Downloaded 62 times
![$ http GET http://127.0.0.1:8080/api/v1/namespaces/default
{
"apiVersion": "v1",
"kind": "Namespace",
"metadata": {
"annotations": {
"meetup": “hallo"
},
"creationTimestamp": "2017-03-10T07:51:39Z",
"name": "default",
"resourceVersion": “73",
},
"spec": { "finalizers": ["kubernetes“] },
"status": { "phase": "Active“ }
}
$ http GET http://127.0.0.1:8080/api/v1/namespaces/default |
jq ".metadata.annotations["meetup"] = "$(date)"" |
http PUT http://127.0.0.1:8080/api/v1/namespaces/default
HTTP/1.1 200 OK
Content-Length: 341
Content-Type: application/json
Date: Fri, 10 Mar 2017 08:28:01 GMT](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/85/Extending-the-Kube-API-7-320.jpg)
![$ while true; do
http GET http://127.0.0.1:8080/api/v1/namespaces/default |
jq ".metadata.annotations["meetup"] = "$RANDOM"" |
http --check-status PUT http://127.0.0.1:8080/api/v1/namespaces/default || break
done
HTTP/1.1 409 Conflict
Content-Length: 310
Content-Type: application/json
Date: Fri, 10 Mar 2017 08:27:58 GMT
{
"apiVersion": "v1",
"code": 409,
"details": {
"kind": "namespaces",
"name": "default“
},
"kind": "Status",
"message": "Operation cannot be fulfilled on namespaces "default": the object has been
modified; please apply your changes to the latest version and try again",
"metadata": {},
"reason": "Conflict",
"status": "Failure“](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/85/Extending-the-Kube-API-8-320.jpg)
![$ http 127.0.0.1:8080/apis/
{
"groups": [{
"name": "batch",
"preferredVersion": {"groupVersion": "batch/v1", "version": "v1“},
"versions": [{"groupVersion": "batch/v1", "version": "v1"}]
}, ...]
}
$ http 127.0.0.1:8080/apis/batch/v1
{
"apiVersion": "v1",
"groupVersion": "batch/v1",
"kind": "APIResourceList",
"resources": [{
"kind": "Job",
"name": "jobs",
"namespaced": true,
"verbs": ["create", "delete", "deletecollection",
"get", "list", "patch", "update", "watch“
]
}, ...]
}
resource name ⇒ /apis/batch/v1/jobs
/namespaces/<name>/](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/85/Extending-the-Kube-API-17-320.jpg)
![Validation in 1.8+apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
name: databases.example.com
spec:
...
validation:
openAPIV3Schema:
properties:
spec:
properties:
user:
type: string
password:
type: string
encoding:
enum: [“unicode“, “iso8859“]
required: [“user“, “password“, “encoding“]
metadata:
properties:
name:
pattern: “^[a-z0-9]+(-[a-z0-9]+)*$“
apiVersion: example.com/v1
kind: Databases
metadata:
name: wordpress
spec:
user: wp
password: secret
encoding: unicode
validates](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/85/Extending-the-Kube-API-31-320.jpg)
![$ while true; do
http GET http://127.0.0.1:8080/api/v1/namespaces/default |
jq ".metadata.annotations["meetup"] = "$(date)"" |
http --check-status PUT http://127.0.0.1:8080/api/v1/namespaces/default || break
done
⟲](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/85/Extending-the-Kube-API-33-320.jpg)
![$ http GET http://127.0.0.1:8080/api/v1/namespaces/default
{
"apiVersion": "v1",
"kind": "Namespace",
"metadata": {
"annotations": {
"meetup": “hallo"
},
"creationTimestamp": "2017-03-10T07:51:39Z",
"name": "default",
"resourceVersion": “73",
},
"spec": { "finalizers": ["kubernetes“] },
"status": { "phase": "Active“ }
}
$ http GET http://127.0.0.1:8080/api/v1/namespaces/default |
jq ".metadata.annotations["meetup"] = "$(date)"" |
http PUT http://127.0.0.1:8080/api/v1/namespaces/default
HTTP/1.1 200 OK
Content-Length: 341
Content-Type: application/json
Date: Fri, 10 Mar 2017 08:28:01 GMT](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/75/Extending-the-Kube-API-7-2048.jpg)
![$ while true; do
http GET http://127.0.0.1:8080/api/v1/namespaces/default |
jq ".metadata.annotations["meetup"] = "$RANDOM"" |
http --check-status PUT http://127.0.0.1:8080/api/v1/namespaces/default || break
done
HTTP/1.1 409 Conflict
Content-Length: 310
Content-Type: application/json
Date: Fri, 10 Mar 2017 08:27:58 GMT
{
"apiVersion": "v1",
"code": 409,
"details": {
"kind": "namespaces",
"name": "default“
},
"kind": "Status",
"message": "Operation cannot be fulfilled on namespaces "default": the object has been
modified; please apply your changes to the latest version and try again",
"metadata": {},
"reason": "Conflict",
"status": "Failure“](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/75/Extending-the-Kube-API-8-2048.jpg)
![$ http 127.0.0.1:8080/apis/
{
"groups": [{
"name": "batch",
"preferredVersion": {"groupVersion": "batch/v1", "version": "v1“},
"versions": [{"groupVersion": "batch/v1", "version": "v1"}]
}, ...]
