[receiver/k8sobjects] Initial implementation (open-telemetry#14699)

Initial version of a receiver to collect(pull/watch) Kubernetes Objects

.chloggen/add_k8sobjects_receiver.yaml

@@ -0,0 +1,15 @@
+change_type: new_component
+
+component: k8sobjectsreceiver
+
+# A brief description of the change.  Surround your text with quotes ("") if it needs to start with a backtick (`).
+note: Add a new k8sobjects receiver to collect(pull/watch) Kubernetes Objects
+
+
+# One or more tracking issues related to the change
+issues: [14185]
+
+# (Optional) One or more lines of additional information to render under the primary note.
+# These lines will be padded with 2 spaces and then inserted directly into the document.
+# Use pipe (|) for multiline entries.
+subtext:

.github/CODEOWNERS

@@ -174,6 +174,7 @@ receiver/jmxreceiver/                                @open-telemetry/collector-c
 receiver/journaldreceiver/                           @open-telemetry/collector-contrib-approvers
 receiver/k8sclusterreceiver/                         @open-telemetry/collector-contrib-approvers @dmitryax
 receiver/k8seventsreceiver/                          @open-telemetry/collector-contrib-approvers @dmitryax
+receiver/k8sobjectsreceiver/                         @open-telemetry/collector-contrib-approvers @dmitryax @harshit-splunk
 receiver/kafkametricsreceiver/                       @open-telemetry/collector-contrib-approvers @dmitryax
 receiver/kafkareceiver/                              @open-telemetry/collector-contrib-approvers @pavolloffay @MovieStoreGuy
 receiver/kubeletstatsreceiver/                       @open-telemetry/collector-contrib-approvers @pmcollins @dmitryax

cmd/configschema/go.mod

@@ -449,6 +449,7 @@ require (
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/journaldreceiver v0.62.0 // indirect
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sclusterreceiver v0.62.0 // indirect
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8seventsreceiver v0.62.0 // indirect
+	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sobjectsreceiver v0.62.0 // indirect
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkametricsreceiver v0.62.0 // indirect
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkareceiver v0.62.0 // indirect
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kubeletstatsreceiver v0.62.0 // indirect
@@ -929,6 +930,8 @@ replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafka
 
 replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8seventsreceiver => ../../receiver/k8seventsreceiver
 
+replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sobjectsreceiver => ../../receiver/k8sobjectsreceiver
+
 replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkareceiver => ../../receiver/kafkareceiver
 
 replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kubeletstatsreceiver => ../../receiver/kubeletstatsreceiver

go.mod

@@ -115,6 +115,7 @@ require (
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/journaldreceiver v0.62.0
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sclusterreceiver v0.62.0
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8seventsreceiver v0.62.0
+	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sobjectsreceiver v0.62.0
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkametricsreceiver v0.62.0
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkareceiver v0.62.0
 	github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kubeletstatsreceiver v0.62.0
@@ -926,6 +927,8 @@ replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8scl
 
 replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8seventsreceiver => ./receiver/k8seventsreceiver
 
+replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sobjectsreceiver => ./receiver/k8sobjectsreceiver
+
 replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/fluentforwardreceiver => ./receiver/fluentforwardreceiver
 
 replace github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkametricsreceiver => ./receiver/kafkametricsreceiver

internal/components/components.go

@@ -135,6 +135,7 @@ import (
 	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/journaldreceiver"
 	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sclusterreceiver"
 	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8seventsreceiver"
+	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/k8sobjectsreceiver"
 	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkametricsreceiver"
 	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kafkareceiver"
 	"github.com/open-telemetry/opentelemetry-collector-contrib/receiver/kubeletstatsreceiver"
@@ -243,6 +244,7 @@ func Components() (component.Factories, error) {
 		kafkametricsreceiver.NewFactory(),
 		k8sclusterreceiver.NewFactory(),
 		k8seventsreceiver.NewFactory(),
+		k8sobjectsreceiver.NewFactory(),
 		kubeletstatsreceiver.NewFactory(),
 		memcachedreceiver.NewFactory(),
 		mongodbatlasreceiver.NewFactory(),

