Add feature gate WatchListClient for v1.30 #47261
There are no files selected for viewing
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change | ||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| @@ -0,0 +1,18 @@ | ||||||||||||||||||||||
| --- | ||||||||||||||||||||||
| title: WatchListClient | ||||||||||||||||||||||
| content_type: feature_gate | ||||||||||||||||||||||
| _build: | ||||||||||||||||||||||
| list: never | ||||||||||||||||||||||
| render: false | ||||||||||||||||||||||
|
|
||||||||||||||||||||||
| stages: | ||||||||||||||||||||||
| - stage: beta | ||||||||||||||||||||||
| defaultValue: false | ||||||||||||||||||||||
| fromVersion: "1.30" | ||||||||||||||||||||||
| --- | ||||||||||||||||||||||
| This enables an API client (inlcuding some control plane components) to | ||||||||||||||||||||||
| request a stream of data rather than an entire list. The behavior change | ||||||||||||||||||||||
| is implemented in the client-go library and it is opaque to the client. | ||||||||||||||||||||||
|
Comment on lines
+13
to
+15
There was a problem hiding this comment. Typo in “inlcuding“. Revised suggestion:
Suggested change
There was a problem hiding this comment. Em ... why we want to touch the authorization topic in this feature gate? There was a problem hiding this comment. I checked and actually the control plane should be able to fall back to list, so no authz changes are needed. I edited the suggestion. |
||||||||||||||||||||||
| To enable this optimization, you need to enable `WatchList` feature on | ||||||||||||||||||||||
| the API server. | ||||||||||||||||||||||
|
|
||||||||||||||||||||||
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The
WatchListClientis defined for a client (the client-go library) and not for the server.It enables the client to request a stream of data rather than an entire list. The streamed data is then transformed into a list response on the client side.
Another way to think about this feature is that it essentially replaces standard LIST calls with WATCH calls under the hood.
Individual list items are delivered via the WATCH call and transformed into a list response on the client.
This process is completely opaque to the client requesting a list.
For the client, it doesn’t matter whether the library issues a LIST or WATCH request/verb.
The client only cares about the result, which will be a list response.
Also, for the
WatchListClientto work, the server must support API Streaming, which is controlled by a server-sideWatchListfeature flag. If the server doesn't support the API Streaming and theWatchListClientis enabled then the client falls back/issues to a standard LIST request.Uh oh!
There was an error while loading. Please reload this page.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Will this feature gate be configurable on API clients such as: the kubelet, kube-controller-manager, the scheduler?
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
So if I'm interacting with a Kubernetes cluster using pure RESTful API, and I'm developing
a client tool in Python or Rust, this feature gate doesn't matter at all. But ...
it is listed in the command line options for
kube-apiserver,kube-controller-manager,kube-scheduler,kube-proxyandkubelet. Right?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
I assume you can configure some of those components to enable or not enable this feature when acting as a client of the API server.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
yes, kubernetes will expose the
WatchListClientfeature gate via command line options for some/all control plane components. Initially we were planning to enable theWatchListClientby default only forKCM.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
yes, that is correct, in that case, the
WatchListfeature gate on the server-side matters.