[NE-1105] Provide a solution for Gateway management by an operator

Type: Epic
Resolution: Done
Priority: Blocker
Fix Version/s: openshift-4.13.z
Affects Version/s: None
Labels:
None

Epic Name:
Provide a solution for Gateway management by an operator
Work Type:
BU Product Work
Story Points:
8
Blocked:
False
Blocked Reason:
None
Ready:
False
Color Status:
Green
Epic Status:
To Do
Feature Link:
OCPSTRAT-416 - Gateway API using Istio for Cluster Ingress (Dev Preview)
Parent Link:
OCPSTRAT-416Gateway API using Istio for Cluster Ingress (Dev Preview)
Hierarchy Progress Bar:

0% To Do, 0% In Progress, 100% Done
Git Pull Request:
https://github.com/openshift/cluster-ingress-operator/pull/890

Cost of Delay:
0
WSJF:
0.000

SFDC Cases Links:
SFDC Cases Open:
SFDC Cases Counter:

Intelligence Requested:
Market:

User Story: As a cluster admin, I want to create a gatewayclass and a gateway, and OpenShift should configure Istio/Envoy with an LB and DNS, so that traffic can reach httproutes attached to the gateway.

The operator will be one of these (or some combination):

cluster-ingress-operator
OSSM operator
a new operator

Functionality includes DNS (~~NE-1107~~), LoadBalancer (~~NE-1108~~), , and other operations formerly performed by the cluster-ingress-operator for routers.

configures GWAPI subcomponents
- Installs GWAPI Gateway CRD
installs Istio (if needed) when Gateway and GatewayClasses are created

Requires design document or enhancement proposal, breakdown into more specific stories.

(probably needs to be an Epic, will move things around later to accomodate that).

Out of scope for enhanced dev preview:

Unified Control Plane operations (~~NE-1095~~)
Installs RBAC that restricts who can configure Gateway and GatewayClasses

is related to

NE-1160 [GWAPI-TP] Tech Preview integration of Ingress Operator Gateway API solution with OSSM

Closed

relates to

NE-1036 Add Enhanced Dev Preview Support for Gateway API via Istio

Closed

NE-1095 [GWAPI-TP] Provide a solution for a Unified Control Plane

Closed

NE-1107 Provide a solution for DNS Management

Closed

NE-1108 Provide a solution for Load Balancer Management

Closed

NE-999 Understand Istio operator interactions with Istio Gateway

Closed

links to

openshift/cluster-ingress-operator#890: NE-1105: Add support for Gateway API

(1 relates to, 1 links to)

Michael Fisher added a comment - 2023/03/09 3:09 PM

Removing fixVersion openshift-4.13 from this epic because the GA release for this feature is in a future release. This epic reflects work needed for dev-preview. The plan and timeline for completing the dev-preview remains unchanged.

Michael Fisher added a comment - 2023/03/09 3:09 PM Removing fixVersion openshift-4.13 from this epic because the GA release for this feature is in a future release. This epic reflects work needed for dev-preview. The plan and timeline for completing the dev-preview remains unchanged.

Candace Holman added a comment - 2022/11/22 9:25 PM

Proposal for operations

Cluster ingress operator installs GWAPI Gateway CRD
RBAC restricts who can configure Gateway and GatewayClasses
Cluster ingress operator watches Gateway creation
Cluster ingress operator installs Istio when Gateway and GatewayClasses are created
Cluster admin defines/creates GatewayClass (installing Istio)
Cluster ingress operator watches Gateway creation and installs/configures Istio/Envoy and adds HTTPRroute CRD when/if needed
Cluster ingress operator creates LB when needed (as before)
Cluster ingress operator creates DNS based on LB (as before) (external-dns is a possibility)
Users can now create HTTPRoutes
Istio watches HTTPRoutes/Gateways and configures Envoy (as before)

Candace Holman added a comment - 2022/11/22 9:25 PM Proposal for operations Cluster ingress operator installs GWAPI Gateway CRD RBAC restricts who can configure Gateway and GatewayClasses Cluster ingress operator watches Gateway creation Cluster ingress operator installs Istio when Gateway and GatewayClasses are created Cluster admin defines/creates GatewayClass (installing Istio) Cluster ingress operator watches Gateway creation and installs/configures Istio/Envoy and adds HTTPRroute CRD when/if needed Cluster ingress operator creates LB when needed (as before) Cluster ingress operator creates DNS based on LB (as before) (external-dns is a possibility) Users can now create HTTPRoutes Istio watches HTTPRoutes/Gateways and configures Envoy (as before)

Assignee:: Miciah Masters

Reporter:: Candace Holman

Contributors:: Candace Holman, Grant Spence (Inactive)

QA Contact:: Hongan Li

Votes:: 0 Vote for this issue

Watchers:: 5 Start watching this issue

Created:: 2022/11/09 9:55 PM

Updated:: 2024/10/28 9:03 PM

Resolved:: 2023/07/25 3:34 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

Collapse comment: Michael Fisher added a comment - 2023/03/09 3:09 PM

Expand comment: Michael Fisher added a comment - 2023/03/09 3:09 PM

Collapse comment: Candace Holman added a comment - 2022/11/22 9:25 PM

Expand comment: Candace Holman added a comment - 2022/11/22 9:25 PM

People

Dates