feat: add velero plugin configuration schema and validation #3169
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
banjoh
force-pushed
the
evansmungai/sc-131045/add-ec-config-to-add-velero-plugins
branch
from
ccb27c9 to
0db3432
Compare
|
This PR has been released (on staging) and is available for download with a embedded-cluster-smoke-test-staging-app license ID. Online Installer: Airgap Installer (may take a few minutes before the airgap bundle is built): Happy debugging! |
banjoh
changed the title
Add support for configuring custom Velero plugins in the Embedded Cluster
Config CRD. This is the first PR in a series to enable vendors to extend
EC's disaster recovery capabilities with specialized backup plugins.
Changes:
- Add VeleroExtensions and VeleroPlugin types to ConfigSpec.Extensions
- Regenerate CRD schema to include velero.plugins field with validation
- Implement plugin validation in lint validator:
- Validate image format (OCI reference format)
- Detect duplicate plugin images
- Check for required fields
- Add unit tests for validation logic
The new configuration structure allows vendors to specify custom Velero
plugins as OCI images that will be injected as initContainers into the
Velero deployment. Image references support both explicit registry paths
and short names that will use EC's proxy registry.
Example configuration:
extensions:
velero:
plugins:
- image: myvendor/velero-plugin:v1.0.0
This sets the foundation for PR 2 which will implement the Helm values
generation to actually inject these plugins into the Velero deployment.
Refs: SC-131045
Signed-off-by: Evans Mungai <[email protected]>
banjoh
force-pushed
the
evansmungai/sc-131045/add-ec-config-to-add-velero-plugins
branch
from
7a3670b to
d3986cc
Compare
![cursor[bot]](https://avatars.githubusercontent.com/in/1210556?s=60&v=4){kind=small}
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
sgalsaleh
reviewed
Nov 7, 2025
| return errors | ||
| } | ||
|
|
||
| // validateImageFormat validates that an image string follows a valid OCI image reference format |
Member
There was a problem hiding this comment.
is there a standard regex used by tools like docker that we can just use instead of reimplementing this from scratch?
Member
Author
There was a problem hiding this comment.
There is. I changed this implementation to use oras library for that
Member
There was a problem hiding this comment.
is the comment below about basic validation irrelevant / inaccurate now then?
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
…/add-ec-config-to-add-velero-plugins
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
pkg/lint/validator_test.go
Outdated
| expectError: true, | ||
| errorCount: 1, | ||
| errorFields: []string{"extensions.velero.plugins[0].image"}, | ||
| errorMsgs: []string{"invalid repository"}, |
There was a problem hiding this comment.
Bug: Image Validation Returns Unexpected Error Message
The test expects error message to contain "invalid repository" but validateImageFormat returns "invalid image reference". This causes the test assertion at line 670 to fail since the actual error message won't match the expected substring.
Signed-off-by: Evans Mungai <[email protected]>
Signed-off-by: Evans Mungai <[email protected]>
sgalsaleh
approved these changes
Nov 12, 2025
banjoh
deleted the
evansmungai/sc-131045/add-ec-config-to-add-velero-plugins
branch
JGAntunes
pushed a commit
that referenced
this pull request
Nov 13, 2025
* feat: add Velero plugin configuration schema and validation
Add support for configuring custom Velero plugins in the Embedded Cluster
Config CRD. This is the first PR in a series to enable vendors to extend
EC's disaster recovery capabilities with specialized backup plugins.
Changes:
- Add VeleroExtensions and VeleroPlugin types to ConfigSpec.Extensions
- Regenerate CRD schema to include velero.plugins field with validation
- Implement plugin validation in lint validator:
- Validate image format (OCI reference format)
- Detect duplicate plugin images
- Check for required fields
- Add unit tests for validation logic
The new configuration structure allows vendors to specify custom Velero
plugins as OCI images that will be injected as initContainers into the
Velero deployment. Image references support both explicit registry paths
and short names that will use EC's proxy registry.
Example configuration:
extensions:
velero:
plugins:
- image: myvendor/velero-plugin:v1.0.0
This sets the foundation for PR 2 which will implement the Helm values
generation to actually inject these plugins into the Velero deployment.
Refs: SC-131045
Signed-off-by: Evans Mungai <[email protected]>
* Additional unit tests for image format validation
Signed-off-by: Evans Mungai <[email protected]>
* Add container name to Velero plugin configuration
Signed-off-by: Evans Mungai <[email protected]>
* Use oras-go to validate image format
Signed-off-by: Evans Mungai <[email protected]>
* Better test name
Signed-off-by: Evans Mungai <[email protected]>
* Fix failing tests
Signed-off-by: Evans Mungai <[email protected]>
* Remove unsupported example from config_types.go
Signed-off-by: Evans Mungai <[email protected]>
* Remove unnecessary comments
Signed-off-by: Evans Mungai <[email protected]>
* Additional comment to explain to copilot
Signed-off-by: Evans Mungai <[email protected]>
* Use ReferenceRegexp to validate image format
Signed-off-by: Evans Mungai <[email protected]>
* Fix failing unit test
Signed-off-by: Evans Mungai <[email protected]>
* Fix lint errors
Signed-off-by: Evans Mungai <[email protected]>
---------
Signed-off-by: Evans Mungai <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What this PR does / why we need it:
Add support for configuring custom Velero plugins in the Embedded Cluster Config CRD. This is the first PR in a series to enable vendors to extend EC's disaster recovery capabilities with specialized backup plugins.
Changes:
The new configuration structure allows vendors to specify custom Velero plugins as OCI images that will be injected as initContainers into the Velero deployment. Image references support both explicit registry paths and short names that will use EC's proxy registry.
Example configuration:
This sets the foundation for #3177 which will implement the Helm values generation to actually inject these plugins into the Velero deployment.
Which issue(s) this PR fixes:
Ref: sc-131045
Does this PR require a test?
Does this PR require a release note?
Does this PR require documentation?