A CLI and kubernetes CLI plugin that allows you to interact with OCM/ACM/MCE to provision and managed your Hybrid Cloud presence from the command-line.
Go 1.16 is required in order to build or contribute on this project as it leverage the go:embed tip.
You can download the binary from https://github.com/stolostron/cm-cli/releases
- Install krew https://krew.sigs.k8s.io/docs/user-guide/setup/install/
- Plugins can be installed with the
kubectl krew install cm
Requires go 1.17. The binary will be installed in GOPATH/bin
git clone https://github.com/stolostron/cm-cli.git
cd cm-cli
make build
cmRequires go 1.17. The binary will be installed in GOPATH/bin
This will create a binary oc-cm and kubectl-cm in the $GOPATH/go/bin allowing you to call oc cm or kubectl cm
git clone https://github.com/stolostron/cm-cli.git
cd cm-cli
make plugin
kubectl cm
oc cmThis CLI (and plugin) is still in development, but aims to expose OCM/ACM's functional through a useful and lightweight CLI and kubectl/oc CLI plugin. Some features may not be present, fully implemented, and it might be buggy!
In order to work with clusters, you need to set up cm with your hub cluster(s) - cm refers to these hubs as "clusterpoolhost"(s) or "cph"(s) for short!
To set up your first ClusterPoolHost:
oc loginto your ClusterPoolHost running Red Hat Advanced Cluster Management, Multicluster Engine for Kubernetes, or Open Cluster Management. **Your user must be able to create ServiceAccounts in the target namespace, given thatcreate cphcreates a ServiceAccount. Also ensure that ServiceAccounts in that namespace have the relevant access such as create/delete ClusterClaims, ClusterPools, etc. We'll include a list of commmon RBAC configurations in the RBAC Section below.- Run
cm create cph --api-server=<api-url> --console=<console-url> --group=<rbac-group> --namespace=<namespace-containing-clusters> <name-of-cph>and runcm create cph --helpto view all options - Run
cm get cphto verify that your active clusterpoolhost is correct,cm set cph <clusterpoolhost-name>to set the current clusterpoolhost,cm use cph <clusterpoolhost-name>to switch to that clusterpoolhost's context, andcm delete cph <clusterpoolhost-name>to delete a ClusterPoolHost.
ClusterPools maintain a configurable and scalable number of OpenShift clusters in a hibernating state. cm exposes the capability to create, view, consume clusters from, and destroy ClusterPools.
To create a ClusterPool, see cm create <clusterpool/cp> --help for all options. You can view your created ClusterPools with cm get <clusterpool/cp>.
Once you have a ClusterPool, you can claim clusters from the pool for use using cm create <clusterclaim/cc> <clusterpool-name> <clusterclaim-name>, see cm create <clusterclaim/cc> --help for more options. You can also view ClusterClaims and details with cm get <clusterclaim/cc> and delete ClusterClaims with cm delete <clusterclaim/cc>.
Finally, you can delete a ClusterPool with cm delete <clusterpool/cp>.
To create individual clusters with specific configurations, you can use cm create cluster, see cm create cluster --help for more options, including a values.yaml template.
cm also allows you to easily change cluster contexts without losing visibility to your Hub/ClusterPoolHost.
To view the available clusters, use cm get <clusterclaim/clusterpoolhost>.
Once you've identified a cluster, you can use cm use <clusterclaim/clusterpoolhost> <cluster-name> to switch to that cluster's context. You can use these commands again to list and change contexts without losing your Hub/ClusterPoolHost context.
cm console <clusterclaim/clusterpoolhost> allows you to quickly open the console of a claimed cluster or ClusterPoolHost.
cm also allows you to hibernate clusters via cm hibernate <clusterclaim/cc> <cluster-name> and wake clusters using cm run <clusterclaim/cc> <cluster-name>.
If you wish to bring a cluster under the management of a hub cluster, you can use cm attach <cluster/clusterclaim>, see cm attach --help for all options.
cm creates a ServiceAccount, named after your local system's username, on each ClusterPoolHost that you create, which provides a consistent connection to the ClusterPoolHost's API. For cm to function properly, you need to give your ServiceAccount certain permissions. We'll leave the exact permissions you wish to grant up to you, but below are the standard API objects and operations you'll interact with via cm, although this list is not comprehensive.
- apiGroups:
- hive.openshift.io
resources:
- clusterdeployments
- clusterprovisions
- clusterdeprovisions
- clusterpools
- clusterimagesets
- clusterclaims
- apiGroups:
- cluster.open-cluster-management.io
resources:
- managedclusters
- managedclustersets
- managedclustersets/join
- managedclustersets/bind
- apiGroups:
- clusterview.open-cluster-management.io
resources:
- managedclusters
- managedclusetrsets
- apiGroups:
- register.open-cluster-management.io
resources:
- managedclusters/accept
See our Contributing Document for more information.
- Message: "this command '%s %s' is only available on %s or %s"
If RHACM or MCE is installed on the cluster, it is probably because either it doesn't have the correct version, the RBAC in the environment doesn't allow the user to access the server configuration or the server is not installed in the standard namespace.
You can specify the namespace by adding a
--server-namespaceto the command or skip the test--skip-server-check. You can also add an attribute in the cph~/kube/.known-cphsto specify the namespace avoiding to have to add the--server-namespacein each single command.
clusters:
my_cph_name:
active: true
apiServer: my_apiserver_url
console: my_console_url
group: my_group
name: my_cph_name
namespace: my_cph_namespace
serverNamespace: my_install_namespace_open_cluster_management