Skip to main content
← ArticlesLire en français
15 August 2025·Alien6 Research

The Kubernetes Operator as a General Pattern

How the Kubernetes operator pattern generalizes beyond stateful apps to encode any complex operational logic into the control plane.

InfrastructureKubernetesDevOps

The Kubernetes Operator as a General Pattern for Complex Operational Logic

The Kubernetes operator was born to manage stateful applications — databases, cache systems, message brokers — whose lifecycle exceeds what native Deployments can model. But reducing the operator to this use case misses its true potential: it is a general pattern for encoding complex operational logic into the Kubernetes control plane.

Beyond Databases: The General Pattern

A Kubernetes operator is simply a controller that extends the Kubernetes API with Custom Resource Definitions (CRDs) and implements a reconciliation loop to bring actual state toward desired state. This abstraction applies to far more than stateful apps.

Advanced use cases observed in production:

  • ML model lifecycle management (deployment, A/B testing, automatic rollback on performance drift)
  • Data pipeline orchestration (Spark, Flink jobs with custom retry policy)
  • Certificate management and secret rotation without downtime
  • Lifecycle management of proprietary algorithms with SLA enforcement
  • Ephemeral environment provisioning for PRs (preview environments)

The Reconciliation Loop: The Heart of the Pattern

The fundamental concept is the reconciliation loop. The controller continuously observes cluster state and reconciles divergences between desired state (specified in the CRD) and actual state (what is actually running).

// Simplified example of an operator for lifecycle management
// of a proprietary algorithm
func (r *AlgorithmReconciler) Reconcile(
    ctx context.Context,
    req ctrl.Request,
) (ctrl.Result, error) {
 
    // 1. Fetch desired state from the Kubernetes API
    algorithm := &aiv1.Algorithm{}
    if err := r.Get(ctx, req.NamespacedName, algorithm); err != nil {
        return ctrl.Result{}, client.IgnoreNotFound(err)
    }
 
    // 2. Observe actual state
    deployment := &appsv1.Deployment{}
    err := r.Get(ctx, req.NamespacedName, deployment)
 
    // 3. Reconcile
    if errors.IsNotFound(err) {
        return r.createDeployment(ctx, algorithm)
    }
 
    if r.needsUpdate(algorithm, deployment) {
        return r.updateDeployment(ctx, algorithm, deployment)
    }
 
    // 4. Update status for observability
    algorithm.Status.Phase = aiv1.PhaseRunning
    algorithm.Status.LastReconciled = metav1.Now()
    if err := r.Status().Update(ctx, algorithm); err != nil {
        return ctrl.Result{}, err
    }
 
    // 5. Re-queue if needed (periodic health check)
    return ctrl.Result{RequeueAfter: 30 * time.Second}, nil
}

The CRD as an Infrastructure Contract

The Custom Resource Definition is the contract between the platform team and product teams. It expresses in YAML what teams can deploy, with which constraints, and what operational guarantees are associated.

apiVersion: ai.alien6.io/v1
kind: Algorithm
metadata:
  name: recommendation-engine-v2
spec:
  image: 'registry.alien6.io/algo/reco:2.1.4'
  replicas: 3
  resources:
    gpu: 'nvidia.com/gpu'
    gpuCount: 2
  scaling:
    minReplicas: 1
    maxReplicas: 10
    targetLatencyMs: 50
  lifecycle:
    canaryWeight: 20  # 20% of traffic on this version
    successThreshold: 0.99
    rollbackOnDrift: true

The operator translates this declarative spec into concrete Kubernetes resources: Deployments, Services, HPAs, PodDisruptionBudgets, ConfigMaps. It monitors health and rolls back automatically if metrics deviate from the threshold.

Idempotence and Error Handling

The reconciliation loop must be idempotent: calling Reconcile ten times with the same state must produce the same result as a single call. This constraint forces you to design operations that can be retried without side effects.

Errors are handled by re-queue with exponential backoff. The snippet below is illustrative pseudo-code — in practice, retryCount must be maintained explicitly in the resource status or delegated to controller-runtime's rate-limiting mechanism:

// Pseudo-code: exponential backoff on transient error
// retryCount must be read from algorithm.Status.RetryCount
retryCount := algorithm.Status.RetryCount
return ctrl.Result{
    RequeueAfter: time.Duration(math.Pow(2, float64(retryCount))) * time.Second,
}, err

Tools and Frameworks

  • controller-runtime (Go): the official library, used by the majority of production operators
  • Operator SDK: scaffolding and code generation for Go, Ansible, Helm
  • Kubebuilder: alternative framework with a different ergonomics
  • kopf (Python): for Python teams, acceptable for less critical operators

When Not to Use an Operator

The operator is oversized for simple cases. If your logic fits in a Helm chart with a few hooks, an operator adds no value. The threshold of relevance is reached when you need conditional logic, feedback loops, or reactions to external events (metrics, alerts, webhooks) to drive the lifecycle of a resource.