Add annotation to the the resource template to prevent removal managed resources

[CharlesQQ]

What type of PR is this?

What this PR does / why we need it:
Extend the API field orphaningDeletion to prevent removal managed resources

Which issue(s) this PR fixes:
Fixes #4709

Special notes for your reviewer:

Does this PR introduce a user-facing change?:

[codecov-commenter]

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 53.34%. Comparing base (d676996) to head (2e44070).
Report is 6 commits behind head on master.

❗ Your organization needs to install the Codecov GitHub app to enable full functionality.

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #4788      +/-   ##
==========================================
+ Coverage   53.31%   53.34%   +0.02%     
==========================================
  Files         252      253       +1     
  Lines       20539    20565      +26     
==========================================
+ Hits        10951    10971      +20     
- Misses       8862     8868       +6     
  Partials      726      726              

Flag	Coverage Δ
unittests	53.34% <100.00%> (+0.02%)	⬆️

Flags with carried forward coverage won't be shown. Click here to find out more.

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

[XiShanYongYe-Chang]

Is there a usage scenario for this type?

[CharlesQQ]

Is there a usage scenario for this type?

Refer to #3004

[XiShanYongYe-Chang]

After reading the description and discussion in this issue, it seems that the work is not required to be retained. In terms of use, what can be done to retain work?

[chaunceyjiang]

We can first just implement Complete and Never, and discuss the other options later once we have more specific requirements.

[XiShanYongYe-Chang]

+1

[CharlesQQ]

We can first just implement Complete and Never, and discuss the other options later once we have more specific requirements.

All right!

[chaunceyjiang]

I'd suggest using a switch here, as it will make the logic clearer. It will also make it easier for us to add comments for each case.

[CharlesQQ]

I'd suggest using a switch here, as it will make the logic clearer. It will also make it easier for us to add comments for each case.

Only one case now, it's not necessary

[chaunceyjiang]

I believe we only need to add this field in PP. The work does not require this field.

In addition, I don't think the current implementation can fully handle all situations.

Here's a new idea:

When users set orphaningDeletionPolicy of PP as Complete.

The specific implementation should be adding an annotation on the workloadTemplate of the control plane, similar to orphaningDeletionPolicy.karmada.io: "Complete"

Then when deleting workloadTemplate in execution_controller, check if workloadTemplate has annotation orphaningDeletionPolicy.karmada.io. If it is Complete, do not delete it.

The benefits are:

1. The personnel creating the workloadTemplate can also control whether this application needs to be retained in member clusters, rather than only those who create PP.
2. Resources like namespace that do not have PP can also be deleted on the control plane without being deleted from member clusters.

[CharlesQQ]

Then when deleting workloadTemplate in execution_controller, check if workloadTemplate has annotation orphaningDeletionPolicy.karmada.io. If it is Complete, do not delete it.

Execution controller must watch all origin resource such as resourceTemlate 、namespace and so on, which make too complicated, I don't think that's a good idea.
I think for namespace, can add annotation like orphaningDeletionPolicy.karmada.io: "Complete"; FederatedResourceQuota those create work object direct, by adding field orphaningDeletionPolicy: Complete if necessary

[chaunceyjiang]

Execution controller must watch all origin resource such as resourceTemlate 、namespace and so on

There's no need, this is existing logic.

[XiShanYongYe-Chang]

This is no different from directly adding annotations to the resource template. In addition, users can directly skip pp to control the annotation value on the resource template.

[chaunceyjiang]

This is no different from directly adding annotations to the resource template. In addition, users can directly skip pp to control the annotation value on the resource template.

Yes, I think that's reasonable.

[whitewindmills]

I believe we only need to add this field in PP. The work does not require this field.

+1, but I prefer to decouple from PP/CPP, cause I'm afraid this is very unfriendly to administrators if the system also has the PropagationPolicyPreemption feature turned on. in addition, I feel that propagation policies are becoming more and more complex, and almost all new features must consider adding APIs to it.

[XiShanYongYe-Chang]

but I prefer to decouple from PP/CPP, cause I'm afraid this is very unfriendly to administrators if the system also has the PropagationPolicyPreemption feature turned on.

Can you give an example of this?

[whitewindmills]

if decoupled from PP/CPP, the administrator doesn't care about it.

[XiShanYongYe-Chang]

Thanks, I get your meaning. How do you think @CharlesQQ @chaunceyjiang @RainbowMango

[RainbowMango]

but I prefer to decouple from PP/CPP, cause I'm afraid this is very unfriendly to administrators if the system also has the PropagationPolicyPreemption feature turned on.

I do not quite understand how unfriendly here, I think the preemption is clear that after a PropagationPolicy(with higher priority) successfully preempted a resource, then the resource should be propagated as per the PropagationPolicy.

[XiShanYongYe-Chang]

Hi @CharlesQQ @chaunceyjiang Is there any blockage in this PR now? Can we move forward?

[XiShanYongYe-Chang]

Complete sounds a bit confusing. Is it possible to call it CompleteDelete?

[buji-code]

ArgoCD uses the term "cascade"

[chaunceyjiang]

It seems that using "cascade" would be better, as it can reduce the learning cost for users.

+1

It seems that using "cascade" would be better, as it can reduce the learning cost for users.

[chaunceyjiang]

Hi @CharlesQQ @chaunceyjiang Is there any blockage in this PR now? Can we move forward?

#4788 (comment) Regarding this plan, it seems that there is no conclusion yet?

[XiShanYongYe-Chang]

Let's invite @RainbowMango and @whitewindmills give some opinion.
/cc @RainbowMango @whitewindmills

[whitewindmills]

feel unnecessary to add such a statement.

[RainbowMango]

/assign

[CharlesQQ]

Regarding this plan, it seems that there is no conclusion yet?

Yes, To sum up, it seems inappropriate to put fields in pp/cpp

[chaunceyjiang]

@XiShanYongYe-Chang @RainbowMango @CharlesQQ @whitewindmills
Do we have a consensus on the current proposal?

[XiShanYongYe-Chang]

We may not reached a unanimous conclusion yet. Work suspension might also can learn from this discussion. They are both processing policies for resource templates and can be decoupled from PP.

There should be three options at this point,

• Solution 1: Define a resource deletion policy in the PP.
  • disadvantage:
    • Coupled with the PP, the PP becomes larger and larger with the evolution.
• Solution 2: Add an annotation to the resource template to describe the deletion policy of the target resource.
  • disadvantage:
    • Poor API evolution.
• Solution 3: A new CRD is defined to describe a deletion policy of one or more resources.
  • disadvantage:
    • Increased learning costs and CRs

You can publish it, or we can have a meeting to discuss and decide.

[XiShanYongYe-Chang]

@XiShanYongYe-Chang @RainbowMango @CharlesQQ @whitewindmills Do we have a consensus on the current proposal?

Can we set up a time to discuss this plan? When would be a good time for you, or maybe next Tuesday at the community meeting?

[buji-code]

Any update on this one?

[XiShanYongYe-Chang]

@buji-code Yeah, after discussion at the community meeting, we decided to try out solution 2 and 3. This work will start in the next release, early next month.

[XiShanYongYe-Chang]

Hi guys @CharlesQQ @whitewindmills @chaunceyjiang @RainbowMango @buji-code

Can we proceed with solution 2: Add an annotation to the resource template to describe the deletion policy of the target resource first, and then consider designing and adding a CRD to describe the deletion policy as the scenario develops? (Of course, the use of annotations is not excluded as the ideal end use.)

[karmada-bot]

[APPROVALNOTIFIER] This PR is NOT APPROVED

This pull-request has been approved by:
Once this PR has been reviewed and has the lgtm label, please ask for approval from rainbowmango. For more information see the Kubernetes Code Review Process.

The full list of commands accepted by this bot can be found here.

Needs approval from an approver in each of these files:

• OWNERS

Approvers can indicate their approval by writing /approve in a comment
Approvers can cancel approval by writing /approve cancel in a comment

[chaunceyjiang]

I think we can write an e2e to test this PR.

1. Check whether the resources in the member cluster have cleared the unique label of karmada.
2. Detect whether the resource still exists in the member cluster after the control plane deletes it.
3. The resources tested should include namespace resources.