Use deployment for CCM in example yaml

[lzhecheng]

Signed-off-by: Zhecheng Li [email protected]

What type of PR is this?

What this PR does / why we need it:

Which issue(s) this PR fixes:

Fixes #

Special notes for your reviewer:

Does this PR introduce a user-facing change?

Use deployment for CCM in example yaml

Additional documentation e.g., KEPs (Kubernetes Enhancement Proposals), usage docs, etc.:

[coveralls]

Coverage remained the same at 80.095% when pulling c2a84b2 on lzhecheng:ccm-yaml-in-deployment into 6d49847 on kubernetes-sigs:master.

[MartinForReal]

These files can not be found..

[lzhecheng]

I didn't change this part. Do you mean there's some problem with the original yaml file about these files?

[MartinForReal]

These are ca certs used by apiserver and other component. These files are located on master.

[lzhecheng]

I think toleration has been set for master?
https://github.com/kubernetes-sigs/cloud-provider-azure/pull/1252/files#diff-5f33bdfdadf384ba7fdac1e2fa8c83ad6d497f3c5f49fda1774def3b8c9f4115R153-R155

[lzhecheng]

Let's add a nodeSelector for master

[nilo19]

can we make v=4?

[MartinForReal]

v=5 by default.

[nilo19]

I think 4 is enough for debugging.

[lzhecheng]

Let's use 4 for now and update in the future if needed.

[feiskyer]

could we add a secret with azure.json and mount the secret for authz?

[lzhecheng]

Do you mean we are going to put key-value pairs from azure.json directly into this yaml file of a Secret object? Like:

apiVersion: v1
kind: Secret
metadata:
  name: azure-cloud-config
type: Opaque
stringData:
  azure.json: |-
    tenantId: <tenant-id>
    subscriptionId: <subscription-id>

[lzhecheng]

Discussed offline. Updated.

[feiskyer]

run as Deployment with multiple replicas or Kubelet static Pods on each master node.

[lzhecheng]

Updated.

[feiskyer]

could you update https://github.com/kubernetes-sigs/cloud-provider-azure/blob/master/tests/k8s-azure/manifest/cluster-api/vmss-multi-nodepool.yaml#L457 to deployment as well?

[feiskyer]

I think capz should already create a secret, so we don't need to add it here? @nilo19 do you know the secret name, or host path should be used instead just for capz?

[nilo19]

We don't need a secret here in this template, and host path either. The capz will create a default one and the volume is defined in L533.

[lzhecheng]

Discussed offline. Since this yaml file is for capz, then keep it as it was.

[jackfrancis]

Do we need to keep the Deployment labels? I think defining pod labels (via spec.template.metadata.labels) should be sufficient.

[lzhecheng]

Yes, it is not a must but I think maybe we can keep it. It does no harm, right?

[jackfrancis]

Correct, keeping the deployment labels are not harmful

[lzhecheng]

/retest

[feiskyer]

/lgtm
/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: feiskyer, lzhecheng

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [feiskyer,lzhecheng]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[k8s-ci-robot]

@lzhecheng: The following test failed, say /retest to rerun all failed tests or /retest-required to rerun all mandatory failed tests:

Test name	Commit	Details	Required	Rerun command
pull-cloud-provider-azure-e2e-ccm-vmss-basic-lb	c2a84b2	link	unknown	/test pull-cloud-provider-azure-e2e-ccm-vmss-basic-lb

Full PR test history. Your PR dashboard. Please help us cut down on flakes by linking to an open issue when you hit one in your PR.

Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. I understand the commands that are listed here.

[MartinForReal]

/retest