Separate client vs provider APIEndpoints fields #1197
Comments
k8s-ci-robot
added
the
kind/feature
|
I'd also like to target this change for v1alpha2 |
|
I think splitting them into Internal and External is a good option.
Yes, they SHOULD, not MUST - We still need to cater for scenarios where it is not possible
With a client-side load balancer it is always
If the APIEndpoints respect "cordoned" masters, then this shouldn't be an issue - When using a single endpoint, if that endpoint fails, or is upgraded then clients are left unable to connect at all |
|
Without HA and a LB you can’t support this. At best you can only provide a deterministic means if selecting a control plane node, which CAPV selects as the oldest member of the control plane. It doesn’t matter what MUST occur, but rather what the cluster and its operators design. If they design a cluster with no external HA and multiple control plane nodes, then it’s possible those nodes don’t stay static, and one is ejected, and if that’s the oldest then the cluster is unreachable. |
Which part are you referring to that can't be supported?
How do you plan on designing this on-premise (without an ELB on VMC) Most CAPV users will be on-premise, where a client-side load balancer makes the most sense. |
|
@moshloop you keep mentioning a client-side load balancer. How would that work with external clients and integrations (such as Jenkins, etc)? |
|
DNS round-robin would be suitable for most external clients. If APIEndpoints are the source of truth, then different out of band controllers (client-side, dns, F5, etc..) can be created that work across CAPI providers. A client-side load balancer could also be used for bootstrapping, and then pivot to a real load balancer once the load balancer is healthy via removal of a |
|
/area api |
k8s-ci-robot
added
the
priority/important-soon
|
Have we reached some consensus around this? I'd prefer to move to a single endpoint and have additional ones in a different slice. |
|
How About: // APIEndpoints refers to all valid/healthy API Endpoints at their InternalIP address
APIEndpoints []string
// ClientEndpoint refers to a URL or IP that load balances across all APIEndpoints,
// or a random healthy APIEndpoint if no load balancer is available
ClientEndpoint string |
|
@moshloop I'm good with that proposed suggestion, but I would remove the limitation that APIEndpoints refer to InternalIP, since it might be implementation dependent on how they would be consumed by what would be providing the ClientEndpoint. (For example DNS-based config would require Public IPs) |
|
We should keep using a struct type for endpoints. I'd propose the following: // AdditionalAPIEndpoints refers to all valid/healthy API Endpoints to communicate with the control plane.
AdditionalAPIEndpoints []APIEndpoint `json:"additionalApiEndpoints,omitempty"`
// APIEndpoint refers to a URL or IP that load balances a control plane,
// or a random healthy endpoint if no load balancer is available.
APIEndpoint APIEndpoint `json:"apiEndpoint,omitempty"` |
|
Hi @vincepri, I truly don't see how the above proposal is any different than having a single slice like there is today. This appears to add an additional field for no real reason other than avoiding accessing the first element of the original slice. |
|
@akutz it provides a single canonical source for generating things like a kubeconfig, rather than just randomly taking the first field from a slice that is used for various different reasons. This gives us a way to not have to interpret provider intent when creating the client for setting NodeRefs or generating the kubeconfig secret for users. |
|
We've seen lots of folks using a single API endpoint, some others like @moshloop have use cases to use more than one, which is ok. This proposal would simplify the 80% use case and allow for others as well. |
Except that is what the doc on the single field now says short of an LB:
So to me this just separates things into two fields when all that's required is more explicit documentation on the existing field. |
So this is intentionally random rather than just random - in theory if you have a controller looping trying to get to a ControlPlaneReady state, and you use the same endpoint (e.g. first) and that endpoint happens to be down, then it will never reconcile, even though it could potentially reconcile with a random endpoint.
I am going to document this in the Load Balancer Provider CAEP |
|
I agree with the premises. Given that we are modifying the API used by all providers, I think good usability should also be a goal: both human (i.e. reading/editing the manifest), and programmatic. Have we considered the approach taken by corev1.NodeAddress? For example: type APIEndpointType string
const (
ExternalAPIEndpoint APIEndpointType = "ExternalEndpoint"
InternalAPIEndpoint APIEndpointType = "InternalEndpoint"
)
type APIEndpoint struct {
Type APIEndpointType
Host string
Port int
}With this approach, we can assign explicit meanings to API Endpoints (ExternalEndpoint, InternalEndpoint, etc). And we can implement helper functions that provide the right semantics (e.g. set semantics) that all providers can use. |
|
Does anyone use an authenticating proxy? If I did, I might want to list it under APIEndpoints. (I'm not sure if it merits its own type, e.g. |
timothysc
added
help wanted
|
/close Multiple endpoints become possible with Machine Load Balancers, but only the control plane endpoint which other masters/workers connect to is stored on the cluster object. |
|
@moshloop: Closing this issue. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
/kind feature
Describe the solution you'd like
Currently both external consumers of Cluster API and internal providers can use the existing APIEndpoints field in different ways. I'd like to propose that we separate these uses into at least two separate fields, so that each field has a single purpose and the semantics of how and when to consume the fields are well known.
External consumers are looking for an endpoint to use to pass to client tooling or a client SDK, which only accepts a single endpoint. In most cases implementations here just take the head of the API Endpoints list. This is currently the behavior used by
clusterctland https://github.com/vmware/cluster-api-upgrade-tool for example.Internal provider use cases varies by provider. The AWS provider populates this value with the Load Balancer address that is created as part of Cluster instantiation while some other providers use this to track endpoints for each Control Plane Machine for the use of populating a Load Balancer or VIP configuration that does not exist prior to Machines being created.
The dual use of field this causes quite a few potential pain points.
The text was updated successfully, but these errors were encountered: