Private link service controller

[gowrisankar22]

New ACK Service Controller

Support for [Private link service]

List of API resources

List the API resources in order of importance to you:

1. [resource 1] https://pkg.go.dev/github.com/aws/aws-sdk-go-v2/service/ec2#CreateVpcEndpointInput
2. [resource 2] https://docs.aws.amazon.com/sdk-for-go/api/service/ec2/#EC2.CreateVpcEndpoint

It would be great if the operator supports the creation of the securityGroupParts by passing the vpcendpointservice name.

Internally controller should use the vpcids, subnetsids, security groups, and notifiers etc.

CRD spec example:

apiVersion: privatelink.ecr.services.k8s.aws/alphav1
kind: Vpcendpoint
metadata:
  name: vpcendpoint1
  namespace: default
spec:
  parameters:
    servicename: com.amazonaws.vpce.eu-central-1.vpce-svc-xxxxx
  writeConnectionSecretToRef:
    name: vpcendpoint-conn

Code snippets:

package main

import (
	"context"
	"flag"
	"fmt"
	"strings"

	"github.com/aws/aws-sdk-go-v2/config"
	"github.com/aws/aws-sdk-go-v2/service/ec2"
	"github.com/aws/aws-sdk-go-v2/service/ec2/types"
	"github.com/aws/aws-sdk-go/aws"
)

func main() {
	vpcID := flag.String("i", "", "The ID of the VPC")
	serviceName := flag.String("n", "", "The name of the service")
	subNets := flag.String("s", "", "A list of subnet IDs, separated by spaces")
	securityGroups := flag.String("g", "", "A list of security group IDs, separated by spaces")
	flag.Parse()

	if *vpcID == "" || *serviceName == "" || *subNets == "" || *securityGroups == "" {
		fmt.Println("You must supply a VPC ID, service name, list of subnet IDs, and list of security group IDs")
		fmt.Println("(-i VPC-ID -n SERVICE-NAME -s \"SUBNET-ID1 ... SUBNET-IDn\" -g \"SECURITY-ID1 ... Security-IDn\"")
		return
	}

	cfg, err := config.LoadDefaultConfig()
	if err != nil {
		panic("configuration error, " + err.Error())
	}

	client := ec2.NewFromConfig(cfg)

	subNetParts := strings.Split(*subNets, " ")
	securityGroupParts := strings.Split(*securityGroups, " ")


	input := &ec2.CreateVpcEndpointInput{
		VpcId:            vpcID,
		ServiceName:      serviceName,
		VpcEndpointType:  types.VpcEndpointTypeInterface,
		SubnetIds:        subNetParts,
		SecurityGroupIds: securityGroupParts,
	}

	resp, err := client.CreateVpcEndpoint(context.Background(), input)
	if err != nil {
		fmt.Println("Got an error creating VPC endpoint:")
		fmt.Println(err)
		return
	}

	fmt.Println("VPC endpoint:")
	fmt.Println(*resp.VpcEndpoint) // See https://pkg.go.dev/github.com/aws/aws-sdk-go-v2/service/[email protected]/types#VpcEndpoint
}

[jaypipes]

Hi @gowrisankar22, sorry for the late response! We have VPC Endpoint covered in the EC2 VPC service controller:

#489

Please do 👍 that issue and add a comment in that one with your thoughts on this! Also, for the notifiers stuff, this issue might be of interest to you as well: #292. I'm going to close this one out as a duplicate. Thank you!