-
Notifications
You must be signed in to change notification settings - Fork 5
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
Showing
121 changed files
with
22,664 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,4 @@ | ||
*.star linguist-language=Starlark | ||
|
||
# ignore YAML files generated by kubebuilder | ||
pkg/internal/tests/cluster/crd/** linguist-generated=true |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,59 @@ | ||
name: CI | ||
|
||
on: | ||
push: | ||
branches: [ "main" ] | ||
pull_request: | ||
branches: [ "main" ] | ||
|
||
jobs: | ||
lint-and-test: | ||
runs-on: ubuntu-latest | ||
strategy: | ||
matrix: | ||
go-version: | ||
- "1.22" | ||
env: | ||
GOPRIVATE: github.com/reddit/achilles-sdk-api | ||
|
||
container: | ||
image: golang:${{ matrix.go-version }} | ||
|
||
steps: | ||
- uses: actions/checkout@v3 | ||
|
||
- name: Workaround Git Security Warning | ||
run: | | ||
# Workaround a bug in github actions: | ||
# https://github.com/actions/runner-images/issues/6775. | ||
git config --global --add safe.directory "$GITHUB_WORKSPACE" | ||
- name: Install SSH key | ||
uses: shimataro/ssh-key-action@v2 | ||
with: | ||
known_hosts: ${{ secrets.KNOWN_HOSTS }} | ||
key: ${{ secrets.GO_MODULE_PRIVATE_KEY }} | ||
|
||
- name: Setup access for private Go modules | ||
run: | | ||
git config --global url."ssh://[email protected]/".insteadOf https://github.com/ | ||
- name: Generate | ||
run: | | ||
# needed for running `tar -xJv` for installing shellcheck | ||
apt-get update | ||
apt-get install xz-utils | ||
make generate | ||
git status | ||
git diff | ||
test -z "$(git status --porcelain)" | ||
# lint code | ||
make lint | ||
git status | ||
git diff | ||
test -z "$(git status --porcelain)" | ||
- name: Test | ||
run: make test |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,36 @@ | ||
|
||
# Binaries for programs and plugins | ||
*.exe | ||
*.exe~ | ||
*.dll | ||
*.so | ||
*.dylib | ||
bin | ||
testbin/* | ||
|
||
# Test binary, docker with `go test -c` | ||
*.test | ||
|
||
# Output of the go coverage tool, specifically when used with LiteIDE | ||
*.out | ||
|
||
# Kubernetes Generated files - skip generated files, except for vendored files | ||
!vendor/**/zz_generated.* | ||
|
||
# editor and IDE paraphernalia | ||
.idea | ||
*.swp | ||
*.swo | ||
*~ | ||
tilt_modules/ | ||
|
||
*.kubeconfig | ||
|
||
# local development tilt settings | ||
tilt_config.json | ||
|
||
# goreleaser | ||
dist/ | ||
|
||
# terraform | ||
.terraform/ |
Validating CODEOWNERS rules …
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1 @@ | ||
* @reddit/achilles |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,63 @@ | ||
SHELL:=/bin/bash | ||
|
||
PWD := $(PWD) | ||
CONTROLLER_GEN := $(PWD)/bin/controller-gen | ||
CONTROLLER_GEN_CMD := $(CONTROLLER_GEN) | ||
GOSIMPORTS := $(PWD)/bin/gosimports | ||
GOSIMPORTS_CMD := $(GOSIMPORTS) | ||
STATICCHECK := $(PWD)/bin/staticcheck | ||
STATICCHECK_CMD := $(STATICCHECK) | ||
|
||
# ENVTEST_K8S_VERSION refers to the version of kubebuilder assets to be downloaded by envtest binary. | ||
ENVTEST_K8S_VERSION = 1.29 | ||
ENVTEST := $(PWD)/bin/setup-envtest | ||
ENVTEST_CMD := $(ENVTEST) | ||
|
||
# go-get-tool will 'go get' any package $2 and install it to $1. | ||
PROJECT_DIR := $(shell dirname $(abspath $(lastword $(MAKEFILE_LIST)))) | ||
define go-get-tool | ||
@[ -f $(1) ] || { \ | ||
set -e ;\ | ||
echo "Downloading $(2)" ;\ | ||
GOBIN=$(PROJECT_DIR)/bin go install -modfile=tools/go.mod $(2) ;\ | ||
} | ||
endef | ||
|
||
.PHONY: test-manifests | ||
test-manifests: $(CONTROLLER_GEN) | ||
$(CONTROLLER_GEN) rbac:roleName=manager-role crd webhook paths="./pkg/internal/tests/api/..." output:crd:artifacts:config=pkg/internal/tests/cluster/crd/bases | ||
$(CONTROLLER_GEN) object paths="./pkg/internal/tests/api/..." | ||
|
||
.PHONY: generate | ||
generate: test-manifests $(GOSIMPORTS) | ||
go generate ./... | ||
$(GOSIMPORTS_CMD) -local github.com/reddit/achilles-sdk -l -w . | ||
|
||
KUBEBUILDER_ASSETS = $(shell $(ENVTEST_CMD) --arch=amd64 use $(ENVTEST_K8S_VERSION) -p path) | ||
.PHONY: test | ||
test: $(ENVTEST) test-manifests | ||
KUBEBUILDER_ASSETS="$(KUBEBUILDER_ASSETS)" go test -race ./... | ||
|
||
.PHONY: lint | ||
lint: $(STATICCHECK) $(GOSIMPORTS) | ||
cd tools && go mod tidy | ||
go mod tidy | ||
go fmt ./... | ||
go list ./... | grep -v encoding/json | xargs go vet # ignore forked encoding/json pkg | ||
go list ./... | grep -v encoding/json | xargs $(STATICCHECK_CMD) # ignore forked encoding/json pkg | ||
$(GOSIMPORTS_CMD) -local github.com/reddit/achilles-sdk -l -w . | ||
|
||
$(CONTROLLER_GEN): | ||
$(call go-get-tool,$(CONTROLLER_GEN),sigs.k8s.io/controller-tools/cmd/controller-gen) | ||
|
||
$(KUSTOMIZE): | ||
$(call go-get-tool,$(KUSTOMIZE),sigs.k8s.io/kustomize/kustomize/v4) | ||
|
||
$(GOSIMPORTS): | ||
$(call go-get-tool,$(GOSIMPORTS),github.com/rinchsan/gosimports/cmd/gosimports) | ||
|
||
$(STATICCHECK): | ||
$(call go-get-tool,$(STATICCHECK),honnef.co/go/tools/cmd/staticcheck) | ||
|
||
$(ENVTEST): | ||
$(call go-get-tool,$(ENVTEST),sigs.k8s.io/controller-runtime/tools/setup-envtest) |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,88 @@ | ||
# Achilles SDK | ||
[![Reticle Badge](https://reticle.snooguts.net/api/reticle_badge?repo_name=reddit/achilles-sdk)](https://reticle.snooguts.net/repos/reddit/achilles-sdk) | ||
|
||
> Achilles home: [go/achilles](https://go.snooguts.net/achilles) | ||
The Achilles SDK offers efficient | ||
[controller](https://kubernetes.io/docs/concepts/architecture/controller/) and | ||
[operator](https://kubernetes.io/docs/concepts/extend-kubernetes/operator/) | ||
creation by allowing engineers to focus on defining their automation business logic, modeled as transitions between resources states (i.e. an FSM). This | ||
significantly lessens the knowledge of controller and Kubernetes plumbing | ||
typically required to build controllers. It also forces standardization to | ||
ensure consistency amongst controllers at Reddit, providing common functionality | ||
such as metrics, logging, reusable API structs, etc.. | ||
|
||
As an example, assume you wanted to create a declarative API that allows | ||
developers to request object storage for their application. The API you wish to | ||
expose may look something like: | ||
|
||
```yaml | ||
apiVersion: infra.snooguts.net/v1alpha1 | ||
kind: ObjectStorage | ||
metadata: | ||
name: persistent-storage | ||
namespace: web-apps | ||
spec: | ||
encrypted: true | ||
region: us-east | ||
versioning: true | ||
``` | ||
To define this API, you'll use a common-convention with Go structs to | ||
automatically generate the | ||
[CustomResourceDefinition](https://kubernetes.io/docs/concepts/extend-kubernetes/api-extension/custom-resources/#:~:text=The%20CustomResourceDefinition%20API%20resource%20allows,storage%20of%20your%20custom%20resource.) | ||
(API). Then you'll define the states and transition logic, such as: | ||
![FSM Flow](docs/imgs/fsm-flow.png) | ||
Along with doing the underlying plumbing to support this controller, | ||
achilles-sdk is providing you logging, metrics, rate-limiting, and | ||
more. | ||
Lastly, in modeling your controller logic this way, you end up with a clean | ||
directed graph that models a | ||
[finite-state-machine](https://en.wikipedia.org/wiki/Finite-state_machine) | ||
(FSM). This can significantly reduce the cognitive overhead of reasoning about | ||
what a controller is doing or the state an object is in. More on FSM in the | ||
documentation. | ||
## Documentation | ||
* [Creating a controller](https://pages.github.snooguts.net/reddit/achilles-docs/dev/sdk/tutorial/) | ||
* Comprehensive guide on the implementation of a controller with | ||
achilles-sdk. | ||
* [Reconciler (FSM) Framework](docs/README.md) | ||
* Overview of how achilles-sdk works by offering a finite-state machine | ||
orchestrated with a Kubernetes reconciler. | ||
## How to Contribute | ||
1. Clone the repo locally. | ||
2. Create a new branch | ||
- Make sure the branch is pushed to this repo, rather than from a fork. This allows us to easily test the branch code in our Tilt environment. | ||
3. Make changes and test. | ||
4. Submit a Pull Request with an appropriate description. | ||
5. Merge PR once it is approved. | ||
## Releasing | ||
After incorporating your changes into the achilles-sdk repository, you can publish a new release to make the updated functionality available for repos that consume achilles-sdk such as [achilles](https://github.snooguts.net/reddit/achilles). | ||
#### Publish a new release: | ||
1. Navigate to the [GHE releases page for achilles-sdk](https://github.com/reddit/achilles-sdk/releases) and click the “Draft a new release” button in the top right | ||
2. Choose the appropriate next semantic version (`major.minor.patch`): | ||
- If there are breaking code changes (e.g., new function signatures for public functions), increment the minor version if the release is pre-1.0, otherwise increment the major version | ||
- If there are no breaking changes, increment the patch version if pre-1.0, otherwise increment the minor version if adding functionality or the patch version if fixing bugs | ||
- To create a tag with the new version, click the “Choose a tag” button. Enter the new version number and click “Create new tag: `$your-tagname-here` on publish.” | ||
3. Click the “Generate release notes” button and verify that the changes align with expectations. If everything looks good, publish the release | ||
|
||
#### Make updated functionality available for repos like achilles: | ||
1. Create a branch in the achilles repository | ||
2. Run the following command to upgrade the achilles-sdk version (replace v0.7.1 with the new version number): | ||
`go get github.com/reddit/[email protected]` | ||
3. Run a `git diff` and validate that the changes made to `go.mod` and `go.sum` are as expected. The diff should look something like the changes in this [PR](https://github.snooguts.net/reddit/achilles/pull/1135/files). | ||
4. Create a PR in the achilles repo with the newly upgraded achilles-sdk version | ||
|
||
<b>Note:</b> There are several other repos that also consume achilles-sdk but the current pattern is to allow consumers to update at their own leisure. The main repo that should for sure be updated to adopt the latest features is `reddit/achilles`. | ||
|
||
## Questions | ||
|
||
If you have any questions, please reach out to the `#achilles` Slack channel. |
Oops, something went wrong.