Kong Ingress Controller translates Kubernetes objects it gets from the Kubernetes API and pushes the translation result via Kong Gateway’s Admin API to Kong Gateway instances. However, issues can arise at various stages of this process:
- Admission Webhook: Validates individual Kubernetes objects against schemas and basic rules.
- Translation Process: Detects issues like cross-object validation errors.
- Kong Gateway Response: Kong Gateway rejects the configuration and returns an error associated with a specific object.
Fallback Configuration is triggered when an issue is detected in the 3rd stage and provides the following benefits:
- Allows unaffected objects to be updated even when there are configuration errors.
- Automatically builds a fallback configuration that Kong Gateway will accept without requiring user intervention by
either:
- Excluding the broken objects along with its dependants.
- Backfilling the broken object along with its dependants using the last valid Kubernetes objects’ in-memory cache (if
CONTROLLER_USE_LAST_VALID_CONFIG_FOR_FALLBACK environment variable is set to true).
- Enables users to inspect and identify what objects were excluded from or backfilled in the configuration using
diagnostic endpoints.
The following table summarizes the behavior of the Fallback Configuration feature based on the configuration:
|
FallbackConfiguration feature gate value
|
CONTROLLER_USE_LAST_VALID_CONFIG_FOR_FALLBACK value
|
Behavior
|
false
|
Not applicable
|
The last valid configuration is used as a whole to recover (if stored).
|
true
|
false
|
The Fallback Configuration is triggered, broken objects and their dependents are excluded.
|
true
|
true
|
The Fallback Configuration is triggered, broken objects and their dependents are excluded and backfilled with their last valid version (if stored).
|
The diagram below illustrates how the Fallback Configuration feature works in detail:
flowchart TD
classDef sub opacity:0
classDef note stroke:#e1bb86,fill:#fdf3d8
classDef externalCall fill:#9e8ebf,stroke:none,color:#ffffff
classDef decision fill:#a6b4c8
A([Update loop triggered]) --> B[Generate Kubernetes objects' store snapshot to be passed to the Translator]
B --> C[Translator: generate Kong configuration based on the generated snapshot]
C --> D(Configure Kong Gateways using generated declarative configuration)
D --> E{Configuration rejected?}
E --> |No| G[Store the Kubernetes objects' snapshot to be used as the last valid state]
E --> |Yes| F[Build a dependency graph of Kubernetes objects - using the snapshot]
G --> H[Store the declarative configuration to be used as the last valid configuration]
H --> Z([End of the loop])
F --> I[Exclude an object along with all its dependants from the fallback Kubernetes objects snapshot]
I --> J[Add a previous valid version of the object along with its dependants' previous versions to the fallback snapshot]
J --> K[Translator: generate Kong configuration based on the fallback snapshot]
K --> L(Configure Kong Gateways using generated fallback declarative configuration)
L --> M{Fallback
configuration
rejected?}
M --> |Yes| N{Was the last valid configuration preserved?}
N --> |Yes| O(Configure Kong Gateways using the last valid declarative configuration)
O --> Z
N --> |No| Z
M --> |No| P[Store the fallback Kubernetes objects' snapshot to be used as the last valid state]
P --> R[Store the fallback declarative configuration to be used as the last valid configuration]
R --> Z
subgraph subI [" "]
I
noteI[For every invalid object reported by the Gateway]
end
subgraph subJ [" "]
J
noteJ[Given there was a last valid Kubernetes objects' store snapshot preserved and the object is present]
end
class subI,subJ sub
class noteI,noteJ note
class D,L,O externalCall
class E,M,N decision
Each time Kong Ingress Controller successfully applies a fallback configuration, it emits a Kubernetes Event with the FallbackKongConfigurationSucceeded reason. It will also emit an Event with the FallbackKongConfigurationApplyFailed reason in case the fallback configuration gets rejected by Kong Gateway. You can monitor these events to track the fallback configuration process.
You can check to see if the Event is emitted by running:
kubectl get events -A --field-selector='reason=FallbackKongConfigurationSucceeded'
The results should look like this:
NAMESPACE LAST SEEN TYPE REASON OBJECT MESSAGE
kong 4m26s Normal FallbackKongConfigurationSucceeded pod/kong-controller-7f4fd47bb7-zdktb successfully applied fallback Kong configuration to https://192.168.194.11:8444
Another way to monitor the Fallback Configuration mechanism is by Prometheus metrics. See Prometheus Metrics for more information.