-
Notifications
You must be signed in to change notification settings - Fork 139
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Ability to configure available storage classes #1270
Comments
For listing available storage classes, you might need more than Clusterrole Admin. There is a ClusterRole basic-user that can list users and storageclasses. Especially for showing which users already have access to the project in project sharing, that might be good as well. https://docs.openshift.com/container-platform/4.10/authentication/using-rbac.html If you go with the approach "Admins must be able to configure which storage classes should be available for users", then you do not need the storageclass list rights, that'd be easier. Nice idea with the ability to pick from multiple available storage classes, if defined. Makes the solution more flexible in comparison to the current jupyter tile approach with one storageclass globally. I can't access the GUI sketches, but that is ok. @andrewballantyne When you talk about default storage class, do you mean default storage class set at cluster-level or default storage class set in ODHDashboardConfig? There are clusters that have no default storage class, but you can still configure a default storage class for ODH Notebook PVC purposes via ODHDashboardConfig. Even if there is a default storage class set in ODHDashboardConfig, you should still show the list of available storageclasses, with the focus in e.g. a dropdown on the default one. Flow could be:
|
@shalberd as I understand it, all users can list storage classes (I tested this on my cluster with a basic user -- it was a while ago though). After listing, there is nothing else happening around storage class resources. We are not allowing creation, deletion or editing of the resource itself. We'll need to manage the metadata way from the storage class as this is a cluster resource that the admin probably shouldn't be marking up for our application use-case (a cluster could have multiple use-cases ongoing). TBD if we use a CRD or some configmap setting / OdhDashboardConfig setting -- but we will need to store in an "enabled state", description and a display name for the end-user (data scientists). That'll be figured out part of this effort once @lucferbux starts flushing it out over the next week or two. |
Yes The clusterrole basic-user openshifthostname/k8s/cluster/clusterroles/basic-user can list storageclasses, which is nice. Any authenticated / logged-in user is assigned clusterole basic-user, so it's cool.
Correct, our cluster has like 20 or more different storageclasses for all kinds of purposes. They cannot be tagged or annotated in any way, but people in an enterprise can pick the right one for their purposes themselves. I picked one with file storage instead of block storage for notebook storage purposes, but that is dependent on the environment (AWS, Azure, on-prem with e.g. NetApp) entirely. The most i would recommend on the GUI is having a hint as to what kind of storage type (block vs file) you would recommend from all the storageclasses listed, users can pick the right one themselves by name usually. |
Another good note about something we should support with Storage Classes when we do this feature. |
Migrated to jira: https://issues.redhat.com/browse/RHOAIENG-332 |
Moving to closed - future work will be tracked in Jira |
Support multiple storage classes for PVCs (Cluster Storages) in the Projects view.
Mocks: https://www.sketch.com/s/f6fa37fc-0c25-49e3-8b24-ecaf981433a8/a/g1rOAvJ
Using feature branch
f/storage-class
Dependencies
Foundational Work
P0: Admins must be able to configure which storage classes should be available for users
P0: Users should be able to select from available storage classes based on admin config when creating workbenches or NB serving sessions
The text was updated successfully, but these errors were encountered: