jupyterhub
diff --git a/‎chartpress.yaml
Lines changed: 4 additions & 0 deletions b/‎chartpress.yaml
Lines changed: 4 additions & 0 deletions
diff --git a/‎images/taint-manager/.gitignore
Lines changed: 2 additions & 0 deletions b/‎images/taint-manager/.gitignore
Lines changed: 2 additions & 0 deletions
diff --git a/‎images/taint-manager/Dockerfile
Lines changed: 25 additions & 0 deletions b/‎images/taint-manager/Dockerfile
Lines changed: 25 additions & 0 deletions
diff --git a/‎images/taint-manager/README.md
Lines changed: 25 additions & 0 deletions b/‎images/taint-manager/README.md
Lines changed: 25 additions & 0 deletions
diff --git a/‎images/taint-manager/Tiltfile
Lines changed: 105 additions & 0 deletions b/‎images/taint-manager/Tiltfile
Lines changed: 105 additions & 0 deletions
diff --git a/‎images/taint-manager/deployment.yaml
Lines changed: 30 additions & 0 deletions b/‎images/taint-manager/deployment.yaml
Lines changed: 30 additions & 0 deletions
diff --git a/‎images/taint-manager/go.mod
Lines changed: 46 additions & 0 deletions b/‎images/taint-manager/go.mod
Lines changed: 46 additions & 0 deletions
@@ -51,3 +51,7 @@ charts:
       # singleuser-sample, a primitive user container to start with.
       singleuser-sample:
         valuesPath: singleuser.image
+
+      # taint-manager, an initContainer to add/remove taint for a node
+      taint-manager:
+        valuesPath: prePuller.taintmanager.image
@@ -0,0 +1,2 @@
+.idea
+taintmanager
@@ -0,0 +1,25 @@
+# syntax=docker/dockerfile:1
+
+## Build
+FROM golang:1.18-bullseye AS build
+
+WORKDIR /app
+
+COPY go.mod ./
+COPY go.sum ./
+RUN go mod download
+
+COPY *.go ./
+
+RUN go build -o /taintmanager
+
+## Deploy
+FROM gcr.io/distroless/base-debian11
+
+WORKDIR /
+
+COPY --from=build /taintmanager /taintmanager
+
+USER nonroot:nonroot
+
+CMD ["/taintmanager"]
@@ -0,0 +1,25 @@
+In Cluster Taint Manager
+==========================
+
+To add or remove taint of a node from a in-cluster pod.
+
+Compile
+---------
+
+```
+GOOS=linux GOARCH=amd64 go build -o taintmanager taintmanager.go
+```
+
+Development and Debug
+-----------------------
+
+The dev/debug environment is setup by `tilt`. To start, run `tilt up`.
+
+
+Test
+-------
+
+The `test` directory contains YAML files for deploy a pod with required permissions to run taintmanager.
+Please change `namespace` field in `clusterrolebinding.yaml` before deploying to a cluster.
+
+After deploying yaml files, run `kubectl cp` to copy compiled binary to the target pod and run the binary inside pod.
@@ -0,0 +1,105 @@
+# Welcome to Tilt!
+#   To get you started as quickly as possible, we have created a
+#   starter Tiltfile for you.
+#
+#   Uncomment, modify, and delete any commands as needed for your
+#   project's configuration.
+
+cluster_name = 'k8scluster'
+project_name = 'taintmanager'
+
+# Allow the cluster to avoid problems while having kubectl configured to talk to a remote cluster.
+allow_k8s_contexts(cluster_name)
+
+# Use custom Dockerfile for Tilt builds, which only takes locally built binary for live reloading.
+dockerfile = '''
+    FROM golang:1.19-alpine
+    RUN go install github.com/go-delve/delve/cmd/dlv@latest
+    COPY %s /usr/local/bin/%s
+    ''' % (project_name, project_name)# Build Docker image
+
+#   Tilt will automatically associate image builds with the resource(s)
+#   that reference them (e.g. via Kubernetes or Docker Compose YAML).
+#
+#   More info: https://docs.tilt.dev/api.html#api.docker_build
+#
+# docker_build('registry.example.com/my-image',
+#              context='.',
+#              # (Optional) Use a custom Dockerfile path
+#              dockerfile='./deploy/app.dockerfile',
+#              # (Optional) Filter the paths used in the build
+#              only=['./app'],
+#              # (Recommended) Updating a running container in-place
+#              # https://docs.tilt.dev/live_update_reference.html
+#              live_update=[
+#                 # Sync files from host to container
+#                 sync('./app', '/src/'),
+#                 # Execute commands inside the container when certain
+#                 # paths change
+#                 run('/src/codegen.sh', trigger=['./app/api'])
+#              ]
+# )
+
+
+# Run local commands
+#   Local commands can be helpful for one-time tasks like installing
+#   project prerequisites. They can also manage long-lived processes
+#   for non-containerized services or dependencies.
+#
+#   More info: https://docs.tilt.dev/local_resource.html
+#
+# local_resource('install-helm',
+#                cmd='which helm > /dev/null || brew install helm',
+#                # `cmd_bat`, when present, is used instead of `cmd` on Windows.
+#                cmd_bat=[
+#                    'powershell.exe',
+#                    '-Noninteractive',
+#                    '-Command',
+#                    '& {if (!(Get-Command helm -ErrorAction SilentlyContinue)) {scoop install helm}}'
+#                ]
+# )
+
+# Building binary locally.
+local_resource('%s-binary' % project_name,
+    'GOOS=linux GOARCH=amd64 go build -gcflags "all=-N -l" -o taintmanager taintmanager.go',
+    deps=[
+        './taintmanager.go',
+    ],
+)
+
+# Extensions are open-source, pre-packaged functions that extend Tilt
+#
+#   More info: https://github.com/tilt-dev/tilt-extensions
+#
+load('ext://git_resource', 'git_checkout')
+
+# Load the restart_process extension with the docker_build_with_restart func for live reloading.
+load('ext://restart_process', 'docker_build_with_restart')
+
+# Wrap a docker_build to restart the given entrypoint after a Live Update.
+docker_build(
+    'lthub/' + project_name,
+    '.',
+    dockerfile_contents=dockerfile,
+    entrypoint='/go/bin/dlv --listen=0.0.0.0:50100 --api-version=2 --headless=true --only-same-user=false --accept-multiclient --check-go-version=false exec -- /usr/local/bin/taintmanager -remove jupyterhub:NoSchedule',
+    live_update=[
+        # Copy the binary so it gets restarted.
+        sync(project_name, '/usr/local/bin/%s' % project_name),
+    ],
+)
+
+# Apply Kubernetes manifests
+#   Tilt will build & push any necessary images, re-deploying your
+#   resources as they change.
+#
+#   More info: https://docs.tilt.dev/api.html#api.k8s_yaml
+#
+# k8s_yaml(['k8s/deployment.yaml', 'k8s/service.yaml'])
+# Create the deployment from YAML file path.
+k8s_yaml('deployment.yaml')
+
+# Configure the resource.
+k8s_resource(
+        project_name,
+        port_forwards = ["50100:50100"] # Set up the K8s port-forward to be able to connect to it locally.
+)
@@ -0,0 +1,30 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: taintmanager
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: taintmanager
+  template:
+    metadata:
+      labels:
+        app: taintmanager
+    spec:
+      containers:
+        - image: lthub/taintmanager
+          imagePullPolicy: IfNotPresent
+          name: taintmanager
+          env:
+            - name: MY_POD_NAME
+              valueFrom:
+                fieldRef:
+                  fieldPath: metadata.name
+            - name: MY_NODE_NAME
+              valueFrom:
+                fieldRef:
+                  fieldPath: spec.nodeName
+          ports:
+            - containerPort: 8080
+      restartPolicy: Always
@@ -0,0 +1,46 @@
+module taintmanager
+
+go 1.18
+
+require (
+	k8s.io/api v0.25.4
+	k8s.io/apimachinery v0.25.4
+	k8s.io/client-go v0.25.4
+)
+
+require (
+	github.com/davecgh/go-spew v1.1.1 // indirect
+	github.com/emicklei/go-restful/v3 v3.10.1 // indirect
+	github.com/go-logr/logr v1.2.3 // indirect
+	github.com/go-openapi/jsonpointer v0.19.5 // indirect
+	github.com/go-openapi/jsonreference v0.20.0 // indirect
+	github.com/go-openapi/swag v0.22.3 // indirect
+	github.com/gogo/protobuf v1.3.2 // indirect
+	github.com/golang/protobuf v1.5.2 // indirect
+	github.com/google/gnostic v0.6.9 // indirect
+	github.com/google/go-cmp v0.5.9 // indirect
+	github.com/google/gofuzz v1.2.0 // indirect
+	github.com/josharian/intern v1.0.0 // indirect
+	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/mailru/easyjson v0.7.7 // indirect
+	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
+	github.com/modern-go/reflect2 v1.0.2 // indirect
+	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	golang.org/x/net v0.2.0 // indirect
+	golang.org/x/oauth2 v0.2.0 // indirect
+	golang.org/x/sys v0.2.0 // indirect
+	golang.org/x/term v0.2.0 // indirect
+	golang.org/x/text v0.4.0 // indirect
+	golang.org/x/time v0.2.0 // indirect
+	google.golang.org/appengine v1.6.7 // indirect
+	google.golang.org/protobuf v1.28.1 // indirect
+	gopkg.in/inf.v0 v0.9.1 // indirect
+	gopkg.in/yaml.v2 v2.4.0 // indirect
+	gopkg.in/yaml.v3 v3.0.1 // indirect
+	k8s.io/klog/v2 v2.80.1 // indirect
+	k8s.io/kube-openapi v0.0.0-20221123214604-86e75ddd809a // indirect
+	k8s.io/utils v0.0.0-20221128185143-99ec85e7a448 // indirect
+	sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd // indirect
+	sigs.k8s.io/structured-merge-diff/v4 v4.2.3 // indirect
+	sigs.k8s.io/yaml v1.3.0 // indirect
+)