feat: Nautobot operator #1425

abhimanyu003 · 2025-11-20T14:34:16Z

Summary
This PR enhances the Nautobot operator so it can read Nautobot credentials from a referenced Secret and load device-type data from one or more ConfigMaps.

What this change does

Reads the Nautobot API token (or other keys) from the Secret referenced in the custom resource.
Loads device-type definitions from one or more ConfigMaps specified in the custom resource.
Supports multiple device-type references.

How it works

Deploy the operator to the cluster.
Create a Nautobot custom resource (example YAML below).
The operator reads the referenced Secret and ConfigMap and sync the device-type data.

Usage example

apiVersion: sync.rax.io/v1alpha1
kind: Nautobot
metadata:
  name: nautobot-sample
spec:
  deviceTypeRef:
    - configMapSelector:
        name: device-types
        namespace: nautobot
      name: device-types
  nautobotSecretRef:
    key: NAUTOBOT_SUPERUSER_API_TOKEN
    name: nautobot-env
    namespace: default
  syncIntervalSeconds: 5

PS

You can provide multiple deviceTypeRef entries to load device types from several ConfigMaps.
If needed, update the ConfigMap and Secret references in the custom resource to point to the correct resources in your cluster.

Rough Diagram

cardoe

Overall the change is good but too big to really review line by line or file by file. Let's rebase this and get it running in the dev environment and see it in action.

How do we define the CRD? From an object or by writing the YAML? I think we'll need to update the deployment docs around this going forward as well.

neutron's docs state that start-time needs to be defined. Increase the number of workers as well.

When neutron starts up it is cleaning up OVN and it might take some extra time to be ready so increase the amount of time.

This was pinned only for macOS testing of the code base and not an actual runtime dependency so remove it to avoid version conflicts in the actual deployed code.

If we are able to read the physical_network from the port binding information then we should do that over looking it up. Uses: https://review.opendev.org/c/openstack/ironic/+/964570

…dmins

…dbc149df

…andlers

Switched to using more of a two part build in the containers to install everything in the build layer and then copy it into the runtime container to shrink them further. Switch to using uv exclusively to make it consistent with the build tooling we use. Add the OpenStack constraint file to ensure we do not upgrade to too new of a version when installing additional dependencies.

The version of sushy that our current version of Ironic (2025.2) depends on and is included in our container has sushy-oem-idrac included in it and the Ironic code base will use it over sushy-oem-idrac. So there is no point in installing this.

…9629a4692

…3+9629a4692

…9629a4692

…629a4692

abhimanyu003 added 10 commits November 17, 2025 19:04

feat: adding device type sync using config map and remove git

0a67367

fix: remove git repo water

f97f9fc

add: status report to operator manifest

1bf414f

add: response body to logs

290981d

add: deviceTypes - manufacturers and powerPortTemplate

b3440bc

fix: lint fix

03b6fa7

Merge branch 'main' into nautobotOperator

f5cdaac

fix: lint fix

150d761

fix: lint fix

140ba63

fix: simply function

cf9b373

cardoe reviewed Nov 25, 2025

View reviewed changes

abhimanyu003 added 19 commits November 27, 2025 16:45

fix: renaming rax to nautobotop

1238b31

feat: adding build-nautobotop for building image

1d120a3

fix: lint fix add new line at the end of file

45a836b

fix: updating helm files to .tpl

2a39cc6

fix: lint fix updating .yaml to .tpl

c748513

fix: removing test-connection.yaml

a8b325c

fix: updating to operator-sdk

3dd558b

fix: updating to operator-sdk

dff021c

fix: lint fix

d7229c8

fix: readme license and typo fix

465b3a1

fix: typo and build file

6286145

fix: updating manifests

108a0da

feat: adding org opencontainers labels

177e982

fix: new line lint fix

b9fffae

fix: removing .devcontainer and github workflow

c09e0d8

lint: go formatting update

b133346

lint: new line fix

431c346

ci: updating github helm chart

9aa9c71

fix: dir path update

3cd52cf

cardoe and others added 30 commits November 29, 2025 14:52

fix(neutron): increase workers and set start-time

f9c31d5

neutron's docs state that start-time needs to be defined. Increase the number of workers as well.

fix(ironic): increase the number of workers

398e035

fix(nova): bump the number of workers

5f601af

fix(neutron): increase startup time for neutron

ad66cdb

When neutron starts up it is cleaning up OVN and it might take some extra time to be ready so increase the amount of time.

fix(ironic): fix issue with image downloading without deep image inspect

ce08d7e

chore(cinder): remove unnecessary depend

9e15c1f

This was pinned only for macOS testing of the code base and not an actual runtime dependency so remove it to avoid version conflicts in the actual deployed code.

chore(deps): update dependency python-keystoneclient to v5.7.0

9942169

fix(neutron): read physical_network from port binding if able

fad7bca

If we are able to read the physical_network from the port binding information then we should do that over looking it up. Uses: https://review.opendev.org/c/openstack/ironic/+/964570

feat(openstack-svc-users): Adds new automation user role for tenant a…

0bd788b

…dmins

chore(deps): update actions/checkout action to v6

5e4f1ed

chore(deps): update actions/setup-python digest to 83679a8

4b447b1

chore(deps): update helm release openstack-helm/ironic to v2025.2.3+2…

04d2cb7

…dbc149df

sync Ironic portgroups as LAG interfaces to Nautobot via Oslo event h…

3c0ac34

…andlers

chore(deps): lock file maintenance

e256097

chore(deps): update helm release sealed-secrets to v2.17.9

8c9c79a

chore(deps): update docker/metadata-action digest to c299e40

cf7c3a2

chore(deps): update crate-ci/typos action to v1.40.0

32d1168

chore(deps): update dependency diskimage-builder to v3.40.0

07b3193

chore(deps): update helm release openstack-helm/octavia to v2025.2.6+…

308c3f4

…9629a4692

chore(deps): update dependency ansible-runner to v2.4.2

ffe35cd

chore(deps): update dependency openstacksdk to v4.8.0

e8de2fe

chore(deps): update dependency pytest to v9

df1c477

chore(deps): update helm release openstack-helm/placement to v2025.2.…

ad6cb17

…3+9629a4692

chore(deps): update helm release openstack-helm/horizon to v2025.2.2+…

173e136

…9629a4692

chore(deps): update helm release openstack-helm/glance to v2025.2.5+9…

79b0c61

…629a4692

chore(deps): update dependency openstack.cloud to v2.5.0

0880e25

chore(deps): update dependency ironic-python-agent-builder to v6.2.0

cf53826

Merge branch 'main' into nautobotOperator

313f2f4

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

feat: Nautobot operator #1425

feat: Nautobot operator #1425

Uh oh!

abhimanyu003 commented Nov 20, 2025 •

edited

Loading

Uh oh!

cardoe left a comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

feat: Nautobot operator #1425

Are you sure you want to change the base?

feat: Nautobot operator #1425

Uh oh!

Conversation

abhimanyu003 commented Nov 20, 2025 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

How it works

Usage example

PS

Rough Diagram

Uh oh!

cardoe left a comment

Choose a reason for hiding this comment

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

6 participants

abhimanyu003 commented Nov 20, 2025 •

edited

Loading