Upbound’s Controllers feature lets you build and deploy control plane software from the Kubernetes ecosystem. With the Controllers feature, you’re not limited to just managing resource types defined by Crossplane. Now you can create resources from CustomResourceDefinitions defined by other Kubernetes ecosystem tooling.
This guide explains how to bundle and deploy control plane software from the Kubernetes ecosystem on a control plane in Upbound.
Benefits
The Controllers feature provides the following benefits:
- Deploy control plane software from the Kubernetes ecosystem.
- Use your control plane’s package manager to handle the lifecycle of the control plane software and define dependencies between package.
- Build powerful compositions that combine both Crossplane and Kubernetes CustomResources.
How it works
A Controller is a package type that bundles control plane software from the Kubernetes ecosystem. Examples of such software includes:
- Kubernetes policy engines
- CI/CD tooling
- Your own private custom controllers defined by your organization
You build a Controller package by wrapping a helm chart along with its requisite CustomResourceDefinitions. Your Controller package gets pushed to an OCI registry, and from there you can apply it to a control plane like you would any other Crossplane package. Your control plane’s package manager is responsible for managing the lifecycle of the software once applied.
Prerequisites
Enable the Controllers feature in the Space you plan to run your control plane in:
- Cloud Spaces: Not available yet
- Connected Spaces: Space administrator must enable this feature
- Disconnected Spaces: Space administrator must enable this feature
Packaging a Controller requires up CLI v0.39.0 or later.
Build a Controller package
Controllers are a package type that get administered by your control plane’s package manager.
Prepare the package
To define a Controller, you need a Helm chart. This guide assumes the control plane software you want to build into a Controller already has a Helm chart available.
Start by making a working directory to assemble the necessary parts:
mkdir controller-package
cd controller-package
Inside the working directory, pull the Helm chart
export CHART_REPOSITORY=
export CHART_NAME=
export CHART_VERSION=
helm pull $CHART_NAME --repo $CHART_REPOSITORY --version $CHART_VERSION
Move the Helm chart into it’s own folder:
mkdir helm
mv $CHART_NAME-$CHART_VERSION.tgz helm/chart.tgz
Unpack the CRDs from the Helm chart into their own directory:
export RELEASE_NAME=
export RELEASE_NAMESPACE=
mkdir crds
helm template $RELEASE_NAME helm/chart.tgz -n $RELEASE_NAMESPACE --include-crds | \
yq e 'select(.kind == "CustomResourceDefinition")' - | \
yq -s '("crds/" + .metadata.name + ".yaml")' -
Create a crossplane.yaml with your controller metadata:
cat <<EOF > crossplane.yaml
apiVersion: meta.pkg.upbound.io/v1alpha1
kind: Controller
metadata:
annotations:
friendly-name.meta.crossplane.io: Controller <your-controller>
meta.crossplane.io/description: |
A brief description of what the controller does.
meta.crossplane.io/license: Apache-2.0
meta.crossplane.io/maintainer: <your-email>
meta.crossplane.io/readme: |
An explanation of your controller.
meta.crossplane.io/source: <url-for-your-controller-source>
name: <controller-name>
spec:
packagingType: Helm
helm:
releaseName: <release-name>
releaseNamespace: <release-namespace>
# Value overrides for the helm release can be provided below.
# values:
# foo: bar
EOF
Your controller’s file structure should look like this:
.
├── crds
│ ├── your-crd.yaml
│ ├── second-crd.yaml
│ └── another-crd.yaml
├── crossplane.yaml
└── helm
└── chart.tgz
Package and push the Controller
At the root of your controller’s working directory, build the contents into an xpkg:
up xpkg build
This causes an xpkg to get saved to your current directory with a name like controller-f7091386b4c0.xpkg.
Push the package to your desired OCI registry:
export UPBOUND_ACCOUNT=
export CONTROLLER_NAME=
export CONTROLLER_VERSION=
export XPKG_FILENAME=
up xpkg push xpkg.upbound.io/$UPBOUND_ACCOUNT/$CONTROLLER_NAME:$CONTROLLER_VERSION -f $XPKG_FILENAME
Deploy a Controller package
v1.19.0 or later.Set your kubecontext to the desired control plane in Upbound. Change the package path to the OCI registry you pushed it to. Then, deploy the Controller directly:
export CONTROLLER_NAME=
export CONTROLLER_VERSION=
cat <<EOF | kubectl apply -f -
apiVersion: pkg.upbound.io/v1alpha1
kind: Controller
metadata:
name: $CONTROLLER_NAME
spec:
package: xpkg.upbound.io/$UPBOUND_ACCOUNT/$CONTROLLER_NAME:$CONTROLLER_VERSION
EOF
Example usage
The example below demonstrates step-by-step how to package and deploy Argo CD to a control plane in Upbound.
Prepare to package Argo CD
Start by making a working directory to assemble the necessary parts:
mkdir argo-package
cd argo-package
Inside the working directory, pull the Helm chart
export CHART_REPOSITORY=https://argoproj.github.io/argo-helm
export CHART_NAME=argo-cd
export CHART_VERSION=7.8.8
helm pull $CHART_NAME --repo $CHART_REPOSITORY --version $CHART_VERSION
Move the Helm chart into it’s own folder:
mkdir helm
mv $CHART_NAME-$CHART_VERSION.tgz helm/chart.tgz
Unpack the CRDs from the Helm chart into their own directory:
export RELEASE_NAME=argo-cd
export RELEASE_NAMESPACE=argo-system
mkdir crds
helm template $RELEASE_NAME helm/chart.tgz -n $RELEASE_NAMESPACE --include-crds | \
yq e 'select(.kind == "CustomResourceDefinition")' - | \
yq -s '("crds/" + .metadata.name + ".yaml")' -
Create a crossplane.yaml with the controller metadata:
cat <<EOF > crossplane.yaml
apiVersion: meta.pkg.upbound.io/v1alpha1
kind: Controller
metadata:
annotations:
friendly-name.meta.crossplane.io: Controller ArgoCD
meta.crossplane.io/description: |
The ArgoCD Controller enables continuous delivery and declarative configuration
management for Kubernetes applications using GitOps principles.
meta.crossplane.io/license: Apache-2.0
meta.crossplane.io/maintainer: Upbound Maintainers <info@upbound.io>
meta.crossplane.io/readme: |
ArgoCD is a declarative GitOps continuous delivery tool for Kubernetes that
follows the GitOps methodology to manage infrastructure and application
configurations.
meta.crossplane.io/source: https://github.com/argoproj/argo-cd
name: argocd
spec:
packagingType: Helm
helm:
releaseName: argo-cd
releaseNamespace: argo-system
# values:
# foo: bar
EOF
Your controller’s file structure should look like this:
.
├── crds
│ ├── applications.argoproj.io.yaml
│ ├── applicationsets.argoproj.io.yaml
│ └── appprojects.argoproj.io.yaml
├── crossplane.yaml
└── helm
└── chart.tgz
Package and push controller-argocd
At the root of your controller’s working directory, build the contents into an xpkg:
up xpkg build
This causes an xpkg to get saved to your current directory with a name like argocd-f7091386b4c0.xpkg.
Push the package to your desired OCI registry:
export UPBOUND_ACCOUNT=
export CONTROLLER_NAME=controller-argocd
export CONTROLLER_VERSION=v7.8.8
export XPKG_FILENAME=
up xpkg push --create xpkg.upbound.io/$UPBOUND_ACCOUNT/$CONTROLLER_NAME:$CONTROLLER_VERSION -f $XPKG_FILENAME
Deploy controller-argocd to a control plane
Set your kubecontext to the desired control plane in Upbound. Change the package path to the OCI registry you pushed it to. Then, deploy the Controller directly:
cat <<EOF | kubectl apply -f -
apiVersion: pkg.upbound.io/v1alpha1
kind: Controller
metadata:
name: controller-argocd
spec:
package: xpkg.upbound.io/$UPBOUND_ACCOUNT/controller-argocd:v7.8.8
EOF
Wait for the package to become ready:
watch kubectl get controllers.pkg
Check the pods in the argo-system namespace:
kubectl -n argo-system get pods
You can now use the CustomResource types defined by Argo CD in your control plane.
Frequently asked questions
Currently, we support Helm charts as the underlying package format for Controllers. As long as you have a Helm chart, you can package it as a Controller.
If you don’t have a Helm chart, you can’t deploy the software. We only support Helm charts as the underlying package format for Controllers. We may extend this to support other packaging formats like Kustomize in the future.
Configuration package format. A helm chart only with Crossplane XRDs/Compositions does not qualify as a Controller.Overriding the Helm values is possible at two levels:
- During packaging time, in the package manifest file.
- At runtime, using a
ControllerRuntimeConfigresource (similar to CrossplaneDeploymentRuntimeConfig).
ControllerRuntimeConfig later, but, we would like to keep it opinionated unless there are strong reasons to do so.Yes, you need to use Crossplane v1.19.0 or later to use Controllers. This is because of the changes in the Crossplane codebase to support third-party package formats in dependencies.
Spaces v1.12.0 supports Crossplane v1.19 in the Rapid release channel.
