feat: create ImageMirrors for Images that match a strategy from the configuration

Author: plaffitt

api/kuik/v1alpha1/imagemirror_types.go

@@ -4,27 +4,29 @@ import (
 	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
 )
 
-// EDIT THIS FILE!  THIS IS SCAFFOLDING FOR YOU TO OWN!
-// NOTE: json tags are required.  Any new fields you add must have json tags for the fields to be serialized.
-
 // ImageMirrorSpec defines the desired state of ImageMirror.
+// +required
 type ImageMirrorSpec struct {
-	// INSERT ADDITIONAL SPEC FIELDS - desired state of cluster
-	// Important: Run "make" to regenerate code after modifying this file
-
-	// Foo is an example field of ImageMirror. Edit imagemirror_types.go to remove/update
-	Foo string `json:"foo,omitempty"`
+	// ImageReference is the reference of the image to mirror
+	ImageReference `json:",inline"`
+	// TargetRegistry is the registry on which the image should be mirrored
+	TargetRegistry string `json:"targetRegistry"`
 }
 
 // ImageMirrorStatus defines the observed state of ImageMirror.
 type ImageMirrorStatus struct {
-	// INSERT ADDITIONAL STATUS FIELD - define observed state of cluster
-	// Important: Run "make" to regenerate code after modifying this file
+	// Digest is the digest of the mirrored image
+	Digest     string             `json:"digest,omitempty"`
+	Conditions []metav1.Condition `json:"conditions,omitempty"`
 }
 
 // +kubebuilder:object:root=true
 // +kubebuilder:subresource:status
-// +kubebuilder:resource:scope=Cluster
+// +kubebuilder:resource:scope=Cluster,shortName=imgmir
+// +kubebuilder:printcolumn:name="Image",type="string",JSONPath=".spec.path"
+// +kubebuilder:printcolumn:name="From",type="string",JSONPath=".spec.registry"
+// +kubebuilder:printcolumn:name="To",type="string",JSONPath=".spec.targetRegistry"
+// +kubebuilder:printcolumn:name="Age",type="date",JSONPath=".metadata.creationTimestamp"
 
 // ImageMirror is the Schema for the imagemirrors API.
 type ImageMirror struct {

api/kuik/v1alpha1/zz_generated.deepcopy.go

@@ -231,25 +231,25 @@ func main() {
 		Client:         mgr.GetClient(),
 		Scheme:         mgr.GetScheme(),
 		UnusedImageTTL: time.Hour * time.Duration(unusedImageTTL),
+		Config:         configuration,
 	}).SetupWithManager(mgr); err != nil {
 		setupLog.Error(err, "unable to create controller", "controller", "Image")
 		os.Exit(1)
 	}
 	if err = (&kuikcontroller.RegistryMonitorReconciler{
-		Client:            mgr.GetClient(),
-		Scheme:            mgr.GetScheme(),
-		MonitorPools:      map[string]pond.Pool{},
-		Routing:           &configuration.Routing,
-		MonitoringEnabled: configuration.Monitoring.Enabled,
+		Client:       mgr.GetClient(),
+		Scheme:       mgr.GetScheme(),
+		MonitorPools: map[string]pond.Pool{},
+		Config:       configuration,
 	}).SetupWithManager(mgr); err != nil {
 		setupLog.Error(err, "unable to create controller", "controller", "RegistryMonitor")
 		os.Exit(1)
 	}
 	// nolint:goconst
 	if os.Getenv("ENABLE_WEBHOOKS") != "false" {
 		podDefaulter := webhookcorev1.PodCustomDefaulter{
-			Client:  mgr.GetClient(),
-			Routing: &configuration.Routing,
+			Client: mgr.GetClient(),
+			Config: configuration,
 		}
 		if err = webhookcorev1.SetupPodWebhookWithManager(mgr, &podDefaulter); err != nil {
 			setupLog.Error(err, "unable to create webhook", "webhook", "Pod")

