OpenEBS Dynamic NFS Provisioner exposes Kubernetes PV using NFS server and enables it for ReadWriteMany(RWX) mode. To make this possible, NFS Provisioner creates few Kubernetes resources which are mapped to the generated NFS PV resources. Using hook, admin/user can enable the NFS Provisioner to add annotations and finalizers to NFS Resources. This tutorial explains, how to configure hook on NFS Provisioner.
If you haven't installed the NFS Provisioner, refer QuickStart guide on How to install OpenEBS NFS Provisioner.
First we need to create a Configmap resource in NFS Provisioner's namespace(i.e openebs).
Sample Configmap YAML is as below:
apiVersion: v1
kind: ConfigMap
metadata:
name: hook-config
namespace: openebs
data:
hook-config: |
hooks:
addOrUpdateEntriesOnCreateVolumeEvent:
backendPV:
annotations:
example.io/track: "true"
example.io/owner: teamA
example.io/tracking-create-time: $current-time
finalizers:
- example.io/tracking-protection
backendPVC:
annotations:
example.io/track: "true"
example.io/owner: teamA
finalizers:
- example.io/tracking-protection
name: createHook
nfsDeployment:
annotations:
example.io/track: "true"
example.io/owner: teamA
finalizers:
- example.io/tracking-protection
nfsPV:
annotations:
example.io/track: "true"
example.io/owner: teamA
finalizers:
- example.io/tracking-protection
nfsService:
annotations:
example.io/track: "true"
example.io/owner: teamA
finalizers:
- example.io/tracking-protection
removeEntriesOnDeleteVolumeEvent:
backendPV:
finalizers:
- example.io/tracking-protection
backendPVC:
finalizers:
- example.io/tracking-protection
name: deleteHook
nfsDeployment:
finalizers:
- example.io/tracking-protection
nfsPV:
finalizers:
- example.io/tracking-protection
nfsService:
finalizers:
- example.io/tracking-protection
version: 1.0.0Above hook config will add annotations and finalizers to NFS resources while creating NFS PV, and remove the finalizer from NFS resources while deleting NFS PV.
Hook configuration is having below structure:
hooks:
actionWithEventType:
backendPV:
annotations:
finalizers:
backendPVC:
annotations:
finalizers:
name: <HOOK_NAME>
nfsDeployment:
annotations:
finalizers:
nfsPV:
annotations:
finalizers:
nfsService:
annotations:
finalizers:
version: 1.0.0Supported actionWithEventType are as below:
- addOrUpdateEntriesOnCreateVolumeEvent
- This action will modify the resources, which are being created as part of the volume creation operation, by adding the provided configuration. If provided configuration exists in the resources spec then it will be updated with the given configuration.
- removeEntriesOnCreateVolumeEvent
- This action will modify the resources, which are being created as part of the volume creation operation, by removing the provided configuration from resource's spec. If provided configuration doesn't exists in the resource spec then it will skip those configuration.
- addOrUpdateEntriesOnDeleteVolumeEvent
- This action will modify the resources of a NFS volume when it gets deleted, by adding the provided configuration. If provided configuration exists in the resource spec then it will be updated with the given config.
- removeEntriesOnDeleteVolumeEvent
- This action will modify the resources of a NFS volume when it gets deleted, by removing the provided configuration from resource's spec. If provided configuration exists in the resource spec then it will be updated with the given config.
Note:
- Duplicate actionWithEventType are not allowed.
- If hook is configured to add finalizers on NFS resources then you need to remove those finalizers through hook(by using removeEntriesOnDeleteVolumeEvent) or manually(to delete the NFS Volume).
Above four actionWithEventType supports following resources:
- backendPV
- supported fields
- annotations
- finalizers
- supported fields
- backendPVC
- supported fields
- annotations
- finalizers
- supported fields
- nfsDeployment
- supported fields
- annotations
- finalizers
- supported fields
- nfsService
- supported fields
- annotations
- finalizers
- supported fields
- nfsPV
- supported fields
- annotations
- finalizers
- supported fields
Once Hook Configmap is created, update the NFS Provisioner Deployment to mount above Configmap as volume using mountPath set to /etc/nfs-provisioner.
You can use below patch data to patch the NFS Provisioner Deployment.
{
"spec": {
"template": {
"spec": {
"containers": [{
"name": "openebs-provisioner-nfs",
"volumeMounts": [{
"mountPath": "/etc/nfs-provisioner",
"name": "hook-config-volume"
}]
}],
"volumes": [{
"name": "hook-config-volume",
"configMap": {
"name": "hook-config"
}
}]
}
}
}
}In above json,
- hook-config is the Configmap we created in Create Hook Configmap
- openebs-provisioner-nfs is container name for NFS Provisioner. If you have installed NFS Provisioner through Helm, you need to update it accordingly.
Save above json to file named nfs-hook-deployment.patch and run below command to patch NFS Provisioner Deployment:
kubectl patch deploy -n openebs openebs-nfs-provisioner --patch "$(cat nfs-hook-deployment.patch)"In above command, openebs-nfs-provisioner is deployment name for NFS Provisioner. If you have installed NFS Provisioner using Helm, you need to change it accordingly.
After applying the patch, you can check the deployment spec to verify the volumeMounts.
