discovery/

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/heptio/gimbal

Links

Open Source Insights

README ¶

Gimbal Discoverer

Overview

The Gimbal Discoverer currently can monitor two systems, Kubernetes and Openstack. The Discoverers perform service discovery of remote clusters by finding remote endpoints and synchronizing them to a central Kubernetes cluster as Services & Endpoints.

Kubernetes

The Kubernetes Discoverer monitors available Services and Endpoints for a single Kubernetes cluster. The credentials to access each API server are provided with a Kubernetes Secret.

The Discoverer leverages the watch operation of the Kubernetes API to receive changes dynamically, instead of polling the API. All available Services and Endpoints are synchronized to the Team namespace that matches the source system.

Openstack

The Openstack Discoverer monitors all configured Load Balancers as a Service (LBaaS) plus their corresponding Members. They are synchronized to the Team namespace as Services and Endpoints. The namespace is configured as the OpenStack TenantName.

The Discoverer polls the Openstack API on a customizable interval.

Get started

Args

The following arguments are available to customize the Discoverer:

flag	default	description	discoverer
--version	false	Show version and quit	ALL
--num-threads	2	Specify number of threads to use when processing queue items.	ALL
--gimbal-kubecfg-file	""	Location of kubecfg file for access to kubernetes cluster hosting Gimbal	ALL
--discover-kubecfg-file	""	Location of kubecfg file for access to remote kubernetes cluster to watch for services / endpoints	Kubernetes
--backend-name	""	Name of cluster scraping for services & endpoints	ALL
--debug	false	Enable debug logging	ALL
--reconciliation-period	30s	The interval of time between reconciliation loop runs	Openstack
--http-client-timeout	5s	The HTTP client request timeout	Openstack
--openstack-certificate-authority	""	Path to cert file of the OpenStack API certificate authority	Openstack
--resync-interval	30m	Resync period for Kubernetes watch client

Deployment

The discoverer can be deployed by utilizing the included deployment files. They contain the correct RBAC rules, as well as the deployment of the discoverer itself.

NOTE: Best practice would be to to create a service account user in the remote cluster who only has permissions to watch, list and get services & endpoints.

Kubernetes

# Create namespace / deployment / rbac rules:
$ kubectl apply -f deployment/kubernetes-discoverer

# Create secret for remote k8s cluster:
$ kubectl create secret generic remote-discover-kubecfg --from-file=./config -n gimbal-discovery

Openstack

# Create namespace / deployment / rbac rules:
$ kubectl apply -f deployment/openstack-discoverer

# Create secret for remote openstack cluster:
$ kubectl create secret generic remote-discover-openstack --from-literal=keystoneUrl=http://openstack001:5000/v3/ --from-literal=neutronUrl=http://openstack001:9696/ --from-literal=username=someUser --from-literal=password=secretPassword --from-literal=userDomain=default --from-file=./cert.pem -n gimbal-discovery

Development

Kubernetes

The Kubernetes discoverer requires two configs, first is the Gimbal system which will run Contour and store services & endpoints, the other is the remote cluster to scrape for services & endpoints. The config file is standard kubeconfig file, just make sure it's named config. Please include any certs required to access to the remote cluster api:

$ go run cmd/kubernetes-discoverer/main.go --gimbal-kubecfg-file=./config --discover-kubecfg-file=./config --backend-name=backendname

Openstack

The Openstack discoverer requires the config for the Gimbal Kubernetes cluster which will run Contour and store services & endpoints, the other is the remote cluster to scrape for load balancers and members. The config file is standard kubeconfig file, just make sure it's named config. Please include any certs required to access to the remote cluster api:

$ OS_USERNAME=user OS_PASSWORD=password OS_AUTH_URL=https://url OS_TENANT_NAME=tenant go run cmd/openstack-discoverer/main.go --gimbal-kubecfg-file=./config --backend-name=backendname

Build / Test

Create a binary:
$ make build

Run tests:
$ make test

Create container:
$ REGISTRY=heptio make container

Push container: 
$ REGISTRY=heptio make push

NOTE: The registry ENV variable allow you to override the registry so custom images can be tested.

Contributing

Thanks for taking the time to join our community and start contributing!

Before you start

Please familiarize yourself with the Code of Conduct before contributing.
See CONTRIBUTING.md for instructions on the developer certificate of origin that we require.

Pull requests

We welcome pull requests. Feel free to dig through the issues and jump in.

Directories ¶

Path	Synopsis
cmd
kubernetes-discoverer
openstack-discoverer
pkg
buildinfo Package buildinfo holds build-time information.	Package buildinfo holds build-time information.
k8s
metrics
openstack
signals
sync Package sync implements a queue for syncing resources to an upstream Kubernetes cluster.	Package sync implements a queue for syncing resources to an upstream Kubernetes cluster.
translator
util

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL