Basically, it is a workload usually running as a deployment just like all other workloads. More speficially its purpose is to do a job involved in maintaining desired state of the cluster. We can broadly categorize them as...
- Controller - These operators are responsible for managing cluster resources.
- The kube-controller-manager is a collection of such operators all bundled into a single process and is responsible for nearly all the resources that are avaiaible by default in a kubernetes installation, e.g.
Deployment,ReplicaSet,StatefulSet,PersistentVolumeetc. - kubelet contains a controller that directly manages
Pod - Custom Resource controllers have to be installed as a separate deployment along with the Custom Resource Definition(s) they will manage (more on this later).
- The kube-controller-manager is a collection of such operators all bundled into a single process and is responsible for nearly all the resources that are avaiaible by default in a kubernetes installation, e.g.
- Installer - These operators are used to manage the installation of other software that itself has a complicated installation process, again via the use of Custom Resource Definitions. Prometheus is typically installed this way - when you
kubectl applyaPrometheusresource manifest, then the operator will install and configure an instance of Prometheus automatically.
Note that for CKAD it is not necessary to know how to create an operator. You will only need to know what they are (above) and how they relate to Custom Resources. The course material on custom resources and custom resource definitions is sufficient.
The software in the operator pods watch for changes to custom resources they manage. When they see a change (one is created, deleted or edited), then they act on the changes to bring the cluster to the state desired by the resource. For example, if you edit replicas of a deployment, the deployment controller sees this and updates the replica count in the manifest for the repliacset it controls. The replicaset controller responds to this change by creating or deleting pods as appropriate.
We can simulate how an operator works with a shell script running kubectl commands. A real operator is coded using the Kubernetes API for the programming language of the developer's choice and is doing exactly the same things - getting and applying resources. This script also demonstrates the extreme utility of JSONPath and thus why it is important to learn it.
We will deploy a custom resource definition for a new custom resource called BashReplicaSet which will look exactly like a normal replicaset in all but kind.
The shell script will act as the operator and will create or delete pods in response to changes to the number of replicas. It doesn't do everything that's expected of a real replicaset as that would get too complicated too quickly!
You can run the following in any of the Kubernetes labs or playgrounds.
-
Copy the custom resource definition, paste to
viand save as a YAML file, e.g.crd.yaml -
Deploy the CRD
kubectl apply -f crd.yaml -
Copy the resource manifest to
viand save it as a YAML file e.g.resource.yaml, then deploy withkubectl apply. TheBashReplicaSetresource will be created, but nothing will happen yet, because the operator is not running.kubectl apply -f resource.yaml kubectl get BashReplicaSet kubectl get podsNo pods - let's run the "operator"...
-
Copy the operator script, paste into
viand save it asoperator.sh -
Run the operator script
chmod +x operator.sh ./operator.shYou will now see pods being created. You need to leave the operator running, so open a second terminal window to do the next steps.
-
See the pods already created
kubectl get podsIf you get one of the pods that were just created with
-o yamland look in the metadata section, you'll see the pod name and theownerReferencesection that were created by the operator. Refer to the comments in the script for why we haveownerReference. -
Edit the resource. You can't use
kubectl scalesince that command only knows about the built-in deployment and replicaset.kubectl edit BashReplicaSet nginx-bashreplicasetChange the number of
replicasSave and exit.
Run
kubectl get pods...to see the number of running pods has now changed.
Return to the first terminal and you will see output from the operator
Here is is running in a course lab environment...
