This repository has been archived by the owner on Apr 7, 2020. It is now read-only.
Provider-specific webhooks in Garden cluster #407
Comments
This was referenced Nov 1, 2019
ghost
added
lifecycle/stale
This was referenced Feb 4, 2020
Closed
Closed
Open
|
Replaced with individual issues in dedicated provider repositories. |
Sign up for free
to subscribe to this conversation on GitHub.
Already have an account?
Sign in.
With the new
core.gardener.cloud/v1alpha1.ShootAPI Gardener does no longer understand the provider-specifics, e.g., the infrastructure config, control plane config, worker config, etc.This allows end-users to harm themselves and create invalid
Shootresources the Garden cluster. Errors will only become present during reconciliation part creation of the resource.Also, it's not possible to default any of the provider specific sections. Hence, we could also think about mutating webhooks in the future.
As we are using the controller-runtime maintained by the Kubernetes SIGs it should be relatively easy to implement these webhooks as the library abstracts already most of the things.
We should have a separate, dedicated binary incorporating the webhooks for each provider, and a separate Helm chart for the deployment in the Garden cluster.
Similarly, the networking and OS extensions could have such webhooks as well to check on the
providerConfigfor the networking and operating system config.Validating webhooks:
Mutating webhooks:
Part of gardener/gardener#308
The text was updated successfully, but these errors were encountered: