-
Notifications
You must be signed in to change notification settings - Fork 222
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
This proposal is to extract out Trigger definition from EventListener Spec into its own CRD to resolve the problem of Multitenant EventListener.
- Loading branch information
Showing
1 changed file
with
249 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,249 @@ | ||
--- | ||
title: trigger-crd | ||
authors: | ||
- "@kbaig" | ||
creation-date: 2020-07-14 | ||
last-updated: 2020-07-14 | ||
status: proposed | ||
--- | ||
# TEP-0008: Introducing TriggerCRD | ||
|
||
|
||
<!-- toc --> | ||
- [Summary](#summary) | ||
- [Motivation](#motivation) | ||
- [Goals](#goals) | ||
- [Non-Goals](#non-goals) | ||
- [Requirements](#requirements) | ||
- [Proposal](#proposal) | ||
- [Trigger CRD](#trigger-crd) | ||
- [Trigger Status](#trigger-status) | ||
- [EventListener CRD](#eventlistener-crd) | ||
- [Path base EventListener CRD](#path-base-eventlistener) | ||
- [User Stories (optional)](#user-stories-optional) | ||
- [Notes/Constraints/Caveats (optional)](#notesconstraintscaveats-optional) | ||
- [Risks and Mitigations](#risks-and-mitigations) | ||
- [User Experience (optional)](#user-experience-optional) | ||
- [Performance (optional)](#performance-optional) | ||
- [Design Details](#design-details) | ||
- [Test Plan](#test-plan) | ||
- [Drawbacks](#drawbacks) | ||
- [Alternatives](#alternatives) | ||
- [Infrastructure Needed (optional)](#infrastructure-needed-optional) | ||
- [Upgrade & Migration Strategy (optional)](#upgrade--migration-strategy-optional) | ||
<!-- /toc --> | ||
|
||
## Summary | ||
|
||
This proposal is to extract out Trigger definition from EventListener Spec into its own CRD | ||
to resolve the problem of Multitenant EventListener. | ||
|
||
This is a TEP for the implementation of the Trigger CRD that were | ||
discussed in the following docs: | ||
|
||
- [Trigger Listener CRDs](https://docs.google.com/document/d/1zWpmEhtSNe8KAPKvTJE7Pjg5Uzk8mx9MUjSN24D1jUg/edit#heading=h.emfu2q8r4dx8) | ||
- [Multitenant EventListener](https://docs.google.com/document/d/1NX0ExhPad6ixTM8AdU0b6Vc3MVD5hQ_vIrOs9dIXq-I/edit) | ||
|
||
## Motivation | ||
|
||
Today, EventListener commonly are created for every namespace and handle TriggerBinding and | ||
TriggerTemplate in that same namespace. Creation of EventListener causes pod proliferation. For every | ||
namespace that requires handling of webhook events like github, we need EventListener which in turns | ||
lead to this pod proliferation and causes excess resource consumption. In multitenant scenario where | ||
projects are divided according to namespaces, we require EventListener for each namespaces. So for | ||
100 of projects, we would need 100 of pods just for acting as sink for these webhook events like github. | ||
These pods in turn consume resources. | ||
|
||
### Goals | ||
|
||
1. Reduction in resource cosumption due to EventListener. | ||
2. Ability to have single EventListener to cater to whole cluster. | ||
3. Separation of Concerns : The more ELs there are, the more additional configuration are needed - in some cases this additional bit of configuration is something that a cluster admin/operator would perform not an user/app developer. | ||
For declarative config as code scenarios, it would be easier for a user to have create the Trigger configuration part as part of config with code. The cluster admin/operator can create the EventListeners, expose it to a public address, etc. And the same listener can be shared among many Triggers. This does reduce the number of listener Pods but also allows for a better separation of concerns among the user and the operator. | ||
|
||
### Non-Goals | ||
|
||
How to create Multitenant EventListener resource with appropriate permissions won't be part of this proposal. | ||
This will be handled by operator or admin of the cluster. | ||
|
||
## Requirements | ||
|
||
1. EventListener can create Tekton resources in a single namespace or across multiple namespaces if configured to do so. | ||
2. When an EL recieves an event, it can process only some configured subset of triggers <- path/selector based | ||
3. EL can still process triggers defined in the current form aka backwards compatibility. | ||
|
||
## Proposal | ||
|
||
EventListener CRD will be split into two - a Trigger CRD and a EventListener CRD. | ||
|
||
### Trigger CRD | ||
A single Trigger defines configuration for processing events i.e. it consists of TriggerBindings, | ||
a single TriggerTemplate, and optionally interceptors and a serviceAccount. | ||
``` | ||
apiVersion: v1alpha1 | ||
kind: Trigger | ||
metadata: | ||
name: my-repo-trigger | ||
labels: | ||
eventlistener: operator | ||
spec: | ||
serviceAccountName: "blah" | ||
interceptors: | ||
cel: | ||
filter: "$(header.eventType == "push")" | ||
bindings: | ||
- name: key | ||
value: "$(body.commit_id)" | ||
template: "ref-to-my-template" | ||
status: | ||
address: | ||
url: "el-my-svc.cluster.local" # could also be an IP address | ||
conditions: | ||
status: True | ||
message: "Bound to EventListener my-el" | ||
``` | ||
|
||
#### Trigger Status | ||
Trigger status will report url of EventListener bound and EventListener information to | ||
which it is bound. | ||
|
||
### EventListener CRD | ||
EventListeners expose an addressable "Sink" to which incoming events in the form of HTTP requests | ||
are directed and process those requests with configuration from bound Triggers. EventListener has | ||
triggerSelector to select triggers based on labels and namespaceSelector to select namespaces where | ||
it searches for triggers. | ||
``` | ||
apiVersion: v1alpha1 | ||
kind: EventListener | ||
metadata: | ||
