Merge pull request #4550 from shuqz/update-doc

k8s-ci-robot · web-flow · commit 56fc78b71bd9 · 2026-01-23T03:15:29.000+05:30
[feat gateway-api]update gw api doc
diff --git a/docs/assets/images/gateway-reconcile.png b/docs/assets/images/gateway-reconcile.png
diff --git a/docs/guide/gateway/gateway.md b/docs/guide/gateway/gateway.md
@@ -1,10 +1,5 @@
 # Gateway API
 
-!!! warning
-    - The team is actively trying to close conformance and support gaps.
-    - Using the LBC and Gateway API together is not suggested for production workloads (yet!)
-
-
 The AWS Load Balancer Controller (LBC) supports reconciliation for Kubernetes Gateway API objects. It satisfies
 L4 routes (TCPRoute, UDPRoute, TLSRoute) with an AWS NLB. It satisfies L7 routes (HTTPRoute, GRPCRoute) using an AWS ALB.
 Mixing protocol layers, e.g. TCPRoute and HTTPRoute on the same Gateway, is not supported.
diff --git a/docs/how-it-works.md b/docs/how-it-works.md
@@ -8,7 +8,7 @@ The following diagram details the AWS components this controller creates. It als
 
 !!!warning "Note"
 
-    The controller manages the configurations of the resources it creates, and we do not recommend out-of-band modifications to these resources because the controller may revert the manual changes during reconciliation. We recommend to use configuration options provided as best practice, such as ingress and service annotations, controller command line flags and IngressClassParams.
+    The controller manages the configurations of the resources it creates, and we do not recommend out-of-band modifications to these resources because the controller may revert the manual changes during reconciliation. We recommend to use configuration options provided as best practice, such as ingress and service annotations, controller command line flags, IngressClassParams, and Gateway API resources.
 
 ### Ingress Creation
 
@@ -47,3 +47,36 @@ Ingress traffic starts at the ALB and reaches the Kubernetes nodes through each
 #### IP mode
 Ingress traffic starts at the ALB and reaches the Kubernetes pods directly. CNIs must support directly accessible POD ip via [secondary IP addresses on ENI](https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/using-eni.html).
 
+## Gateway API
+
+In addition to Ingress and Service resources, the AWS Load Balancer Controller also supports the [Kubernetes Gateway API](https://gateway-api.sigs.k8s.io/). Gateway API is a more expressive, extensible, and role-oriented API for managing traffic routing in Kubernetes.
+
+The controller satisfies Gateway API resources as follows:
+
+- **L7 Routes (HTTPRoute, GRPCRoute)**: Provisioned using [Application Load Balancers](https://docs.aws.amazon.com/elasticloadbalancing/latest/application/introduction.html)
+- **L4 Routes (TCPRoute, UDPRoute, TLSRoute)**: Provisioned using [Network Load Balancers](https://docs.aws.amazon.com/elasticloadbalancing/latest/network/introduction.html)
+
+For more information on Gateway API support, including prerequisites, configuration, and examples, see the [Gateway API Guide](guide/gateway/gateway.md).
+
+### How Gateway API Works
+
+The AWS Load Balancer Controller runs a continuous reconciliation loop to align the desired state expressed through Gateway API objects with the actual state of AWS Load Balancer infrastructure. The controller runs dedicated controller instances for L4 routing (NLB) and L7 routing (ALB), each following a similar workflow.
+
+The following diagram illustrates the Gateway API reconciliation process:
+
+![gateway-reconcile](assets/images/gateway-reconcile.png)
+
+At a high level, the reconciliation loop works as follows:
+
+**[1] API Monitoring**: The controller continuously monitors the Kubernetes API for Gateway API resources being created, modified, or deleted.
+
+**[2] Queueing**: Identified resources are added to an internal queue for processing.
+
+**[3] Processing**: For each item in the queue:
+
+- The associated GatewayClass is verified to determine if it is or should be a managed resource.
+- If managed, the Gateway API definition is mapped to AWS resources such as NLB/ALB, Listeners, Listener Rules, Target Groups, and Addons.
+- These mapped resources are compared with the actual state in AWS. For any resource that does not match the desired state, the controller executes the necessary AWS API calls to reconcile the differences.
+
+**[4] Status Updates**: After reconciliation, the controller updates the status field of the corresponding Gateway resource. This provides real-time feedback on provisioned AWS resources, such as the load balancer's DNS name and ARN, and whether the Gateway is accepted and programmed.
+
