Controller Runtime Client API
controller-runtime defines several interfaces used for cluster interaction:
- : implementers perform CRUD operations on a Kubernetes cluster.
manager.Manager
: manages shared dependencies, such as Caches and Clients.reconcile.Reconciler
: compares provided state with actual cluster state and updates the cluster on finding state differences using a Client.
Clients are the focus of this document. A separate document will discuss Managers.
Client Usage
The SDK relies on a manager.Manager
to create a client.Client
interface that performs Create, Update, Delete, Get, and List operations within a reconcile.Reconciler
‘s Reconcile function. The SDK will generate code to create a Manager, which holds a Cache and a Client to be used in CRUD operations and communicate with the API server. By default a Controller’s Reconciler will be populated with the Manager’s Client which is a .
controllers/<kind>_controller.go
:
A split client reads (Get and List) from the Cache and writes (Create, Update, Delete) to the API server. Reading from the Cache significantly reduces request load on the API server; as long as the Cache is updated by the API server, read operations are eventually consistent.
An operator developer may wish to create their own Client that serves read requests(Get List) from the API server instead of the cache, for example. controller-runtime provides a constructor for Clients:
// New returns a new Client using the provided config and Options.
func New(config *rest.Config, options client.Options) (client.Client, error)
client.Options
allow the caller to specify how the new Client should communicate with the API server.
// Options are creation options for a Client
type Options struct {
// Scheme, if provided, will be used to map go structs to GroupVersionKinds
Scheme *runtime.Scheme
// Mapper, if provided, will be used to map GroupVersionKinds to Resources
Mapper meta.RESTMapper
}
Example:
import (
"sigs.k8s.io/controller-runtime/pkg/client/config"
"sigs.k8s.io/controller-runtime/pkg/client"
)
cfg, err := config.GetConfig()
...
c, err := client.New(cfg, client.Options{})
...
Note: defaults are set by client.New
when Options are empty. The default will have the core Kubernetes resource types registered. The caller must set a scheme that has custom operator types registered for the new Client to recognize these types.
A Reconciler implements the interface, which exposes the Reconcile method. Reconcilers are added to a corresponding Controller for a Kind; Reconcile is called in response to cluster or external Events, with a reconcile.Request
object argument, to read and write cluster state by the Controller, and returns a reconcile.Result
. SDK Reconcilers have access to a Client in order to make Kubernetes API calls.
// KindReconciler reconciles a Kind object
type KindReconciler struct {
// client, initialized using mgr.Client() above, is a split client
// that reads objects from the cache and writes to the apiserver
client.Client
Log logr.Logger
// scheme defines methods for serializing and deserializing API objects,
// a type registry for converting group, version, and kind information
// to and from Go schemas, and mappings between Go schemas of different
// versions. A scheme is the foundation for a versioned API and versioned
// configuration over time.
Scheme *runtime.Scheme
}
// Reconcile watches for Events and reconciles cluster state with desired
// state defined in the method body.
// The Controller will requeue the Request to be processed again if an error
// is non-nil or Result.Requeue is true, otherwise upon completion it will
// remove the work from the queue.
func (r *KindReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error)
Reconcile is where Controller business logic lives, i.e. where Client API calls are made via KindReconciler.client
. A client.Client
implementer performs the following operations:
Get
// Get retrieves an API object for a given object key from the Kubernetes cluster
// and stores it in obj.
func (c Client) Get(ctx context.Context, key ObjectKey, obj runtime.Object) error
Note: An ObjectKey
is simply a client
package alias for .
Example:
import (
"context"
"github.com/example-org/app-operator/pkg/apis/cache/v1alpha1"
ctrl "sigs.k8s.io/controller-runtime"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
app := &v1alpha1.App{}
ctx := context.TODO()
err := r.Get(ctx, request.NamespacedName, app)
...
}
List
A client.ListOption
is an interface that sets fields. A client.ListOption
is created by using one of the provided implementations: MatchingLabels, , InNamespace.
Example:
"context"
"fmt"
"k8s.io/api/core/v1"
"sigs.k8s.io/controller-runtime/pkg/client"
ctrl "sigs.k8s.io/controller-runtime"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
// Return all pods in the request namespace with a label of `app=<name>`
// and phase `Running`.
podList := &v1.PodList{}
opts := []client.ListOption{
client.InNamespace(request.NamespacedName.Namespace),
client.MatchingLabels{"app": request.NamespacedName.Name},
client.MatchingFields{"status.phase": "Running"},
}
ctx := context.TODO()
err := r.List(ctx, podList, opts...)
...
}
Create
// Create saves the object obj in the Kubernetes cluster.
// Returns an error
func (c Client) Create(ctx context.Context, obj runtime.Object, opts ...client.CreateOption) error
A client.CreateOption
is an interface that sets client.CreateOptions fields. A client.CreateOption
is created by using one of the provided implementations: , ForceOwnership. Generally these options are not needed.
Example:
import (
"context"
"k8s.io/api/apps/v1"
ctrl "sigs.k8s.io/controller-runtime"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
app := &v1.Deployment{ // Any cluster object you want to create.
...
}
ctx := context.TODO()
err := r.Create(ctx, app)
...
}
Update
// Update updates the given obj in the Kubernetes cluster. obj must be a
// struct pointer so that obj can be updated with the content returned
// by the API server. Update does *not* update the resource's status
// subresource
func (c Client) Update(ctx context.Context, obj runtime.Object, opts ...client.UpdateOption) error
A client.UpdateOption
is an interface that sets client.UpdateOptions fields. A client.UpdateOption
is created by using one of the provided implementations: , ForceOwnership. Generally these options are not needed.
import (
"context"
"k8s.io/api/apps/v1"
ctrl "sigs.k8s.io/controller-runtime"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
dep := &v1.Deployment{}
err := r.Get(context.TODO(), request.NamespacedName, dep)
...
ctx := context.TODO()
dep.Spec.Selector.MatchLabels["is_running"] = "true"
err := r.Update(ctx, dep)
...
}
Patch
// Patch patches the given obj in the Kubernetes cluster. obj must be a
// struct pointer so that obj can be updated with the content returned by the Server.
func (c Client) Patch(ctx context.Context, obj runtime.Object, patch client.Patch, opts ...client.UpdateOption) error
A client.PatchOption
is an interface that sets client.PatchOptions fields. A client.PatchOption
is created by using one of the provided implementations: , ForceOwnership. Generally these options are not needed.
Example:
Updating Status Subresource
When updating the status subresource from the client, the must be used. The status subresource is retrieved with Status()
and updated with Update()
or patched with Patch()
.
Update()
takes variadic client.UpdateOption
‘s, and Patch()
takes variadic client.PatchOption
‘s. See Client.Update() and for more details. Generally these options are not needed.
Status
// Status() returns a StatusWriter object that can be used to update the
// object's status subresource
func (c Client) Status() (client.StatusWriter, error)
Example:
import (
"context"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
ctx := context.TODO()
mem := &cachev1alpha1.Memcached{}
err := r.Get(ctx, request.NamespacedName, mem)
...
// Update
mem.Status.Nodes = []string{"pod1", "pod2"}
err := r.Status().Update(ctx, mem)
...
// Patch
patch := client.MergeFrom(mem.DeepCopy())
mem.Status.Nodes = []string{"pod1", "pod2", "pod3"}
err := r.Status().Patch(ctx, mem, patch)
...
}
Delete
// Delete deletes the given obj from Kubernetes cluster.
func (c Client) Delete(ctx context.Context, obj runtime.Object, opts ...client.DeleteOption) error
A client.DeleteOption
is an interface that sets client.DeleteOptions fields. A client.DeleteOption
is created by using one of the provided implementations: , Preconditions, .
Example:
import (
"context"
"k8s.io/api/core/v1"
"sigs.k8s.io/controller-runtime/pkg/client"
ctrl "sigs.k8s.io/controller-runtime"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
pod := &v1.Pod{}
err := r.Get(context.TODO(), request.NamespacedName, pod)
...
ctx := context.TODO()
if pod.Status.Phase == v1.PodUnknown {
// Delete the pod after 5 seconds.
err := r.Delete(ctx, pod, client.GracePeriodSeconds(5))
...
}
...
}
DeleteAllOf
// DeleteAllOf deletes all objects of the given type matching the given options.
func (c Client) DeleteAllOf(ctx context.Context, obj runtime.Object, opts ...client.DeleteAllOfOption) error
A client.DeleteAllOfOption
is an interface that sets fields. A client.DeleteAllOfOption
wraps a client.ListOption and .
Example:
import (
"context"
"fmt"
"k8s.io/api/core/v1"
"sigs.k8s.io/controller-runtime/pkg/client"
ctrl "sigs.k8s.io/controller-runtime"
)
func (r *AppReconciler) Reconcile(req ctrl.Request) (ctrl.Request, error) {
...
// Delete all pods in the request namespace with a label of `app=<name>`
// and phase `Failed`.
pod := &v1.Pod{}
opts := []client.DeleteAllOfOption{
client.InNamespace(request.NamespacedName.Namespace),
client.MatchingLabels{"app", request.NamespacedName.Name},
client.MatchingFields{"status.phase": "Failed"},
client.GracePeriodSeconds(5),
}
ctx := context.TODO()
err := r.DeleteAllOf(ctx, pod, opts...)
...
}