►
From YouTube: Kubernetes KubeBuilder Meeting 20210520
Description
KubeBuilder Meeting for 2021/05/20. See https://sigs.k8s.io/kubebuilder for more details.
A
A
As
a
reminder,
this
is
being
recorded
and
will
be
posted
to
youtube.
So
you
know
don't
say
anything
that
you
don't
want
posted
to
youtube
for
all
the
world
to
see
all
right.
So
it
looks
like
we
have
a
pretty
short
agenda
today.
So
we
have
two
items.
I
think
the
first
one
comes
from
kevin
about
the
conditional
controller
design.
So
kevin
I'm
gonna
hand
it
over
to
you.
B
I
you
know
the
operator
admin
who
writes
the
controller,
who
runs
the
controller
manager,
is
different
from
the
the
cluster
admin
and
when
that's
the
case,
I
don't
have
any
control
over
what
crds
are
installed
on
the
cluster.
And
so,
if
the
crd,
that
my
operator
is
watching
isn't
installed
when
the
operator
starts
it'll,
just
air
out
with
a
with
a
metanokin
match
error
or
if
the
crd
gets
uninstalled
during
operations,
the
informer
will
just
spam
logs
and
spam.
B
B
C
C
I
was
100
clear
again
just
on
a
quick
first
reading
of
this,
how
tightly
well,
how
comprehensively
we
want
this
to
fit
into
a
multi-cluster
story.
I've,
admittedly
not
kept
up
recently
with
what
controller
runtime
is
supporting
as
like
a
first-class
kind
of
support
for
accessing
multiple
clusters
at
the
same
time,
but
that
seems
like
the
critical
point,
the
critical
side
of
this
to
me.
C
If
we
were
just
talking
about
a
single
cluster
like
I'm
just
running
a
controller
cluster,
watching
resources
in
that
cluster
and
on
rare
occasions,
apis
come
and
go,
and
I
need
to
deal
with
that
like
that
seems
like
we
might
take
different
or
simpler
approaches
than
what's
here.
So
I
don't
know,
can
you
maybe
elaborate
a
little
bit
on
how
you
see
this
fitting
into
multicultural
support
in
general.
B
I
guess
solid,
correct
me
if
I'm
wrong
or
or
if
I'm
saying
anything
that
that
doesn't
make
sense,
but
this
you
know
the
the
current
in
in
the
multi-cluster
case.
Basically,
if
you
wanted
to
do
something
like
this,
you
would
need
to
have
some
sort
of
orchestrator
of
of
controllers
that
can
get
kind
of
clunky,
and
this
provides
a
a
you
know,
a
built-in
way
to
handle
that.
A
A
I
think
there
was
some
initial
work
around
separating
the
cluster
objects,
kind
of,
like
the
cluster
connection,
details
from
the
manager
object
so
that
you
could
theoretically
instantiate
a
manager
and
and
like
have
clients
from
that
manager.
That
connected
to
multiple
controllers,
I
think
one
of
the
things
just
to
kind
of
supplement
what
kevin
said
is
one
of
the
one
of
the
patterns
that
we've
we've
seen
with
some
of
our
internal
users
is,
is
kind
of
a
an
approach
where
we
have
yeah.
C
C
C
A
A
It's
we
would
also
like
part
of
part
of
the
work
like
I
think
kevin
has
put
in
is
making
the
flow
a
little
bit
easier.
So
you
can
declare
like
this
controller
is
conditional
on
this
api
existing
or
whatever,
and
so
I
think
in
either
case.
We'd
probably
need
to
have
like
doing
that
right
now,
without
like
kind
of
support
and
control
runtime,
we
found
to
be
a
little
bit.
A
C
Yeah,
it's
definitely
more
clumpy
it.
What
what
I
like
about!
It
is
like
the
just
complete
simplicity
of
it
that
and
I
think
it
fits
other
declarative
kind
of
patterns
and
immutability
kind
of
patterns
like
when
things
change,
rather
than
trying
to
keep
up
with
every
incremental
change.
Let's
just
you
know
start
something
fresh.
It
also
assumes
that
these
are
going
to
be
rare.
Events
like
apis
coming
and
going
from
a
cluster
is
presumably
a
rare
thing.
A
Yeah,
that's
that's
a
that's
a
fair
point
to
bring
up.
I
think.
There's
there's
also
like
these
are
like
there's
a
there's
at
least
one
kind
of
optimization
benefit
to
this
approach
as
well,
which,
like
it
is
kind
of
strictly
an
optimization,
and
it
only
applies
in
certain
use
cases,
but
the
the
the.
A
If,
if
for
some
reason,
you
are
concerned
about
the
number
of
requests
you
are
making
from
your
manager
binary
out
to
a
given
api
server
kind
of
hot
looping
on
an
api
that
doesn't
exist,
isn't
great
and
doesn't
in
in
certain
cases,
and
so
like
the
other
nice
thing
about
this
here
is:
is
it
like
compared
to
some
of
our
traditional
approaches?
Is
it
stops
at
restarting?
The
manager
would
probably
also
help
with
this
we'd.
A
Probably
be
you
end
up
using
the
same
signals,
and
then
we
just
have
to
block
the
manager.
I
guess
block
the
manager
from
starting
or
block
the
particular
controllers
from
starting
until
until
the
api
appeared,
I
I
would
be.