internal/components/receivers_test.go

@@ -198,6 +198,10 @@ func TestDefaultReceivers(t *testing.T) {
 			receiver:     "k8s_events",
 			skipLifecyle: true, // need a valid Kubernetes host and port
 		},
+		{
+			receiver:     "k8sobjects",
+			skipLifecyle: true, // need a valid Kubernetes host and port
+		},
 		{
 			receiver:     "kafka",
 			skipLifecyle: true, // TODO: It needs access to internals to successful start.

internal/k8sconfig/config.go

@@ -22,6 +22,7 @@ import (
 
 	quotaclientset "github.com/openshift/client-go/quota/clientset/versioned"
 	k8sruntime "k8s.io/apimachinery/pkg/util/runtime"
+	"k8s.io/client-go/dynamic"
 	k8s "k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/rest"
 	"k8s.io/client-go/tools/clientcmd"
@@ -144,6 +145,25 @@ func MakeClient(apiConf APIConfig) (k8s.Interface, error) {
 	return client, nil
 }
 
+// MakeDynamicClient can take configuration if needed for other types of auth
+func MakeDynamicClient(apiConf APIConfig) (dynamic.Interface, error) {
+	if err := apiConf.Validate(); err != nil {
+		return nil, err
+	}
+
+	authConf, err := createRestConfig(apiConf)
+	if err != nil {
+		return nil, err
+	}
+
+	client, err := dynamic.NewForConfig(authConf)
+	if err != nil {
+		return nil, err
+	}
+
+	return client, nil
+}
+
 // MakeOpenShiftQuotaClient can take configuration if needed for other types of auth
 // and return an OpenShift quota API client
 func MakeOpenShiftQuotaClient(apiConf APIConfig) (quotaclientset.Interface, error) {

receiver/k8sobjectsreceiver/Makefile

@@ -0,0 +1 @@
+include ../../Makefile.Common

receiver/k8sobjectsreceiver/README.md

@@ -0,0 +1,208 @@
+# Kubernetes Objects Receiver
+
+| Status                   |           |
+| ------------------------ |-----------|
+| Stability                | [alpha]   |
+| Supported pipeline types | logs      |
+| Distributions            | [contrib] |
+
+The kubernetes Objects receiver collects(pull/watch) objects from the Kubernetes API server.
+
+Currently this receiver supports authentication via service accounts only.
+See [example](#example) for more information.
+
+## Getting Started
+
+The following is example configuration
+
+```yaml
+  k8sobjects:
+    auth_type: serviceAccount
+    objects:
+      - name: pods
+        mode: pull
+        label_selector: environment in (production),tier in (frontend)
+        field_selector: status.phase=Running
+        interval: 15m
+      - name: events
+        mode: watch
+        group: events.k8s.io
+        namespaces: [default]
+```
+
+Brief description of configuration properties:
+- `auth_type` (default = `serviceAccount`): Determines how to authenticate to
+the K8s API server. This can be one of `none` (for no auth), `serviceAccount`
+(to use the standard service account token provided to the agent pod), or
+`kubeConfig` to use credentials from `~/.kube/config`.
+- `name`: Name of the resource object to collect
+- `mode`: define in which way it collects this type of object, either "poll" or "watch".
+  - `pull` mode will read all objects of this type use the list API at an interval.
+  - `watch` mode will setup a long connection using the watch API to just get updates.
+- `label_selector`: select objects by label(s)
+- `field_selector`: select objects by field(s)
+- `interval`: the interval at which object is pulled, default 60 minutes. Only useful for `pull` mode.
+- `namespaces`: An array of `namespaces` to collect events from. (default = `all`)
+- `group`: API group name. It is an optional config. When given resource object is present in multiple groups,
+use this config to specify the group to select. By default, it will select the first group.
+For example, `events` resource is available in both `v1` and `events.k8s.io/v1` APIGroup. In 
+this case, it will select `v1` by default.
+
+
+The full list of settings exposed for this receiver are documented [here](./config.go)
+with detailed sample configurations [here](./testdata/config.yaml).
+
+Follow the below sections to setup various Kubernetes resources required for the deployment.
+
+### Configuration
+
+Create a ConfigMap with the config for `otelcontribcol`. Replace `OTLP_ENDPOINT`
+with valid value.
+
+```bash
+cat <<EOF | kubectl apply -f -
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: otelcontribcol
+  labels:
+    app: otelcontribcol
+data:
+  config.yaml: |
+    receivers:
+      k8sobjects:
+        objects:
+          - name: pods
+            mode: pull
+          - name: events
+            mode: watch
+    exporters:
+      otlp:
+        endpoint: <OTLP_ENDPOINT>
+        tls:
+          insecure: true
+
+    service:
+      pipelines:
+        logs:
+          receivers: [k8sobjects]
+          exporters: [otlp]
+EOF
+```
+
+### Service Account
+
+Create a service account that the collector should use.
+
+```bash
+<<EOF | kubectl apply -f -
+apiVersion: v1
+kind: ServiceAccount
+metadata:
+  labels:
+    app: otelcontribcol
+  name: otelcontribcol
+EOF
+```
+
+### RBAC
+
+Use the below commands to create a `ClusterRole` with required permissions and a
+`ClusterRoleBinding` to grant the role to the service account created above.
+Following config will work for collecting pods and events only. You need to add
+appropriate rule for collecting other objects.
+
+```bash
+<<EOF | kubectl apply -f -
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRole
+metadata:
+  name: otelcontribcol
+  labels:
+    app: otelcontribcol
+rules:
+- apiGroups:
+  - ""
+  resources:
+  - events
+  - pods
+  verbs:
+  - get
+  - list
+  - watch
+- apiGroups: 
+  - "events.k8s.io"
+  resources:
+  - events
+  verbs:
+  - watch
+EOF
+```
+
+```bash
+<<EOF | kubectl apply -f -
+apiVersion: rbac.authorization.k8s.io/v1
+kind: ClusterRoleBinding
+metadata:
+  name: otelcontribcol
+  labels:
+    app: otelcontribcol
+roleRef:
+  apiGroup: rbac.authorization.k8s.io
+  kind: ClusterRole
+  name: otelcontribcol
+subjects:
+- kind: ServiceAccount
+  name: otelcontribcol
+  namespace: default
+EOF
+```
+
+### Deployment
+
+Create a [Deployment](https://kubernetes.io/docs/concepts/workloads/controllers/deployment/) to deploy the collector.
+Note: This receiver must be deployed as one replica, otherwise it'll be producing duplicated data.
+
+```bash
+<<EOF | kubectl apply -f -
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: otelcontribcol
+  labels:
+    app: otelcontribcol
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: otelcontribcol
+  template:
+    metadata:
+      labels:
+        app: otelcontribcol
+    spec:
+      serviceAccountName: otelcontribcol
+      containers:
+      - name: otelcontribcol
+        image: otelcontribcol:latest # specify image
+        args: ["--config", "/etc/config/config.yaml"]
+        volumeMounts:
+        - name: config
+          mountPath: /etc/config
+        imagePullPolicy: IfNotPresent
+      volumes:
+        - name: config
+          configMap:
+            name: otelcontribcol
+EOF
+```
+
+## Troubleshooting
+
+If receiver returns error similar to below, make sure that resource is added to `ClusterRole`.
+```
+{"kind": "receiver", "name": "k8sobjects", "pipeline": "logs", "resource": "events.k8s.io/v1, Resource=events", "error": "unknown"}
+```
+
+[alpha]: https://github.com/open-telemetry/opentelemetry-collector#alpha
+[contrib]: https://github.com/open-telemetry/opentelemetry-collector-releases/tree/main/distributions/otelcol-contrib