sync between ManagedCluster and cluster inventory API

Signed-off-by: haoqing0110 <[email protected]>

deploy/cluster-manager/chart/cluster-manager/templates/cluster_role.yaml

@@ -144,3 +144,9 @@ rules:
 - apiGroups: ["config.openshift.io"]
  resources: ["infrastructures"]
  verbs: ["get"]
+- apiGroups: ["multicluster.x-k8s.io"]
+ resources: ["clusterprofiles"]
+ verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+- apiGroups: ["multicluster.x-k8s.io"]
+ resources: ["clusterprofiles/status"]
+ verbs: ["update", "patch"]

deploy/cluster-manager/config/rbac/cluster_role.yaml

@@ -146,3 +146,9 @@ rules:
 - apiGroups: ["config.openshift.io"]
  resources: ["infrastructures"]
  verbs: ["get"]
+- apiGroups: ["multicluster.x-k8s.io"]
+ resources: ["clusterprofiles"]
+ verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+- apiGroups: ["multicluster.x-k8s.io"]
+ resources: ["clusterprofiles/status"]
+ verbs: ["update", "patch"]

deploy/cluster-manager/olm-catalog/latest/manifests/cluster-manager.clusterserviceversion.yaml

@@ -59,7 +59,7 @@ metadata:
  categories: Integration & Delivery,OpenShift Optional
  certified: "false"
  containerImage: quay.io/open-cluster-management/registration-operator:latest
- createdAt: "2024-10-08T08:24:18Z"
+ createdAt: "2024-10-11T02:21:31Z"
  description: Manages the installation and upgrade of the ClusterManager.
  operators.operatorframework.io/builder: operator-sdk-v1.32.0
  operators.operatorframework.io/project_layout: go.kubebuilder.io/v3
@@ -506,6 +506,25 @@ spec:
  - infrastructures
  verbs:
  - get
+ - apiGroups:
+ - multicluster.x-k8s.io
+ resources:
+ - clusterprofiles
+ verbs:
+ - get
+ - list
+ - watch
+ - create
+ - update
+ - patch
+ - delete
+ - apiGroups:
+ - multicluster.x-k8s.io
+ resources:
+ - clusterprofiles/status
+ verbs:
+ - update
+ - patch
  serviceAccountName: cluster-manager
  deployments:
  - label:

deploy/klusterlet/olm-catalog/latest/manifests/klusterlet.clusterserviceversion.yaml

@@ -31,7 +31,7 @@ metadata:
  categories: Integration & Delivery,OpenShift Optional
  certified: "false"
  containerImage: quay.io/open-cluster-management/registration-operator:latest
- createdAt: "2024-10-08T08:24:18Z"
+ createdAt: "2024-10-11T02:21:31Z"
  description: Manages the installation and upgrade of the Klusterlet.
  operators.operatorframework.io/builder: operator-sdk-v1.32.0
  operators.operatorframework.io/project_layout: go.kubebuilder.io/v3

go.mod

@@ -3,7 +3,7 @@ module open-cluster-management.io/ocm
 go 1.22.5
 
 require (
- github.com/davecgh/go-spew v1.1.1
+ github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc
  github.com/evanphx/json-patch v5.9.0+incompatible
  github.com/ghodss/yaml v1.0.0
  github.com/google/go-cmp v0.6.0
@@ -35,6 +35,7 @@ require (
  open-cluster-management.io/addon-framework v0.10.1-0.20241009100235-11aa520f541f
  open-cluster-management.io/api v0.14.1-0.20241008081048-f6c658202790
  open-cluster-management.io/sdk-go v0.14.1-0.20240918072645-225dcf1b6866
+ sigs.k8s.io/cluster-inventory-api v0.0.0-20240730014211-ef0154379848
  sigs.k8s.io/controller-runtime v0.18.5
  sigs.k8s.io/kube-storage-version-migrator v0.0.6-0.20230721195810-5c8923c5ff96
  sigs.k8s.io/yaml v1.4.0
@@ -72,7 +73,7 @@ require (
  github.com/go-logr/zapr v1.3.0 // indirect
  github.com/go-openapi/jsonpointer v0.19.6 // indirect
  github.com/go-openapi/jsonreference v0.20.2 // indirect
- github.com/go-openapi/swag v0.22.3 // indirect
+ github.com/go-openapi/swag v0.22.4 // indirect
  github.com/go-task/slim-sprig/v3 v3.0.0 // indirect
  github.com/gobwas/glob v0.2.3 // indirect
  github.com/gogo/protobuf v1.3.2 // indirect

go.sum

@@ -52,8 +52,9 @@ github.com/creack/pty v1.1.9/go.mod h1:oKZEueFk5CKHvIhNR5MUki03XCEU+Q6VDXinZuGJ3
 github.com/cyphar/filepath-securejoin v0.2.4 h1:Ugdm7cg7i6ZK6x3xDF1oEu1nfkyfH53EtKeQYTC3kyg=
 github.com/cyphar/filepath-securejoin v0.2.4/go.mod h1:aPGpWjXOXUn2NCNjFvBE6aRxGGx79pTxQpKOJNYHHl4=
 github.com/davecgh/go-spew v1.1.0/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
-github.com/davecgh/go-spew v1.1.1 h1:vj9j/u1bqnvCEfJOwUhtlOARqs3+rkHYY13jYWTU97c=
 github.com/davecgh/go-spew v1.1.1/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc h1:U9qPSI2PIWSS1VwoXQT9A3Wy9MM3WgvqSxFWenqJduM=
+github.com/davecgh/go-spew v1.1.2-0.20180830191138-d8f796af33cc/go.mod h1:J7Y8YcW2NihsgmVo/mv3lAwl/skON4iLHjSsI+c5H38=
 github.com/distribution/reference v0.5.0 h1:/FUIFXtfc/x2gpa5/VGfiGLuOIdYa1t65IKK2OFGvA0=
 github.com/distribution/reference v0.5.0/go.mod h1:BbU0aIcezP1/5jX/8MP0YiH4SdvB5Y4f/wlDRiLyi3E=
 github.com/docker/docker v25.0.5+incompatible h1:UmQydMduGkrD5nQde1mecF/YnSbTOaPeFIeP5C4W+DE=
@@ -93,8 +94,9 @@ github.com/go-openapi/jsonpointer v0.19.6 h1:eCs3fxoIi3Wh6vtgmLTOjdhSpiqphQ+DaPn
 github.com/go-openapi/jsonpointer v0.19.6/go.mod h1:osyAmYz/mB/C3I+WsTTSgw1ONzaLJoLCyoi6/zppojs=
 github.com/go-openapi/jsonreference v0.20.2 h1:3sVjiK66+uXK/6oQ8xgcRKcFgQ5KXa2KvnJRumpMGbE=
 github.com/go-openapi/jsonreference v0.20.2/go.mod h1:Bl1zwGIM8/wsvqjsOQLJ/SH+En5Ap4rVB5KVcIDZG2k=
-github.com/go-openapi/swag v0.22.3 h1:yMBqmnQ0gyZvEb/+KzuWZOXgllrXT4SADYbvDaXHv/g=
 github.com/go-openapi/swag v0.22.3/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
+github.com/go-openapi/swag v0.22.4 h1:QLMzNJnMGPRNDCbySlcj1x01tzU8/9LTTL9hZZZogBU=
+github.com/go-openapi/swag v0.22.4/go.mod h1:UzaqsxGiab7freDnrUUra0MwWfN/q7tE4j+VcZ0yl14=
 github.com/go-task/slim-sprig/v3 v3.0.0 h1:sUs3vkvUymDpBKi3qH1YSqBQk9+9D/8M2mN1vB6EwHI=
 github.com/go-task/slim-sprig/v3 v3.0.0/go.mod h1:W848ghGpv3Qj3dhTPRyJypKRiqCdHZiAzKg9hl15HA8=
 github.com/gobwas/glob v0.2.3 h1:A4xDbljILXROh+kObIiy5kIaPYD8e96x1tgBhUI5J+Y=
@@ -447,6 +449,8 @@ open-cluster-management.io/sdk-go v0.14.1-0.20240918072645-225dcf1b6866 h1:nxYrS
 open-cluster-management.io/sdk-go v0.14.1-0.20240918072645-225dcf1b6866/go.mod h1:jCyXPY900UK1n4xwUBWSz27s7lcXN/fhIDF6xu3jIHw=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0 h1:/U5vjBbQn3RChhv7P11uhYvCSm5G2GaIi5AIGBS6r4c=
 sigs.k8s.io/apiserver-network-proxy/konnectivity-client v0.29.0/go.mod h1:z7+wmGM2dfIiLRfrC6jb5kV2Mq/sK1ZP303cxzkV5Y4=
+sigs.k8s.io/cluster-inventory-api v0.0.0-20240730014211-ef0154379848 h1:WYPi2PdQyZwZkHG648v2jQl6deyCgyjJ0fkLYgUJ618=
+sigs.k8s.io/cluster-inventory-api v0.0.0-20240730014211-ef0154379848/go.mod h1:/aN4e7RWOMHgT4xAjCNkV4YFcpKfpZCeumMIL7S+KNM=
 sigs.k8s.io/controller-runtime v0.18.5 h1:nTHio/W+Q4aBlQMgbnC5hZb4IjIidyrizMai9P6n4Rk=
 sigs.k8s.io/controller-runtime v0.18.5/go.mod h1:TVoGrfdpbA9VRFaRnKgk9P5/atA0pMwq+f+msb9M8Sg=
 sigs.k8s.io/json v0.0.0-20221116044647-bc3834ca7abd h1:EDPBXCAspyGV4jQlpZSudPeMmr1bNJefnuqLsRAsHZo=

manifests/cluster-manager/hub/0000_00_multicluster.x-k8s.io_clusterprofiles.crd.yaml

@@ -0,0 +1,185 @@
+---
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+ annotations:
+ controller-gen.kubebuilder.io/version: v0.14.0
+ name: clusterprofiles.multicluster.x-k8s.io
+spec:
+ group: multicluster.x-k8s.io
+ names:
+ kind: ClusterProfile
+ listKind: ClusterProfileList
+ plural: clusterprofiles
+ singular: clusterprofile
+ scope: Namespaced
+ versions:
+ - name: v1alpha1
+ schema:
+ openAPIV3Schema:
+ description: ClusterProfile represents a single cluster in a multi-cluster
+ deployment.
+ properties:
+ apiVersion:
+ description: |-
+ APIVersion defines the versioned schema of this representation of an object.
+ Servers should convert recognized schemas to the latest internal value, and
+ may reject unrecognized values.
+ More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#resources
+ type: string
+ kind:
+ description: |-
+ Kind is a string value representing the REST resource this object represents.
+ Servers may infer this from the endpoint the client submits requests to.
+ Cannot be updated.
+ In CamelCase.
+ More info: https://git.k8s.io/community/contributors/devel/sig-architecture/api-conventions.md#types-kinds
+ type: string
+ metadata:
+ type: object
+ spec:
+ description: ClusterProfileSpec defines the desired state of ClusterProfile.
+ properties:
+ clusterManager:
+ description: ClusterManager defines which cluster manager owns this
+ ClusterProfile resource
+ properties:
+ name:
+ description: Name defines the name of the cluster manager
+ type: string
+ required:
+ - name
+ type: object
+ x-kubernetes-validations:
+ - message: ClusterManager is immutable
+ rule: self == oldSelf
+ displayName:
+ description: DisplayName defines a human-readable name of the ClusterProfile
+ type: string
+ required:
+ - clusterManager
+ type: object
+ status:
+ description: ClusterProfileStatus defines the observed state of ClusterProfile.
+ properties:
+ conditions:
+ description: Conditions contains the different condition statuses
+ for this cluster.
+ items:
+ description: "Condition contains details for one aspect of the current
+ state of this API Resource.\n---\nThis struct is intended for
+ direct use as an array at the field path .status.conditions. For
+ example,\n\n\n\ttype FooStatus struct{\n\t // Represents the
+ observations of a foo's current state.\n\t // Known .status.conditions.type
+ are: \"Available\", \"Progressing\", and \"Degraded\"\n\t //
+ +patchMergeKey=type\n\t // +patchStrategy=merge\n\t // +listType=map\n\t
+ \  // +listMapKey=type\n\t Conditions []metav1.Condition `json:\"conditions,omitempty\"
+ patchStrategy:\"merge\" patchMergeKey:\"type\" protobuf:\"bytes,1,rep,name=conditions\"`\n\n\n\t
+ \  // other fields\n\t}"
+ properties:
+ lastTransitionTime:
+ description: |-
+ lastTransitionTime is the last time the condition transitioned from one status to another.
+ This should be when the underlying condition changed. If that is not known, then using the time when the API field changed is acceptable.
+ format: date-time
+ type: string
+ message:
+ description: |-
+ message is a human readable message indicating details about the transition.
+ This may be an empty string.
+ maxLength: 32768
+ type: string
+ observedGeneration:
+ description: |-
+ observedGeneration represents the .metadata.generation that the condition was set based upon.
+ For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
+ with respect to the current state of the instance.
+ format: int64
+ minimum: 0
+ type: integer
+ reason:
+ description: |-
+ reason contains a programmatic identifier indicating the reason for the condition's last transition.
+ Producers of specific condition types may define expected values and meanings for this field,
+ and whether the values are considered a guaranteed API.
+ The value should be a CamelCase string.
+ This field may not be empty.
+ maxLength: 1024
+ minLength: 1
+ pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
+ type: string
+ status:
+ description: status of the condition, one of True, False, Unknown.
+ enum:
+ - "True"
+ - "False"
+ - Unknown
+ type: string
+ type:
+ description: |-
+ type of condition in CamelCase or in foo.example.com/CamelCase.
+ ---
+ Many .condition.type values are consistent across resources like Available, but because arbitrary conditions can be
+ useful (see .node.status.conditions), the ability to deconflict is important.
+ The regex it matches is (dns1123SubdomainFmt/)?(qualifiedNameFmt)
+ maxLength: 316
+ pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
+ type: string
+ required:
+ - lastTransitionTime
+ - message
+ - reason
+ - status
+ - type
+ type: object
+ type: array
+ properties:
+ description: |-
+ Properties defines name/value pairs to represent properties of a cluster.
+ It could be a collection of ClusterProperty (KEP-2149) resources,
+ but could also be info based on other implementations.
+ The names of the properties can be predefined names from ClusterProperty resources
+ and is allowed to be customized by different cluster managers.
+ items:
+ description: |-
+ Property defines a name/value pair to represent a property of a cluster.
+ It could be a ClusterProperty (KEP-2149) resource,
+ but could also be info based on other implementations.
+ The name of the property can be predefined name from a ClusterProperty resource
+ and is allowed to be customized by different cluster managers.
+ This property can store various configurable details and metrics of a cluster,
+ which may include information such as the number of nodes, total and free CPU,
+ and total and free memory, among other potential attributes.
+ properties:
+ name:
+ description: |-
+ Name is the name of a property resource on cluster. It's a well-known
+ or customized name to identify the property.
+ maxLength: 253
+ minLength: 1
+ type: string
+ value:
+ description: Value is a property-dependent string
+ maxLength: 1024
+ minLength: 1
+ type: string
+ required:
+ - name
+ - value
+ type: object
+ type: array
+ version:
+ description: Version defines the version information of the cluster.
+ properties:
+ kubernetes:
+ description: Kubernetes is the kubernetes version of the cluster.
+ type: string
+ type: object
+ type: object
+ required:
+ - spec
+ type: object
+ served: true
+ storage: true
+ subresources:
+ status: {}

manifests/cluster-manager/hub/cluster-manager-clusterprofiles-clusterrole.yaml

@@ -0,0 +1,12 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+ name: open-cluster-management:{{ .ClusterManagerName }}-clusterprofile:controller
+rules:
+# Allow hub to manage clusterprofile
+- apiGroups: ["multicluster.x-k8s.io"]
+ resources: ["clusterprofiles"]
+ verbs: ["get", "list", "watch", "create", "update", "patch", "delete"]
+- apiGroups: ["multicluster.x-k8s.io"]
+ resources: ["clusterprofiles/status"]
+ verbs: ["update", "patch"]

manifests/cluster-manager/hub/cluster-manager-clusterprofiles-clusterrolebinding.yaml

@@ -0,0 +1,12 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+ name: open-cluster-management:{{ .ClusterManagerName }}-clusterprofile:controller
+roleRef:
+ apiGroup: rbac.authorization.k8s.io
+ kind: ClusterRole
+ name: open-cluster-management:{{ .ClusterManagerName }}-clusterprofile:controller
+subjects:
+- kind: ServiceAccount
+ namespace: {{ .ClusterManagerNamespace }}
+ name: registration-controller-sa

manifests/config.go

@@ -19,6 +19,7 @@ type HubConfig struct {
  AddOnManagerImage string
  AddOnManagerEnabled bool
  MWReplicaSetEnabled bool
+ ClusterProfileEnabled bool
  CloudEventsDriverEnabled bool
  WorkDriver string
  AutoApproveUsers string

pkg/operator/operators/clustermanager/controllers/clustermanagercontroller/clustermanager_controller.go

@@ -183,6 +183,7 @@ func (n *clusterManagerController) sync(ctx context.Context, controllerContext f
  }
  config.RegistrationFeatureGates, registrationFeatureMsgs = helpers.ConvertToFeatureGateFlags("Registration",
  registrationFeatureGates, ocmfeature.DefaultHubRegistrationFeatureGates)
+ config.ClusterProfileEnabled = helpers.FeatureGateEnabled(registrationFeatureGates, ocmfeature.DefaultHubRegistrationFeatureGates, ocmfeature.ClusterProfile)
 
  var workFeatureGates []operatorapiv1.FeatureGate
  if clusterManager.Spec.WorkConfiguration != nil {

pkg/operator/operators/clustermanager/controllers/clustermanagercontroller/clustermanager_controller_test.go

@@ -546,7 +546,7 @@ func TestSyncDelete(t *testing.T) {
  }
  }
  // Check if resources are created as expected
- testingcommon.AssertEqualNumber(t, len(deleteCRDActions), 16)
+ testingcommon.AssertEqualNumber(t, len(deleteCRDActions), 17)
 
  for _, action := range deleteKubeActions {
  switch action.Resource.Resource {