Pulumi does not include ports when adopting resulting in a failure to adopt existing resources:
YAML

apiVersion: v1
kind: Service
metadata:
  name: gitea-web
  labels:
    app: gitea-web
spec:
  ports:
    - port: 80
      targetPort: 8080
      name: http
  selector:
    app: gitea

TS
Note that using the kubernetes package for this service will also fail with a different error.

import * as kx from '@pulumi/kubernetesx' // version 0.1.1
const svc = new kx.Service(
  'gitea-web',
  {
    metadata: {
      name: 'gitea-web',
      labels: {
        app: 'gitea-web',
      },
    },
    spec: {
      ports: [
        {
          name: 'http',
          port: 80,
          targetPort: 8080,
        },
      ],
      selector: {
        app: 'gitea',
      },
    },
  },
  {
    import: 'gitea-web',
    ignoreChanges: ['metadata.annotations'],
  }
)

Details:

  pulumi:pulumi:Stack: (same)
    [urn=urn:pulumi:dev::gitkit::pulumi:pulumi:Stack::gitkit-dev]
    = kubernetes:core/v1:Service: (import)
        [id=gitea-web]
        [urn=urn:pulumi:dev::gitkit::kubernetes:core/v1:Service::gitea-web]
        [provider=urn:pulumi:dev::gitkit::pulumi:providers:kubernetes::default_1_3_1::3b7c7381-1acb-47d8-a7fd-dd8563b0de39]
      ~ metadata: {
          - annotations: {}
        }
      ~ spec    : {
          ~ ports: [
              - [0]: {
                      - name      : "http"
                      - port      : 80
                      - targetPort: 8080
                    }
            ]
        }

Also, I appear to be doing something wrong with getting it to ignore annotations.

Cut a new release that uses v2.0.0 of p/pulumi & p/kubernetes

When using kubex.Deployment.createService(), the service will always be created in the default namespace.

Example:

import * as kx from "@pulumi/kubernetesx"

const pod = new kx.PodBuilder({
  containers: [
    {
      image: 'abiosoft/caddy'
    }
  ]
})

const deployment = new kx.Deployment('test',
  {
    metadata: {
      namespace: 'kube-system'
    },
    spec: pod.asDeploymentSpec()
  }
)

deployment.createService()

Rather than requiring the user to specify the subject and roleRef, implicitly derive this information from input objects.

Example:

   new kx.ClusterRoleBinding(
        name,
        {
            subjects: [
                serviceAccountObject,
            ],
            roleRef: clusterRoleObject,
        }
    );
}

Hi! 👋

Firstly, thanks for your work on this project! 🙂

Today I used patch-package to patch @pulumi/[email protected] for the project I'm working on.

Here is the diff that solved my problem:

diff --git a/node_modules/@pulumi/kubernetesx/kx.d.ts b/node_modules/@pulumi/kubernetesx/kx.d.ts
index 2bbe265..61b52d9 100644
--- a/node_modules/@pulumi/kubernetesx/kx.d.ts
+++ b/node_modules/@pulumi/kubernetesx/kx.d.ts
@@ -35,6 +35,9 @@ export declare namespace types {
         ports?: pulumi.Input<pulumi.Input<k8s.types.input.core.v1.ServicePort>[] | PortMap>;
         type?: pulumi.Input<ServiceType | string>;
     };
+    type CreateServiceArgs = types.ServiceSpec & {
+        name?: string;
+    };
     type Service = Omit<k8s.types.input.core.v1.Service, "spec"> & {
         spec: pulumi.Input<ServiceSpec>;
     };
@@ -70,7 +73,7 @@ export declare class Deployment extends k8s.apps.v1.Deployment {
     private readonly name;
     private readonly opts?;
     constructor(name: string, args: types.Deployment, opts?: pulumi.CustomResourceOptions);
-    createService(args?: types.ServiceSpec): Service;
+    createService(args?: types.CreateServiceArgs): Service;
 }
 export declare class Service extends k8s.core.v1.Service {
     constructor(name: string, args: types.Service, opts?: pulumi.CustomResourceOptions);
diff --git a/node_modules/@pulumi/kubernetesx/kx.js b/node_modules/@pulumi/kubernetesx/kx.js
index 4aa2874..a43c9a7 100644
--- a/node_modules/@pulumi/kubernetesx/kx.js
+++ b/node_modules/@pulumi/kubernetesx/kx.js
@@ -186,8 +186,9 @@ class Deployment extends k8s.apps.v1.Deployment {
                 // TODO: probably need to unwrap args.type in case it's a computed value
                 type: args && args.type });
         });
-        return new Service(this.name, {
-            metadata: { namespace: this.metadata.namespace },
+        const name = args.name ?? this.name;
+        return new Service(name, {
+            metadata: { namespace: this.metadata.namespace, name },
             spec: serviceSpec,
         }, Object.assign(Object.assign({}, this.opts), { parent: this }));
     }

This issue body was partially generated by patch-package.

When trying to use an EnvMap in an init container, this error is thrown:

Types of property 'env' are incompatible.
  Type '{ "test": string; }' is not assignable to type 'Input<Input<EnvVar>[]>'.
    Type '{ "test": string; }' is missing the following properties from type 'Promise<Input<EnvVar>[]>': then, catch, [Symbol.toStringTag], finally

It appears that an EnvMap is required to properly use the secret asEnvValue function to add a secret environment variable.

It may be a separate bug that asEnvValue configures the value as a value and not a valueFrom when added to a list type env.

Please modify the PodBuilder to allow specifying customized metadata in a pod template. I need to be able to specify annotations (for Prometheus discovery) and labels (for compliance) on my pods.

Thanks!

Add a couple of examples demonstrating:

• Using full Service spec to set & create a public LB
• Talk to defaults done (e.g. names, metadata, ports)
• Demo how to override any defaults done by PodBuilder

Hi,

I'd like to add labels to my kubernetes service, but I don't see this available in kx.Deployment.createService

I tried to work around it with the code below but it had no effect:

service.metadata.labels = {
            ...this.service.metadata.labels,
            "app": this.name
        } as any;

Any suggestions? Lots of other features require specific labels to be set on the service, for scoping purposes.

Thanks in advance!

Affected feature

The generated container names are extracted by the regex /(.*\/|^)(?<image>\w+)(:(?<tag>.*))?/, which skips hyphens. Since most docker images use hyphens rather than underscores (e.g., cert-manager, external-dns, aws-load-banlance-controller), the regex just extracts the first word.

Is there any consideration that stops including hyphens?

Meta issue to track work needed to deliver a compelling v1 offering for the @pulumi/kubernetesx package.

@metral @CyrusNajmabadi @d-nishi to flesh out with specific goals and to break down into individual work items with owners (like 1 item (5d) to research (w/ design review for conclusions), another (5d) to design (w/ document to review), another (5d) to prototype initial version).

This is not an issue per-say but an idea for reference.

As you build this simplified Kubernetes API package you may wish to refer to
https://docs.koki.io/short/

They've put some effort into simplifying Kubernetes YAML without information loss. There is likely some useful inspiration there.

Steps to reproduce

1. create a pvc like in the examples
2. create a podbuilder with 2 init containers and 1 normal container
3. all these containers will interact with the data on the pvc so they all have volumeMounts: [ pvc.mount('/data')]
4. the volumes in the spec builder is not a set, but an array, so it will have 3 volumes for the same pvc
5. error

Went to a manual Deployment in the end.

Hello!

• Vote on this issue by adding a 👍 reaction
• If you want to implement this feature, comment to let us know (we'll work with you on design, scheduling, etc.)

Issue details

• Update pulumi-kubernetes dependency to the latest 4.x.
• Include upgrade tests

Affected area/feature

export const imagePullSecret = new k8s.core.v1.Secret(
    "docker-hub",
    {
        type: "kubernetes.io/dockerconfigjson",
        metadata: {
            namespace: "community"
        },
        stringData: {
            ".dockerconfigjson": config
                .requireSecret("docker-hub-token")
                .apply(value => {
                    return JSON.stringify({
                        auths: {
                            "https://index.docker.io/v1/": {
                                auth: value
                            }
                        }
                    })
                })
        },
    },
    {
        provider: kubernetesProvider
    }
);

The above snippet is the current way to create a Secret which can be used to pull private Docker images from Docker Hub. Please provide an easier way to create such a secret.

Context:

• https://pulumi-community.slack.com/archives/CJ909TL6P/p1572250786085600

Issue created on request of @lblackstone

If a deployment is created in a different namespace, the service is still placed in the default namespace. createService() should use the same namespace.

Given that a standard pod starts like this

apiVersion: v1
kind: Pod
metadata:
  name: myapp
  labels:
    name: myapp

and a deployment starts like this

apiVersion: apps/v1
kind: Deployment
metadata:
  name: myapp
spec:
  selector:
    matchLabels:
      app: myapp

I would like to see

new kx.Deployment('name', {
    spec: pod.asDeploymentSpec(),
})

default to set the deployment's metadata property to: { name: firstArg }

The createService verb on Deployment, etc should have the ability to set metadata on the created Service.

The .container.port parameter currently only accepts a number, but it should also accept a string.

Hi! 👋

Firstly, thanks for your work on this project! 🙂

Today I used patch-package to patch @pulumi/[email protected] for the project I'm working on.

