Example Guide


Crossplane allows the user to manage infrastructure directly from Kubernetes. Crossplane extends a Kubernetes cluster to support orchestrating any infrastructure or managed service. Providers extend Crossplane to enable infrastructure resource provisioning of specific API.
Crossplane Provider IONOS Cloud contains a Controller and Custom Resource Definitions(CRDs). The CRDs are defined in sync with the API and contain the desired state, the Controller has a reconcile loop, and it constantly compares the desired state vs actual state and takes action to reach the desired state. Using the SDK Go, the controller performs CRUD operations and resources are managed in IONOS Cloud. See diagram.
In this Proof of Concept of the IONOS Cloud Provider, we will create a DBaaS Postgres Cluster resource in IONOS Cloud.


List of prerequisites:
  • A Kubernetes implementation like kind
  • Kubectl
  • Helm
  • Docker
  • Credentials to access IONOS Cloud
  • Clone this repository locally to be able to run examples
Check prerequisites:
  • K8s (in case of using kind):
kind version
  • credentials:
export BASE64_PW=$(echo -n "${IONOS_PASSWORD}" | base64)
export IONOS_TOKEN=xxx
  • clone this repository locally:
git clone
cd crossplane-provider-ionoscloud

Setup Crossplane Provider IONOS Cloud

1. Create a K8s cluster (in case of using kind):
kind create cluster --name crossplane-example
kubectl config use-context kind-crossplane-example
2. Create namespace for the crossplane ecosystem:
kubectl create namespace crossplane-system
3. Install crossplane via helm:
helm repo add crossplane-stable
helm repo update
helm install crossplane --namespace crossplane-system crossplane-stable/crossplane
4. Register CRDs into k8s cluster:
kubectl apply -f package/crds/ -R
Note: Before continuing, you can check if kubectl get providers will recognize the CRDs of type providers. The command should return No resources found.
5. Install ProviderConfig, for credentials:
export BASE64_PW=$(echo -n "${IONOS_PASSWORD}" | base64)
kubectl create secret generic --namespace crossplane-system example-provider-secret --from-literal=credentials="{\"user\":\"${IONOS_USERNAME}\",\"password\":\"${BASE64_PW}\"}"
kubectl apply -f examples/provider/config.yaml
kubectl create secret generic --namespace crossplane-system example-provider-secret --from-literal=credentials="{\"token\":\"${IONOS_TOKEN}\"}"
kubectl apply -f examples/provider/config.yaml
Note: You can overwrite the default IONOS Cloud API endpoint, by setting host_url option in credentials struct: --from-literal=credentials="{\"host_url\":\"${IONOS_API_URL}\"}"
6. Install Crossplane Provider IONOS Cloud
Install Crossplane Provider IONOS Cloud:
kubectl apply -f examples/provider/install-provider.yaml
You can install other providers (in this example, helm & kubernetes):
kubectl apply --namespace crossplane-system -f examples/providers/other-providers.yaml
7. Check if the Crossplane Provider IONOS Cloud is installed and healthy:
kubectl get providers
You should be able to see pods running in the crossplane-system namespace, for each provider installed:
Hint: by running kubectl get pods -A, you are able to see all existing pods from all namespaces.
kubectl get pods -n crossplane-system
crossplane-5b6896bb4c-nq5tl 1/1 Running 0 66m
crossplane-rbac-manager-7874897d59-skdtt 1/1 Running 0 66m
provider-helm-a7f79daa3799-78d5959d6d-rktfs 1/1 Running 0 65m
provider-ionos-cf2fec81b474-54f5d7ddd4-w9w9h 1/1 Running 0 66m
provider-kubernetes-df601dea646a-84f7d6db54-t5dn5 1/1 Running 0 65m
Check CRDs:
kubectl get crds | grep ionoscloud
A CRD named should be displayed in the output.
Next, we will create a Custom Resource(CR) of type in order to provision a DBaaS Postgres Cluster in the IONOS Cloud.

Provision DBaaS Postgres Cluster

For the DBaaS Postgres Service, there is only Cluster resource available into the Crossplane Provider IONOS Cloud.
❗ Before running the next command, make sure to update the values in the examples/ionoscloud/dbaas/postgres-cluster.yaml file. Look for spec.forProvider fields. It is required to specify the Datacenter (via ID or via reference), Lan (via ID or via reference), CIDR, and location(in sync with the Datacenter) and also credentials for the database user.

Create Datacenter, Lan, Postgres Cluster CRs

Create a Datacenter CR, a Lan CR and a Postgres Cluster CR - using the next command
kubectl apply -f examples/ionoscloud/dbaas/postgres-cluster.yaml

Get Datacenter, Lan, Postgres Cluster CRs

Check if the Postgres Cluster CR created is synced and ready:
kubectl get postgresclusters
example True True 9b25ecab-83fe-11ec-8d97-828542a828c7 AVAILABLE 93m
For more details, use:
kubectl get postgresclusters -o wide
The external-name of the CR is the Cluster ID from IONOS Cloud. The cluster CR will be marked as ready when the cluster is in available state (subject of change).
You can check if the DBaaS Postgres Cluster was created in the IONOS Cloud:
  • using ionosctl (one of the latest v6 versions), you can run:
ionosctl dbaas postgres cluster list
ClusterId DisplayName Location DatacenterId LanId Cidr Instances State
9b25ecab-83fe-11ec-8d97-828542a828c7 testDemo de/txl 21d8fd28-5d62-43e9-a67b-68e52dac8885 1 1 AVAILABLE
  • in DCD: go to DCD Manager to Manager Resources>Database Manager>Postgres Clusters
Check if Datacenter and Lan CRs are created:
kubectl get datacenters
kubectl get lans

Update Datacenter, Lan, Postgres Cluster CRs

If you want to update the CRs created, update values from the examples/ionoscloud/dbaas/postgres-cluster.yaml file and use the following command:
kubectl apply -f examples/ionoscloud/dbaas/postgres-cluster.yaml
The updates applied should be updated in the external resource in IONOS Cloud.

Delete Datacenter, Lan, Postgres Cluster CRs

If you want to delete the Postgres Cluster CR created (named example), use the following command:
kubectl delete postgrescluster example
This should trigger the destroying of the DBaaS Postgres Cluster.
⚠️ Make sure to delete the DBaaS Postgres Cluster before deleting the datacenter or the lan used in the Cluster's connection!
Delete the lan and datacenter CRs:
kubectl delete lan examplelan
kubectl delete datacenter example
Or you can use the following command (not recommended for this particular case - it might delete the datacenter before the cluster):
kubectl delete -f examples/ionoscloud/dbaas/postgres-cluster.yaml


See the following tables for DBaaS Postgres resources commands:
See CREATE/UPDATE/DELETE Custom Resources Commands
See GET Custom Resources Commands
For an overview of all Managed Resources of Crossplane Provider IONOS Cloud, see file.


Uninstall the Provider

After deleting all resources, it is safe to uninstall the Crossplane Provider IONOS Cloud.
Make sure you delete the ProviderConfig before deleting the Provider (more details here):
kubectl delete -f examples/provider/config.yaml
Now it is safe to delete also the Provider (the ProviderRevision will be deleted automatically):
kubectl delete -f examples/provider/install-provider.yaml

Uninstall K8s Cluster

Use the following command to delete the k8s cluster:
kind delete cluster --name crossplane-example