use separate configmap way

Author: Niklaus-xie

deploy/0.bigip-config.yaml

@@ -5,7 +5,5 @@ metadata:
   name: bigip-login
   namespace: kube-system
 data:
-  url: aHR0cHM6Ly8xMC4yNTAuMTYuMTA5       # base64 encoded 'https://10.10.10.10:443'
-  username: YWRtaW4=                      # base64 encoded 'admin'
   password: UEBzc3cwcmQxMjM=              # base64 encoded 'mypassword'
 type: Opaque

deploy/1.clusterrole-and-binding.yaml

@@ -17,6 +17,9 @@ rules:
 - apiGroups: ["gateway.networking.k8s.io"]
   resources: ["gatewayclasses", "gateways", "httproutes"]
   verbs: ["get", "list", "watch"]
+- apiGroups: ["gateway.networking.k8s.io"]
+  resources: ["gatewayclasses/status"]
+  verbs: ["get", "list", "watch", "update"]
 
 ---
 

deploy/3.deploy-bigip-k8s-gtw-ctlr.yaml

@@ -1,5 +1,32 @@
 ---
 
+apiVersion: v1
+kind: ConfigMap
+metadata:
+  name: bigip-gwapi-cm
+  namespace: kube-system
+data:
+  bigip-k8s-gw-conf.yaml: |
+    bigips:
+      - mgmtIpAddress: "10.50.17.104"
+        vxlanProfileName: "fl-vxlan"
+        vxlanPort: "8472"
+        vxlanLocalAddress: "4.4.4.4"
+        selfIpName: "flannel-self"
+        selfIpAddress: "5.5.5.5/28"
+        url: "https://10.50.17.104:8443"
+        username: "admin"
+      - mgmtIpAddress: "10.50.15.173"
+        vxlanProfileName: "fl-vxlan"
+        vxlanPort: "8472"
+        vxlanLocalAddress: "4.4.4.5"
+        selfIpName: "flannel-self"
+        selfIpAddress: "5.5.5.6/28"
+        url: "https://10.50.15.173:8443"
+        username: "admin"
+
+---
+
 apiVersion: apps/v1
 kind: Deployment
 metadata:
@@ -18,36 +45,42 @@ spec:
     spec:
       serviceAccountName: k8s-bigip-ctlr
       nodeSelector:
-        node-role.kubernetes.io/controlplane: "true"
+        node-role.kubernetes.io/control-plane: "true"
         # node-role.kubernetes.io/master: "true"
       containers:
         # kubectl logs -f deployment/bigip-kubernetes-gateway -c bigip-kubernetes-gateway-pod -n kube-system
         - name: bigip-kubernetes-gateway-pod
-          image: zongzw/bigip-kubernetes-gateway:latest-20221115-162758
+          image: jeffreycoho/bigip-kubernetes-gateway:12060066-20221206-153736
           imagePullPolicy: IfNotPresent
-          env:
-            - name: BIGIP_USERNAME
-              valueFrom:
-                secretKeyRef:
-                  name: bigip-login
-                  key: username
-            - name: BIGIP_PASSWORD
-              valueFrom:
-                secretKeyRef:
-                  name: bigip-login
-                  key: password
-            - name: BIGIP_URL
-              valueFrom:
-                secretKeyRef:
-                  name: bigip-login
-                  key: url
+          # env:
+          #   - name: BIGIP_PASSWORD
+          #     valueFrom:
+          #       secretKeyRef:
+          #         name: bigip-login
+          #         key: password
           command: ["/bigip-kubernetes-gateway-controller-linux"]
           args: [
-            "--bigip-username=$(BIGIP_USERNAME)",
-            "--bigip-password=$(BIGIP_PASSWORD)",
-            "--bigip-url=$(BIGIP_URL)",
-            "--gateway-class=bigip"
+            # "--bigip-password=p@ssw0rd123",
+            "--controller-name=f5.io/gateway-controller-name",
+            "--mode=flannel",
+            "--vxlan-tunnel-name=fl-vxlan",
+            "--bigip-conf-directory=/bigip-gw",
+            "--credentials-directory=/creds",
           ]
+          volumeMounts:
+            - name: bigip-creds
+              mountPath: "/creds"
+              readOnly: true
+            - name: bigip-config
+              mountPath: /bigip-gw
+              readOnly: true
+      volumes:
+        - name: bigip-creds
+          secret:
+            secretName: bigip-login
+        - name: bigip-config
+          configMap:
+            name: bigip-gwapi-cm
 
