Recap API Machinery Deep Dive

71d7f6cdf5b1934a1b69f0624f5a7523?s=47 Aya (Igarashi) Ozawa
May 17, 2018
Technology
4
1.6k

Recap API Machinery Deep Dive

Kubernetes Meetup Tokyo #11 - KubeCon EU Recap
https://k8sjp.connpass.com/event/85336/

Google Slide ver. https://docs.google.com/presentation/d/1-4XHr7Q_uEK6vFrNJmByqJzkdiyPmTAGk2T14a_5I90/edit?usp=sharing

71d7f6cdf5b1934a1b69f0624f5a7523?s=128

Aya (Igarashi) Ozawa

May 17, 2018
Tweet

More Decks by Aya (Igarashi) Ozawa

See All by Aya (Igarashi) Ozawa
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
16
6k
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
3
3.9k
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
5
2.1k
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
5
580
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
1
250
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
31
8.3k
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
2
2.1k
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
3
610
71d7f6cdf5b1934a1b69f0624f5a7523?s=48 ladicle
1
570

Other Decks in Technology

See All in Technology
6eecc52120fba9d87d982684211182ec?s=48 mochico
0
190
9e7a653ed313b3da4b263a772bfc5026?s=48 clustervr
0
460
46fdd2ebc85d68659b83d5eb5c6a49aa?s=48 keisukeyamashita
3
380
Ca7e4f1680e175e6462a039923e71fc5?s=48 kyokonishito
0
180
53850955f15249a1a9dc49df6113e400?s=48 line_developers
0
150
2cf373725ded741824c50fd571eda6e1?s=48 udzura
0
1.1k
7843111608e155f89877c4faca12697e?s=48 shuntafurukawa
1
320
A5fed8c15d016c2a42d7d9f830326045?s=48 takuros
1
250
F80a051bbccca2f8581c42f58223f90f?s=48 futayamaji
0
140
B1cc148711c6a37a5c922b6e72a4ad52?s=48 upura
1
980
229b1596ce57cd0935a2bacd410d87a0?s=48 aaaddress1
2
470
966e29b84ae7dbde170f66b0bc75b7a6?s=48 ishiayaya
1
260

Featured

See All Featured
A9a491b0fcbe0fbce3d64063a37add99?s=48 rmw
7
560
Af6a12710770ad9a7cfd08c97efd40d3?s=48 pedronauck
648
110k
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
119
7.7k
7559f6cff1f5efc2d210965febd4d71c?s=48 bermonpainter
340
25k
462dad0dd24c568a32dcdb0ae895ae1b?s=48 rasmusluckow
315
18k
C1daf20e5c49ff910745198ef9869ac2?s=48 hatefulcrawdad
257
16k
433acaea1012b25d97ae66da9b998dad?s=48 malarkey
189
8.2k
24fc194843a71f10949be18d5a692682?s=48 gr2m
82
11k
6804f1775cb4babfcc3851298566fbce?s=48 tanoku
256
24k
Be9caeb9d4ef9944d151af909063ed6e?s=48 samlambert
236
9.7k
Fe6b81005d1553accd6b2a28f6a2bef1?s=48 phodgson
83
3.8k
F29327647a9cff5c69618bae420792ea?s=48 tenderlove
49
3.2k

Transcript

  1. Recap SIG API Machinery Deep Dive Kubernetes meetup Tokyo #11

    Aya Igarashi @ladicle

  2. @Ladicle Aya Igarashi Software Engineer - Z Lab Corp. Who

    am I?

  3. Custom Resources Demo https://github.com/Ladicle/crd-sample

  4. Outline of the Talk ★ DeepDive Stefan Schimanski Senior Software

    Engineer at Red Hat ◦ api-serverがapiextensions-apierverに委譲する流れ ◦ CRDを生成する流れと, raceするbugの紹介 ◦ spec+ statusパターンの推奨 (for subresource) ◦ structuredなclientコード生成のすゝめ ◦ OpenAPI v3 schemaによるvalidationの紹介 ◦ 上記のvalidationを利用したpruning (schema外のfieldがあった場合は除去 ) ◦ Subresourceの /scaleと /status の紹介 ◦ Versioning, Pruning/Defaulting, Graceful Deletion, Server Side Printing Columns, Subresources ★ Custom Resources 1.11+ (1.12+) https://www.youtube.com/watch?v=XsFH7OEIIvI

  5. Versioning & Validation DEEP DIVE

  6. CRD versioning (nop conversion) v1.11 ◦ Design: https://github.com/kubernetes/community/pull/2054/files ◦ Pull-Request:

    https://github.com/kubernetes/kubernetes/pull/63830 #ONGOING type CustomResourceDefinitionSpec struct { ... // 将来的にDeprecatedになる. Version string // 対応するVersionリスト. // StoredVersionsリストに含まれているものは削除できない. Versions []CustomResourceDefinitionVersion } type CustomResourceDefinitionVersion struct { // v2beta1などのバージョン名. Name string // REST APIから指定できるようにするかのフラグ. Served Boolean // Storage(etcd)に保存する時のVersionであるかのフラグ. // Versionリストの中で1つのみTrueにする. Storage Boolean } type CustomResourceDefinitionStatus struct { ... // Storageに保存されているCRのVersionリスト. // migrationが完了したらリストから除く. StoredVersions []string }

  7. CRD versioning v1.12+ ◦ Design: https://github.com/kubernetes/community/pull/2026/files #ONGOING type CustomResourceDefinitionVersion struct

    { ... Conversion CustomResourceConversion } // 変更するpathごとにconversion resourceを作成する type CustomResourceConversion struct { Declarative map[string]CustomResourceDeclarativeConversion } type CustomResourceDeclarativeConversion struct { Rename RenameConversion // 右のWebhook用の設定 External CustomResourceConversionWebhook } // JsonPath(例: .spec.hoge)形式で指定 type RenameConversion struct { From JsonPath To JsonPath } type CustomResourceExternalConversion struct { // 変換先のVersion名リスト. To []string Webhook ConversionWebhook } type ConversionWebhook struct { // clientとどう通信するかを定義するもの. // WebhookのService等を指定する ClientConfig WebhookClientConfig } // 各VersionのValidationにも対応するようだが // これの詳細はまだ未定

  8. Validation OpenAPI v3 schema & Admission Controllers

  9. Validation using OpenAPI v3 schema apiVersion: apiextensions.k8s.io/v1beta1 kind: CustomResourceDefinition metadata:

    name: meetups.kube.tokyo ... validation: openAPIV3Schema: properties: spec: properties: eventName: type: string pattern: '^KubernetesMeetup#\d+$' theme: type: string enum: - normal - recap speakerNames: type: array items: type: string capacity: type: integer default: 10 minimum: 10 apiVersion: kube.tokyo/v1 kind: Meetup metadata: name: meetup11 namespace: default spec: eventName: Kubernetes Meetup Tokyo #11 theme: recap speakerNames: - lanMLewis - amsy810 - ladicle - nasa9085 - jyoshise - rafiror - dtan4 capacity: 200

  10. Validation using Admission Controllers --enable-admission-plugins=DefaultStorageClass,DefaultTolerationSeconds,Mutating AdmissionWebhook,ValidatingAdmissionWebhook,ResourceQuota • ValidatingAdmissionWebhook ◦ リソースをValidationするためのWebhook

    (変更はできない) • MutatingAdmissionWebhook ◦ リソースのチェックや変更をするための Webhook • Initializers ◦ リソースを初期化するための metadata.initializers.pendingリストを付与する ◦ 全ての初期化が終わるまでリソースが作成されない etc...

  11. What should I use to validate resources?

  12. WE ARE HIRING!

  13. THANK YOU For your time & we’ll see you soon

    ladicle