Admission Controller: Enhance PodPreset to inject containers and init containers #43874
Comments
bgrant0607
added
sig/service-catalog
|
Another use case: I want a PodPreset to add optionally an init container that fetches gdb/pprof and/or symbols before running the main container (which of course will have hooks to detect if the additional binaries/directories are present and act accordingly). |
|
Use case: before kubernetes supports logging volume, one option to collect log file is to add a fluentd side car container. |
Merge Container and InitContainer; fixed spelling Reduced function header Add Containers and InitContainers to PodPresets, kubernetes#43874
|
Use case: Need to make a BCI jar and proxy agent available to containers via sidecar and shared volume, without modifying the target service containers. |
|
Issues go stale after 90d of inactivity. Prevent issues from auto-closing with an If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or |
k8s-ci-robot
added
the
lifecycle/stale
|
/remove-lifecycle stale |
k8s-ci-robot
removed
the
lifecycle/stale
|
This feature is exactly what i was looking for my work. I want to inject init container into POD spec based on some other setting during deployment. Can anyone tell me where to look to find the status of this feature. |
|
We wanted to use this feature in Istio (istio.io), but we ended up using admission controllers (initializer and now dynamic webhooks). I am afraid nobody is working on it. |
|
Thanks andraxylia! I will look into initializer and now dynamic webhooks. |
|
I don't want to change the lifecycle tag on #55410 so I'm linking to it from this direction. |
|
Issues go stale after 90d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
k8s-ci-robot
added
the
lifecycle/stale
|
Stale issues rot after 30d of inactivity. If this issue is safe to close now please do so with Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
k8s-ci-robot
added
lifecycle/rotten
|
Rotten issues close after 30d of inactivity. Send feedback to sig-testing, kubernetes/test-infra and/or fejta. |
|
/reopen /remove-lifecycle rotten |
|
So I should write and deploy webhook callback services for every functionality I want to inject into a Pod ? |
|
PodPresets are declarative and an order of magnitude easier to use than webhooks. I don't see why this can't be done since I'm already using it to inject env variables. |
|
It does seem like a natural fit. Is there a reason why this shouldn't be allowed from a PodPreset? |
|
This would be a major benefit. It fits extremely neatly into the skillset that new kubernetes users and operators have been learning to use, only requiring knowledge of label selectors and yaml pod definitions. Mutating webhooks require an entirely new skillset making them much harder to use for new kubernetes adopters. |
|
This project might be interesting for you: https://github.com/tumblr/k8s-sidecar-injector |
|
I, too, would be interested in seeing this be possible in a PodPreset. /reopen |
|
@rcreasey: You can't reopen an issue/PR unless you authored it or you are a collaborator. In response to this:
Instructions for interacting with me using PR comments are available here. If you have questions or suggestions related to my behavior, please file an issue against the kubernetes/test-infra repository. |
k8s-ci-robot
removed
the
lifecycle/rotten
This is a feature request to add support in PodPreset for injecting containers and init containers.
Usecase: as a cluster admin, I need the ability to to inject an init container and a proxy sidecar container into a pod, to enable Istio microservices mesh functionality:
https://github.com/istio/istio
kubernetes/enhancements#162
kubernetes/community#254
kubernetes/community#132
The text was updated successfully, but these errors were encountered: