Fix api service reg

charts/eks/templates/metrics-proxy.yaml

@@ -0,0 +1,59 @@
+{{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ .Release.Name }}-metrics-proxy
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app: vcluster-metrics-proxy
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    release: "{{ .Release.Name }}"
+    heritage: "{{ .Release.Service }}"
+  {{- $annotations := merge .Values.globalAnnotations .Values.syncer.serviceAnnotations }}
+  {{- if $annotations }}
+  annotations:
+{{ toYaml $annotations | indent 4 }}
+  {{- end }}
+spec:
+  ports:
+    - name: https
+      port: 443
+      targetPort: 8443
+      protocol: TCP
+    - name: kubelet
+      port: 10250
+      targetPort: 8443
+      protocol: TCP
+  selector:
+    app: vcluster
+    release: {{ .Release.Name }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ .Release.Name }}-metrics-proxy
+  namespace: {{ .Release.Namespace }}
+  {{- if .Values.globalAnnotations }}
+  annotations:
+{{ toYaml .Values.globalAnnotations | indent 4 }}
+  {{- end }}
+data:
+  service.yaml: |-
+    apiVersion: v1
+    kind: Service
+    metadata:
+      labels:
+        k8s-app: metrics-server
+      name: metrics-server
+      namespace: kube-system
+    spec:
+      ports:
+        - name: https
+          port: 443
+          protocol: TCP
+          targetPort: 8443
+      selector:
+        k8s-app: metrics-server
+      sessionAffinity: None
+      type: ClusterIP
+{{- end }}

charts/eks/templates/syncer-deployment.yaml

@@ -92,6 +92,11 @@ spec:
           configMap:
             name: coredns-custom
             optional: true
+      {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+        - name: metrics-proxy-svc
+          configMap:
+            name: {{ .Release.Name }}-metrics-proxy
+      {{- end }}
       {{- if .Values.syncer.priorityClassName }}
       priorityClassName: {{ .Values.syncer.priorityClassName }}
       {{- end }}
@@ -118,7 +123,7 @@ spec:
         {{- if not .Values.syncer.noArgs }}
         args:
           - --name={{ .Release.Name }}
-          - --request-header-ca-cert=/pki/ca.crt
+          - --request-header-ca-cert=/pki/front-proxy-ca.crt
           - --client-ca-cert=/pki/ca.crt
           - --server-ca-cert=/pki/ca.crt
           - --server-ca-key=/pki/ca.key
@@ -169,6 +174,7 @@ spec:
           {{- end }}
           {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled}}
           - --proxy-metrics-server=true
+          - --single-binary-distro=false
           {{- end }}
           {{- if .Values.coredns.integrated }}
           - --integrated-coredns=true
@@ -228,13 +234,21 @@ spec:
         {{- end }}
           - name: VCLUSTER_TELEMETRY_CONFIG
             value: {{ .Values.telemetry | toJson | quote }}
+        {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+          - name: SINGLE_BINARY_DISTRO
+            value: "false"
+        {{- end }}
         volumeMounts:
           - name: helm-cache
             mountPath: /.cache/helm
           - name: tmp
             mountPath: /tmp
           - mountPath: /pki
             name: certs
+        {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+          - name: metrics-proxy-svc
+            mountPath: /manifests/metrics-server
+        {{- end }}
         {{- if .Values.syncer.volumeMounts }}
 {{ toYaml .Values.syncer.volumeMounts | indent 10 }}
         {{- end }}

charts/k8s/templates/metrics-proxy.yaml

@@ -0,0 +1,59 @@
+{{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+apiVersion: v1
+kind: Service
+metadata:
+  name: {{ .Release.Name }}-metrics-proxy
+  namespace: {{ .Release.Namespace }}
+  labels:
+    app: vcluster-metrics-proxy
+    chart: "{{ .Chart.Name }}-{{ .Chart.Version }}"
+    release: "{{ .Release.Name }}"
+    heritage: "{{ .Release.Service }}"
+  {{- $annotations := merge .Values.globalAnnotations .Values.syncer.serviceAnnotations }}
+  {{- if $annotations }}
+  annotations:
+{{ toYaml $annotations | indent 4 }}
+  {{- end }}
+spec:
+  ports:
+    - name: https
+      port: 443
+      targetPort: 8443
+      protocol: TCP
+    - name: kubelet
+      port: 10250
+      targetPort: 8443
+      protocol: TCP
+  selector:
+    app: vcluster
+    release: {{ .Release.Name }}
+---
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: {{ .Release.Name }}-metrics-proxy
+  namespace: {{ .Release.Namespace }}
+  {{- if .Values.globalAnnotations }}
+  annotations:
+{{ toYaml .Values.globalAnnotations | indent 4 }}
+  {{- end }}
+data:
+  service.yaml: |-
+    apiVersion: v1
+    kind: Service
+    metadata:
+      labels:
+        k8s-app: metrics-server
+      name: metrics-server
+      namespace: kube-system
+    spec:
+      ports:
+        - name: https
+          port: 443
+          protocol: TCP
+          targetPort: 8443
+      selector:
+        k8s-app: metrics-server
+      sessionAffinity: None
+      type: ClusterIP
+{{- end }}

charts/k8s/templates/syncer-deployment.yaml

@@ -122,6 +122,11 @@ spec:
           configMap:
             name: coredns-custom
             optional: true
+      {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+        - name: metrics-proxy-svc
+          configMap:
+            name: {{ .Release.Name }}-metrics-proxy
+      {{- end }}
       {{- if .Values.syncer.priorityClassName }}
       priorityClassName: {{ .Values.syncer.priorityClassName }}
       {{- end }}
@@ -148,7 +153,7 @@ spec:
         {{- if not .Values.syncer.noArgs }}
         args:
           - --name={{ .Release.Name }}
-          - --request-header-ca-cert=/pki/ca.crt
+          - --request-header-ca-cert=/pki/front-proxy-ca.crt
           - --client-ca-cert=/pki/ca.crt
           - --server-ca-cert=/pki/ca.crt
           - --server-ca-key=/pki/ca.key
@@ -202,6 +207,7 @@ spec:
           {{- end }}
           {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
           - --proxy-metrics-server=true
+          - --single-binary-distro=false
           {{- end }}
           {{- if .Values.coredns.integrated }}
           - --integrated-coredns=true
@@ -261,6 +267,10 @@ spec:
         {{- end }}
           - name: VCLUSTER_TELEMETRY_CONFIG
             value: {{ .Values.telemetry | toJson | quote }}
+        {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+          - name: SINGLE_BINARY_DISTRO
+            value: "false"
+        {{- end }}
         volumeMounts:
           - name: helm-cache
             mountPath: /.cache/helm
@@ -273,6 +283,10 @@ spec:
             mountPath: /manifests/coredns
             readOnly: true
         {{- end }}
+        {{- if or .Values.proxy.metricsServer.nodes.enabled .Values.proxy.metricsServer.pods.enabled }}
+          - name: metrics-proxy-svc
+            mountPath: /manifests/metrics-server
+        {{- end }}
         {{- if .Values.syncer.volumeMounts }}
 {{ toYaml .Values.syncer.volumeMounts | indent 10 }}
         {{- end }}

devspace.yaml

@@ -52,6 +52,12 @@ deployments:
           disabled: "false"
           instanceCreatorType: "devspace"
           instanceCreatorUID: "devspace"
+        proxy:
+          metricsServer:
+            nodes:
+              enabled: true
+            pods:
+              enabled: true
         sync:
           generic:
             clusterRole:

pkg/controllers/k8sdefaultendpoint/k8sdefaultendpoint.go

@@ -7,6 +7,7 @@ import (
 
 	"github.com/loft-sh/vcluster/pkg/setup/options"
 
+	"github.com/loft-sh/vcluster/pkg/specialservices"
 	"github.com/loft-sh/vcluster/pkg/util/loghelper"
 	corev1 "k8s.io/api/core/v1"
 	discoveryv1 "k8s.io/api/discovery/v1"
@@ -40,6 +41,8 @@ type EndpointController struct {
 	Log loghelper.Logger
 
 	provider provider
+
+	singleBinaryDistro bool
 }
 
 func NewEndpointController(ctx *options.ControllerContext, provider provider) *EndpointController {
@@ -51,6 +54,7 @@ func NewEndpointController(ctx *options.ControllerContext, provider provider) *E
 		VirtualManagerCache: ctx.VirtualManager.GetCache(),
 		Log:                 loghelper.New("kubernetes-default-endpoint-controller"),
 		provider:            provider,
+		singleBinaryDistro:  ctx.Options.SingleBinaryDistro,
 	}
 }
 
@@ -67,6 +71,14 @@ func (e *EndpointController) Reconcile(ctx context.Context, _ ctrl.Request) (ctr
 	if err != nil {
 		return ctrl.Result{RequeueAfter: time.Second}, err
 	}
+
+	// TODO: Change this to only be set for k8s/eks distros and when using metrics proxy
+	if !e.singleBinaryDistro {
+		err = e.syncMetricsServerEndpoints(ctx, e.VirtualClient, e.LocalClient, e.ServiceName, e.ServiceNamespace)
+		if err != nil {
+			return ctrl.Result{RequeueAfter: time.Second}, err
+		}
+	}
 	return ctrl.Result{}, nil
 }
 
@@ -79,7 +91,11 @@ func (e *EndpointController) SetupWithManager(mgr ctrl.Manager) error {
 	pfuncs := predicate.NewPredicateFuncs(pp)
 
 	vp := func(object client.Object) bool {
-		return object.GetNamespace() == "default" && object.GetName() == "kubernetes"
+		if object.GetNamespace() == specialservices.DefaultKubernetesSvcKey.Namespace && object.GetName() == specialservices.DefaultKubernetesSvcKey.Name {
+			return true
+		}
+
+		return false
 	}
 	vfuncs := predicate.NewPredicateFuncs(vp)
 
@@ -94,6 +110,82 @@ func (e *EndpointController) SetupWithManager(mgr ctrl.Manager) error {
 		Complete(e)
 }
 
+func (e *EndpointController) syncMetricsServerEndpoints(ctx context.Context, virtualClient, localClient client.Client, serviceName, serviceNamespace string) error {
+	// get physical service endpoints
+	pEndpoints := &corev1.Endpoints{}
+	err := localClient.Get(ctx, types.NamespacedName{
+		Namespace: serviceNamespace,
+		Name:      serviceName,
+	}, pEndpoints)
+	if err != nil {
+		if kerrors.IsNotFound(err) {
+			return nil
+		}
+
+		return err
+	}
+
+	vEndpoints := &corev1.Endpoints{
+		ObjectMeta: metav1.ObjectMeta{
+			Namespace: specialservices.VclusterProxyMetricsSvcKey.Namespace,
+			Name:      specialservices.VclusterProxyMetricsSvcKey.Name,
+		},
+	}
+
+	result, err := controllerutil.CreateOrPatch(ctx, virtualClient, vEndpoints, func() error {
+		if vEndpoints.Labels == nil {
+			vEndpoints.Labels = map[string]string{}
+		}
+		// vEndpoints.Labels[discoveryv1.LabelSkipMirror] = "true"
+
+		// build new subsets
+		newSubsets := []corev1.EndpointSubset{}
+		for _, subset := range pEndpoints.Subsets {
+			newPorts := []corev1.EndpointPort{}
+			for _, p := range subset.Ports {
+				if p.Name != "https" {
+					continue
+				}
+
+				newPorts = append(newPorts, p)
+			}
+
+			newAddresses := []corev1.EndpointAddress{}
+			for _, address := range subset.Addresses {
+				address.Hostname = ""
+				address.NodeName = nil
+				address.TargetRef = nil
+				newAddresses = append(newAddresses, address)
+			}
+			newNotReadyAddresses := []corev1.EndpointAddress{}
+			for _, address := range subset.NotReadyAddresses {
+				address.Hostname = ""
+				address.NodeName = nil
+				address.TargetRef = nil
+				newNotReadyAddresses = append(newNotReadyAddresses, address)
+			}
+
+			newSubsets = append(newSubsets, corev1.EndpointSubset{
+				Addresses:         newAddresses,
+				NotReadyAddresses: newNotReadyAddresses,
+				Ports:             newPorts,
+			})
+		}
+
+		vEndpoints.Subsets = newSubsets
+		return nil
+	})
+	if err != nil {
+		return nil
+	}
+
+	if result == controllerutil.OperationResultCreated || result == controllerutil.OperationResultUpdated {
+		return e.provider.createOrPatch(ctx, virtualClient, vEndpoints)
+	}
+
+	return err
+}
+
 func (e *EndpointController) syncKubernetesServiceEndpoints(ctx context.Context, virtualClient client.Client, localClient client.Client, serviceName, serviceNamespace string) error {
 	// get physical service endpoints
 	pEndpoints := &corev1.Endpoints{}

pkg/controllers/resources/endpoints/syncer.go

@@ -40,9 +40,7 @@ func (s *endpointsSyncer) Sync(ctx *synccontext.SyncContext, pObj client.Object,
 var _ syncer.Starter = &endpointsSyncer{}
 
 func (s *endpointsSyncer) ReconcileStart(ctx *synccontext.SyncContext, req ctrl.Request) (bool, error) {
-	if req.Namespace == "default" && req.Name == "kubernetes" {
-		return true, nil
-	} else if _, ok := specialservices.Default.SpecialServicesToSync()[req.NamespacedName]; ok {
+	if req.NamespacedName == specialservices.DefaultKubernetesSvcKey {
 		return true, nil
 	}
 

pkg/controllers/resources/services/syncer.go

@@ -157,7 +157,9 @@ var _ syncertypes.Starter = &serviceSyncer{}
 func (s *serviceSyncer) ReconcileStart(ctx *synccontext.SyncContext, req ctrl.Request) (bool, error) {
 	// don't do anything for the kubernetes service
 	specialServices := specialservices.Default.SpecialServicesToSync()
-	if svc, ok := specialServices[req.NamespacedName]; ok {
+
+	svc, ok := specialServices[req.NamespacedName]
+	if ok {
 		return true, svc(ctx, ctx.CurrentNamespace, s.serviceName, req.NamespacedName, TranslateServicePorts)
 	}