diff between whats active on cluster versus kustomize

Question

kustomize's docs provides a nice one-liner that compares two different overlays...

diff \
  <(kustomize build $OVERLAYS/staging) \
  <(kustomize build $OVERLAYS/production)

is there a way to do the same but against what is running within a specific kubernetes namespace and that of a defined overlay on disk?

more specifically, knowing what an kubectl apply -k . would do without actually doing it? using --dry-run just says spits out a list of the objects rather than a real diff.

score 5 · Answer 1 · answered Mar 12 '21 at 15:29

5

kustomize build ./ | kubectl diff -f  -

In Kustomize version 4.x.x

answered Mar 12 '21 at 15:29

dotdat

51
1
2

Can now be done with kubectl too, no need to install kustomize CLI: `kubectl kustomize | kubectl diff -f - ` – Maggie Jul 27 '23 at 20:33

score 4 · Answer 2 · answered Aug 09 '22 at 13:07

If you're looking for a way to do this visually, I highly recommend trying the Compare & Sync feature from Monokle:

In the picture above you can see an example where I'm comparing the output of the cluster-install kustomization to the objects in my minikube cluster.

You can easily determine which resources are missing in your cluster and which ones are different.

On top of that, you're not limited to only comparing kustomizations to clusters. You can also compare two clusters, two kustomizations, helm charts, etc.

score 1 · Answer 3 · answered Jan 26 '21 at 11:06

I have a small function on my shell config to do this:

kdiff() {
  overlay="${1}"
  kustomize build ${overlay} \
    | kubectl diff -f - ${@:2} \
    | sed '/kubectl.kubernetes.io\/last-applied-configuration/,+1 d' \
    | sed -r "s/(^\+[^\+].*|^\+$)/$(printf '\e[0;32m')\1$(printf '\e[0m')/g" \
    | sed -r "s/(^\-[^\-].*|^\-$)/$(printf '\e[0;31m')\1$(printf '\e[0m')/g"
}

It drops the last-applied-configuration annotation and adds some color.

score 0 · Answer 4 · answered Feb 04 '20 at 13:04

I'm not sure if this is what you are looking for, but in Kubernetes you have kubectl diff.

It's nicely explained on APIServer dry-run and kubectl diff.

You can use option -k, --kustomize which does:

Process the kustomization directory. This flag can't be used together with -f or -R.

Or maybe something similar to one-liner to set context for specific namespace:

$ kubectl config set-context staging --user=cluster-admin --namespace=staging
$ kubectl config set-context prod --user=cluster-admin --namespace=prod

Once you have context setup you could use them maybe in a following way:

kubectl config use-context staging; cat patched_k8s.yaml | kubectl config use-context prod; kubectl diff -f -

This is just an example which I did not tested.

score 0 · Answer 5 · answered Feb 28 '20 at 20:39

0

Try this kustomize command, currently in alpha:

KUSTOMIZE_ENABLE_ALPHA_COMMANDS=true kustomize resources diff -k your/kustomize/overlay

via https://kubernetes.slack.com/archives/C9A5ALABG/p1582738327027200?thread_ts=1582695987.023600&cid=C9A5ALABG

answered Feb 28 '20 at 20:39

Julian V. Modesto

308
1
14

diff between whats active on cluster versus kustomize

5 Answers5