ship

module
v0.35.1 Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Mar 6, 2019 License: Apache-2.0

README

Ship

Test Coverage Maintainability CircleCI Docker Image Go Report Card GitHub stars

Replicated Ship is an open source project by Replicated designed to extend Google’s Kustomize project in a way that can reduce the operational overhead of maintaining 3rd party applications (open source or proprietary) deployed to a Kubernetes cluster.

The initial release of Replicated Ship exposes the power of Kustomize as an advanced custom configuration management tool for Helm charts, Kubernetes manifests and Knative applications. With Ship, cluster operators can automatically stay in sync with upstream changes (ie. via automated pull requests or another form of automation) while preserving their local, custom configurations and extensions (add, deletes and edits) without git merge conflicts. This is possible because of how the three operating modes of Ship invoke, store, and apply Kustomizations made by the cluster operator.

Read on for more details on Ship features and operating modes, or skip ahead to getting started.

Three operating modes

Replicated Ship Modes

ship init

Prepares a new application for deployment. Use for:

  • Specifying the upstream source for an application to be managed -- typically a repo with raw Kubernetes yaml or a Helm chart
  • Creating and managing Kustomize overlays to be applied before deployment
  • Generating initial config (state.json) for the application, and persisting that config to disk for use with the other modes

ship watch

Polls an upstream source, blocking until any change has been published. Use for:

  • Triggering creation of pull requests in a CI pipeline, so that third party updates can be manually reviewed, and then automatically deployed once merged

ship update

Updates an existing application by merging the latest release with the local state and overlays. Use for:

  • Preparing an update to be deployed to a third party application
  • Automating the update process to start from a continuous integration (CI) service

Features

Ship is designed to provide first-time configuration UI and/or be used headless in a CI/CD pipeline to automate deployment of third party applications.

  • Web based "admin console" provides initial configuration of Helm values and creates Kustomize overlays
  • Headless mode supports automated pipelines
  • Merge Helm charts with override values and apply custom overlays with Kustomize to avoid merge conflicts when upstream or local values are changed
  • Watch upstream repos for updates & sync changes to your local version.
  • Render Helm charts to pure Kubernetes yaml that can be deployed to clusters without Tiller
  • Enables GitOps workflows to update third party applications
  • Configuration workflow ship.yaml files can be included in Helm chart repos, to customize the initial ship init experience

Getting Started

Installation

Ship is packaged as a single binary, and Linux and MacOS versions are distributed:

  • To download the latest Linux build, run:
curl -sSL https://github.com/replicatedhq/ship/releases/download/v0.35.0/ship_0.35.0_linux_amd64.tar.gz | tar xv && sudo mv ship /usr/local/bin
  • To download the latest MacOS build, you can either run:
curl -sSL https://github.com/replicatedhq/ship/releases/download/v0.35.0/ship_0.35.0_darwin_amd64.tar.gz | tar xv && sudo mv ship /usr/local/bin
brew install ship

Alternately, you can run Ship in Docker, in which case you can pull the latest ship image with:

docker pull replicated/ship

Initializing

After Ship is installed, create a directory for the application you'll be managing with Ship, and launch Ship from there, specifying an upstream Helm chart or Kubernetes yaml:

mkdir -p ~/my-ship/example
cd ~/my-ship/example
ship init <path-to-chart> # github.com/helm/charts/tree/master/stable/grafana

Alternately, the same command run through Docker:

mkdir -p ~/my-ship/example
cd ~/my-ship/example
docker run -p 8800:8800 -v "$PWD":/wd -w /wd \
    replicated/ship init <path-to-chart> # github.com/helm/charts/tree/master/stable/grafana

Note: you may need to point your browser to http://127.0.0.1:8800 if ship's suggested localhost URL doesn't resolve.

You'll be prompted to open a browser and walk through the steps to configure site-specific values for your installation, updating Helm values (if it's a chart), and making direct edits to the Kubernetes yaml (or Helm-generated yaml), which will be converted to patches to apply via Kustomize.

After completing the guided 'ship init' workflow, you'll see that Ship has generated several directories and files within the current working directory.

├── .ship
│   └── state.json
├── base
│   ├── clusterrole.yaml
│   ├── ...
│   └── serviceaccount.yaml
├── overlays
│   └── ship
│       └── kustomization.yaml
└── rendered.yaml

.ship/state.json - maintains all the configuration decisions made within the ship init flow, including the path to the upstream, the upstream's original values.yaml, any modifications made to values.yaml, and any patch directives configured in the Kustomize phase.

The base/ and overlays/ folders contain the various files that drive the Kustomization process.

The rendered.yaml file is the final output, suitable to deploy to your Kubernetes cluster via

kubectl apply -f rendered.yaml

If you need to revise any of the configuration details, you can re-invoke ship init <path-to-chart> to start fresh, or ship update --headed to walk through the configuration steps again, starting with your previously entered values & patches as a baseline.

Unforking

Another initialization option is to start with a Helm chart or Kubernetes manifest that has been forked from an upstream source, and to "unfork" it.

ship unfork <path-to-forked> --upstream <path-to-upstream>

or

docker run -v "$PWD":/wd -w /wd \
    replicated/ship unfork <path-to-forked> \
    --upstream <path-to-upstream>

With this workflow, Ship will attempt to move the changes that prompted the fork into 'overlays' that can be applied as patches onto the unmodified upstream base. You can inspect the rendered.yaml to verify the final output, or run through ship update --headed to review the generated overlays in the Ship admin console.

CI/CD Integration

Once you've prepared an application using ship init, a simple starting CI/CD workflow could be:

ship watch && ship update

or

docker run -v "$PWD":/wd -w /wd replicated/ship watch && \
    docker run -v "$PWD":/wd -w /wd replicated/ship update

The watch command is a trigger for CI/CD processes, watching the upstream application for changes. Running ship watch will load the local state file (which includes a content hash of the most recently used upstream) and periodically poll the upstream application and exit when it finds a change. ship update will regenerate the deployable application assets, using the most recent upstream version of the application, and any local configuration from state.json. The new rendered.yaml output can be deployed directly to the cluster, or submitted as a pull request into a GitOps repo.

With chart repo you have commit privileges on, you, you can see this flow in action by running ship init <path-to-chart> and going through the workflow, then ship watch --interval 10s && ship update to start polling, then commit a change to the upstream chart and see the ship watch process exit, with rendered.yaml updated to reflect the change.

Customizing the Configuration Experience

Maintainers of OTS (Off the Shelf) software can customize the ship init experience by including a ship.yaml manifest alongside a Helm Chart or Kubernetes manifest. The Replicated Ship YAML format allows further customization of the installation process, including infrastructure automation steps to spin up and configure clusters to deploy to. (If you're wondering about some of the more obscure Ship CLI option flags, these mostly apply to ship.yaml features)

Ship Cloud

For those not interested in operating and maintaining a fleet of Ship instances, Ship Cloud is available as a hosted solution. With Ship Cloud, teams can collaborate and manage multiple OTS Kubernetes application settings in one place, with Ship watching and updating on any upstream or local configuration changes, and creating Pull Requests and other integrations into CI/CD systems.

Community

For questions about using Ship, there's a Replicated Community forum, and a #ship channel in Kubernetes Slack.

For bug reports, please open an issue in this repo.

For instructions on building the project and making contributions, see Contributing

Directories

Path Synopsis
cmd
pkg
api
cli
e2e
fs
lifecycle/daemon
Thanks Gin! https://github.com/gin-gonic/contrib/blob/master/static/example/bindata/example.go
Thanks Gin! https://github.com/gin-gonic/contrib/blob/master/static/example/bindata/example.go
specs/replicatedapp
local.go has methods for resolving a local ship.yaml file, and patching in api.Release info that would usually be returned by pg.replicated.com
local.go has methods for resolving a local ship.yaml file, and patching in api.Release info that would usually be returned by pg.replicated.com
test-mocks/apptype
Package apptype is a generated GoMock package.
Package apptype is a generated GoMock package.
test-mocks/config
Package config is a generated GoMock package.
Package config is a generated GoMock package.
test-mocks/daemon
Package daemon is a generated GoMock package.
Package daemon is a generated GoMock package.
test-mocks/docker
Package docker is a generated GoMock package.
Package docker is a generated GoMock package.
test-mocks/dockerlayer
Package dockerlayer is a generated GoMock package.
Package dockerlayer is a generated GoMock package.
test-mocks/github
Package github is a generated GoMock package.
Package github is a generated GoMock package.
test-mocks/githubclient
Package githubclient is a generated GoMock package.
Package githubclient is a generated GoMock package.
test-mocks/helm
Package helm is a generated GoMock package.
Package helm is a generated GoMock package.
test-mocks/images
Package images is a generated GoMock package.
Package images is a generated GoMock package.
test-mocks/images/saver
Package saver is a generated GoMock package.
Package saver is a generated GoMock package.
test-mocks/inline
Package inline is a generated GoMock package.
Package inline is a generated GoMock package.
test-mocks/lifecycle
Package lifecycle is a generated GoMock package.
Package lifecycle is a generated GoMock package.
test-mocks/planner
Package planner is a generated GoMock package.
Package planner is a generated GoMock package.
test-mocks/replicatedapp
Package replicatedapp is a generated GoMock package.
Package replicatedapp is a generated GoMock package.
test-mocks/state
Package state is a generated GoMock package.
Package state is a generated GoMock package.
test-mocks/tfplan
Package tfplan is a generated GoMock package.
Package tfplan is a generated GoMock package.
test-mocks/ui
Package ui is a generated GoMock package.
Package ui is a generated GoMock package.
test-mocks/util
Package util is a generated GoMock package.
Package util is a generated GoMock package.
testing/tmpfs
in some cases we have to use a real os fs and not a mem map because of how Afero handles readdir on a file
in some cases we have to use a real os fs and not a mem map because of how Afero handles readdir on a file
ui

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL