Adds cudn docs by stevsmit · Pull Request #85165 · openshift/openshift-docs

stevsmit · 2024-11-19T19:27:58Z

Version(s):
4.18+

Issue:
https://issues.redhat.com/browse/OSDOCS-12699

PR incorporates bug fixes from the following:

Link to docs preview:
https://85165--ocpdocs-pr.netlify.app/openshift-enterprise/latest/networking/multiple_networks/primary_networks/about-user-defined-networks.html

QE review:

QE has approved this change.

Additional information:

ocpdocs-previewbot · 2024-11-19T19:38:21Z

🤖 Fri Feb 14 13:59:09 - Prow CI generated the docs preview:

https://85165--ocpdocs-pr.netlify.app/
https://85165--ocpdocs-pr.netlify.app/openshift-enterprise/latest/networking/multiple_networks/primary_networks/about-user-defined-networks.html

tssurya · 2024-11-22T11:08:40Z

/assign @ormergi

ormergi

Hi, thanks for adding these docs, please see my comments bellow and in-line ones 🙂

Regarding best practices
I think we should add text saying the ClusterUserDefiendNetwork CRD is targeted for cluster-admins.
And it should not be granted for non-admin users blindly because if used wrongly, it could result in security issues (e.g.: create CR in default namespace, connect multiple namespaces networks).
Or, in with the future Localnet support, cause disruptions or break the cluster network.

In addition, the NamespaceSelector should not point to default or openshifrt-* namespaces, similar to UDN CRD, for the same reasones.

Regarding NamespaceSelector
Note about the NamespaceSelector attribute, since its type is the standard k8s MatchLabel selector, it derive the exact behavior:
In case matchExpression is used, given the following spec:

matchExpressions:
- key: kubernetes.io/metadata.name
  operator: In
  values: ["red", "blue"]

Result in provisioning namespaces who has kubernetes.io/metadata.name=red OR kubernetes.io/metadata.name=blue labels (i.e.: one of).

In contrast, the matchLabels acts diffrently in the sense the terms are "AND"'ed, for example:
Given the following spec:

matchLables: 
- "red":""
- "blue":""

Result in provisioning namespaces who has red="" AND blue="" labels.

Should we add some text for the above or keep it implicit as the current state?

Regarding other Layer2 & Layer3 optional fields, should we add some text for it ot add reference to the table we have in UserDefienenNetwork doc?

ormergi

Thanks for the changes, I likes the explanations on the namesapce selectors :)

Please see my inline comments.

Is there best-practices doc for CUDN objects?
If so, I suggest to add text for the following topics:

CUDN targeted for admins (as in line 14
namespace-selector should not specify default or openshift-* namespace.
In addition, I think specifying empty label-selecor result in selecting all namespaces, we may need to say something about that.
@tssurya @npinaeva WDYT about the empty selector part?

ormergi

Thanks for the changes, LGTM

stevsmit · 2025-01-07T17:07:21Z

/retest

lpettyjo

Otherwise, LGTM!

maiqueb

Caught some stuff.

maiqueb

Thank you !

ormergi

Thank you, LGTM

two

openshift-ci · 2025-02-14T13:59:57Z

@stevsmit: all tests passed!

Full PR test history. Your PR dashboard.

Details

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository. I understand the commands that are listed here.

meinali566 · 2025-02-17T01:10:22Z

/lgtm

stevsmit · 2025-02-17T12:25:46Z

/cherry-pick enterprise-4.18

openshift-cherrypick-robot · 2025-02-17T12:26:35Z

@stevsmit: new pull request created: #88688

Details

In response to this:

/cherry-pick enterprise-4.18

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes-sigs/prow repository.

openshift-ci Bot added the size/L Denotes a PR that changes 100-499 lines, ignoring generated files. label Nov 19, 2024

stevsmit commented Nov 19, 2024

View reviewed changes

Comment thread modules/nw-cudn-cr.adoc Outdated

stevsmit added the branch/enterprise-4.18 label Nov 19, 2024

openshift-ci Bot assigned ormergi Nov 22, 2024

ormergi reviewed Nov 25, 2024

View reviewed changes

Comment thread modules/nw-cudn-cr.adoc

Comment thread modules/nw-cudn-cr.adoc Outdated

Comment thread modules/nw-cudn-cr.adoc Outdated

Comment thread modules/nw-cudn-cr.adoc

Comment thread modules/nw-cudn-cr.adoc Outdated

Comment thread modules/nw-cudn-cr.adoc

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from b753f00 to f02bb1a Compare December 2, 2024 18:37

ormergi reviewed Dec 4, 2024

View reviewed changes

Comment thread modules/nw-cudn-cr.adoc Outdated

Comment thread modules/nw-cudn-cr.adoc Outdated

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from f02bb1a to 3627131 Compare December 5, 2024 17:13

ormergi approved these changes Dec 5, 2024

View reviewed changes

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from 3627131 to c58dcfb Compare December 6, 2024 20:53

stevsmit added this to the Planned for 4.18 GA milestone Dec 6, 2024

ocpdocs-vale-bot reviewed Dec 6, 2024

View reviewed changes

Comment thread modules/nw-cudn-cr.adoc

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from c58dcfb to b1c5526 Compare December 12, 2024 21:15

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from b1c5526 to 38b3af2 Compare December 19, 2024 21:26

openshift-merge-robot added the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Dec 19, 2024

stevsmit force-pushed the 12599-osdocs-cudn-proc branch 2 times, most recently from 489198b to 6b938fe Compare December 20, 2024 19:05

openshift-merge-robot removed the needs-rebase Indicates a PR cannot be merged because it has merge conflicts with HEAD. label Dec 20, 2024

stevsmit closed this Jan 7, 2025

stevsmit reopened this Jan 7, 2025

stevsmit closed this Jan 9, 2025

stevsmit reopened this Jan 9, 2025

stevsmit force-pushed the 12599-osdocs-cudn-proc branch 5 times, most recently from 27262e2 to 5dc6705 Compare January 9, 2025 17:32

lpettyjo reviewed Feb 11, 2025

View reviewed changes

Comment thread modules/nw-cudn-best-practices.adoc Outdated

Comment thread modules/nw-cudn-cr.adoc

lpettyjo added peer-review-done Signifies that the peer review team has reviewed this PR and removed peer-review-in-progress Signifies that the peer review team is reviewing this PR labels Feb 11, 2025

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from af5af82 to e7935cf Compare February 12, 2025 15:08

maiqueb suggested changes Feb 12, 2025

View reviewed changes

stevsmit force-pushed the 12599-osdocs-cudn-proc branch 4 times, most recently from a27555b to d880e72 Compare February 12, 2025 20:55

maiqueb approved these changes Feb 13, 2025

View reviewed changes

ormergi reviewed Feb 13, 2025

View reviewed changes

Comment thread modules/nw-cudn-best-practices.adoc Outdated

ormergi reviewed Feb 13, 2025

View reviewed changes

Comment thread modules/nw-cudn-best-practices.adoc

stevsmit force-pushed the 12599-osdocs-cudn-proc branch 2 times, most recently from 9065f7b to 0f9ad3e Compare February 13, 2025 15:10

ormergi approved these changes Feb 13, 2025

View reviewed changes

stevsmit force-pushed the 12599-osdocs-cudn-proc branch 2 times, most recently from cc05282 to da4bcd8 Compare February 13, 2025 15:48

ormergi approved these changes Feb 13, 2025

View reviewed changes

meinali566 reviewed Feb 14, 2025

View reviewed changes

Comment thread modules/nw-cudn-cr.adoc Outdated

dfitzmau reviewed Feb 14, 2025

View reviewed changes

Comment thread modules/cudn-status-conditions.adoc

Adds cudn docs

51a5969

two

stevsmit force-pushed the 12599-osdocs-cudn-proc branch from da4bcd8 to 51a5969 Compare February 14, 2025 13:42

openshift-ci Bot assigned meinali566 Feb 17, 2025

openshift-ci Bot added the lgtm Indicates that a PR is ready to be merged. label Feb 17, 2025

stevsmit merged commit 8e5519f into openshift:main Feb 17, 2025

openshift-cherrypick-robot mentioned this pull request Feb 17, 2025

[enterprise-4.18] Adds cudn docs #88688

Merged

Uh oh!

Conversation

stevsmit commented Nov 19, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

Uh oh!

ocpdocs-previewbot commented Nov 19, 2024 • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Uh oh!

tssurya commented Nov 22, 2024

Uh oh!

ormergi left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

ormergi left a comment • edited Loading Uh oh! There was an error while loading. Please reload this page.

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

ormergi left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

stevsmit commented Jan 7, 2025

Uh oh!

lpettyjo left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

maiqueb left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

maiqueb left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

ormergi left a comment

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

openshift-ci Bot commented Feb 14, 2025

Uh oh!

meinali566 commented Feb 17, 2025

Uh oh!

stevsmit commented Feb 17, 2025

Uh oh!

openshift-cherrypick-robot commented Feb 17, 2025

Uh oh!

Reviewers

Assignees

Labels

Projects

Milestone

Development

Uh oh!

12 participants

stevsmit commented Nov 19, 2024 •

edited

Loading

ocpdocs-previewbot commented Nov 19, 2024 •

edited

Loading

ormergi left a comment •

edited

Loading