- Res-Edge helps build a powerful system for automated deployment, update, management, and observability for thousands of Kubernetes (K8s) clusters
- Res-Edge Data Service is a component of Res-Edge that enhances the experience of managing the complexity of applications deployments to K8s environments at scale by providing a centralized inventory system which supports complex hierarchies
- This lab will go over steps to run Res-Edge Data Service with Observability in Codespaces
- To get more familiarity with Codespaces and other tools used in this lab, please complete the inner-loop lab here
The k3d cluster will run
inthe Codespace - no need for an external cluster
-
Use the
kic CLIto create and verify a new k3d cluster# delete and create a new cluster # ignore no-cluster error message kic cluster create # check the K8s pods kic pods # The `--watch` flag will update the last line in the terminal output kic pods --watch # "watch" for the last line to read '1/1 Running' after the '0/1 ContainerCreating' # Press `ctrl-c` to exit
- Run
aliasto view all aliases defined in the Codespacekis an alias forkubectlkafis an alias forkubectl apply -f, where-fis the manifest file to applykakis an alias forkubectl apply -k, where-kis the path that contains kustomization.yaml
# start in the deploy directory
cd "$KIC_BASE/deploy" || exit 1
# create the namespace
kaf ns.yaml
kubectl create secret generic mssql -n res-edge \
--from-literal=MSSQL_SA_PASSWORD="$MSSQL_SA_PASSWORD"
kubectl create secret generic api -n res-edge \
--from-literal=SQL_CONN_STRING="Server=mssql;Database=ist;UID=sa;Password=$MSSQL_SA_PASSWORD;TrustServerCertificate=True;" \
--from-literal=GIT_OPS_PAT="$PAT"
# note - this is to support an easy inner-loop
# production should be integrated with AD, OpenId, or other SSO provider
kubectl create secret generic ui -n res-edge \
--from-literal=DATA_SERVICE_URL="http://api:8080" \
--from-literal=USER_PWD="Res-Edge-User" \
--from-literal=ADMIN_PWD="Res-Edge-Admin"
- In this section, we will deploy SQL Server to the local K8s cluster
- Res-Edge Data Service requires a SQL Server database
- This database serves as storage for Applications, Clusters, Groups, Namespaces, and Policies
- Once the container starts, it will populate the database with sample data
-
5 Applications
-
18 Clusters
-
18 Groups
-
5 Namespaces
-
3 Policies
# deploy SQL Server with sample data kak mssql echo echo 'waiting for mssql pod to start' kubectl wait pod --all --for condition=ready -n res-edge --timeout 60s echo echo 'waiting for database recovery' sleep 30 echo echo 'loading sample data' # load the sample data ds reload --force # Verify mssql is running and the sample data is loaded ds check mssql
-
-
The data service is a REST/OData API to perform CRUD operations on the Res-Edge objects
-
The data service uses the SQL Server deployed previously for storage
# deploy the Res-Edge Data Service kak api echo echo 'waiting for api pod to start' # wait for pod to start kubectl wait pod --all --for condition=ready -n res-edge --timeout 60s # verify Res-Edge Data Service is `Running` ds check resedge
- To validate the Res-Edge Data Service is working properly, we will use
kic testto generate 200, 300, 400, and 404 responses-
ds testusesWebValidate(WebV) which is installed in the Codespace- For more information on WebV, see here
-
"Errors 0" in the summary line indicates all tests passed
ds test all
-
To dive deeper into these commands and learn more about filtering results, go to Sample Data Service Queries
- Return a simple list of Object Id and Name
ds list applications
ds list clusters
ds list groups
ds list namespaces
ds list policies
- Show the object values
-
Result format is json
-
--id is required
ds show application --id 3 ds show cluster --id 1 ds show group --id 3 ds show namespace --id 3 ds show policy --id 1
-
- The CNCF obervability stack is deployed in the cluster with no external dependencies
- Fluent Bit, Prometheus, and Grafana will be deployed to the K8s cluster in the next step
- K9s is deployed to the Codespace by default
- Fluent Bit is configured to forward logs to stdout for debugging
- Fluent Bit can be configured to forward to different services including Loki or Azure Log Analytics
- See the Fluent Bit documentation for more information on Fluent Bit
- Prometheus is a de-facto standard for K8s metrics
- We have defined custom metrics for Prometheus
- See the Prometheus documentation for more information
- Grafana is a de-facto standard for K8s dashboards
- We have defined two custom Grafana dashboards using Prometheus metrics
- Explore the Grafana documentation to learn about more data sources, visualizations, and capabilities
- K9s is deployed in the Codespace
- K9s is a commonly used tool that reduces the complexity of
kubectl- Continually watches K8s for changes and has commands to interact with resources
- Tracks cluster metrics and displays logs of deployed applications
- See the K9s documentation for more information on K9s
To learn how to debug using the Grafana Application Dashboard and k9s, see Debugging the Application Dashboard Lab.
