feat: impl krb based recycle and restore abilities.

Author: poneding

.github/workflows/release.yml

@@ -0,0 +1,85 @@
+# .github/workflows/release.yml
+name: release
+
+env:
+  ALIYUN_REGISTRY: registry.cn-hangzhou.aliyuncs.com/ketches
+
+on:
+  pull_request:
+  push:
+    tags:
+      - v[0-9]+.*
+
+permissions:
+  contents: write
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+
+      - name: Set ENV
+        run: |
+          echo "KRB_VERSION=${GITHUB_REF#refs/*/}" >> $GITHUB_ENV
+
+      - name: Login to Aliyun Container Registry
+        uses: docker/login-action@v3
+        with:
+          registry: ${{ vars.ALIYUNACR_REGISTRY }}
+          username: ${{ vars.ALIYUNACR_USERNAME }}
+          password: ${{ secrets.ALIYUNACR_TOKEN }}
+
+      - name: Login to Docker Hub
+        uses: docker/login-action@v3
+        with:
+          username: ${{ vars.DOCKERHUB_USERNAME }}
+          password: ${{ secrets.DOCKERHUB_TOKEN }}
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v3
+
+      - name: Build and push krb-controller
+        uses: docker/build-push-action@v6
+        with:
+          platforms: linux/amd64,linux/arm64
+          push: true
+          build-args: |
+            KRB_APPNAME=krb-controller
+          tags: ${{ vars.ALIYUNACR_REGISTRY }}/${{ vars.ALIYUNACR_NAMESPACE }}/krb-controller:${{ env.KRB_VERSION }},${{ vars.ALIYUNACR_REGISTRY }}/${{ vars.ALIYUNACR_NAMESPACE }}/krb-controller:latest
+      
+      - name: Build and push krb-webhook
+        uses: docker/build-push-action@v6
+        with:
+          platforms: |
+            - linux/amd64
+            - linux/arm64
+          push: true
+          build-args: |
+            KRB_APPNAME=krb-webhook
+          tags: |
+            - ${{ vars.ALIYUNACR_REGISTRY }}/${{ vars.ALIYUNACR_NAMESPACE }}/krb-webhook:${{ env.KRB_VERSION }}
+            - ${{ vars.ALIYUNACR_REGISTRY }}/${{ vars.ALIYUNACR_NAMESPACE }}/krb-controller:latest
+
+  goreleaser:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout
+        uses: actions/checkout@v4
+        with:
+          fetch-depth: 0
+      - name: Set up Go
+        uses: actions/setup-go@v5
+      - name: Run GoReleaser
+        uses: goreleaser/goreleaser-action@v6
+        with:
+          # either 'goreleaser' (default) or 'goreleaser-pro'
+          distribution: goreleaser
+          # 'latest', 'nightly', or a semver
+          version: "~> v2"
+          args: release --clean
+        env:
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+          # Your GoReleaser Pro key, if you are using the 'goreleaser-pro' distribution
+          # GORELEASER_KEY: ${{ secrets.GORELEASER_KEY }}

.gitignore

@@ -23,3 +23,5 @@ go.work.sum
 
 # env file
 .env
+
+bin/

.goreleaser.yaml

@@ -0,0 +1,44 @@
+# This is an example .goreleaser.yml file with some sensible defaults.
+# Make sure to check the documentation at https://goreleaser.com
+
+# The lines below are called `modelines`. See `:help modeline`
+# Feel free to remove those if you don't want/need to use them.
+# yaml-language-server: $schema=https://goreleaser.com/static/schema.json
+# vim: set ts=2 sw=2 tw=0 fo=cnqoj
+
+version: 2
+
+before:
+  hooks:
+    # You may remove this if you don't use go modules.
+    - go mod tidy
+    # you may remove this if you don't need go generate
+    # - go generate ./...
+
+builds:
+  - env:
+      - CGO_ENABLED=0
+    ldflags: -s -X github.com/ketches/kube-recycle-bin/cmd/krb-cli/cmd.Version={{.Version}}
+    main: ./cmd/krb-cli
+    goos:
+      - linux
+      - darwin
+      - windows
+    ignore:
+      - goos: windows
+        goarch: arm64
+
+archives:
+  - formats: ["binary"]
+    # this name template makes the OS and Arch compatible with the results of `uname`.
+    name_template: >-
+      {{ .ProjectName }}_
+      {{- .Version }}_
+      {{- .Os }}_
+      {{- .Arch }}
+
+changelog:
+  sort: asc
+  filters:
+    exclude:
+      - "^docs:"

Dockerfile

@@ -0,0 +1,23 @@
+FROM golang AS builder
+ARG KRB_APPNAME
+
+WORKDIR /app
+
+COPY go.mod go.sum ./
+RUN go mod download
+
+COPY *.go ./
+COPY cmd/${KRB_APPNAME} ./cmd/${KRB_APPNAME}
+COPY pkg/ ./pkg/
+COPY internal/ ./internal/
+
+RUN CGO_ENABLED=0 GOOS=linux go build -o ./bin/${KRB_APPNAME} ./cmd/${KRB_APPNAME}
+
+FROM alpine:latest
+ARG KRB_APPNAME
+
+WORKDIR /run
+
+COPY --from=builder /app/bin/${KRB_APPNAME} app
+
+ENTRYPOINT ["./app"]

Dockerfile.local

@@ -0,0 +1,9 @@
+FROM alpine:latest
+ARG KRB_APPNAME
+ARG TARGETARCH
+
+WORKDIR /run
+
+COPY ./bin/${TARGETARCH}/${KRB_APPNAME} app
+
+ENTRYPOINT ["./app"]

Makefile

@@ -0,0 +1,84 @@
+KRB_VERSION := v0.1.0
+
+ALIYUN_REGISTRY := registry.cn-hangzhou.aliyuncs.com/ketches
+
+.PHONY: install
+install:
+	@echo "» installing krb-cli..."
+	go install -ldflags="-X github.com/ketches/kube-recycle-bin/cmd/krb-cli/cmd.Version=${KRB_VERSION}" ./cmd/krb-cli
+
+.PHONY: build
+build: build-binary build-binary build-docker
+
+build-binary: build-controller-binary build-webhook-binary
+
+build-controller-binary:
+	@echo "» building krb binary..."
+	CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -o bin/amd64/krb-controller cmd/krb-controller/main.go
+	CGO_ENABLED=0 GOOS=linux GOARCH=arm64 go build -o bin/arm64/krb-controller cmd/krb-controller/main.go
+
+build-webhook-binary:
+	@echo "» building krb binary..."
+	CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -o bin/amd64/krb-webhook cmd/krb-webhook/main.go
+	CGO_ENABLED=0 GOOS=linux GOARCH=arm64 go build -o bin/arm64/krb-webhook cmd/krb-webhook/main.go
+
+docker-buildx-init:
+	@echo "» initializing docker buildx..."
+	docker buildx create --use --name gobuilder 2>/dev/null || docker buildx use gobuilder
+
+build-docker: docker-buildx-init build-docker-controller build-docker-webhook
+
+build-docker-controller:
+	@echo "» building krb-controller docker image..."
+	docker buildx build --platform linux/amd64,linux/arm64 \
+	--build-arg KRB_APPNAME=krb-controller \
+	-t ketches/krb-controller:${KRB_VERSION} \
+	-t ketches/krb-controller:latest \
+	-t ${ALIYUN_REGISTRY}/krb-controller:${KRB_VERSION} \
+	-t ${ALIYUN_REGISTRY}/krb-controller:latest \
+	--push . -f Dockerfile.local
+
+build-docker-webhook:
+	@echo "» building krb-webhook docker image..."
+	docker buildx build --platform linux/amd64,linux/arm64 \
+	--build-arg KRB_APPNAME=krb-webhook \
+	-t ketches/krb-webhook:${KRB_VERSION} \
+	-t ketches/krb-webhook:latest \
+	-t ${ALIYUN_REGISTRY}/krb-webhook:${KRB_VERSION} \
+	-t ${ALIYUN_REGISTRY}/krb-webhook:latest \
+	--push . -f Dockerfile.local
+
+.PHONY: deploy
+deploy: deploy-crds
+	@echo "» deploying krb controller and webhook..."
+	kubectl apply -f manifests/deploy.yaml
+
+deploy-crds:
+	@echo "» deploying krb crds..."
+	kubectl apply -f manifests/crds.yaml
+
+.PHONY: undeploy
+undeploy: undeploy-crds
+	@echo "» undeploying krb controller and webhook..."
+	kubectl delete -f manifests/deploy.yaml
+
+undeploy-crds:
+	@echo "» undeploying krb crds..."
+	kubectl delete -f manifests/crds.yaml
+
+.PHONY: release
+release:
+	@if [ -z "${KRB_VERSION}" ]; then \
+		echo "KRB_VERSION is not set"; \
+		exit 1; \
+	fi
+	@if git rev-parse "refs/tags/${KRB_VERSION}" >/dev/null 2>&1; then \
+        echo "Git tag ${KRB_VERSION} already exists, please use a new version."; \
+        exit 1; \
+    fi
+	@sed -E -i '' 's/(var Version = ")[^"]+(")/\1${KRB_VERSION}\2/' cmd/krb-cli/cmd/version.go
+	@git add cmd/krb-cli/cmd/version.go
+	@git commit -m "Release ${KRB_VERSION}"
+	@git push
+	git tag -a "${KRB_VERSION}" -m "release ${KRB_VERSION}"
+	git push origin "${KRB_VERSION}"

README.md

@@ -1,2 +1,102 @@
 # kube-recycle-bin
-A recycle bin for deleted Kubernetes resources.
+
+English | [简体中文](README_zh-CN.md)
+
+kube-recycle-bin(krb) is a Kubernetes resource recycling bin that can automatically recycle and quickly restore deleted resources.
+
+> In Kubernetes, resource deletion is an irreversible operation. While there are methods like Velero or etcd backup/restore that can help us recover deleted resources, have you ever felt that in practical scenarios, "using a sledgehammer to crack a nut" is excessive?
+>
+> Then try kube-recycle-bin!
+
+## Features
+
+Since it is a recycling bin, its main functions are:
+
+1. Recycle: Supports recycling all Kubernetes resource types and allows specifying namespaces.
+2. Restore: 100% restoration of recycled resources.
+
+## Principle
+
+![principle.png](docs/images/principle.png)
+
+1. Use the `krb-cli recycle` command to create a `RecyclePolicy` resource, specifying the resource types and namespaces to be recycled.
+2. The `krb-controller` watching for the creation, update, and deletion of `RecyclePolicy` resources, automatically synchronizing the creation, update, and deletion of corresponding `ValidatingWebhookConfiguration` resources.
+3. The `kube-apiserver` receives the deletion request for the specified resource and forwards the request to `krb-webhook` through `ValidatingWebhookConfiguration`.
+4. The `krb-webhook` parses the request and stores the deleted resource (in JSON format) into a new `RecycleItem` resource object, completing the resource recycling.
+5. Use the `krb-cli restore` command to restore the recycled resource. After the resource is restored, the `RecycleItem` resource object is automatically deleted.
+
+## Deploy
+
+1. Install CRDs
+
+```bash
+kubectl apply -f https://raw.githubusercontent.com/ketches/kube-recycle-bin/master/manifests/crds.yaml
+```
+
+2. Deploy `krb-controller` and `krb-webhook`
+
+```bash
+
+kubectl apply -f https://raw.githubusercontent.com/ketches/kube-recycle-bin/master/manifests/deploy.yaml
+```
+
+## Install CLI
+
+Multiple installation methods are available:
+
+1. Install using `go install` command:
+
+```bash
+go install github.com/ketches/kube-recycle-bin/cmd/krb-cli@latest
+```
+
+2. Use the script (suitable for Linux and MacOS):
+
+```bash
+curl -sSL https://github.com/ketches/kube-recycle-bin/raw/master/install_cli.sh | sh
+```
+
+3. Download the corresponding binary file for your operating system from the [Release](https://github.com/ketches/kube-recycle-bin/releases) page, extract it, and move `krb-cli` to a directory in your `$PATH`.
+
+4. Install from source code:
+
+```bash
+git clone https://github.com/ketches/kube-recycle-bin.git
+cd kube-recycle-bin
+make install
+```
+
+## Guide
+
+Note: The prerequisite is that `krb-controller` and `krb-webhook` have been successfully deployed.
+
+场景：自动回收 `dev`, `prod` 命名空间下删除的 `Deployment`, `StatefulSet` 和 `Service` 资源。
+Scenario: Automatically recycle deleted `Deployment`, `StatefulSet`, and `Service` resources in the `dev` and `prod` namespaces.
+
+1. Create a recycling policy
+
+```bash
+krb-cli recycle deployments statefulsets services -n dev,prod
+```
+
+1. Restore the recycled resource
+
+```bash
+# First, create test resources
+kubectl create deployment krb-test-nginx-deploy --image=nginx --replicas=0 -n dev
+kubectl expose deployment krb-test-nginx-deploy --name krb-test-nginx-svc --port=80 --target-port=80 -n dev
+
+# Delete test resources
+kubectl delete deploy krb-test-nginx-deploy -n dev
+kubectl delete svc krb-test-nginx-svc -n dev
+
+# Check the recycle bin. Execute the following command to get the deleted resources, indicating that the recycling policy has taken effect.
+krb-cli get ri
+
+# Restore the resource using the resource name obtained from the above command
+krb-cli restore krb-test-nginx-deploy-skk5c89b krb-test-nginx-svc-txv4vj6v
+
+# Check the restored resources
+kubectl get deploy krb-test-nginx-deploy -n dev
+kubectl get svc krb-test-nginx-svc -n dev
+```