Repository Controller

Kubernetes controller for repository synchronization and lifecycle management.

Overview

The Repository Controller manages the synchronization of Porch repositories with their corresponding external Git repositories. It continuously monitors repositories and keeps their package content up-to-date through periodic synchronization.

The controller handles several key responsibilities:

  • Runs synchronization on configurable schedules (frequency, cron, or one-time)
    • Lightweight health checks to detect connectivity issues quickly
    • Full syncs to fetch content and discover packages
  • Maintains repository status with sync timestamps, package counts, and git commit hashes
  • Implements smart retry logic with error-type-specific intervals
  • Controls concurrency to prevent resource exhaustion

How It Works

The controller operates as a standard Kubernetes controller, watching Repository custom resources and reconciling their desired state with actual state:

┌─────────────────┐    ┌──────────────────┐    ┌─────────────────┐
│ Repository      │    │ Controller       │    │ Cache Layer     │
│ CRD             │───>│ Reconcile Loop   │───>│ (CR/DB Cache)   │
│                 │    │                  │    │                 │
│ • Git config    │    │ • Sync decision  │    │ • Package data  │
│ • Sync schedule │    │ • Async workers  │    │ • Git cache     │
│ • Credentials   │    │ • Status update  │    │ • Database      │
└─────────────────┘    └──────────────────┘    └─────────────────┘

The controller uses a dual sync strategy to balance responsiveness with efficiency. Health checks run frequently to detect problems quickly, while full syncs run less often to fetch content and discover packages. This approach minimizes unnecessary git operations while maintaining up-to-date repository state.

When repositories encounter errors, the controller automatically retries with intervals tailored to the error type. The controller also detects stale syncs and automatically recovers.

Key Features

Intelligent Sync Scheduling: The controller prioritizes operations based on urgency, ensuring one-time syncs and spec changes execute immediately while routine operations happen on schedule.

Flexible Configuration: Repositories can use frequency-based scheduling, cron expressions, or one-time syncs to control when synchronization happens.

Production-Grade Reliability: Automatic retry with smart backoff, stale sync detection, and concurrent operation limiting ensure reliable operation at scale.

Rich Status Information: The controller maintains detailed status to support monitoring and troubleshooting.

Configuration

For cache configuration, see Cache Configuration.

For controller-specific settings, see Repository Controller Configuration.

Design Decisions

Architectural decisions behind the Repository Controller design.

Functionality

Detailed operational behavior of the Repository Controller.

Component Interactions

How the Repository Controller interacts with other Porch components.