Make the Operator deployment HA by default (#535)

Author: thegridman

.github/workflows/k8s-matrix.yaml

@@ -35,14 +35,13 @@ jobs:
       fail-fast: false
       matrix:
         k8s:
-          - kindest/node:v1.23.4@sha256:0e34f0d0fd448aa2f2819cfd74e99fe5793a6e4938b328f657c8e3f81ee0dfb9
-          - kindest/node:v1.22.7@sha256:1dfd72d193bf7da64765fd2f2898f78663b9ba366c2aa74be1fd7498a1873166
-          - kindest/node:v1.21.10@sha256:84709f09756ba4f863769bdcabe5edafc2ada72d3c8c44d6515fc581b66b029c
-          - kindest/node:v1.20.15@sha256:393bb9096c6c4d723bb17bceb0896407d7db581532d11ea2839c80b28e5d8deb
-          - kindest/node:v1.19.16@sha256:81f552397c1e6c1f293f967ecb1344d8857613fb978f963c30e907c32f598467
-          - kindest/node:v1.18.20@sha256:e3dca5e16116d11363e31639640042a9b1bd2c90f85717a7fc66be34089a8169
-          - kindest/node:v1.17.17@sha256:e477ee64df5731aa4ef4deabbafc34e8d9a686b49178f726563598344a3898d5
-          - kindest/node:v1.16.15@sha256:64bac16b83b6adfd04ea3fbcf6c9b5b893277120f2b2cbf9f5fa3e5d4c2260cc
+          - kindest/node:v1.24.0@sha256:0866296e693efe1fed79d5e6c7af8df71fc73ae45e3679af05342239cdc5bc8e
+          - kindest/node:v1.23.6@sha256:b1fa224cc6c7ff32455e0b1fd9cbfd3d3bc87ecaa8fcb06961ed1afb3db0f9ae
+          - kindest/node:v1.22.9@sha256:8135260b959dfe320206eb36b3aeda9cffcb262f4b44cda6b33f7bb73f453105
+          - kindest/node:v1.21.12@sha256:f316b33dd88f8196379f38feb80545ef3ed44d9197dca1bfd48bcb1583210207
+          - kindest/node:v1.20.15@sha256:6f2d011dffe182bad80b85f6c00e8ca9d86b5b8922cdf433d53575c4c5212248
+          - kindest/node:v1.19.16@sha256:d9c819e8668de8d5030708e484a9fdff44d95ec4675d136ef0a0a584e587f65c
+          - kindest/node:v1.18.20@sha256:738cdc23ed4be6cc0b7ea277a2ebcc454c8373d7d8fb991a7fcdbd126188e6d7
 
     steps:
     - uses: actions/checkout@v2
@@ -104,7 +103,7 @@ jobs:
     - name: Start KinD Cluster
       shell: bash
       run: |
-        sh ./hack/kind.sh --image ${{ matrix.k8s }}
+        make kind KIND_IMAGE=${{ matrix.k8s }}
         kubectl version
         kubectl get nodes
         docker pull gcr.io/distroless/java

Makefile

@@ -236,6 +236,7 @@ override BUILD_MANIFESTS     := $(BUILD_OUTPUT)/manifests
 override BUILD_MANIFESTS_PKG := $(BUILD_OUTPUT)/coherence-operator-manifests.tar.gz
 override BUILD_PROPS         := $(BUILD_OUTPUT)/build.properties
 override BUILD_TARGETS       := $(BUILD_OUTPUT)/targets
+override SCRIPTS_DIR         := $(CURRDIR)/hack
 override TEST_LOGS_DIR       := $(BUILD_OUTPUT)/test-logs
 override TANZU_DIR           := $(BUILD_OUTPUT)/tanzu
 override TANZU_PACKAGE_DIR   := $(BUILD_OUTPUT)/tanzu/package
@@ -521,7 +522,7 @@ $(BUILD_BIN)/manager: $(BUILD_PROPS) $(GOS) $(BUILD_TARGETS)/generate $(BUILD_TA
 .PHONY: ensure-sdk
 ensure-sdk:
 	@echo "Ensuring Operator SDK is present at version $(OPERATOR_SDK_VERSION)"
-	./hack/ensure-sdk.sh $(OPERATOR_SDK_VERSION) $(OPERATOR_SDK_HOME)
+	$(SCRIPTS_DIR)/ensure-sdk.sh $(OPERATOR_SDK_VERSION) $(OPERATOR_SDK_HOME)
 
 # ----------------------------------------------------------------------------------------------------------------------
 # Internal make step that builds the Operator runner artifacts utility
@@ -647,7 +648,7 @@ docs/about/04_coherence_spec.adoc: $(API_GO_FILES)
 # ----------------------------------------------------------------------------------------------------------------------
 $(BUILD_OUTPUT)/certs:
 	@echo "Generating test keys and certs"
-	./hack/keys.sh
+	$(SCRIPTS_DIR)/keys.sh
 
 # ----------------------------------------------------------------------------------------------------------------------
 # Executes the code review targets.
@@ -779,7 +780,7 @@ run-debug-clean: reset-namespace run-debug ## run the Operator locally with Delv
 # ----------------------------------------------------------------------------------------------------------------------
 .PHONY: stop
 stop: ## kill any locally running operator process
-	./hack/kill-local.sh
+	$(SCRIPTS_DIR)/kill-local.sh
 
 # ======================================================================================================================
 # Targets related to Operator Lifecycle Manager and the Operator SDK
@@ -1244,15 +1245,16 @@ uninstall-crds: $(BUILD_TARGETS)/manifests  ## Uninstall the CRDs
 .PHONY: deploy-and-wait
 deploy-and-wait: deploy wait-for-deploy   ## Deploy the Coherence Operator and wait for the Operator Pod to be ready
 
-OPERATOR_HA ?= false
+# The Operator is deployed HA by default
+OPERATOR_HA ?= true
 
 .PHONY: deploy
 deploy: prepare-deploy create-namespace kustomize   ## Deploy the Coherence Operator
 ifneq (,$(WATCH_NAMESPACE))
 	cd $(BUILD_DEPLOY)/manager && $(KUSTOMIZE) edit add configmap env-vars --from-literal WATCH_NAMESPACE=$(WATCH_NAMESPACE)
 endif
-ifeq (true,$(OPERATOR_HA))
-	cd $(BUILD_DEPLOY)/manager && $(KUSTOMIZE) edit add patch --kind Deployment --name controller-manager --path ha-patch.yaml
+ifeq (false,$(OPERATOR_HA))
+	cd $(BUILD_DEPLOY)/manager && $(KUSTOMIZE) edit add patch --kind Deployment --name controller-manager --path single-replica-patch.yaml
 endif
 	kubectl -n $(OPERATOR_NAMESPACE) create secret generic coherence-webhook-server-cert || true
 	$(KUSTOMIZE) build $(BUILD_DEPLOY)/default | kubectl apply -f -
@@ -1466,26 +1468,25 @@ KIND_IMAGE   ?= "kindest/node:v1.24.0@sha256:0866296e693efe1fed79d5e6c7af8df71fc
 # ----------------------------------------------------------------------------------------------------------------------
 .PHONY: kind
 kind:   ## Run a default KinD cluster
-	./hack/kind.sh --wait 10m --image $(KIND_IMAGE)
-	./hack/kind-label-node.sh
+	kind create cluster --name $(KIND_CLUSTER) --wait 10m --config $(SCRIPTS_DIR)/kind-config.yaml --image $(KIND_IMAGE)
+	$(SCRIPTS_DIR)/kind-label-node.sh
 
 # ----------------------------------------------------------------------------------------------------------------------
 # Start a Kind cluster
 # ----------------------------------------------------------------------------------------------------------------------
 .PHONY: kind-single-worker
-kind-single-worker: export KIND_CONFIG=./hack/kind-config-single.yaml
 kind-single-worker:   ## Run a KinD cluster with a single worker node
-	./hack/kind.sh --wait 10m --image $(KIND_IMAGE)
-	./hack/kind-label-node.sh
+	kind create cluster --name $(KIND_CLUSTER) --wait 10m --config $(SCRIPTS_DIR)/kind-config-single.yaml --image $(KIND_IMAGE)
+	$(SCRIPTS_DIR)/kind-label-node.sh
 