}
$ http 127.0.0.1:8080/apis/batch/v1
{
"apiVersion": "v1",
"groupVersion": "batch/v1",
"kind": "APIResourceList",
"resources": [{
"kind": "Job",
"name": "jobs",
"namespaced": true,
"verbs": ["create", "delete", "deletecollection",
"get", "list", "patch", "update", "watch“
]
}, ...]
}
resource name ⇒ /apis/batch/v1/jobs
/namespaces/<name>/](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/75/Extending-the-Kube-API-17-2048.jpg)
![Validation in 1.8+apiVersion: apiextensions.k8s.io/v1beta1
kind: CustomResourceDefinition
metadata:
name: databases.example.com
spec:
...
validation:
openAPIV3Schema:
properties:
spec:
properties:
user:
type: string
password:
type: string
encoding:
enum: [“unicode“, “iso8859“]
required: [“user“, “password“, “encoding“]
metadata:
properties:
name:
pattern: “^[a-z0-9]+(-[a-z0-9]+)*$“
apiVersion: example.com/v1
kind: Databases
metadata:
name: wordpress
spec:
user: wp
password: secret
encoding: unicode
validates](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/75/Extending-the-Kube-API-31-2048.jpg)
![$ while true; do
http GET http://127.0.0.1:8080/api/v1/namespaces/default |
jq ".metadata.annotations["meetup"] = "$(date)"" |
http --check-status PUT http://127.0.0.1:8080/api/v1/namespaces/default || break
done
⟲](https://image.slidesharecdn.com/meetup-extendandbuildonkubernetes-hamburg-170926093849/75/Extending-the-Kube-API-33-2048.jpg)
![UiPath Automation Suite Installation (Hands-On) [2/3]](https://cdn.slidesharecdn.com/ss_thumbnails/automationsuitecommunitysession2-251015095633-a6d862f1-thumbnail.jpg?width=600ounds&width=560&fit=bounds)
Extending the Kube API
- 1. Extending the Kube API Dr. Stefan Schimanski sttts@redhat.com/ sttts @ Github @the1stein Kubernetes Meetup Hamburg, September 21 2017
- 3. Disclaimer: Kubernetes happens tobe able to launch pods. It‘s even quite good at it. We will not launch pods today.
- 4.
