add namespaced custom resource example

Signed-off-by: Paweł Bojanowski <[email protected]>
loft-sh · Feb 17, 2025 · 7c81dbf · 7c81dbf
1 parent a20ffe7
commit 7c81dbf
Show file tree

Hide file tree

Showing 3 changed files with 202 additions and 7 deletions.
diff --git a/vcluster/_fragments/sync-from-host-namespaced-custom-resources-example.mdx b/vcluster/_fragments/sync-from-host-namespaced-custom-resources-example.mdx
@@ -0,0 +1,189 @@
+import Highlight from "@site/src/components/Highlight/Highlight";
+
+import Flow, { Step } from "@site/src/components/Flow";
+
+
+
+## From Host Namespaced Custom Resources Example
+
+This guide shows how to sync k8s namespaced custom resources from host cluster.
+We will use Example CRD in our example.
+
+### Prerequisites
+
+- kubectl with access to the host cluster and virtual cluster.
+
+### Set up cluster contexts
+
+Setting up the host and virtual cluster contexts makes it easier to switch
+between them.
+
+```bash
+export HOST_CTX="your-host-context"
+export VCLUSTER_CTX="vcluster-ctx"
+```
+
+then, create `foobar2` namespace in your host cluster:
+
+```bash
+kubectl --context="${HOST_CTX}" create namespace foobar2
+```
+
+:::tip
+You can find your contexts by running `kubectl config get-contexts`
+:::
+
+
+### Create Custom Resource Definition in the host
+
+We will use following Custom Resource Definition in our example:
+
+```yaml title="example-crd.yaml"
+apiVersion: apiextensions.k8s.io/v1
+kind: CustomResourceDefinition
+metadata:
+  name: examples.demo.loft.sh
+spec:
+  group: demo.loft.sh
+  versions:
+    - name: v1
+      served: true
+      storage: true
+      schema:
+        openAPIV3Schema:
+          type: object
+          properties:
+            spec:
+              type: object
+              properties:
+                image:
+                  type: string
+                replicas:
+                  type: integer
+      additionalPrinterColumns:
+      - name: Image
+        type: string
+        description: The image of an example
+        jsonPath: .spec.image
+      - name: Replicas
+        type: integer
+        description: The number of replicas in example
+        jsonPath: .spec.replicas
+  scope: Namespaced
+  names:
+    plural: examples
+    singular: example
+    kind: Example
+```
+
+save this file locally and then apply it in the host cluster:
+
+```bash title="Create Example CRD in the host"
+kubectl --context="${HOST_CTX}" create -f example-crd.yaml
+```
+
+### Enable from host syncing for Example CR
+
+Enable the from host syncing for examples custom resources in your virtual cluster configuration:
+
+```yaml title="Enable from host syncing for custom resource"
+sync:
+  fromHost:
+    customResources:
+      examples.demo.loft.sh:
+        enabled: true
+        scope: Namespaced
+        selector:
+          mappings:
+            "": "default"
+```
+
+This configuration:
+
+- Enables from host syncing of the examples.demo.loft.sh from the vCluster's host namespace
+- Automatically configures RBAC permissions for vCluster, so it can get, watch and list Examples in vCluster's host namespace.
+- Syncs all `Examples` from vCluster host namespace to the `default` namespace in your vCluster.
+
+:::tip create virtual cluster
+Create or update a `virtual Cluster` following the [vCluster quick start
+guide](/vcluster/#deploy-vcluster).
+:::
+
+### Sync namespaced custom resource to vCluster
+
+<Flow id="namespaced-custom-resources-from-host-example">
+  <Step>
+    First, we will need to create an example that we want to sync in the host cluster:
+
+    Copy this file and save it locally as `example-cr.yaml`
+
+    ```yaml title=example-cr.yaml
+    apiVersion: demo.loft.sh/v1
+    kind: Example
+    metadata:
+      name: my-example
+      namespace: vcluster
+    spec:
+      image: "my-image:latest"
+      replicas: 2
+    ```
+
+    then, let's create an example in the host cluster:
+
+    ```bash title="Create example in the host"
+    kubectl --context="${HOST_CTX}" create -f example-cr.yaml
+    ```
+  </Step>
+
+  #### Ensure that custom resource got synced to vCluster
+
+  Our custom resource should be now accessible in the virtual cluster.
+  Keep in mind, that any edit made in the virtual object will be overwritten my the host object data.
+
+  <Step>
+    Let's check custom resource in the virtual cluster:
+
+    ```bash title="Get synced custom resource"
+    kubectl --context="${VCLUSTER_CTX}" et examples.demo.loft.sh --namespace default
+    ```
+
+    you should see similar output:
+
+    ```bash title="examples in vCluster"
+    NAME         IMAGE             REPLICAS
+    my-example   my-image:latest   2
+    ```
+
+
+  </Step>
+
+  #### Edit custom resource in the host
+
+  <Step>
+
+    Now, we can edit our example in the host and see that the change is synced to the vCluster.
+    We will set replicas to 4:
+
+    ```bash title="Patch Example CR"
+    kubectl --context="${HOST_CTX}" patch examples.demo.loft.sh my-example --type='json' -p='[{"op": "replace", "path": "/spec/replicas", "value": 4}]'  --namespace vcluster
+    ```
+
+  </Step>
+  <Step>
+    #### Verify that Example is updated in vCluster
+
+    <Highlight color="green">Virtual Cluster</Highlight> Check number of replicas
+
+    ```bash title="Check example"
+    kubectl --context="${VCLUSTER_CTX}" get --namespace default examples.demo.loft.sh
+    ```
+    you should see number of replicas updated from host object:
+
+    ```bash title="Example updated in vCluster"
+    NAME         IMAGE             REPLICAS
+    my-example   my-image:latest   4
+    ```
+
+  </Step>
+
+</Flow>
diff --git a/vcluster/_fragments/sync-from-host-resources.mdx b/vcluster/_fragments/sync-from-host-resources.mdx
@@ -1,13 +1,13 @@
-vCluster can sync certain resources from the host cluster to make them available inside the virtual cluster, but when these resources are 
-synced, they are only synced in read-only mode. No changes to the resource in the virtual cluster syncs back to the host cluster as the 
+vCluster can sync certain resources from the host cluster to make them available inside the virtual cluster, but when these resources are
+synced, they are only synced in read-only mode. No changes to the resource in the virtual cluster syncs back to the host cluster as the
 resources are shared across the host cluster.
 
