docs: update old links, FAQ, and Reconcile() code references (#4333)

Eric Stroczynski · web-flow · commit 72ab36a7f90b · 2020-12-17T14:23:35.000-08:00
diff --git a/website/content/en/docs/building-operators/golang/advanced-topics.md b/website/content/en/docs/building-operators/golang/advanced-topics.md
@@ -142,8 +142,7 @@ import (
 
 const memcachedFinalizer = "finalizer.cache.example.com"
 
-func (r *MemcachedReconciler) Reconcile(req ctrl.Request) (ctrl.Result, error) {
-    ctx := context.Background()
+func (r *MemcachedReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error) {
     reqLogger := r.log.WithValues("memcached", req.NamespacedName)
     reqLogger.Info("Reconciling Memcached")
 
diff --git a/website/content/en/docs/building-operators/golang/migration.md b/website/content/en/docs/building-operators/golang/migration.md
@@ -331,7 +331,7 @@ E.g `kubectl logs deployment.apps/memcached-operator-controller-manager -n memca
 [integration-doc]: https://github.com/kubernetes-sigs/kubebuilder/blob/master/designs/integrating-kubebuilder-and-osdk.md
 [quickstart]: /docs/building-operators/golang/quickstart/
 [metrics]: https://book.kubebuilder.io/reference/metrics.html?highlight=metr#metrics
-[memcached_controller]: https://github.com/operator-framework/operator-sdk/blob/master/testdata/go/memcached-operator/controllers/memcached_controller.go
+[memcached_controller]: https://github.com/operator-framework/operator-sdk/blob/v1.2.0/testdata/go/memcached-operator/controllers/memcached_controller.go
 [rbac_markers]: https://book.kubebuilder.io/reference/markers/rbac.html
 [kube-auth-proxy]: https://github.com/brancz/kube-rbac-proxy
 [markers]: https://book.kubebuilder.io/reference/markers.html?highlight=markers#marker-syntax
@@ -350,4 +350,4 @@ E.g `kubectl logs deployment.apps/memcached-operator-controller-manager -n memca
 [ctrl-options]: https://godoc.org/sigs.k8s.io/controller-runtime/pkg/manager#Options
 [envtest]: https://godoc.org/sigs.k8s.io/controller-runtime/pkg/envtest
 [gomega]: https://onsi.github.io/gomega/
-[multigroup-kubebuilder-doc]: https://book.kubebuilder.io/migration/multi-group.html
+[multigroup-kubebuilder-doc]: https://book.kubebuilder.io/migration/multi-group.html
diff --git a/website/content/en/docs/building-operators/golang/references/client.md b/website/content/en/docs/building-operators/golang/references/client.md
@@ -82,7 +82,7 @@ Creating a new Client is not usually necessary nor advised, as the default Clien
 
 ### Reconcile and the Client API
 
-A Reconciler implements the [`reconcile.Reconciler`][doc-reconcile-reconciler] interface, which exposes the Reconcile method. Reconcilers are added to a corresponding Controller for a Kind; Reconcile is called in response to cluster or external Events, with a `reconcile.Request` object argument, to read and write cluster state by the Controller, and returns a `reconcile.Result`. SDK Reconcilers have access to a Client in order to make Kubernetes API calls.
+A Reconciler implements the [`reconcile.Reconciler`][doc-reconcile-reconciler] interface, which exposes the Reconcile method. Reconcilers are added to a corresponding Controller for a Kind; Reconcile is called in response to cluster or external Events, with a `reconcile.Request` object argument, to read and write cluster state by the Controller, and returns a `ctrl.Result`. SDK Reconcilers have access to a Client in order to make Kubernetes API calls.
 
 ```Go
 // KindReconciler reconciles a Kind object
@@ -106,7 +106,7 @@ type KindReconciler struct {
 // The Controller will requeue the Request to be processed again if an error
 // is non-nil or Result.Requeue is true, otherwise upon completion it will
 // remove the work from the queue.
-func (r *KindReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error)
+func (r *KindReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error)
 ```
 
 Reconcile is where Controller business logic lives, i.e. where Client API calls are made via `KindReconciler.client`. A `client.Client` implementer performs the following operations:
@@ -128,7 +128,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     app := &v1alpha1.App{}
@@ -160,7 +160,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     // Return all pods in the request namespace with a label of `app=<name>`
@@ -202,7 +202,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     app := &v1.Deployment{ // Any cluster object you want to create.
@@ -238,7 +238,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     dep := &v1.Deployment{}
@@ -276,7 +276,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     dep := &v1.Deployment{}
@@ -320,7 +320,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     ctx := context.TODO()
@@ -365,7 +365,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     pod := &v1.Pod{}
@@ -409,7 +409,7 @@ import (
     ctrl "sigs.k8s.io/controller-runtime"
 )
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
     ...
 
     // Delete all pods in the request namespace with a label of `app=<name>`
@@ -457,7 +457,7 @@ type AppReconciler struct {
     Scheme *runtime.Scheme
 }
 
-func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Result, error) {
+func (r *AppReconciler) Reconcile(context.Context, req ctrl.Request) (ctrl.Result, error) {
 
     // Fetch the App instance.
     app := &appv1alpha1.App{}
diff --git a/website/content/en/docs/building-operators/golang/references/logging.md b/website/content/en/docs/building-operators/golang/references/logging.md
@@ -202,8 +202,7 @@ type MemcachedReconciler struct {
 	Scheme *runtime.Scheme
 }
 
-func (r *MemcachedReconciler) Reconcile(req ctrl.Request) (ctrl.Result, error) {
-	ctx := context.Background()
+func (r *MemcachedReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error) {
 	log := r.Log.WithValues("memcached", req.NamespacedName)
 
 	// Fetch the Memcached instance
@@ -260,7 +259,7 @@ If you do not want to use `logr` as your logging tool, you can remove `logr`-spe
 [repo_zapr]:https://godoc.org/github.com/go-logr/zapr
 [godoc_logr_logger]:https://godoc.org/github.com/go-logr/logr#Logger
 [site_struct_logging]:https://www.client9.com/structured-logging-in-golang/
-[code_memcached_controller]: https://github.com/operator-framework/operator-sdk/blob/master/testdata/go/memcached-operator/controllers/memcached_controller.go
+[code_memcached_controller]: https://github.com/operator-framework/operator-sdk/blob/v1.2.0/testdata/go/memcached-operator/controllers/memcached_controller.go
 [logfmt_repo]:https://github.com/jsternberg/zap-logfmt
 [controller_runtime_zap]:https://github.com/kubernetes-sigs/controller-runtime/tree/master/pkg/log/zap
 [logging_godocs]: https://godoc.org/github.com/kubernetes-sigs/controller-runtime/pkg/log/zap#Options.BindFlags
diff --git a/website/content/en/docs/building-operators/golang/tutorial.md b/website/content/en/docs/building-operators/golang/tutorial.md
@@ -225,7 +225,7 @@ import (
 	...
 )
 
-func (r *MemcachedReconciler) Reconcile(req ctrl.Request) (ctrl.Result, error) {
+func (r *MemcachedReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error) {
   // Lookup the Memcached instance for this reconcile request
   memcached := &cachev1alpha1.Memcached{}
   err := r.Get(ctx, req.NamespacedName, memcached)
@@ -267,7 +267,9 @@ The controller needs certain RBAC permissions to interact with the resources it
 // +kubebuilder:rbac:groups=apps,resources=deployments,verbs=get;list;watch;create;update;patch;delete
 // +kubebuilder:rbac:groups=core,resources=pods,verbs=get;list;
 