cmd/main.go

@@ -11,10 +11,25 @@ spec:
     kind: ImageMirror
     listKind: ImageMirrorList
     plural: imagemirrors
+    shortNames:
+    - imgmir
     singular: imagemirror
   scope: Cluster
   versions:
-  - name: v1alpha1
+  - additionalPrinterColumns:
+    - jsonPath: .spec.path
+      name: Image
+      type: string
+    - jsonPath: .spec.registry
+      name: From
+      type: string
+    - jsonPath: .spec.targetRegistry
+      name: To
+      type: string
+    - jsonPath: .metadata.creationTimestamp
+      name: Age
+      type: date
+    name: v1alpha1
     schema:
       openAPIV3Schema:
         description: ImageMirror is the Schema for the imagemirrors API.
@@ -39,13 +54,83 @@ spec:
           spec:
             description: ImageMirrorSpec defines the desired state of ImageMirror.
             properties:
-              foo:
-                description: Foo is an example field of ImageMirror. Edit imagemirror_types.go
-                  to remove/update
+              path:
+                description: Path is a string identifying the image in a registry
                 type: string
+              registry:
+                description: Registry is the registry where the image is located
+                type: string
+              targetRegistry:
+                description: TargetRegistry is the registry on which the image should
+                  be mirrored
+                type: string
+            required:
+            - path
+            - registry
+            - targetRegistry
             type: object
           status:
             description: ImageMirrorStatus defines the observed state of ImageMirror.
+            properties:
+              conditions:
+                items:
+                  description: Condition contains details for one aspect of the current
+                    state of this API Resource.
+                  properties:
+                    lastTransitionTime:
+                      description: |-
+                        lastTransitionTime is the last time the condition transitioned from one status to another.
+                        This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.
+                      format: date-time
+                      type: string
+                    message:
+                      description: |-
+                        message is a human readable message indicating details about the transition.
+                        This may be an empty string.
+                      maxLength: 32768
+                      type: string
+                    observedGeneration:
+                      description: |-
+                        observedGeneration represents the .metadata.generation that the condition was set based upon.
+                        For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
+                        with respect to the current state of the instance.
+                      format: int64
+                      minimum: 0
+                      type: integer
+                    reason:
+                      description: |-
+                        reason contains a programmatic identifier indicating the reason for the condition's last transition.
+                        Producers of specific condition types may define expected values and meanings for this field,
+                        and whether the values are considered a guaranteed API.
+                        The value should be a CamelCase string.
+                        This field may not be empty.
+                      maxLength: 1024
+                      minLength: 1
+                      pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
+                      type: string
+                    status:
+                      description: status of the condition, one of True, False, Unknown.
+                      enum:
+                      - "True"
+                      - "False"
+                      - Unknown
+                      type: string
+                    type:
+                      description: type of condition in CamelCase or in foo.example.com/CamelCase.
+                      maxLength: 316
+                      pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
+                      type: string
+                  required:
+                  - lastTransitionTime
+                  - message
+                  - reason
+                  - status
+                  - type
+                  type: object
+                type: array
+              digest:
+                description: Digest is the digest of the mirrored image
+                type: string
             type: object
         type: object
     served: true

config/crd/bases/kuik.enix.io_imagemirrors.yaml

@@ -10,10 +10,25 @@ spec:
     kind: ImageMirror
     listKind: ImageMirrorList
     plural: imagemirrors
+    shortNames:
+    - imgmir
     singular: imagemirror
   scope: Cluster
   versions:
-  - name: v1alpha1
+  - additionalPrinterColumns:
+    - jsonPath: .spec.path
+      name: Image
+      type: string
+    - jsonPath: .spec.registry
+      name: From
+      type: string
+    - jsonPath: .spec.targetRegistry
+      name: To
+      type: string
+    - jsonPath: .metadata.creationTimestamp
+      name: Age
+      type: date
+    name: v1alpha1
     schema:
       openAPIV3Schema:
         description: ImageMirror is the Schema for the imagemirrors API.
@@ -38,13 +53,83 @@ spec:
           spec:
             description: ImageMirrorSpec defines the desired state of ImageMirror.
             properties:
-              foo:
-                description: Foo is an example field of ImageMirror. Edit imagemirror_types.go
-                  to remove/update
+              path:
+                description: Path is a string identifying the image in a registry
                 type: string
+              registry:
+                description: Registry is the registry where the image is located
+                type: string
+              targetRegistry:
+                description: TargetRegistry is the registry on which the image should
+                  be mirrored
+                type: string
+            required:
+            - path
+            - registry
+            - targetRegistry
             type: object
           status:
             description: ImageMirrorStatus defines the observed state of ImageMirror.
+            properties:
+              conditions:
+                items:
+                  description: Condition contains details for one aspect of the current
+                    state of this API Resource.
+                  properties:
+                    lastTransitionTime:
+                      description: |-
+                        lastTransitionTime is the last time the condition transitioned from one status to another.
+                        This should be when the underlying condition changed.  If that is not known, then using the time when the API field changed is acceptable.
+                      format: date-time
+                      type: string
+                    message:
+                      description: |-
+                        message is a human readable message indicating details about the transition.
+                        This may be an empty string.
+                      maxLength: 32768
+                      type: string
+                    observedGeneration:
+                      description: |-
+                        observedGeneration represents the .metadata.generation that the condition was set based upon.
+                        For instance, if .metadata.generation is currently 12, but the .status.conditions[x].observedGeneration is 9, the condition is out of date
+                        with respect to the current state of the instance.
+                      format: int64
+                      minimum: 0
+                      type: integer
+                    reason:
+                      description: |-
+                        reason contains a programmatic identifier indicating the reason for the condition's last transition.
+                        Producers of specific condition types may define expected values and meanings for this field,
+                        and whether the values are considered a guaranteed API.
+                        The value should be a CamelCase string.
+                        This field may not be empty.
+                      maxLength: 1024
+                      minLength: 1
+                      pattern: ^[A-Za-z]([A-Za-z0-9_,:]*[A-Za-z0-9_])?$
+                      type: string
+                    status:
+                      description: status of the condition, one of True, False, Unknown.
+                      enum:
+                      - "True"
+                      - "False"
+                      - Unknown
+                      type: string
+                    type:
+                      description: type of condition in CamelCase or in foo.example.com/CamelCase.
+                      maxLength: 316
+                      pattern: ^([a-z0-9]([-a-z0-9]*[a-z0-9])?(\.[a-z0-9]([-a-z0-9]*[a-z0-9])?)*/)?(([A-Za-z0-9][-A-Za-z0-9_.]*)?[A-Za-z0-9])$
+                      type: string
+                  required:
+                  - lastTransitionTime
+                  - message
+                  - reason
+                  - status
+                  - type
+                  type: object
+                type: array
+              digest:
+                description: Digest is the digest of the mirrored image
+                type: string
             type: object
         type: object
     served: true

helm/kube-image-keeper/crds/kuik.enix.io_imagemirrors.yaml

@@ -1,4 +1,4 @@
-{{- if gt (len .Values.configuration.routing.strategies) 0 }}
+{{- if gt (len .Values.configuration.strategies) 0 }}
 apiVersion: admissionregistration.k8s.io/v1
 kind: MutatingWebhookConfiguration
 metadata:

helm/kube-image-keeper/templates/mutatingwebhookconfiguration.yaml

@@ -140,14 +140,14 @@ metrics:
 configuration:
   monitoring:
     enabled: true
-  routing:
-    activeCheck:
-      enabled: true
-      timeout: 1s
-    strategies: []
-      # - paths:
-      #     - enix/x509-certificate-exporter
-      #   registries:
-      #     - docker.io
-      #     - quay.io
+  activeCheck:
+    enabled: true
+    timeout: 1s
+  strategies: []
+    # - paths:
+    #     - enix/x509-certificate-exporter
+    #   registries:
+    #     - url: docker.io
+    #     - url: quay.io
+    #       mirroringEnabled: true