pkg/helm/run.go,pkg/internal/scaffold: helm operator metrics

hack/tests/e2e-helm.sh

@@ -33,6 +33,20 @@ test_operator() {
         exit 1
     fi
 
+    # verify that metrics service was created
+    if ! timeout 20s bash -c -- "until kubectl get service/nginx-operator > /dev/null 2>&1; do sleep 1; done";
+    then
+        kubectl logs deployment/nginx-operator
+        exit 1
+    fi
+
+    # verify that the metrics endpoint exists
+    if ! timeout 1m bash -c -- "until kubectl run -it --rm --restart=Never test-metrics --image=registry.access.redhat.com/ubi7/ubi-minimal:latest -- curl -sfo /dev/null http://nginx-operator:8383/metrics; do sleep 1; done";
+    then
+        kubectl logs deployment/nginx-operator
+        exit 1
+    fi
+
     # create CR
     kubectl create -f deploy/crds/helm_v1alpha1_nginx_cr.yaml
     trap_add 'kubectl delete --ignore-not-found -f ${OPERATORDIR}/deploy/crds/helm_v1alpha1_nginx_cr.yaml' EXIT
@@ -139,6 +153,7 @@ go mod vendor
 echo "module github.com/operator-framework/operator-sdk" > $ROOTDIR/go.mod
 trap_add 'rm $ROOTDIR/go.mod' EXIT
 go mod edit -replace=github.com/operator-framework/operator-sdk=$ROOTDIR
+go mod vendor
 
 operator-sdk build "$DEST_IMAGE"
 

internal/pkg/scaffold/helm/go_mod.go

@@ -163,6 +163,7 @@ replace (
 )
 
 replace (
+	github.com/coreos/prometheus-operator => github.com/coreos/prometheus-operator v0.29.0
 	k8s.io/code-generator => k8s.io/code-generator v0.0.0-20181117043124-c2090bec4d9b
 	k8s.io/kube-openapi => k8s.io/kube-openapi v0.0.0-20180711000925-0cf8f7e6ed1d
 )

internal/pkg/scaffold/helm/role.go

@@ -54,8 +54,6 @@ func CreateRoleScaffold(dc roleDiscoveryInterface, chart *chart.Chart) (*scaffol
 	roleScaffold := &scaffold.Role{
 		IsClusterScoped:  false,
 		SkipDefaultRules: true,
-		// TODO: enable metrics in helm operator
-		SkipMetricsRules: true,
 		CustomRules: []rbacv1.PolicyRule{
 			// We need this rule so tiller can read namespaces to ensure they exist
 			{

internal/pkg/scaffold/helm/role_test.go

@@ -19,7 +19,7 @@ import (
 	"testing"
 
 	"github.com/operator-framework/operator-sdk/internal/pkg/scaffold/helm"
-	
+
 	"github.com/stretchr/testify/assert"
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 	"k8s.io/apimachinery/pkg/version"
@@ -43,23 +43,20 @@ func TestCreateRoleScaffold(t *testing.T) {
 			name:                   "fallback to default",
 			chart:                  failChart(),
 			expectSkipDefaultRules: false,
-			expectSkipMetricsRules: true,
 			expectIsClusterScoped:  false,
 			expectLenCustomRules:   2,
 		},
 		{
 			name:                   "namespaced manifest",
 			chart:                  namespacedChart(),
 			expectSkipDefaultRules: true,
-			expectSkipMetricsRules: true,
 			expectIsClusterScoped:  false,
 			expectLenCustomRules:   3,
 		},
 		{
 			name:                   "cluster scoped manifest",
 			chart:                  clusterScopedChart(),
 			expectSkipDefaultRules: true,
-			expectSkipMetricsRules: true,
 			expectIsClusterScoped:  true,
 			expectLenCustomRules:   4,
 		},
@@ -77,7 +74,6 @@ func TestCreateRoleScaffold(t *testing.T) {
 					assert.NoError(t, err)
 				}
 				assert.Equal(t, tc.expectSkipDefaultRules, roleScaffold.SkipDefaultRules)
-				assert.Equal(t, tc.expectSkipMetricsRules, roleScaffold.SkipMetricsRules)
 				assert.Equal(t, tc.expectLenCustomRules, len(roleScaffold.CustomRules))
 				assert.Equal(t, tc.expectIsClusterScoped, roleScaffold.IsClusterScoped)
 			})
@@ -122,7 +118,6 @@ type roleScaffoldTestCase struct {
 	name                   string
 	chart                  *chart.Chart
 	expectSkipDefaultRules bool
-	expectSkipMetricsRules bool
 	expectIsClusterScoped  bool
 	expectLenCustomRules   int
 	expectErr              bool

internal/pkg/scaffold/role.go

@@ -37,7 +37,6 @@ type Role struct {
 
 	IsClusterScoped  bool
 	SkipDefaultRules bool
-	SkipMetricsRules bool
 	CustomRules      []rbacv1.PolicyRule
 }
 
@@ -213,7 +212,6 @@ rules:
   {{- end }}
   {{- end }}
 {{- end }}
-{{- if not .SkipMetricsRules }}
 - apiGroups:
   - monitoring.coreos.com
   resources:
@@ -229,5 +227,16 @@ rules:
   - {{ .ProjectName }}
   verbs:
   - "update"
-{{- end }}
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+- apiGroups:
+  - apps
+  resources:
+  - replicasets
+  verbs:
+  - get
 `

internal/pkg/scaffold/role_test.go

@@ -52,7 +52,6 @@ func TestRoleCustomRules(t *testing.T) {
 	s, buf := setupScaffoldAndWriter()
 	err := s.Execute(appConfig, &Role{
 		SkipDefaultRules: true,
-		SkipMetricsRules: true,
 		CustomRules: []rbacv1.PolicyRule{
 			{
 				APIGroups: []string{"policy"},
@@ -116,6 +115,18 @@ rules:
   - app-operator
   verbs:
   - "update"
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+- apiGroups:
+  - apps
+  resources:
+  - replicasets
+  verbs:
+  - get
 `
 
 const clusterroleExp = `kind: ClusterRole
@@ -159,6 +170,18 @@ rules:
   - app-operator
   verbs:
   - "update"
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+- apiGroups:
+  - apps
+  resources:
+  - replicasets
+  verbs:
+  - get
 `
 
 const roleCustomRulesExp = `kind: Role
@@ -181,4 +204,31 @@ rules:
   resources:
   - "roles"
   - "rolebindings"
+- apiGroups:
+  - monitoring.coreos.com
+  resources:
+  - servicemonitors
+  verbs:
+  - "get"
+  - "create"
+- apiGroups:
+  - apps
+  resources:
+  - deployments/finalizers
+  resourceNames:
+  - app-operator
+  verbs:
+  - "update"
+- apiGroups:
+  - ""
+  resources:
+  - pods
+  verbs:
+  - get
+- apiGroups:
+  - apps
+  resources:
+  - replicasets
+  verbs:
+  - get
 `

pkg/helm/run.go

@@ -26,6 +26,7 @@ import (
 	"github.com/operator-framework/operator-sdk/pkg/helm/watches"
 	"github.com/operator-framework/operator-sdk/pkg/k8sutil"
 	"github.com/operator-framework/operator-sdk/pkg/leader"
+	"github.com/operator-framework/operator-sdk/pkg/metrics"
 	sdkVersion "github.com/operator-framework/operator-sdk/version"
 
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
@@ -35,6 +36,11 @@ import (
 	"sigs.k8s.io/controller-runtime/pkg/runtime/signals"
 )
 
+var (
+	metricsHost       = "0.0.0.0"
+	metricsPort int32 = 8383
+)
+
 var log = logf.Log.WithName("cmd")
 
 func printVersion() {
@@ -67,7 +73,8 @@ func Run(flags *hoflags.HelmOperatorFlags) error {
 		return err
 	}
 	mgr, err := manager.New(cfg, manager.Options{
-		Namespace: namespace,
+		Namespace:          namespace,
+		MetricsBindAddress: fmt.Sprintf("%s:%d", metricsHost, metricsPort),
 	})
 	if err != nil {
 		log.Error(err, "Failed to create a new manager.")
@@ -100,13 +107,22 @@ func Run(flags *hoflags.HelmOperatorFlags) error {
 		log.Error(err, "Failed to get operator name")
 		return err
 	}
+
+	ctx := context.TODO()
+
 	// Become the leader before proceeding
-	err = leader.Become(context.TODO(), operatorName+"-lock")
+	err = leader.Become(ctx, operatorName+"-lock")
 	if err != nil {
 		log.Error(err, "Failed to become leader.")
 		return err
 	}
 
+	// Create Service object to expose the metrics port.
+	_, err = metrics.ExposeMetricsPort(ctx, metricsPort)
+	if err != nil {
+		log.Info(err.Error())
+	}
+
 	// Start the Cmd
 	if err = mgr.Start(signals.SetupSignalHandler()); err != nil {
 		log.Error(err, "Manager exited non-zero.")