kubernetes
/
kops
mirror of https://github.com/kubernetes/kops.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

make --admin configurable to rolling-update

This commit is contained in:
Jesse Haka 2025-02-20 20:38:26 +02:00
parent 6aeef2c06c
commit d5cea90a82
3 changed files with 18 additions and 7 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
cmd/kops/rolling-update_cluster.go
View File

@ -37,6 +37,7 @@ import (
"k8s.io/kops/pkg/cloudinstances" "k8s.io/kops/pkg/cloudinstances"
"k8s.io/kops/pkg/commands/commandutils" "k8s.io/kops/pkg/commands/commandutils"
"k8s.io/kops/pkg/instancegroups" "k8s.io/kops/pkg/instancegroups"
"k8s.io/kops/pkg/kubeconfig"
"k8s.io/kops/pkg/pretty" "k8s.io/kops/pkg/pretty"
"k8s.io/kops/pkg/validation" "k8s.io/kops/pkg/validation"
"k8s.io/kops/upup/pkg/fi/cloudup" "k8s.io/kops/upup/pkg/fi/cloudup"
@ -145,6 +146,8 @@ type RollingUpdateOptions struct {
// TODO: Move more/all above options to RollingUpdateOptions // TODO: Move more/all above options to RollingUpdateOptions
instancegroups.RollingUpdateOptions instancegroups.RollingUpdateOptions
kubeconfig.CreateKubecfgOptions
} }
func (o *RollingUpdateOptions) InitDefaults() { func (o *RollingUpdateOptions) InitDefaults() {
@ -165,6 +168,8 @@ func (o *RollingUpdateOptions) InitDefaults() {
o.DrainTimeout = 15 * time.Minute o.DrainTimeout = 15 * time.Minute
o.Admin = kubeconfig.DefaultKubecfgAdminLifetime
o.RollingUpdateOptions.InitDefaults() o.RollingUpdateOptions.InitDefaults()
} }
@ -193,6 +198,7 @@ func NewCmdRollingUpdateCluster(f *util.Factory, out io.Writer) *cobra.Command {
cmd.Flags().BoolVar(&options.Force, "force", options.Force, "Force rolling update, even if no changes") cmd.Flags().BoolVar(&options.Force, "force", options.Force, "Force rolling update, even if no changes")
cmd.Flags().BoolVar(&options.CloudOnly, "cloudonly", options.CloudOnly, "Perform rolling update without validating cluster status (will cause downtime)") cmd.Flags().BoolVar(&options.CloudOnly, "cloudonly", options.CloudOnly, "Perform rolling update without validating cluster status (will cause downtime)")
cmd.Flags().DurationVar(&options.Admin, "admin", options.Admin, "a cluster admin user credential with the specified lifetime")
cmd.Flags().DurationVar(&options.ValidationTimeout, "validation-timeout", options.ValidationTimeout, "Maximum time to wait for a cluster to validate") cmd.Flags().DurationVar(&options.ValidationTimeout, "validation-timeout", options.ValidationTimeout, "Maximum time to wait for a cluster to validate")
cmd.Flags().DurationVar(&options.DrainTimeout, "drain-timeout", options.DrainTimeout, "Maximum time to wait for a node to drain") cmd.Flags().DurationVar(&options.DrainTimeout, "drain-timeout", options.DrainTimeout, "Maximum time to wait for a node to drain")
cmd.Flags().Int32Var(&options.ValidateCount, "validate-count", options.ValidateCount, "Number of times that a cluster needs to be validated after single node update") cmd.Flags().Int32Var(&options.ValidateCount, "validate-count", options.ValidateCount, "Number of times that a cluster needs to be validated after single node update")
@ -227,6 +233,7 @@ func NewCmdRollingUpdateCluster(f *util.Factory, out io.Writer) *cobra.Command {
} }
func RunRollingUpdateCluster(ctx context.Context, f *util.Factory, out io.Writer, options *RollingUpdateOptions) error { func RunRollingUpdateCluster(ctx context.Context, f *util.Factory, out io.Writer, options *RollingUpdateOptions) error {
f.CreateKubecfgOptions = options.CreateKubecfgOptions
clientset, err := f.KopsClient() clientset, err := f.KopsClient()
if err != nil { if err != nil {
return err return err

17
cmd/kops/util/factory.go
View File

@ -23,7 +23,6 @@ import (
"net/url" "net/url"
"strings" "strings"
"sync" "sync"
"time"
"k8s.io/apimachinery/pkg/util/validation/field" "k8s.io/apimachinery/pkg/util/validation/field"
"k8s.io/client-go/dynamic" "k8s.io/client-go/dynamic"
@ -56,6 +55,8 @@ type Factory struct {
mutex sync.Mutex mutex sync.Mutex
// clusters holds REST connection configuration for connecting to clusters // clusters holds REST connection configuration for connecting to clusters
clusters map[string]*clusterInfo clusters map[string]*clusterInfo
kubeconfig.CreateKubecfgOptions
} }
// clusterInfo holds REST connection configuration for connecting to a cluster // clusterInfo holds REST connection configuration for connecting to a cluster
@ -66,6 +67,7 @@ type clusterInfo struct {
cachedHTTPClient *http.Client cachedHTTPClient *http.Client
cachedRESTConfig *rest.Config cachedRESTConfig *rest.Config
cachedDynamicClient dynamic.Interface cachedDynamicClient dynamic.Interface
kubeconfig.CreateKubecfgOptions
} }
func NewFactory(options *FactoryOptions) *Factory { func NewFactory(options *FactoryOptions) *Factory {
@ -177,6 +179,7 @@ func (f *Factory) getClusterInfo(cluster *kops.Cluster) *clusterInfo {
func (f *Factory) RESTConfig(cluster *kops.Cluster) (*rest.Config, error) { func (f *Factory) RESTConfig(cluster *kops.Cluster) (*rest.Config, error) {
clusterInfo := f.getClusterInfo(cluster) clusterInfo := f.getClusterInfo(cluster)
clusterInfo.CreateKubecfgOptions = f.CreateKubecfgOptions
return clusterInfo.RESTConfig() return clusterInfo.RESTConfig()
} }
@ -184,7 +187,7 @@ func (f *clusterInfo) RESTConfig() (*rest.Config, error) {
ctx := context.Background() ctx := context.Background()
if f.cachedRESTConfig == nil { if f.cachedRESTConfig == nil {
restConfig, err := f.factory.buildRESTConfig(ctx, f.cluster) restConfig, err := f.factory.buildRESTConfig(ctx, f.cluster, f.CreateKubecfgOptions)
if err != nil { if err != nil {
return nil, err return nil, err
} }
@ -253,7 +256,7 @@ func (f *Factory) VFSContext() *vfs.VFSContext {
return f.vfsContext return f.vfsContext
} }
func (f *Factory) buildRESTConfig(ctx context.Context, cluster *kops.Cluster) (*rest.Config, error) { func (f *Factory) buildRESTConfig(ctx context.Context, cluster *kops.Cluster, options kubeconfig.CreateKubecfgOptions) (*rest.Config, error) {
clientset, err := f.KopsClient() clientset, err := f.KopsClient()
if err != nil { if err != nil {
return nil, err return nil, err
@ -274,9 +277,9 @@ func (f *Factory) buildRESTConfig(ctx context.Context, cluster *kops.Cluster) (*
return nil, err return nil, err
} }
// Generate a relatively short-lived certificate / kubeconfig // backwards compatibility
createKubecfgOptions := kubeconfig.CreateKubecfgOptions{ if options.Admin == 0 {
Admin: 1 * time.Hour, options.Admin = kubeconfig.DefaultKubecfgAdminLifetime
} }
conf, err := kubeconfig.BuildKubecfg( conf, err := kubeconfig.BuildKubecfg(
@ -285,7 +288,7 @@ func (f *Factory) buildRESTConfig(ctx context.Context, cluster *kops.Cluster) (*
keyStore, keyStore,
secretStore, secretStore,
cloud, cloud,
createKubecfgOptions, options,
f.KopsStateStore()) f.KopsStateStore())
if err != nil { if err != nil {
return nil, err return nil, err

1
docs/cli/kops_rolling-update_cluster.md generated
View File

@ -59,6 +59,7 @@ kops rolling-update cluster [CLUSTER] [flags]
### Options ### Options
``` ```
--admin duration a cluster admin user credential with the specified lifetime (default 18h0m0s)
--bastion-interval duration Time to wait between restarting bastions (default 15s) --bastion-interval duration Time to wait between restarting bastions (default 15s)
--cloudonly Perform rolling update without validating cluster status (will cause downtime) --cloudonly Perform rolling update without validating cluster status (will cause downtime)
--control-plane-interval duration Time to wait between restarting control plane nodes (default 15s) --control-plane-interval duration Time to wait between restarting control plane nodes (default 15s)