When watching resources, if continue is set, get additional resources:
https://kubernetes.io/docs/reference/generated/kubernetes-api/v1.13/#list-deployment-v1-apps

Environment

• Bonny version
• Elixir & Erlang/OTP versions (elixir --version):
• Operating system:

Current behavior

Watcher crashes when a group version isn't available:

15:54:14.565 [error] GenServer Ballast.Controller.V1.PoolPolicy terminating
** (CaseClauseError) no case clause matching: {:error, :unsupported_group_version, "ballast.bonny.run/v1"}
    (k8s) lib/k8s/client/runner/watch.ex:76: K8s.Client.Runner.Watch.get_resource_version/2
    (k8s) lib/k8s/client/runner/watch.ex:30: K8s.Client.Runner.Watch.run/3
    (bonny) lib/bonny/watcher.ex:31: Bonny.Watcher.handle_info/2
    (stdlib) gen_server.erl:637: :gen_server.try_dispatch/4
    (stdlib) gen_server.erl:711: :gen_server.handle_msg/6
    (stdlib) proc_lib.erl:249: :proc_lib.init_p_do_apply/3
Last message: :watch
State: %Bonny.Watcher.Impl{buffer: %Bonny.Watcher.ResponseBuffer{lines: [], pending: ""}, controller: Ballast.Controller.V1.PoolPolicy, resource_version: nil, spec: %Bonny.CRD{group: "ballast.bonny.run", names: %{kind: "PoolPolicy", plural: "poolpolicies", shortNames: ["pp"], singular: "poolpolicy"}, scope: :cluster, version: "v1"}}

Expected behavior

Logger or event dispatched that the group wasn't found.

Add a task to initializing a new bonny operator.

• add config/test.exs w/ HTTP and Discovery stubs
• add example discovery mocks
• add config/prod.exs defaulted to SA
• add config/dev.exs default to docker-for-desktop?
• either a Makefile for building docker images or a task?
• bonny/operator logger, see eviction operator
• test_helper.exs
  • K8s.Client.DynamicHTTPProvider.start_link([])

When an operator boots, it should deploy its CRDs as a part of the boot process. This will make deploying and packaging operators more simple as currently you need an operator docker image and the CRDs.

Deploying operator should create a configuration manifest for the operator itself and the service accounts necessary to generate the CRDs of the operator creates.

Support status and scale subresources

Requires: k8s 1.13 beta

Expected behavior

CRD should generate w/ subresources:

apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
  name: crontabs.stable.example.com
spec:
  group: stable.example.com
  versions:
    - name: v1
      served: true
      storage: true
  scope: Namespaced
  names:
    plural: crontabs
    singular: crontab
    kind: CronTab
    shortNames:
    - ct
  # subresources describes the subresources for custom resources.
  subresources:
    # status enables the status subresource.
    status: {}
    # scale enables the scale subresource.
    scale:
      # specReplicasPath defines the JSONPath inside of a custom resource that corresponds to Scale.Spec.Replicas.
      specReplicasPath: .spec.replicas
      # statusReplicasPath defines the JSONPath inside of a custom resource that corresponds to Scale.Status.Replicas.
      statusReplicasPath: .status.replicas
      # labelSelectorPath defines the JSONPath inside of a custom resource that corresponds to Scale.Status.Selector.
      labelSelectorPath: .status.labelSelector

Will need to support add'l functions on the controller update_status/1 update_scale/1

bonny.gen.kustomize

k8s/base/kustomization.yaml
k8s/base/RESOURCES_HERE

Question:

When i create a namespaced CRD, bonny watch one namespace.
But is not better to let the choice for namespaced CRD ?

I think there are more scenarios with operator that need to watch all the clusters with namespaced CRD.

or... i didn't see how i have to configurate it :s

Environment

• Bonny version: 0.3
• Elixir & Erlang/OTP versions (elixir --version): 1.7
• Operating system: Ubuntu

Current behavior

Hi,

i follow your article on medium about bonny. When a run the operator in local with iex i have always this error message (i have a good kube/config):

 (MatchError) no match of right hand side value: {:error, :cluster_not_registered}
(k8s) lib/k8s/cluster.ex:46: K8s.Cluster.url_for/2                                                                                                                             
(k8s) lib/k8s/client/runner/base.ex:89: K8s.Client.Runner.Base.run/4                                                                                                           
(bonny) lib/bonny/watcher/impl.ex:128: Bonny.Watcher.Impl.fetch_resource_version/1                                                                                             
(bonny) lib/bonny/watcher/impl.ex:62: Bonny.Watcher.Impl.get_resource_version/1                                                                                                
(bonny) lib/bonny/watcher/impl.ex:46: Bonny.Watcher.Impl.watch_for_changes/2                                                                                                   
(bonny) lib/bonny/watcher.ex:24: Bonny.Watcher.handle_info/2                                                                                                                   
(stdlib) gen_server.erl:637: :gen_server.try_dispatch/4                                                                                                                        
(stdlib) gen_server.erl:711: :gen_server.handle_msg/6    

Errors around:

• EEx
• Mix

In working on the k8s client I’ve alotted for extending the client with a custom swagger spec.

To auto generate the routes in the client we would need a task that takes a k8s version, downloads the swagger spec, then merged in the swagger operations and definitions for each CRD.

This will allow for simple CRUD style interactions with CRDs in the k8s API.

resources = K8s.list(“mygroup/myversion”, “MyCRDType”)

Headers are hard coded. Add defaults to Bonny.Config and add a configuration parameter for overwriting.

config :bonny, headers: [
  {"Accept", "im-static"},
  {"Foo", {m,f,a}}
]

Setup a gitbook

Add a basic k8s HTTP client or URL generator for a "batteries included" experience.

I'm not sure that it should be as fully fledged as Kazan. I would rather defer to people to use that library if they needed a full implementation of a k8s client.

Rather, I'd like to include a small wrapper around HTTPoison or simple a URL/Path generator that:

• encapsulates ssl options and headers w/ K8s.Conf so once its loaded at runtime, it doesnt have to be passed around to each HTTP call (for HTTPoison)
• ship w/ a default list of namespaced vs clustered resources and make ad-hoc calls to /apis/apiextensions.k8s.io/v1beta1/customresourcedefinitions/{name} to determine the scope of CRDs
• Support misc operations (scale, status)

Support the following methods, accepting maps {"apiVersion": "apps/v1", "kind": "Deployment"} for mutations/statuses/reads and tuples {version, kind}|{version, kind, name} for reads/statuses

Write:

• Create
• Patch
• Replace
• Delete
• Delete Collection

Read:

• Read
• List
• List All Namespaces

Status:

• Patch Status
• Read Status
• Replace Status

Scale:

• Read Scale
• Replace Scale
• Patch Scale

While it is up the the individual controller to handle error cases, it would be nice to integrate the result of a controller dispatch with the kubernetes events API.

Return from add/modify/delete/reconcile would automatically create events:

• :ok, {:ok, _} -> Normal
• :error, {:error, _} -> Warning

There are a lot of fields for an Event. It would be nice to abstract as much of this away as possible, but allow for an explicit return value of something like {:ok, %K8s.Event{}} (doesnt exist) to override any logic bonny provides.

Add the ability to set labels for all resources created from mix bonny.gen.manifest

config :bonny, labels: %{
  kewl: "absolutely"
}

Environment

• Bonny version: 0.30
• Elixir & Erlang/OTP versions (elixir --version):
• Operating system:

Current behavior

After port from k8s_conf to k8s, bonny is still using HTTPoison directly under the hood.

Expected behavior

Migrate to K8s.Client and K8s.watch/N

Environment

• Bonny version: 0.2.3
• Elixir & Erlang/OTP versions (elixir --version): (any supported)
• Operating system: (any supported)

Current behavior

As a responsible operator, I like to instrument my long-running services for gathering metrics (with Prometheus, in my case) and currently must do so in my own code only, but cannot capture easily any events/data handled directly/only by the Bonny framework itself.

Desired behavior

Bonny could introduce a dependency on Telemetry for emitting runtime events from the framework, which can be captured by anyone who wishes to instrument such events. This library has been adopted by Ecto (currently implemented by ecto_sql in 3.x), among others within the Elixir community.

A less well-established alternative could be the OpenCensus BEAM implementations.

Kubernetes scheduler server.

All nodes and pods are automatically selected from Bonny.Config.cluster_name/0. pods/0 and nodes/0 are overridable callbacks of Bonny.Server.Scheduler

defmodule MyScheduler do
  use Bonny.Server.Scheduler, name: "foo"

  @impl Bonny.Server.Scheduler
  def select_node_for_pod(_pod, nodes) do
    nodes
    |> Stream.filter(fn(node) ->
      name = K8s.Resource.name(node)
      String.contains?(name, "preempt")
    end)
    |> Enum.take(1)
    |> List.first
  end
end

MyScheduler.start_link()

Environment

• Bonny version: 0.2.3
• Elixir & Erlang/OTP versions (elixir --version): (any supported)
• Operating system: (any supported)

Current behavior

Current version depends on a client library marked as deprecated. Users which also use the replacement k8s library wind up with two such clients in their dependency tree, and Bonny's own code can't benefit from improvements made in the successor library.

Expected behavior

A new release of Bonny which migrates to k8s would be wonderful!

Create a mix task bonny.gen.config that will create a new configuration file @ config/bonny.exs with the config example and comments from the README and also inject a line in the bottom of config/config.exs that includes the new config file.

Currently you have to explicitly set the controllers to watch in config.exs. This made it easy to test. Its explicit, but it can also be error prone...

Is the indirection worth the convenience?

Could be detected with something like:

@doc """
  Loads all controllers in all code paths.
  """
  @spec load_all() :: [] | [atom]
  def load_all, do: get_controllers(Bonny.Controller)

  # Loads all modules that extend a given module in the current code path.
  @spec get_controllers(atom) :: [] | [atom]
  defp get_controllers(controller_type) when is_atom(controller_type) do
    available_modules(controller_type) |> Enum.reduce([], &load_controller/2)
  end

  defp load_controller(module, modules) do
    if Code.ensure_loaded?(module), do: [module | modules], else: modules
  end

  defp available_modules(controller_type) do
    # Ensure the current projects code path is loaded
    Mix.Task.run("loadpaths", [])
    # Fetch all .beam files
    Path.wildcard(Path.join([Mix.Project.build_path(), "**/ebin/**/*.beam"]))
    # Parse the BEAM for behaviour implementations
    |> Stream.map(fn path ->
      {:ok, {mod, chunks}} = :beam_lib.chunks('#{path}', [:attributes])
      {mod, get_in(chunks, [:attributes, :behaviour])}
    end)
    # Filter out behaviours we don't care about and duplicates
    |> Stream.filter(fn {_mod, behaviours} -> is_list(behaviours) && controller_type in behaviours end)
    |> Enum.uniq()
    |> Enum.map(fn {module, _} -> module end)
  end

For local development it would be nice to have a way to generate a manifest, without generating a deployment so the operator can be run externally to the cluster.

Add:

• mix bonny.gen.manifest --skip-deployment
• help message

    To skip the `deployment` for running an operator outside of the cluster (like in development) run:
      mix bonny.gen.manifest --skip-deployment

API Aggregation

If I recall API Aggregation is done via go modules. May need to make a go module shim and do gRPC calls to the bonny operator.

Is API Aggregation worth the fuss given operators and webhooks?

Environment

• Bonny version: 0.2.3
• Elixir & Erlang/OTP versions (elixir --version): (any supported)
• Operating system: (any supported)

Current behavior

Developers consuming this library will roll-their-own to emit Kubernetes events via the appropriate API.

Expected behavior

It would be wonderful to have a simple abstraction for emitting events as part of the Bonny library's contents.

https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/#additional-printer-columns

https://kubernetes.io/docs/tasks/access-kubernetes-api/custom-resources/custom-resource-definitions/#finalizers

• Track metrics of success on dispatching
  • {apigroup, resource, version, event, success/fail}
• Add /metrics endpoint

Inject metadata.ownerReferences into resources.

I'm not positive the original idea below will work. Middleware is per cluster and it would need a per resource data to inject ownerReference.

Definitely worth looking into, but a simple solution for now could be to add an add_owner_references/2 function to the Controller behavior.

def added(todo = %{}) do
  %K8s.Operation{} # make an operation
  |> add_owner_references(todo) # attached `todo` crd references
  |> K8s.run(conn)
end

apiVersion: v1
kind: Pod
metadata:
  ...
  ownerReferences:
  - apiVersion: apps/v1
    controller: true
    blockOwnerDeletion: true
    kind: ReplicaSet
    name: my-repset
    uid: d9607e19-f88f-11e6-a518-42010a800195
  ...

original idea

This will require

• K8s.Middleware to modify all JSON paylaods during a lifecycle event
• Ensure lifecycle events are dispatched in their own process
• Store custom resource's information by process ID so that it can be fetched by middleware
• default implementation to make the delete lifecycle a no-op as deletion should happen via k8s/ownerReferences garbage collection

Related #79

First of all Daniel:

this. is. awesome!

Thanks for putting this into a single package and providing educational material around this, this is crazy amount of work.
Just couple of weeks ago I myself was thinking about writing an Kubernetes Operator in Elixir and felt some hesitation because of a rather large Yak-shaving-potential of this task (compared to Golang). But now, after seeing bonny, the effort is already reduced and this seems much more approachable. Really excited about what's possible!

So, I will try to use bonny for a real use case and will file smaller (and also bigger if needed) issues that i have noticed. If i see a clear fixing opportunity, I will open a PR.

Used version: :bonny, "0.2.2"

example:

mix bonny.gen.controller PgService pg-service

result:

@names %{
    plural: "pg-service",
    singular: "pg_service", # <--- would not be valid as URL / domain name
    kind: "PgService",
    short_names: []
  }

Prereqs: #58 #57

Refactor Reconciler and Watcher into smaller parts that the Bonny.Server.Controller can use

The higher order Bonny.Controller will use the Bonny.Server.Controller as well as add functionality around @rules, naming, etc

defmodule MyController do
  use Bonny.Server.Controller, cluster: :default
end

Shorthand for use Bonny.Server.Watcher and use Bonny.Server.Reconciler

Operators have full access to CRDs. I think this can be lowered to get and watch only.

https://github.com/coryodaniel/bonny/blob/master/lib/bonny/operator.ex#L28

Environment

• Bonny version: master

Current behavior

Dialyzer is emitting a few errors, see below.

Expected behavior

Output should be pristine.

Finding suitable PLTs
Checking PLT...
[:asn1, :certifi, :compiler, :crypto, :earmark, :eex, :elixir, :ex_doc, :hackney, :httpoison, :idna, :jason, :k8s, :kernel, :logger, :makeup, :makeup_elixir, :metrics, :mimerl, :mix, :nimble_parsec, :public_key, :ssl, :ssl_verify_fun, :stdlib, :telemetry, :unicode_util_compat, :yamerl, :yaml_elixir]
PLT is up to date!
Starting Dialyzer
[
  check_plt: false,
  init_plt: '/Users/odanielc/Workspace/coryodaniel/bonny/_build/dev/dialyxir_erlang-21.2.4_elixir-1.8.1_deps-dev.plt',
  files_rec: ['/Users/odanielc/Workspace/coryodaniel/bonny/_build/dev/lib/bonny/ebin'],
  warnings: [:unknown]
]
Total errors: 9, Skipped: 0
done in 0m1.73s
lib/bonny/telemetry.ex:22:contract_range
Contract cannot be correct because return type on line number 33 is mismatched.

Function:
Bonny.Telemetry.emit([atom(), ...], _measurements :: map(), _metadata :: map())

Type specification:
Contract head:
(atom(), map(), map()) :: no_return()

Contract head:
(atom(), map(), (... -> any)) :: no_return()

Contract head:
([atom()], map(), (... -> any)) :: no_return()

Success typing (line 33):
:ok
________________________________________________________________________________
lib/bonny/watcher.ex:15:no_return
Function init/1 has no local return.
________________________________________________________________________________
lib/bonny/watcher.ex:21:unused_fun
Function schedule_watcher/0 will never be called.
________________________________________________________________________________
lib/bonny/watcher/impl.ex:19:no_return
Function new/1 has no local return.
________________________________________________________________________________
lib/bonny/watcher/impl.ex:21:call
The call:
Bonny.Telemetry.emit([:watcher, :initialized], %{:api_version => _, :kind => _, _ => _})

breaks the contract
Contract head:
(atom(), (... -> any)) :: no_return()

Contract head:
(atom(), map()) :: no_return()

in argument
1st
________________________________________________________________________________
lib/bonny/watcher/impl.ex:36:no_return
Function watch_for_changes/2 has no local return.
________________________________________________________________________________
lib/bonny/watcher/impl.ex:37:call
The call:
Bonny.Telemetry.emit([:watcher, :started], %{:api_version => _, :kind => _, _ => _})

breaks the contract
Contract head:
(atom(), (... -> any)) :: no_return()

Contract head:
(atom(), map()) :: no_return()

in argument
1st
________________________________________________________________________________
lib/bonny/watcher/impl.ex:100:invalid_contract
Invalid type specification for function.

Function:
Bonny.Watcher.Impl.do_dispatch/3

Success typing:
@spec do_dispatch(_, :add | :delete | :modify, _) :: {:ok, pid()}
________________________________________________________________________________
lib/bonny/watcher/impl.ex:102:no_return
The created fun has no local return.
________________________________________________________________________________
�[33mdone (warnings were emitted)�[0m

Once all 4 server modules are abstracted, refactor Bonny.Controller on Bonny.Server.Controller.

Bonny.Controller will still provide CRD integration/macros/etc while Bonny.Server.Controller will simply handle watching and lifeycles

Add support for developing OSB compliant service brokers

After releasing 0.4, bump min elixir version to 1.9 change docker file to use releases and distroless and cut 0.5

Behaviour / use macro for creating a watcher.

defmodule MyWatcher do
  use Bonny.Server.Watcher, cluster: :default
  
  @doc "Operation to watch"
  @impl true
  def operation() do
    K8s.Client.list("v1", :pods, namespaces: :all)
  end

  @doc "Resource was added"
  @impl true
  def add(resource), do: :ok

  @doc "Resource was modified"
  @impl true
  def modify(resource), do: :ok

  @doc "Resource was deleted"
  @impl true
  def delete(resource), do: :ok
end

Consider dispatch operator events in a task. We expect the operator to handle its own errors, so dispatch in a task could make it extra speedy.

defmodule Bonny.TestTaskSupervisor do
  def async_nolink(_, fun), do: fun.()
  def start_child(_, fun), do: fun.()
end

@task_supervisor Application.get_env(:bonny, :task_supervisor) || Task.Supervisor

Not sure if validation itself should be a part of Bonny since kubernetes >1.13 will validate the HTTP operation.

We should support generating the Open API as a part of the CRD though. This will help with kubectl explain my-resource, enable validation at the kube API, and allow use to generate resource manifests #10

It could be very similar to how phoenix generates models:

mix bonny.gen.controller Foo foos name:string fav_number:integer fav_color:string

Open API 3 Schema Validation

Elixir Library

Include schema in #26

depends on #9

mix bonny.gen.resource test-widget --crd widget --version v1

apiVersion: bonny.example.io/v1
kind: Widget
metadata:
  name: test-widget
spec:
  whizbangs: 3

Add support for Validating and Mutating webhooks.

Create a generator or mix task to deploy and verify the functionality of a CRD on a local cluster.

Thinking something along the lines of
mix bonny.test --user=[USER] --cluster=[CLUSTER] --namespace=[NAMESPACE] --keep-namespace

Steps

• create namespace || bonny-${RAND}
• mix bonny.gen.manifest -n [NAMESPACE] -o - | kubectl apply -f -
• iex -S mix
• mix bonny.gen.resource -o - | kubectl apply -f -
• check /metrics for successful add/1
• mix bonny.gen.resource --name=name-from-first-resource -o - | kubectl apply -f -
• check /metrics for successful modify/1
• kubectl delete crd-type/name-from-first-resource
• check /metrics for successful delete/1
• optionally destroy namespace

Dependencies

• depends on OAI so we can generate a resource #10
• depends on metrics #4 #5

Need to consider how to handle multiple CRDs.

Add submodules / functions to Bonny.Server.Scheduler for composable filtering of nodes:

• affinity / anti-affinity for pods / nodes
• labels
• taints

Blocked by #55

subset_of_nodes = 
  Bonny.Server.Scheduler.Nodes.with_labels(["label-key", {"a-key", "with-a-value"}])
  |> Bonny.Server.Scheduler.Nodes.with_affinity(...)
  |> Bonny.Server.Scheduler.nodes()

Environment

• Bonny version: all
• Elixir & Erlang/OTP versions (elixir --version): all
• Operating system: all

Current behavior

If watching a resource with extremely high throughput, the streaming responses from k8s may be half of a JSON payload.

Current expectation is each chunk is a complete JSON event. Partial events cause process to crash and event to be lost.

Expected behavior

Buffer HTTP responses and parse when the entire response is present.

Environment

• Bonny version: 0.3+

Current behavior

When using dialyzer w/ a bonny controller a few warnings are emitted:

lib/ballast/controllers/v1/reserve_pool_policy.ex:1:invalid_contract
The @spec for the function does not match the success typing of the function.

Function:
Ballast.Controller.V1.ReservePoolPolicy.crd_spec/0

Success typing:
@spec crd_spec() :: %Bonny.CRD{
  :group => nil | binary(),
  :names => %{
    :kind => <<_::136>>,
    :plural => <<_::152>>,
    :shortNames => [<<_::24>>, ...],
    :singular => <<_::136>>
  },
  :scope => :cluster,
  :version => nil | binary()
}
________________________________________________________________________________
lib/ballast/controllers/v1/reserve_pool_policy.ex:1:guard_fail
Guard test:

  _ :: %{
    :kind => <<_::136>>,
    :plural => <<_::152>>,
    :shortNames => [<<_::24>>, ...],
    :singular => <<_::136>>
  }


===

false

can never succeed.
________________________________________________________________________________
lib/ballast/controllers/v1/reserve_pool_policy.ex:1:guard_fail
Guard test:
_ :: :cluster

===

false

can never succeed.
________________________________________________________________________________
lib/ballast/controllers/v1/reserve_pool_policy.ex:1:unused_fun
Function crd_spec_names/1 will never be called.

Disclaimer: Code links are merely for my own reference and other less-familiar readers, and are by no means meant to imply that the maintainer does not know the contents of their own codebase. 😄

Environment

• Bonny version: 0.2.3
• Elixir & Erlang/OTP versions (elixir --version): (any supported)
• Operating system: (any supported)

Current behavior

The current Bonny.Controller behaviour defines the add, modify and delete callbacks and includes these three events in the mix bonny.gen.controller templating.

Expected behavior

I would like to propose an additional callback of reconcile (or another representative terminology) that will, during the first boot cycle and again periodically on a configurable timer, examine existing CRDs within the operator's purview. Then it will ensure that any appropriate action has been taken based on their contents, i.e. that managed descendent resources exist with the desired content. With an eye for as much idempotency as possible, it should correct any configuration drift that may have happened while a Bonny-based operator was offline, misbehaving, etc.

This is a common practice in other operator codebases and frameworks, and would help enable the declarative, convergent behavior that we've come to appreciate from standard Kubernetes primitives.

Other notes

The current Bonny.Watcher implementation short-circuits the review of existing resources that match the watch request within the Bonny.Watcher.Impl module, which on the first request without a resource version:

Defaults to changes from the beginning of history

This feature probably also depends on #27 for clean access to the /status subresource to make it truly graceful to handle pre-existing CRDs which have already been realized.

Finally, I have half-formed ideas of trying this on my own project that may result in a PR here for discussion purposes, but I'm not yet using this library at work and will have difficulty committing the time soon.