# deploy observability
kak monitoring
echo
echo "Waiting for pods to start"
kubectl wait pod --all --for condition=ready -n logging --timeout 60s
kubectl wait pod --all --for condition=ready -n monitoring --timeout 30s
sleep 5
echo
# check to verify prometheus, fluentbit, and grafana are running
ds check prometheus
ds check fluentbit
ds check grafana
-
This step will create a WebV pod in the cluster to generate continuous traffic to the data service
- Previously, we used WebV from the Codespace
-
Prometheus scrapes the metrics every 5 seconds
-
The Grafana dashboards use the WebV metrics for observability
# deploy webv kak webv echo echo "Waiting for WebV to start" kubectl wait pod --all --for condition=ready -n res-edge --timeout 60s echo # check to verify webv is running ds check webv
- Start
k9sfrom the Codespace terminal
k9s
- Press
0to show allnamespaces - Select
apipod and presslto review the Res-Edge Data Service logs- You should see the following successful (statusCode 200) logs:
- K8s healthcheck every minute
- Prometheus scrape to /metrics logs every 5 seconds
- 10 GET requests from WebV every second
- You should see the following successful (statusCode 200) logs:
- Press
escto return to Pod View - Select
webvpod and presslto review the WebV logs- You should see 10 successful 200 requests per second
- Press
escto return to Pod View - Select
fluentbitpod and presslto see the Fluent Bit logs- Notice that fluentbit logs are batched every 5-10 seconds
- Press
sto toggle AutoScroll on/off - Press
wto toggle Wrap on/off
To exit K9s -
:q <enter>orctl-c
- From the
PORTStab, openPrometheus (30000) - From the query window, enter
resedge- This will filter to the custom app metrics
- From the query window, enter
webv- This will filter to the WebV metrics
- From the
PORTStab, openGrafana (32000)- Username: admin
- Password: cse-labs
- Click on "General / Home" at the top of the screen and select "dotnet" to see a standard dotnet dashboard
- Click on "General / Home" at the top of the screen and select "Application Dashboard" to see a custom application dashboard
- You should see the Application Dashboard with both WebV and Res-Edge Data Service ("Application")
- WebV will have 10 requests per second
- Application will have 10.2 requests per second
- K8s calls /healthz every minute
- Prometheus calls /metrics every 5 seconds
- WebV generates 10 requests per second
- Keep "Application Dashboard" open in a browser tab to monitor Res-Edge Data Service requests metrics for the next section
- The version number of Res-Edge Data Service and WebV will appear below "Application" and "WebV" accordingly
-
Run a 30 second load test in the background to generate 60 req/sec
- There is currently a bug in Codespaces where the forwarded port will quit working if too many requests are sent
- We are working with the GitHub team to resolve
// make the load test smaller for now ds test load
-
Generate 200, 300, 400, and 404 responses
- Can be run concurrently with the load test
ds test all
- Next we will learn how to assign a Group to a Namespace
- Go to the Assign Group to Namespace lab