Add functionality to gitops beta run command

[opudrovs]

Closes #2355

[opudrovs]

It's a WIP, will clean up error handling, vars, and comments later. This is a prototype code. It works in general (checks, connection to cluster and if Flux is installed and if not it installs Flux), but I'm not sure if it works correctly.

Based on step-by-step @ozamosi 's suggestions:
#2355 (comment)

[opudrovs]

Does using RestConfig work equivalently/errs the same way to the outOfClusterConfig (@ozamosi suggested) in our case?

Or do I need to copy-paste/expose code from the outOfClusterConfig?

How is InClusterConfig different from outOfClusterConfig, why int he RestConfig we first try to create the first and if it fails the second one?

[ozamosi]

They're different in that InClusterConfig connects to the kube API as if it's running inside the cluster, and outOfClusterConfig will connect as if it's running outside the cluster. This is a legacy of how all code used to work whether you called it from the web API or the CLI.

We expect this to run outside the cluster, so as far as I know InClusterConfig won't do anything, but it might end up returning a different error message in the end? But since the error you return is ErrGetKubeClient, it doesn't matter.

This should work fine 👍

[opudrovs]

I am creating a client to list objects simply, like that, and then reuse it (by passing it to installFlux, and thus apply and newManager).

Do I need to create it in a more complex way with more settings, KubeConfig, like in the Flux code?

[ozamosi]

I frankly don't know - I would use the same client, unless we discover a reason not to.

[opudrovs]

The context I have from creating the RestConfig is a string. So, I need another context here. Is it OK to use context.Background() for getting the list of objects and passing it to installFlux? Finally, it will be passed to ApplyAll.

[chanwit]

You can use context.Background() because we would not need to set its deadline or cancel it.

[ozamosi]

The context I have from creating the RestConfig is a string

Yeah, that context seems to be a clusterName rather than a context in the context module sense - I would not call that string "context", because I find it confusing.

Is it OK to use context.Background() for getting the list of objects and passing it to installFlux?

Yes. Contexts are about describing a "work unit" across threads - so you have a way to connect e.g. which web request caused a server to run which database queries, if that makes sense.

The "work unit" here is the command itself, so the command's context is the right one to attach to any other work the command generates.

[opudrovs]

Is it OK to use coretypes here in a CLI command?

[ozamosi]

Yes

[opudrovs]

Am I making the dir and writing the file with the correct permission?

And should I use the gitops command directory or some working directory. If the latter, how should I get it. (I think I heard smth. mentioned about the working directory during the last standup but it was about another issue.)

[opudrovs]

Besides, do we still need to write the file if we are not actually reading the file for applying it to the cluster and are just passing the manifest's content (which is in memory in a var) to apply.

Or do we need to read the manifest contents from file/will the file be read later?

[ozamosi]

Am I making the dir and writing the file with the correct permission?

Let's use 0775 and 0664 to remove world write permissions.

And should I use the gitops command directory or some working directory

Eventually, we need logic to find the root git directory and use that as a default, then add a command line option to override that, and then use that directory. But that's out of scope for this PR.

I think using os.Getwd here is enough to demonstrate it works.

do we still need to write the file if we are not actually reading the file

Yes - when you've finished running this command, you should be able to just run git commit -a; git push and have that give you the same git repository that flux bootstrap would have.

[chanwit]

hmm. I think this behavour + the locaton of Flux's manifest need refinement.

[opudrovs]

What should I do with global flags (if any of those supported by the gitops command are provided) in the run command here? I've just copy-pasted and commented out code from the Flux instal command.

Which of this or original gitops flags do I need to add here?

[ozamosi]

Oh god, do I have to make decisions 😱

So, I looked at what flags flux install --help and gitops --help prints out and tried to look at what's important Note: this is written without looking at the code, so if I say something that is not fairly straight-forward copy-paste, then the correct answer is "that's very interesting Robin, I suggest you make a ticket if you feel strongly about it, because that's not part of this ticket's description".

--version makes sense - especially as that'd let us set and print a default in the help text, so it's possible to figure out what we'd do. We should have a default set at compiletime in pkg/version/version.go already. Maybe it should be called --flux-version instead here, though.

I think maybe --components-extra and --components would be useful as well, again as a bit of documentation in the help text what the thing will do.

There's already a global --namespace in gitops, so we should use that here - especially since I've come to grow opinions about namespaces and gitops recently 😊

We need a timeout set to something or install doesn't work, and what I hard-coded isn't a good timeout. Let's just add a --timeout flag?

--insecure-skip-tls-verify is a global arg in both gitops and flux, is it easy to hook up?

The rest of the global gitops flags are irrelevant.

There's loads of global flux flags which I'm sure are important to some people (personally, I really want --context), but they all require changes to the kube config/client bits, so I think they're out of scope for now.

[opudrovs]

I am not sure should configure kubeconfigArgs and kubeclientOptions here. This is code I copy-pasted from Flux and simplified.

What exactly should I configure here for our purpose?

[opudrovs]

Will remove everything related to root flags, copy-pasted and I think here this code is not needed, we already used called MakeDefaultOptions when generating the manifests.

[opudrovs]

Will be removed.

[opudrovs]

See above the question about the kube client. Can I re-use the passed kube client here or should I create a new config and client here, like in the Flux code in func newManager?

[opudrovs]

Copy-pasted, slightly simplified. Can anything be simplified here or do we need everything to apply the generated manifest to the cluster?

[opudrovs]

Can be removed, probably. manifestPath here is used only for this error message. The generated manifest should be guaranteed to be valid?

[opudrovs]

@ozamosi great points, thank you! 🎉 Will rework the code based on yours and @chanwit 's suggestions.

[chanwit]

I think we have to discuss the semantics of this flux location.

For example,
When running gitops beta run ./deploy/overlay/dev, the filePath variable would be ./deploy/overlay/dev.

Then the InstallFlux function would install Flux manifests to ./deploy/overlay/dev/flux-system, which would not be the correct location.

Per Flux convention, an on-disk location of Flux installation would be something like
./cluster/dev/flux-system - which is normally passed to the flux bootstrap command.

So I think we need to refine this behavior.

[opudrovs]

@ozamosi @chanwit I've reworked code based on your suggestions.

• Reworked the error/warning messages to use the logger when appropriate (sometimes a regular formatted error is returned to avoid duplicate error messages). Please let me know if message wording should be corrected or if I missed some places where it is better to use a logger alongside with returning an error.

• for kube config options and kube client options I copied code from Flux and simplified it. Maybe we don't need all the options.

• For now, I've removed everything related to global flags: I think it is better to add that functionality in a separate issue/PR in order not to hold @chanwit 's background part of the sync component PR and to check the basic functionality first. If you think that support for global flags should be added in this PR, please let me know.

• The same about tests for the run command: I haven't added them for now, haven't found a relevant sample test which can reworked fast, so I would need some time to think on how to add the tests because the command is rather complex.

• Also moved all code related to getting the Flux version for the version endpoint within the correspondinggetFluxVersion function of the version endpoint for consistency with the run cmd. Fixed an error message in the getFluxVersion function in the version endpoint, which was copy/pasted from getting Kubernetes version (get server version was not relevant to getting flux version).

Testing:

• Tested the code against kind and k3d (with @ozamosi 's help 🙂 ) clusters. How should I test it against a remote cluster (which is in the ticket acceptance criteria)?

• To me it looks that the code installs all Flux components required in the acceptance criteria, but if any components are missing please let me know.

[ozamosi]

Your description of what is missing and will be done later matches what I'd want. It's in beta, so it's not the end of the world if the code in main isn't perfect yet.

The code here looks like it'll make a good starting point for the rest of the work, so

[opudrovs]

@ozamosi great, thanks!

[chanwit]

This variable would be manifests to be consistent with your error logs

[opudrovs]

Fixed, good catch!

[chanwit]

LGTM thank you @opudrovs 🥇

[opudrovs]

@chanwit thank you! 🎉