Cluster-API apiserver should be namespace-ed

* templatize Namespace in ClusterAPIAPIServerConfigTemplate * pass namespace to templating * accept gen file edit
kubernetes-sigs · Sep 20, 2018 · 81c3f14 · 81c3f14
1 parent 7db708b
commit 81c3f14
Show file tree

Hide file tree

Showing 4 changed files with 105 additions and 98 deletions.
diff --git a/clusterctl/clusterdeployer/clusterdeployer.go b/clusterctl/clusterdeployer/clusterdeployer.go
@@ -335,7 +335,7 @@ func (d *ClusterDeployer) applyClusterAPIStackWithPivoting(client, source cluste
 }
 
 func (d *ClusterDeployer) applyClusterAPIApiserver(client clusterclient.Client, namespace string) error {
-	yaml, err := deployer.GetApiServerYaml()
+	yaml, err := deployer.GetApiServerYamlForNamespace(namespace)
 	if err != nil {
 		return fmt.Errorf("unable to generate apiserver yaml: %v", err)
 	}

diff --git a/pkg/apis/cluster/zz_generated.api.register.go b/pkg/apis/cluster/zz_generated.api.register.go
@@ -118,66 +118,42 @@ func Resource(resource string) schema.GroupResource {
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
 
-type Cluster struct {
+type MachineDeployment struct {
 	metav1.TypeMeta
 	metav1.ObjectMeta
-	Spec   ClusterSpec
-	Status ClusterStatus
+	Spec   MachineDeploymentSpec
+	Status MachineDeploymentStatus
 }
 
 // +genclient
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
 
-type MachineSet struct {
+type Machine struct {
 	metav1.TypeMeta
 	metav1.ObjectMeta
-	Spec   MachineSetSpec
-	Status MachineSetStatus
-}
-
-type ClusterStatus struct {
-	APIEndpoints   []APIEndpoint
-	ErrorReason    clustercommon.ClusterStatusError
-	ErrorMessage   string
-	ProviderStatus *pkgruntime.RawExtension
-}
-
-type MachineSetStatus struct {
-	Replicas             int32
-	FullyLabeledReplicas int32
-	ReadyReplicas        int32
-	AvailableReplicas    int32
-	ObservedGeneration   int64
-	ErrorReason          *clustercommon.MachineSetStatusError
-	ErrorMessage         *string
-}
-
-type APIEndpoint struct {
-	Host string
-	Port int
-}
-
-type MachineSetSpec struct {
-	Replicas        *int32
-	MinReadySeconds int32
-	Selector        metav1.LabelSelector
-	Template        MachineTemplateSpec
-}
-
-type ClusterSpec struct {
-	ClusterNetwork ClusterNetworkingConfig
-	ProviderConfig ProviderConfig
+	Spec   MachineSpec
+	Status MachineStatus
 }
 
-type MachineTemplateSpec struct {
-	metav1.ObjectMeta
-	Spec MachineSpec
+type MachineDeploymentStatus struct {
+	ObservedGeneration  int64
+	Replicas            int32
+	UpdatedReplicas     int32
+	ReadyReplicas       int32
+	AvailableReplicas   int32
+	UnavailableReplicas int32
 }
 
-type ProviderConfig struct {
-	Value     *pkgruntime.RawExtension
-	ValueFrom *ProviderConfigSource
+type MachineStatus struct {
+	NodeRef        *corev1.ObjectReference
+	LastUpdated    metav1.Time
+	Versions       *MachineVersionInfo
+	ErrorReason    *clustercommon.MachineStatusError
+	ErrorMessage   *string
+	ProviderStatus *pkgruntime.RawExtension
+	Addresses      []corev1.NodeAddress
+	Conditions     []corev1.NodeCondition
 }
 
 type MachineSpec struct {
@@ -188,42 +164,14 @@ type MachineSpec struct {
 	ConfigSource   *corev1.NodeConfigSource
 }
 
-type ProviderConfigSource struct {
-}
-
 type MachineVersionInfo struct {
 	Kubelet      string
 	ControlPlane string
 }
 
-type ClusterNetworkingConfig struct {
-	Services      NetworkRanges
-	Pods          NetworkRanges
-	ServiceDomain string
-}
-
-// +genclient
-// +genclient
-// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
-
-type MachineDeployment struct {
-	metav1.TypeMeta
-	metav1.ObjectMeta
-	Spec   MachineDeploymentSpec
-	Status MachineDeploymentStatus
-}
-
-type NetworkRanges struct {
-	CIDRBlocks []string
-}
-
-type MachineDeploymentStatus struct {
-	ObservedGeneration  int64
-	Replicas            int32
-	UpdatedReplicas     int32
-	ReadyReplicas       int32
-	AvailableReplicas   int32
-	UnavailableReplicas int32
+type ProviderConfig struct {
+	Value     *pkgruntime.RawExtension
+	ValueFrom *ProviderConfigSource
 }
 
 type MachineDeploymentSpec struct {
@@ -237,11 +185,19 @@ type MachineDeploymentSpec struct {
 	ProgressDeadlineSeconds *int32
 }
 
+type ProviderConfigSource struct {
+}
+
 type MachineDeploymentStrategy struct {
 	Type          clustercommon.MachineDeploymentStrategyType
 	RollingUpdate *MachineRollingUpdateDeployment
 }
 
+type MachineTemplateSpec struct {
+	metav1.ObjectMeta
+	Spec MachineSpec
+}
+
 type MachineRollingUpdateDeployment struct {
 	MaxUnavailable *utilintstr.IntOrString
 	MaxSurge       *utilintstr.IntOrString
@@ -251,22 +207,66 @@ type MachineRollingUpdateDeployment struct {
 // +genclient
 // +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
 
