book

Programming Kubernetes

by Michael Hausenblas, Stefan Schimanski

July 2019

Intermediate to advanced

270 pages

6h 41m

English

O'Reilly Media, Inc.

Read now

Unlock full access

Preface
Who Should Read This BookWhy We Wrote This BookEcosystemTechnology You Need to UnderstandConventions Used in This BookUsing Code ExamplesO’Reilly Online LearningHow to Contact UsAcknowledgments
1. Introduction
What Does Programming Kubernetes Mean?A Motivational ExampleExtension PatternsControllers and OperatorsThe Control LoopEventsEdge- Versus Level-Driven TriggersChanging Cluster Objects or the External WorldOptimistic ConcurrencyOperatorsSummary
2. Kubernetes API Basics
The API ServerThe HTTP Interface of the API ServerAPI TerminologyKubernetes API VersioningDeclarative State ManagementUsing the API from the Command LineHow the API Server Processes RequestsSummary
3. Basics of client-go
The RepositoriesThe Client LibraryKubernetes API TypesAPI MachineryCreating and Using a ClientVersioning and CompatibilityAPI Versions and Compatibility GuaranteesKubernetes Objects in GoTypeMetaObjectMetaspec and statusClient SetsStatus Subresources: UpdateStatusListings and DeletionsWatchesClient ExpansionClient OptionsInformers and CachingWork QueueAPI Machinery in DepthKindsResourcesREST MappingSchemeVendoringglidedepGo ModulesSummary
4. Using Custom Resources
Discovery InformationType DefinitionsAdvanced Features of Custom ResourcesValidating Custom ResourcesShort Names and CategoriesPrinter ColumnsSubresourcesA Developer’s View on Custom ResourcesDynamic ClientTyped Clientscontroller-runtime Client of Operator SDK and KubebuilderSummary
5. Automating Code Generation
Why Code GenerationCalling the GeneratorsControlling the Generators with TagsGlobal TagsLocal Tagsdeepcopy-gen Tagsruntime.Object and DeepCopyObjectclient-gen Tagsinformer-gen and lister-genSummary
6. Solutions for Writing Operators
PreparationFollowing sample-controllerBootstrappingBusiness LogicKubebuilderBootstrappingBusiness LogicThe Operator SDKBootstrappingBusiness LogicOther ApproachesUptake and Future DirectionsSummary
7. Shipping Controllers and Operators
Lifecycle Management and PackagingPackaging: The ChallengeHelmKustomizeOther Packaging OptionsPackaging Best PracticesLifecycle ManagementProduction-Ready DeploymentsGetting the Permissions RightAutomated Builds and TestingCustom Controllers and ObservabilitySummary
8. Custom API Servers
Use Cases for Custom API ServersExample: A Pizza RestaurantThe Architecture: AggregationAPI ServicesInner Structure of a Custom API ServerDelegated Authentication and TrustDelegated AuthorizationWriting Custom API ServersOptions and Config Pattern and Startup PlumbingThe First StartInternal Types and ConversionWriting the API TypesConversionsDefaultingRoundtrip TestingValidationRegistry and StrategyAPI InstallationAdmissionDeploying Custom API ServersDeployment ManifestsSetting Up RBACRunning the Custom API Server InsecurelyCertificates and TrustSharing etcdSummary
9. Advanced Custom Resources
Custom Resource VersioningRevising the Pizza RestaurantConversion Webhook ArchitectureConversion Webhook ImplementationSetting Up the HTTPS ServerDeploying the Conversion WebhookSeeing Conversion in ActionAdmission WebhooksAdmission Requirements in the Restaurant ExampleAdmission Webhook ArchitectureRegistering Admission WebhooksImplementing an Admission WebhookAdmission Webhook in ActionStructural Schemas and the Future of CustomResourceDefinitionsStructural SchemasPruning Versus Preserving Unknown FieldsControlling PruningIntOrString and RawExtensionsDefault ValuesSummary

A. Resources
GeneralBooksTutorials and ExamplesArticlesRepositories
Index

Content preview from Programming Kubernetes

Chapter 4. Using Custom Resources

In this chapter we introduce you to custom resources (CR), one of the central extension mechanisms used throughout the Kubernetes ecosystem.

Custom resources are used for small, in-house configuration objects without any corresponding controller logic—purely declaratively defined. But custom resources also play a central role for many serious development projects on top of Kubernetes that want to offer a Kubernetes-native API experience. Examples are service meshes such as Istio, Linkerd 2.0, and AWS App Mesh, all of which have custom resources at their heart.

Remember “A Motivational Example” from Chapter 1? At its core, it has a CR that looks like this:

apiVersion: cnat.programming-kubernetes.info/v1alpha1
kind: At
metadata:
  name: example-at
spec:
  schedule: "2019-07-03T02:00:00Z"
status:
  phase: "pending"

Custom resources are available in every Kubernetes cluster since version 1.7. They are stored in the same etcd instance as the main Kubernetes API resources and served by the same Kubernetes API server. As shown in Figure 4-1, requests fall back to the apiextensions-apiserver, which serves the resources defined via CRDs, if they are neither of the following:

Handled by aggregated API servers (see Chapter 8).
Native Kubernetes resources.

API Extensions API server inside of the Kubernetes API server

A CustomResourceDefinition ...

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.

Read now

Unlock full access

More than 5,000 organizations count on O’Reilly

O’Reilly covers everything we've got, with content to help us build a world-class technology community, upgrade the capabilities and competencies of our teams, and improve overall team performance as well as their engagement.

Julian F.

Head of Cybersecurity

I wanted to learn C and C++, but it didn't click for me until I picked up an O'Reilly book. When I went on the O’Reilly platform, I was astonished to find all the books there, plus live events and sandboxes so you could play around with the technology.

Addison B.

Field Engineer

I’ve been on the O’Reilly platform for more than eight years. I use a couple of learning platforms, but I'm on O'Reilly more than anybody else. When you're there, you start learning. I'm never disappointed.

Amir M.

Data Platform Tech Lead

I'm always learning. So when I got on to O'Reilly, I was like a kid in a candy store. There are playlists. There are answers. There's on-demand training. It's worth its weight in gold, in terms of what it allows me to do.

Mark W.

Embedded Software Engineer

Publisher Resources

ISBN: 9781492047094Errata Page

Cloud Computing

Data Engineering

Data Science

AI & ML

Programming Languages

Software Architecture

IT/Ops

Security

Design

Business

Soft Skills

Programming Kubernetes

by Michael Hausenblas, Stefan Schimanski

Chapter 4. Using Custom Resources

Figure 4-1. The API Extensions API server inside the Kubernetes API server

Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
and much more.