Merge pull request #723 from fao89/varsfrom

Add AnsibleVarsFrom

Makefile

@@ -98,7 +98,8 @@ docs: manifests docs-dependencies crd-to-markdown ## Build docs
 	$(CRD_MARKDOWN) -f api/v1beta1/common.go -f api/v1beta1/openstackdataplaneservice_types.go -f api/v1beta1/openstackdataplanenodeset_types.go -f api/v1beta1/openstackdataplanedeployment_types.go -n OpenStackDataPlaneService -n OpenStackDataPlaneNodeSet -n OpenStackDataPlaneDeployment > docs/assemblies/custom_resources.md
 	bundle exec kramdoc --auto-ids docs/assemblies/custom_resources.md && rm docs/assemblies/custom_resources.md
 	sed -i "s/=== Custom/== Custom/g" docs/assemblies/custom_resources.adoc
-	cd docs; $(MAKE) html
+	cd docs; $(MAKE) html BUILD=upstream
+	cd docs; $(MAKE) html BUILD=downstream
 
 .PHONY: docs-preview
 docs-preview: docs

api/bases/dataplane.openstack.org_openstackdataplanenodesets.yaml

@@ -277,6 +277,29 @@ spec:
                         type: string
                       ansibleVars:
                         x-kubernetes-preserve-unknown-fields: true
+                      ansibleVarsFrom:
+                        items:
+                          properties:
+                            configMapRef:
+                              properties:
+                                name:
+                                  type: string
+                                optional:
+                                  type: boolean
+                              type: object
+                              x-kubernetes-map-type: atomic
+                            prefix:
+                              type: string
+                            secretRef:
+                              properties:
+                                name:
+                                  type: string
+                                optional:
+                                  type: boolean
+                              type: object
+                              x-kubernetes-map-type: atomic
+                          type: object
+                        type: array
                     type: object
                   ansibleSSHPrivateKeySecret:
                     type: string
@@ -1078,6 +1101,29 @@ spec:
                           type: string
                         ansibleVars:
                           x-kubernetes-preserve-unknown-fields: true
+                        ansibleVarsFrom:
+                          items:
+                            properties:
+                              configMapRef:
+                                properties:
+                                  name:
+                                    type: string
+                                  optional:
+                                    type: boolean
+                                type: object
+                                x-kubernetes-map-type: atomic
+                              prefix:
+                                type: string
+                              secretRef:
+                                properties:
+                                  name:
+                                    type: string
+                                  optional:
+                                    type: boolean
+                                type: object
+                                x-kubernetes-map-type: atomic
+                            type: object
+                          type: array
                       type: object
                     extraMounts:
                       items:

api/v1beta1/common.go

@@ -43,6 +43,11 @@ type AnsibleOpts struct {
 	// +kubebuilder:pruning:PreserveUnknownFields
 	// +kubebuilder:validation:Schemaless
 	AnsibleVars map[string]json.RawMessage `json:"ansibleVars,omitempty"`
+
+	// AnsibleVarsFrom is a list of sources to populate ansible variables from.
+	// Values defined by an AnsibleVars with a duplicate key take precedence.
+	// +kubebuilder:validation:Optional
+	AnsibleVarsFrom []corev1.EnvFromSource `json:"ansibleVarsFrom,omitempty"`
 }
 
 // NodeSection defines the top level attributes inherited by nodes in the CR.

config/crd/bases/dataplane.openstack.org_openstackdataplanenodesets.yaml

@@ -277,6 +277,29 @@ spec:
                         type: string
                       ansibleVars:
                         x-kubernetes-preserve-unknown-fields: true
+                      ansibleVarsFrom:
+                        items:
+                          properties:
+                            configMapRef:
+                              properties:
+                                name:
+                                  type: string
+                                optional:
+                                  type: boolean
+                              type: object
+                              x-kubernetes-map-type: atomic
+                            prefix:
+                              type: string
+                            secretRef:
+                              properties:
+                                name:
+                                  type: string
+                                optional:
+                                  type: boolean
+                              type: object
+                              x-kubernetes-map-type: atomic
+                          type: object
+                        type: array
                     type: object
                   ansibleSSHPrivateKeySecret:
                     type: string
@@ -1078,6 +1101,29 @@ spec:
                           type: string
                         ansibleVars:
                           x-kubernetes-preserve-unknown-fields: true
+                        ansibleVarsFrom:
+                          items:
+                            properties:
+                              configMapRef:
+                                properties:
+                                  name:
+                                    type: string
+                                  optional:
+                                    type: boolean
+                                type: object
+                                x-kubernetes-map-type: atomic
+                              prefix:
+                                type: string
+                              secretRef:
+                                properties:
+                                  name:
+                                    type: string
+                                  optional:
+                                    type: boolean
+                                type: object
+                                x-kubernetes-map-type: atomic
+                            type: object
+                          type: array
                       type: object
                     extraMounts:
                       items:

config/samples/dataplane_v1beta1_openstackdataplanenodeset.yaml

@@ -44,8 +44,8 @@ spec:
       ansibleVars:
          # CHANGEME -- see https://access.redhat.com/solutions/253273
          # edpm_bootstrap_command: |
-         #       subscription-manager register --username <subscription_manager_username> --password <subscription_manager_password>
-         #       podman login -u <registry_username> -p <registry_password> registry.redhat.io
+         #       subscription-manager register --username {{ subscription_manager_username }} --password {{ subscription_manager_password }}
+         #       podman login -u {{ registry_username }} -p {{ registry_password }} registry.redhat.io
          edpm_network_config_template: |
               ---
               {% set mtu_list = [ctlplane_mtu] %}

docs/assemblies/ansible.adoc

@@ -8,11 +8,65 @@ OpenStackDataPlaneServices>> section.
 Common configurations that can be enabled with `ansibleVars` are also
 documented at xref:common_configurations.adoc[Common Configurations].
 
-'''
-
-*NOTE*
-
+[NOTE]
+====
 In the case of `ansibleVars`, the value is merged with that of the value from
 the nodeTemplate. This makes it so that the entire value of `ansibleVars` from
 the nodeTemplate does not need to be reproduced for each node just to set a few
 node specific values.
+====
+
+== Importing ansible variables
+
+`ansibleVarsFrom` allows you to set ansible variables for an `OpenStackDataPlaneNodeSet` by
+referencing either a ConfigMap or a Secret. When you use `ansibleVarsFrom`, all the key-value
+pairs in the referenced ConfigMap or Secret are set as environment variables for the `OpenStackDataPlaneNodeSet`.
+You can also specify a common prefix string.
+
+.Example:
+Adding ansible variables from ConfigMap:
+
+. Create a ConfigMap containing the ansible variables
+
+    apiVersion: v1
+    kind: ConfigMap
+    metadata:
+      name: common-edpm-vars
+    data:
+      edpm_config_var1: value1
+      edpm_config_var2: value2
+
+. Update the `ansibleVarsFrom` with the ConfigMap name
+
+    ansibleVarsFrom:
+      - configMapRef:
+            name: common-edpm-vars
+
+.Example:
+Execute `subscription-manager register` from corresponding Secret
+
+. Create a Secret containing the credentials
+
+    apiVersion: v1
+    kind: Secret
+    metadata:
+      name: subscription-manager
+    data:
+      username: <base64 encoded username>
+      password: <base64 encoded password>
+
+. Update the `ansibleVarsFrom` with the Secret name, and `ansibleVars` with the variables generated from the Secret
+
+    ansibleVarsFrom:
+      - prefix: subscription_manager_
+        secretRef:
+          name: subscription-manager
+    ansibleVars:
+        edpm_bootstrap_command: |
+          subscription-manager register --username {{ subscription_manager_username }} --password {{ subscription_manager_password }}
+
++
+[NOTE]
+====
+Values defined by an ansibleVars with a duplicate key take precedence
+====

docs/assemblies/custom_resources.adoc

@@ -107,6 +107,11 @@ AnsibleOpts defines a logical grouping of Ansible related configuration options.
 | AnsibleVars for configuring ansible
 | map[string]json.RawMessage
 | false
+
+| ansibleVarsFrom
+| AnsibleVarsFrom is a list of sources to populate ansible variables from. Values defined by an AnsibleVars with a duplicate key take precedence.
+| []corev1.EnvFromSource
+| false
 |===
 
 <<custom-resources,Back to Custom Resources>>

docs/assemblies/proc_creating-a-set-of-data-plane-nodes.adoc

@@ -162,7 +162,67 @@ spec:
 ----
 +
 You can copy a sample template from https://github.com/openstack-k8s-operators/dataplane-operator/tree/main/config/samples/nic-config-samples. For information about customizing the template, see link:https://access.redhat.com/documentation/en-us/red_hat_openstack_platform/17.1/html/installing_and_managing_red_hat_openstack_platform_with_director/assembly_configuring-overcloud-networking_installing-director-on-the-undercloud#ref_network-interface-configuration-options_custom-network-interface-templates[Network interface configuration options].
+ifeval::["{build}" == "downstream"]
+. Register the operating system of the nodes that are not registered to the Red Hat Customer Portal, and enable repositories for your nodes:
++
+----
+apiVersion: v1
+kind: Secret
+metadata:
+  name: subscription-manager
+data:
+  username: <subscription_manager_username>
+  password: <subscription_manager_password>
+----
++
+* Replace `<subscription_manager_username>` with the applicable user name.
+* Replace `<subscription_manager_password>` with the applicable password.
+
++
+----
+apiVersion: v1
+kind: Secret
+metadata:
+  name: redhat-registry
+data:
+  username: <registry_username>
+  password: <registry_password>
+----
++
+* Replace `<registry_username>` with the applicable user name.
+* Replace `<registry_password>` with the applicable password.
+
++
+----
+apiVersion: dataplane.openstack.org/v1beta1
+kind: OpenStackDataPlaneNodeSet
+metadata:
+  name: openstack-edpm-ipam
+spec:
+  preProvisioned: True
+  ...
+  nodeTemplate:
+    ansible:
+      ...
+      ansibleVars:
+        edpm_bootstrap_command: |
+          subscription-manager register --username {{ subscription_manager_username }} --password {{ subscription_manager_password }}
+          subscription-manager release --set=9.2
+          subscription-manager repos --disable=*
+          subscription-manager repos --enable=rhel-9-for-x86_64-baseos-eus-rpms --enable=rhel-9-for-x86_64-appstream-eus-rpms --enable=rhel-9-for-x86_64-highavailability-eus-rpms --enable=openstack-17.1-for-rhel-9-x86_64-rpms --enable=fast-datapath-for-rhel-9-x86_64-rpms --enable=openstack-dev-preview-for-rhel-9-x86_64-rpms
+          podman login -u {{ registry_username }} -p {{ registry_password }} registry.redhat.io
+      ansibleVarsFrom:
+      - prefix: subscription_manager_
+        secretRef:
+          name: subscription-manager
+      - prefix: registry_
+        secretRef:
+          name: redhat-registry
+----
 
++
+For a complete list of the Red Hat Customer Portal registration commands, see https://access.redhat.com/solutions/253273. For information about how to log into `registry.redhat.io`, see https://access.redhat.com/RegistryAuthentication#creating-registry-service-accounts-6.
+endif::[]
 . If your nodes are bare metal, you must configure the bare metal template, see xref:con_provisioning-bare-metal-data-plane-nodes_{context}[Provisioning bare metal data plane nodes].
 
 . Optional: The sample `OpenStackDataPlaneNodeSet` CR you copied includes default node configurations under the `nodes` section. You can add additional nodes, and edit the configured values as required. For example, to add node-specific Ansible variables that customize the node, add the following configuration to your `openstack-edpm.yaml` file:

examples/base/config/varsfromname.yaml

@@ -0,0 +1,13 @@
+# This file is for teaching kustomize how to substitute ansibleVarsFrom name reference in OpenStackDataPlaneNodeSet
+nameReference:
+- kind: ConfigMap
+  version: v1
+  fieldSpecs:
+  - kind: OpenStackDataPlaneNodeSet
+    version: v1beta1
+    group: dataplane.openstack.org
+    path: spec/nodeTemplate/ansible/ansibleVarsFrom/configMapRef/name
+  - kind: OpenStackDataPlaneNodeSet
+    version: v1beta1
+    group: dataplane.openstack.org
+    path: spec/nodeTemplate/ansible/ansibleVarsFrom/secretRef/name