-A good example would be nodes, which are nice to view inside the virtual cluster and can be also used to enabled certain features such as [scheduling inside the vCluster](/vcluster/configure/vcluster-yaml/control-plane/other/advanced/virtual-scheduler.mdx), 
-but you wouldn't want your virtual cluster to change the node itself. Another benefit of only syncing from host is that vCluster itself only requires read-only RBAC permissions. 
+A good example would be nodes, which are nice to view inside the virtual cluster and can be also used to enabled certain features such as [scheduling inside the vCluster](/vcluster/configure/vcluster-yaml/control-plane/other/advanced/virtual-scheduler.mdx),
+but you wouldn't want your virtual cluster to change the node itself. Another benefit of only syncing from host is that vCluster itself only requires read-only RBAC permissions.
 
 vCluster also allows to sync custom resources via the [custom resource definitions syncer](../configure/vcluster-yaml/sync/from-host/custom-resources.mdx)
 
-There are a couple of labels that are created on the host cluster by vCluster that never get synced to the virtual cluster resource. These labels are: 
+There are a couple of labels that are created on the host cluster by vCluster that never get synced to the virtual cluster resource. These labels are:
 
 * `release` (Label is needed to avoid conflicts with the vCluster pods themselves). This is only excluded in single-namespace mode as multi-namespace mode does sync all pods into separate namespaces.
 * `vcluster.loft.sh/namespace`
@@ -26,9 +26,11 @@ There are a couple of labels that are created on the host cluster by vCluster th
 * [CSINodes](../configure/vcluster-yaml/sync/from-host/csi-nodes.mdx)
 * [CSIDrivers](../configure/vcluster-yaml/sync/from-host/csi-drivers.mdx)
 * [CSIStorageCapacities](../configure/vcluster-yaml/sync/from-host/csi-storage-capacities.mdx)
+* [ConfigMaps](../configure/vcluster-yaml/sync/from-host/configmaps.mdx)
+* [Secrets](../configure/vcluster-yaml/sync/from-host/secrets.mdx)
 
 ### No bi-directional syncing
 
-Since syncing resources from the host cluster is in read only mode and changes in the virtual cluster do not 
-get applied to the resource in the host cluster, bi-directional syncing does not exist across these resources. 
+Since syncing resources from the host cluster is in read only mode and changes in the virtual cluster do not
+get applied to the resource in the host cluster, bi-directional syncing does not exist across these resources.
 
diff --git a/vcluster/configure/vcluster-yaml/sync/from-host/custom-resources.mdx b/vcluster/configure/vcluster-yaml/sync/from-host/custom-resources.mdx
@@ -8,6 +8,7 @@ description: Configuration for ...
 
 import CustomResourceDefinitions from '../../../../_partials/config/sync/fromHost/customResources.mdx'
 import ProAdmonition from '../../../../_partials/admonitions/pro-admonition.mdx'
+import NamespacedCustomResourcesExample from '../../../../_fragments/sync-from-host-namespaced-custom-resources-example.mdx'
 
 <ProAdmonition/>
 
@@ -172,6 +173,9 @@ sync:
 1. Your CustomResource in the host namespace `default` named `my-cm` will be synced to the namespace `barfoo2` in virtual and named `cm-my`.
 2. If `default/my-cm` host object has annotation which value starts with `www.` , e.g.: `my-address: www.loft.sh` then synced object in the virtual cluster `barfoo2/cm-my` will have annotation `my-address: loft.sh` .
 
+
+<NamespacedCustomResourcesExample/>
+
 ## Config reference
 
 <CustomResourceDefinitions/>