Click to check sample yaml of nfs-provisioner with above env.
apiVersion: apps/v1
kind: Deployment
metadata:
annotations:
deployment.kubernetes.io/revision: "2"
kubectl.kubernetes.io/last-applied-configuration: |
{"apiVersion":"apps/v1","kind":"Deployment","metadata":{"annotations":{},"labels":{"name":"openebs-nfs-provisioner","openebs.io/component-name":"openebs-nfs-provisioner","openebs.io/version":"dev"},"name":"openebs-nfs-provisioner","namespace":"openebs"},"spec":{"replicas":1,"selector":{"matchLabels":{"name":"openebs-nfs-provisioner","openebs.io/component-name":"openebs-nfs-provisioner"}},"strategy":{"type":"Recreate"},"template":{"metadata":{"labels":{"name":"openebs-nfs-provisioner","openebs.io/component-name":"openebs-nfs-provisioner","openebs.io/version":"dev"}},"spec":{"containers":[{"env":[{"name":"NODE_NAME","valueFrom":{"fieldRef":{"fieldPath":"spec.nodeName"}}},{"name":"OPENEBS_NAMESPACE","valueFrom":{"fieldRef":{"fieldPath":"metadata.namespace"}}},{"name":"OPENEBS_SERVICE_ACCOUNT","valueFrom":{"fieldRef":{"fieldPath":"spec.serviceAccountName"}}},{"name":"OPENEBS_IO_ENABLE_ANALYTICS","value":"false"},{"name":"OPENEBS_IO_NFS_SERVER_USE_CLUSTERIP","value":"true"},{"name":"OPENEBS_IO_INSTALLER_TYPE","value":"openebs-operator-nfs"},{"name":"OPENEBS_IO_NFS_SERVER_IMG","value":"openebs/nfs-server-alpine:ci"}],"image":"openebs/provisioner-nfs:ci","imagePullPolicy":"IfNotPresent","livenessProbe":{"exec":{"command":["sh","-c","test `pgrep \"^provisioner-nfs.*\"` = 1"]},"initialDelaySeconds":30,"periodSeconds":60},"name":"openebs-provisioner-nfs","resources":{"limits":{"cpu":"200m","memory":"200M"},"requests":{"cpu":"50m","memory":"50M"}}}],"serviceAccountName":"openebs-maya-operator"}}}}
creationTimestamp: "2021-11-03T11:35:07Z"
generation: 2
labels:
name: openebs-nfs-provisioner
openebs.io/component-name: openebs-nfs-provisioner
openebs.io/version: dev
name: openebs-nfs-provisioner
namespace: openebs
resourceVersion: "201799"
uid: f812eab5-cb92-43ac-9ea5-e5a06c146d9a
spec:
progressDeadlineSeconds: 600
replicas: 1
revisionHistoryLimit: 10
selector:
matchLabels:
name: openebs-nfs-provisioner
openebs.io/component-name: openebs-nfs-provisioner
strategy:
type: Recreate
template:
metadata:
creationTimestamp: null
labels:
name: openebs-nfs-provisioner
openebs.io/component-name: openebs-nfs-provisioner
openebs.io/version: dev
spec:
containers:
- env:
- name: NODE_NAME
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: spec.nodeName
- name: OPENEBS_NAMESPACE
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: metadata.namespace
- name: OPENEBS_SERVICE_ACCOUNT
valueFrom:
fieldRef:
apiVersion: v1
fieldPath: spec.serviceAccountName
- name: OPENEBS_IO_ENABLE_ANALYTICS
value: "true"
- name: OPENEBS_IO_NFS_SERVER_USE_CLUSTERIP
value: "true"
- name: OPENEBS_IO_INSTALLER_TYPE
value: openebs-operator-nfs
- name: OPENEBS_IO_NFS_SERVER_IMG
value: openebs/nfs-server-alpine:ci
image: openebs/provisioner-nfs:ci
imagePullPolicy: IfNotPresent
livenessProbe:
exec:
command:
- sh
- -c
- test `pgrep "^provisioner-nfs.*"` = 1
failureThreshold: 3
initialDelaySeconds: 30
periodSeconds: 60
successThreshold: 1
timeoutSeconds: 1
name: openebs-provisioner-nfs
resources:
limits:
cpu: 200m
memory: 200M
requests:
cpu: 50m
memory: 50M
terminationMessagePath: /dev/termination-log
terminationMessagePolicy: File
volumeMounts:
- mountPath: /etc/nfs-provisioner
name: hook-config-volume
dnsPolicy: ClusterFirst
restartPolicy: Always
schedulerName: default-scheduler
securityContext: {}
serviceAccount: openebs-maya-operator
serviceAccountName: openebs-maya-operator
terminationGracePeriodSeconds: 30
volumes:
- configMap:
defaultMode: 420
name: hook-config
name: hook-config-volume
status:
availableReplicas: 1
conditions:
- lastTransitionTime: "2021-11-03T11:36:48Z"
lastUpdateTime: "2021-11-03T11:36:48Z"
message: Deployment has minimum availability.
reason: MinimumReplicasAvailable
status: "True"
type: Available
- lastTransitionTime: "2021-11-03T11:35:07Z"
lastUpdateTime: "2021-11-03T11:36:48Z"
message: ReplicaSet "openebs-nfs-provisioner-8b657b65" has successfully progressed.
reason: NewReplicaSetAvailable
status: "True"
type: Progressing
observedGeneration: 2
readyReplicas: 1
replicas: 1
updatedReplicas: 1Once NFS Provisioner is updated with volumeMounts, you can start deploying NFS Volumes. NFS resources generated for the volumes will have the annotations and finalizers as mentioned in the hook Configmap.
If you need information on creating NFS Volume, visit How to create NFS Volume