Git-Mirrors/constellation
1
0
Fork 0
mirror of https://github.com/edgelesssys/constellation.git synced 2025-11-08 14:54:51 -05:00
Code Issues Projects Releases Packages Wiki Activity
constellation/rfc/version-api.md
Paul Meyer baa1b37681
rfc: update documentation of new versions API (#788) 
Signed-off-by: Paul Meyer <49727155+katexochen@users.noreply.github.com>
Co-authored-by: Malte Poll <mp@edgeless.systems>
2023-01-03 15:49:58 +01:00

5.2 KiB
Raw Blame History

Version API

The version API should expose easy, straightforward, extensible and forward compatible version information to the Constellation CLI (and possibly more consumers).

Design goals:

  • Simple
  • Can be implemented using static HTTP file server
  • Generic over different kinds of resources
    • OS image versions
    • Microservice versions
    • CLI versions
    • Kubernetes versions

The following HTTP endpoints are available:

ref is used to distinguish between different Constellation branches (e.g. main and feat-xyz) and releases (-). stream is used to distinguish between different release streams. For example, stable and debug could be two different streams.

Examples

The following examples show how the version API could be used to retrieve version information.

Latest

This shows the version information for the latest OS image. The file could be extended to include more metadata.

https://cdn.confidential.cloud/constellation/v1/ref/-/stream/stable/versions/latest/image.json

{
    "ref": "-",
    "stream": "stable",
    "kind": "image",
    "version": "v2.3.0"
}

This shows the version information for the latest Kubernetes release. The file could be extended to include more metadata.

https://cdn.confidential.cloud/constellation/v1/ref/-/stream/stable/versions/latest/kubernetes.json

{
    "ref": "-",
    "stream": "stable",
    "kind": "kubernetes",
    "version": "v1.25.4"
}

Major to minor version list

This shows a list of all minor releases of the microservices for the major version v2. The file could be extended to include more metadata.

https://cdn.confidential.cloud/constellation/v1/ref/-/stream/stable/versions/major/v2/microservice.json

{
    "ref": "-",
    "stream": "stable",
    "granularity": "major",
    "base": "v2",
    "kind": "microservice",
    "versions": ["v2.0", "v2.1", "v2.2", "v2.3"]
}

This shows a list of all patch releases of the CLI for the minor version v2.3. The file could be extended to include more metadata.

Minor to patch version list

https://cdn.confidential.cloud/constellation/v1/ref/-/stream/stable/versions/minor/v2.3/cli.json

{
    "ref": "-",
    "stream": "stable",
    "granularity": "minor",
    "base": "v2.3",
    "kind": "cli",
    "versions": ["v2.3.0", "v2.3.1", "v2.3.2", "v2.3.3"]
}

Version discovery

The version API can be used to find new versions efficiently and can be used to perform simple selection of available upgrades using semantic versioning. Below are some example use cases.

Inform about new versions

The CLI can query the latest endpoint to inform users about new releases of the CLI itself.

Propose compatible image versions

The CLI can query the minor endpoint to retrieve a list of all patch releases of a Constellation OS image. This can be used to only select compatible versions for image updates if combined with a downgrade protection (only allow updating to image versions that are newer than the one currently in use).

Trash

The trash endpoint collects files that were deleted as versions but contain references to resources that couldn't be cleaned up. It allows admins to manually clean up resources.

Possible future extensions

  • Explicit compatibility information between different resource kinds
    • Example: OS image v2.3.4 requires microservice version > v2.3.1
    • Allows fine grained control in case of unexpected incompatibility
  • Version metadata
    • Changelogs
    • Deprecation warnings
    • Security information