Update docs/book/src/topics/network-load-balancer-with-awscluster.md

Author: Skarlso

api/v1beta1/awscluster_conversion.go

@@ -53,8 +53,8 @@ func (src *AWSCluster) ConvertTo(dstRaw conversion.Hub) error {
 func restoreControlPlaneLoadBalancerStatus(restored, dst *infrav1.LoadBalancer) {
 	dst.ARN = restored.ARN
 	dst.LoadBalancerType = restored.LoadBalancerType
-	dst.V2Attributes = restored.V2Attributes
-	dst.V2Listeners = restored.V2Listeners
+	dst.ELBAttributes = restored.ELBAttributes
+	dst.ELBListeners = restored.ELBListeners
 }
 
 // restoreControlPlaneLoadBalancer manually restores the control plane loadbalancer data.

api/v1beta1/conversion.go

@@ -46,7 +46,7 @@ func Convert_v1beta2_NetworkStatus_To_v1beta1_NetworkStatus(in *v1beta2.NetworkS
 func Convert_v1beta1_ClassicELB_To_v1beta2_LoadBalancer(in *ClassicELB, out *v1beta2.LoadBalancer, s conversion.Scope) error {
 	out.Name = in.Name
 	out.DNSName = in.DNSName
-	out.Scheme = v1beta2.ElbScheme(in.Scheme)
+	out.Scheme = v1beta2.ELBScheme(in.Scheme)
 	out.HealthCheck = (*v1beta2.ClassicELBHealthCheck)(in.HealthCheck)
 	out.AvailabilityZones = in.AvailabilityZones
 	out.ClassicElbAttributes = (v1beta2.ClassicELBAttributes)(in.Attributes)

api/v1beta1/zz_generated.conversion.go

@@ -176,7 +176,7 @@ type AWSLoadBalancerSpec struct {
 	// +kubebuilder:default=internet-facing
 	// +kubebuilder:validation:Enum=internet-facing;internal
 	// +optional
-	Scheme *ElbScheme `json:"scheme,omitempty"`
+	Scheme *ELBScheme `json:"scheme,omitempty"`
 
 	// CrossZoneLoadBalancing enables the classic ELB cross availability zone balancing.
 	//
@@ -194,9 +194,9 @@ type AWSLoadBalancerSpec struct {
 	Subnets []string `json:"subnets,omitempty"`
 
 	// HealthCheckProtocol sets the protocol type for ELB health check target
-	// default value is ElbProtocolSSL
+	// default value is ELBProtocolSSL
 	// +optional
-	HealthCheckProtocol *ElbProtocol `json:"healthCheckProtocol,omitempty"`
+	HealthCheckProtocol *ELBProtocol `json:"healthCheckProtocol,omitempty"`
 
 	// AdditionalSecurityGroups sets the security groups used by the load balancer. Expected to be security group IDs
 	// This is optional - if not provided new security groups will be created for the load balancer

api/v1beta2/awscluster_types.go

@@ -92,7 +92,7 @@ func (r *AWSCluster) ValidateUpdate(old runtime.Object) error {
 	}
 	if oldC.Spec.ControlPlaneLoadBalancer == nil {
 		// If old scheme was nil, the only value accepted here is the default value: internet-facing
-		if newLoadBalancer.Scheme != nil && newLoadBalancer.Scheme.String() != ElbSchemeInternetFacing.String() {
+		if newLoadBalancer.Scheme != nil && newLoadBalancer.Scheme.String() != ELBSchemeInternetFacing.String() {
 			allErrs = append(allErrs,
 				field.Invalid(field.NewPath("spec", "controlPlaneLoadBalancer", "scheme"),
 					r.Spec.ControlPlaneLoadBalancer.Scheme, "field is immutable, default value was set to internet-facing"),
@@ -117,7 +117,7 @@ func (r *AWSCluster) ValidateUpdate(old runtime.Object) error {
 		}
 	}
 