 ---
 

go.mod

@@ -15,7 +15,9 @@ require (
 )
 
 require (
-	cloud.google.com/go v0.97.0 // indirect
+	cloud.google.com/go v0.104.0 // indirect
+	cloud.google.com/go/compute v1.12.1 // indirect
+	cloud.google.com/go/compute/metadata v0.2.1 // indirect
 	github.com/Azure/go-autorest v14.2.0+incompatible // indirect
 	github.com/Azure/go-autorest/autorest v0.11.27 // indirect
 	github.com/Azure/go-autorest/autorest/adal v0.9.20 // indirect
@@ -29,7 +31,7 @@ require (
 	github.com/davecgh/go-spew v1.1.1 // indirect
 	github.com/emicklei/go-restful/v3 v3.8.0 // indirect
 	github.com/evanphx/json-patch/v5 v5.6.0 // indirect
-	github.com/fsnotify/fsnotify v1.5.4 // indirect
+	github.com/fsnotify/fsnotify v1.6.0 // indirect
 	github.com/go-logr/logr v1.2.3 // indirect
 	github.com/go-logr/zapr v1.2.3 // indirect
 	github.com/go-openapi/jsonpointer v0.19.5 // indirect
@@ -40,36 +42,47 @@ require (
 	github.com/golang/groupcache v0.0.0-20210331224755-41bb18bfe9da // indirect
 	github.com/golang/protobuf v1.5.2 // indirect
 	github.com/google/gnostic v0.5.7-v3refs // indirect
-	github.com/google/go-cmp v0.5.8 // indirect
+	github.com/google/go-cmp v0.5.9 // indirect
 	github.com/google/gofuzz v1.1.0 // indirect
-	github.com/google/uuid v1.1.2 // indirect
+	github.com/google/uuid v1.3.0 // indirect
+	github.com/hashicorp/hcl v1.0.0 // indirect
 	github.com/imdario/mergo v0.3.12 // indirect
 	github.com/josharian/intern v1.0.0 // indirect
 	github.com/json-iterator/go v1.1.12 // indirect
+	github.com/magiconair/properties v1.8.6 // indirect
 	github.com/mailru/easyjson v0.7.6 // indirect
 	github.com/matttproud/golang_protobuf_extensions v1.0.2-0.20181231171920-c182affec369 // indirect
+	github.com/mitchellh/mapstructure v1.5.0 // indirect
 	github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
 	github.com/modern-go/reflect2 v1.0.2 // indirect
 	github.com/munnerz/goautoneg v0.0.0-20191010083416-a7dc8b61c822 // indirect
+	github.com/pelletier/go-toml v1.9.5 // indirect
+	github.com/pelletier/go-toml/v2 v2.0.5 // indirect
 	github.com/pkg/errors v0.9.1 // indirect
 	github.com/prometheus/client_model v0.2.0 // indirect
 	github.com/prometheus/common v0.37.0 // indirect
 	github.com/prometheus/procfs v0.8.0 // indirect
+	github.com/spf13/afero v1.9.2 // indirect
+	github.com/spf13/cast v1.5.0 // indirect
+	github.com/spf13/jwalterweatherman v1.1.0 // indirect
 	github.com/spf13/pflag v1.0.5 // indirect
-	go.uber.org/atomic v1.7.0 // indirect
-	go.uber.org/multierr v1.6.0 // indirect
+	github.com/spf13/viper v1.14.0 // indirect
+	github.com/subosito/gotenv v1.4.1 // indirect
+	go.uber.org/atomic v1.9.0 // indirect
+	go.uber.org/multierr v1.8.0 // indirect
 	go.uber.org/zap v1.21.0 // indirect
-	golang.org/x/crypto v0.0.0-20220315160706-3147a52a75dd // indirect
-	golang.org/x/net v0.0.0-20220722155237-a158d28d115b // indirect
-	golang.org/x/oauth2 v0.0.0-20220223155221-ee480838109b // indirect
-	golang.org/x/sys v0.0.0-20220722155257-8c9f86f7a55f // indirect
+	golang.org/x/crypto v0.0.0-20220525230936-793ad666bf5e // indirect
+	golang.org/x/net v0.0.0-20221014081412-f15817d10f9b // indirect
+	golang.org/x/oauth2 v0.0.0-20221014153046-6fdb5e3db783 // indirect
+	golang.org/x/sys v0.0.0-20220908164124-27713097b956 // indirect
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 // indirect
-	golang.org/x/text v0.3.7 // indirect
+	golang.org/x/text v0.4.0 // indirect
 	golang.org/x/time v0.0.0-20220609170525-579cf78fd858 // indirect
 	gomodules.xyz/jsonpatch/v2 v2.2.0 // indirect
 	google.golang.org/appengine v1.6.7 // indirect
 	google.golang.org/protobuf v1.28.1 // indirect
 	gopkg.in/inf.v0 v0.9.1 // indirect
+	gopkg.in/ini.v1 v1.67.0 // indirect
 	gopkg.in/yaml.v2 v2.4.0 // indirect
 	gopkg.in/yaml.v3 v3.0.1 // indirect
 	k8s.io/apiextensions-apiserver v0.25.0 // indirect