Design documentation for the NonAdminBackup Status and Conditions (mi…

…gtools#23)

Signed-off-by: Michal Pryc <[email protected]>
Co-authored-by: Tiger Kaovilai <[email protected]>

docs/design/archive/nab_status_update-alternative.md

@@ -0,0 +1,87 @@
+# Developer Workflow: NonAdminBackup Phase and Conditions within NonAdminBackup Status
+
+## Version
+
+This is `alternative` of the design document. Simplifier approach is described in the [active design] doc.
+
+## Overview
+
+This document outlines the design around updating NonAdminBackup objects Phase and Conditions within Status.
+
+### Phase
+
+A NonAdminBackup's `status` field has a `phase` field, which is updated by NAC controller.
+
+The `phase` is a simple one high-level summary of the lifecycle of an NonAdminBackup.
+
+It is always a one well defined value, that is intended to be a comprehensive state of a NonAdminBackup.
+
+Those are are the possible values for phase:
+
+| **Value** | **Description**                 |
+|-----------|--------------------------------|
+| New | *NonAdminBackup resource was accepted by the OpenShift cluster, but it has not yet been processed by the NonAdminController* |
+| BackingOff | Velero *Backup* object was not created due to NonAdminBackup error (configuration or similar) |
+| Created | Velero *Backup* was created, but it has not yet fully ran or started |
+| Running | Velero *Backup* is currently running |
+| Succeeded | Velero *Backup* was performed with Success state |
+| Failed | Velero *Backup* did not succeed |
+
+### Conditions
+
+The `conditions` is also a part of the NonAdminBackup's `status` field. One NAB object may have multiple conditions. It is more granular knowledge of the NonAdminBackup object and represents the array of the conditions through which the NonAdminBackup has or has not passed. Each `NonAdminCondition` has one of the following `type`:
+
+| **Condition** | **Description**                 |
+|-----------|--------------------------------|
+| BackupAccepted | The Backup object was accepted by the reconcile loop, but the Velero Backup may have not yet been created |
+| BackupQueued | The Velero Backup was created succesfully and did not return any known errors. It's in the queue for Backup. At this stage errors may still occur during backup procedure. |
+| BackupCompleted | The Velero Backup succeeded. |
+
+The `condition` data is also accomapied with the following:
+
+| **Field name** | **Description**                 |
+|-----------|--------------------------------|
+| type | The `Type` of the condition |
+| status | represents the state of individual condition. The resulting `phase` value should report `Success` only when all of the conditions are met and the backup succeded. One of `True`, `False` or `Unknown`. |
+| lastProbeTime | Timestamp of when the NonAdminBackup condition was last probed. |
+| lastTransitionTime | Timestamp for when the NonAdminBackup last transitioned from one status to another. |
+| reason | Machine-readable, UpperCamelCase text indicating the reason for the condition's last transition. |
+| message | Human-readable message indicating details about the last status transition. |
+
+### BackupStatus
+
+`BackupStatus` which is also part of the `NonAdminBackupStatus` object is a `BackupStatus` that is taken directly from the Velero Backup Status and copied over.
+
+## Phase Update scenarios
+
+    *** Questions ***
+
+     - BackupQueued stays true at the end,
+       should we remove that from conditions?
+       I don't think we should set it to false.
+
+```mermaid
+%%{init: {'theme':'forest'}}%%
+graph
+AA[Phase: New] -->A
+A{BackupAccepted: Unknown\n BackupQueued: False\n BackupCompleted: False}  -- NAC processes --> B[Non Admin Backup Accepted]
+A -- NAC hits an error --> E[Phase: BackingOff]
+B -- Create Velero Backup --> C[Phase: Created]
+B -.-> BA{BackupAccepted: True\nBackupQueued: False\nBackupCompleted: False}
+C  -- Backup runs --> D[Phase: Running]
+C -.-> BS{BackupAccepted: True\nBackupQueued: True\nBackupCompleted: False}
+D -- Backup succeeds --> F[Phase: Succeeded]
+F -.-> FF{BackupAccepted: True\nBackupQueued: True\nBackupCompleted: True}
+
+D -- Backup fails --> G[Phase: Failed]
+E -.-> EE{BackupAccepted: False\nBackupQueued: False\nBackupCompleted: False}
+
+classDef conditions fill:#ccc,stroke:#ccc,stroke-width:2px;
+class A,BA,BS,BC,EE,FF conditions;
+classDef phases fill:#777,stroke:#ccc,stroke-width:2px;
+class AA,C,D,E,G,F phases;
+
+```
+
+
+[active design]: ./nab_status_update.md

docs/design/nab_status_update.md

@@ -0,0 +1,111 @@
+# Developer Workflow: NonAdminBackup Phase and Conditions within NonAdminBackup Status
+
+## Overview
+
+This document outlines the design around updating NonAdminBackup objects Phase and Conditions within Status.
+
+### Phase
+
+A NonAdminBackup's `status` field has a `phase` field, which is updated by NAC controller.
+
+The `phase` is a simple one high-level summary of the lifecycle of an NonAdminBackup.
+
+It is always a one well defined value, that is intended to be a comprehensive state of a NonAdminBackup.
+
+Those are are the possible values for phase:
+
+| **Value** | **Description**                 |
+|-----------|--------------------------------|
+| New | *NonAdminBackup resource was accepted by the OpenShift cluster, but it has not yet been processed by the NonAdminController* |
+| BackingOff | Velero *Backup* object was not created due to NonAdminBackup error (configuration or similar) |
+| Created | Velero *Backup* was created. The Phase will not have additional informations about the *Backup* run |
+
+### Conditions
+
+The `conditions` is also a part of the NonAdminBackup's `status` field. One NAB object may have multiple conditions. It is more granular knowledge of the NonAdminBackup object and represents the array of the conditions through which the NonAdminBackup has or has not passed. Each `NonAdminCondition` has one of the following `type`:
+
+| **Condition** | **Description**                 |
+|-----------|--------------------------------|
+| Accepted | The Backup object was accepted by the reconcile loop, but the Velero Backup may have not yet been created |
+| Queued | The Velero Backup was created succesfully. At this stage errors may still occur either from the Velero not accepting backup or during backup procedure. |
+
+The `condition` data is also accomapied with the following:
+
+| **Field name** | **Description**                 |
+|-----------|--------------------------------|
+| type | The `Type` of the condition |
+| status | represents the state of individual condition. The resulting `phase` value should report `Success` only when all of the conditions are met and the backup succeded. One of `True`, `False` or `Unknown`. |
+| lastTransitionTime | Timestamp for when the NonAdminBackup last transitioned from one status to another. |
+| reason | Machine-readable, UpperCamelCase text indicating the reason for the condition's last transition. |
+| message | Human-readable message indicating details about the last status transition. |
+
+### VeleroBackupStatus
+
+The `VeleroBackupStatus` that is part of `NonAdminBackup.Status` is a copy of the `VeleroBackup.Status`.
+
+
+> Sample `VeleroBackupStatus` with `Conditions` of a `NonAdminBackup` object that allowed to create `VeleroBackup` object, but there was an error while performing backup itself:
+
+```yaml
+status:
+  veleroBackupStatus:
+    expiration: '2024-05-16T08:12:11Z'
+    failureReason: >-
+      unable to get credentials: unable to get key for secret: Secret
+      "cloud-credentials" not found
+    formatVersion: 1.1.0
+    phase: Failed
+    startTimestamp: '2024-04-16T08:12:11Z'
+    version: 1
+  conditions:
+    - lastTransitionTime: '2024-04-15T20:27:35Z'
+      message: Backup was accepted by the NAC controller
+      reason: BackupAccepted
+      status: 'True'
+      type: Accepted
+    - lastTransitionTime: '2024-04-15T20:27:45Z'
+      message: Created Velero Backup object
+      reason: BackupScheduled
+      status: 'True'
+      type: Queued
+  veleroBackupName: nab-nacproject-83fc04a2fd253d
+  veleroBackupNamespace: openshift-adp
+  phase: Created
+```
+
+### VeleroBackupName and VeleroBackupNamespace
+The `VeleroBackupName` is a component of the `NonAdminBackup.Status` object. It represents the name of the `VeleroBackup` object. The `VeleroBackupNamespace` represents the namespace in which the `VeleroBackup` object was created.
+
+This `VeleroBackupName` and `VeleroBackupNamespace` serves as a reference to the Backup responsible for executing the backup task.
+
+The format of those fields allows to interact with that Backup using `oc` or `velero` commands as follows:
+
+```shell
+# Example:
+#   veleroBackupName: nab-nacproject-c3499c2729730a
+#   veleroBackupNamespace: openshift-adp
+
+$ oc describe -n openshift-adp nab-nacproject-c3499c2729730a
+
+$ velero backup describe -n openshift-adp nab-nacproject-c3499c2729730a
+```
+
+
+## Phase Update scenarios
+
+```mermaid
+%%{init: {'theme':'forest'}}%%
+graph
+START[Phase: New] -- NAC config OK --> ACCEPTED[Non Admin Backup Accepted]
+START -- NAC config NOT OK --> ERROR[Phase: BackingOff]
+ACCEPTED -- Create Velero Backup --> CREATED[Phase: Created]
+ACCEPTED -.-> COND_ACCEPTED{Conditions:\nAccepted: True\n}
+CREATED -.-> COND_QUEUED{Conditions:\nAccepted: True\nQueued: True\n}
+ERROR -.-> COND_ERROR{Conditions:\nAccepted: False}
+
+classDef conditions fill:#ccc,stroke:#ccc,stroke-width:2px;
+class COND_ACCEPTED,COND_QUEUED,COND_ERROR conditions;
+classDef phases fill:#777,stroke:#ccc,stroke-width:2px;
+class START,CREATED,ERROR phases;
+
+```