-	// Block the update for HealthCheckProtocol :
+	// Block the update for Protocol :
 	// - if it was not set in old spec but added in new spec
 	// - if it was set in old spec but changed in new spec
 	if !cmp.Equal(newLoadBalancer.HealthCheckProtocol, existingLoadBalancer.HealthCheckProtocol) {

api/v1beta2/awscluster_webhook.go

@@ -42,7 +42,7 @@ func TestAWSClusterDefault(t *testing.T) {
 }
 
 func TestAWSCluster_ValidateCreate(t *testing.T) {
-	unsupportedIncorrectScheme := ElbScheme("any-other-scheme")
+	unsupportedIncorrectScheme := ELBScheme("any-other-scheme")
 
 	tests := []struct {
 		name    string
@@ -351,14 +351,14 @@ func TestAWSCluster_ValidateUpdate(t *testing.T) {
 			oldCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						Scheme: &ElbSchemeInternal,
+						Scheme: &ELBSchemeInternal,
 					},
 				},
 			},
 			newCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						Scheme: &ElbSchemeInternetFacing,
+						Scheme: &ELBSchemeInternetFacing,
 					},
 				},
 			},
@@ -372,7 +372,7 @@ func TestAWSCluster_ValidateUpdate(t *testing.T) {
 			newCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						Scheme: &ElbSchemeInternal,
+						Scheme: &ELBSchemeInternal,
 					},
 				},
 			},
@@ -386,7 +386,7 @@ func TestAWSCluster_ValidateUpdate(t *testing.T) {
 			newCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						Scheme: &ElbSchemeInternetFacing,
+						Scheme: &ELBSchemeInternetFacing,
 					},
 				},
 			},
@@ -526,14 +526,14 @@ func TestAWSCluster_ValidateUpdate(t *testing.T) {
 			oldCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						HealthCheckProtocol: &ElbProtocolTCP,
+						HealthCheckProtocol: &ELBProtocolTCP,
 					},
 				},
 			},
 			newCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						HealthCheckProtocol: &ElbProtocolSSL,
+						HealthCheckProtocol: &ELBProtocolSSL,
 					},
 				},
 			},
@@ -544,14 +544,14 @@ func TestAWSCluster_ValidateUpdate(t *testing.T) {
 			oldCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						HealthCheckProtocol: &ElbProtocolTCP,
+						HealthCheckProtocol: &ELBProtocolTCP,
 					},
 				},
 			},
 			newCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						HealthCheckProtocol: &ElbProtocolTCP,
+						HealthCheckProtocol: &ELBProtocolTCP,
 					},
 				},
 			},
@@ -565,7 +565,7 @@ func TestAWSCluster_ValidateUpdate(t *testing.T) {
 			newCluster: &AWSCluster{
 				Spec: AWSClusterSpec{
 					ControlPlaneLoadBalancer: &AWSLoadBalancerSpec{
-						HealthCheckProtocol: &ElbProtocolTCP,
+						HealthCheckProtocol: &ELBProtocolTCP,
 					},
 				},
 			},

api/v1beta2/awscluster_webhook_test.go

@@ -63,7 +63,7 @@ func SetDefaults_AWSClusterSpec(s *AWSClusterSpec) { //nolint:golint,stylecheck
 	}
 	if s.ControlPlaneLoadBalancer == nil {
 		s.ControlPlaneLoadBalancer = &AWSLoadBalancerSpec{
-			Scheme:           &ElbSchemeInternetFacing,
+			Scheme:           &ELBSchemeInternetFacing,
 			LoadBalancerType: LoadBalancerTypeClassic,
 		}
 	}

api/v1beta2/defaults.go

@@ -22,6 +22,13 @@ import (
 	"time"
 )
 
+const (
+	// DefaultAPIServerPort defines the API server port when defining a Load Balancer.
+	DefaultAPIServerPort = 6443
+	// DefaultAPIServerPortString defines the API server port as a string for convenience.
+	DefaultAPIServerPortString = "6443"
+)
+
 // NetworkStatus encapsulates AWS networking resources.
 type NetworkStatus struct {
 	// SecurityGroups is a map from the role/kind of the security group to its unique name, if any.
@@ -31,57 +38,53 @@ type NetworkStatus struct {
 	APIServerELB LoadBalancer `json:"apiServerElb,omitempty"`
 }
 
