Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: support cronjob specification through values.yaml #24

Merged
merged 5 commits into from
Jun 12, 2024
Merged

feat: support cronjob specification through values.yaml #24

merged 5 commits into from
Jun 12, 2024

Conversation

hspitzley-czi
Copy link
Contributor

@hspitzley-czi hspitzley-czi commented Jun 11, 2024
edited
Loading

Adds support for CronJob specification via Stack Helm chart. Given the following values.yaml chart renders as follows:

values.yaml:

# Service defaults
global:
  replicaCount: 1

  # Settings for the primary container
  image:
    repository: nginx
    pullPolicy: IfNotPresent
    tag: "latest"

  args: []
  command: []

  imagePullSecrets: []
  nameOverride: ""
  fullnameOverride: ""

  dnsPolicy: ClusterFirst
  restartPolicy: Always

  # Probes for the primary container
  livenessProbe:
    failureThreshold: 3
    httpGet:
      path: /
      port: http
      scheme: HTTP
    periodSeconds: 10
    successThreshold: 1
    timeoutSeconds: 1
    initialDelaySeconds: 30
  readinessProbe:
    failureThreshold: 3
    httpGet:
      path: /
      port: http
      scheme: HTTP
    periodSeconds: 10
    successThreshold: 1
    timeoutSeconds: 1
    initialDelaySeconds: 30
  startupProbe:
    enabled: false
    failureThreshold: 3
    successThreshold: 1
    initialDelaySeconds: 0
    timeoutSeconds: 1
    periodSeconds: 10
    exec:
      command:
        - ps
        - '-ef'
    
  resources:
    limits:
      cpu: '1'
      memory: '1Gi'
    requests:
      cpu: '100m'
      memory: '128Mi'

  service:
    type: ClusterIP
    port: 80

  initContainers: []
  sidecars: []

  appContext:
    envContextConfigMapName: "" # App environment level configuration configmap name
    stackContextConfigMapName: "" # Stack level configuration configmap name

  appSecrets:
    envSecret: # App environment level configuration secret
      secretName: foo
      secretKey: bar
    stackSecret: # Stack level configuration secret
      secretName: ""
      secretKey: ""

  # Global annotations to add to all resources
  annotations: {}
  # Annotations to add to pods
  podAnnotations: {}
  # Labels to add to pods
  podLabels: {}

  serviceAccount:
    # Specifies whether a service account should be created
    create: false
    # Automatically mount a ServiceAccount's API credentials?
    automount: true
    # Annotations to add to the service account
    annotations: {}
    # The name of the service account to use.
    # If not set and create is true, a name is generated using the fullname template
    name: ""

  podSecurityContext: {}
    # fsGroup: 2000

  securityContext: {}
    # capabilities:
    #   drop:
    #   - ALL
    # readOnlyRootFilesystem: true
    # runAsNonRoot: true
    # runAsUser: 1000

  ingress:
    enabled: true
    className: ""
    host: chart-example.local
    annotations: {}
      # kubernetes.io/ingress.class: nginx
      # kubernetes.io/tls-acme: "true"
    hosts:
      - paths:
          - path: /
            pathType: ImplementationSpecific
    tls: []
    #  - secretName: chart-example-tls
    #    hosts:
    #      - chart-example.local

  autoscaling:
    enabled: true
    minReplicas: 1
    maxReplicas: 10
    targetCPUUtilizationPercentage: 80
    targetMemoryUtilizationPercentage: 80

  # Additional volumes on the output Deployment definition.
  volumes: []
  # - name: foo
  #   secret:
  #     secretName: mysecret
  #     optional: false

  # Additional volumeMounts on the output Deployment definition.
  volumeMounts: []
  # - name: foo
  #   mountPath: "/etc/foo"
  #   readOnly: true

  nodeSelector:
    kubernetes.io/arch: arm64

  tolerations: []

  affinity: {}

  topologySpreadConstraints: []

  env:
    - name: ENV_VAR1
      value: "value1"
    - name: ENV_VAR2
      value: "value2"
  envFrom:
    - configMapRef:
        name: configmap1
    - secretRef:
        name: secret1
        optional: true

# Service overrides
services:
  service1:
    args: ["arg1", "arg2"]
    command: ["command1", "command2"]
    autoscaling:
      enabled: true
      minReplicas: 2
      maxReplicas: 10
      maxUnavailable: 1
    replicaCount: 2
    envFrom:
      - configMapRef:
          name: configmap1
      - secretRef:
          name: secret1
          optional: true
    sidecars:
      - name: sidecar1
        image: "sidecar1:latest"
      - name: sidecar2
        image: "sidecar2:latest"
    initContainers:
      - name: initContainer1
        image: "alpine:latest"
        command: ["echo", "Hello World"]

cronJobs:
  cronJob1:
    schedule: "* * * * *"
    image:
      repository: nginx
      pullPolicy: IfNotPresent
      tag: "latest"
    command: ["command1", "command2"]
    args: ["arg1", "arg2"]

rendered cronjob manifest:

apiVersion: batch/v1
kind: CronJob
metadata:
  name: stack-cronJob1
spec:
  schedule: "* * * * *"
  jobTemplate:
    spec:
      template:
        spec:
          containers:
          - name: stack-cronJob1
            image: "nginx:latest"
            imagePullPolicy: IfNotPresent
            args:
              - arg1
              - arg2
            command:
              - command1
              - command2
            resources:
              limits:
                cpu: "1"
                memory: 1Gi
              requests:
                cpu: 100m
                memory: 128Mi
            envFrom:
            - secretRef:
                name: foo
                optional: true
            - configMapRef:
                name: configmap1
            - secretRef:
                name: secret1
                optional: true
            env:
              - name: ENV_VAR1
                value: value1
              - name: ENV_VAR2
                value: value2
          restartPolicy: OnFailure
          nodeSelector:
            kubernetes.io/arch: arm64

jakeyheath
jakeyheath reviewed Jun 12, 2024
View reviewed changes
stack/templates/cronjob.yaml
spec:
template:
spec:
{{- if .Values.concurrencyPolicy }}
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

is there a downside to having the user full control of the entire spec? that way, we don't have keep changing the template if they want support for something like multiple container cronjobs for instance

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

i dont think that is possible with the way we generate some things for them. eg: Argus secrets injection, service accounts, image specification

@hspitzley-czi hspitzley-czi requested a review from jakeyheath June 12, 2024 15:30
@hspitzley-czi
Copy link
Contributor Author

tested here: https://github.com/chanzuckerberg/core-platform/pull/282

@hspitzley-czi hspitzley-czi marked this pull request as ready for review June 12, 2024 18:44
@hspitzley-czi hspitzley-czi merged commit b2db7e7 into main Jun 12, 2024
1 check passed
@hspitzley-czi hspitzley-czi deleted the CCIE-2945-stack-helm-chart-to-allow-cron-job-specification branch June 12, 2024 20:45
@czi-github-helper czi-github-helper bot mentioned this pull request Jun 26, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@jakeyheath jakeyheath jakeyheath approved these changes

@alexlokshin-czi alexlokshin-czi Awaiting requested review from alexlokshin-czi

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@hspitzley-czi @jakeyheath