Welcome to Werf guide. Visit the image page.
9 | 10 | 11 | -------------------------------------------------------------------------------- /2022/01-werf-local-dev/routes/image.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | /* Image page. */ 5 | router.get('/', express.static('dist/image.html')); 6 | 7 | module.exports = router; 8 | -------------------------------------------------------------------------------- /2022/01-werf-local-dev/routes/index.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const path = require('path'); 3 | const router = express.Router(); 4 | 5 | /* GET home page. */ 6 | router.get('/', function (req, res, next) { 7 | res.sendFile(path.resolve(process.cwd(), 'dist', 'index.html')); 8 | }); 9 | 10 | router.get('/err', function (req, res, next) { 11 | throw new Error('Hello from an unhandler error'); 12 | }); 13 | 14 | module.exports = router; 15 | -------------------------------------------------------------------------------- /2022/01-werf-local-dev/routes/ping.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | router.get('/', function (req, res, next) { 5 | res.log.debug('we are being pinged'); 6 | res.send('pong\n'); 7 | }); 8 | 9 | module.exports = router; 10 | -------------------------------------------------------------------------------- /2022/06-okteto/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM golang:buster 2 | COPY . /app 3 | RUN cd /app && \ 4 | go build main.go && \ 5 | chmod +x /app/main 6 | CMD /app/main 7 | -------------------------------------------------------------------------------- /2022/06-okteto/README.md: -------------------------------------------------------------------------------- 1 | Here are samples you can use to try Okteto for your local development. 2 | 3 | This repo is intended to be used as a playground for a corresponding article: 4 | 5 | * «**[Okteto Cloud as another way for local development in Kubernetes](https://blog.flant.com/okteto-cloud-for-local-development-in-kubernetes/)**». 6 | * Russian version: «[Okteto Cloud – еще один удобный способ организации локальной разработки](https://habr.com/ru/company/flant/blog/667806/)». 7 | 8 | ## Contents 9 | 10 | * `main.go` — a hello-world app in Go; 11 | * `Dockerfile` — a Dockerfile required to build this app; 12 | * `okteto.yml` — a simple configuration for Okteto used to launch a dev environment with this app. 13 | -------------------------------------------------------------------------------- /2022/06-okteto/main.go: -------------------------------------------------------------------------------- 1 | package main 2 | 3 | import ( 4 | "fmt" 5 | "net/http" 6 | ) 7 | 8 | func main() { 9 | fmt.Println("Starting hello-world server...") 10 | http.HandleFunc("/", helloServer) 11 | if err := http.ListenAndServe(":8080", nil); err != nil { 12 | panic(err) 13 | } 14 | } 15 | 16 | func helloServer(w http.ResponseWriter, r *http.Request) { 17 | fmt.Fprint(w, "Hello from Okteto!") 18 | } 19 | -------------------------------------------------------------------------------- /2022/06-okteto/okteto.yml: -------------------------------------------------------------------------------- 1 | name: okteto-test 2 | autocreate: true 3 | image: okteto/golang:1 4 | command: bash 5 | #namespace: okteto 6 | securityContext: 7 | capabilities: 8 | add: 9 | - SYS_PTRACE 10 | sync: 11 | - .:/usr/src/app 12 | forward: 13 | - 2345:2345 14 | - 8080:8080 15 | persistentVolume: 16 | enabled: true 17 | -------------------------------------------------------------------------------- /2022/06-werf-kube-run/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM golang:1.18-alpine 2 | WORKDIR /app 3 | ADD . /app/ 4 | RUN go build -o main . 5 | RUN chmod +x ./main 6 | CMD ./main -------------------------------------------------------------------------------- /2022/06-werf-kube-run/README.md: -------------------------------------------------------------------------------- 1 | A simple application written in Go to demonstrate how you can use [werf kube-run](https://werf.io/documentation/v1.2/reference/cli/werf_kube_run.html), 2 | a new [werf](https://github.com/werf/werf) command. 3 | 4 | You will need to have a Kubernetes environment, e.g. based on minikube or 5 | an access to any other K8s cluster where this app will run. 6 | 7 | This repo is intended to be used as a playground for a corresponding article: 8 | 9 | * «**[Running one-time tasks and debugging images in the Kubernetes cluster using werf](https://blog.flant.com/kubectl-run-tasks-in-kubernetes-with-werf/)**». 10 | * Russian version: «[Запуск одноразовых задач и отладка образов прямо в Kubernetes-кластере с помощью werf](https://habr.com/ru/company/flant/blog/671960/)». 11 | -------------------------------------------------------------------------------- /2022/06-werf-kube-run/go.mod: -------------------------------------------------------------------------------- 1 | module square 2 | 3 | go 1.18 4 | -------------------------------------------------------------------------------- /2022/06-werf-kube-run/main.go: -------------------------------------------------------------------------------- 1 | package main 2 | 3 | import ( 4 | "fmt" 5 | "strconv" 6 | ) 7 | 8 | // A function for calculating the area of a rectangle. 9 | func getArea(x, y int) (res int) { 10 | return x * y 11 | } 12 | 13 | func main() { 14 | fmt.Println("Rectangle area: " + strconv.Itoa(getArea(10, 10))) 15 | } 16 | -------------------------------------------------------------------------------- /2022/06-werf-kube-run/main_test.go: -------------------------------------------------------------------------------- 1 | package main 2 | 3 | import "testing" 4 | 5 | func testGetArea(t *testing.T) { 6 | 7 | got := getArea(3, 2) 8 | want := 6 9 | 10 | if got != want { 11 | t.Errorf("Expected %q, received %q", got, want) 12 | } 13 | } 14 | -------------------------------------------------------------------------------- /2022/06-werf-kube-run/werf.yaml: -------------------------------------------------------------------------------- 1 | project: werf-kuberun-app 2 | configVersion: 1 3 | 4 | --- 5 | image: kuberun 6 | dockerfile: Dockerfile -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/.dockerignore: -------------------------------------------------------------------------------- 1 | /.helm/ 2 | 3 | /log/* 4 | /tmp/* 5 | 6 | node_modules -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/.helm/templates/deployment.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: apps/v1 2 | kind: Deployment 3 | metadata: 4 | name: werf-first-app 5 | spec: 6 | replicas: 1 7 | selector: 8 | matchLabels: 9 | app: werf-first-app 10 | template: 11 | metadata: 12 | labels: 13 | app: werf-first-app 14 | spec: 15 | imagePullSecrets: 16 | - name: registrysecret 17 | containers: 18 | - name: app 19 | image: {{ .Values.werf.image.app }} 20 | command: ["npm", "start"] 21 | ports: 22 | - containerPort: 3000 23 | env: 24 | - name: DEBUG 25 | value: "app:*" 26 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/.helm/templates/ingress.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: networking.k8s.io/v1 2 | kind: Ingress 3 | metadata: 4 | annotations: 5 | kubernetes.io/ingress.class: nginx 6 | name: werf-first-app 7 | spec: 8 | rules: 9 | - host: werf-first-app.test 10 | http: 11 | paths: 12 | - path: / 13 | pathType: Prefix 14 | backend: 15 | service: 16 | name: werf-first-app 17 | port: 18 | number: 3000 19 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/.helm/templates/service.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | name: werf-first-app 5 | spec: 6 | selector: 7 | app: werf-first-app 8 | ports: 9 | - name: http 10 | port: 3000 11 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/.prettierrc.yaml: -------------------------------------------------------------------------------- 1 | singleQuote: true -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM node:12-alpine 2 | WORKDIR /app 3 | 4 | # [Welcome to Express
10 | 11 | 12 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/public/stylesheets/style.css: -------------------------------------------------------------------------------- 1 | body { 2 | padding: 50px; 3 | font: 14px 'Lucida Grande', Helvetica, Arial, sans-serif; 4 | } 5 | 6 | a { 7 | color: #00b7ff; 8 | } 9 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/routes/index.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | /* GET home page. */ 5 | router.get('/', function (req, res, next) { 6 | res.render('index', { title: 'Express' }); 7 | }); 8 | 9 | module.exports = router; 10 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/routes/ping.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | router.get('/', function (req, res, next) { 5 | res.send('Hello, werfer!\n'); 6 | }); 7 | 8 | module.exports = router; 9 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/01_basic_app/werf.yaml: -------------------------------------------------------------------------------- 1 | project: werf-first-app 2 | configVersion: 1 3 | 4 | --- 5 | image: app 6 | dockerfile: Dockerfile 7 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/.dockerignore: -------------------------------------------------------------------------------- 1 | /.helm/ 2 | 3 | /log/* 4 | /tmp/* 5 | 6 | node_modules -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/.helm/templates/deployment.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: apps/v1 2 | kind: Deployment 3 | metadata: 4 | name: werf-first-app 5 | spec: 6 | replicas: 1 7 | selector: 8 | matchLabels: 9 | app: werf-first-app 10 | template: 11 | metadata: 12 | labels: 13 | app: werf-first-app 14 | spec: 15 | imagePullSecrets: 16 | - name: registrysecret 17 | containers: 18 | - name: backend 19 | image: {{ .Values.werf.image.backend }} 20 | command: ["node", "./bin/www"] 21 | ports: 22 | - containerPort: 3000 23 | env: 24 | - name: NODE_ENV 25 | value: production 26 | - name: frontend 27 | image: {{ .Values.werf.image.frontend }} 28 | ports: 29 | - containerPort: 80 30 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/.helm/templates/ingress.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: networking.k8s.io/v1 2 | kind: Ingress 3 | metadata: 4 | annotations: 5 | kubernetes.io/ingress.class: nginx 6 | name: werf-first-app 7 | spec: 8 | rules: 9 | - host: werf-first-app.test 10 | http: 11 | paths: 12 | - path: / 13 | pathType: Prefix 14 | backend: 15 | service: 16 | name: werf-first-app 17 | port: 18 | number: 80 19 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/.helm/templates/service.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | name: werf-first-app 5 | spec: 6 | selector: 7 | app: werf-first-app 8 | ports: 9 | - name: http 10 | port: 80 11 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/.prettierrc.yaml: -------------------------------------------------------------------------------- 1 | singleQuote: true -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/package.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "app", 3 | "version": "0.0.0", 4 | "private": true, 5 | "scripts": { 6 | "start": "node ./bin/www", 7 | "build": "webpack" 8 | }, 9 | "dependencies": { 10 | "cookie-parser": "~1.4.4", 11 | "debug": "~2.6.9", 12 | "express": "~4.18.2", 13 | "pino": "^7.0.5", 14 | "pino-http": "^5.8.0" 15 | }, 16 | "devDependencies": { 17 | "css-loader": "^6.5.1", 18 | "css-minimizer-webpack-plugin": "^3.1.2", 19 | "html-webpack-plugin": "^5.5.0", 20 | "mini-css-extract-plugin": "^2.4.4", 21 | "webpack": "^5.76.0", 22 | "webpack-cli": "^4.9.1", 23 | "webpack-dev-middleware": "^5.2.1" 24 | } 25 | } 26 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/public/assets/javascripts/image.js: -------------------------------------------------------------------------------- 1 | import Logo from '../images/werf-logo.svg'; 2 | import '../stylesheets/image.css'; 3 | import '../stylesheets/style.css'; 4 | 5 | window.onload = function () { 6 | const btn = document.getElementById('show-image-btn'); 7 | btn.addEventListener('click', (_) => { 8 | fetch(Logo) 9 | .then((data) => data.text()) 10 | .then((html) => { 11 | const svgContainer = document.getElementById('container'); 12 | svgContainer.insertAdjacentHTML('beforeend', html); 13 | const svg = svgContainer.getElementsByTagName('svg')[0]; 14 | svg.setAttribute('id', 'image'); 15 | btn.remove(); 16 | }); 17 | }); 18 | }; 19 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/public/assets/javascripts/index.js: -------------------------------------------------------------------------------- 1 | import '../stylesheets/style.css'; 2 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/public/assets/stylesheets/image.css: -------------------------------------------------------------------------------- 1 | #container { 2 | height: 50vh; 3 | text-align: center; 4 | display: grid; 5 | } 6 | 7 | #image { 8 | margin: auto; 9 | height: auto; 10 | width: 30vh; 11 | } 12 | 13 | #show-image-btn { 14 | margin: auto; 15 | padding: 0.7em 1.5em; 16 | font-size: large; 17 | } 18 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/public/assets/stylesheets/style.css: -------------------------------------------------------------------------------- 1 | body { 2 | padding: 50px; 3 | font: 14px 'Lucida Grande', Helvetica, Arial, sans-serif; 4 | } 5 | 6 | a { 7 | color: #00b7ff; 8 | } 9 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/public/pages/image.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 |Welcome to werf guide. Visit the image page.
9 | 10 | 11 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/routes/image.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | /* Image page. */ 5 | router.get('/', express.static('dist/image.html')); 6 | 7 | module.exports = router; 8 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/020_assets/routes/index.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const path = require('path'); 3 | const router = express.Router(); 4 | 5 | // [Welcome to werf guide. Visit the image page.
9 | 10 | 11 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/030_db/routes/image.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | /* Image page. */ 5 | router.get('/', express.static('dist/image.html')); 6 | 7 | module.exports = router; 8 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/030_db/routes/index.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const path = require('path'); 3 | const router = express.Router(); 4 | 5 | /* GET home page. */ 6 | router.get('/', function (req, res, next) { 7 | res.sendFile(path.resolve(process.cwd(), 'dist', 'index.html')); 8 | }); 9 | 10 | router.get('/err', function (req, res, next) { 11 | throw new Error('Hello from an unhandler error'); 12 | }); 13 | 14 | module.exports = router; 15 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/030_db/routes/ping.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | router.get('/', function (req, res, next) { 5 | res.log.debug('we are being pinged'); 6 | res.send('Hello, werfer!\n'); 7 | }); 8 | 9 | module.exports = router; 10 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/030_db/werf.yaml: -------------------------------------------------------------------------------- 1 | project: werf-first-app 2 | configVersion: 1 3 | 4 | --- 5 | image: backend 6 | dockerfile: Dockerfile 7 | target: backend 8 | 9 | --- 10 | image: frontend 11 | dockerfile: Dockerfile 12 | target: frontend 13 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.dockerignore: -------------------------------------------------------------------------------- 1 | /.helm/ 2 | 3 | /log/* 4 | /tmp/* 5 | 6 | node_modules -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.helm/templates/database.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: apps/v1 2 | kind: StatefulSet 3 | metadata: 4 | name: mysql 5 | spec: 6 | serviceName: mysql 7 | selector: 8 | matchLabels: 9 | app: mysql 10 | template: 11 | metadata: 12 | labels: 13 | app: mysql 14 | spec: 15 | containers: 16 | - name: mysql 17 | image: mysql:5.7 18 | ports: 19 | - containerPort: 3306 20 | env: 21 | - name: MYSQL_ROOT_PASSWORD 22 | value: password 23 | volumeMounts: 24 | - name: mysql-data 25 | mountPath: /var/lib/mysql 26 | volumeClaimTemplates: 27 | - metadata: 28 | name: mysql-data 29 | spec: 30 | accessModes: ["ReadWriteOnce"] 31 | resources: 32 | requests: 33 | storage: 100Mi 34 | 35 | --- 36 | apiVersion: v1 37 | kind: Service 38 | metadata: 39 | name: mysql 40 | spec: 41 | selector: 42 | app: mysql 43 | ports: 44 | - port: 3306 45 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.helm/templates/ingress.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: networking.k8s.io/v1 2 | kind: Ingress 3 | metadata: 4 | annotations: 5 | kubernetes.io/ingress.class: nginx 6 | name: werf-first-app 7 | spec: 8 | rules: 9 | - host: werf-first-app.test 10 | http: 11 | paths: 12 | - path: / 13 | pathType: Prefix 14 | backend: 15 | service: 16 | name: werf-first-app 17 | port: 18 | number: 80 19 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.helm/templates/job-setup-minio.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: batch/v1 2 | kind: Job 3 | metadata: 4 | name: "setup-minio-rev{{ .Release.Revision }}" 5 | spec: 6 | backoffLimit: 0 7 | template: 8 | spec: 9 | restartPolicy: Never 10 | containers: 11 | - name: setup-minio 12 | image: minio/mc 13 | command: 14 | - sh 15 | - -euc 16 | - | 17 | is_minio_available() { 18 | tries=$1 19 | i=0 20 | while [ $i -lt $tries ]; do 21 | curl -sSL http://minio:9000/minio/health/live || return 1 22 | i=$((i+1)) 23 | sleep 1 24 | done 25 | } 26 | 27 | until is_minio_available 10; do 28 | sleep 1 29 | done 30 | 31 | mc alias set minio http://minio:9000 minioadmin minioadmin 32 | 33 | mc mb --ignore-existing minio/werf-first-app 34 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.helm/templates/service.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | name: werf-first-app 5 | spec: 6 | selector: 7 | app: werf-first-app 8 | ports: 9 | - name: http 10 | port: 80 11 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.helm/templates/storage.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: apps/v1 2 | kind: StatefulSet 3 | metadata: 4 | name: minio 5 | spec: 6 | serviceName: minio 7 | selector: 8 | matchLabels: 9 | app: minio 10 | template: 11 | metadata: 12 | labels: 13 | app: minio 14 | spec: 15 | containers: 16 | - name: minio 17 | image: minio/minio 18 | args: ["server", "/data", "--console-address", ":9001"] 19 | ports: 20 | - containerPort: 9000 21 | name: minio 22 | - containerPort: 9001 23 | name: console 24 | volumeMounts: 25 | - name: minio-data 26 | mountPath: /data 27 | volumeClaimTemplates: 28 | - metadata: 29 | name: minio-data 30 | spec: 31 | accessModes: ["ReadWriteOnce"] 32 | resources: 33 | requests: 34 | storage: 100Mi 35 | 36 | --- 37 | apiVersion: v1 38 | kind: Service 39 | metadata: 40 | name: minio 41 | spec: 42 | selector: 43 | app: minio 44 | ports: 45 | - port: 9000 46 | name: minio 47 | - port: 9001 48 | name: console 49 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.prettierrc.yaml: -------------------------------------------------------------------------------- 1 | singleQuote: true -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/.sequelizerc: -------------------------------------------------------------------------------- 1 | const path = require('path'); 2 | 3 | module.exports = { 4 | config: path.resolve('config', 'database.json'), 5 | 'models-path': path.resolve('db', 'models'), 6 | 'seeders-path': path.resolve('db', 'seeders'), 7 | 'migrations-path': path.resolve('db', 'migrations'), 8 | }; 9 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/config/database.json: -------------------------------------------------------------------------------- 1 | { 2 | "development": { 3 | "username": "root", 4 | "password": "null", 5 | "database": "werf-first-app", 6 | "host": "mysql", 7 | "dialect": "mysql" 8 | }, 9 | "test": { 10 | "username": "root", 11 | "password": null, 12 | "database": "werf-first-app", 13 | "host": "mysql", 14 | "dialect": "mysql" 15 | }, 16 | "production": { 17 | "username": "root", 18 | "password": "password", 19 | "database": "werf-first-app", 20 | "host": "mysql", 21 | "dialect": "mysql" 22 | } 23 | } 24 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/config/minio.json: -------------------------------------------------------------------------------- 1 | { 2 | "region": "us-east-1", 3 | "endpoint": { 4 | "protocol": "http", 5 | "hostname": "minio", 6 | "port": 9000, 7 | "path": "/" 8 | }, 9 | "bucket": "werf-first-app", 10 | "forcePathStyle": true, 11 | "credentials": { 12 | "accessKeyId": "minioadmin", 13 | "secretAccessKey": "minioadmin" 14 | } 15 | } 16 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/db/migrations/20211101064002-create-talker.js: -------------------------------------------------------------------------------- 1 | 'use strict'; 2 | module.exports = { 3 | up: async (queryInterface, Sequelize) => { 4 | await queryInterface.createTable('Talkers', { 5 | id: { 6 | allowNull: false, 7 | autoIncrement: true, 8 | primaryKey: true, 9 | type: Sequelize.INTEGER, 10 | }, 11 | answer: { 12 | type: Sequelize.STRING, 13 | }, 14 | name: { 15 | type: Sequelize.STRING, 16 | }, 17 | createdAt: { 18 | allowNull: false, 19 | type: Sequelize.DATE, 20 | }, 21 | updatedAt: { 22 | allowNull: false, 23 | type: Sequelize.DATE, 24 | }, 25 | }); 26 | }, 27 | down: async (queryInterface, Sequelize) => { 28 | await queryInterface.dropTable('Talkers'); 29 | }, 30 | }; 31 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/db/models/talker.js: -------------------------------------------------------------------------------- 1 | 'use strict'; 2 | const { Model } = require('sequelize'); 3 | module.exports = (sequelize, DataTypes) => { 4 | class Talker extends Model { 5 | /** 6 | * Helper method for defining associations. 7 | * This method is not a part of Sequelize lifecycle. 8 | * The `models/index` file will call this method automatically. 9 | */ 10 | static associate(models) { 11 | // define association here 12 | } 13 | } 14 | Talker.init( 15 | { 16 | answer: DataTypes.STRING, 17 | name: DataTypes.STRING, 18 | }, 19 | { 20 | sequelize, 21 | modelName: 'Talker', 22 | } 23 | ); 24 | return Talker; 25 | }; 26 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/package.json: -------------------------------------------------------------------------------- 1 | { 2 | "name": "app", 3 | "version": "0.0.0", 4 | "private": true, 5 | "scripts": { 6 | "start": "node ./bin/www", 7 | "build": "webpack" 8 | }, 9 | "dependencies": { 10 | "@aws-sdk/client-s3": "^3.515.0", 11 | "cookie-parser": "~1.4.4", 12 | "debug": "~2.6.9", 13 | "express": "~4.18.2", 14 | "express-async-handler": "^1.2.0", 15 | "express-fileupload": "^1.2.1", 16 | "mysql2": "^2.3.3-rc.0", 17 | "pino": "^7.0.5", 18 | "pino-http": "^5.8.0", 19 | "readable-web-to-node-stream": "^3.0.2", 20 | "sequelize": "^6.29.0", 21 | "sequelize-cli": "^6.3.0" 22 | }, 23 | "devDependencies": { 24 | "css-loader": "^6.5.1", 25 | "css-minimizer-webpack-plugin": "^3.1.2", 26 | "html-webpack-plugin": "^5.5.0", 27 | "mini-css-extract-plugin": "^2.4.4", 28 | "webpack": "^5.76.0", 29 | "webpack-cli": "^4.9.1", 30 | "webpack-dev-middleware": "^5.2.1" 31 | } 32 | } 33 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/public/assets/javascripts/image.js: -------------------------------------------------------------------------------- 1 | import Logo from '../images/werf-logo.svg'; 2 | import '../stylesheets/image.css'; 3 | import '../stylesheets/style.css'; 4 | 5 | window.onload = function () { 6 | const btn = document.getElementById('show-image-btn'); 7 | btn.addEventListener('click', (_) => { 8 | fetch(Logo) 9 | .then((data) => data.text()) 10 | .then((html) => { 11 | const svgContainer = document.getElementById('container'); 12 | svgContainer.insertAdjacentHTML('beforeend', html); 13 | const svg = svgContainer.getElementsByTagName('svg')[0]; 14 | svg.setAttribute('id', 'image'); 15 | btn.remove(); 16 | }); 17 | }); 18 | }; 19 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/public/assets/javascripts/index.js: -------------------------------------------------------------------------------- 1 | import '../stylesheets/style.css'; 2 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/public/assets/stylesheets/image.css: -------------------------------------------------------------------------------- 1 | #container { 2 | height: 50vh; 3 | text-align: center; 4 | display: grid; 5 | } 6 | 7 | #image { 8 | margin: auto; 9 | height: auto; 10 | width: 30vh; 11 | } 12 | 13 | #show-image-btn { 14 | margin: auto; 15 | padding: 0.7em 1.5em; 16 | font-size: large; 17 | } 18 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/public/assets/stylesheets/style.css: -------------------------------------------------------------------------------- 1 | body { 2 | padding: 50px; 3 | font: 14px 'Lucida Grande', Helvetica, Arial, sans-serif; 4 | } 5 | 6 | a { 7 | color: #00b7ff; 8 | } 9 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/public/pages/image.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 |Welcome to werf guide. Visit the image page.