Here is the diff that solved my problem:

diff --git a/node_modules/@pulumi/kubernetesx/kx.d.ts b/node_modules/@pulumi/kubernetesx/kx.d.ts
index 2bbe265..4b677ea 100644
--- a/node_modules/@pulumi/kubernetesx/kx.d.ts
+++ b/node_modules/@pulumi/kubernetesx/kx.d.ts
@@ -35,6 +35,9 @@ export declare namespace types {
         ports?: pulumi.Input<pulumi.Input<k8s.types.input.core.v1.ServicePort>[] | PortMap>;
         type?: pulumi.Input<ServiceType | string>;
     };
+    type CreateServiceArgs = types.ServiceSpec & {
+        metadata?: pulumi.Input<k8s.types.input.meta.v1.ObjectMeta>;
+    };
     type Service = Omit<k8s.types.input.core.v1.Service, "spec"> & {
         spec: pulumi.Input<ServiceSpec>;
     };
@@ -70,7 +73,7 @@ export declare class Deployment extends k8s.apps.v1.Deployment {
     private readonly name;
     private readonly opts?;
     constructor(name: string, args: types.Deployment, opts?: pulumi.CustomResourceOptions);
-    createService(args?: types.ServiceSpec): Service;
+    createService(args?: types.CreateServiceArgs): Service;
 }
 export declare class Service extends k8s.core.v1.Service {
     constructor(name: string, args: types.Service, opts?: pulumi.CustomResourceOptions);
diff --git a/node_modules/@pulumi/kubernetesx/kx.js b/node_modules/@pulumi/kubernetesx/kx.js
index 4aa2874..17f332f 100644
--- a/node_modules/@pulumi/kubernetesx/kx.js
+++ b/node_modules/@pulumi/kubernetesx/kx.js
@@ -186,8 +186,8 @@ class Deployment extends k8s.apps.v1.Deployment {
                 // TODO: probably need to unwrap args.type in case it's a computed value
                 type: args && args.type });
         });
-        return new Service(this.name, {
-            metadata: { namespace: this.metadata.namespace },
+        return new Service(args?.metadata?.name, {
+            metadata: { namespace: this.metadata.namespace, ...args?.metadata },
             spec: serviceSpec,
         }, Object.assign(Object.assign({}, this.opts), { parent: this }));
     }

This issue body was partially generated by patch-package.

I always forget how to dig through the innards of a Service to find its resulting IP Address. Especially as it differs between clouds. It would be super cool if we had an ipAddress: Output<string> property on kx.Service, which internally encapsulated these details.

initContainers currently don't support the simplified kx syntax. This should be unified with the containers support to avoid requiring different syntax.

Related #51

Rather than this:

imagePullSecrets: [{ name: imagePullSecret.metadata.name }],

allow

imagePullSecrets: [imagePullSecret],

ports defined in the kx.Service args.spec.ports param don't get created.

import * as kubex from "@pulumi/kubernetesx";

const pod = new kubex.PodBuilder({
  containers: [
    {
      image: 'abiosoft/caddy'
    }
  ]
})

const deployment = new kubex.Deployment(
  'test',
  {
    metadata: {
      namespace: 'kube-system'
    },
    spec: pod.asDeploymentSpec()
  }
)


const service = new kubex.Service(
  'test',
  {
    metadata: { namespace: 'kube-system' },
    spec: {
      selector: {
        app: 'caddy'
      },
      ports: [
        {
          port: 8000,
          name: 'http'
        }
      ]
    }
  }
)

Preview shows no ports being applied

+ kubernetes:core/v1:Service: (create)
+   [urn=xxxxxxx]
+   [provider=xxxxxxxxxxxx]
+   apiVersion: "v1"
+   kind      : "Service"
+   metadata  : {
+       annotations: {
+           pulumi.com/autonamed: "true"
+       }
+       labels     : {
+           app.kubernetes.io/managed-by: "pulumi"
+       }
+       name       : "test-mr4g6lcj"
+       namespace  : "kube-system"
+   }
+   spec      : {
+       selector: {
+           app: "caddy"
+       }
+   }

It might be useful to include a helper method that generates a complete URL for a Service.

Something along the lines of:

export const url = service.url( { port: "http" });

url: "http://localhost:80"

Currently this can be accomplished manually with something like

export const endpoint = pulumi.interpolate`http://${service.endpoint}:${service.spec.ports[0].targetPort}`;

The other defaults for a kx.Deployment all seem reasonable, but the default Kubernetes Deployment strategy can be a little aggressive with the 25% maxUnavailable.

It'd be nice to be able to pass in such a sensitive configuration.

Hello!

• Vote on this issue by adding a 👍 reaction
• If you want to implement this feature, comment to let us know (we'll work with you on design, scheduling, etc.)

Issue details

Now that multi-language components are available, we should consider how kubernetesx could be supported in all languages. This might require some changes to the API, which is currently TypeScript-focused.

Unable to define cronjobs as part of kx

Using kx to generate kube YAML for Cronjob

This lib doesn't yet include usage docs. Those should be added as the interfaces stabilize.

Affected feature

I needed to add prometheus scrape annotations on the pods in a deployment. There was no way to do so as the template field is omitted in the types. Reverted to a base deployment to get around this.