zalando · sdudoladov · Sep 15, 2020 · Sep 10, 2020 · Sep 10, 2020 · Sep 10, 2020
diff --git a/docs/administrator.md b/docs/administrator.md
@@ -527,8 +527,6 @@ lead to K8s removing this field from the manifest due to its
 [handling of null fields](https://kubernetes.io/docs/concepts/overview/object-management-kubectl/declarative-config/#how-apply-calculates-differences-and-merges-changes).
 Then the resultant manifest will not contain the necessary change, and the
 operator will respectively do nothing with the existing source ranges.
-To define external traffic policy for the load balancer set the option
- externalTrafficPolicy, it will default to `Cluster` if undefined.
 
 ## Running periodic 'autorepair' scans of K8s objects
 

@@ -460,6 +460,9 @@ In the CRD-based configuration they are grouped under the `load_balancer` key.
   replaced with the hosted zone (the value of the `db_hosted_zone` parameter).
   No other placeholders are allowed.
 
+* **external_traffic_policy** define external traffic policy for the load
+balancer, it will default to `Cluster` if undefined.
+
 ## AWS or GCP interaction
 
 The options in this group configure operator interactions with non-Kubernetes

@@ -1129,6 +1129,17 @@ var OperatorConfigCRDResourceValidation = apiextv1beta1.CustomResourceValidation
 							"replica_dns_name_format": {
 								Type: "string",
 							},
+							"external_traffic_policy": {
+								Type: "string",
+								Enum: []apiextv1beta1.JSON{
+									{
+										Raw: []byte(`"Cluster"`),
+									},
+									{
+										Raw: []byte(`"Local"`),
+									},
+								},
+							},
 						},
 					},
 					"aws_or_gcp": {

@@ -109,6 +109,7 @@ type LoadBalancerConfiguration struct {
 	CustomServiceAnnotations  map[string]string     `json:"custom_service_annotations,omitempty"`
 	MasterDNSNameFormat       config.StringTemplate `json:"master_dns_name_format,omitempty"`
 	ReplicaDNSNameFormat      config.StringTemplate `json:"replica_dns_name_format,omitempty"`
+	ExternalTrafficPolicy     string                `json:"external_traffic_policy" default:"Cluster"`
 }
 
 // AWSGCPConfiguration defines the configuration for AWS

@@ -1619,12 +1619,10 @@ func (c *Cluster) generateService(role PostgresRole, spec *acidv1.PostgresSpec)
 		}
 
 		c.logger.Debugf("final load balancer source ranges as seen in a service spec (not necessarily applied): %q", serviceSpec.LoadBalancerSourceRanges)
-		// spec.externalTrafficPolicy can define externalTrafficPolicy for the service
-		// if spec.externalTrafficPolicy is not defined default value is "Cluster"
-		if spec.ExternalTrafficPolicy != nil {
-			serviceSpec.ExternalTrafficPolicy = *spec.ExternalTrafficPolicy
+		if c.OpConfig.ExternalTrafficPolicy == "" {
+			serviceSpec.ExternalTrafficPolicy = v1.ServiceExternalTrafficPolicyType("Cluster")
 		} else {
-			serviceSpec.ExternalTrafficPolicy = v1.ServiceExternalTrafficPolicyTypeCluster
+			serviceSpec.ExternalTrafficPolicy = v1.ServiceExternalTrafficPolicyType(c.OpConfig.ExternalTrafficPolicy)
 		}
 		serviceSpec.Type = v1.ServiceTypeLoadBalancer
 	} else if role == Replica {

@@ -1746,7 +1746,6 @@ func TestSidecars(t *testing.T) {
 func TestGenerateService(t *testing.T) {
 	var spec acidv1.PostgresSpec
 	var cluster *Cluster
-	var policy v1.ServiceExternalTrafficPolicyType = "Local"
 	var enableLB bool = true
 	spec = acidv1.PostgresSpec{
 		TeamID: "myapp", NumberOfInstances: 1,
@@ -1773,7 +1772,6 @@ func TestGenerateService(t *testing.T) {
 				DockerImage: "overwrite-image",
 			},
 		},
-		ExternalTrafficPolicy:    &policy,
 		EnableMasterLoadBalancer: &enableLB,
 	}
 
@@ -1817,10 +1815,9 @@ func TestGenerateService(t *testing.T) {
 		}, k8sutil.KubernetesClient{}, acidv1.Postgresql{}, logger, eventRecorder)
 
 	service := cluster.generateService(Master, &spec)
-	fmt.Printf("%+v\n", service)
-	assert.Equal(t, v1.ServiceExternalTrafficPolicyTypeLocal, service.Spec.ExternalTrafficPolicy)
-	spec.ExternalTrafficPolicy = nil
-	service = cluster.generateService(Master, &spec)
 	assert.Equal(t, v1.ServiceExternalTrafficPolicyTypeCluster, service.Spec.ExternalTrafficPolicy)
+	cluster.OpConfig.ExternalTrafficPolicy = "Local"
+	service = cluster.generateService(Master, &spec)
+	assert.Equal(t, v1.ServiceExternalTrafficPolicyTypeLocal, service.Spec.ExternalTrafficPolicy)
 
 }
@@ -124,6 +124,7 @@ func (c *Controller) importConfigurationFromCRD(fromCRD *acidv1.OperatorConfigur
 	result.CustomServiceAnnotations = fromCRD.LoadBalancer.CustomServiceAnnotations
 	result.MasterDNSNameFormat = fromCRD.LoadBalancer.MasterDNSNameFormat
 	result.ReplicaDNSNameFormat = fromCRD.LoadBalancer.ReplicaDNSNameFormat
+	result.ExternalTrafficPolicy = util.Coalesce(fromCRD.LoadBalancer.ExternalTrafficPolicy, "Cluster")
 
 	// AWS or GCP config
 	result.WALES3Bucket = fromCRD.AWSGCP.WALES3Bucket

@@ -175,6 +175,8 @@ type Config struct {
 	EnablePodAntiAffinity                  bool              `name:"enable_pod_antiaffinity" default:"false"`
 	PodAntiAffinityTopologyKey             string            `name:"pod_antiaffinity_topology_key" default:"kubernetes.io/hostname"`
 	StorageResizeMode                      string            `name:"storage_resize_mode" default:"ebs"`
+	// ExternalTrafficPolicy for load balancer
+	ExternalTrafficPolicy string `name:"external_traffic_policy" default:"Cluster"`
 	// deprecated and kept for backward compatibility
 	EnableLoadBalancer        *bool             `name:"enable_load_balancer"`
 	MasterDNSNameFormat       StringTemplate    `name:"master_dns_name_format" default:"{cluster}.{team}.{hostedzone}"`