README
¶
hambone
An API server for CRUDing differently configured copies of the same Kubernetes specs using Kustomize
Purpose
You want to practice Declarative Application Management using Kubernetes, and you need to CRUD multiple copies of the same application(s), configured differently. For example Wordpress sites, or copies of a single tenant monolith for different clients.
Kustomize does the heavy lifting, having the concept of a Base set of Kubernetes YAML files which you customize using Overlays (which Hambone calls Instances,) allowing you to override any value in the base YAML. Hambone is an API server for automating Kustomize Overlays.
Features
- Supports multiple State Store adapters, currently
etcdandgit. Additional adapters can be written to fulfill the Interface. (PRs welcome!) - Aims to be as simple as possible, and expects you to do almost all the validation client-side where you can also build in your custom domain logic, or obtain external information for secrets or disk volume IDs, etc.
- Optionally uses
kustomize buildandkubectl apply, both of which validate YAML, andkubectlvalidates Kubernetes objects. Care is taken to return meaningful errors. - Manages
kustomization.yamlfiles (Instances) in a structured way, and tracks all changes in the State Store. When using thekustomizeandkubectloptions, the server safely rejects any configs which are rejected by those tools or by Kubernetes. - Clients can pass an old version of an Instance when updating or deleting to prevent writes from stale reads.
- The API enables a client to store and retrieve Template configurations which can be used when creating new Instances.
- The
etcdadapter uses Distributed Locks for concurrency control. - The
gitadapter can optionally use etcd for Distributed Locks. - Ready to be run in replica in Kubernetes. See examples (TODO).
Design
- Consists of a gRPC server (with grpc-gateway JSON adapter TODO)
- The server can be run with existing
kustomizebase(s) on the filesystem (such as a git repo,) or base and overlay files can be created and managed in the State Store through the API'sCustomFilecall/endpoint (CustomFileis TODO). - With the
etcdState Store adapter, the server is concurrency safe. Thegitadapter can be concurrency safe too using optional etcd locks. - Rather than using the Kubernetes and Git APIs directly,
hambonetakes advantage of thekustomizeandkubectlbinaries. This makes it easy to support most versions of Kubernetes/kubectl and Git, and keeps the app simple. - It's the client's responsibility to ensure generated objects don't colide with other generated objects if they're going to be applied to the same cluster. This is a matter of configuring your Kustomize files correctly.
Dependencies
- The following external executables are needed
kubectlkustomize
- For the State Store adapter (either or)
- Git
shgit(installed and configured to auth to your repo)test
- etcd
etcdversion 3
- Git
- Directory
hamboneexpects to be executed from the same directory as you would runkustomize.
- Base(s)
- You must create your own
kustomizebase(s) to use in your Instances, either manually on the filesystem, or through theCustomFilecall/endpoint (CustomFileis TODO). See the working example base.
- You must create your own
Usage
See hambone --help for configuration flags.
Run a Docker container
docker run -it --rm --network host -v ${PWD}:/hambone snarlysodboxer/hambone:v1.15.0- Thev1.15.0tag corresponds to thekubectl/Kubernetes version. See Docker repo for other tags.
One could build an image FROM snarlysodboxer/hambone:<tag> and add a Git repository containing kustomize base(s), and then mount in credentials for kubectl and if needed git.
Run the example
go get github.com/snarlysodboxer/hambone
cd $GOPATH/src/github.com/snarlysodboxer/hambone
With Docker and docker-compose
-
Run the server
cd examples && docker-compose up -
Run the example client
./bin/go.sh run examples/client.go -h
Without Docker
-
Setup prerequisites
-
Run the server
cd examples && go build -o ./hambone ../main.go && ./hambone -
Or with debug logging
cd examples && go build -tags debug -o ./hambone ../main.go && ./hambone -
Run the example client
go run examples/client.go -h
Develop
- Ensure your
~/.kube/configis pointed to the cluster you want to develop against. I like to use minikube. - If you change the proto file, regenerate the Protocol Buffer code ./bin/build-stubs.sh
- Run the tests
Running the tests
- The unit tests can be run with
go test ./...
- There are a number of integration tests that rely on a running git server.
- There are a number of integration tests that rely on a running etcd server.
- Both of these servers can be run with
docker-compose up
- The integration tests can then be run with:
go test -tags=integration pkg/state/etcd/*.gogo test -tags=integration pkg/state/git/*.go -args -etcd_locks_with_git_key hambone_git_my_app(With or without args.)go test -tags=integration *.go- Using
./...can cause race conditions because of testing concurrency, not recommended. - Debug mode can be turned on by adding the
debugtag: go test -tags=integration,debug pkg/state/git/*.go
Roadmap
- TODO When rerunning instances.Apply() after a failed
git push, a bug allows it to falsely succeed. - Create example specs for running
hambonein Kubernetes - Add metrics
- Document better
- More tests
- Track logged in users so changes can be Authored by someone
- Allow passing arguments to Kustomize
- Return rich gRPC status Errors
- Git adapter
- Add ability to use etcd for distributed locking.
- Consider switching to plumbing commands
- Has been crudely converted from in-line to an adapter fulfulling an interface, needs refactored.
- etcd adapter
- Consider creating the ability to write all files to the filesystem and then
git committhem. (For the purpose of manually working with the files in the State Store.)
- Consider creating the ability to write all files to the filesystem and then
Documentation
¶
There is no documentation for this package.
Source Files
Directories
Click to show internal directories.
Click to hide internal directories.