 # ----------------------------------------------------------------------------------------------------------------------
 # Start a Kind cluster with Calico
 # ----------------------------------------------------------------------------------------------------------------------
 .PHONY: kind-calico
-kind-calico: export KIND_CONFIG=./hack/kind-config-calico.yaml
+kind-calico: export KIND_CONFIG=$(SCRIPTS_DIR)/kind-config-calico.yaml
 kind-calico:   ## Run a KinD cluster with Calico
-	./hack/kind.sh --image $(KIND_IMAGE)
-	./hack/kind-label-node.sh
+	kind create cluster --name $(KIND_CLUSTER) --wait 10m --config $(SCRIPTS_DIR)/kind-config-calico.yaml --image $(KIND_IMAGE)
+	$(SCRIPTS_DIR)/kind-label-node.sh
 	curl -sL https://docs.projectcalico.org/manifests/calico.yaml | kubectl apply -f -
 	kubectl -n kube-system set env daemonset/calico-node FELIX_IGNORELOOSERPF=true
 	kubectl -n kube-system wait --for condition=ready --timeout=300s -l k8s-app=calico-node pod
@@ -1568,7 +1569,7 @@ uninstall-cert-manager: ## Uninstall Cert manager from the Kubernetes cluster
 TANZU = $(shell which tanzu)
 .PHONY: get-tanzu
 get-tanzu: $(BUILD_PROPS)
-	./hack/get-tanzu.sh "$(TANZU_VERSION)" "$(TOOLS_DIRECTORY)"
+	$(SCRIPTS_DIR)/get-tanzu.sh "$(TANZU_VERSION)" "$(TOOLS_DIRECTORY)"
 
 .PHONY: tanzu-create-cluster
 tanzu-create-cluster: ## Create a local Tanzu unmanaged cluster named "$(KIND_CLUSTER)" (default "operator")
@@ -2083,7 +2084,7 @@ uninstall-istio: get-istio ## Uninstall Istio from k8s
 # ----------------------------------------------------------------------------------------------------------------------
 .PHONY: get-istio
 get-istio: $(BUILD_PROPS)
-	./hack/get-istio-latest.sh "$(ISTIO_VERSION)" "$(TOOLS_DIRECTORY)"
+	$(SCRIPTS_DIR)/get-istio-latest.sh "$(ISTIO_VERSION)" "$(TOOLS_DIRECTORY)"
 	$(eval ISTIO_HOME := $(shell find $(TOOLS_DIRECTORY) -maxdepth 1 -type d | grep istio))
 	@echo "Istio installed at $(ISTIO_HOME)"
 

api/v1/zz_generated.deepcopy.go

@@ -14,7 +14,7 @@ spec:
   selector:
     matchLabels:
       control-plane: coherence
-  replicas: 1
+  replicas: 3
   template:
     metadata:
       labels:
@@ -82,3 +82,24 @@ spec:
           defaultMode: 420
           secretName: coherence-webhook-server-cert
           optional: true
+      affinity:
+        podAntiAffinity:
+          preferredDuringSchedulingIgnoredDuringExecution:
+            - podAffinityTerm:
+                topologyKey: "topology.kubernetes.io/zone"
+                labelSelector:
+                  matchLabels:
+                    control-plane: coherence
+                    app.kubernetes.io/name: coherence-operator
+                    app.kubernetes.io/instance: coherence-operator-manager
+                    app.kubernetes.io/version: "3.2.7"
+              weight: 50
+            - podAffinityTerm:
+                topologyKey: "oci.oraclecloud.com/fault-domain"
+                labelSelector:
+                  matchLabels:
+                    control-plane: coherence
+                    app.kubernetes.io/name: coherence-operator
+                    app.kubernetes.io/instance: coherence-operator-manager
+                    app.kubernetes.io/version: "3.2.7"
+              weight: 1

config/manager/manager.yaml

@@ -0,0 +1,3 @@
+- op: replace
+  path: /spec/replicas
+  value: 3

config/manager/single-replica-patch.yaml

@@ -58,7 +58,7 @@ spec:
   - name: Coherence Operator
     url: https://oracle.github.io/coherence-operator/docs/latest
   maturity: alpha
-  minKubeVersion: "1.16"
+  minKubeVersion: "1.18"
   maintainers:
     - name: Jonathan Knight
       email: [email protected]

config/manifests/bases/coherence-operator.clusterserviceversion.yaml

@@ -17,20 +17,33 @@ easily be installed into a Kubernetes cluster.
 The prerequisites apply to all installation methods.
 
 * Access to Oracle Coherence Operator images.
-* Access to a Kubernetes v1.16.0+ cluster. The Operator test pipeline is run using Kubernetes versions v1.16 upto v1.23
+* Access to a Kubernetes v1.18.0+ cluster. The Operator test pipeline is run using Kubernetes versions v1.18 upto v1.24
 * A Coherence application image using Coherence version 12.2.1.3 or later. Note that some functionality (e.g. metrics) is only
 available in Coherence 12.2.1.4 and later.
 
 NOTE: ARM Support: As of version 3.2.0, the Coherence Operator is build as a multi-architecture image that supports running in Kubernetes on both Linux/amd64 and Linux/arm64. The prerequisite is that the Coherence application image used has been built to support ARM.
 
-There are a few ways to install the Coherence Operator documented below:
+There are a number of ways to install the Coherence Operator documented below:
 
 * <<manifest,Simple installation using Kubectl>>
 * <<helm,Install the Helm chart>>
 * <<kubectl,Kubectl with Kustomize>>
 * <<tanzu,VMWare Tanzu Package (kapp-controller)>>
 
-NOTE: Installing the Coherence Operator using the methods above will create a number of `ClusterRole` RBAC resources.
+=== High Availability
+
+The Coherence Operator runs in HA mode by default. The `Deployment` created by the installation will have a replica count of 3.
+In reduced capacity Kubernetes clusters, for example, local laptop development and test, the replica count can be reduced. It is recommended to leave the default of 3 for production environments.
+Instructions on how to change the replica count for the different install methods are included below.
+
+The Coherence Operator runs a REST server that the Coherence cluster members will query to discover the site and rack names that should be used by Coherence. If the Coherence Operator is not running when a Coherence Pod starts, then the Coherence member in that Pod will be unable to properly configure its site and rack names, possibly leading to data distribution that is not safely distributed over sites. In production, and in Kubernetes clusters that are spread over multiple availability zones and failure domains, it is important to run the Operator in HA mode.
+
+The Operator yaml files and Helm chart include a default Pod scheduling configuration that uses anti-affinity to distribute the three replicas onto nodes that have different `topology.kubernetes.io/zone` labels. This label is a standard Kubernetes label used to describe the zone the node is running in, and is typically applied by Kubernetes cloud vendors.
+
+
+=== Notes
+
+NOTE: Installing the Coherence Operator using the methods below will create a number of `ClusterRole` RBAC resources.
 Some corporate security policies do not like to give cluster wide roles to third-party products.
 To help in this situation the operator can be installed without cluster roles, but with caveats
 (see the <<docs/installation/09_RBAC.adoc,RBAC>> documentation) for more details.
@@ -56,7 +69,8 @@ If no image is specified in the `Coherence` yaml, then the default Coherence ima
 
 * `{coherence-image}` - The default Coherence image.
 
-If using a private image registry then these images will all need to be pushed to that registry for the Operator to work.
+If using a private image registry then these images will all need to be pushed to that registry for the Operator to work. The default Coherence image may be omitted if all Coherence applications will use custom Coherence images.
+
 
 [#manifest]
 == Default Install with Kubectl
@@ -89,6 +103,21 @@ Then download with:
 kubectl apply -f https://github.com/oracle/coherence-operator/releases/download/${VERSION}/coherence-operator.yaml
 ----
 
+=== Change the Operator Replica Count
+
+When installing with single manifest yaml file, the replica count can be changed by editing the yaml file itself to change the occurrence of `replicas: 3` in the manifest yaml to `replicas: 1`
+
+For example, this could be done using `sed`
+[source,bash]
+----
+sed -i -e 's/replicas: 3/replicas: 1/g' coherence-operator.yaml
+----
+
+Or on MacOS, where `sed` is slightly different:
+[source,bash]
+----
+sed -i '' -e 's/replicas: 3/replicas: 1/g' coherence-operator.yaml
+----
 
 
 == Installing With Helm
@@ -108,7 +137,7 @@ helm repo add coherence https://oracle.github.io/coherence-operator/charts
 helm repo update
 ----
 
-NOTE: To avoid confusion, the URL `https://oracle.github.io/coherence-operator/charts` is a Helm repo, it is not a web site you open in a browser. You may think we shouldn't have to say this, but you'd be surprised.
+NOTE: To avoid confusion, the URL `https://oracle.github.io/coherence-operator/charts` is a Helm repo, it is not a website you open in a browser. You may think we shouldn't have to say this, but you'd be surprised.
 
 === Install the Coherence Operator Helm chart
 
@@ -126,6 +155,20 @@ helm install  \
 <1> where `<namespace>` is the namespace that the Coherence Operator will be installed into.
 <2> `coherence` is the name of this Helm installation.
 
+=== Change the Operator Replica Count
+
+To change the replica count when installing the Operator using Helm, the `replicas` value can be set.
+
+For example, to change the replica count from 3 to 1, the `--set replicas=1` option can be used.
+[source,bash]
+----
+helm install  \
+    --namespace <namespace> \
+    --set replicas=1
+    coherence \
+    coherence/coherence-operator
+----
+
 
 ==== Uninstall the Coherence Operator Helm chart
 
@@ -213,7 +256,7 @@ helm install  \
 ----
 <1> the `private-repo-values.yaml` values fle will be used by Helm to inject the settings into the Operator deployment
 
-==== Add Pull Secrets Using --Set
+==== Add Pull Secrets Using --set
 
 Although the `imagePullSecrets` field in the values file is an array of `name` to value pairs it is possible to set
 these values with the normal Helm `--set` parameter.
@@ -273,6 +316,19 @@ NOTE: All the commands below are run from a console in the `manifests/` director
 If you have Kustomize installed (or can install it from https://github.com/kubernetes-sigs/kustomize) you can use
 Kustomize to configure the yaml and install.
 
+==== Change the Operator Replica Count
+
+To change the replica count using Kustomize a patch file needs to be applied.
+The Operator manifests include a patch file, named `manager/single-replica-patch.yaml`, that changes the replica count from 3 to 1. This patch can be applied with the following Kustomize command.
+
+[source,bash]
+----
+cd ./manager && kustomize edit add patch \
+  --kind Deployment --name controller-manager \
+  --path single-replica-patch.yaml
+----
+
+
 ==== Set Image Names
 If you need to use different iamge names from the defaults `kustomize` can be used to specify different names:
 

docs/installation/01_installation.adoc

@@ -42,10 +42,9 @@ You MUST ensure that the CRD manifests match the version of the Operator being i
 
 * Download the manifests and unpack them.
 
-* In the directory that the .tar.gz file was unpacked to will be two versions of the CRDs.
-The directory `crd/` contains the `apiextensions.k8s.io/v1` version, which must be installed into Kubernetes cluster from k8s v1.16.x and above. The `crd-v1beta1/` directory contains the `apiextensions.k8s.io/v1beta1` version, which must be installed into Kubernetes cluster of k8s v1.15.x and below.
+* In the directory that the .tar.gz file the was unpacked the `crd/` directory will the Coherence CRD.
+The CRD can be installed with kubectl
 
-The required CRD can be installed with kubectl
 [source,bash]
 ----
 kubectl create -f crd/coherence.oracle.com_coherence.yaml

docs/installation/09_RBAC.adoc

@@ -56,7 +56,7 @@ behaviour. The scaling policy has three possible values:
 |`ParallelUpSafeDown`
 |This is the default scaling policy.
 With this policy when scaling up `Pods` are added in parallel (the same as using the `Parallel` `podManagementPolicy`
-in a https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.16/#statefulsetspec-v1-apps[StatefulSet]) and
+in a https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.24/#statefulsetspec-v1-apps[StatefulSet]) and
 when scaling down `Pods` are removed one at a time (the same as the `OrderedReady` `podManagementPolicy` for a
 StatefulSet). When scaling down a check is done to ensure that the members of the cluster have a safe StatusHA value
 before a `Pod` is removed (i.e. none of the Coherence cache services have an endangered status).
@@ -65,7 +65,7 @@ adding members, but offers safe, albeit slower,  scaling down as `Pods` are remo
 
 |`Parallel`
 |With this policy when scaling up `Pods` are added in parallel (the same as using the `Parallel` `podManagementPolicy`
-in a https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.16/#statefulsetspec-v1-apps[StatefulSet]).
+in a https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.24/#statefulsetspec-v1-apps[StatefulSet]).
 With this policy no StatusHA check is performed either when scaling up or when scaling down.
 This policy allows faster start and scaling times but at the cost of no data safety; it is ideal for deployments that are
 storage disabled.

docs/scaling/010_overview.adoc

@@ -14,7 +14,7 @@ Heap dumps can be very useful when debugging but generating and downloading a he
 
 == Ephemeral Containers
 
-Ephemeral containers were introduced in k8s v1.16 and at the time of writing are still in alpha.
+Ephemeral containers were introduced in Kubernetes v1.16 and moved to beta in v1.23.
 Ephemeral containers is a feature gate that must be enabled for your cluster.
 If you have the `EphemeralContainers` feature gate enabled, then obtaining a heap dump is not so difficult.