✨ CAPD: add DockerClusterTemplate type

[ykakarap]

What this PR does / why we need it:
Add DockerClusterTemplate type to CAPD provider. This type will be used by ClusterClass.

Which issue(s) this PR fixes (optional, in fixes #<issue number>(, fixes #<issue_number>, ...) format, will close the issue(s) when PR gets merged):
Fixes #4900

[sbueringer]

Nothing additional from me, lgtm apart from @fabriziopandini's comments

[fabriziopandini]

Change lgtm pending adding web hook ensuring template are immutable.
Also, even do there are not yet validation rules on create, should we create an empty func called on creation by both DockerClusterTemplate and DockerCluster web hooks, so we ensure that future validation rules applies to both types consistently?

[ykakarap]

Also, even do there are not yet validation rules on create, should we create an empty func called on creation by both DockerClusterTemplate and DockerCluster web hooks, so we ensure that future validation rules applies to both types consistently?

+1 to this

[ykakarap]

/retest

[ykakarap]

/retest

[fabriziopandini]

only two small nits left, otherwise lgtm

[sbueringer]

I think you have to put a space between // and +. So //+ => // +
I'm not sure if there are cases where those comments are not picked up without a space. (but saw similar issues with these kinds of magic comments)

Can you grep for occurrences of //+ there are two other cases in DockerMachinePool which we probably should also fix.

[ykakarap]

I will make sure to fix all of them :)

[sbueringer]

In case we drop the logs in the other webhook, we should also drop them here

[sbueringer]

I think adding this requires additions to webhookcainjection_patch.yaml

[ykakarap]

Are there example of the kinds of additions I need to do?

Also do you think this could this be the reason for the piepline failing with the following error:

Error from server (InternalError): error when creating "STDIN": Internal error occurred: failed calling webhook "validation.dockercluster.infrastructure.cluster.x-k8s.io": Post "https://capd-webhook-service.capd-system.svc:443/mutate-infrastructure-cluster-x-k8s-io-v1alpha4-dockercluster?timeout=10s": x509: certificate signed by unknown authority

[sbueringer]

Roughly: (we should also have it in the webhookcainjection_patch.yaml files of other controllers)

apiVersion: admissionregistration.k8s.io/v1
kind: MutatingWebhookConfiguration
metadata:
  name: mutating-webhook-configuration
  annotations:
    cert-manager.io/inject-ca-from: $(CERTIFICATE_NAMESPACE)/$(CERTIFICATE_NAME)

P.S. Yup, that's the cause of the error :)

[ykakarap]

/retest

[ykakarap]

/retest

[sbueringer]

@ykakarap You have to run make generate-go

[ykakarap]

/retest

[ykakarap]

@fabriziopandini addressed all the comments on the PR and all pipelines are green.
Please review when you can.

[fabriziopandini]

/lgtm
@sbueringer @stmcginnis PTAL

[sbueringer]

nit: Maybe make this error text consistent to the one used in: https://github.com/kubernetes-sigs/cluster-api/pull/4904/files

[ykakarap]

nit addressed.

[sbueringer]

Sorry last one. We usually seem to check if the type case works and then return an error (instead of a panic which would happen otherwise)

        oldM, ok := old.(*Machine)
	if !ok {
		return apierrors.NewBadRequest(fmt.Sprintf("expected a Machine but got a %T", old))
	}

[sbueringer]

(same for DockerClusterTemplate and the KubeadmControlPlaneTemplate PR)

[fabriziopandini]

/lgtm

[ykakarap]

/retest

[ykakarap]

/retest

[sbueringer]

@ykakarap Thank you very much!

/lgtm

[stmcginnis]

Just wondering - not saying it needs to happen, just looking to learn from the larger team - do we need to add any documentation about this to somewhere like docs/book/src/tasks/experimental-features/experimental-features.md?

[ykakarap]

@fabriziopandini had to rebase because of merge conflicts. Can you please re-lgtm this? 😄

[sbueringer]

/lgtm

[fabriziopandini]

/approve

[k8s-ci-robot]

[APPROVALNOTIFIER] This PR is APPROVED

This pull-request has been approved by: fabriziopandini

The full list of commands accepted by this bot can be found here.

The pull request process is described here

Needs approval from an approver in each of these files:

• OWNERS [fabriziopandini]

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment