如融合、扩展Service Mesh 文中所述,为了让第三方服务发现的服务能够接入到Istio服务网格当中,我设计开放一个名为Polaris2Istio
Operator Polaris2Istio Polaris ApiServer CoreDNS loop [Watch ApiServer] loop [Watch polaris] Create the ServiceEntry for the polairs' service with manager labels. Create the CNAME record. Config the manage policy. Get the matched services for manager. Back the services. Update the services' configuration(Instances' ip). Watch the polaris service's event. Send the event to the polaris2sitio. Sync the polaris service's message to the k8s service. Operator Polaris2Istio Polaris ApiServer CoreDNS
1
polaris2istio --polarisAddress <polarishost:port>
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
apiVersion : networking.istio.io/v1alpha3
kind : ServiceEntry
metadata :
name : <polaris-name-for-k8s>
namespace : polaris
annotations :
aeraki.net/polarisNamespace : Test
aeraki.net/polarisService : test-service
aeraki.net/external : "false"
labels :
manager : aeraki
registry : polaris
spec :
hosts :
- dev.<polaris-name-for-k8s>.polaris
resolution : NONE # or STATIC
详细说明请参考:https://github.com/aeraki-mesh/polaris2istio
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
// polaris2istio/pkg/serviceregistry/polaris/watcher/provider.go
func ( w * ProviderWatcher ) syncPolarisServices2Istio ( polarisInfo * model . PolarisInfo ) {
klog . Infof ( "[syncPolarisServices2Istio] polarisInfo: %v" , polarisInfo )
rsp , err := w . polarisclient . GetPolarisAllInstances ( polarisInfo . PolarisNamespace , polarisInfo . PolarisService )
if err != nil {
klog . Errorf ( "[syncPolarisServices2Istio] query polaris services' instances failed, err: %v" , err . Error ())
return
}
newServiceEntry , newAnnotations := model . ConvertServiceEntry ( rsp , polarisInfo )
if newServiceEntry == nil {
klog . Errorf ( "convertServiceEntry failed?" )
return
}
oldServiceEntry , err := w . ic . NetworkingV1alpha3 (). ServiceEntries ( w . configRootNS ). Get ( context . TODO (), model . CovertServiceName ( polarisInfo . PolarisNamespace , polarisInfo . PolarisService ), v1 . GetOptions {})
if err != nil {
klog . Infof ( "[syncPolarisServices2Istio] get old service entries failed, error: %v" , err )
return
}
newServiceEntry . Addresses = append ( newServiceEntry . Addresses , oldServiceEntry . Spec . GetAddresses () ... )
if revision , exists := oldServiceEntry . GetAnnotations ()[ "aeraki.net/revision" ]; ! exists || newAnnotations [ "aeraki.net/revision" ] != revision {
klog . Infof ( "[syncPolarisServices2Istio] update serviceentry: %v" , newServiceEntry )
_ , err = w . ic . NetworkingV1alpha3 (). ServiceEntries ( oldServiceEntry . Namespace ). Update ( context . TODO (),
w . toServiceEntryCRD ( model . CovertServiceName ( polarisInfo . PolarisNamespace , polarisInfo . PolarisService ), newServiceEntry , oldServiceEntry , newAnnotations ),
v1 . UpdateOptions { FieldManager : aerakiFieldManager })
if err != nil {
klog . Errorf ( "failed to update ServiceEntry: %s" , err . Error ())
}
} else {
log . Infof ( "[syncPolarisServices2Istio] serviceentry unchanged: %v" , oldServiceEntry . GetName ())
}
}
代码
只对polaris命名空间中的ServiceEntrys同步;
在集群中运行时需要为其配置权限策略 ;
开源版本的polaris sdk是需要手动设置polaris地址的,与内部版不同;
v1.5.0