name: my-el | ||
spec: | ||
serviceAccountName: "blah" | ||
namespaceSelector: | ||
matchName: [ns-1, ns-2] | ||
matchLabels: | ||
- tekton-triggers: tekton-operator | ||
triggerSelector: | ||
matchLabels: | ||
- eventlistener: tekton-operator | ||
``` | ||
|
||
### Path based EventListener | ||
Inside EventListener, we will deduce Trigger to execute based on the path of the request URL. | ||
To refer to trigger resource ```foo``` in namespace ```bar```, we would have a url ```/bar?name=foo```. | ||
Instead of EventListener iterating through every Triggers that can be serve, EventListener | ||
will directly process the Trigger refer by URL. Similarly we can have url ```/bar?label=app-foo``` | ||
where EventListener will only process all the Triggers matching labels ```app-foo```. | ||
|
||
### User Stories (optional) | ||
|
||
We have two type of users: | ||
1. End users who requires his event to be processed. | ||
2. Operator/admin who managed EventListener. | ||
#### Trigger Ref inside the EventListener | ||
Instead of defining Trigger inside EventListener, Trigger resource will be created by end user. | ||
Trigger will contain serviceaccount, triggerbinding, triggertemplate and interceptor.ServiceAccount | ||
will be optional. If not defined, ServiceAccount of EventListener will be used. | ||
|
||
#### Specifying Namespaces where EventListener can serve | ||
Admin/Operator would give which namespaces EventListener can serve. In this way, EventListener can be used | ||
in Multitenant Scenarios. | ||
|
||
#### Path Base EventListener Implementation | ||
Path base EventListener will be implemented. | ||
|
||
### Risks and Mitigations | ||
|
||
1. Security issue - Wide permission to EventListener. In this scenario EventListener | ||
will function in the same way as controller. It will be the responsibility of Operator | ||
or admin to manage that. | ||
2. Log: How will user access the EventListener log to debug their events. This can be addressed via | ||
emitting kubernetes events by EventListener and tkn-cli. | ||
3. Resource Hog issue: A particular namespace or project could hog most of the Resources. Operator | ||
can handle this issue. This is similar to triggers controller or webhook. Operator can parition heavy user to its own EL. Also, ELs are stateless and should be horizontally scalable. | ||
|
||
|
||
### User Experience (optional) | ||
|
||
|
||
### Performance (optional) | ||
Path based EventListeners will improve the performance of EventListener by directly targeting | ||
the trigger definition we want to target instead of processing each trigger within a EventListener like we do today. | ||
|
||
At the same time, one poorly behaved customer/namespace could dominate an EventListener and affect | ||
other namespaces, which wouldn't be the case if each namespace had their own eventlistener. | ||
Operator/Admin can handle this issue by horizontally scaling EventListener or partitioning EventListener. | ||
|
||
## Design Details | ||
|
||
In first phases, this involve introduction of TriggerCRD and modification of | ||
EventListenerCRD to introduce selectors which searches for these Trigger resource. | ||
|
||
EventListener will have two selectors: | ||
* `namespaceSelector` which specify which namespaces EventListener can search for | ||
Triggers. Either it can do matches based on names or labels. | ||
* `triggerSelector` which specify which triggers can be served by EventListener. All | ||
triggers matching a label are served by that EventListener. | ||
``` | ||
apiVersion: v1alpha1 | ||
kind: EventListener | ||
metadata: | ||
name: my-el | ||
spec: | ||
serviceAccountName: "blah" | ||
namespaceSelector: | ||
matchName: [ns-1, ns-2] | ||
matchLabels: | ||
- triggers: tekton-operator | ||
triggerSelector: | ||
matchLabels: | ||
- eventlistener: tekton-operator | ||
``` | ||
|
||
Triggers will have labels which is used by `triggerSelector` of EventListener. | ||
``` | ||
apiVersion: v1alpha1 | ||
kind: Trigger | ||
metadata: | ||
name: my-repo-trigger | ||
labels: | ||
eventlistener: tekton-operator | ||
spec: | ||
serviceAccountName: "blah" | ||
interceptors: | ||
cel: | ||
filter: "$(header.eventType == "push")" | ||
bindings: | ||
- name: key | ||
value: "$(body.commit_id)" | ||
template: "ref-to-my-template" | ||
status: | ||
address: | ||
url: "el-my-svc.cluster.local" # could also be an IP address? | ||
conditions: | ||
status: True | ||
message: "Bound to EventListener my-el" | ||
``` | ||
|
||
In second phase, we will introduce Path base EventListener. Here instead of iterating through all | ||
the triggers, EventListener will directly process the Trigger refer by the webhook URL. If we webhook | ||
URL ```/bar?label=app-foo```, EventListener will only process all the Triggers matching labels | ||
```app-foo```. | ||
|
||
## Alternatives | ||
|
||
1. Mode base EventListener where operator/admin specify scope of EventListener based on | ||
that EventListener deployment is namespaced or clustered scope. If clustered, for every | ||
EventListener, we have same deployment for every EventListener resource. Further discussion | ||
in this [doc](https://docs.google.com/document/d/1NX0ExhPad6ixTM8AdU0b6Vc3MVD5hQ_vIrOs9dIXq-I/edit). | ||
|
||
|
||
|
||
## Upgrade & Migration Strategy (optional) | ||
1. First Trigger CRD will be introduced. Trigger will be used as ref in EventListener alongwith | ||
existing definition in EventListener Spec. Later on definition will be deprecated. | ||
2. Selector based EventListener will be implemented next. It will introduced along with existing implemention. | ||
3. Path based EventListener will be implemented along with existing implemention. | ||
4. Deprecating triggers section in EventListener. | ||
|
||
|