我的书签
添加书签
移除书签自定义运维特征
通过 Trait 生成资源的用法和 Component 基本类似,有如下场景:
- 用于生成运维的资源对象,比如用于服务访问的 Ingress、Service,或者用于扩缩容的 HPA 等对象。
- 用于上述运维对象的多种组合。
- 用于对组件配置的补丁,如增加一个边车容器做日志收集等。
同样的,我们使用 vela def init命令来生成一个框架:
期望生成的内容如下:
$ cat myroute.cue"my-route": {annotations: {}attributes: {appliesToWorkloads: []conflictsWith: []podDisruptive: falseworkloadRefPath: ""}description: "My ingress route trait."labels: {}type: "trait"}template: {patch: {}parameter: {}}
警告
在 vela CLI(<=1.4.2)的版本中有一个已知问题,vela def init 命令会生成一个错误的 definitionRef: "" 字段,这一行需要删除。
与组件定义有所不同,在用法上,你需要把所有的运维特征定义在 outputs 里(注意,不是 output),格式如下:
outputs: {<unique-name>: {<template of trait resource structural data>}}
提示
Actually the CUE template of trait here will be evaluated with component CUE template in the same context, so the name can’t be conflict. That also explain why the output can’t be defined in trait.
我们下面使用一个 ingress 和 Service 组成一个称为 my-route 的运维特征作为示例讲解:
"my-route": {annotations: {}attributes: {appliesToWorkloads: []conflictsWith: []podDisruptive: falseworkloadRefPath: ""}description: "My ingress route trait."labels: {}type: "trait"}template: {parameter: {domain: stringhttp: [string]: int}// 我们可以在一个运维特征 CUE 模版定义多个 outputsoutputs: service: {apiVersion: "v1"kind: "Service"spec: {selector:app: context.nameports: [for k, v in parameter.http {port: vtargetPort: v},]}}outputs: ingress: {apiVersion: "networking.k8s.io/v1beta1"kind: "Ingress"metadata:name: context.namespec: {rules: [{host: parameter.domainhttp: {paths: [for k, v in parameter.http {path: kbackend: {serviceName: context.nameservicePort: v}},]}}]}}}
将这个运维特征通过如下命令部署到控制平面上:
vela def apply myroute.cue
然后最终用户就立即可以发现并使用这个运维特征了,这个运维特征没有限制,可以作用于任意 Application。
我们通过如下的 vela up 命令将它启动起来:
然后 KubeVela 在服务端就会将其生成 Kubernetes 资源,通过 CUE 我们可以完成很多复杂的玩法。
你可以在 outputs 里定义 For 循环。
备注
注意在 For 循环里的 parameter 字段必须是 map 类型。
看看如下这个例子,在一个 TraitDefinition 对象里渲染多个 Service:
"expose": {type: "trait"}template: {parameter: {}outputs: {for k, v in parameter.http {"\(k)": {apiVersion: "v1"kind: "Service"spec: {selector:app: context.nameports: [{port: vtargetPort: v}]}}}}
这个运维特征可以这样使用:
apiVersion: core.oam.dev/v1beta1kind: Applicationmetadata:name: testappspec:components:- name: express-servertype: webserviceproperties:...traits:- type: exposeproperties:http:myservice1: 8080myservice2: 8081
你可以在 processing.http 里定义 HTTP 请求的 method, url, body, header 和 trailer,然后返回的数据将被存储在 processing.output 中。
提示
请确保目标 HTTP 服务器返回的数据是 JSON 格式才能正确解析到 output 字段中。
接着,你就可以通过 patch 或者 output/outputs 里的 processing.output 来引用返回数据了。
下面是一个示例:
"auth-service": {type: "trait"}template: {parameter: {serviceURL: string}processing: {output: {token?: string}// The target server will return a JSON data with `token` as key.http: {method: *"GET" | stringurl: parameter.serviceURLrequest: {body?: bytesheader: {}trailer: {}}}}patch: {data: token: processing.output.token}}
在上面这个例子中,TraitDefinition 对象发送请求来获取 token 的数据,然后将这些数据补丁给组件实例。
数据传递
TraitDefinition 对象可以读取特定 ComponentDefinition 对象生成的 API 资源(渲染自 output 和 outputs)。
警告
Generally, KubeVela will ensure the component definitions are evaluated before its traits. But there’re a stage mechanism that allow trait be deployed before component.
具体来说,context.output 字段包含了所有渲染后的工作负载 API 资源,然后 context.outputs.<xx> 则包含渲染后的其它类型 API 资源。
下面是一个数据传递的例子:
- Let’s define a component definition
myworkerlike below:
"myworker": {attributes: workload: definition: {apiVersion: "apps/v1"kind: "Deployment"}type: "component"}template: {output: {apiVersion: "apps/v1"kind: "Deployment"spec: {selector: matchLabels: {"app.oam.dev/component": context.name}template: {metadata: labels: {"app.oam.dev/component": context.name}spec: {containers: [{name: context.nameimage: parameter.imageports: [{containerPort: parameter.port}]envFrom: [{configMapRef: name: context.name + "game-config"}]if parameter["cmd"] != _|_ {command: parameter.cmd}}]}}}}apiVersion: "v1"kind: "ConfigMap"metadata: {name: context.name + "game-config"}data: {enemies: parameter.enemieslives: parameter.lives}}parameter: {// +usage=Which image would you like to use for your service// +short=i// +usage=Commands to run in the containercmd?: [...string]lives: stringenemies: stringport: int}}
- Define a new
myingresstrait that read the port.
在渲染 worker ComponentDefinition 时,具体发生了:
- 渲染的
Deployment资源放在context.output中。 - 其它类型资源则放进
context.outputs.<xx>中,同时<xx>是在特指template.outputs的唯一名字
因而,TraitDefinition 对象可以从 context 里读取渲染后的 API 资源(比如 context.outputs.gameconfig.data.enemies 这个字段)。
除了利用 Trait 生成资源以外,一个更高级的用法是对组件生成的参数做增补或修改。
什么场景下会使用这种功能?
- 组件由其他人定义,运维人员对参数做修改。
- 组件由第三方组织定义,我们不拥有修改能力(不维护),只在部署时使用。
针对上述场景,KubeVela 通过 patch 功能来支撑,因为 Patch 的能力针对 Trait 和 Workflow 均适用,我们通过这篇 Patch 文档统一介绍。
Define Health for Definition
You can also define health check policy and status message when a trait deployed and tell the real status to end users.
警告
The spec of health check is <trait-type-name>.attributes.status.healthPolicy, it’s similar to component definition.
If not defined, the health result will always be true, which means it will be marked as healthy immediately after resources applied to Kubernetes. You can define a CUE expression in it to notify if the trait is healthy or not.
The keyword in CUE is isHealth, the result of CUE expression must be bool type.
KubeVela runtime will evaluate the CUE expression periodically until it becomes healthy. Every time the controller will get all the Kubernetes resources and fill them into the context variables.
So the context will contain following information:
context:{name: <component name>appName: <app name>outputs: {<resource1>: <K8s trait resource1><resource2>: <K8s trait resource2>}}
The example of health check likes below:
my-ingress: {type: "trait"...attributes: {status: {healthPolicy: #"""isHealth: len(context.outputs.service.spec.clusterIP) > 0"""#}}}
The health check result will be recorded into the corresponding trait in .status.services of Application resource.
apiVersion: core.oam.dev/v1beta1kind: Applicationstatus:...services:- healthy: true...name: mywebtraits:- healthy: truetype: my-ingressstatus: running
The spec of custom status is <trait-type-name>.attributes.status.customStatus, it shares the same mechanism with the health check.
The keyword in CUE is message, the result of CUE expression must be string type.
Application CRD controller will evaluate the CUE expression after the health check succeed.
The example of custom status likes below:
my-service: {type: "trait"...attributes: {status: {customStatus: #"""if context.outputs.ingress.status.loadBalancer.ingress != _|_ {let igs = context.outputs.ingress.status.loadBalancer.ingressif igs[0].ip != _|_ {if igs[0].host != _|_ {message: "Visiting URL: " + context.outputs.ingress.spec.rules[0].host + ", IP: " + igs[0].ip}if igs[0].host == _|_ {message: "Host not specified, visit the cluster or load balancer in front of the cluster with IP: " + igs[0].ip}}}"""#}}}
The message will be recorded into the corresponding trait in .status.services of Application resource.
Please refer to this doc for more complete example.
Trait definition in Kubernetes
KubeVela is fully programmable via CUE, while it leverage Kubernetes as control plane and align with the API in yaml. As a result, the CUE definition will be converted as Kubernetes API when applied into cluster.
The trait definition will be in the following API format:
apiVersion: core.oam.dev/v1beta1kind: TraitDefinitionmetadata:name: <TraitDefinition name>annotations:definition.oam.dev/description: <function description>spec:definition:apiVersion: <corresponding Kubernetes resource group>kind: <corresponding Kubernetes resource type>workloadRefPath: <The path to the reference field of the Workload object in the Trait>podDisruptive: <whether the parameter update of Trait cause the underlying resource (pod) to restart>manageWorkload: <Whether the workload is managed by this Trait>skipRevisionAffect: <Whether this Trait is not included in the calculation of version changes>appliesToWorkloads:- <Workload that TraitDefinition can adapt to>conflictsWith:- <other Traits that conflict with this><>revisionEnabled: <whether Trait is aware of changes in component version>controlPlaneOnly: <Whether resources generated by trait are dispatched to the hubcluster (local)>schematic: # Abstractcue: # There are many abstracts
You can check the detail of this format .
You can check the following resources for more examples:
- Definitions defined in addons in the .
