README
¶
ReShifter
A cluster admin backup and restore tool for Kubernetes distros such as OpenShift, using etcd to query and manipulate the state of all objects.
- Use Cases
- Status and roadmap
- Deploy app locally
- Deploy app in OpenShift
- Deploy app in Kubernetes
- CLI tool
- Configuration
- Test and development
Use Cases
There are many cases where ReShifter can be useful for you, for example:
- Restore When running a Kubernetes cluster in production, you can use ReShifter to back up the current state of the deployed apps and global resources such as namespaces. The backup can be useful as a basis for a restore process (into the same or a new cluster) or for auditing purposes.
- Disaster Recovery When operating two or more clusters, you can use ReShifter to replicate the state for DR failover scenarios.
- $aving money When running development or test clusters in a public cloud setting, you might not want to pay for the whole time, only when you actively use it. You can use ReShifter to snapshot the state, shut down the cluster and once ramped up again, restore the state.
- Troubleshooting For any kind of Kubernetes clusters, be it prod or testing, you can use ReShifter to capture the state of the cluster at a certain point in time for offline debugging and troubleshooting or to share the state with a provider, who then can take care of looking into a support case.
- Upgrading When you are upgrading a cluster, say, from Kubernetes 1.5 to 1.6, you can use ReShifter to achieve zero-downtime upgrades with minimal manual effort.
Status and roadmap
See the Trello board for the current status of the work and roadmap items. You can also check out the design philosophy and architecture of ReShifter, if you want to learn more about why it works the way it does.
Deploy app locally
If you want to use the ReShifter app, that is the Web UI, you need to use the Docker image since it bundles the static assets such as HTML, CSS, and JS and the Go binary. For example, to launch the ReShifter app locally, do:
$ docker run --rm -p 8080:8080 quay.io/mhausenblas/reshifter:0.3.12
If you want to use the ReShifter API, for example as a head-less service, you can simply use the binary, no other dependencies required:
$ curl -s -L https://github.com/mhausenblas/reshifter/releases/download/v0.3.12-alpha/reshifter -o reshifter
$ chmod +x reshifter
$ ./reshifter
The ReShifter HTTP API is defined in and available via Swagger: swaggerhub.com/apis/mhausenblas/reshifter/1.0.0
Deploy app in OpenShift
To install the ReShifter app on OpenShift, we use a Makefile
that creates a new project called reshifter, launches the app from the Docker image, and finally exposes the service via a route
so that you can access the app from outside of the cluster. The following requires access to an OpenShift Origin 1.5 (or OpenShift Container Platform 3.5)
cluster and also the oc CLI tool locally installed:
$ make init
$ make publish
Deploy app in Kubernetes
To install the ReShifter app in a portable way, use kubectl and the YAML files provided.
The following requires access to a vanilla Kubernetes 1.5 or above cluster and also the
kubectl CLI tool locally installed:
$ kubectl create -f https://raw.githubusercontent.com/mhausenblas/reshifter/master/deployments/reshifter-app.yaml
Note: the above YAML file defines both a Deployment as well as a Service object for ReShifter.
It does, however, not expose the ReShifter service to the outside world. If you want to access the app from outside the cluster,
you'll have to use Ingress or adapt the YAML file
yourself.
CLI tool
ReShifter also provides for a CLI tool called rcli.
Get binary releases for Linux and macOS via the GitHub release page.
$ rcli -h
A CLI for ReShifter, supports backing up and restoring Kubernetes clusters.
Usage:
rcli [command]
Available Commands:
backup Creates a backup of a Kubernetes cluster
explore Probes an etcd endpoint
help Help about any command
restore Performs a restore of a Kubernetes cluster
stats Collects stats about Kubernetes-related keys from an etcd endpoint
version Displays the ReShifter version
...
Here's a simple usage example which assumes that you've got a Kubernetes cluster with an etcd on http://localhost:4001 running:
# explore the endpoint, overwrite default for etcd endpoint:
$ rcli explore -e http://localhost:4001
# collect stats using default for etcd endpoint:
$ rcli stats
# back up Kubernetes cluster to Minio playground:
$ ACCESS_KEY_ID=Q3AM3UQ867SPQQA43P2F \
SECRET_ACCESS_KEY=zuf+tfteSlswRu7BJ86wekitnifILbZam1KYY3TG \
rcli backup create -e http://localhost:4001 \
-r play.minio.io:9000 \
-b mh9-test
# restart/empty etcd now or launch a new one as a restore target
# restore cluster from Minio playground, using backup ID 1498815551:
$ ACCESS_KEY_ID=Q3AM3UQ867SPQQA43P2F \
SECRET_ACCESS_KEY=zuf+tfteSlswRu7BJ86wekitnifILbZam1KYY3TG \
rcli restore -e http://localhost:4001 \
-r play.minio.io:9000 \
-b mh9-test \
-i 1498815551
Configuration
ReShifter takes throughout the deployments (app, HTTP API, CLI) the following configuration parameters, supplied as environment variables. Currently all of them are optional, but may be required depending on the etcd setup in use or what you want to achieve, for example, backing up to an S3-compatible storage.
| env var | meaning | set for |
|---|---|---|
ACCESS_KEY_ID |
S3 access key ID | when backing up to remote S3-compatible storage |
SECRET_ACCESS_KEY |
S3 secret access key | when backing up to remote S3-compatible storage |
RS_ETCD_CLIENT_CERT |
path to etcd client cert file | when using a secure etcd |
RS_ETCD_CLIENT_KEY |
path to etcd client key file | when using a secure etcd |
RS_ETCD_CA_CERT |
path to etcd CA cert file | when using a secure etcd |
Note:
- The
ACCESS_KEY_IDandSECRET_ACCESS_KEYenvironment variables are understood as of the AWS guidelines - The
RS_ETCD_*environment variables are understood as of the etcd2 security flags/etcd3 security flags
Test and development
See the pages for testbed and development.
Documentation
¶
Overview ¶
ReShifter enables backing up and restoring Kubernetes clusters. The ReShifter app launches an API and a UI at port 8080 and uses the ReShifter library to communicate and manipulate etcd. The API is instrumented, exposing Prometheus metrics. When launching the app with the defaults, the backups are created in /tmp/reshifter and via environment variables you can define the etcd certs/keys as well as the S3 backend credentials, see also http://reshifter.info/#configuration for more infos.
Source Files
Directories
¶
| Path | Synopsis |
|---|---|
|
pkg
|
|
|
backup
Package backup contains backup operations against etcd.
|
Package backup contains backup operations against etcd. |
|
discovery
Package discovery contains functionality to discover the type of etcd used in back up and restore operations as well as what Kubernetes distro is used.
|
Package discovery contains functionality to discover the type of etcd used in back up and restore operations as well as what Kubernetes distro is used. |
|
remotes
Package remotes contains operations to store and retrieve backups in remote storage locations such as Amazon S3.
|
Package remotes contains operations to store and retrieve backups in remote storage locations such as Amazon S3. |
|
restore
Package restore contains restore operations against etcd.
|
Package restore contains restore operations against etcd. |
|
types
Package types defines types and constants used in the ReShifter lib.
|
Package types defines types and constants used in the ReShifter lib. |
|
util
Package util contains various helper functions for ReShifter.
|
Package util contains various helper functions for ReShifter. |
|
Package main implements the ReShifter CLI tool rcli.
|
Package main implements the ReShifter CLI tool rcli. |
|
cmd
Package cmd implements the ReShifter CLI commands.
|
Package cmd implements the ReShifter CLI commands. |