-type Machine struct {
+type Cluster struct {
 	metav1.TypeMeta
 	metav1.ObjectMeta
-	Spec   MachineSpec
-	Status MachineStatus
+	Spec   ClusterSpec
+	Status ClusterStatus
 }
 
-type MachineStatus struct {
-	NodeRef        *corev1.ObjectReference
-	LastUpdated    metav1.Time
-	Versions       *MachineVersionInfo
-	ErrorReason    *clustercommon.MachineStatusError
-	ErrorMessage   *string
+// +genclient
+// +genclient
+// +k8s:deepcopy-gen:interfaces=k8s.io/apimachinery/pkg/runtime.Object
+
+type MachineSet struct {
+	metav1.TypeMeta
+	metav1.ObjectMeta
+	Spec   MachineSetSpec
+	Status MachineSetStatus
+}
+
+type ClusterStatus struct {
+	APIEndpoints   []APIEndpoint
+	ErrorReason    clustercommon.ClusterStatusError
+	ErrorMessage   string
 	ProviderStatus *pkgruntime.RawExtension
-	Addresses      []corev1.NodeAddress
-	Conditions     []corev1.NodeCondition
+}
+
+type MachineSetStatus struct {
+	Replicas             int32
+	FullyLabeledReplicas int32
+	ReadyReplicas        int32
+	AvailableReplicas    int32
+	ObservedGeneration   int64
+	ErrorReason          *clustercommon.MachineSetStatusError
+	ErrorMessage         *string
+}
+
+type APIEndpoint struct {
+	Host string
+	Port int
+}
+
+type MachineSetSpec struct {
+	Replicas        *int32
+	MinReadySeconds int32
+	Selector        metav1.LabelSelector
+	Template        MachineTemplateSpec
+}
+
+type ClusterSpec struct {
+	ClusterNetwork ClusterNetworkingConfig
+	ProviderConfig ProviderConfig
+}
+
+type ClusterNetworkingConfig struct {
+	Services      NetworkRanges
+	Pods          NetworkRanges
+	ServiceDomain string
+}
+
+type NetworkRanges struct {
+	CIDRBlocks []string
 }
 
 //

diff --git a/pkg/deployer/clusterapiserver.go b/pkg/deployer/clusterapiserver.go
@@ -73,8 +73,13 @@ func getApiServerCerts() (*caCertParams, error) {
 	return certParams, nil
 }
 
-// GetApiServerYaml returns the clusterapi-apiserver manifest used for deployment
+// GetApiServerYaml returns the cluster-apiserver manifest for deployment in the default namespace
 func GetApiServerYaml() (string, error) {
+	return GetApiServerYamlForNamespace(corev1.NamespaceDefault)
+}
+
+// GetApiServerYamlForNamespace returns the clusterapi-apiserver manifest used for deployment in the supplied namespace
+func GetApiServerYamlForNamespace(namespace string) (string, error) {
 	tmpl, err := template.New("config").Parse(ClusterAPIAPIServerConfigTemplate)
 	if err != nil {
 		return "", err
@@ -94,6 +99,7 @@ func GetApiServerYaml() (string, error) {
 		CABundle               string
 		TLSCrt                 string
 		TLSKey                 string
+		Namespace              string
 	}
 
 	var tmplBuf bytes.Buffer
@@ -102,6 +108,7 @@ func GetApiServerYaml() (string, error) {
 		CABundle:       certParms.caBundle,
 		TLSCrt:         certParms.tlsCrt,
 		TLSKey:         certParms.tlsKey,
+		Namespace:      namespace,
 	})
 	if err != nil {
 		return "", err

diff --git a/pkg/deployer/clusterapiservertemplate.go b/pkg/deployer/clusterapiservertemplate.go
@@ -31,15 +31,15 @@ spec:
   groupPriorityMinimum: 2000
   service:
     name: clusterapi
-    namespace: default
+    namespace: {{ .Namespace }}
   versionPriority: 10
   caBundle: {{ .CABundle }}
 ---
 apiVersion: v1
 kind: Service
 metadata:
   name: clusterapi
-  namespace: default
+  namespace: {{ .Namespace }}
   labels:
     api: clusterapi
     apiserver: "true"
@@ -56,7 +56,7 @@ apiVersion: apps/v1beta1
 kind: Deployment
 metadata:
   name: clusterapi-apiserver
-  namespace: default
+  namespace: {{ .Namespace }}
   labels:
     api: clusterapi
     apiserver: "true"
@@ -126,7 +126,7 @@ kind: ServiceAccount
 apiVersion: v1
 metadata:
   name: apiserver
-  namespace: default
+  namespace: {{ .Namespace }}
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: ClusterRoleBinding
@@ -139,7 +139,7 @@ roleRef:
 subjects:
 - kind: ServiceAccount
   name: apiserver
-  namespace: default
+  namespace: {{ .Namespace }}
 ---
 apiVersion: rbac.authorization.k8s.io/v1
 kind: RoleBinding
@@ -153,13 +153,13 @@ roleRef:
 subjects:
 - kind: ServiceAccount
   name: apiserver
-  namespace: default
+  namespace: {{ .Namespace }}
 ---
 apiVersion: apps/v1beta1
 kind: StatefulSet
 metadata:
   name: etcd-clusterapi
-  namespace: default
+  namespace: {{ .Namespace }}
 spec:
   serviceName: "etcd"
   replicas: 1
@@ -250,7 +250,7 @@ kind: Secret
 type: kubernetes.io/tls
 metadata:
   name: cluster-apiserver-certs
-  namespace: default
+  namespace: {{ .Namespace }}
   labels:
     api: clusterapi
     apiserver: "true"