feat: making control plane endpoint fields optional #106
Conversation
prometherion
requested review from
65278,
avorima,
lubedacht,
pborn-ionos,
mcbenjemaa and
wikkyk
as code owners
|
|
Before providing more test coverage, may I ask for a simple review of the proposed changes, from a workflow perspective? It's not clear to me if the maintainers are open to skipping the validation of the |
|
Hi @prometherion, thank you for your contribution. Skipping validation for optional fields is fine, but please make sure your changes don't alter the validation behavior of other fields. Users should see errors as early as possible. Does Kamaji set the port and address separately? I'm asking, because my understanding was that the endpoint is always written in full or not at all. This would mean that you could merge the two conditions into one |
Kamaji is doing in a single transaction, yes, I can uniform those checks. |
|
Anything needed here? |
|
Thanks for the heads up @mcbenjemaa, I'm planning to work on this to make the PR ready for review, by the end of the week or the following one. Pretty busy days, sorry. |
|
take your time mate |
|
@prometherion |
|
Finally, I'm revamping it, feeling sorry for being late @mcbenjemaa. Let me know if we're ready to get this tested. |
|
can you provide a use-case to test it with Kamaji? |
Signed-off-by: Dario Tranchitella <dario@tranchitella.eu>
|
There was a problem hiding this comment.
I think this is close to done. The core is there but I'm not sold on the details.. This could use some test cases which would've uncovered the inconsistency I pointed out inline.
However, I don't think I like the 'magic' behaviour of empty host and(?) port meaning externally managed. Someone could omit host/port by accident without actually intending to use Kamaji or so. This needs very clear documentation. (Technically, this doesn't actually make the fields optional (-:)
Personally, I would prefer an optional bool field in ProxmoxClusterSpec like ControlPlaneEndpointExternallyManaged and to require that either ControlPlaneEndpointExternallyManaged or ControlPlaneEndpoint is set. This would make the intent clear.
That said, I would be fine with just clearly, explicitly documenting that setting host="" and port=0 means we'll wait for an externally managed endpoint. The check in proxmoxcluster_controller.go would need to be exactly the same as in the validation func i.e. host=="" && port==0.
| infrav1 "github.com/ionos-cloud/cluster-api-provider-proxmox/api/v1alpha1" | ||
| "github.com/pkg/errors" | ||
| "go4.org/netipx" | ||
| apierrors "k8s.io/apimachinery/pkg/api/errors" | ||
| "k8s.io/apimachinery/pkg/runtime" | ||
| "k8s.io/apimachinery/pkg/util/validation/field" | ||
| ctrl "sigs.k8s.io/controller-runtime" | ||
| "sigs.k8s.io/controller-runtime/pkg/webhook/admission" | ||
|
|
||
| infrav1 "github.com/ionos-cloud/cluster-api-provider-proxmox/api/v1alpha1" |
There was a problem hiding this comment.
I think this is a spurious change.
There was a problem hiding this comment.
It's my IDE sorting go imports, I'll amend it.
| // Skipping the validation of the Control Plane endpoint in case of an empty value: | ||
| // this is the case of externally managed Control Plane which eventually provides the LB. | ||
| if ep.Host == "" && ep.Port == 0 { | ||
| return nil | ||
| } |
There was a problem hiding this comment.
What about the case where someone accidentally doesn't provide the control plane endpoint?
| @@ -94,6 +95,11 @@ func (*ProxmoxCluster) ValidateUpdate(_ context.Context, _ runtime.Object, newOb | |||
|
|
|||
| func validateControlPlaneEndpoint(cluster *infrav1.ProxmoxCluster) error { | |||
| ep := cluster.Spec.ControlPlaneEndpoint | |||
| // Skipping the validation of the Control Plane endpoint in case of an empty value: | |||
| // this is the case of externally managed Control Plane which eventually provides the LB. | |||
| if ep.Host == "" && ep.Port == 0 { | |||
There was a problem hiding this comment.
This could use some test cases.
There was a problem hiding this comment.
Also, default Port is 6443.
| @@ -168,6 +168,22 @@ func (r *ProxmoxClusterReconciler) reconcileNormal(ctx context.Context, clusterS | |||
| // If the ProxmoxCluster doesn't have our finalizer, add it. | |||
| ctrlutil.AddFinalizer(clusterScope.ProxmoxCluster, infrav1alpha1.ClusterFinalizer) | |||
|
|
|||
| cpe := clusterScope.ControlPlaneEndpoint() | |||
| switch { | |||
| case cpe.Host == "": | |||
There was a problem hiding this comment.
This only checks host but not port, yet the validation func checks both.
Documentation is a great place, of course, wondering if we could implement this kind of check in a different way. The Cluster API has a contract for an externally managed control plane thanks to the status key When a user is open to using Kamaji, or any other Control Plane provider which is satisfying that status key contract, we could skip the validation requiring a filled |
|
Two points, then:
|
Issue #95
Description of changes:
Skipping webhook validation for the
ProxmoxClusterControl Plane endpoint field.The
ProxmoxClustercontroller will wait for a valid IP before proceeding to mark the infrastructure ready.Testing performed:
N.A.