-// ElbScheme defines the scheme of a load balancer.
-type ElbScheme string
+// ELBScheme defines the scheme of a load balancer.
+type ELBScheme string
 
 var (
-	// ElbSchemeInternetFacing defines an internet-facing, publicly
+	// ELBSchemeInternetFacing defines an internet-facing, publicly
 	// accessible AWS ELB scheme.
-	ElbSchemeInternetFacing = ElbScheme("internet-facing")
+	ELBSchemeInternetFacing = ELBScheme("internet-facing")
 
-	// ElbSchemeInternal defines an internal-only facing
+	// ELBSchemeInternal defines an internal-only facing
 	// load balancer internal to an ELB.
-	ElbSchemeInternal = ElbScheme("internal")
+	ELBSchemeInternal = ELBScheme("internal")
 )
 
-func (e ElbScheme) String() string {
+func (e ELBScheme) String() string {
 	return string(e)
 }
 
-// ElbProtocol defines listener protocols for a load balancer.
-type ElbProtocol string
+// ELBProtocol defines listener protocols for a load balancer.
+type ELBProtocol string
 
-func (e ElbProtocol) String() string {
+func (e ELBProtocol) String() string {
 	return string(e)
 }
 
 var (
-	// ElbProtocolTCP defines the ELB API string representing the TCP protocol.
-	ElbProtocolTCP = ElbProtocol("TCP")
-
-	// ElbProtocolSSL defines the ELB API string representing the TLS protocol.
-	ElbProtocolSSL = ElbProtocol("SSL")
-
-	// ElbProtocolHTTP defines the ELB API string representing the HTTP protocol at L7.
-	ElbProtocolHTTP = ElbProtocol("HTTP")
-
-	// ElbProtocolHTTPS defines the ELB API string representing the HTTP protocol at L7.
-	ElbProtocolHTTPS = ElbProtocol("HTTPS")
-
-	// ElbProtocolTLS defines the NLB API string representing the TLS protocol.
-	ElbProtocolTLS = ElbProtocol("TLS")
-	// ElbProtocolUDP defines the NLB API string representing the UPD protocol.
-	ElbProtocolUDP = ElbProtocol("UDP")
+	// ELBProtocolTCP defines the ELB API string representing the TCP protocol.
+	ELBProtocolTCP = ELBProtocol("TCP")
+	// ELBProtocolSSL defines the ELB API string representing the TLS protocol.
+	ELBProtocolSSL = ELBProtocol("SSL")
+	// ELBProtocolHTTP defines the ELB API string representing the HTTP protocol at L7.
+	ELBProtocolHTTP = ELBProtocol("HTTP")
+	// ELBProtocolHTTPS defines the ELB API string representing the HTTP protocol at L7.
+	ELBProtocolHTTPS = ELBProtocol("HTTPS")
+	// ELBProtocolTLS defines the NLB API string representing the TLS protocol.
+	ELBProtocolTLS = ELBProtocol("TLS")
+	// ELBProtocolUDP defines the NLB API string representing the UPD protocol.
+	ELBProtocolUDP = ELBProtocol("UDP")
 )
 
 // TargetGroupHealthCheck defines health check settings for the target group.
 type TargetGroupHealthCheck struct {
-	HealthCheckProtocol        *string `json:"healthCheckProtocol,omitempty"`
-	HealthCheckPath            *string `json:"healthCheckPath,omitempty"`
-	HealthCheckPort            *string `json:"healthCheckPort,omitempty"`
-	HealthCheckIntervalSeconds *int64  `json:"healthCheckIntervalSeconds,omitempty"`
-	HealthCheckTimeoutSeconds  *int64  `json:"healthCheckTimeoutSeconds,omitempty"`
-	HealthyThresholdCount      *int64  `json:"healthyThresholdCount,omitempty"`
+	Protocol        *string `json:"protocol,omitempty"`
+	Path            *string `json:"path,omitempty"`
+	Port            *string `json:"port,omitempty"`
+	IntervalSeconds *int64  `json:"intervalSeconds,omitempty"`
+	TimeoutSeconds  *int64  `json:"timeoutSeconds,omitempty"`
+	ThresholdCount  *int64  `json:"thresholdCount,omitempty"`
 }
 
 // TargetGroupAttribute defines attribute key values for V2 Load Balancer Attributes.
@@ -95,25 +98,28 @@ var (
 type LoadBalancerAttribute string
 
 var (
-	LoadBalancerAttributeEnableLoadBalancingCrossZone = "load_balancing.cross_zone.enabled"
-	LoadBalancerAttributeIdleTimeTimeoutSeconds       = "idle_timeout.timeout_seconds"
+	LoadBalancerAttributeEnableLoadBalancingCrossZone           = "load_balancing.cross_zone.enabled"
+	LoadBalancerAttributeIdleTimeTimeoutSeconds                 = "idle_timeout.timeout_seconds"
+	LoadBalancerAttributeIdleTimeDefaultTimeoutSecondsInSeconds = "60"
 )
 
 // TargetGroupSpec specifies target group settings for a given listener.
 // This is created first, and the ARN is then passed to the listener.
 type TargetGroupSpec struct {
-	Name *string `json:"name"`
-	Port *int64  `json:"port"`
+	// Name of the TargetGroup. Must be unique over the same group of listeners.
+	Name string `json:"name"`
+	// Port is the exposed port
+	Port int64 `json:"port"`
 	// +kubebuilder:validation:Enum=tcp;tls;upd
-	Protocol ElbProtocol `json:"protocol"`
-	VpcID    *string     `json:"vpcId"`
+	Protocol ELBProtocol `json:"protocol"`
+	VpcID    string      `json:"vpcId"`
 	// HealthCheck is the elb health check associated with the load balancer.
 	HealthCheck *TargetGroupHealthCheck `json:"targetGroupHealthCheck,omitempty"`
 }
 
 // Listener defines an AWS network load balancer listener.
 type Listener struct {
-	Protocol    ElbProtocol     `json:"protocol"`
+	Protocol    ELBProtocol     `json:"protocol"`
 	Port        int64           `json:"port"`
 	TargetGroup TargetGroupSpec `json:"targetGroup"`
 }
@@ -132,7 +138,7 @@ type LoadBalancer struct {
 	DNSName string `json:"dnsName,omitempty"`
 
 	// Scheme is the load balancer scheme, either internet-facing or private.
-	Scheme ElbScheme `json:"scheme,omitempty"`
+	Scheme ELBScheme `json:"scheme,omitempty"`
 
 	// AvailabilityZones is an array of availability zones in the VPC attached to the load balancer.
 	AvailabilityZones []string `json:"availabilityZones,omitempty"`
@@ -155,14 +161,14 @@ type LoadBalancer struct {
 	// Tags is a map of tags associated with the load balancer.
 	Tags map[string]string `json:"tags,omitempty"`
 
-	// V2Listeners is an array of listeners associated with the load balancer. There must be at least one.
-	V2Listeners []Listener `json:"v2Listeners,omitempty"`
+	// ELBListeners is an array of listeners associated with the load balancer. There must be at least one.
+	ELBListeners []Listener `json:"elbListeners,omitempty"`
 
-	// V2Attributes defines extra attributes associated with v2 load balancers.
-	V2Attributes map[string]*string `json:"v2Attributes,omitempty"`
+	// ELBAttributes defines extra attributes associated with v2 load balancers.
+	ELBAttributes map[string]*string `json:"elbAttributes,omitempty"`
 
-	// LoadBalancerType defines the type of the Load Balancer.
-	// +kubebuilder:validation:Enum=classic;nlb;alb;elb
+	// LoadBalancerType sets the type for a load balancer. The default type is classic.
+	// +kubebuilder:validation:Enum:=classic;elb;alb;nlb
 	LoadBalancerType LoadBalancerType `json:"loadBalancerType"`
 }
 
@@ -189,9 +195,9 @@ type ClassicELBAttributes struct {
 
 // ClassicELBListener defines an AWS classic load balancer listener.
 type ClassicELBListener struct {
-	Protocol         ElbProtocol `json:"protocol"`
+	Protocol         ELBProtocol `json:"protocol"`
 	Port             int64       `json:"port"`
-	InstanceProtocol ElbProtocol `json:"instanceProtocol"`
+	InstanceProtocol ELBProtocol `json:"instanceProtocol"`
 	InstancePort     int64       `json:"instancePort"`
 }