Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
Continuous Delivery on the Kuberrnetes Platform
Search
Nicolas Byl
February 16, 2017
Technology
0
270
Continuous Delivery on the Kuberrnetes Platform
Nicolas Byl
February 16, 2017
Tweet
Share
More Decks by Nicolas Byl
See All by Nicolas Byl
Die Flucht aus der Prototypen-Hölle
nbyl
0
42
Lean Prototyping for Industrial-IoT Projects
nbyl
0
39
DevSecOps - Vom Unikum zur gut geölten Maschine
nbyl
0
95
Securing your software supply chain
nbyl
0
360
Keeping-Up-WithUpstream.pdf
nbyl
0
160
Dr. Kube und der Helm - Anatomie einer CD-Pipeline
nbyl
0
120
Securing the "other" supply chain
nbyl
0
260
Kubernetes - Auf die Cluster, Fertig, Los!
nbyl
0
180
Helm - Kubernetes Deployments richtig gemacht
nbyl
0
120
Other Decks in Technology
See All in Technology
DeNA での思い出 / Memories at DeNA
orgachem
PRO
6
1.9k
生成AI時代のデータ基盤
shibuiwilliam
1
850
Grafana MCPサーバーによるAIエージェント経由でのGrafanaダッシュボード動的生成
hamadakoji
1
790
自社製CMSからmicroCMSへのリプレースがプロダクトグロースを加速させた話
nextbeatdev
0
370
PRDの正しい使い方 ~AI時代にも効く思考・対話・成長ツールとして~
techtekt
PRO
0
100
生成AI時代に必要な価値ある意思決定を育てる「開発プロセス定義」を用いた中期戦略
kakehashi
PRO
1
220
実践アプリケーション設計 ②トランザクションスクリプトへの対応
recruitengineers
PRO
4
1.1k
「守る」から「進化させる」セキュリティへ ~AWS re:Inforce 2025参加報告~ / AWS re:Inforce 2025 Participation Report
yuj1osm
1
180
絶対に失敗できないキャンペーンページの高速かつ安全な開発、WINTICKET × microCMS の開発事例
microcms
0
300
つくって納得、つかって実感! 大規模言語モデルことはじめ
recruitengineers
PRO
31
11k
JuniorからSeniorまで: DevOpsエンジニアの成長ロードマップ
yuriemori
2
330
攻撃と防御で実践するプロダクトセキュリティ演習~導入パート~
recruitengineers
PRO
3
1.6k
Featured
See All Featured
Mobile First: as difficult as doing things right
swwweet
224
9.9k
Build your cross-platform service in a week with App Engine
jlugia
231
18k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
31
2.2k
Exploring the Power of Turbo Streams & Action Cable | RailsConf2023
kevinliebholz
34
6k
Designing for humans not robots
tammielis
253
25k
The MySQL Ecosystem @ GitHub 2015
samlambert
251
13k
KATA
mclloyd
32
14k
Documentation Writing (for coders)
carmenintech
73
5k
Imperfection Machines: The Place of Print at Facebook
scottboms
268
13k
The World Runs on Bad Software
bkeepers
PRO
70
11k
Statistics for Hackers
jakevdp
799
220k
Designing for Performance
lara
610
69k
Transcript
1 CONTINUOUS DELIVERY ON THE KUBERNETES PLATFORM microXchg 2017 Nicolas
Byl, codecentric AG
2 . 1 GETTING STARTED
2 . 2 Mission Statement You can follow the pipeline
on your device. Install prequisites
2 . 3 Prequisites https://github.com/nbyl/cd-workshop-demo
2 . 4 Organisational Stuff Ask questions anytime! Breaks?
None
2 . 5 3 . 1 CONTINUOUS DELIVERY
3 . 2 Key Concepts The software is releasable at
at any time The whole process from source to production is automated Decouple technical rollout from feature rollout
3 . 3 Continuous Delivery vs. Continuous Deployment Continuous Delivery:
Software is releasable at any time Continuous Deployment: Software is released on every change
4 . 1 DOCKER
None
4 . 2
4 . 3
4 . 4
4 . 5
4 . 6 4 . 7 Dockerfile FROM java:8 MAINTAINER
Marcel Birkner <
[email protected]
> ADD target/edmp-sample-app*.jar app.jar RUN bash -c 'touch /app.jar' ENTRYPOINT ["java","-jar","/app.jar"]}
None
4 . 8 5 . 1 KUBERNETES
"Kubernetes is an open-source platform for automating deployment, scaling, and
operations of application containers across clusters of hosts, providing container- centric infrastructure."
5 . 2 portable: public, private, hybrid, multi-cloud extensible: modular,
pluggable, hookable, composable self-healing: auto-placement, auto-restart, auto- replication, auto-scaling
5 . 3
5 . 4 5 . 5 Pods & Co.
5 . 6 Pods
5 . 7 Replication Controller P P P
5 . 8 Deployment combination of pod & replication controller
edited as a unit
apiVersion: extensions/v1beta1 kind: Deployment metadata: name: frontend spec: replicas: 3
template: metadata: labels: app: guestbook tier: frontend spec: containers: - name: php-redis image: gcr.io/google-samples/gb-frontend:v4 resources: requests:
5 . 9 5 . 10 Services
5 . 11 endpoint for a set of pods an
external endpoint can be resolved using DNS environment variables
None
5 . 12 6 . 1 SHOWCASE PROJECT
6 . 2 confy microservice to manage conference talks and
speakers technology: REST-API UI using Gradle Spring Boot (Web, JPA) ng-admin https://github.com/nbyl/confy
6 . 3 Target Platform kubernetes PostgreSQL
6 . 4 Testing Requirements automatic testing using the target
database user acceptance test before exposing new versions
6 . 5 Build Pipeline build publish docker container integration
test user acceptance test production
6 . 6 Assumptions any manual interaction will be done
in reasonable period our cluster will (for now) contain of only one host
7 . 1 LAB 1: SETUP
7 . 2 Recently on this Program... Have you installed
the prerequisites?
7 . 3 Create a cluster minikube start --memory 4096
kubectl apply -f minikube/storageclass.yml
7 . 4 Install Helm helm init
7 . 5 Install Jenkins helm install stable/jenkins --set Agent.Memory=1024Mi
--name=cd minikube service cd-jenkins
8 . 1 LAB 2: CONTINUOUS INTEGRATION
8 . 2 Objectives build an artefact of the software
run all unit tests and in-tree integration tests
8 . 3 Jenkins Kubernetes Plugin creates a new pod
for every job use the pod as a temporary build slave
8 . 4 Let's Go create a new pipeline job
use as SCM source for your Jenkinsfile https://github.com/nbyl/cd-workshop-demo.git
8 . 5 caveat build cache is gone after every
build
None
8 . 6 8 . 7 persistent volumes create manually
use storageclass with auto- provisioner
kind: StorageClass apiVersion: storage.k8s.io/v1beta1 metadata: name: generic provisioner: kubernetes.io/host-path
8 . 8 kind: PersistentVolumeClaim apiVersion: v1 metadata: name: gradle-cache
annotations: volume.beta.kubernetes.io/storage-class: "generic" spec: accessModes: - ReadWriteOnce resources: requests: storage: 8Gi
8 . 9 9 . 1 LAB 3: BUILDING A
DOCKER CONTAINER
9 . 2 Objectives build a docker container containing the
application make the container available for deployment
9 . 3 Build Pod Revisited using build pods is
scalable and reproducible the host docker daemon is not reachable
9 . 4 Docker-in-Docker Builds mount the docker sockets inside
the container /run/docker.sock /var/run/docker.sock image will be built in host docker Warning: possible security problem
10 . 1 LAB 4: INTEGRATION TESTING
10 . 2 Objectives create a deployment description for the
application deployment the application in a configuration analog to production run an integration test verifying the basic functionality
10 . 3 Helm Chart helm create helm/confy [edit] helm
upgrade --install dev-confy helm-confy
10 . 4 Configure the Application env: - name: SPRING_DATASOURCE_URL
value: {{ .Values.database.url }} - name: SPRING_DATASOURCE_DRIVER value: {{ .Values.database.driver }} - name: SPRING_DATASOURCE_USERNAME value: {{ .Values.database.username }} - name: SPRING_DATASOURCE_PASSWORD value: {{ .Values.database.password }}
10 . 5 Simulate roduction use the same database server
as in production treat system as blackbox
11 . 1 LAB 5: USER ACCEPTANCE TESTING
11 . 2 Objectives deploy the application accessible for users
allow manual testing continue to production after manual confirmation
11 . 3 Ingress
11 . 4 Ingress Controller Read Ingress state route accordingly
Implementations: NGINX traefik F5 ...
12 . 1 LAB 5: PRODUCTION DEPLOYMENT
12 . 2 Objectives make application available for end users
(nothing new to learn)
13 . 1 WRAP UP
13 . 2 Links https://kubernetes.io https://www.cncf.io/ https://www.openshift.com/promotions/kubernetes.html https://fabric8.io https://github.com/ramitsurana/awesome-kubernetes
13 . 3 The End @NicolasByl Copyright 2017