Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

ArgoCD Notifications From Resource Actions #18223

Open
blakeromano opened this issue May 15, 2024 · 0 comments
Open

ArgoCD Notifications From Resource Actions #18223

blakeromano opened this issue May 15, 2024 · 0 comments
Labels
enhancement New feature or request

Comments

@blakeromano
Copy link

Summary

Currently the Notification Controller can send notifications based on changes that occur within an Application and the lifecycle of that application. The Notification Controller is unaware of things that occur outside the Application Object. We want to be able to send notifications for other things that may occur within an application that do not affect the Application Object, such as when a resource action is invoked.

Motivation

There is a desire to be able to audit and send notifications when a user initiates a resource action like restarting an Argo Rollout or Daemonset or Deployment.

Proposal

I think there's a few possible ways to do this which could be investigated....

Option One:

Currently when something like a Resource Action gets invoked the Argo Server will execute the Resource Action and then emit a Kubernetes Event. We could use the Kubernetes Event, update the Notification Service to listen to Kubernetes Events, and then read the Affected Object (the ArgoCD Application) and map that to a notification. This would also probably require updating the way these notifications are mapped in the ArgoCD configuration file.

Option Two:

We could look at making the Notification Service receive GRPC based requests, we could then have these be processed on the fly by the Notification Service and allow configuration of these notifications to be separate from the current notification configuration.

Option Three:

We could update Resource Actions so when they are invoked they actually write the details of the resource action run into the ArgoCD Application Status. We could format this something like:

status:
   resourceActions:
     invocations:
       - userInitiated: foo@foo.com
          resourceName: my-deployment
          resourceKind: Deployment
          apiVersion: v1
          namespace: default
          timeInvoked: 2024-05-15T03:33:07Z
          actionInvoked: restart

And we could ensure that we only keep for example the last 3 invocations of a resource action in the status of the application.

I think I lean towards option three as it also could solve an audibility issue of "I want to know what resource actions were taken" and we could at least provide some way to track that. This also would make it so all the current notification configuration should work out of the box with resource actions.
@blakeromano blakeromano added the enhancement New feature or request label May 15, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@blakeromano