Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use svc.cluster.local as default domain #13259

Merged
merged 5 commits into from Oct 14, 2022
Merged

Use svc.cluster.local as default domain #13259

merged 5 commits into from Oct 14, 2022

Conversation

psschwei
Copy link
Contributor

@psschwei psschwei commented Aug 29, 2022
edited

Signed-off-by: Paul S. Schweigert paul@paulschweigert.com

Fixes #13182

Release Note

Uses the cluster domain suffix `svc.cluster.local` as the default domain. As routes using the cluster domain suffix are not exposed through Ingress, users will need to [configure DNS](https://knative.dev/docs/install/yaml-install/serving/install-serving-with-yaml/#configure-dns) in order to expose their services (most users probably already are).

/hold

@knative-prow knative-prow bot added do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. area/API API objects and controllers area/networking approved Indicates a PR has been approved by an approver from all required OWNERS files. labels Aug 29, 2022
@psschwei psschwei mentioned this pull request Aug 29, 2022
Closed
@knative-prow knative-prow bot added size/S Denotes a PR that changes 10-29 lines, ignoring generated files. and removed size/XS Denotes a PR that changes 0-9 lines, ignoring generated files. labels Sep 6, 2022
@psschwei psschwei changed the title [WIP] testing cluster local as default domain [WIP] Use svc.cluster.local as default domain Sep 6, 2022
@codecov
Copy link

codecov bot commented Sep 6, 2022
edited

Codecov Report

Base: 86.52% // Head: 86.49% // Decreases project coverage by -0.03% ⚠️

Coverage data is based on head (13bed11) compared to base (19cd295).
Patch has no changes to coverable lines.

Additional details and impacted files 
@@            Coverage Diff             @@
##             main   #13259      +/-   ##
==========================================
- Coverage   86.52%   86.49%   -0.04%     
==========================================
  Files         196      196              
  Lines       14526    14526              
==========================================
- Hits        12569    12564       -5     
- Misses       1659     1663       +4     
- Partials      298      299       +1
Impacted Files Coverage Δ
pkg/reconciler/route/config/domain.go 100.00% <ø> (ø)
pkg/reconciler/revision/reconcile_resources.go 66.88% <0.00%> (-1.99%) ⬇️
pkg/autoscaler/statserver/server.go 77.77% <0.00%> (-1.49%) ⬇️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

@knative-prow knative-prow bot added the area/test-and-release It flags unit/e2e/conformance/perf test issues for product features label Sep 6, 2022
@psschwei
Copy link
Contributor Author

psschwei commented Sep 6, 2022

Need to wait on #13283 to run the kind e2e tests

@psschwei
testing cluster local as default domain
d72ec64 
Signed-off-by: Paul S. Schweigert <paul@paulschweigert.com>
@psschwei
update default domain on tests
43dcb87 
Signed-off-by: Paul S. Schweigert <paul@paulschweigert.com>
@psschwei
missed a few
5e96ae5 
Signed-off-by: Paul S. Schweigert <paul@paulschweigert.com>
@psschwei
add domain for e2e tests
ff3ffe8 
Signed-off-by: Paul S. Schweigert <paul@paulschweigert.com>
@psschwei psschwei changed the title [WIP] Use svc.cluster.local as default domain Use svc.cluster.local as default domain Sep 6, 2022
@knative-prow knative-prow bot removed the do-not-merge/work-in-progress Indicates that a PR should not merge because it is a work in progress. label Sep 6, 2022
@nak3
Copy link
Contributor

nak3 commented Sep 7, 2022

We probably want to update the comment in config-domain.yaml - https://github.com/knative/serving/blob/release-1.7/config/core/configmaps/domain.yaml#L43-L46

nak3
nak3 reviewed Sep 7, 2022
View reviewed changes
pkg/reconciler/nscert/nscert_test.go Outdated
@@ -623,7 +623,7 @@ func networkConfig() *netcfg.Config {
func domainConfig() *routecfg.Domain {
domainConfig := &routecfg.Domain{
Domains: map[string]*routecfg.LabelSelector{
"example.com": {},
"svc.cluster.local": {},
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think we should keep example.com for this nscert test.
net-certmanager does not create certificates for cluster local (svc.cluster.local) so we should assume that users set the domain as example.com as it is.

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

sounds good... in that vein, I added an overlay to set the domain for some of the e2e tests, let me know if you think we should remove that

@psschwei
review fixes
13bed11 
Signed-off-by: Paul S. Schweigert <paul@paulschweigert.com>
@knative-prow
Copy link

knative-prow bot commented Sep 7, 2022

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: psschwei

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

@knative-prow knative-prow bot added size/M Denotes a PR that changes 30-99 lines, ignoring generated files. and removed size/S Denotes a PR that changes 10-29 lines, ignoring generated files. labels Sep 7, 2022
@nak3
Copy link
Contributor

nak3 commented Sep 8, 2022

/lgtm
/hold

Thank you! LGTM.

@knative-prow knative-prow bot added the lgtm Indicates that a PR is ready to be merged. label Sep 8, 2022
nader-ziada
nader-ziada reviewed Sep 8, 2022
View reviewed changes
Copy link
Member

@nader-ziada nader-ziada left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

there are a couple of other spots that I think need updating as well

there might be something else I missed

config/core/configmaps/domain.yaml
# These are example settings of domain.
# example.com will be used for all routes, but it is the least-specific rule so it
# will only be used if no other domain matches.
example.com: |
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should we change this in the example for clarity?

@nak3
Copy link
Contributor

nak3 commented Sep 11, 2022

For the example.com in the following scripts:

  • serving/test/config/autotls/certmanager/caissuer/generate.sh
  • serving/test/config/tls/generate.sh

We would like to test the TLS with the external domain so it is OK to keep example.com.

@nader-ziada
Copy link
Member

For the example.com in the following scripts:

  • serving/test/config/autotls/certmanager/caissuer/generate.sh
  • serving/test/config/tls/generate.sh

We would like to test the TLS with the external domain so it is OK to keep example.com.

Sgtm

@nader-ziada
Copy link
Member

nader-ziada commented Sep 14, 2022
edited

Need to wait on #13283 to run the kind e2e tests

this is merged, is this PR here ready to remove the hold?

@psschwei
Copy link
Contributor Author

psschwei commented Sep 14, 2022
edited

Not yet, we gave until Sept 28 23 for anyone to comment on the mailing lists to changing the default domain

@psschwei
Copy link
Contributor Author

Had no objections on the mailing list, so going to remove the hold on this tomorrow

@psschwei
Copy link
Contributor Author

/hold cancel

@knative-prow knative-prow bot removed the do-not-merge/hold Indicates that a PR should not merge because someone has issued a /hold command. label Oct 14, 2022
@knative-prow knative-prow bot merged commit f9a75d7 into knative:main Oct 14, 2022
@psschwei psschwei mentioned this pull request Oct 17, 2022
Merged
This was referenced Nov 3, 2022
Closed
Merged
Closed
@psschwei psschwei mentioned this pull request Jan 30, 2023
Closed
@yuzisun yuzisun mentioned this pull request Feb 4, 2023
Closed
@psschwei psschwei mentioned this pull request Mar 24, 2023
Closed
@dprotaso dprotaso mentioned this pull request May 6, 2023
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nak3 nak3 nak3 left review comments

@nader-ziada nader-ziada nader-ziada left review comments

Assignees

@nak3 nak3

Labels
approved Indicates a PR has been approved by an approver from all required OWNERS files. area/API API objects and controllers area/networking area/test-and-release It flags unit/e2e/conformance/perf test issues for product features lgtm Indicates that a PR is ready to be merged. size/M Denotes a PR that changes 30-99 lines, ignoring generated files.
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Default domain in config-domain should be svc.cluster.local instead of example.com?
3 participants
@psschwei @nak3 @nader-ziada