Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Create vcpctl tool to facilitate CCM provisioning #15

Closed
3 tasks done
fanzhangio opened this issue Jul 17, 2018 · 4 comments · Fixed by #44
Closed
3 tasks done

Create vcpctl tool to facilitate CCM provisioning #15

fanzhangio opened this issue Jul 17, 2018 · 4 comments · Fixed by #44
Assignees
@fanzhangio
Labels
kind/feature Categorizes issue or PR as related to a new feature.

Comments

@fanzhangio
Copy link

fanzhangio commented Jul 17, 2018
edited
Loading

FEATURE REQUEST:

/kind feature

Deploying a cloud provider on vSphere is a task that has many prerequisites, from creating a user with correct roles on vCenter, to creating a correct configuration for the service. When migrating users from the in-tree version there's also a need to convert configuration files and to make sure sensitive credentials are stored safely.

The tool should fulfill these needs:

  • Perform vSphere configuration health check:

    • disk.uuid set on esx

  • Create vSphere role with minimal set of permissions

  • Create vSphere solution user (generate keypair), to be used with CCM
@frapposelli
Copy link
Member

/kind feature

@k8s-ci-robot k8s-ci-robot added the kind/feature Categorizes issue or PR as related to a new feature. label Jul 18, 2018
@frapposelli
Copy link
Member

/assign @fanzhangio

@dougm
Copy link
Member

dougm commented Jul 30, 2018

@fanzhangio a few pointers:

disk.EnableUUID

This is a VM "extra config" property, can be set using:

% govc vm.change -e disk.enableUUID=1 -vm vm-name

See: https://github.com/vmware/govmomi/blob/056ad0d4991b2ae3900603480c1d27583ffeaa1d/govc/vm/change.go#L132-L134

Get using:

% govc vm.info -e -vm vm-name | grep disk.enableUUID

See: https://github.com/vmware/govmomi/blob/056ad0d4991b2ae3900603480c1d27583ffeaa1d/govc/vm/info.go#L335-L340

sso

Creating a solution user: vmware-archive/kubernetes-archived#489

See: https://github.com/vmware/govmomi/blob/master/govc/sso/user/create.go

roles

Roles can be created, updated, listed using the govc role.* commands: https://github.com/vmware/govmomi/blob/master/govc/USAGE.md#rolecreate

See: https://github.com/vmware/govmomi/tree/master/govc/role

@fanzhangio fanzhangio mentioned this issue Jul 31, 2018
Merged
@fanzhangio fanzhangio mentioned this issue Aug 23, 2018
Merged
@fanzhangio
Copy link
Author

vcpctl might also need to implement session login/logout as well ?
@frapposelli @dougm

@fanzhangio fanzhangio mentioned this issue Sep 11, 2018
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@fanzhangio fanzhangio

Labels
kind/feature Categorizes issue or PR as related to a new feature.
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

Feature: Implement vcpctl create solution user for CCM (Stage 2) fanzhangio/cloud-provider-vsphere
4 participants
@dougm @frapposelli @k8s-ci-robot @fanzhangio