From 5818366c3c7bdb072bdd7aec60e3276553c461c7 Mon Sep 17 00:00:00 2001 From: Francesco Pantano Date: Sat, 2 Dec 2023 07:30:01 +0100 Subject: [PATCH] Add list of glanceAPI support This change aligns the openstack-operator with the work done in the glance-operator to support the deployment of an arbitrary number of glanceAPI(s). The logic has been improved to support the new CRD and the Glance reconcile logic has been revisited as well. Signed-off-by: Francesco Pantano --- ....openstack.org_openstackcontrolplanes.yaml | 427 +++++++++--------- .../v1beta1/openstackcontrolplane_types.go | 2 +- apis/core/v1beta1/zz_generated.deepcopy.go | 8 +- apis/go.mod | 2 + apis/go.sum | 4 +- ....openstack.org_openstackcontrolplanes.yaml | 427 +++++++++--------- ...nstack-operator.clusterserviceversion.yaml | 4 +- .../core_v1beta1_openstackcontrolplane.yaml | 8 +- ..._openstackcontrolplane_collapsed_cell.yaml | 8 +- ..._v1beta1_openstackcontrolplane_galera.yaml | 8 +- ...penstackcontrolplane_galera_3replicas.yaml | 8 +- ...controlplane_galera_network_isolation.yaml | 37 +- ...ne_galera_network_isolation_3replicas.yaml | 37 +- ...enstackcontrolplane_network_isolation.yaml | 37 +- ...ckcontrolplane_network_isolation_ceph.yaml | 35 +- pkg/openstack/glance.go | 110 +++-- .../common/assert-sample-deployment.yaml | 5 +- .../collapsed/01-assert-collapsed-cell.yaml | 5 +- .../01-assert-galera-3replicas.yaml | 5 +- .../tests/galera-basic/01-assert-galera.yaml | 5 +- 20 files changed, 634 insertions(+), 548 deletions(-) diff --git a/apis/bases/core.openstack.org_openstackcontrolplanes.yaml b/apis/bases/core.openstack.org_openstackcontrolplanes.yaml index 74f7876db..4474044c0 100644 --- a/apis/bases/core.openstack.org_openstackcontrolplanes.yaml +++ b/apis/bases/core.openstack.org_openstackcontrolplanes.yaml @@ -3555,25 +3555,85 @@ spec: type: object glance: properties: - apiOverride: - properties: - route: - properties: - metadata: - properties: - annotations: - additionalProperties: + apiOverrides: + additionalProperties: + properties: + route: + properties: + metadata: + properties: + annotations: + additionalProperties: + type: string + type: object + labels: + additionalProperties: + type: string + type: object + type: object + spec: + properties: + alternateBackends: + items: + properties: + kind: + enum: + - Service + - "" + type: string + name: + type: string + weight: + format: int32 + maximum: 256 + minimum: 0 + type: integer + type: object + maxItems: 3 + type: array + host: + maxLength: 253 + pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ type: string - type: object - labels: - additionalProperties: + path: + pattern: ^/ type: string - type: object - type: object - spec: - properties: - alternateBackends: - items: + port: + properties: + targetPort: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + required: + - targetPort + type: object + subdomain: + maxLength: 253 + pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ + type: string + tls: + properties: + caCertificate: + type: string + certificate: + type: string + destinationCACertificate: + type: string + insecureEdgeTerminationPolicy: + type: string + key: + type: string + termination: + enum: + - edge + - reencrypt + - passthrough + type: string + required: + - termination + type: object + to: properties: kind: enum: @@ -3588,78 +3648,20 @@ spec: minimum: 0 type: integer type: object - maxItems: 3 - type: array - host: - maxLength: 253 - pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ - type: string - path: - pattern: ^/ - type: string - port: - properties: - targetPort: - anyOf: - - type: integer - - type: string - x-kubernetes-int-or-string: true - required: - - targetPort - type: object - subdomain: - maxLength: 253 - pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ - type: string - tls: - properties: - caCertificate: - type: string - certificate: - type: string - destinationCACertificate: - type: string - insecureEdgeTerminationPolicy: - type: string - key: - type: string - termination: - enum: - - edge - - reencrypt - - passthrough - type: string - required: - - termination - type: object - to: - properties: - kind: - enum: - - Service - - "" - type: string - name: - type: string - weight: - format: int32 - maximum: 256 - minimum: 0 - type: integer - type: object - wildcardPolicy: - enum: - - None - - Subdomain - - "" - type: string - type: object - type: object - tls: - properties: - secretName: - type: string - type: object + wildcardPolicy: + enum: + - None + - Subdomain + - "" + type: string + type: object + type: object + tls: + properties: + secretName: + type: string + type: object + type: object type: object enabled: default: true @@ -4444,137 +4446,143 @@ spec: - extraVol type: object type: array - glanceAPI: - properties: - containerImage: - type: string - customServiceConfig: - type: string - customServiceConfigSecrets: - items: - type: string - type: array - debug: - properties: - service: - default: false - type: boolean - type: object - networkAttachments: - items: + glanceAPIs: + additionalProperties: + properties: + containerImage: type: string - type: array - nodeSelector: - additionalProperties: + customServiceConfig: type: string - type: object - override: - properties: - service: - additionalProperties: - properties: - endpointURL: - type: string - metadata: - properties: - annotations: - additionalProperties: + customServiceConfigSecrets: + items: + type: string + type: array + debug: + properties: + service: + default: false + type: boolean + type: object + networkAttachments: + items: + type: string + type: array + nodeSelector: + additionalProperties: + type: string + type: object + override: + properties: + service: + additionalProperties: + properties: + endpointURL: + type: string + metadata: + properties: + annotations: + additionalProperties: + type: string + type: object + labels: + additionalProperties: + type: string + type: object + type: object + spec: + properties: + externalName: type: string - type: object - labels: - additionalProperties: + externalTrafficPolicy: type: string - type: object - type: object - spec: - properties: - externalName: - type: string - externalTrafficPolicy: - type: string - internalTrafficPolicy: - type: string - ipFamilyPolicy: - type: string - loadBalancerClass: - type: string - loadBalancerSourceRanges: - items: + internalTrafficPolicy: type: string - type: array - sessionAffinity: - type: string - sessionAffinityConfig: - properties: - clientIP: - properties: - timeoutSeconds: - format: int32 - type: integer - type: object - type: object - type: - type: string - type: object + ipFamilyPolicy: + type: string + loadBalancerClass: + type: string + loadBalancerSourceRanges: + items: + type: string + type: array + sessionAffinity: + type: string + sessionAffinityConfig: + properties: + clientIP: + properties: + timeoutSeconds: + format: int32 + type: integer + type: object + type: object + type: + type: string + type: object + type: object type: object - type: object - type: object - pvc: - type: string - replicas: - default: 1 - format: int32 - maximum: 32 - minimum: 0 - type: integer - resources: - properties: - claims: - items: - properties: - name: - type: string - required: + type: object + pvc: + type: string + replicas: + default: 1 + format: int32 + maximum: 32 + minimum: 0 + type: integer + resources: + properties: + claims: + items: + properties: + name: + type: string + required: + - name + type: object + type: array + x-kubernetes-list-map-keys: - name + x-kubernetes-list-type: map + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true type: object - type: array - x-kubernetes-list-map-keys: - - name - x-kubernetes-list-type: map - limits: - additionalProperties: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - type: object - requests: - additionalProperties: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - type: object - type: object - storageClass: - type: string - storageRequest: - type: string - type: - default: split - enum: - - split - - single - type: string - required: - - containerImage - - storageRequest + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + type: object + storageClass: + type: string + storageRequest: + type: string + type: + default: split + enum: + - split + - single + - edge + type: string + required: + - containerImage + - storageRequest + type: object type: object imageCacheSize: default: "" type: string + keystoneEndpoint: + default: "" + type: string nodeSelector: additionalProperties: type: string @@ -4626,8 +4634,9 @@ spec: required: - containerImage - databaseInstance - - glanceAPI + - glanceAPIs - imageCacheSize + - keystoneEndpoint - secret - storageRequest type: object diff --git a/apis/core/v1beta1/openstackcontrolplane_types.go b/apis/core/v1beta1/openstackcontrolplane_types.go index 75d2510f5..5fb99367c 100644 --- a/apis/core/v1beta1/openstackcontrolplane_types.go +++ b/apis/core/v1beta1/openstackcontrolplane_types.go @@ -297,7 +297,7 @@ type GlanceSection struct { // +kubebuilder:validation:Optional // +operator-sdk:csv:customresourcedefinitions:type=spec // APIOverride, provides the ability to override the generated manifest of several child resources. - APIOverride Override `json:"apiOverride,omitempty"` + APIOverride map[string]Override `json:"apiOverrides,omitempty"` } // CinderSection defines the desired state of Cinder service diff --git a/apis/core/v1beta1/zz_generated.deepcopy.go b/apis/core/v1beta1/zz_generated.deepcopy.go index 57d8f4643..d2f048834 100644 --- a/apis/core/v1beta1/zz_generated.deepcopy.go +++ b/apis/core/v1beta1/zz_generated.deepcopy.go @@ -126,7 +126,13 @@ func (in *GaleraSection) DeepCopy() *GaleraSection { func (in *GlanceSection) DeepCopyInto(out *GlanceSection) { *out = *in in.Template.DeepCopyInto(&out.Template) - in.APIOverride.DeepCopyInto(&out.APIOverride) + if in.APIOverride != nil { + in, out := &in.APIOverride, &out.APIOverride + *out = make(map[string]Override, len(*in)) + for key, val := range *in { + (*out)[key] = *val.DeepCopy() + } + } } // DeepCopy is an autogenerated deepcopy function, copying the receiver, creating a new GlanceSection. diff --git a/apis/go.mod b/apis/go.mod index 3bb255ec4..8704106a6 100644 --- a/apis/go.mod +++ b/apis/go.mod @@ -113,3 +113,5 @@ replace github.com/openshift/api => github.com/openshift/api v0.0.0-202304141430 // Bump golang.org/x/net to avoid Rapid Reset CVE replace golang.org/x/net => golang.org/x/net v0.18.0 //allow-merging + +replace github.com/openstack-k8s-operators/glance-operator/api => github.com/fmount/glance-operator/api v0.1.2-0.20231213104653-3598c3d1fad3 diff --git a/apis/go.sum b/apis/go.sum index 12c78e9da..b3ce3c2dd 100644 --- a/apis/go.sum +++ b/apis/go.sum @@ -33,6 +33,8 @@ github.com/evanphx/json-patch v5.6.0+incompatible h1:jBYDEEiFBPxA0v50tFdvOzQQTCv github.com/evanphx/json-patch/v5 v5.6.0 h1:b91NhWfaz02IuVxO9faSllyAtNXHMPkC5J8sJCLunww= github.com/evanphx/json-patch/v5 v5.6.0/go.mod h1:G79N1coSVB93tBe7j6PhzjmR3/2VvlbKOFpnXhI9Bw4= github.com/flowstack/go-jsonschema v0.1.1/go.mod h1:yL7fNggx1o8rm9RlgXv7hTBWxdBM0rVwpMwimd3F3N0= +github.com/fmount/glance-operator/api v0.1.2-0.20231213104653-3598c3d1fad3 h1:oXyuT+SGYiJ0FsOgf9x7qcrlgzY+OzMlq3lQdJHwqhI= +github.com/fmount/glance-operator/api v0.1.2-0.20231213104653-3598c3d1fad3/go.mod h1:KNJ9X/3Svh/AuU+pVkJW6yAyTP9LdcIFsluEPlNhWa8= github.com/fsnotify/fsnotify v1.6.0 h1:n+5WquG0fcWoWp6xPWfHdbskMCQaFnG6PfBrh1Ky4HY= github.com/fsnotify/fsnotify v1.6.0/go.mod h1:sl3t1tCWJFWoRz9R8WJCbQihKKwmorjAbSClcnxKAGw= github.com/ghodss/yaml v1.0.0/go.mod h1:4dBDuWmgqj2HViK6kFavaiC9ZROes6MMH2rRYeMEF04= @@ -136,8 +138,6 @@ github.com/openstack-k8s-operators/cinder-operator/api v0.3.1-0.20231208230042-a github.com/openstack-k8s-operators/cinder-operator/api v0.3.1-0.20231208230042-a3f120021b62/go.mod h1:aa0sajD3CR9Em6tn28o6lRRdY42Qsy5iQaEGKxzJrNg= github.com/openstack-k8s-operators/designate-operator/api v0.0.0-20231205132751-b5000faad819 h1:QyKf2ifup+JTMth0lbufMjR3daAMKP71PeODqzWMG6g= github.com/openstack-k8s-operators/designate-operator/api v0.0.0-20231205132751-b5000faad819/go.mod h1:Wn+GO3Kddf7C5wM2vLNo2Ub1KRmy6qCuTwdyJlxXUuc= -github.com/openstack-k8s-operators/glance-operator/api v0.3.1-0.20231211221509-70df3a214fda h1:ob0lT9En7rlTd3DzaABAGIuvbtY7qCTpCb0QBRBClXE= -github.com/openstack-k8s-operators/glance-operator/api v0.3.1-0.20231211221509-70df3a214fda/go.mod h1:clURAsYt8FW9NK/b25Toi5A9sMLT3mkMufqIjWQu8Rs= github.com/openstack-k8s-operators/heat-operator/api v0.3.1-0.20231212061843-87c824741b45 h1:cv2dIYZlb5RMaMpwm7kW2ImbtXHSrVgwfzyBWmKHDQ0= github.com/openstack-k8s-operators/heat-operator/api v0.3.1-0.20231212061843-87c824741b45/go.mod h1:EbUoaC7FbvC/B3cZhLt1XGYBauNTB67+I5cdypoEpgc= github.com/openstack-k8s-operators/horizon-operator/api v0.3.1-0.20231212041209-95729f0f09ae h1:9sIHGpiQpgBHhSn/0xpT/TZOF4Ms48lCEcPUMDTj2xw= diff --git a/config/crd/bases/core.openstack.org_openstackcontrolplanes.yaml b/config/crd/bases/core.openstack.org_openstackcontrolplanes.yaml index 74f7876db..4474044c0 100644 --- a/config/crd/bases/core.openstack.org_openstackcontrolplanes.yaml +++ b/config/crd/bases/core.openstack.org_openstackcontrolplanes.yaml @@ -3555,25 +3555,85 @@ spec: type: object glance: properties: - apiOverride: - properties: - route: - properties: - metadata: - properties: - annotations: - additionalProperties: + apiOverrides: + additionalProperties: + properties: + route: + properties: + metadata: + properties: + annotations: + additionalProperties: + type: string + type: object + labels: + additionalProperties: + type: string + type: object + type: object + spec: + properties: + alternateBackends: + items: + properties: + kind: + enum: + - Service + - "" + type: string + name: + type: string + weight: + format: int32 + maximum: 256 + minimum: 0 + type: integer + type: object + maxItems: 3 + type: array + host: + maxLength: 253 + pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ type: string - type: object - labels: - additionalProperties: + path: + pattern: ^/ type: string - type: object - type: object - spec: - properties: - alternateBackends: - items: + port: + properties: + targetPort: + anyOf: + - type: integer + - type: string + x-kubernetes-int-or-string: true + required: + - targetPort + type: object + subdomain: + maxLength: 253 + pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ + type: string + tls: + properties: + caCertificate: + type: string + certificate: + type: string + destinationCACertificate: + type: string + insecureEdgeTerminationPolicy: + type: string + key: + type: string + termination: + enum: + - edge + - reencrypt + - passthrough + type: string + required: + - termination + type: object + to: properties: kind: enum: @@ -3588,78 +3648,20 @@ spec: minimum: 0 type: integer type: object - maxItems: 3 - type: array - host: - maxLength: 253 - pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ - type: string - path: - pattern: ^/ - type: string - port: - properties: - targetPort: - anyOf: - - type: integer - - type: string - x-kubernetes-int-or-string: true - required: - - targetPort - type: object - subdomain: - maxLength: 253 - pattern: ^([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9])(\.([a-zA-Z0-9]|[a-zA-Z0-9][a-zA-Z0-9\-]{0,61}[a-zA-Z0-9]))*$ - type: string - tls: - properties: - caCertificate: - type: string - certificate: - type: string - destinationCACertificate: - type: string - insecureEdgeTerminationPolicy: - type: string - key: - type: string - termination: - enum: - - edge - - reencrypt - - passthrough - type: string - required: - - termination - type: object - to: - properties: - kind: - enum: - - Service - - "" - type: string - name: - type: string - weight: - format: int32 - maximum: 256 - minimum: 0 - type: integer - type: object - wildcardPolicy: - enum: - - None - - Subdomain - - "" - type: string - type: object - type: object - tls: - properties: - secretName: - type: string - type: object + wildcardPolicy: + enum: + - None + - Subdomain + - "" + type: string + type: object + type: object + tls: + properties: + secretName: + type: string + type: object + type: object type: object enabled: default: true @@ -4444,137 +4446,143 @@ spec: - extraVol type: object type: array - glanceAPI: - properties: - containerImage: - type: string - customServiceConfig: - type: string - customServiceConfigSecrets: - items: - type: string - type: array - debug: - properties: - service: - default: false - type: boolean - type: object - networkAttachments: - items: + glanceAPIs: + additionalProperties: + properties: + containerImage: type: string - type: array - nodeSelector: - additionalProperties: + customServiceConfig: type: string - type: object - override: - properties: - service: - additionalProperties: - properties: - endpointURL: - type: string - metadata: - properties: - annotations: - additionalProperties: + customServiceConfigSecrets: + items: + type: string + type: array + debug: + properties: + service: + default: false + type: boolean + type: object + networkAttachments: + items: + type: string + type: array + nodeSelector: + additionalProperties: + type: string + type: object + override: + properties: + service: + additionalProperties: + properties: + endpointURL: + type: string + metadata: + properties: + annotations: + additionalProperties: + type: string + type: object + labels: + additionalProperties: + type: string + type: object + type: object + spec: + properties: + externalName: type: string - type: object - labels: - additionalProperties: + externalTrafficPolicy: type: string - type: object - type: object - spec: - properties: - externalName: - type: string - externalTrafficPolicy: - type: string - internalTrafficPolicy: - type: string - ipFamilyPolicy: - type: string - loadBalancerClass: - type: string - loadBalancerSourceRanges: - items: + internalTrafficPolicy: type: string - type: array - sessionAffinity: - type: string - sessionAffinityConfig: - properties: - clientIP: - properties: - timeoutSeconds: - format: int32 - type: integer - type: object - type: object - type: - type: string - type: object + ipFamilyPolicy: + type: string + loadBalancerClass: + type: string + loadBalancerSourceRanges: + items: + type: string + type: array + sessionAffinity: + type: string + sessionAffinityConfig: + properties: + clientIP: + properties: + timeoutSeconds: + format: int32 + type: integer + type: object + type: object + type: + type: string + type: object + type: object type: object - type: object - type: object - pvc: - type: string - replicas: - default: 1 - format: int32 - maximum: 32 - minimum: 0 - type: integer - resources: - properties: - claims: - items: - properties: - name: - type: string - required: + type: object + pvc: + type: string + replicas: + default: 1 + format: int32 + maximum: 32 + minimum: 0 + type: integer + resources: + properties: + claims: + items: + properties: + name: + type: string + required: + - name + type: object + type: array + x-kubernetes-list-map-keys: - name + x-kubernetes-list-type: map + limits: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true type: object - type: array - x-kubernetes-list-map-keys: - - name - x-kubernetes-list-type: map - limits: - additionalProperties: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - type: object - requests: - additionalProperties: - anyOf: - - type: integer - - type: string - pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ - x-kubernetes-int-or-string: true - type: object - type: object - storageClass: - type: string - storageRequest: - type: string - type: - default: split - enum: - - split - - single - type: string - required: - - containerImage - - storageRequest + requests: + additionalProperties: + anyOf: + - type: integer + - type: string + pattern: ^(\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))(([KMGTPE]i)|[numkMGTPE]|([eE](\+|-)?(([0-9]+(\.[0-9]*)?)|(\.[0-9]+))))?$ + x-kubernetes-int-or-string: true + type: object + type: object + storageClass: + type: string + storageRequest: + type: string + type: + default: split + enum: + - split + - single + - edge + type: string + required: + - containerImage + - storageRequest + type: object type: object imageCacheSize: default: "" type: string + keystoneEndpoint: + default: "" + type: string nodeSelector: additionalProperties: type: string @@ -4626,8 +4634,9 @@ spec: required: - containerImage - databaseInstance - - glanceAPI + - glanceAPIs - imageCacheSize + - keystoneEndpoint - secret - storageRequest type: object diff --git a/config/manifests/bases/openstack-operator.clusterserviceversion.yaml b/config/manifests/bases/openstack-operator.clusterserviceversion.yaml index 7bf65d02d..56da6db2d 100644 --- a/config/manifests/bases/openstack-operator.clusterserviceversion.yaml +++ b/config/manifests/bases/openstack-operator.clusterserviceversion.yaml @@ -109,10 +109,10 @@ spec: - description: APIOverride, provides the ability to override the generated manifest of several child resources. displayName: APIOverride - path: glance.apiOverride + path: glance.apiOverrides - description: TLS - overrides tls parameters for public endpoint displayName: TLS - path: glance.apiOverride.tls + path: glance.apiOverrides.tls - description: Enabled - Whether Glance service should be deployed and managed displayName: Enabled path: glance.enabled diff --git a/config/samples/core_v1beta1_openstackcontrolplane.yaml b/config/samples/core_v1beta1_openstackcontrolplane.yaml index 2b2ea38c4..ebd5dc94b 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane.yaml @@ -64,9 +64,11 @@ spec: databaseInstance: openstack storageClass: "" storageRequest: 10G - glanceAPI: - type: single - replicas: 1 + keystoneEndpoint: default + glanceAPIs: + default: + type: single + replicas: 1 cinder: template: databaseInstance: openstack diff --git a/config/samples/core_v1beta1_openstackcontrolplane_collapsed_cell.yaml b/config/samples/core_v1beta1_openstackcontrolplane_collapsed_cell.yaml index c133079b9..2fcf93199 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_collapsed_cell.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_collapsed_cell.yaml @@ -48,9 +48,11 @@ spec: databaseInstance: openstack storageClass: "" storageRequest: 10G - glanceAPI: - replicas: 1 - type: single + keystoneEndpoint: default + glanceAPIs: + default: + replicas: 1 + type: single cinder: template: databaseInstance: openstack diff --git a/config/samples/core_v1beta1_openstackcontrolplane_galera.yaml b/config/samples/core_v1beta1_openstackcontrolplane_galera.yaml index 9861494b7..9f711d192 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_galera.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_galera.yaml @@ -56,9 +56,11 @@ spec: databaseInstance: openstack storageClass: "" storageRequest: 10G - glanceAPI: - type: single - replicas: 1 + keystoneEndpoint: default + glanceAPIs: + default: + type: single + replicas: 1 cinder: template: databaseInstance: openstack diff --git a/config/samples/core_v1beta1_openstackcontrolplane_galera_3replicas.yaml b/config/samples/core_v1beta1_openstackcontrolplane_galera_3replicas.yaml index e7259cddf..1adb65e28 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_galera_3replicas.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_galera_3replicas.yaml @@ -56,9 +56,11 @@ spec: storageClass: "" storageRequest: 10G secret: osp-secret - glanceAPI: - replicas: 1 - type: single + keystoneEndpoint: default + glanceAPIs: + default: + replicas: 1 + type: single cinder: template: databaseInstance: openstack diff --git a/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation.yaml b/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation.yaml index d70d21567..ccc4216f3 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation.yaml @@ -56,28 +56,31 @@ spec: - storage replicas: 0 # backend needs to be configured glance: - apiOverride: - route: {} + apiOverrides: + default: + route: {} template: databaseInstance: openstack storageClass: "" storageRequest: 10G secret: osp-secret - glanceAPI: - type: single - replicas: 1 - override: - service: - internal: - metadata: - annotations: - metallb.universe.tf/address-pool: internalapi - metallb.universe.tf/allow-shared-ip: internalapi - metallb.universe.tf/loadBalancerIPs: 172.17.0.80 - spec: - type: LoadBalancer - networkAttachments: - - storage + keystoneEndpoint: default + glanceAPIs: + default: + type: single + replicas: 1 + override: + service: + internal: + metadata: + annotations: + metallb.universe.tf/address-pool: internalapi + metallb.universe.tf/allow-shared-ip: internalapi + metallb.universe.tf/loadBalancerIPs: 172.17.0.80 + spec: + type: LoadBalancer + networkAttachments: + - storage keystone: apiOverride: route: {} diff --git a/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation_3replicas.yaml b/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation_3replicas.yaml index 80d0e8b8c..a6817e8ff 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation_3replicas.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_galera_network_isolation_3replicas.yaml @@ -78,28 +78,31 @@ spec: barbicanKeystoneListener: replicas: 1 glance: - apiOverride: - route: {} + apiOverrides: + default: + route: {} template: databaseInstance: openstack storageClass: "" storageRequest: 10G secret: osp-secret - glanceAPI: - type: single - replicas: 1 - override: - service: - internal: - metadata: - annotations: - metallb.universe.tf/address-pool: internalapi - metallb.universe.tf/allow-shared-ip: internalapi - metallb.universe.tf/loadBalancerIPs: 172.17.0.80 - spec: - type: LoadBalancer - networkAttachments: - - storage + keystoneEndpoint: default + glanceAPIs: + default: + type: single + replicas: 1 + override: + service: + internal: + metadata: + annotations: + metallb.universe.tf/address-pool: internalapi + metallb.universe.tf/allow-shared-ip: internalapi + metallb.universe.tf/loadBalancerIPs: 172.17.0.80 + spec: + type: LoadBalancer + networkAttachments: + - storage keystone: apiOverride: route: {} diff --git a/config/samples/core_v1beta1_openstackcontrolplane_network_isolation.yaml b/config/samples/core_v1beta1_openstackcontrolplane_network_isolation.yaml index f2661f259..5d7657ce8 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_network_isolation.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_network_isolation.yaml @@ -78,28 +78,31 @@ spec: barbicanKeystoneListener: replicas: 1 glance: - apiOverride: - route: {} + apiOverrides: + default: + route: {} template: databaseInstance: openstack storageClass: "" storageRequest: 10G secret: osp-secret - glanceAPI: - type: single - replicas: 1 - override: - service: - internal: - metadata: - annotations: - metallb.universe.tf/address-pool: internalapi - metallb.universe.tf/allow-shared-ip: internalapi - metallb.universe.tf/loadBalancerIPs: 172.17.0.80 - spec: - type: LoadBalancer - networkAttachments: - - storage + keystoneEndpoint: default + glanceAPIs: + default: + type: single + replicas: 1 + override: + service: + internal: + metadata: + annotations: + metallb.universe.tf/address-pool: internalapi + metallb.universe.tf/allow-shared-ip: internalapi + metallb.universe.tf/loadBalancerIPs: 172.17.0.80 + spec: + type: LoadBalancer + networkAttachments: + - storage keystone: apiOverride: route: {} diff --git a/config/samples/core_v1beta1_openstackcontrolplane_network_isolation_ceph.yaml b/config/samples/core_v1beta1_openstackcontrolplane_network_isolation_ceph.yaml index 046cdc7eb..fbca56701 100644 --- a/config/samples/core_v1beta1_openstackcontrolplane_network_isolation_ceph.yaml +++ b/config/samples/core_v1beta1_openstackcontrolplane_network_isolation_ceph.yaml @@ -107,8 +107,9 @@ spec: - storage replicas: 0 # backend needs to be configured glance: - apiOverride: - route: {} + apiOverrides: + default: + route: {} template: databaseInstance: openstack customServiceConfig: | @@ -124,20 +125,22 @@ spec: storageClass: "" storageRequest: 10G secret: osp-secret - glanceAPI: - replicas: 1 - override: - service: - internal: - metadata: - annotations: - metallb.universe.tf/address-pool: internalapi - metallb.universe.tf/allow-shared-ip: internalapi - metallb.universe.tf/loadBalancerIPs: 172.17.0.80 - spec: - type: LoadBalancer - networkAttachments: - - storage + keystoneEndpoint: default + glanceAPIs: + default: + replicas: 1 + override: + service: + internal: + metadata: + annotations: + metallb.universe.tf/address-pool: internalapi + metallb.universe.tf/allow-shared-ip: internalapi + metallb.universe.tf/loadBalancerIPs: 172.17.0.80 + spec: + type: LoadBalancer + networkAttachments: + - storage keystone: apiOverride: route: {} diff --git a/pkg/openstack/glance.go b/pkg/openstack/glance.go index c4b18f720..3cd7394c8 100644 --- a/pkg/openstack/glance.go +++ b/pkg/openstack/glance.go @@ -4,20 +4,24 @@ import ( "context" "fmt" - "github.com/openstack-k8s-operators/lib-common/modules/common" + glancev1 "github.com/openstack-k8s-operators/glance-operator/api/v1beta1" "github.com/openstack-k8s-operators/lib-common/modules/common/condition" "github.com/openstack-k8s-operators/lib-common/modules/common/helper" "github.com/openstack-k8s-operators/lib-common/modules/common/service" - - "sigs.k8s.io/controller-runtime/pkg/controller/controllerutil" - "sigs.k8s.io/controller-runtime/pkg/reconcile" - - glancev1 "github.com/openstack-k8s-operators/glance-operator/api/v1beta1" + "github.com/openstack-k8s-operators/lib-common/modules/common/util" corev1beta1 "github.com/openstack-k8s-operators/openstack-operator/apis/core/v1beta1" k8s_errors "k8s.io/apimachinery/pkg/api/errors" metav1 "k8s.io/apimachinery/pkg/apis/meta/v1" "k8s.io/apimachinery/pkg/types" ctrl "sigs.k8s.io/controller-runtime" + "sigs.k8s.io/controller-runtime/pkg/controller/controllerutil" + "sigs.k8s.io/controller-runtime/pkg/reconcile" +) + +const ( + // svcSelector is used as selector to get the list of "Services" associated + // to a specific glanceAPI instance + svcSelector = "glanceAPI" ) // ReconcileGlance - @@ -41,16 +45,23 @@ func ReconcileGlance(ctx context.Context, instance *corev1beta1.OpenStackControl } // add selector to service overrides - for _, endpointType := range []service.Endpoint{service.EndpointPublic, service.EndpointInternal} { - if instance.Spec.Glance.Template.GlanceAPI.Override.Service == nil { - instance.Spec.Glance.Template.GlanceAPI.Override.Service = map[service.Endpoint]service.RoutedOverrideSpec{} + for name, glanceAPI := range instance.Spec.Glance.Template.GlanceAPIs { + var currentAPI glancev1.GlanceAPITemplate + for _, endpointType := range []service.Endpoint{service.EndpointPublic, service.EndpointInternal} { + currentAPI = instance.Spec.Glance.Template.GlanceAPIs[name] + if glanceAPI.Override.Service == nil { + currentAPI.Override.Service = map[service.Endpoint]service.RoutedOverrideSpec{} + } + currentAPI.Override.Service[endpointType] = AddServiceComponentLabel( + currentAPI.Override.Service[endpointType], glance.Name) + instance.Spec.Glance.Template.GlanceAPIs[name] = currentAPI + var svcOverride service.RoutedOverrideSpec + svcOverride = currentAPI.Override.Service[endpointType] + apiFilter := fmt.Sprintf("%s-%s", glance.Name, name) + svcOverride.EmbeddedLabelsAnnotations.Labels = util.MergeStringMaps( + svcOverride.EmbeddedLabelsAnnotations.Labels, map[string]string{svcSelector: apiFilter}) } - instance.Spec.Glance.Template.GlanceAPI.Override.Service[endpointType] = - AddServiceComponentLabel( - instance.Spec.Manila.Template.ManilaAPI.Override.Service[endpointType], - glance.Name) } - // When component services got created check if there is the need to create a route if err := helper.GetClient().Get(ctx, types.NamespacedName{Name: "glance", Namespace: instance.Namespace}, glance); err != nil { if !k8s_errors.IsNotFound(err) { @@ -59,38 +70,63 @@ func ReconcileGlance(ctx context.Context, instance *corev1beta1.OpenStackControl } if glance.Status.Conditions.IsTrue(glancev1.GlanceAPIReadyCondition) { - svcs, err := service.GetServicesListWithLabel( - ctx, - helper, - instance.Namespace, - map[string]string{common.AppSelector: glance.Name}, - ) - if err != nil { - return ctrl.Result{}, err + // initialize the main APIOverride struct + if instance.Spec.Glance.APIOverride == nil { + instance.Spec.Glance.APIOverride = map[string]corev1beta1.Override{} } var ctrlResult reconcile.Result - instance.Spec.Glance.Template.GlanceAPI.Override.Service, ctrlResult, err = EnsureEndpointConfig( - ctx, - instance, - helper, - glance, - svcs, - instance.Spec.Glance.Template.GlanceAPI.Override.Service, - instance.Spec.Glance.APIOverride, - corev1beta1.OpenStackControlPlaneExposeGlanceReadyCondition, - ) - if err != nil { - return ctrlResult, err - } else if (ctrlResult != ctrl.Result{}) { - return ctrlResult, nil + var changed bool = false + for name, glanceAPI := range instance.Spec.Glance.Template.GlanceAPIs { + if _, ok := instance.Spec.Glance.APIOverride[name]; ok { + instance.Spec.Glance.APIOverride[name] = corev1beta1.Override{} + } + if instance.Spec.Glance.Template.KeystoneEndpoint == name { + // Retrieve the services by Label and filter on glanceAPI: for + // each instance we should get **only** the associated `SVCs` + // and not the whole list. As per the Glance design doc we know + // that a given instance name is made in the form: " + // ", so we build the filter accordingly + // to resolve the label as - + apiFilter := fmt.Sprintf("%s-%s", glance.Name, name) + svcs, err := service.GetServicesListWithLabel( + ctx, + helper, + instance.Namespace, + map[string]string{svcSelector: apiFilter}, + ) + if err != nil { + return ctrl.Result{}, err + } + _, ctrlResult, err = EnsureEndpointConfig( + ctx, + instance, + helper, + glance, + svcs, + glanceAPI.Override.Service, + instance.Spec.Glance.APIOverride[name], + corev1beta1.OpenStackControlPlaneExposeGlanceReadyCondition, + ) + if err != nil { + return ctrlResult, err + } + // let's keep track of changes for any instance, but return + // only when the iteration on the whole APIList is over + if (ctrlResult != ctrl.Result{}) { + changed = true + } + } + } + // if one of the API changed, return + if changed { + return ctrl.Result{}, nil } } Log.Info("Reconciling Glance", "Glance.Namespace", instance.Namespace, "Glance.Name", "glance") op, err := controllerutil.CreateOrPatch(ctx, helper.GetClient(), glance, func() error { instance.Spec.Glance.Template.DeepCopyInto(&glance.Spec) - if glance.Spec.Secret == "" { glance.Spec.Secret = instance.Spec.Secret } diff --git a/tests/kuttl/common/assert-sample-deployment.yaml b/tests/kuttl/common/assert-sample-deployment.yaml index d07c7cdec..817cd6ae9 100644 --- a/tests/kuttl/common/assert-sample-deployment.yaml +++ b/tests/kuttl/common/assert-sample-deployment.yaml @@ -38,8 +38,9 @@ spec: databaseInstance: openstack storageRequest: 10G secret: osp-secret - glanceAPI: - replicas: 1 + glanceAPIs: + default: + replicas: 1 cinder: template: databaseInstance: openstack diff --git a/tests/kuttl/tests/collapsed/01-assert-collapsed-cell.yaml b/tests/kuttl/tests/collapsed/01-assert-collapsed-cell.yaml index e3524aeae..bb63846d0 100644 --- a/tests/kuttl/tests/collapsed/01-assert-collapsed-cell.yaml +++ b/tests/kuttl/tests/collapsed/01-assert-collapsed-cell.yaml @@ -28,8 +28,9 @@ spec: template: databaseInstance: openstack storageRequest: 10G - glanceAPI: - replicas: 1 + glanceAPIs: + default: + replicas: 1 cinder: template: databaseInstance: openstack diff --git a/tests/kuttl/tests/galera-3replicas/01-assert-galera-3replicas.yaml b/tests/kuttl/tests/galera-3replicas/01-assert-galera-3replicas.yaml index 97cde1f25..218a3de93 100644 --- a/tests/kuttl/tests/galera-3replicas/01-assert-galera-3replicas.yaml +++ b/tests/kuttl/tests/galera-3replicas/01-assert-galera-3replicas.yaml @@ -37,8 +37,9 @@ spec: template: databaseInstance: openstack storageRequest: 10G - glanceAPI: - replicas: 1 + glanceAPIs: + default: + replicas: 1 cinder: template: databaseInstance: openstack diff --git a/tests/kuttl/tests/galera-basic/01-assert-galera.yaml b/tests/kuttl/tests/galera-basic/01-assert-galera.yaml index 13e74e923..1429299d2 100644 --- a/tests/kuttl/tests/galera-basic/01-assert-galera.yaml +++ b/tests/kuttl/tests/galera-basic/01-assert-galera.yaml @@ -37,8 +37,9 @@ spec: template: databaseInstance: openstack storageRequest: 10G - glanceAPI: - replicas: 1 + glanceAPIs: + default: + replicas: 1 cinder: template: databaseInstance: openstack