How to delete all namespaces except the kube-system in K3s cluster

kubernetes kubectl k3s

I have a K3s cluster with system pods (i.e. kube-system namespace) and my application pods:

kube-system   pod/calico-node-xxxx                          
kube-system   pod/calico-kube-controllers-xxxxxx   
kube-system   pod/metrics-server-xxxxx
kube-system   pod/local-path-provisioner-xxxxx
kube-system   pod/coredns-xxxxx
app-system    pod/my-app-xxxx
db-system     pod/my-db-xxxxx

I am looking for a shell/kubectl command (for automation script) that can delete my application namespace (want to modify kubectl delete namespace app-system db-system) without mentioning the app namespaces name in the command (as in future if more app namespace would come in cluster, I have to edit this script every time).

That means I want to delete all namespace in cluster except kube-system

something like - kubectl delete namespace -v kube-system (I know -v is not a valid parameter here, just showing how in grep -v is used to except the following words. Similar thing looking for kubectl delete ns... )


Solution 1:

I've created the following code , so you can use it as a wrapper. You can name the script whatever you want. For example exclude_ns_removal

#!/usr/bin/env bash

die () 
{ 
    echo "$@" 1>&2
    exit 1
}

usage () 
{ 
    echo "usage: $0 [-h] [-v namespace_to_ignore] " 1>&2
    exit 0
}

inarray () 
{ 
    local n=$1 h
    shift
    for h in "$@"
    do
        [[ $n = "$h" ]] && return
    done
    return 1
}

while getopts ":v:h" opt; do
    case $opt in 
        h)
            usage
        ;;
        v)
            case $OPTARG in 
                '' | *[0-9]*)
                    die "Digits not allowed $OPTARG"
                ;;
                *)
                    val=$OPTARG
                ;;
            esac
        ;;
        :)
            die "argument needed to -$OPTARG"
        ;;
        *)
            die "invalid switch -$OPTARG"
        ;;
    esac
done

shift $((OPTIND - 1))

while IFS='/' read -r _ ns; do
    a+=("$ns")
done < <(kubectl get namespaces --no-headers -o name)

if inarray "$val" "${a[@]}"; then
    unset 'a'
    { 
        while IFS='/' read -r _ ns; do
            a+=("$ns")
            for i in "${!a[@]}"
            do
                if [[ ${a[i]} == $val ]]; then
                    unset 'a[i]'
                fi
            done
        done
    } < <(kubectl get namespaces --no-headers -o name)

    printf '%s\n\n' "Excluding ... $val"
    for namespace in "${a[@]}"
    do
        printf 'Deleting ... %s\n' "$namespace"
    done
else
    die "No namespace found"
fi

Make the script executable:

chmod u+x exclude_ns_removal

Run it as follows:

./exclude_ns_removal -v kube-system

The result will be something like:

Excluding ... kube-system

Deleting ... app-system
Deleting ... db-system

If the output looks good, you should modify this line

printf 'Deleting ... %s\n' "$namespace"

to

kubectl delete namespace "$namespace"

Solution 2:

May be simpler than the previous answers -- writing scripts or loops here is overkill, kubernetes does it all for you:

kubectl label ns foo=bar --all
kubectl label ns kube-system foo-
kubectl delete ns --selector foo=bar

Related

How to view if partitions primary or secondary in Linux
Memcached error: SERVER HAS FAILED AND IS DISABLED UNTIL TIMED RETRY
SELinux Issue - git status fatal: Out of memory? mmap failed: Permission denied
Create lvm volume in the last cylinders of the disk
Is JDK 1.6 supported in IBM POWER 9(AIX 7.1-7.2)?
Why may add_header not work in nginx' reverse-proxy configuration?
azure linux has not default ipv6 route
Error "This certificate cannot be verified up to a trusted certification authority"
Fail2ban won't start via /etc/init.d/fail2ban but will via /usr/bin/fail2ban-client
How to use PathPattern in order to create DeepLink Apps Android?
Entity and Table annotations. Understanding the exact differences between them
How to forcefully close GetX Snackbar?