Add ingress feature to controller

Author: mohamed-essam

PROJECT

@@ -29,4 +29,50 @@ resources:
   webhooks:
     defaulting: true
     webhookVersion: v1
+- api:
+    crdVersion: v1
+    namespaced: true
+  controller: true
+  domain: netbird.io
+  kind: NBRoutingPeer
+  path: github.com/netbirdio/kubernetes-operator/api/v1
+  version: v1
+  webhooks:
+    validation: true
+    webhookVersion: v1
+- controller: true
+  external: true
+  kind: Service
+  path: k8s.io/api/core/v1
+  version: v1
+- api:
+    crdVersion: v1
+    namespaced: true
+  controller: true
+  domain: netbird.io
+  kind: NBResource
+  path: github.com/netbirdio/kubernetes-operator/api/v1
+  version: v1
+  webhooks:
+    validation: true
+    webhookVersion: v1
+- api:
+    crdVersion: v1
+    namespaced: true
+  controller: true
+  domain: netbird.io
+  kind: NBGroup
+  path: github.com/netbirdio/kubernetes-operator/api/v1
+  version: v1
+  webhooks:
+    validation: true
+    webhookVersion: v1
+- api:
+    crdVersion: v1
+    namespaced: true
+  controller: true
+  domain: netbird.io
+  kind: NBPolicy
+  path: github.com/netbirdio/kubernetes-operator/api/v1
+  version: v1
 version: "3"

api/v1/nbgroup_types.go

@@ -0,0 +1,52 @@
+package v1
+
+import (
+	"slices"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// NBGroupSpec defines the desired state of NBGroup.
+type NBGroupSpec struct {
+	// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="Value is immutable"
+	// +kubebuilder:validation:MinLength=1
+	Name string `json:"name"`
+}
+
+// NBGroupStatus defines the observed state of NBGroup.
+type NBGroupStatus struct {
+	// +optional
+	GroupID *string `json:"groupID"`
+	// +optional
+	Conditions []NBCondition `json:"conditions,omitempty"`
+}
+
+// Equal returns if NBGroupStatus is equal to this one
+func (a NBGroupStatus) Equal(b NBGroupStatus) bool {
+	return a.GroupID == b.GroupID && slices.Equal(a.Conditions, b.Conditions)
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:subresource:status
+
+// NBGroup is the Schema for the nbgroups API.
+type NBGroup struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   NBGroupSpec   `json:"spec,omitempty"`
+	Status NBGroupStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+
+// NBGroupList contains a list of NBGroup.
+type NBGroupList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []NBGroup `json:"items"`
+}
+
+func init() {
+	SchemeBuilder.Register(&NBGroup{}, &NBGroupList{})
+}

api/v1/nbpolicy_types.go

@@ -0,0 +1,81 @@
+package v1
+
+import (
+	"slices"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// NBPolicySpec defines the desired state of NBPolicy.
+type NBPolicySpec struct {
+	// Name Policy name
+	// +kubebuilder:validation:MinLength=1
+	Name string `json:"name"`
+	// +optional
+	Description string `json:"description,omitempty"`
+	// +optional
+	// +kubebuilder:validation:items:MinLength=1
+	SourceGroups []string `json:"sourceGroups,omitempty"`
+	// +optional
+	// +kubebuilder:validation:items:MinLength=1
+	DestinationGroups []string `json:"destinationGroups,omitempty"`
+	// +optional
+	// +kubebuilder:validation:items:Enum=tcp;udp
+	Protocols []string `json:"protocols,omitempty"`
+	// +optional
+	// +kubebuilder:validation:items:Minimum=0
+	// +kubebuilder:validation:items:Maximum=65535
+	Ports []int32 `json:"ports,omitempty"`
+	// +optional
+	// +default:value=true
+	Bidirectional bool `json:"bidirectional"`
+}
+
+// NBPolicyStatus defines the observed state of NBPolicy.
+type NBPolicyStatus struct {
+	// +optional
+	TCPPolicyID *string `json:"tcpPolicyID"`
+	// +optional
+	UDPPolicyID *string `json:"udpPolicyID"`
+	// +optional
+	LastUpdatedAt *metav1.Time `json:"lastUpdatedAt"`
+	// +optional
+	ManagedServiceList []string `json:"managedServiceList"`
+	// +optional
+	Conditions []NBCondition `json:"conditions,omitempty"`
+}
+
+// Equal returns if NBPolicyStatus is equal to this one
+func (a NBPolicyStatus) Equal(b NBPolicyStatus) bool {
+	return a.TCPPolicyID == b.TCPPolicyID &&
+		a.UDPPolicyID == b.UDPPolicyID &&
+		a.LastUpdatedAt == b.LastUpdatedAt &&
+		slices.Equal(a.ManagedServiceList, b.ManagedServiceList) &&
+		slices.Equal(a.Conditions, b.Conditions)
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:subresource:status
+// +kubebuilder:resource:scope=Cluster
+
+// NBPolicy is the Schema for the nbpolicies API.
+type NBPolicy struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   NBPolicySpec   `json:"spec,omitempty"`
+	Status NBPolicyStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+
+// NBPolicyList contains a list of NBPolicy.
+type NBPolicyList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []NBPolicy `json:"items"`
+}
+
+func init() {
+	SchemeBuilder.Register(&NBPolicy{}, &NBPolicyList{})
+}

api/v1/nbresource_types.go

@@ -0,0 +1,76 @@
+package v1
+
+import (
+	"slices"
+
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// NBResourceSpec defines the desired state of NBResource.
+type NBResourceSpec struct {
+	// +kubebuilder:validation:MinLength=1
+	Name string `json:"name"`
+	// +kubebuilder:validation:XValidation:rule="self == oldSelf",message="Value is immutable"
+	NetworkID string `json:"networkID"`
+	// +kubebuilder:validation:MinLength=1
+	Address string `json:"address"`
+	// +kubebuilder:validation:items:MinLength=1
+	Groups []string `json:"groups"`
+	// +optional
+	PolicyName string `json:"policyName,omitempty"`
+	// +optional
+	TCPPorts []int32 `json:"tcpPorts,omitempty"`
+	// +optional
+	UDPPorts []int32 `json:"udpPorts,omitempty"`
+}
+
+// NBResourceStatus defines the observed state of NBResource.
+type NBResourceStatus struct {
+	// +optional
+	NetworkResourceID *string `json:"networkResourceID,omitempty"`
+	// +optional
+	PolicyName *string `json:"policyName,omitempty"`
+	// +optional
+	TCPPorts []int32 `json:"tcpPorts,omitempty"`
+	// +optional
+	UDPPorts []int32 `json:"udpPorts,omitempty"`
+	// +optional
+	Groups []string `json:"groups,omitempty"`
+	// +optional
+	Conditions []NBCondition `json:"conditions,omitempty"`
+}
+
+// Equal returns if NBResourceStatus is equal to this one
+func (a NBResourceStatus) Equal(b NBResourceStatus) bool {
+	return a.NetworkResourceID == b.NetworkResourceID &&
+		a.PolicyName == b.PolicyName &&
+		slices.Equal(a.TCPPorts, b.TCPPorts) &&
+		slices.Equal(a.UDPPorts, b.UDPPorts) &&
+		slices.Equal(a.Groups, b.Groups) &&
+		slices.Equal(a.Conditions, b.Conditions)
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:subresource:status
+
+// NBResource is the Schema for the nbresources API.
+type NBResource struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   NBResourceSpec   `json:"spec,omitempty"`
+	Status NBResourceStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+
+// NBResourceList contains a list of NBResource.
+type NBResourceList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []NBResource `json:"items"`
+}
+
+func init() {
+	SchemeBuilder.Register(&NBResource{}, &NBResourceList{})
+}

api/v1/nbroutingpeer_types.go

@@ -0,0 +1,69 @@
+package v1
+
+import (
+	"slices"
+
+	corev1 "k8s.io/api/core/v1"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+)
+
+// NBRoutingPeerSpec defines the desired state of NBRoutingPeer.
+type NBRoutingPeerSpec struct {
+	// +optional
+	Replicas *int32 `json:"replicas"`
+	// +optional
+	Resources corev1.ResourceRequirements `json:"resources"`
+	// +optional
+	Labels map[string]string `json:"labels"`
+	// +optional
+	Annotations map[string]string `json:"annotations"`
+	// +optional
+	NodeSelector map[string]string `json:"nodeSelector"`
+	// +optional
+	Tolerations []corev1.Toleration `json:"tolerations"`
+}
+
+// NBRoutingPeerStatus defines the observed state of NBRoutingPeer.
+type NBRoutingPeerStatus struct {
+	// +optional
+	NetworkID *string `json:"networkID"`
+	// +optional
+	SetupKeyID *string `json:"setupKeyID"`
+	// +optional
+	RouterID *string `json:"routerID"`
+	// +optional
+	Conditions []NBCondition `json:"conditions,omitempty"`
+}
+
+// Equal returns if NBRoutingPeerStatus is equal to this one
+func (a NBRoutingPeerStatus) Equal(b NBRoutingPeerStatus) bool {
+	return a.NetworkID == b.NetworkID &&
+		a.SetupKeyID == b.SetupKeyID &&
+		a.RouterID == b.RouterID &&
+		slices.Equal(a.Conditions, b.Conditions)
+}
+
+// +kubebuilder:object:root=true
+// +kubebuilder:subresource:status
+
+// NBRoutingPeer is the Schema for the nbroutingpeers API.
+type NBRoutingPeer struct {
+	metav1.TypeMeta   `json:",inline"`
+	metav1.ObjectMeta `json:"metadata,omitempty"`
+
+	Spec   NBRoutingPeerSpec   `json:"spec,omitempty"`
+	Status NBRoutingPeerStatus `json:"status,omitempty"`
+}
+
+// +kubebuilder:object:root=true
+
+// NBRoutingPeerList contains a list of NBRoutingPeer.
+type NBRoutingPeerList struct {
+	metav1.TypeMeta `json:",inline"`
+	metav1.ListMeta `json:"metadata,omitempty"`
+	Items           []NBRoutingPeer `json:"items"`
+}
+
+func init() {
+	SchemeBuilder.Register(&NBRoutingPeer{}, &NBRoutingPeerList{})
+}