Feat: Listener: Add support for standard k8s clusters (#52)

fourthisle · web-flow · commit 3d2aaf475898 · 2025-01-30T12:43:33.000+01:00
* listener: add support for standard k8s clusters

* review: add context that times out for fetching apiexports
diff --git a/cmd/listen.go b/cmd/listen.go
@@ -1,38 +1,29 @@
 package cmd
 
 import (
-	"context"
 	"crypto/tls"
-	"errors"
-	"net/url"
 	"os"
 
 	kcpapis "github.com/kcp-dev/kcp/sdk/apis/apis/v1alpha1"
 	kcpcore "github.com/kcp-dev/kcp/sdk/apis/core/v1alpha1"
 	kcptenancy "github.com/kcp-dev/kcp/sdk/apis/tenancy/v1alpha1"
-	"github.com/openmfp/crd-gql-gateway/listener/clusterpath"
-	"github.com/openmfp/crd-gql-gateway/listener/flags"
-	"github.com/rs/zerolog/log"
+	apiextensionsv1 "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
+
 	"github.com/spf13/cobra"
-	"k8s.io/apiextensions-apiserver/pkg/apis/apiextensions"
+
 	"k8s.io/apimachinery/pkg/runtime"
 	utilruntime "k8s.io/apimachinery/pkg/util/runtime"
-	kcpctrl "sigs.k8s.io/controller-runtime/pkg/kcp"
 
 	clientgoscheme "k8s.io/client-go/kubernetes/scheme"
-	"k8s.io/client-go/rest"
 	ctrl "sigs.k8s.io/controller-runtime"
-	"sigs.k8s.io/controller-runtime/pkg/client"
 	"sigs.k8s.io/controller-runtime/pkg/healthz"
 	"sigs.k8s.io/controller-runtime/pkg/log/zap"
 	"sigs.k8s.io/controller-runtime/pkg/metrics/filters"
 	metricsserver "sigs.k8s.io/controller-runtime/pkg/metrics/server"
 	"sigs.k8s.io/controller-runtime/pkg/webhook"
 
-	"github.com/openmfp/crd-gql-gateway/listener/apischema"
-	"github.com/openmfp/crd-gql-gateway/listener/controller"
-	"github.com/openmfp/crd-gql-gateway/listener/discoveryclient"
-	"github.com/openmfp/crd-gql-gateway/listener/workspacefile"
+	"github.com/openmfp/crd-gql-gateway/listener/flags"
+	"github.com/openmfp/crd-gql-gateway/listener/kcp"
 	// +kubebuilder:scaffold:imports
 )
 
@@ -50,27 +41,28 @@ var (
 
 var listenCmd = &cobra.Command{
 	Use:     "listen",
-	Example: "KUBECONFIG=.kcp/admin.kubeconfig go run . listen",
+	Example: "KUBECONFIG=<path to kubeconfig file> go run . listen",
 	PreRun: func(cmd *cobra.Command, args []string) {
 		utilruntime.Must(clientgoscheme.AddToScheme(scheme))
 
 		utilruntime.Must(kcpapis.AddToScheme(scheme))
 		utilruntime.Must(kcpcore.AddToScheme(scheme))
 		utilruntime.Must(kcptenancy.AddToScheme(scheme))
-		utilruntime.Must(apiextensions.AddToScheme(scheme))
+		utilruntime.Must(apiextensionsv1.AddToScheme(scheme))
 		// +kubebuilder:scaffold:scheme
 
-		var err error
-		opFlags, err = flags.NewFromEnv()
-		if err != nil {
-			log.Fatal().Err(err).Msg("Error getting app restCfg, exiting")
-		}
 		opts := zap.Options{
 			Development: true,
 		}
-
 		ctrl.SetLogger(zap.New(zap.UseFlagOptions(&opts)))
 
+		var err error
+		opFlags, err = flags.NewFromEnv()
+		if err != nil {
+			setupLog.Error(err, "failed to get operator flags from env, exiting...")
+			os.Exit(1)
+		}
+
 		disableHTTP2 := func(c *tls.Config) {
 			setupLog.Info("disabling http/2")
 			c.NextProtos = []string{"http/1.1"}
@@ -97,75 +89,40 @@ var listenCmd = &cobra.Command{
 	},
 	Run: func(cmd *cobra.Command, args []string) {
 		cfg := ctrl.GetConfigOrDie()
-		cfgURL, err := url.Parse(cfg.Host)
-		if err != nil {
-			setupLog.Error(err, "failed to parse config Host")
-			os.Exit(1)
-		}
-		clt, err := client.New(cfg, client.Options{
-			Scheme: scheme,
-		})
-		if err != nil {
-			setupLog.Error(err, "failed to create client from config")
-			os.Exit(1)
-		}
-		tenancyAPIExport := &kcpapis.APIExport{}
-		err = clt.Get(context.TODO(), client.ObjectKey{Name: kcptenancy.SchemeGroupVersion.Group}, tenancyAPIExport)
-		if err != nil {
-			setupLog.Error(err, "failed to get tenancy APIExport")
-			os.Exit(1)
-		}
-		virtualWorkspaces := tenancyAPIExport.Status.VirtualWorkspaces // nolint: staticcheck
-		if len(virtualWorkspaces) == 0 {
-			err := errors.New("empty virtual workspace list")
-			setupLog.Error(err, "failed to get at least one virtual workspace")
-			os.Exit(1)
-		}
-		vwCFGURL, err := url.Parse(virtualWorkspaces[0].URL)
-		if err != nil {
-			setupLog.Error(err, "failed to parse virtual workspace config URL")
-			os.Exit(1)
-		}
-		cfgURL.Path = vwCFGURL.Path
-		virtualWorkspaceCfg := rest.CopyConfig(cfg)
-		virtualWorkspaceCfg.Host = cfgURL.String()
 
-		mgr, err := kcpctrl.NewClusterAwareManager(virtualWorkspaceCfg, ctrl.Options{
+		mgrOpts := ctrl.Options{
 			Scheme:                 scheme,
 			Metrics:                metricsServerOptions,
 			WebhookServer:          webhookServer,
 			HealthProbeBindAddress: opFlags.ProbeAddr,
 			LeaderElection:         opFlags.EnableLeaderElection,
 			LeaderElectionID:       "72231e1f.openmfp.io",
-		})
+		}
+
+		newMgrFunc := kcp.ManagerFactory(opFlags)
+
+		mgr, err := newMgrFunc(cfg, mgrOpts)
 		if err != nil {
 			setupLog.Error(err, "unable to start manager")
 			os.Exit(1)
 		}
 
-		ioHandler, err := workspacefile.NewIOHandler(opFlags.OpenAPIdefinitionsPath)
-		if err != nil {
-			setupLog.Error(err, "failed to create IO Handler")
-			os.Exit(1)
+		reconcilerOpts := kcp.ReconcilerOpts{
+			Scheme:                 scheme,
+			Config:                 cfg,
+			OpenAPIDefinitionsPath: opFlags.OpenAPIdefinitionsPath,
 		}
 
-		df, err := discoveryclient.NewFactory(virtualWorkspaceCfg)
+		newReconcilerFunc := kcp.ReconcilerFactory(opFlags)
+
+		reconciler, err := newReconcilerFunc(reconcilerOpts)
 		if err != nil {
-			setupLog.Error(err, "failed to create Discovery client factory")
+			setupLog.Error(err, "unable to instantiate reconciler")
 			os.Exit(1)
 		}
 
-		reconciler := controller.NewAPIBindingReconciler(
-			ioHandler, df, apischema.NewResolver(), &clusterpath.Resolver{
-				Scheme:       mgr.GetScheme(),
-				Config:       cfg,
-				ResolverFunc: clusterpath.Resolve,
-			},
-		)
-
-		err = reconciler.SetupWithManager(mgr)
-		if err != nil {
-			setupLog.Error(err, "unable to create controller", "controller", "Workspace")
+		if err := reconciler.SetupWithManager(mgr); err != nil {
+			setupLog.Error(err, "unable to create controller")
 			os.Exit(1)
 		}
 		// +kubebuilder:scaffold:builder
@@ -181,8 +138,7 @@ var listenCmd = &cobra.Command{
 
 		setupLog.Info("starting manager")
 		signalHandler := ctrl.SetupSignalHandler()
-		err = mgr.Start(signalHandler)
-		if err != nil {
+		if err := mgr.Start(signalHandler); err != nil {
 			setupLog.Error(err, "problem running manager")
 			os.Exit(1)
 		}
diff --git a/listener/controller/crd_controller.go b/listener/controller/crd_controller.go
@@ -0,0 +1,97 @@
+package controller
+
+import (
+	"bytes"
+	"context"
+	"errors"
+
+	"io/fs"
+
+	"github.com/openmfp/crd-gql-gateway/listener/apischema"
+	"github.com/openmfp/crd-gql-gateway/listener/workspacefile"
+	"k8s.io/client-go/discovery"
+
+	apiextensionsv1 "k8s.io/apiextensions-apiserver/pkg/apis/apiextensions/v1"
+	ctrl "sigs.k8s.io/controller-runtime"
+	"sigs.k8s.io/controller-runtime/pkg/client"
+	"sigs.k8s.io/controller-runtime/pkg/log"
+)
+
+// CRDReconciler reconciles a CustomResourceDefinition object
+type CRDReconciler struct {
+	ClusterName string
+	client.Client
+	*discovery.DiscoveryClient
+	io workspacefile.IOHandler
+	sc apischema.Resolver
+}
+
+func NewCRDReconciler(name string,
+	clt client.Client,
+	dc *discovery.DiscoveryClient,
+	io workspacefile.IOHandler,
+	sc apischema.Resolver,
+) *CRDReconciler {
+	return &CRDReconciler{
+		ClusterName:     name,
+		Client:          clt,
+		DiscoveryClient: dc,
+		io:              io,
+		sc:              sc,
+	}
+}
+
+// +kubebuilder:rbac:groups=apiextensions.k8s.io,resources=customresourcedefinition,verbs=get;list;watch
+// +kubebuilder:rbac:groups=apiextensions.k8s.io,resources=customresourcedefinition/status,verbs=get
+func (r *CRDReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error) {
+
+	logger := log.FromContext(ctx).WithValues("cluster", r.ClusterName).WithName(req.Name)
+	logger.Info("starting reconciliation...")
+
+	crd := &apiextensionsv1.CustomResourceDefinition{}
+	if err := r.Client.Get(ctx, req.NamespacedName, crd); client.IgnoreNotFound(err) != nil {
+		logger.Error(err, "failed to get reconciled object")
+		return ctrl.Result{}, err
+	}
+
+	savedJSON, err := r.io.Read(r.ClusterName)
+	if errors.Is(err, fs.ErrNotExist) {
+		actualJSON, err1 := r.sc.Resolve(r.DiscoveryClient)
+		if err1 != nil {
+			logger.Error(err1, "failed to resolve server JSON schema")
+			return ctrl.Result{}, err1
+		}
+		if err := r.io.Write(actualJSON, r.ClusterName); err != nil {
+			logger.Error(err, "failed to write JSON to filesystem")
+			return ctrl.Result{}, err
+		}
+		return ctrl.Result{}, nil
+	}
+
+	if err != nil {
+		logger.Error(err, "failed to read JSON from filesystem")
+		return ctrl.Result{}, err
+	}
+
+	actualJSON, err := r.sc.Resolve(r.DiscoveryClient)
+	if err != nil {
+		logger.Error(err, "failed to resolve server JSON schema")
+		return ctrl.Result{}, err
+	}
+	if !bytes.Equal(actualJSON, savedJSON) {
+		if err := r.io.Write(actualJSON, r.ClusterName); err != nil {
+			logger.Error(err, "failed to write JSON to filesystem")
+			return ctrl.Result{}, err
+		}
+	}
+
+	return ctrl.Result{}, nil
+}
+
+// SetupWithManager sets up the controller with the Manager.
+func (r *CRDReconciler) SetupWithManager(mgr ctrl.Manager) error {
+	return ctrl.NewControllerManagedBy(mgr).
+		For(&apiextensionsv1.CustomResourceDefinition{}).
+		Named("CRD").
+		Complete(r)
+}
diff --git a/listener/flags/operator_flags.go b/listener/flags/operator_flags.go
@@ -11,6 +11,7 @@ type Flags struct {
 	SecureMetrics          bool   `envconfig:"default=true,optional"`
 	EnableHTTP2            bool   `envconfig:"default=false,optional"`
 	OpenAPIdefinitionsPath string `envconfig:"OPEN_API_DEFINITIONS_PATH,default=./bin/definitions"`
+	EnableKcp              bool   `envconfig:"default=true,optional"`
 }
 
 func NewFromEnv() (*Flags, error) {
diff --git a/listener/kcp/manager_factory.go b/listener/kcp/manager_factory.go
@@ -0,0 +1,32 @@
+package kcp
+
+import (
+	"fmt"
+
+	"github.com/openmfp/crd-gql-gateway/listener/flags"
+	"k8s.io/client-go/rest"
+	ctrl "sigs.k8s.io/controller-runtime"
+	kcpctrl "sigs.k8s.io/controller-runtime/pkg/kcp"
+	"sigs.k8s.io/controller-runtime/pkg/manager"
+)
+
+type NewManagerFunc func(cfg *rest.Config, opts ctrl.Options) (manager.Manager, error)
+
+func ManagerFactory(opFlags *flags.Flags) NewManagerFunc {
+	if opFlags.EnableKcp {
+		return NewKcpManager
+	}
+	return ctrl.NewManager
+}
+
+func NewKcpManager(cfg *rest.Config, opts ctrl.Options) (manager.Manager, error) {
+	virtualWorkspaceCfg, err := virtualWorkspaceConfigFromCfg(cfg, opts.Scheme)
+	if err != nil {
+		return nil, fmt.Errorf("unable to get virtual workspace config: %w", err)
+	}
+	mgr, err := kcpctrl.NewClusterAwareManager(virtualWorkspaceCfg, opts)
+	if err != nil {
+		return nil, fmt.Errorf("unable to instantiate manager: %w", err)
+	}
+	return mgr, nil
+}
diff --git a/listener/kcp/reconciler_factory.go b/listener/kcp/reconciler_factory.go
diff --git a/listener/kcp/workspace_config.go b/listener/kcp/workspace_config.go

Original file line number	Diff line number	Diff line change
`@@ -11,6 +11,7 @@ type Flags struct {`
`11`	`11`	SecureMetrics bool `envconfig:"default=true,optional"`
`12`	`12`	EnableHTTP2 bool `envconfig:"default=false,optional"`
`13`	`13`	OpenAPIdefinitionsPath string `envconfig:"OPEN_API_DEFINITIONS_PATH,default=./bin/definitions"`
	`14`	+ EnableKcp bool `envconfig:"default=true,optional"`
`14`	`15`	`}`
`15`	`16`
`16`	`17`	`func NewFromEnv() (*Flags, error) {`