Kubernetes event using the API Server Source

This example shows how to wire Kubernetes cluster events, using the API Server Source, for consumption by a function that has been implemented as a Knative Service.

Before you begin

  1. You must have a Knative cluster running both the Serving and Eventing components. To learn how to install the required components, see Installing Knative.

  2. You can follow the steps below to create new files, or you clone a copy from the repo by running:

    1. git clone -b "release-0.13" https://github.com/knative/docs knative-docs
    2. cd knative-docs/docs/eventing/samples/kubernetes-event-source

Deployment Steps

Broker

These instructions assume the namespace default, which you can change to your preferred namespace. If you use a different namespace, you will need to modify all the YAML files deployed in this sample to point at that namespace.

  1. Create the default Broker in your namespace:

    1. kubectl label namespace default knative-eventing-injection=enabled

Service Account

  1. Create a Service Account that the ApiServerSource runs as. The ApiServerSource watches for Kubernetes events and forwards them to the Knative Eventing Broker. Create a file named serviceaccount.yaml and copy the code block below into it.

    1. apiVersion: v1
    2. kind: ServiceAccount
    3. metadata:
    4.   name: events-sa
    5.   namespace: default
    7. ---
    8. apiVersion: rbac.authorization.k8s.io/v1
    9. kind: ClusterRole
    10. metadata:
    11.   name: event-watcher
    12. rules:
    13.   - apiGroups:
    14.       - ""
    15.     resources:
    16.       - events
    17.     verbs:
    18.       - get
    19.       - list
    20.       - watch
    22. ---
    23. apiVersion: rbac.authorization.k8s.io/v1
    24. kind: ClusterRoleBinding
    25. metadata:
    26.   name: k8s-ra-event-watcher
    27. roleRef:
    28.   apiGroup: rbac.authorization.k8s.io
    29.   kind: ClusterRole
    30.   name: event-watcher
    31. subjects:
    32.   - kind: ServiceAccount
    33.     name: events-sa
    34.     namespace: default

    If you want to re-use an existing Service Account with the appropriate permissions, you need to modify the serviceaccount.yaml.

  2. Enter the following command to create the service account from serviceaccount.yaml:

    1. kubectl apply --filename serviceaccount.yaml

Create Event Source for Kubernetes Events

  1. In order to receive events, you have to create a concrete Event Source for a specific namespace. Create a file named k8s-events.yaml and copy the code block below into it.

    1. apiVersion: sources.knative.dev/v1alpha1
    2. kind: ApiServerSource
    3. metadata:
    4.   name: testevents
    5.   namespace: default
    6. spec:
    7.   serviceAccountName: events-sa
    8.   mode: Resource
    9.   resources:
    10.     - apiVersion: v1
    11.       kind: Event
    12.   sink:
    13.     ref:
    14.       apiVersion: eventing.knative.dev/v1
    15.       kind: Broker
    16.       name: default

    If you want to consume events from a different namespace or use a different Service Account, you need to modify k8s-events.yaml accordingly.

  2. Enter the following command to create the event source:

    1. kubectl apply --filename k8s-events.yaml

Trigger

In order to check the ApiServerSource is fully working, we will create a simple Knative Service that dumps incoming messages to its log and creates a Trigger from the Broker to that Knative Service.

  1. Create a file named trigger.yaml and copy the code block below into it.

    1. apiVersion: eventing.knative.dev/v1
    2. kind: Trigger
    3. metadata:
    4.   name: testevents-trigger
    5.   namespace: default
    6. spec:
    7.   broker: default
    8.   subscriber:
    9.     ref:
    10.       apiVersion: serving.knative.dev/v1
    11.       kind: Service
    12.       name: event-display
    14. ---
    15. # This is a very simple Knative Service that writes the input request to its log.
    17. apiVersion: serving.knative.dev/v1
    18. kind: Service
    19. metadata:
    20.   name: event-display
    21.   namespace: default
    22. spec:
    23.   template:
    24.     spec:
    25.       containers:
    26.         - # This corresponds to
    27.           # https://github.com/knative/eventing-contrib/tree/master/cmd/event_display/main.go
    28.           image: gcr.io/knative-releases/knative.dev/eventing-contrib/cmd/event_display

  2. If the deployed ApiServerSource is pointing at a Broker other than default, modify trigger.yaml by adding spec.broker with the Broker‘s name.

  3. Deploy trigger.yaml:

    1. kubectl apply --filename trigger.yaml

Create Events

Create events by launching a pod in the default namespace. Create a busybox container and immediately delete it:

  1. kubectl run busybox --image=busybox --restart=Never -- ls
  2. kubectl delete pod busybox

Verify

We will verify that the Kubernetes events were sent into the Knative eventing system by looking at our message dumper function logs. If you deployed the Trigger, continue using this section. If not, you will need to look downstream yourself:

  1. kubectl get pods
  2. kubectl logs -l serving.knative.dev/service=event-display -c user-container

You should see log lines similar to:

  1. ☁️  cloudevents.Event
  2. Validation: valid
  3. Context Attributes,
  4.   specversion: 1.0
  5.   type: dev.knative.apiserver.resource.update
  6.   source: https://10.96.0.1:443
  7.   subject: /apis/v1/namespaces/default/events/testevents.15dd3050eb1e6f50
  8.   id: e0447eb7-36b5-443b-9d37-faf4fe5c62f0
  9.   time: 2019-12-04T14:09:30.917608978Z
  10.   datacontenttype: application/json
  11. Data,
  12.   {
  13.     "apiVersion": "v1",
  14.     "count": 1,
  15.     "eventTime": null,
  16.     "firstTimestamp": "2019-05-10T23:27:06Z",
  17.     "involvedObject": {
  18.       "apiVersion": "v1",
  19.       "fieldPath": "spec.containers{busybox}",
  20.       "kind": "Pod",
  21.       "name": "busybox",
  22.       "namespace": "default",
  23.       "resourceVersion": "28987493",
  24.       "uid": "1efb342a-737b-11e9-a6c5-42010a8a00ed"
  25.     },
  26.     "kind": "Event",
  27.     "lastTimestamp": "2019-05-10T23:27:06Z",
  28.     "message": "Started container",
  29.     "metadata": {
  30.       "creationTimestamp": "2019-05-10T23:27:06Z",
  31.       "name": "busybox.159d7608e3a3572c",
  32.       "namespace": "default",
  33.       "resourceVersion": "506088",
  34.       "selfLink": "/api/v1/namespaces/default/events/busybox.159d7608e3a3572c",
  35.       "uid": "2005af47-737b-11e9-a6c5-42010a8a00ed"
  36.     },
  37.     "reason": "Started",
  38.     "reportingComponent": "",
  39.     "reportingInstance": "",
  40.     "source": {
  41.       "component": "kubelet",
  42.       "host": "gke-knative-auto-cluster-default-pool-23c23c4f-xdj0"
  43.     },
  44.     "type": "Normal"
  45.   }

Cleanup

You can remove the ServiceAccount, ClusterRoles, ClusterRoleBinding, ApiServerSource, Service and Trigger using:

  1. kubectl --namespace default delete --filename serviceaccount.yaml
  2. kubectl --namespace default delete --filename k8s-events.yaml
  3. kubectl --namespace default delete --filename trigger.yaml