9 | 10 | 11 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/routes/image.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | /* Image page. */ 5 | router.get('/', express.static('dist/image.html')); 6 | 7 | module.exports = router; 8 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/routes/index.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const path = require('path'); 3 | const router = express.Router(); 4 | 5 | /* GET home page. */ 6 | router.get('/', function (req, res, next) { 7 | res.sendFile(path.resolve(process.cwd(), 'dist', 'index.html')); 8 | }); 9 | 10 | router.get('/err', function (req, res, next) { 11 | throw new Error('Hello from an unhandler error'); 12 | }); 13 | 14 | module.exports = router; 15 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/routes/ping.js: -------------------------------------------------------------------------------- 1 | const express = require('express'); 2 | const router = express.Router(); 3 | 4 | router.get('/', function (req, res, next) { 5 | res.log.debug('we are being pinged'); 6 | res.send('Hello, werfer!\n'); 7 | }); 8 | 9 | module.exports = router; 10 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/040_s3/werf.yaml: -------------------------------------------------------------------------------- 1 | project: werf-first-app 2 | configVersion: 1 3 | 4 | --- 5 | image: backend 6 | dockerfile: Dockerfile 7 | target: backend 8 | 9 | --- 10 | image: frontend 11 | dockerfile: Dockerfile 12 | target: frontend 13 | -------------------------------------------------------------------------------- /2022/06-werf-nodejs/README.md: -------------------------------------------------------------------------------- 1 | A Node.js application used to demonstrate how you can build your app and deploy it 2 | to Kubernetes using [werf CI/CD tool](https://werf.io/). 3 | 4 | Each directory corresponds to the state of our Node.js application when we 5 | implement specific features in it: 6 | 7 | * [01_basic_app](01_basic_app/) is the initial, basic state of our app; 8 | * [020_assets](020_assets/) — when our app serves static assets; 9 | * [030_db](030_db/) — when we connect to MySQL database; 10 | * [040_s3](040_s3/) — when we use S3 storage for app's files. 11 | 12 | P.S. This code is heavily based on the relevant werf guide: 13 | [Node.js → Real-world apps](https://werf.io/guides/nodejs/200_real_apps.html). 14 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/01-template-data/01-pvc.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: pvc-template 5 | spec: 6 | accessModes: 7 | - ReadWriteOnce 8 | storageClassName: linstor-ssd-lvmthin-r2 9 | resources: 10 | requests: 11 | storage: 10Gi 12 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/01-template-data/02-pod.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Pod 3 | metadata: 4 | name: import-data 5 | annotations: 6 | spec: 7 | containers: 8 | - name: data-importer 9 | image: alpine:3.16 10 | command: 11 | - /bin/sh 12 | - -ec 13 | - | 14 | cat >/data/file.txt <<\EOT 15 | When you were here before 16 | Couldn't look you in the eye 17 | You're just like an angel 18 | Your skin makes me cry 19 | You float like a feather 20 | In a beautiful world 21 | I wish I was special 22 | You're so fuckin' special 23 | EOT 24 | echo "== data succefully imported into /data/file.txt" 25 | volumeMounts: 26 | - name: vol 27 | mountPath: /data 28 | terminationGracePeriodSeconds: 0 29 | volumes: 30 | - name: vol 31 | persistentVolumeClaim: 32 | claimName: pvc-template 33 | restartPolicy: Never 34 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/01-pvc.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: mypvc 5 | spec: 6 | accessModes: 7 | - ReadWriteOnce 8 | storageClassName: linstor-ssd-lvmthin-r2 9 | resources: 10 | requests: 11 | storage: 10Gi 12 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/02-pod.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Pod 3 | metadata: 4 | name: myapp-v10 5 | annotations: 6 | spec: 7 | containers: 8 | - name: myapp 9 | image: alpine:3.16 10 | command: 11 | - /bin/sh 12 | - -c 13 | - | 14 | echo "== version 1.0" 15 | 16 | echo "== list existing data" 17 | cat /data/file.txt 18 | 19 | echo "== running loop" 20 | while sleep 1; do 21 | date | tee -a /data/file.txt 22 | done 23 | volumeMounts: 24 | - name: vol 25 | mountPath: /data 26 | terminationGracePeriodSeconds: 0 27 | volumes: 28 | - name: vol 29 | persistentVolumeClaim: 30 | claimName: mypvc 31 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/03-clonned-pvc.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: mypvc-test 5 | spec: 6 | storageClassName: linstor-ssd-lvmthin-r2 7 | dataSource: 8 | name: mypvc 9 | kind: PersistentVolumeClaim 10 | accessModes: 11 | - ReadWriteOnce 12 | resources: 13 | requests: 14 | storage: 10Gi 15 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/04-pod.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Pod 3 | metadata: 4 | name: myapp-v11-test 5 | annotations: 6 | spec: 7 | containers: 8 | - name: myapp 9 | image: alpine:3.16 10 | command: 11 | - /bin/sh 12 | - -c 13 | - | 14 | uuid=$(cat /proc/sys/kernel/random/uuid) 15 | 16 | echo "== version 1.1" 17 | 18 | echo "== run migration" 19 | sed -i "/[^\t]/ s/^/${uuid}/" /data/file.txt 20 | 21 | echo "== list existing data" 22 | cat /data/file.txt 23 | 24 | echo "== running loop" 25 | while sleep 1; do 26 | echo -e "${uuid}\t$(date)" | tee -a /data/file.txt 27 | done 28 | volumeMounts: 29 | - name: vol 30 | mountPath: /data 31 | terminationGracePeriodSeconds: 0 32 | volumes: 33 | - name: vol 34 | persistentVolumeClaim: 35 | claimName: mypvc-test 36 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/05-pod.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Pod 3 | metadata: 4 | name: myapp-v11-test 5 | annotations: 6 | spec: 7 | containers: 8 | - name: myapp 9 | image: alpine:3.16 10 | command: 11 | - /bin/sh 12 | - -c 13 | - | 14 | uuid=$(cat /proc/sys/kernel/random/uuid) 15 | 16 | echo "== version 1.1" 17 | 18 | echo "== run migration" 19 | sed -i "/[^\t]/ s/^/${uuid}\t/" /data/file.txt 20 | 21 | echo "== list existing data" 22 | cat /data/file.txt 23 | 24 | echo "== running loop" 25 | while sleep 1; do 26 | echo -e "${uuid}\t$(date)" | tee -a /data/file.txt 27 | done 28 | volumeMounts: 29 | - name: vol 30 | mountPath: /data 31 | terminationGracePeriodSeconds: 0 32 | volumes: 33 | - name: vol 34 | persistentVolumeClaim: 35 | claimName: mypvc-test 36 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/06-snapshot.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: snapshot.storage.k8s.io/v1 2 | kind: VolumeSnapshot 3 | metadata: 4 | name: mypvc-before-upgrade 5 | spec: 6 | volumeSnapshotClassName: linstor 7 | source: 8 | persistentVolumeClaimName: mypvc 9 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/07-pod.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Pod 3 | metadata: 4 | name: myapp-v11 5 | annotations: 6 | spec: 7 | containers: 8 | - name: myapp 9 | image: alpine:3.16 10 | command: 11 | - /bin/sh 12 | - -c 13 | - | 14 | uuid=$(cat /proc/sys/kernel/random/uuid) 15 | 16 | echo "== version 1.1" 17 | 18 | echo "== run migration" 19 | sed -i "/[^\t]/ s/^/${uuid}\t/" /data/file.txt 20 | 21 | echo "== list existing data" 22 | cat /data/file.txt 23 | 24 | echo "== running loop" 25 | while sleep 1; do 26 | echo -e "${uuid}\t$(date)" | tee -a /data/file.txt 27 | done 28 | volumeMounts: 29 | - name: vol 30 | mountPath: /data 31 | terminationGracePeriodSeconds: 0 32 | volumes: 33 | - name: vol 34 | persistentVolumeClaim: 35 | claimName: mypvc 36 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/08-snapshot.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: snapshot.storage.k8s.io/v1 2 | kind: VolumeSnapshot 3 | metadata: 4 | name: mypvc-after-upgrade 5 | spec: 6 | volumeSnapshotClassName: linstor 7 | source: 8 | persistentVolumeClaimName: mypvc 9 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/02-upgrade-app/09-restore-snapshot.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: mypvc 5 | spec: 6 | storageClassName: linstor-ssd-lvmthin-r2 7 | dataSource: 8 | name: mypvc-before-upgrade 9 | kind: VolumeSnapshot 10 | apiGroup: snapshot.storage.k8s.io 11 | accessModes: 12 | - ReadWriteOnce 13 | resources: 14 | requests: 15 | storage: 10Gi 16 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/01-pvc.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: db-data 5 | spec: 6 | accessModes: 7 | - ReadWriteOnce 8 | storageClassName: linstor-ssd-lvmthin-r2 9 | resources: 10 | requests: 11 | storage: 10Gi 12 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/02-pod.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Pod 3 | metadata: 4 | name: mydb 5 | annotations: 6 | spec: 7 | containers: 8 | - name: mydb 9 | image: alpine:3.16 10 | command: 11 | - /bin/sh 12 | - -c 13 | - | 14 | echo "== list existing data" 15 | cat /data/file.txt 16 | 17 | echo "== running loop" 18 | while sleep 1; do 19 | date | tee -a /data/file.txt 20 | done 21 | volumeMounts: 22 | - name: vol 23 | mountPath: /data 24 | terminationGracePeriodSeconds: 0 25 | volumes: 26 | - name: vol 27 | persistentVolumeClaim: 28 | claimName: db-data 29 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/03-volume-snapshot-class.yaml: -------------------------------------------------------------------------------- 1 | kind: VolumeSnapshotClass 2 | apiVersion: snapshot.storage.k8s.io/v1 3 | metadata: 4 | name: linstor-minio 5 | driver: linstor.csi.linbit.com 6 | deletionPolicy: Retain 7 | parameters: 8 | snap.linstor.csi.linbit.com/type: S3 9 | snap.linstor.csi.linbit.com/remote-name: minio 10 | snap.linstor.csi.linbit.com/allow-incremental: "false" 11 | snap.linstor.csi.linbit.com/s3-bucket: foo 12 | snap.linstor.csi.linbit.com/s3-endpoint: XX.XXX.XX.XXX.nip.io 13 | snap.linstor.csi.linbit.com/s3-signing-region: minio 14 | snap.linstor.csi.linbit.com/s3-use-path-style: "true" 15 | csi.storage.k8s.io/snapshotter-secret-name: linstor-minio 16 | csi.storage.k8s.io/snapshotter-secret-namespace: minio 17 | --- 18 | kind: Secret 19 | apiVersion: v1 20 | metadata: 21 | name: linstor-minio 22 | namespace: minio 23 | immutable: true 24 | type: linstor.csi.linbit.com/s3-credentials.v1 25 | stringData: 26 | access-key: minio 27 | secret-key: minio123 28 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/04-snapshot.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: snapshot.storage.k8s.io/v1 2 | kind: VolumeSnapshot 3 | metadata: 4 | name: mydb-backup1 5 | spec: 6 | volumeSnapshotClassName: linstor-minio 7 | source: 8 | persistentVolumeClaimName: db-data 9 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/05-pvc.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: db-data-recovered 5 | spec: 6 | storageClassName: linstor-ssd-lvmthin-r2 7 | dataSource: 8 | name: mydb-backup1 9 | kind: VolumeSnapshot 10 | apiGroup: snapshot.storage.k8s.io 11 | accessModes: 12 | - ReadWriteOnce 13 | resources: 14 | requests: 15 | storage: 10Gi 16 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/06-get-backups.sh: -------------------------------------------------------------------------------- 1 | linstor backup list minio 2 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/07-volumesnapshotcontent.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: snapshot.storage.k8s.io/v1 2 | kind: VolumeSnapshotContent 3 | metadata: 4 | name: example-backup-from-s3 5 | spec: 6 | deletionPolicy: Delete 7 | driver: linstor.csi.linbit.com 8 | source: 9 | snapshotHandle: snapshot-9db78a7b-a9ba-4825-9009-673c7ebab043 10 | volumeSnapshotClassName: linstor-minio 11 | volumeSnapshotRef: 12 | apiVersion: snapshot.storage.k8s.io/v1 13 | kind: VolumeSnapshot 14 | name: example-backup-from-s3 15 | namespace: new-cluster 16 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/08-volumesnapshot.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: snapshot.storage.k8s.io/v1 2 | kind: VolumeSnapshot 3 | metadata: 4 | name: example-backup-from-s3 5 | spec: 6 | source: 7 | volumeSnapshotContentName: example-backup-from-s3 8 | volumeSnapshotClassName: linstor-minio 9 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/09-pvc.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: PersistentVolumeClaim 3 | metadata: 4 | name: db-data 5 | spec: 6 | storageClassName: linstor-ssd-lvmthin-r2 7 | dataSource: 8 | name: example-backup-from-s3 9 | kind: VolumeSnapshot 10 | apiGroup: snapshot.storage.k8s.io 11 | accessModes: 12 | - ReadWriteOnce 13 | resources: 14 | requests: 15 | storage: 10Gi 16 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/03-backups-with-linstor/minio/01-minio-connect.sh: -------------------------------------------------------------------------------- 1 | kubectl port-forward -n minio svc/minio 9000:9000 40061:40061 2 | -------------------------------------------------------------------------------- /2022/08-snapshot-controller/README.md: -------------------------------------------------------------------------------- 1 | Here are examples for using the snapshot-controller in Kubernetes. -------------------------------------------------------------------------------- /2022/10-canary-example/.helm/templates/10-nginx-config.yaml: -------------------------------------------------------------------------------- 1 | {{ $name := printf "%s%s" (.Chart.Name) (.Values.global.canary_deploy) }} 2 | --- 3 | apiVersion: v1 4 | kind: ConfigMap 5 | metadata: 6 | name: {{ $name }}-configmap 7 | data: 8 | nginx.conf: | 9 | error_log /dev/stderr; 10 | events { 11 | worker_connections 