Extract route/ingress configuration into a specific config group

[glefloch]

This branch introduce a new config group for route/ingress specific configuration.

To configure a route, we can use the following configuration:

quarkus.openshift.route.expose=true
quarkus.openshift.route.host=example.com
quarkus.openshift.route.secure=true

For kubernetes, an ingress can be configured using the same config group, such as:

quarkus.kubernetes.ingress.expose=true
quarkus.kubernetes.ingress.host=example.com
quarkus.kubernetes.ingress.secure=true

This will add the same dekorate properties as before.
The only feature in this branch is the secure property which is enable by default and add the following annotation:

kubernetes.io/tls-acme: true    

close #12630

[glefloch]

If everything is ok, I will push a migration note in the wiki

[geoand]

Very nice, thanks!

@iocanel do you want to take a look?

@gsmet this probably interests you as well

[gsmet]

Any chance we could handle the annotations added to the route while we're at it?

At the moment, I added them globally but I think it makes sense to be able to define annotations specific to the route?

Note that I'm not an OpenShift expert so better check with @geoand and @iocanel if it makes sense :).

[geoand]

Can you remind me again what annotation you needed on the Route?

[glefloch]

Looking at dekorate, I'm not sure we can configure annotation for a specific type of object. But may be wrong.
I added the kubernetes.io/tls-acme annotation to enable tls. But as mentionned by @gsmet in an other comment, enabling tls may have more consequences than just adding an annotation (like certificate, key, ...)

[gsmet]

So I needed an annotation for defining the secure route so it's mostly covered now :).

[iocanel]

It does make sense!
And dekorate does support adding Labels and Annotations to specific resource types. See: dekorateio/dekorate#644

[gsmet]

This doesn't have more consequences? Asking that because it's a specific checkbox in the UI.

[gsmet]

Asking because I remember trying to define the annotation afterwards and things didn't work and George recreated the route entirely and it worked. So I wonder if secure is more than just that.

[glefloch]

Yes that's possible. There is not much about tls in dekorate neither, maybe that would be a good use case. WDYT @iocanel?

[iocanel]

AFAIR, the particular file is meant to be used to provide support for the old style configuration. So, I think that we can entirely ignore that for this pull request. In fact, I think we have it long enough that we should probably get rid of it soon.

[gsmet]

I wonder if we should try to add an automated warning when using deprecated configuration. Similar to the one we have for unused properties.

IMO, that's food for thoughts for later improvements but as for this PR is concerned, I wonder if we should at least add a warning when using these old configurations properties? Wondering also if we should handle the case when there is a conflict? I think the new ones should be prioritized but we should probably have a warning too.

[glefloch]

I updated the code such as, the old properties are read only if new ones are not set. and in that case, there is a warning.

[iocanel]

If I understand things correctly the pull requests, implements the feature via the KubernetsConfigUtil. This utility is mostly used to for backwards compatibility reasons and is likely to be removed in the future.

The recommended approach to functionality like this is by using:

• KubernetesProcessor
• OpenshiftProcessor

and provide the necessary Configuratiors and Decroators.

For example: I would use a Configurator to set the expose and host and possibly the labels.

If the difference between configurators and decorators is not obvious. The former modifies the Configuration object we pass to decroate. The latter acts directly on the generated resources.

[iocanel]

We might want to keep this around for backwards compatibility reasons.
Don't have a very strong opinion about it. It`s what we use to do in related cases.

[iocanel]

Never mind, just noticed that its only removed from the documentation.

[iocanel]

It does make sense!
And dekorate does support adding Labels and Annotations to specific resource types. See: dekorateio/dekorate#644

[iocanel]

AFAIR, the particular file is meant to be used to provide support for the old style configuration. So, I think that we can entirely ignore that for this pull request. In fact, I think we have it long enough that we should probably get rid of it soon.

[iocanel]

+1

[glefloch]

Thanks for your review @iocanel, I will update the code.

[glefloch]

@iocanel I pushed a new version of the code. As you suggested, I implemented a custom Configurator to handle the expose and host.
And I used a decorator to handle route/ingress specific annotation.

[glefloch]

@iocanel could you review the new version of the code?

[glefloch]

@iocanel I just fixed conflicts, could you have a look ?

[geoand]

I would like to have this fixed.

@glefloch can you rebase please so @iocanel can take another look?

Thanks

[glefloch]

Yes for sure @geoand. It should be good now :)

[geoand]

Thanks!

[iocanel]

LGTM

[geoand]

Can we have the star imports removed please?

[glefloch]

yes, and I reconfigured my IDE so that should not happen again.

[geoand]

Excellent, thanks 👍

[glefloch]

@geoand should we merge this ?

[geoand]

Absolutely!