Konvoy DocumentationAddon Repositories
Konvoy uses a cluster.yaml file to configure the ClusterProvisioner (infrastruture configuration) and the ClusterConfiguration (Kubernetes configuration).
The ClusterConfiguration consists of several parts, including the configuration of the kubernetes version and the addons configuration.
Addons are configured by referencing an addon repository. Konvoy comes configured with the kubernetes-base-addons repository. This repository provides all the addons that make Konvoy an enterprise grade distribution, ready for day two operations.
Konvoy partners and users can create their own addon repositories. For example, a storage partner can create an addon repository to provide their CSI storage provisioner. A user can create an addon repository to meet the requirement that all clusters created, in their organization, run specific services.
This topic describes the following:
- The
structureof an addon repository - How to
configurean addon repository in the Konvoycluster.yaml - The
addon yaml configurationfor different kinds of addons. For example, storage and workload addons.
NOTE: AddonRepository, the CRD and type provided by kubeaddons, is not the same as the addon repositories described in this topic.
Addon Repository Structure
The following shows the layout and structure of an addon repository. This example contains one addon for cockroachdb.
docs-addon-repo
|- addons
| |- cockroachdb
| |- 19.2.x <- appVersion <major>.<minior>.x
| |- cockroachdb-1.yaml <- Addon yaml manifest, filename with revision
|- metadata
| |- root.yaml <- Addon metadata
| |- static
| |- cockroachdb <- folder for logo, overview documentation, ...
| |- logo.svg
| |- overview.md
|- deployments
| |- 1.16 <- Kubernetes Version
| |- default-addons-deployments.yaml <- AddonsDeployment definition
|- repository.yaml <- AddonRepository definition
|- README.md
The folders in the addon repository have the following roles:
addons/- Contains the actual manifests for addon resources.metadata/- Contains the static metadata for each addon inaddons/.deployments/- Contains the default addons specific to the version of Kubernetes in use.
Here is a link to a sample repository you can experiment with and use as a template for your own addon repository. It contains two addons awsebscsiprovisioner2 and cockroachdb.
Configure an Addon Repository in cluster.yaml
The following example shows how to configure an additional addon repository in the Konvoy cluster.yaml file. In the configuration below, the awsebscsiprovisioner2 addon is of kind ClusterAddon described in the Storage Provider Addons section. The cockroachdb addon is of kind Addon described in the Workload Addons section. The configVersion (in this case, configVersion: stable-0.1) points to the tagged release in your additional addon repository.
...
kind: ClusterConfiguration
apiVersion: konvoy.mesosphere.io/v1beta2
metadata:
name: y-west
...
spec:
...
addons:
- configRepository: https://github.com/mesosphere/kubernetes-base-addons
configVersion: stable-1.20-4.3.0
addonsList:
- name: awsebscsiprovisioner
enabled: false
...
- configRepository: https://github.com/mesosphere/docs-addon-repo
configVersion: stable-0.1
addonsList:
- name: awsebscsiprovisioner2
enabled: true
- name: cockroachdb
enabled: true
...
The second repository configured, in the example above, is our sample docs-addon-repo. It contains the two addons awsebscsiprovisioner2 and cockroachdb. awsebscsiprovisioner2 is a copy of the awsebscsiprovisioner from the kubernetes-base-addons repository. This example shows you can turn the storage provisioner in the kubernetes-base-addons repository off and provide a storage provisioner with another addon repository.
When you run konvoy up with the above cluster.yaml configuration you see the following output. All addons requiring persistent storage get installed after awsebscsiprovisioner2 providing a default StorageClass. For example, cockroachdb, elasticsearch, and velero.
STAGE [Deploying Enabled Addons]
konvoyconfig [OK]
dashboard [OK]
reloader [OK]
fluentbit [OK]
external-dns [OK]
opsportal [OK]
cert-manager [OK]
defaultstorageclass-protection [OK]
gatekeeper [OK]
awsebscsiprovisioner2 <<< [OK]
traefik [OK]
prometheus [OK]
cockroachdb [OK]
dex [OK]
velero [OK]
prometheusadapter [OK]
kube-oidc-proxy [OK]
dex-k8s-authenticator [OK]
traefik-forward-auth [OK]
kommander [OK]
elasticsearch-curator [OK]
elasticsearch [OK]
elasticsearchexporter [OK]
kibana [OK]
Kubernetes cluster and addons deployed successfully!
Addons
In this section we look at different addon configurations.
Storage Provider Addons
This is a link to a sample storage provider addon that would get created in a partner’s external repository. This is of kind ClusterAddon. This means there can only be one per Kubernetes cluster. The addons chartReference points to the helm chart of the storage provider.
---
apiVersion: kubeaddons.mesosphere.io/v1beta1
kind: ClusterAddon
metadata:
name: awsebscsiprovisioner2
labels:
kubeaddons.mesosphere.io/name: awsebscsiprovisioner2
kubeaddons.mesosphere.io/provides: storageclass
annotations:
catalog.kubeaddons.mesosphere.io/addon-revision: "0.4.0-1"
appversion.kubeaddons.mesosphere.io/awsebscsiprovisioner: "0.4.0"
values.chart.helm.kubeaddons.mesosphere.io/awsebscsiprovisioner: "https://raw.githubusercontent.com/mesosphere/charts/6c43b8ab10108fb1adba5c6dd10e800e5f1abdd0/stable/awsebscsiprovisioner/values.yaml"
spec:
namespace: kube-system
requires:
- matchLabels:
kubeaddons.mesosphere.io/name: defaultstorageclass-protection
kubernetes:
minSupportedVersion: v1.15.6
cloudProvider:
- name: aws
enabled: true
chartReference:
chart: awsebscsiprovisioner
repo: https://mesosphere.github.io/charts/stable
version: 0.3.3
values: |
---
resizer:
enabled: false
snapshotter:
enabled: true
provisioner:
enableVolumeScheduling: true
storageclass:
isDefault: true
metadata.labels
kubeaddons.mesosphere.io/name- Addon namekubeaddons.mesosphere.io/provides- Addon functionality. For example, storageclass.
metadata.annotations
catalog.kubeaddons.mesosphere.io/addon-revision-appVersion-<revison>appversion.kubeaddons.mesosphere.io/awsebscsiprovisioner- Helm chartappVersionvalues.chart.helm.kubeaddons.mesosphere.io/awsebscsiprovisioner- URI to helm chartvalues.yamlfile
spec.requires[].matchLabels
kubeaddons.mesosphere.io/name: defaultstorageclass-protection- Requires thedefaulstorageclass-protectionaddon
Workload Addons
This is a sample for a workload addon that would get created in a partner’s external repository. This is of kind Addon. The addons chartReference points to the helm chart of the workload.
---
apiVersion: kubeaddons.mesosphere.io/v1beta1
kind: Addon
metadata:
name: cockroachdb
namespace: default
labels:
kubeaddons.mesosphere.io/name: cockroachdb
# TODO: we're temporarily supporting dependencies on an existing default storage class
# on the cluster, this hack will trigger re-queue on Addons until one exists
kubeaddons.mesosphere.io/hack-requires-defaultstorageclass: "true"
annotations:
catalog.kubeaddons.mesosphere.io/addon-revision: "19.2.2-1"
appversion.kubeaddons.mesosphere.io/cockroachdb: "19.2.2"
values.chart.helm.kubeaddons.mesosphere.io/cockroachdb: "https://raw.githubusercontent.com/cockroachdb/helm-charts/5fa0123/cockroachdb/values.yaml"
spec:
kubernetes:
minSupportedVersion: v1.15.0
cloudProvider:
- name: aws
enabled: true
- name: azure
enabled: true
- name: docker
enabled: false
- name: none
enabled: true
chartReference:
chart: stable/cockroachdb
version: 3.0.2
metadata.labels
kubeaddons.mesosphere.io/name- Addon namekubeaddons.mesosphere.io/hack-requires-defaultstorageclass- Set totrueif this addon requires adefault StorageClass
metadata.annotations
catalog.kubeaddons.mesosphere.io/addon-revision-appVersion-<revison>appversion.kubeaddons.mesosphere.io/awsebscsiprovisioner- Helm chartappVersionvalues.chart.helm.kubeaddons.mesosphere.io/awsebscsiprovisioner- URI to helm chartvalues.yamlfile