Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

node pools: replicate from authoritative region #17456

Merged
merged 2 commits into from
Jun 12, 2023
Merged

node pools: replicate from authoritative region #17456

merged 2 commits into from
Jun 12, 2023

Conversation

tgross
Copy link
Member

@tgross tgross commented Jun 7, 2023

Upserts and deletes of node pools are forwarded to the authoritative region, just like we do for namespaces, quotas, ACL policies, etc. Replicate node pools from the authoritative region.

@tgross tgross mentioned this pull request Jun 7, 2023
Merged
@tgross tgross marked this pull request as ready for review June 7, 2023 21:07
@tgross tgross requested a review from lgfa29 June 7, 2023 21:07
@tgross tgross added type/enhancement theme/node-pools Issues related to node pools labels Jun 7, 2023
@tgross tgross added this to the 1.6.0 milestone Jun 7, 2023
@tgross tgross requested a review from gulducat June 9, 2023 20:13
lgfa29
lgfa29 approved these changes Jun 9, 2023
View reviewed changes
Copy link
Contributor

@lgfa29 lgfa29 left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM! Some minor comments that are more questions 😅

nomad/leader.go
go s.replicateNamespaces(stopCh)
go s.replicateNodePools(stopCh)
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

While definitively not ideal in a real cluster do namespaces and node pools require ACLs to be enabled? I was bitten by this a few time while testing things and not seeing replication happening 😅

Copy link
Member Author

@tgross tgross Jun 12, 2023
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Technically no, because the replication token will just be the zero value empty string. But if you check out the federation tutorial and ACL tutorial it really looks like we consider federation and replication as two different problems. You can have federation without replication and that just forwards requests around. But the purpose of replication seems entirely focused on ACLs. Namespaces are arguably ACL objects, and in the ENT case so are Node Pools. So I think we should probably keep the behavior we have here with namespaces.

nomad/leader.go Show resolved Hide resolved
@tgross
node pools: replicate from authoritative region
0877e79 
Upserts and deletes of node pools are forwarded to the authoritative region,
just like we do for namespaces, quotas, ACL policies, etc. Replicate node pools
from the authoritative region.
@tgross
address comments from code review
64c5ae5
@tgross tgross merged commit 5bb6e57 into main Jun 12, 2023
@tgross tgross deleted the f-node-pool-federation branch June 12, 2023 17:24
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@lgfa29 lgfa29 lgfa29 approved these changes

@gulducat gulducat Awaiting requested review from gulducat

Assignees
No one assigned
Labels
theme/node-pools Issues related to node pools type/enhancement
Projects
None yet
Milestone
1.6.0
Development

Successfully merging this pull request may close these issues.
2 participants
@tgross @lgfa29