Dynamic ZoneDelegations

Signed-off-by: Dinar Valeev <k0da@opensuse.org>

Author: k0da

Makefile

@@ -473,6 +473,7 @@ mocks:
 	mockgen -package=mocks -destination=controllers/mocks/refresolver_mock.go -source=controllers/refresolver/refresolver.go GslbRefResolver
 	mockgen -package=mocks -destination=controllers/mocks/provider_mock.go -source=controllers/providers/dns/dns.go Provider
 	mockgen -package=mocks -destination=controllers/mocks/geotags_mock.go -source=controllers/geotags/geotags.go GeoTags
+	mockgen -package=mocks -destination=controllers/mocks/zone_service_mock.go -source=controllers/zones/zone_service.go ZoneService
 	$(call golic)
 
 # remove clusters and redeploy

api/v1beta1/dynamiczone_types.go

@@ -0,0 +1,75 @@
+package v1beta1
+
+/*
+Copyright 2021-2025 The k8gb Contributors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+
+Generated by GoLic, for more details see: https://github.com/AbsaOSS/golic
+*/
+
+import (
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// ZoneDelegationSpec defines the desired state of ZoneDelegation
+
+type ZoneDelegationSpec struct {
+	// LoadBalancedZone is the DNS zone managed by this ZoneDelegation
+	LoadBalancedZone string `json:"loadBalancedZone"`
+
+	// ParentZone is the zone under which this load-balanced zone is delegated
+	ParentZone string `json:"parentZone"`
+
+	// DNSZoneNegTTL specifies the negative TTL for the DNS zone (in seconds)
+	DNSZoneNegTTL int `json:"dnsZoneNegTTL"`
+}
+
+// ZoneDelegationStatus defines the observed state of ZoneDelegation
+type ZoneDelegationStatus struct {
+	// DNSServers lists the authoritative DNS servers for the delegated zone
+	DNSServers []DNSServer `json:"dnsServers,omitempty"`
+}
+
+// DNSServer represents a single DNS server for a zone delegation
+type DNSServer struct {
+	// Name of the DNS server (FQDN)
+	Name string `json:"name"`
+
+	// Address of the DNS server (IPv4 or IPv6)
+	Address string `json:"address"`
+}
+
+// ZoneDelegation is the Schema for the zonedelegations API
+// +kubebuilder:object:root=true
+// +kubebuilder:subresource:status
+// +kubebuilder:resource:scope=Cluster,shortName=zd
+// +kubebuilder:printcolumn:name="LoadBalancedZone",type=string,JSONPath=`.spec.loadBalancedZone`
+// +kubebuilder:printcolumn:name="ParentZone",type=string,JSONPath=`.spec.parentZone`
+// +kubebuilder:printcolumn:name="NegTTL",type=integer,JSONPath=`.spec.dnsZoneNegTTL`
+type ZoneDelegation struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   ZoneDelegationSpec   `json:"spec,omitempty"`
+	Status ZoneDelegationStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+
+// ZoneDelegationList contains a list of ZoneDelegation
+type ZoneDelegationList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []ZoneDelegation `json:"items"`
+}

api/v1beta1/gslb_types.go

@@ -138,5 +138,5 @@ func (h HealthStatus) String() string {
 }
 
 func init() {
-	SchemeBuilder.Register(&Gslb{}, &GslbList{})
+	SchemeBuilder.Register(&Gslb{}, &GslbList{}, &ZoneDelegation{}, &ZoneDelegationList{})
 }

api/v1beta1/zz_generated.deepcopy.go

@@ -3,7 +3,7 @@ apiVersion: apiextensions.k8s.io/v1
 kind: CustomResourceDefinition
 metadata:
   annotations:
-    controller-gen.kubebuilder.io/version: v0.18.0
+    controller-gen.kubebuilder.io/version: v0.19.0
   name: gslbs.k8gb.absa.oss
 spec:
   group: k8gb.absa.oss
@@ -492,3 +492,98 @@ spec:
     storage: true
     subresources:
       status: {}
+---
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  annotations:
+    controller-gen.kubebuilder.io/version: v0.19.0
+  name: zonedelegations.k8gb.absa.oss
+spec:
+  group: k8gb.absa.oss
+  names:
+    kind: ZoneDelegation
+    listKind: ZoneDelegationList
+    plural: zonedelegations
+    shortNames:
+    - zd
+    singular: zonedelegation
+  scope: Cluster
+  versions:
+  - additionalPrinterColumns:
+    - jsonPath: .spec.loadBalancedZone
+      name: LoadBalancedZone
+      type: string
+    - jsonPath: .spec.parentZone
+      name: ParentZone
+      type: string
+    - jsonPath: .spec.dnsZoneNegTTL
+      name: NegTTL
+      type: integer
+    name: v1beta1
+    schema:
+      openAPIV3Schema:
+        description: ZoneDelegation is the Schema for the zonedelegations API
+        properties:
+          apiVersion:
+            description: |-
+              APIVersion defines the versioned schema of this representation of an object.
+              Servers should convert recognized schemas to the latest internal value, and
+              may reject unrecognized values.
+              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+            type: string
+          kind:
+            description: |-
+              Kind is a string value representing the REST resource this object represents.
+              Servers may infer this from the endpoint the client submits requests to.
+              Cannot be updated.
+              In CamelCase.
+              More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+            type: string
+          metadata:
+            type: object
+          spec:
+            properties:
+              dnsZoneNegTTL:
+                description: DNSZoneNegTTL specifies the negative TTL for the DNS
+                  zone (in seconds)
+                type: integer
+              loadBalancedZone:
+                description: LoadBalancedZone is the DNS zone managed by this ZoneDelegation
+                type: string
+              parentZone:
+                description: ParentZone is the zone under which this load-balanced
+                  zone is delegated
+                type: string
+            required:
+            - dnsZoneNegTTL
+            - loadBalancedZone
+            - parentZone
+            type: object
+          status:
+            description: ZoneDelegationStatus defines the observed state of ZoneDelegation
+            properties:
+              dnsServers:
+                description: DNSServers lists the authoritative DNS servers for the
+                  delegated zone
+                items:
+                  description: DNSServer represents a single DNS server for a zone
+                    delegation
+                  properties:
+                    address:
+                      description: Address of the DNS server (IPv4 or IPv6)
+                      type: string
+                    name:
+                      description: Name of the DNS server (FQDN)
+                      type: string
+                  required:
+                  - address
+                  - name
+                  type: object
+                type: array
+            type: object
+        type: object
+    served: true
+    storage: true
+    subresources:
+      status: {}

chart/k8gb/crd/k8gb.absa.oss_gslbs.yaml

@@ -8,18 +8,12 @@ metadata:
 {{ include "chart.labels" . | indent 4  }}
 data:
   Corefile: |-
-{{- range .Values.k8gb.dnsZones }}
-    {{ .loadBalancedZone }}:5353 {
+    (k8gbplugins) {
         errors
         health
         {{- if $.Values.coredns.corefile.reload.enabled }}
         reload {{ $.Values.coredns.corefile.reload.interval }} {{ $.Values.coredns.corefile.reload.jitter }}
         {{- end }}
-{{- if .extraPlugins }}
-{{- range .extraPlugins }}
-{{ . | nindent 8 }}
-{{- end }}
-{{- end }}
         ready
         prometheus 0.0.0.0:9153
         forward . /etc/resolv.conf
@@ -35,8 +29,29 @@ data:
             {{- end }}
         }
     }
+{{- range .Values.k8gb.dnsZones }}
+    {{ .loadBalancedZone }}:5353 {
+        import k8gbplugins
+{{- if .extraPlugins }}
+{{- range .extraPlugins }}
+{{ . | nindent 8 }}
+{{- end }}
+{{- end }}
+    }
+{{- end }}
+{{- with .extraServerBlocks -}}
+{{- tpl . $ | nindent 4 }}
+{{- end }}
+{{- if .Values.k8gb.feature.dynamicZones }}
+    import ../dynamic/*.conf
 {{- end }}
-    {{- with .extraServerBlocks -}}
-    {{- tpl . $ | nindent 4 }}
-    {{- end }}
+{{- end }}
+---
+{{- if .Values.k8gb.feature.dynamicZones }}
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: coredns-dynamic
+  namespace: {{ .Release.Namespace }}
+data: {}
 {{- end }}

chart/k8gb/templates/coredns/cm.yaml

@@ -142,6 +142,8 @@ spec:
               value: "true"
             - name: METRICS_ADDRESS
               value: {{ .Values.k8gb.metricsAddress }}
+            - name: FEATURE_DYNAMIC_ZONES
+              value: {{ .Values.k8gb.feature.dynamicZones | quote }}
       {{- if .Values.tracing.enabled }}
         - image: {{ .Values.tracing.sidecarImage.repository }}:{{ .Values.tracing.sidecarImage.tag }}
           name: otel-collector