Bring your own Templates

In addition to the templates that ship with k0rdent, it's possible to make your own. These might represent different types of clusters, or they may represent additional services to add to a cluster. Follow these steps:

Create a Source Object

Info

Skip this step if you're using an existing source.

All templates are based on a Helm chart, so the first step is to define the source in which that Helm chart can be found.

The source can be one of the following types:

• HelmRepository
• GitRepository
• Bucket

Note that it's important to pay attention to where the source resides. Cluster-scoped ProviderTemplates must reside in the system namespace (kcm-system by default) but other template sources must reside in the same directory as the templates that will come from them.

For example, this YAML describes a custom Source object of kind HelmRepository:

Note

The custom HelmRepository must have the label k0rdent.mirantis.com/managed: "true".

apiVersion: source.toolkit.fluxcd.io/v1
kind: HelmRepository
metadata:
  name: k0rdent-catalog
  namespace: kcm-system
  labels:
    k0rdent.mirantis.com/managed: "true"
spec:
  insecure: true
  interval: 10m0s
  provider: generic
  type: oci
  url: oci://ghcr.io/k0rdent/kcm/charts

Create the Template

Once you have the Source, you can create the actual template. This template can be one of three types:

• ClusterTemplate
• ServiceTemplate
• ProviderTemplate

For ClusterTemplates and ServiceTemplates, configure the namespace where this template should reside (metadata.namespace).

For defining the Helm chart, you have two choices. You can either specify the actual helm chart definition in the .spec.helm.chartSpec field of the HelmChartSpec kind, or you can reference and existing HelmChart object in .spec.helm.chartRef.

Note

spec.helm.chartSpec and spec.helm.chartRef are mutually exclusive.

To automatically create the HelmChart for the Template, configure the following custom helm chart parameters under spec.helm.chartSpec:

Field	Description
sourceRef LocalHelmChartSourceReference	Reference to the source object (e.g., HelmRepository, GitRepository, or Bucket) in the same namespace as the Template.
chart string	The name of the Helm chart available in the source.
version string	Version is the chart version semver expression. Defaults to latest when omitted.
interval Kubernetes meta/v1.Duration	The frequency at which the sourceRef is checked for updates. Defaults to 10 minutes.

For the complete list of the HelmChart parameters, see: HelmChartSpec.

The controller automatically creates the HelmChart object based on the chartSpec defined in .spec.helm.chartSpec.

Note

ClusterTemplate and ServiceTemplate objects should reside in the same namespace as the ClusterDeployment referencing them. The ClusterDeployment can't reference the Template from another namespace (the creation request will be declined by the admission webhook). All ClusterTemplates and ServiceTemplates shipped with kcm reside in the system namespace (defaults to kcm-system). To get the instructions on how to distribute Templates along multiple namespaces, read Template Life Cycle Management.

Examples

Example

Custom ClusterTemplate with the Chart Definition to Create a new HelmChart

apiVersion: k0rdent.mirantis.com/v1alpha1
kind: ClusterTemplate
metadata:
  name: custom-template
  namespace: kcm-system
spec:
  providers:
    - bootstrap-k0sproject-k0smotron
    - control-plane-k0sproject-k0smotron
    - infrastructure-openstack
  helm:
    chartSpec:
      chart: os-k0sproject-k0smotron
      sourceRef:
        kind: HelmRepository
        name: k0rdent-catalog

Example

Custom ClusterTemplate Referencing an Existing HelmChart object

apiVersion: k0rdent.mirantis.com/v1alpha1
kind: ClusterTemplate
metadata:
  name: custom-template
  namespace: kcm-system
spec:
  helm:
    chartRef:
      kind: HelmChart
      name: custom-chart

Required and exposed providers definition

The *Template object must specify the list of Cluster API providers that are either required (for ClusterTemplates and ServiceTemplates) or exposed (for ProviderTemplates). These providers include infrastructure, bootstrap, and control-plane. This can be achieved in two ways:

1. By listing the providers explicitly in the spec.providers field.
2. Alternatively, by including specific annotations in the Chart.yaml of the referenced Helm chart. The annotations should list the providers as a comma-separated value.

For example:

In a Template spec:

spec:
  providers:
  - bootstrap-k0sproject-k0smotron
  - control-plane-k0sproject-k0smotron
  - infrastructure-aws

In a Chart.yaml:

annotations:
  cluster.x-k8s.io/provider: infrastructure-aws, control-plane-k0sproject-k0smotron, bootstrap-k0sproject-k0smotron

Compatibility attributes

Each of the *Template resources has compatibility versions attributes to constraint the core CAPI, CAPI provider or Kubernetes versions. CAPI-related version constraints must be set in the CAPI contract format. Kubernetes version constraints must be set in the Semantic Version format. Each attribute can be set either via the corresponding .spec fields or via the annotations. Values set via the .spec have precedence over the values set via the annotations.

Note

All of the compatibility attributes are optional, and validation checks only take place if both of the corresponding type attributes (e.g. provider contract versions in both ProviderTemplate and ClusterTemplate) are set.

1. The ProviderTemplate resource has dedicated fields to set compatible CAPI contract versions along with CRDs contract versions supported by the provider. Given contract versions will then be set accordingly in the .status field. Compatibility contract versions are key-value pairs, where the key is the core CAPI contract version, and the value is an underscore-delimited (_) list of provider contract versions supported by the core CAPI. For the core CAPI Template values should be empty.

   Example with the .spec:

   apiVersion: k0rdent.mirantis.com/v1alpha1
   kind: ProviderTemplate
   # ...
   spec:
     providers:
     - infrastructure-aws
     capiContracts:
       # commented is the example exclusively for the core CAPI Template
       # v1alpha3: ""
       # v1alpha4: ""
       # v1beta1: ""
       v1alpha3: v1alpha3
       v1alpha4: v1alpha4
       v1beta1: v1beta1_v1beta2
   

   Example with the annotations in the Chart.yaml with the same logic as in the .spec:

   annotations:
     cluster.x-k8s.io/provider: infrastructure-aws
     cluster.x-k8s.io/v1alpha3: v1alpha3
     cluster.x-k8s.io/v1alpha4: v1alpha4
     cluster.x-k8s.io/v1beta1: v1beta1_v1beta2
   

2. The ClusterTemplate resource has dedicated fields to set an exact compatible Kubernetes version in the Semantic Version format and required contract versions per each provider to match against the related ProviderTemplate objects. Given compatibility attributes will be then set accordingly in the .status field. Compatibility contract versions are key-value pairs, where the key is the name of the provider, and the value is the provider contract version required to be supported by the provider.

   Example with the .spec:

   apiVersion: k0rdent.mirantis.com/v1alpha1
   kind: ClusterTemplate
   # ...
   spec:
     k8sVersion: 1.30.0 # only exact semantic version is applicable
     providers:
     - bootstrap-k0sproject-k0smotron
     - control-plane-k0sproject-k0smotron
     - infrastructure-aws
     providerContracts:
       bootstrap-k0sproject-k0smotron: v1beta1 # only a single contract version is applicable
       control-plane-k0sproject-k0smotron: v1beta1
       infrastructure-aws: v1beta2
   

   Example with the .annotations in the Chart.yaml:

   annotations:
     cluster.x-k8s.io/provider: infrastructure-aws, control-plane-k0sproject-k0smotron, bootstrap-k0sproject-k0smotron
     cluster.x-k8s.io/bootstrap-k0sproject-k0smotron: v1beta1
     cluster.x-k8s.io/control-plane-k0sproject-k0smotron: v1beta1
     cluster.x-k8s.io/infrastructure-aws: v1beta2
     k0rdent.mirantis.com/k8s-version: 1.30.0
   

3. The ServiceTemplate resource has dedicated fields to set an compatibility constrained Kubernetes version to match against the related ClusterTemplate objects. Given compatibility values will be then set accordingly in the .status field.

   Example with the .spec:

   apiVersion: k0rdent.mirantis.com/v1alpha1
   kind: ServiceTemplate
   # ...
   spec:
     k8sConstraint: "^1.30.0" # only semantic version constraints are applicable
   

   Example with the annotations in the Chart.yaml:

   k0rdent.mirantis.com/k8s-version-constraint: ^1.30.0
   

Compatibility attributes enforcement

The aforedescribed attributes are checked for compliance with the following rules:

• Both the exact and constraint version of the same type (e.g. k8sVersion and k8sConstraint) must be set, otherwise no check is performed;
• If a ClusterTemplate object's provider's contract version does not satisfy contract versions from the related ProviderTemplate object, updates to the ClusterDeployment object will be blocked;
• If a ProviderTemplate object's CAPI contract version (for example, in a v1beta1: v1beta1_v1beta2 key-value pair, the key v1beta1 is the core CAPI contract version) is not listed in the core CAPI ProviderTemplate object, the updates to the Management object will be blocked;
• If a ClusterTemplate object's exact kubernetes version does not satisfy the kubernetes version constraint from the related ServiceTemplate object, the updates to the ClusterDeployment object will be blocked.