config.Unmarshal will apply defaults to the config which is necessary since the config struct doesn't marshal/unmarshal properly without the defaults applied.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
** Describe the change **
This change lets you manually specify a cluster in the kiali config that there is no remote secret for. This cluster is considered "inaccessible" meaning that Kiali won't try to connect to it and the frontend won't consider it for the "multi-cluster mode" e.g. there won't be a cluster column when there's one accessible cluster and one inaccessible cluster.
To test:
hack/run-integration-tests.sh --test-suite frontend-multi-primary --setup-only true
../hack/istio/multicluster/deploy-kiali.sh --single-kiali false --cluster1-context kind-east --cluster2-context kind-west --kiali-auth-strategy anonymous --manage-kind true --kiali-use-dev-image true
kubectl --context kind-west edit cm kiali -n istio-system
):kubectl --context kind-west delete pod -n istio-system -l app=kiali
hack/kiali-port-forward.sh -kc kind-west
).You should see two kiali instances on the mesh page and a link to the "east" kiali:
You should not see a cluster column on any of the app/service/istio/workload pages for the "west" kiali.
** Issue reference **
Fixes #6243