scothis
commented
2 years ago More details of the problem and reproducible test cases are available in https://github.com/vmware-tanzu/carvel-kapp/issues/427
Closed scothis closed 2 years ago
scothis
commented
2 years ago More details of the problem and reproducible test cases are available in https://github.com/vmware-tanzu/carvel-kapp/issues/427
Add a
ServiceAvailablecondition to theServiceBindingstatus. Logically, the behavior covered by theServiceAvailablecondition is a subset of the existingReadycondition. The behavior of theReadycondition is unchanged.The status is
Truewhen the referenced Provisioned Service is resolved and exposes a binding secret. The status isFalseif the Provisioned Service cannot be resolved, either because it does not exist, or is not visible to the implementation. The status isUnknownwhen the referenced Provisioned Service is resolved, but does not expose a binding secret.When managing the rollout of resources that include a service, binding and workload it can be difficult today to observe each resource to know when there is a problem that requires remediation.
Readycondition will beFalseif the workload does not existThe above cases make it difficult for tools to observe the health of either resource during the rollout, while the resource will eventually settle on a healthy status, a circuit breaker could flip in the interim that reverts the rollout. With a new
ServiceAvailablecondition we can stagger the rollout of the resource to upsert the service and binding, wait forServiceAvailableto becomeTrueand then upsert the workload.Additionally, if the workload is immutable (like a Job), the creation of the workload must be held until the service is known to exist. The
ServiceAvailablecondition becomingTruecan signal that it's ok to create the workload. If the workload is created before the service is available, the ServiceBinding won't be able to complete the binding.Signed-off-by: Scott Andrews andrewssc@vmware.com