📖 Proposal for two new AWS self-managed cluster feature gates #5276
Conversation
|
Adding the "do-not-merge/release-note-label-needed" label because no release-note block was detected, please follow our release note process to remove it. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
k8s-ci-robot
added
kind/documentation
|
[APPROVALNOTIFIER] This PR is NOT APPROVED This pull-request has been approved by: The full list of commands accepted by this bot can be found here.
Needs approval from an approver in each of these files:
Approvers can indicate their approval by writing |
k8s-ci-robot
added
needs-priority
needs-ok-to-test
|
Hi @mzazrivec. Thanks for your PR. I'm waiting for a kubernetes-sigs member to verify that this patch is reasonable to test. If it is, they should reply with Once the patch is verified, the new status will be reflected by the I understand the commands that are listed here. Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. |
mzazrivec
changed the title
k8s-ci-robot
added
the
do-not-merge/work-in-progress
|
|
||
| ## Proposal | ||
|
|
||
| - Introduce AWSMachine feature gate which would turn on and off the AWSMachineReconciler. The feature gate would be on by default. |
There was a problem hiding this comment.
| - Introduce AWSMachine feature gate which would turn on and off the AWSMachineReconciler. The feature gate would be on by default. | |
| - Introduce AWSMachine feature gate which would turn on and off the AWSMachineReconciler. The feature gate would be enabled by default. |
| ## Proposal | ||
|
|
||
| - Introduce AWSMachine feature gate which would turn on and off the AWSMachineReconciler. The feature gate would be on by default. | ||
| - Introduce AWSCluster feature gate which would turn on and off the AWSClusterReconciler. The feature gate would be on by default. |
There was a problem hiding this comment.
| - Introduce AWSCluster feature gate which would turn on and off the AWSClusterReconciler. The feature gate would be on by default. | |
| - Introduce AWSCluster feature gate which would turn on and off the AWSClusterReconciler. The feature gate would be enabled by default. |
|
|
||
| - change any of the existing feature gates or their semantics | ||
|
|
||
| ## Proposal |
There was a problem hiding this comment.
Please explain; where is changes will happen in the code , ex ; a new featureGate with name: selfManagedAWSCluster , default: true will be defined here as well as where is the changes will happen in the manager main to enable?disable those features
Please explain the dependency between those 2 new featureGates; you cannot have the AWSMachine while the AWSCluster is disabled.
How do you will handle this case if endUser enabled the AWSMachine without AWSCluster ?
Also explain what possible risks if the endUser disable those FeatureGates while the AWSCluster OR AWSMachine CRs are reconciling. Might be good to mentioned that endUser can enable the AWSCluster with MachinePool while disable the AWSMachine feature.
| - Introduce AWSCluster feature gate which would turn on and off the AWSClusterReconciler. The feature gate would be on by default. | ||
|
|
||
| ### User Stories | ||
|
|
There was a problem hiding this comment.
another user stories is as endUser I want to use EKS only or ROSA only OR EKS & ROSA without enabling AWS self-managed clusters
|
|
||
| ## Alternatives | ||
|
|
||
| The alternative here would be simply not to implement the two new feature gates and rely just on namespace separation. |
There was a problem hiding this comment.
Another alternative is user can use labels to let the controllers only watch certain CRs that have the labels. However, this not completely satisfy the case as the controllers is still enabled.
|
|
||
| ## Upgrade Strategy | ||
|
|
||
| CAPA upgrades should not be affected. Existing deployments will not notice anything different, because the two new feature gates will be on by default (current behavior). |
There was a problem hiding this comment.
Please explain that with upgrade user should expect to see 2 new featureGates has been added to the CAPA deployment with default is true
|
|
||
| 1. Ability to enable / disable feature gates for AWSCluster and AWSMachine controllers. | ||
| 2. Both feature gates would be on by default. | ||
|
|
There was a problem hiding this comment.
We need to inform the endUser in case enabling the AWSMachine feature gate without enabling the AWSCluster feature gate.
mzazrivec
force-pushed
the
proposal_for_granularity_switch
branch
from
b217164 to
a6f6503
Compare
|
please include emojis in the PR title so the verify job can pass |
mzazrivec
changed the title
k8s-ci-robot
removed
the
do-not-merge/work-in-progress
|
/ok-to-test |
k8s-ci-robot
added
ok-to-test
| title: Feature gates for AWSCluster and AWSMachine | ||
| authors: | ||
| - "@mzazrivec" | ||
| reviewers: |
|
Will give this a proper review, but we agreed in the Jan 20, 2025 community call to set lazy consensus for 1 week. If no major objections to this, we'll merge on Jan 27, 2025. |
mzazrivec
force-pushed
the
proposal_for_granularity_switch
branch
from
a6f6503 to
4c5c448
Compare
|
|
||
| ## Motivation | ||
|
|
||
| Motivation for the two new feature gates is the option to turn on and off CAPA's ability to reconcile AWSMachine and AWSCluster resources for AWS self-managed clusters. Currently, controllers for these two resource types are always on. |
There was a problem hiding this comment.
Do you mean EKS clusters? The words "self-managed", "managed" and "unmanaged" are quite ambiguous already and I'd avoid them.
There was a problem hiding this comment.
Fair enough, fixed.
|
|
||
| Motivation for the two new feature gates is the option to turn on and off CAPA's ability to reconcile AWSMachine and AWSCluster resources for AWS self-managed clusters. Currently, controllers for these two resource types are always on. | ||
|
|
||
| The possibility to turn the respective controllers on and of becomes important in multi-tenant CAPA installations (more than one CAPA installed in a single kubernetes cluster). The two new feature gates in will help to avoid interferences and conflicts between the controllers during resource reconciliations. |
There was a problem hiding this comment.
| The possibility to turn the respective controllers on and of becomes important in multi-tenant CAPA installations (more than one CAPA installed in a single kubernetes cluster). The two new feature gates in will help to avoid interferences and conflicts between the controllers during resource reconciliations. | |
| The possibility to turn the respective controllers on and off becomes important in multi-tenant CAPA installations (more than one CAPA installed in a single kubernetes cluster). The two new feature gates will help avoid interference and conflicts between the controllers during resource reconciliations. |
|
|
||
| ## Implementation History | ||
|
|
||
| - [ ] 01/20/2025: Proposed idea in an issue or [community meeting] |
There was a problem hiding this comment.
| - [ ] 01/20/2025: Proposed idea in an issue or [community meeting] | |
| - [ ] 2025-01-20: Proposed idea in an issue or [community meeting] |
There was a problem hiding this comment.
Fixed as well, thank you.
mzazrivec
force-pushed
the
proposal_for_granularity_switch
branch
from
4c5c448 to
bcd1079
Compare
What type of PR is this?
/kind documentation
What this PR does / why we need it:
Which issue(s) this PR fixes
This proposal should be approved before #5124 can be implemented.
Special notes for your reviewer:
Checklist:
Release note: