Make clarifications and add detail to API document #40
There are no files selected for viewing
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,63 +1,99 @@ | ||
| # V1 API | ||
|
|
||
| This document describes the API resource types and usage in the v1 service | ||
| catalog. Although this API will be implemented in a Kubernetes repo, other | ||
| systems are not precluded from implementing it as well. | ||
|
|
||
| # Resource Types | ||
|
|
||
| This section lists descriptions of the resources in the service catalog API. | ||
|
|
||
| *__Note:__ All names herein are tentative, and should be considered placeholders | ||
| for purposes of discussion. This note will be removed when names are finalized.* | ||
|
|
||
| ## `Broker` Resource | ||
|
|
||
| A `Broker` represents an entity that provides service classes for use in the | ||
| catalog. | ||
|
|
||
| An administrator creates an instance of the `Broker` resource to indicate their | ||
| intent to make the service classes provided by that broker available in the | ||
| catalog. | ||
|
|
||
| The service catalog controller has a watch on the `Broker` resource. When the | ||
| controller receives an `ADD` watch event for a new `Broker`, it contacts the | ||
| broker to determine what service classes the broker offers: | ||
|
There was a problem hiding this comment. How about adding this bit: "... it contacts the specified backing broker to determine ..."? I fear that without the "specified backing broker" language, the difference between |
||
|
|
||
| 1. Makes a request against the given service broker's catalog endpoint | ||
| (`GET /v2/catalog`) | ||
| 2. Translates the response to a list of `ServiceClass` | ||
| 3. Creates new `ServiceClass` instances in the API server | ||
|
|
||
| *TODO: What happens when a `Broker` resource is deleted?* | ||
|
|
||
| ## `ServiceClass` Resource | ||
|
|
||
| A `ServiceClass` represents an offering in the service catalog. A | ||
| `ServiceClass` is not usable directly; an `Instance` of a `ServiceClass` must be | ||
| created to be consumed by an application. | ||
|
|
||
| This resource is created by the service catalog's controller event loop after | ||
|
There was a problem hiding this comment. ok for now, but I'm not a fan of repeating stuff since its asking for things to get out of sync. So we shouldn't repeat what was stated in the previous section. There was a problem hiding this comment. I'm not a fan of repeating stuff either, but I want each thing to have an unambiguous statement of what it is associated with it in this manner. |
||
| it has received a `Broker` resource and successfully called the backing CF | ||
| broker's catalog endpoint. | ||
|
|
||
| *TODO: Make explicit the relationship between service classes and plans* | ||
|
There was a problem hiding this comment. does this mean that plans will be separate resources (e.g. There was a problem hiding this comment. Not necessarily. It only means that we did not have an agreement on it and need to discuss as a group. I have my own opinions but we need to agree as a group. There was a problem hiding this comment. @pmorie yes, I'm ok that this remains a TODO |
||
|
|
||
| ## `Instance` Resource | ||
|
|
||
| An `Instance` represents a provisioned instance of a `ServiceClass`, and is the | ||
| entity an application binds to. | ||
|
|
||
| A service consumer creates an `Instance` to indicate their intent to provision | ||
| an instance of a service class. The `Instance` has a reference to the | ||
| `ServiceClass` to provision an instance of. | ||
|
|
||
| The service catalog controller has a watch on the `Instance` resource and | ||
|
There was a problem hiding this comment. I think we should make the watch more explicit: "...has a watch on |
||
| receives an `ADD` watch event. The controller then attempts to provision a new | ||
| instance of the service via the corresponding service broker: | ||
|
|
||
| 1. The controller calls the provision endpoint on the broker | ||
|
There was a problem hiding this comment. Just like above you explicitly called the GET /v2/... maybe say here: There was a problem hiding this comment. Yeah, I was planning on adding that level of detail in the next pass, if you are okay with that. We can add it now if you feel strongly. |
||
| 2. The broker returns a response indicating that the broker provisioned the new | ||
| instance, the instance was already provisioned, or the provisioning | ||
| operation is in progress | ||
| 3. The controller updates the status of the `Instance` to indicate when the | ||
| `Instance` is in a provisioning or provisioned condition | ||
|
|
||
| *TODO: codify how asynchronous responses are handled in the controller* | ||
|
|
||
|
|
||
| ## `Binding` Resource | ||
|
|
||
| A `Binding` represents a "used by" relationship between an application and an | ||
| `Instance` of a `ServiceClass`. | ||
|
|
||
| *TODO: clarify exactly what constitutes an application.* | ||
|
|
||
| Service consumers create `Binding` resources to indicate that an application | ||
| should be bound to an `Instance`. The `Binding` contains information about how | ||
| the application wants to use the binding information such as: | ||
|
|
||
| 1. The name of a Kubernetes core `Service` resource to provide a stable | ||
| endpoint for the application to use the `Instance` via | ||
| 2. The name of a Kubernetes `Secret` resource to hold credentials necessary to | ||
| use the service | ||
|
There was a problem hiding this comment. TODO for ConfigMap / Injection Policy, or whatever it was called? There was a problem hiding this comment. Perhaps add something like: |
||
|
|
||
| If these values are not provided then the name of the `ServiceInstance` will be | ||
| used by default. | ||
|
|
||
| The service catalog controller has a watch on the `Binding` resource. When the | ||
|
There was a problem hiding this comment. same here RE being explicit about the watch: "... has a watch on |
||
| controller receives an `ADD` event for a new Binding, it attempts to bind | ||
| against the service instance: | ||
|
|
||
| 1. The controller calls the binding endpoint on the broker | ||
| 2. The broker returns a response containing credentials and coordinates for | ||
| the binding | ||
| 3. The controller creates a Kubernetes `Service` with the given name with the | ||
|
There was a problem hiding this comment. TODO, I think there's other conditions here to keep track of the state (this is the discussion we had yesterday). If the object keeps state of the provisioning lifecycle. Like, after creating the binding, or something like that so that they don't get lost if things crash. There was a problem hiding this comment. I do agree additional design and clarity on the specifics of API conditions is needed. |
||
| endpoint that fronts the `Instance` | ||
| 4. The controller creates a `Secret` with the given name containing the | ||
| information in the `credentials` section of the broker response | ||
| 5. The controller updates the `Binding` status to reflect that the binding is | ||
| in a bound condition | ||
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
solid wording. 👍