Add support for ClusterClass and managed clusters #2684
Comments
k8s-ci-robot
added
the
kind/feature
|
/area managedclusters |
k8s-ci-robot
added
the
area/managedclusters
|
Thanks for opening this issue @AAkindele! The main change required to get ClusterClass working with managed clusters is going to be to add In addition, we also need to evaluate whether CAPZ should implement recommendations outlined in https://github.com/kubernetes-sigs/cluster-api/blob/main/docs/proposals/20220725-managed-kubernetes.md, which would involve moving some of the fields in @jackfrancis, I wonder if it would make sense to add ClusterClass support as part of #2602 as well? |
|
This issue about MachinePool, kubernetes-sigs/cluster-api#5991, is referenced in the Managed Kubernetes proposal here, https://github.com/kubernetes-sigs/cluster-api/blob/main/docs/proposals/20220725-managed-kubernetes.md#clusterclass-support-for-machinepool. Would this be a blocker to adding ClusterClass managed cluster support? @CecileRobertMichon, for the breaking change option, do you happen to have a list of the fields involved or other information on the scope of the breaking change. I am new to the codebase, but I'm willing to help gather the information if pointed in the right direction. Thanks. |
Yes that would be required since AKS only supports MachinePools (not MachineDeployments). Good catch!
That proposal / implementation for CAPZ + AKS doesn't exist yet, and no I don't know which fields would be moved off the top of my head, but the changes needed are described here from a GCP perspective: https://github.com/kubernetes-sigs/cluster-api/blob/main/docs/proposals/20220725-managed-kubernetes.md#option-3-two-kinds-with-a-managed-control-plane-and-managed-infra-cluster-with-better-separation-of-responsibilities, we would want the equivalent changes for CAPZ. @richardcase @pydctw are you able to provide more guidance on the above? |
|
I think the first step would be a detailed issue or design doc that describes: what is the current state of the CAPZ AzureManagedCluster API, what exact field changes would be needed to implement the recommendations made by CAPI , what are the pros and cons + risks. @AAkindele is that something you are interested in helping with? Perhaps with support and guidance from @jackfrancis since you are relatively new to CAPZ. |
|
👍 Yep! I'm interested in helping out. |
Would it be helpful to have a call to discuss? We have also been thinking about the same with CAPA, which is problematic as we GA's EKS support. |
|
PTAL @AAkindele @richardcase: #2739 We are going to discuss at tomorrow's CAPZ office hours (9am PT) if either of you are able to join. If not, feel free to leave your thought in the PR above async. |
|
The Kubernetes project currently lacks enough contributors to adequately respond to all issues and PRs. This bot triages issues and PRs according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale |
k8s-ci-robot
added
the
lifecycle/stale
|
/assign |
|
/lifecycle active |
k8s-ci-robot
added
lifecycle/active
|
To implement clusterclass for managed clusters, we need to determine a list of fields that are appropriate to be shared across clusters using the clusterclass template.
Please let me know what you think about this list and if there are any fields that are missing. For reference, I omitted fields that contain unique identifiers such as names and IPs that can't be shared. |
|
/milestone v1.8 |
|
Thanks @willie-yao. That list looks good to me. The only one I'm not 100% sure about is |
|
cc @dtzar @nojnhuh @jackfrancis @mtougeron for more eyes on #2684 (comment) |
|
Is it possible with ClusterClass to share part of a field? e.g. it seems like we might be able to share the vnet's Could DNSServiceIP also be shared? I think that's a private IP address (by default at least) so two clusters could have the same value for that. Besides those two things looks good to me! |
I definitely misunderstood the role of AdminGroupObjectIDs, and thought that the objectIDs were specific to a single cluster, rather than an AAD group you can apply to multiple clusters. I'll remove that from the list! |
Yes it is. I think it'll make sense to include the |
|
Update: Will also be omitting the |
|
We are currently blocked on this feature until CAPI ClusterClass adds support for MachinePools. It is being worked on! I will still be implementing the types and an E2E test and will validate it once MachinePool support is added. |
dtzar
added
the
priority/backlog
|
The Kubernetes project currently lacks enough contributors to adequately respond to all issues. This bot triages un-triaged issues according to the following rules:
You can:
Please send feedback to sig-contributor-experience at kubernetes/community. /lifecycle stale |
k8s-ci-robot
added
lifecycle/stale
|
/remove-lifecycle stale |
k8s-ci-robot
removed
the
lifecycle/stale
dtzar
added
priority/important-soon
/kind feature
Describe the solution you'd like
[A clear and concise description of what you want to happen.]
Add support for using ClusterClass when working with managed AKS clusters. Ideally, there would be a flavor for AKS that uses ClusterClass to make is easier for first time users to get started with ClusterClass and managed clusters.
Anything else you would like to add:
[Miscellaneous information that will assist in solving the issue.]
A use case for this is the ability to use lifecycle hook runtime extensions, https://cluster-api.sigs.k8s.io/tasks/experimental-features/runtime-sdk/implement-lifecycle-hooks.html. Clusters need to be created using ClusterClass in order for the hooks to work.
Environment:
kubectl version): 1.25.2/etc/os-release): 20.04.3The text was updated successfully, but these errors were encountered: