Merge pull request #120 from jingxu97/deploy

k8s-ci-robot · web-flow · commit 7eee10d27f06 · 2018-10-17T15:53:39.000-07:00
Add snapshot deployment support
diff --git a/README.md b/README.md
@@ -90,6 +90,39 @@ NAME                      READY     STATUS    RESTARTS   AGE
 web-server                1/1       Running   0          1m
 ```
 
+### Snapshot Example
+1. Create example Default Snapshot Class
+```
+$ kubectl create -f ./examples/kubernetes/demo-defaultsnapshotclass.yaml
+```
+2. Create a snapshot of the PVC created in above example
+```
+$ kubectl create -f ./examples/kubernetes/demo-snapshot.yaml
+```
+3. Verify Snapshot is created and is ready to use
+```
+$ k get volumesnapshots demo-snapshot-podpvc -o yaml
+apiVersion: snapshot.storage.k8s.io/v1alpha1
+kind: VolumeSnapshot
+metadata:
+  creationTimestamp: 2018-10-05T16:59:26Z
+  generation: 1
+  name: demo-snapshot-podpvc
+  namespace: default
+
+...
+
+status:
+  creationTime: 2018-10-05T16:59:27Z
+  ready: true
+  restoreSize: 6Gi
+
+```
+4. Create a new volume from the snapshot
+```
+$ kubectl create -f ./examples/kubernetes/demo-restore-snapshot.yaml
+```
+
 ## Kubernetes Development
 
 ### Manual
diff --git a/deploy/kubernetes/dev/controller.yaml b/deploy/kubernetes/dev/controller.yaml
@@ -15,9 +15,22 @@ spec:
     spec:
       serviceAccount: csi-controller-sa
       containers:
+        - name: csi-snapshotter
+          imagePullPolicy: Always
+          image: quay.io/k8scsi/csi-snapshotter:v0.4.0
+          args:
+            - "--v=5"
+            - "--csi-address=$(ADDRESS)"
+          env:
+            - name: ADDRESS
+              value: /csi/csi.sock
+          volumeMounts:
+            - name: socket-dir
+              mountPath: /csi
+
         - name: csi-provisioner
           imagePullPolicy: Always
-          image: quay.io/k8scsi/csi-provisioner:v0.3.1
+          image: quay.io/k8scsi/csi-provisioner:v0.4.1
           args:
             - "--v=5"
             - "--provisioner=com.google.csi.gcepd"
diff --git a/deploy/kubernetes/dev/node.yaml b/deploy/kubernetes/dev/node.yaml
@@ -37,7 +37,7 @@ spec:
           securityContext:
             privileged: true
           imagePullPolicy: Always
-          image: gcr.io/dyzz-csi-staging/csi/gce-pd-driver:latest 
+          image: gcr.io/dyzz-csi-staging/csi/gce-pd-driver:latest
           args:
             - "--v=5"
             - "--endpoint=$(CSI_ENDPOINT)"
@@ -94,4 +94,4 @@ spec:
         - name: sys
           hostPath:
             path: /sys
-            type: Directory
+            type: Directory
diff --git a/deploy/kubernetes/dev/setup-cluster.yaml b/deploy/kubernetes/dev/setup-cluster.yaml
@@ -1,3 +1,31 @@
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: system:csi-external-snapshotter
+rules:
+- apiGroups: ["snapshot.storage.k8s.io"]
+  resources: ["volumesnapshotclasses"]
+  verbs: ["get", "list", "watch"]
+- apiGroups: ["snapshot.storage.k8s.io"]
+  resources: ["volumesnapshotcontents"]
+  verbs: ["create", "get", "list", "watch", "update", "delete"]
+- apiGroups: ["snapshot.storage.k8s.io"]
+  resources: ["volumesnapshots"]
+  verbs: ["get", "list", "watch", "update"]
+- apiGroups: ["apiextensions.k8s.io"]
+  resources: ["customresourcedefinitions"]
+  verbs: ["create", "list", "watch", "delete"]
+- apiGroups: [""]
+  resources: ["events"]
+  verbs: ["list", "watch", "create", "update", "patch"]
+- apiGroups: ["storage.k8s.io"]
+  resources: ["storageclasses"]
+  verbs: ["watch", "get", "list"]
+- apiGroups: ["admissionregistration.k8s.io"]
+  resources: ["mutatingwebhookconfigurations"]
+  verbs: ["create"]
+---
+
 kind: ClusterRole
 apiVersion: rbac.authorization.k8s.io/v1
 metadata:
@@ -67,4 +95,19 @@ subjects:
 roleRef:
   kind: ClusterRole
   name: system:csi-external-provisioner
+  apiGroup: rbac.authorization.k8s.io
+
+---
+
+kind: ClusterRoleBinding
+apiVersion: rbac.authorization.k8s.io/v1
+metadata:
+  name: csi-controller-snapshotter-binding
+subjects:
+  - kind: ServiceAccount
+    name: csi-controller-sa
+    namespace: default
+roleRef:
+  kind: ClusterRole
+  name: system:csi-external-snapshotter
   apiGroup: rbac.authorization.k8s.io
diff --git a/examples/kubernetes/demo-defaultsnapshotclass.yaml b/examples/kubernetes/demo-defaultsnapshotclass.yaml
@@ -0,0 +1,8 @@
+apiVersion: snapshot.storage.k8s.io/v1alpha1
+kind: VolumeSnapshotClass
+metadata:
+  annotations:
+    snapshot.storage.kubernetes.io/is-default-class: "true"
+  name: default-snapshot-class
+snapshotter: com.google.csi.gcepd
+
diff --git a/examples/kubernetes/demo-restore-snapshot.yaml b/examples/kubernetes/demo-restore-snapshot.yaml
@@ -0,0 +1,15 @@
+kind: PersistentVolumeClaim
+apiVersion: v1
+metadata:
+  name: restore-snapshot
+spec:
+  accessModes:
+    - ReadWriteOnce
+  storageClassName: csi-gce-pd
+  resources:
+    requests:
+      storage: 6Gi
+  dataSource:
+    kind: VolumeSnapshot
+    name: demo-snapshot-podpvc
+    apiGroup: snapshot.storage.k8s.io
diff --git a/examples/kubernetes/demo-snapshot.yaml b/examples/kubernetes/demo-snapshot.yaml
@@ -0,0 +1,9 @@
+apiVersion: snapshot.storage.k8s.io/v1alpha1
+kind: VolumeSnapshot
+metadata:
+  name: demo-snapshot-podpvc
+spec:
+  source:
+    kind: PersistentVolumeClaim
+    name: podpvc
+