I
think
I
would
be
idly
curious
to
see
how
much
actual
overlap
in
the
code
is,
because
we'd
probably
still
want
like
a
lot
of
the
work
kevin
has
done.
A
I
think
this
pr
is
plumbing
through
figuring
out
how
to
plumb,
through
the
signals
that
we
need
to
deal
with
like
stopping
and
starting
the
controllers,
and
we
need
those
same
signals
for
the
manager.
I
suspect
a
lot
of
the
complication
or
complication.
It's
a
lot
of
the
a
lot
of
the
deeper
approach
would
kind
of
have
some
overlap
with
the
restarting
the
manager
approach.
Just
from
that
perspective
of
we
still
need
to
plumb
through
the
signals
we
still
need
to
be
able
to
detect
hey.
C
Yeah,
that
makes
sense,
I've
definitely
seen,
and
I
think,
maybe
even
a
couple
times.
I've
done
at
least
half
of
that
pattern
of,
and
probably
some
others
have
seen
this
as
well
like
a
particular
controller
at
startup
like
in
your
main.go
at
some
point,
you'll
use
the
discovery,
api
and,
like
put
it
in
the
loop,
like
wait
for
some
api
to
appear
if
it
ever
appears
before
starting
this
controller
kind
of
stuff
that
side's
relatively
straightforward,
probably
the
api
going
away,
is
more
difficult.
A
Yeah
it's!
It
is
yeah
that
it
is
it's
straightforward,
but
it's
nice.
I
think
if
we
see
it
we're
seeing
it
enough
now,
at
least
I
don't
like,
I
can't
speak
for
everyone
else
on
this
call,
but
like
it's
something
that
I
think
I've
encountered
from
a
lot
of
our
internal
users
is
like
that.
That
kind
of
desire
to
wait
and
so
like
encapsulating
it
in
an
easier
to
set
up
a
pattern,
seems
seems
like
it
would
be
valuable.
A
A
First
of
all,
I
think
perhaps
most
of
us,
if
not
all
of
us,
can
be
in
agreement
that
running
arbitrary
scale.
Ships
from
the
internet
is
is
maybe
not
the
best,
and
you
know
there
are
all
sorts
of
weird
issues
with
shell
compatibility
that
occasionally
hit
and
stuff
like
that,
and
the
other
thing
is
like.
A
So
I
can
give
a
little
demo
of
how
it
works
and
talk
about
how
it
works
and
yeah
see.
If
anyone
has
any
questions,
let
me
let
me
share
my
screen
share
a
window
great.
Can
you
all
see
this
well
font
size,
big
enough
yeah?
That's
fine!
For
me!
Wonderful
all
right!
So
all
right!
So
it's!
The
idea
is
hopefully
it's
pretty
easy
to
install
it
lives
in
its
own
module
inside
controller
runtime,
so
you
can
just
go
install
it.
I
already
have
it
built.
A
A
A
You
know
what
that's
gonna
cause
an
issue.
I
have
a
shell
script
set
up
that
that
that
wraps
this
a
little
bit
for
my
personal
environment.
Let
me
let
me
actually
just
use
the
binary
directly,
so
you
can
actually
see
what's
going
on,
so
what
you
can
see
is
that
it
kind
of
downloads
them
into
a
cache.
The
cache
is
operating
system
specific,
so
it'll
put
it
in
the
appropriate
place
for
your
operating
system
for
app
data.
A
Basically,
and
you
can
switch
between
these
versions
easily
and
it'll
print
out,
you
can
tell
it's
either
print
out
information
or
you
can
tell
it
to
print
out
a
path
just
the
path
or
you
can
tell
it
to
print
out
a
little
shell
script
type
thing
that
you
can
just
source
like
like
that
you
can.
This
will
accept
all
sorts
of
selectors.
A
A
If
I
wanted
to
clean
up
versions
and
stuff
like
that
yeah,
so
hopefully
that
should
make
it
a
lot
easier
to
manage
your
m
test
binaries
and
make
it
so
that
you're,
not
you,
don't
have
like
if
you
work
on
like
five
or
six
different
projects,
you're
not
like,
and
they
all
use
119
by
default.
You
don't
have
like
seven
copies
of
119.
You
just
have
this
one
centralized
copy,
that's
sitting
around.
A
Oh,
I
should
mention
too,
for
people
who
are
concerned
about
offline
usage.
There
are
flags
and
environment
variables
that
can
configure
it
to
only
use
offline
versions
or
to
look
at
a
different
source
or
allow
you
to
side,
load,
kind
of
side,
load
tarballs
in
the
format
we
expect
into
kind
of
the
internal
cache
so
that
you
could
theoretically
side
load.
You
know
private
versions
or
if
you
wanted
to
work
in
an
air
gap,
environment
or
something
like
that.
A
A
All
right,
if
not
hopefully,
please
give
it
a
try.
Let
us
know
if
it
you
know,
breaks
on
on
your
operating
system
or,
if
there's
some
weird
use
case,
that
doesn't
work
for
you
or
if
you
just
find
some
sort
of
flag
completely
unintuitive
or
something.
Let
us
know
we're
currently
considering
it
kind
of
in
an
alpha
beta
stage
and
hopefully
we'll
promote
it
to
staple
ish
as
well
and
start
using
it
in
q,
builder
and
etc.