- 6. $ kube-apiserver --secure-port 0 --etcd-servers http://127.0.0.1:2379 --service-cluster-ip-range 10.0.0.0/16 --storage-backend etcd2 --storage-media-type application/json $ etcd $kubectl config set-cluster local --server=http://127.0.0.1:8080 $ kubectl config set-context local --cluster=local $ kubectl config use-context local $ kubectl get namespaces --v=7 $ kubectl get namespace default -o json $ kubectl annotate namespace default meetup=hello $ curl http://127.0.0.1:8080/api/v1/namespaces/default $ etcdctl ls --recursive $ etcdctl get /registry/namespaces/default $ etcdctl -o extended get /registry/namespaces/default
- 7. $ http GET http://127.0.0.1:8080/api/v1/namespaces/default { "apiVersion": "v1", "kind": "Namespace", "metadata":{ "annotations": { "meetup": “hallo" }, "creationTimestamp": "2017-03-10T07:51:39Z", "name": "default", "resourceVersion": “73", }, "spec": { "finalizers": ["kubernetes“] }, "status": { "phase": "Active“ } } $ http GET http://127.0.0.1:8080/api/v1/namespaces/default | jq ".metadata.annotations["meetup"] = "$(date)"" | http PUT http://127.0.0.1:8080/api/v1/namespaces/default HTTP/1.1 200 OK Content-Length: 341 Content-Type: application/json Date: Fri, 10 Mar 2017 08:28:01 GMT
- 8. $ while true; do http GET http://127.0.0.1:8080/api/v1/namespaces/default | jq".metadata.annotations["meetup"] = "$RANDOM"" | http --check-status PUT http://127.0.0.1:8080/api/v1/namespaces/default || break done HTTP/1.1 409 Conflict Content-Length: 310 Content-Type: application/json Date: Fri, 10 Mar 2017 08:27:58 GMT { "apiVersion": "v1", "code": 409, "details": { "kind": "namespaces", "name": "default“ }, "kind": "Status", "message": "Operation cannot be fulfilled on namespaces "default": the object has been modified; please apply your changes to the latest version and try again", "metadata": {}, "reason": "Conflict", "status": "Failure“
- 9.
- 10. { "apiVersion": "v1", "kind": "Status", "metadata": {}, "code": 409, "message": “...", "status": "Failure“ } /apis/batch/v2alpha1/jobs { “apiVersion“: “v2alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } Resource vs. Kind http pathvs. logical object * I omitted the namespace in /apis/batch/v1/jobs/namespaces/default/nightly
- 11. /apis/extensions/v1alpha1/jobs /apis/batch/v2alpha1/jobs /apis/batch/v1/jobs { “apiVersion“: “v1alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v2alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } * I omitted the namespace in /apis/batch/v1/jobs/namespaces/default/nightly
- 12. /apis/extensions/v1alpha1/jobs /apis/batch/v2alpha1/jobs /apis/batch/v1/jobs { “apiVersion“: “v1alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v2alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } * I omitted the namespace in /apis/batch/v1/jobs/namespaces/default/nightly
- 13. /apis/extensions/v1alpha1/jobs/nightly /apis/batch/v2alpha1/jobs/nightly /apis/batch/v1/jobs/nightly { “apiVersion“: “v1alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v2alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } * I omittedthe namespace in /apis/batch/v1/jobs/namespaces/default/nightly
- 14. { “apiVersion“: “v1alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v2alpha1“, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } { “apiVersion“: “v1 “, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } etcd { “apiVersion“: “v1 “, “kind“: “Job“, “metadata“: { “name“: “nightly“ }, “spec“: { ... } } Protobuf or JSON storage version encoding
- 15. I want my ownkinds and store them in the apiserver and use kubectl.
- 16. Discovery how kubectl knowswhich kinds/resources exist
- 17. $ http 127.0.0.1:8080/apis/ { "groups": [{ "name": "batch", "preferredVersion": {"groupVersion":"batch/v1", "version": "v1“}, "versions": [{"groupVersion": "batch/v1", "version": "v1"}] }, ...] } $ http 127.0.0.1:8080/apis/batch/v1 { "apiVersion": "v1", "groupVersion": "batch/v1", "kind": "APIResourceList", "resources": [{ "kind": "Job", "name": "jobs", "namespaced": true, "verbs": ["create", "delete", "deletecollection", "get", "list", "patch", "update", "watch“ ] }, ...] } resource name ⇒ /apis/batch/v1/jobs /namespaces/<name>/
- 18.
- 19. Third Party Resources * they are markedas beta in the API, but became beta before we even had alpha.
- 20. Third Party Resources * they are markedas beta in the API, but became beta before we even had alpha.
- 21. ThirdPartyResources are limited •no version conversion • no defaulting • no validation • no subresources (scale, status) • no admission • alpha ⇒ API might change, beta proposal is in discussion • demand is high, expect improvements in 1.7+ • Today‘s users of TPRs: https://gist.github.com/philips/a97a143546c87b86b870a82a753db14c
- 22.
- 23.
- 24.
- 25. Custom Resource Definitions (CRDs) apiextensions/v1beta1 •apiVersion: apiextensions.k8s.io/v1beta1 kind: CustomResourceDefinition metadata: name: databases.example.com spec: group: example.com version: v1 names: kind: Database plural: databases scope: Namespacedmust match
- 26. Custom Resource Definitions • CRDs replaceThirdPartyResources in 1.7+ • TPRs will be removed in 1.8, simple migration exists • single version per resource • consistent API like native types • stable basis for more features • validation with JSON-Schema • defaulting via JSON-Schema • sub-resources (proposal is being written) • initializers in 1.7 • garbage collection in 1.8 in 1.8, Google Summer of Code project !
- 27. apiVersion: apiextensions.k8s.io/v1beta1 kind: CustomResourceDefinition metadata: name: databases.example.com spec: group: example.com version:v1 names: kind: Database plural: databases scope: Namespaced $ kubectl create –f databases-crd.yaml $ kubectl describe crd databases.example.com $ kubectl get crd databases.example.com -o yaml ... status: acceptedNames: kind: Database listKind: DatabaseList plural: databases singular: database conditions: - type: NamesAccepted message: no conflicts found reason: NoConflicts status: "True“ - type: Established message: the initial names have been accepted reason: InitialNamesAccepted status: "True“ a moment later
- 28. $ kubectl create –f databases-crd.yaml$ kubectl create –f wordpress-databases.yaml apiVersion: example.com/v1 kind: Database metadata: name: wordpress spec: user: wp password: secret encoding: unicode apiVersion: apiextensions.k8s.io/v1beta1 kind: CustomResourceDefinition metadata: name: databases.example.com spec: group: example.com version: v1 names: kind: Database plural: databases scope: Namespaced CustomResource (CR)CustomResourceDefinition (CRD)
- 29. $ kubectl getdatabases –w --no-headers wordpress <none> {"apiVersion":"example.com/v1","kind":"Databases",... wordpress <none> {"apiVersion":"example.com/v1","kind":"Databases",... $ curl -f 'http://127.0.0.1:8080/apis/example.com/v1/namespaces/default/databases?watch=true&resourceVersion=434‘ {"type":"DELETED","object":{"apiVersion":"example.com/v1","kind":"Databases","metadata":{"name":"wordpress","names pace":"default","selfLink":"/apis/example.com/v1/namespaces/default/databases/wordpress","uid":"8f5312c0-29c8-11e7- 88f9-4c3275978b79","resourceVersion":"435","creationTimestamp":"2017-04- 25T15:05:03Z"},"spec":{"encoding":"unicode","password":"secret","user":"wp"}}} {"type":"ADDED","object":{"apiVersion":"example.com/v1","kind":"Databases","metadata":{"name":"wordpress","namespa ce":"default","selfLink":"/apis/example.com/v1/namespaces/default/databases/wordpress","uid":"b4318cb5-29c8-11e7- 88f9-4c3275978b79","resourceVersion":"436","creationTimestamp":"2017-04- 25T15:06:05Z"},"spec":{"encoding":"unicode","password":"secret","user":"wp"}}}
- 30. ThirdPartyResources are limited •no version conversion (only one version possible per CRD) • no validation (in 1.8, Google Summer of Code) • no defaulting (probably in 1.9, Google Summer of Code) • no subresources (scale, status) (proposal is being written) • no admission (since 1.7: admission webhooks + initializers) • alpha CRDs are beta • demand is high • Today‘s users of TPRs: https://gist.github.com/philips/a97a143546c87b86b870a82a753db14c CRDs
- 31.
- 32. Controllers where is thebusiness logic?
- 33. $ while true; do http GET http://127.0.0.1:8080/api/v1/namespaces/default | jq".metadata.annotations["meetup"] = "$(date)"" | http --check-status PUT http://127.0.0.1:8080/api/v1/namespaces/default || break done ⟲
- 34. $ kubectl get namespaces--watch --no-headers | while read NS STATUS TIME ; do # do whatever you like here, e.g. change the namespace echo "$NS changed“ done ⟲ $ curl -f 'http://127.0.0.1:8080/api/v1/namespaces?watch=true&resourceVersion=4711‘ {"type":"ADDED","object":{"kind":"Namespace","apiVersion":"v1","metadata":{"name ... {"type":“MODIFIED","object":{"kind":"Namespace","apiVersion":"v1","metadata":{"name ... {"type":“DELETED","object":{"kind":"Namespace","apiVersion":"v1","metadata":{"name ...
- 35.
- 36. Why • CustomResourceDefinitions will alwaysbe limited (declarative vs. Turing-complete) • no version conversion • validations only via JSON-Schema (less expressive than code) • simple defaulting via JSON-Schema • admission only out-of-process (slower than in-process) • Some things need full power of Go • Service catalog • OpenShift PaaS • other powerful APIs ≫ Goal: allow powerful extensions without modifying Kubernetes itself
- 37. k8s.io/apiserver – since1.6 • generic apiserver library in Go • today used inside • kube-apiserver • apiextensions-apiserver • federation-apiserver • service catalog • OpenShift 3.6+ • allows creation of custom apiservers in a couple hundred lines of code • each custom apiserver is its own process, communicating via HTTPS • delegates authentication/authorization to kube-apiserver • uses etcd storage (possibly shared with kube)
- 39. kube-apiserver service catalogPaaS kube-aggregator
- 40. kube-apiserver service catalogPaaS kube-aggregator API-1 API-2 API-3 API 1+2+3 Pods Jobs ... announcement ... build test project
- 41. kube-apiserver kube-apiserver kube-apiserver federation apiserver APIAPI API API Pods EU replicaset Pods US replicaset Pods A replicaset deployment service Europe US Asia Not this: federation controllers⟲ federated resources: availability zones + regions:
- 42. kube-apiserver service catalogPaaS kube-aggregator discoverydiscovery
- 43. kube-apiserver service catalogPaaS kube-aggregator GET GET /apis/servicecatalog/subscription/database-prod-wordpress
- 44. kube-apiserver service catalogPaaS kube-aggregator GET /apis/servicecatalog/subscription/database-prod-wordpress GET user: meetup roles: admin RBAC Namespace
- 45. kube-apiserver service catalogPaaS kube-aggregator GET Vision: $ helm install service-catalog $ kubectl create service-announcement .... GET /apis/servicecatalog/subscription/database-prod-wordpress
- 46. kube-apiserver service catalogPaaS kube-aggregator GET Vision: $ helm install service-catalog $ kubectl create service-announcement .... GET /apis/servicecatalog/subscription/database-prod-wordpress
- 47. apiextensions- apiserver service catalog PaaS kube-aggregator GET Vision: $helm install service-catalog $ kubectl create service-announcement .... GET /apis/servicecatalog/subscription/database-prod-wordpress kube-apiserver
- 49. apiVersion: v1 kind: Service metadata: name: sample-apiserver namespace: default spec: ports: - port: 8443 protocol: TCP targetPort: 8443 apiVersion: apiregistration.k8s.io/v1beta1 kind:APIService metadata: name: v1alpha1.wardle.k8s.io spec: group: wardle.k8s.io version: v1alpha1 priority: 200 service: name: sample-apiserver namespace: default $ http --cert client-admin.crt --cert-key client-admin.key --verify no http://localhost:8080/apis/wardle.k8s.io/v1alpha1/namespaces/default/flunders
- 50. Demo • https://github.com/openshift/kube-projects: $ ALLOW_ANY_TOKEN=trueENABLE_RBAC=true hack/local-up-cluster.sh $ kubectl create ns project-openshift-io $ kubectl create -f https://.../apiregistration.k8s.io.yaml $ kubectl create -f https://.../rbac.authorization.k8s.io.yaml $ kubectl create -f https://.../core.k8s.io.yaml $ kubectl get projects
- 51. Links • https://docs.google.com/document/d/1y16jKL2hMjQO0trYBJJSczPA Wj8vAgNFrdTZeCincmI/ Two Waysto Extend the K8s API - Add resources to a Kubernetes API with TPR or AA • https://github.com/kubernetes/community/blob/master/contributor s/design-proposals/aggregated-api-servers.md • https://gist.github.com/philips/a97a143546c87b86b870a82a753db1 4c - Kubernetes Third-Party Resource Users
- 52.
- 53.
- 54. Restful http API / /version /api /api/v1/pods /api/v1/pods/status /apis /apis/batch /apis/batch/v2alpha1 /apis/batch/v2alpha1/jobs /apis/batch/v2alpha1/cronjo /apis/batch/v1beta1 /apis/batch/v1beta1/jobs /apis/batch/v2alpha1/jobs Group Version ResourceHTTP paths: In Go: gvk := schema.GroupVersionKind{Group: “batch“, Version: “v2alpha1“, Kind: “Job“} obj:= api.Scheme.New(gvk) codec := api.Codecs.LegacyCodec(gvk.GroupVersion()) codec.Decode(reqBody, gvk, obj) type Job struct { metav1.TypeMeta metav1.ObjectMeta Spec JobSpec Status JobStatus } pkg/apis/batch/v2alpha1/types.go type TypeMeta struct { Kind string APIVersion string } type ObjectMeta struct { Name string ... }
- 55. Restful http API / /version /api /api/v1/pods /api/v1/pods/status /apis /apis/batch /apis/batch/v2alpha1 /apis/batch/v2alpha1/jobs /apis/batch/v2alpha1/cronjo /apis/batch/v1beta1 /apis/batch/v1beta1/jobs MaxInFlightLimit TimeoutForNonLongRunningRequests Panic Recovery CORS Authentication Audit Impersonation Authorization k8s.io/apiserver/pkg/server. DefaultBuildHandlerChain „Filters“ k8s.io/apiserver/pkg/server/routes/index.go – / k8s.io/apiserver/pkg/server/routes/version.go– /version k8s.io/apiserver/pkg/server/routes/swagger.go – /swaggerapi k8s.io/apiserver/pkg/server/routes/openapi.go – /swagger.json „Routes“ mux k8s.io/apiserver/pkg/endpoints.APIGroupVersion.InstallREST AddSupportedResourcesWebService – /apis/batch/v2alpha1 k8s.io/apiserver/pkg/endpoints.APIInstaller.Install /apis/batch/v2alpha1/jobs /apis/batch/v2alpha1/cronjobs ... WithRequestInfo ctx.RequestInfo
- 56. Restful http API mux k8s.io/apiserver/pkg/endpoints.APIGroupVersion.InstallREST AddSupportedResourcesWebService – /apis/batch/v2alpha1 k8s.io/apiserver/pkg/endpoints.APIInstaller.Install /apis/batch/v2alpha1/jobs /apis/batch/v2alpha1/cronjobs ... pkg/apis/batch typeJobs struct pkg/apis/batch/v2alpha1 type Jobs struct api.Scheme k8s.io/apiserver pkg/api api.Scheme.Convert(&internalJob, &v2alohaJob) /apis/batch/v2alpha1/jobs GET PUT POST DELETE ... /status /scale /proxy ... subresources
- 57. Restful http API mux pkg/apis/batch type Jobs struct pkg/apis/batch/v2alp ha1 type Jobs struct api.Sche meapi.Scheme.Convert(&job, &v1job) POST /apis/batch/v2alpha1/jobs k8s.io/apiserver pkg/endpoints/handlers.CreateNamedResource binary JSON payload Go struct v2alpha1.Job HTTP Request Go struct internal.Job Store k8s.io/apiserver pkg/registry/generic Storage k8s.io/apiserver pkg/storage/etcd3 ProtoBuf Job Go struct v2alpha1.Job etcd
- 58. type Scheme struct •AddKnownTypes(gv, obj Object) • Default(src Object) • Copy(src Object) Object • Convert(in, out interface{}) • New(gvk) Object ApiGroup pkg/apis/batch pkg/apis/batch/v1 pkg/apis/batch/v2alpha1 pkg/apis/batch/register.go pgk/apis/batch/install Group Version Kind Resource type Object interface • GetObjectKind() string client-go/pkg/api.Scheme client-go/pkg/api.Codecs Discovery type APIGroupList struct type APIVersions struct type APIResourceList struct GroupVersionKind „gvk“ GroupVersionResource Unversioned types Unstructured List Registry / Storage type Storage interface type Lister interface type Updater interface type Getter interface type Deleter interface .... deepcopy-gen conversion-gen defaulting-gen Code Generation type OwnerReference struct type ObjectReference struct type TypeMeta struct type ObjectMeta struct Meta api.Scheme api.Codecs api.Registry api.GroupFactoryRegistry Globals