-func (r *MemcachedReconciler) Reconcile(req ctrl.Request) (ctrl.Result, error) {
+func (r *MemcachedReconciler) Reconcile(ctx context.Context, req ctrl.Request) (ctrl.Result, error) {
+  ...
+}
 ```
 
 The `ClusterRole` manifest at `config/rbac/role.yaml` is generated from the above markers via controller-gen with the following command:
@@ -493,7 +495,7 @@ Also see the [advanced topics][advanced_topics] doc for more use cases and under
 [markers]: https://book.kubebuilder.io/reference/markers.html
 [crd-markers]: https://book.kubebuilder.io/reference/markers/crd-validation.html
 [rbac-markers]: https://book.kubebuilder.io/reference/markers/rbac.html
-[memcached_controller]: https://github.com/operator-framework/operator-sdk/blob/master/testdata/go/memcached-operator/controllers/memcached_controller.go
+[memcached_controller]: https://github.com/operator-framework/operator-sdk/blob/v1.2.0/testdata/go/memcached-operator/controllers/memcached_controller.go
 [builder_godocs]: https://godoc.org/github.com/kubernetes-sigs/controller-runtime/pkg/builder#example-Builder
 [legacy_quickstart_doc]:https://v0-19-x.sdk.operatorframework.io/docs/golang/legacy/quickstart/
 [activate_modules]: https://github.com/golang/go/wiki/Modules#how-to-install-and-activate-module-support
diff --git a/website/content/en/docs/faqs/_index.md b/website/content/en/docs/faqs/_index.md
@@ -33,88 +33,81 @@ For more information on `kube-apiserver` request timeout options, see the [Kuber
 
 Unfortunately, adding the entire dependency tree for all Ansible modules would be excessive. Fortunately, you can add it easily. Simply edit your build/Dockerfile. You'll want to change to root for the install command, just be sure to swap back using a series of commands like the following right after the `FROM` line.
 
-```
+```docker
 USER 0
 RUN yum -y install my-dependency
 RUN pip3 install my-python-dependency
 USER 1001
 ```
 
-If you aren't sure what dependencies are required, start up a container using the image in the `FROM` line as root. That will look something like this.
-`docker run -u 0 -it --rm --entrypoint /bin/bash quay.io/operator-framework/ansible-operator:<sdk-tag-version>`
+If you aren't sure what dependencies are required, start up a container using the image in the `FROM` line as root. That will look something like this:
+```sh
+docker run -u 0 -it --rm --entrypoint /bin/bash quay.io/operator-framework/ansible-operator:<sdk-tag-version>
+```
 
 ## I keep seeing errors like "Failed to watch", how do I fix this?
 
-If you run into the following error message, it means that your operator is unable to watch the resoruce:
+If you run into the following error message, it means that your operator is unable to watch the resource:
 
 ```
 E0320 15:42:17.676888       1 reflector.go:280] pkg/mod/k8s.io/client-go@v0.0.0-20191016111102-bec269661e48/tools/cache/reflector.go:96: Failed to watch *v1.ImageStreamTag: unknown (get imagestreamtags.image.openshift.io)
 {"level":"info","ts":1584718937.766342,"logger":"controller_memcached","msg":"ImageStreamTag resource not found.
 ```
 
-Using controller-runtime's split client means that read operations (gets and lists) are read from a cache, and write operations are written directly to the API server. To populate the cache for reads, controller-runtime initiates a `list` and then a `watch` even when your operator is only attempting to `get` a single resource. The above scenario occurs when the operator does not have an (RBAC)[rbac] permission to `watch` the resource. The solution is to grant permission in the `config/rbac/role.yaml` file.
+Using controller-runtime's split client means that read operations (gets and lists) are read from a cache, and write operations are written directly to the API server. To populate the cache for reads, controller-runtime initiates a `list` and then a `watch` even when your operator is only attempting to `get` a single resource. The above scenario occurs when the operator does not have an [RBAC][rbac] permission to `watch` the resource. The solution is to add an RBAC directive to generate a `config/rbac/role.yaml` with `watch` privileges:
 
-In rare cases, it also could be that the particular resource does not implement the `watch` verb. In this case, it is necessary to use the [client.Reader][client.Reader] instead of the default split client. The manager's `GetAPIReader()` function can be used to get this reader.
-
-**Example**
+```go
+// +kubebuilder:rbac:groups=some.group.com,resources=myresources,verbs=watch
+```
 
-Here is an example that demonstrates how to use a `client.Reader` when a resource does not implement the `watch` verb:
+Alternatively, if the resource you're attempting to cannot be watched (like `v1.ImageStreamTag` above), you can specify that objects of this type should not be cached by adding the following to `main.go`:
 
 ```go
-
 import (
 	...
 	imagev1 "github.com/openshift/api/image/v1"
 )
 
-...
-
-// newReconciler returns a new reconcile.Reconciler
-func newReconciler(mgr manager.Manager) reconcile.Reconciler {
-	return &ReconcileMemcached{client: mgr.GetClient(), scheme: mgr.GetScheme(), APIReader: mgr.GetAPIReader() }
+var (
+	scheme = runtime.NewScheme()
+)
 
+func init() {
+	utilruntime.Must(clientgoscheme.AddToScheme(scheme))
+	// Add imagev1's scheme.
+	utilruntime.Must(imagev1.AddToScheme(scheme))
 }
 
-...
-
-// ReconcileMemcached reconciles a Memcached object
-type ReconcileMemcached struct {
-	// TODO: Clarify the split client
-	// This client, initialized using mgr.Client() above, is a split client
-	// that reads objects from the cache and writes to the apiserver
-	client client.Client
-	scheme *runtime.Scheme
-	APIReader client.Reader // the APIReader  will not use the cache
+func main() {
+	mgr, err := ctrl.NewManager(ctrl.GetConfigOrDie(), ctrl.Options{
+		Scheme:        scheme,
+		// Specify that ImageStreamTag's should not be cached.
+		ClientBuilder: manager.NewClientBuilder().WithUncached(&imagev1.ImageStreamTag{}),
+	})
 }
+```
 
-...
-func (r *ReconcileMemcached) Reconcile(request reconcile.Request) (reconcile.Result, error) {
-
-	// Get the ImageStreamTag from OCP API which has not the WATCH verb.
-	img := &imagev1.ImageStreamTag{}
-	err = r.APIReader.Get(context.TODO(), types.NamespacedName{Name: fmt.Sprintf("%s:%s", "example-name", "example-tag"), img)
-	if err != nil {
-		if errors.IsNotFound(err) {
-			reqLogger.Info("resource not found")
-		} else {
-			reqLogger.Error(err, "unexpected error")
-		}
-	}
+Then in your controller file, add an RBAC directive to generate a `config/rbac/role.yaml` with `get` privileges:
+
+```go
+// +kubebuilder:rbac:groups=image.openshift.io,resources=imagestreamtags,verbs=get
 ```
 
+Now run `make manifests` to update your `role.yaml`.
+
+
 ## I keep hitting errors like "is forbidden: cannot set blockOwnerDeletion if an ownerReference refers to a resource you can't set finalizers on:", how do I fix this?
 
 If you are facing this issue, it means that the operator is missing the required RBAC permissions to update finalizers on the APIs it manages. This permission is necessary if the [OwnerReferencesPermissionEnforcement][owner-references-permission-enforcement] plugin is enabled in your cluster.
 
-For Helm and Ansible operators, this permission is configured by default. However for Go operators, it may be necessary to add this permission yourself.
-
-In Go operators, RBAC permissions are configured via [RBAC markers][rbac-markers], which are used to generate and update the manifest files present in `config/rbac/`. Add the following marker line on your controller's `Reconcile()` method:
+For Helm and Ansible operators, this permission is configured by default. However for Go operators, it may be necessary to add this permission yourself
+by adding an RBAC directive to generate a `config/rbac/role.yaml` with `update` privileges on your CR's finalizers:
 
 ```go
 // +kubebuilder:rbac:groups=cache.example.com,resources=memcacheds/finalizers,verbs=update
 ```
 
-To update `config/rbac/role.yaml` after changing the markers, run `make manifests`. 
+Now run `make manifests` to update your `role.yaml`.
 
 
 [kube-apiserver_options]: https://kubernetes.io/docs/reference/command-line-tools-reference/kube-apiserver/#options