100000; 12 | multi_accept on; 13 | } 14 | http { 15 | charset utf-8; 16 | 17 | server { 18 | listen 80; 19 | index index.html; 20 | root /app; 21 | error_log /dev/stderr; 22 | location / { 23 | try_files $uri /index.html$is_args$args; 24 | } 25 | } 26 | } 27 | -------------------------------------------------------------------------------- /2022/10-canary-example/.helm/templates/30-ingress.yaml: -------------------------------------------------------------------------------- 1 | {{ $name := printf "%s%s" (.Chart.Name) (.Values.global.canary_deploy) }} 2 | apiVersion: networking.k8s.io/v1 3 | kind: Ingress 4 | metadata: 5 | name: {{ $name }} 6 | {{- if ne .Values.global.canary_deploy "" }} 7 | annotations: 8 | nginx.ingress.kubernetes.io/canary: "true" 9 | nginx.ingress.kubernetes.io/canary-weight: "30" 10 | # nginx.ingress.kubernetes.io/canary-by-header: {{ $.Values.global.canary_header | quote }} 11 | # nginx.ingress.kubernetes.io/canary-by-header-value: {{ $.Values.global.canary_header_value | quote }} 12 | {{- end }} 13 | spec: 14 | rules: 15 | - host: {{ pluck .Values.global.env .Values.nginx.url | first | default .Values.nginx.url._default }} 16 | http: 17 | paths: 18 | - path: "/" 19 | pathType: Prefix 20 | backend: 21 | service: 22 | name: {{ $name }} 23 | port: 24 | number: 80 -------------------------------------------------------------------------------- /2022/10-canary-example/.helm/values.yaml: -------------------------------------------------------------------------------- 1 | nginx: 2 | url: 3 | _default: "my.awesome.domain" 4 | -------------------------------------------------------------------------------- /2022/10-canary-example/README.md: -------------------------------------------------------------------------------- 1 | Here are examples for implement canary releases in Kubernetes using Ingress. -------------------------------------------------------------------------------- /2022/10-canary-example/index.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | Wow! I'm canary nginx! 5 | 6 | -------------------------------------------------------------------------------- /2022/10-canary-example/werf-giterminism.yaml: -------------------------------------------------------------------------------- 1 | giterminismConfigVersion: 1 2 | cli: 3 | allowCustomTags: true 4 | config: 5 | goTemplateRendering: 6 | allowEnvVariables: 7 | - CANARY_DEPLOY 8 | - CI_HELM_RELEASE -------------------------------------------------------------------------------- /2022/10-canary-example/werf.yaml: -------------------------------------------------------------------------------- 1 | project: canary-example 2 | configVersion: 1 3 | deploy: 4 | helmRelease: '[[ project ]]{{ env "CI_HELM_RELEASE" }}' 5 | namespace: "[[ project ]]" 6 | 7 | --- 8 | image: nginx 9 | from: nginx:stable 10 | git: 11 | - add: / 12 | to: /app 13 | excludePaths: 14 | - .helm 15 | - werf.yaml 16 | - .getlab-ci.yml -------------------------------------------------------------------------------- /2022/11-d8-user-authn/clean_up.sh: -------------------------------------------------------------------------------- 1 | kubectl delete dexprovider openldap-demo 2 | kubectl delete user openldap-demo 3 | kubectl delete ns openldap-demo 4 | -------------------------------------------------------------------------------- /2022/11-d8-user-authn/dex-authenticator.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1 3 | kind: DexAuthenticator 4 | metadata: 5 | name: echoserver 6 | namespace: openldap-demo 7 | spec: 8 | applicationDomain: echo.{{ __cluster__domain__ }} 9 | sendAuthorizationHeader: false 10 | applicationIngressClassName: "nginx" 11 | allowedGroups: 12 | - developers 13 | -------------------------------------------------------------------------------- /2022/11-d8-user-authn/dex-user.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1 3 | kind: User 4 | metadata: 5 | name: openldap-demo 6 | spec: 7 | email: openldap-demo@example.com 8 | # echo "bar" | htpasswd -BinC 10 "" | cut -d: -f2 9 | password: '$2a$10$spCnoGzDIRicDfiTmtImwu7sn2Csjj6oWRoLjNs6N/bV3WDsxioui' 10 | ttl: 2h 11 | -------------------------------------------------------------------------------- /2022/11-redis-keydb/Dockerfile: -------------------------------------------------------------------------------- 1 | FROM scratch 2 | COPY redis-latency /redis-latency 3 | CMD ["/redis-latency"] -------------------------------------------------------------------------------- /2022/11-redis-keydb/README.md: -------------------------------------------------------------------------------- 1 | Here are examples for testing the Redis response. 2 | 3 | Application sets key in Redis-cluster every 1 second and export latency metrics in Prometheus format: max, min and average time of operation. 4 | 5 | Docker: 6 | 7 | ``` 8 | docker pull trublast/redis-latency 9 | ``` 10 | 11 | Build: 12 | 13 | ``` 14 | CGO_ENABLED=0 GOOS=linux GOARCH=amd64 go build -a -tags netgo -ldflags '-w' -o redis-latency *.go 15 | ``` -------------------------------------------------------------------------------- /2022/11-redis-keydb/go.mod: -------------------------------------------------------------------------------- 1 | module main.go 2 | 3 | go 1.19 4 | 5 | require ( 6 | github.com/go-redis/redis/v8 v8.11.5 7 | github.com/prometheus/client_golang v1.13.1 8 | ) 9 | 10 | require ( 11 | github.com/beorn7/perks v1.0.1 // indirect 12 | github.com/cespare/xxhash/v2 v2.1.2 // indirect 13 | github.com/dgryski/go-rendezvous v0.0.0-20200823014737-9f7001d12a5f // indirect 14 | github.com/golang/protobuf v1.5.2 // indirect 15 | github.com/matttproud/golang_protobuf_extensions v1.0.1 // indirect 16 | github.com/prometheus/client_model v0.2.0 // indirect 17 | github.com/prometheus/common v0.37.0 // indirect 18 | github.com/prometheus/procfs v0.8.0 // indirect 19 | golang.org/x/sys v0.0.0-20220520151302-bc2c85ada10a // indirect 20 | google.golang.org/protobuf v1.28.1 // indirect 21 | ) 22 | -------------------------------------------------------------------------------- /2022/12-netflow/.helm/templates/dashboard.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1alpha1 3 | kind: GrafanaDashboardDefinition 4 | metadata: 5 | name: iptnetflow 6 | spec: 7 | folder: Applications 8 | definition: | 9 | {{ .Files.Get "dashboards/iptnetflow.json" | nindent 4 }} 10 | --- 11 | apiVersion: deckhouse.io/v1alpha1 12 | kind: GrafanaDashboardDefinition 13 | metadata: 14 | name: nodegraph 15 | spec: 16 | folder: Applications 17 | definition: | 18 | {{ .Files.Get "dashboards/nodegraph.json" | nindent 4 }} -------------------------------------------------------------------------------- /2022/12-netflow/.helm/templates/datasource.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: deckhouse.io/v1 2 | kind: GrafanaAdditionalDatasource 3 | metadata: 4 | name: iptnetflow 5 | spec: 6 | access: Proxy 7 | jsonData: 8 | url: http://{{ .Chart.Name }}-nodegraph.{{ .Release.Namespace }}.svc.cluster.local:5000 9 | type: hamedkarbasi93-nodegraphapi-datasource 10 | -------------------------------------------------------------------------------- /2022/12-netflow/.helm/templates/nodeconfig.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: deckhouse.io/v1alpha1 2 | kind: NodeGroupConfiguration 3 | metadata: 4 | name: iptnetflow.sh 5 | spec: 6 | weight: 100 7 | bundles: 8 | - "*" 9 | nodeGroups: 10 | - "*" 11 | content: | 12 | dpkg -s iptables-netflow-dkms || ( apt-get update && apt-get install -y iptables-netflow-dkms ) 13 | lsmod | grep ipt_NETFLOW || modprobe ipt_NETFLOW protocol=9 14 | [ "$(sysctl -n net.netflow.destination)" = "{{ .Values.collector.ip }}:2055" ] || sysctl -w net.netflow.destination={{ .Values.collector.ip }}:2055 15 | [ "$(sysctl -n net.netflow.protocol)" = "9" ] || sysctl -w net.netflow.protocol=9 16 | iptables -C FORWARD -i cni0 -j NETFLOW || iptables -I FORWARD -i cni0 -j NETFLOW 17 | -------------------------------------------------------------------------------- /2022/12-netflow/.helm/templates/rbac.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: v1 3 | kind: ServiceAccount 4 | metadata: 5 | name: iptnetflow-sa 6 | --- 7 | apiVersion: rbac.authorization.k8s.io/v1 8 | kind: ClusterRole 9 | metadata: 10 | name: iptnetflow 11 | rules: 12 | - apiGroups: [""] 13 | resources: ["pods"] 14 | verbs: ["get", "watch", "list"] 15 | - apiGroups: ["monitoring.coreos.com"] 16 | resourceNames: ["main","longterm"] 17 | resources: ["prometheuses/http"] 18 | verbs: ["get"] 19 | --- 20 | apiVersion: rbac.authorization.k8s.io/v1 21 | kind: ClusterRoleBinding 22 | metadata: 23 | name: iptnetflow 24 | roleRef: 25 | apiGroup: rbac.authorization.k8s.io 26 | kind: ClusterRole 27 | name: iptnetflow 28 | subjects: 29 | - kind: ServiceAccount 30 | name: iptnetflow-sa 31 | namespace: iptnetflow 32 | -------------------------------------------------------------------------------- /2022/12-netflow/.helm/values.yaml: -------------------------------------------------------------------------------- 1 | collector: 2 | ip: 10.222.156.111 3 | -------------------------------------------------------------------------------- /2023/03-monitoring/README.md: -------------------------------------------------------------------------------- 1 | # Steps 2 | 3 | ## Install VictoriaMetrics 4 | 5 | See [**victoria-metrics.txt**](./victoria-metrics.txt) for more details. 6 | 7 | ## Add PrometheusRemoteWrite 8 | 9 | * Apply [**prometheus-remote-write**](./prometheus-remote-write.yaml) manifests to the cluster. 10 | 11 | ## Add VictoriaMetrics datasource to Grafana 12 | 13 | * Apply [**grafana-additional-datasource**](./grafana-additional-datasource.yaml) manifests to the cluster. 14 | * Show Grafana `Explore` page and query metrics from VictoriaMetrics. 15 | 16 | ## Add an alert that is always firing 17 | 18 | * Apply [**custom-prometheus-rule**](./custom-prometheus-rule.yaml) manifests to the cluster. 19 | * Show the alerts page in Prometheus. 20 | 21 | ## Add a brand new Grafana dashboard 22 | 23 | * Apply [**grafana-dashboard-definition**](./grafana-dashboard-definition.yaml) manifests to the cluster. 24 | * Show the dashboards page in Grafana. 25 | 26 | ## Deploy Custom alertmanager 27 | 28 | * Apply [**alertmanager**](./alertmanager.yaml) manifests to the cluster. 29 | * Show the starting page of Alertmanager. 30 | 31 | # Cleaning 32 | 33 | Execute [**clean_up.sh**](./clean_up.sh) 34 | -------------------------------------------------------------------------------- /2023/03-monitoring/alertmanager.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1alpha1 3 | kind: CustomAlertmanager 4 | metadata: 5 | name: telegram 6 | spec: 7 | type: Internal 8 | internal: 9 | route: 10 | groupBy: [ 'job' ] 11 | groupWait: 30s 12 | groupInterval: 5m 13 | repeatInterval: 12h 14 | receiver: 'telegram' 15 | receivers: 16 | - name: telegram 17 | telegramConfigs: 18 | - botToken: 19 | key: token 20 | name: telegram-bot-secret 21 | chatID: 111 22 | -------------------------------------------------------------------------------- /2023/03-monitoring/clean_up.sh: -------------------------------------------------------------------------------- 1 | #!/bin/sh 2 | 3 | # Copyright 2022 Flant JSC 4 | # 5 | # Licensed under the Apache License, Version 2.0 (the "License"); 6 | # you may not use this file except in compliance with the License. 7 | # You may obtain a copy of the License at 8 | # 9 | # http://www.apache.org/licenses/LICENSE-2.0 10 | # 11 | # Unless required by applicable law or agreed to in writing, software 12 | # distributed under the License is distributed on an "AS IS" BASIS, 13 | # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. 14 | # See the License for the specific language governing permissions and 15 | # limitations under the License. 16 | 17 | kubectl delete prometheusremotewrite victoria-metrics 18 | kubectl delete grafanaadditionaldatasource victoria-metrics 19 | kubectl delete customprometheusrules always-firing-alert 20 | kubectl delete grafanadashboarddefinitions up-services 21 | kubectl delete customalertmanager telegram 22 | 23 | helm uninstall victoria-metrics -n victoria-metrics-test 24 | kubectl delete ns victoria-metrics-test 25 | -------------------------------------------------------------------------------- /2023/03-monitoring/custom-prometheus-rule.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1 3 | kind: CustomPrometheusRules 4 | metadata: 5 | name: always-firing-alert 6 | spec: 7 | groups: 8 | - name: cluster-state-alert.rules 9 | rules: 10 | - alert: PrometheusCanScrapeTragets 11 | annotations: 12 | description: This is a fake alert only for a demo. 13 | summary: The alers shows that Prometheus can scrape tragets. 14 | expr: | 15 | up{job="deckhouse"} 16 | -------------------------------------------------------------------------------- /2023/03-monitoring/grafana-additional-datasource.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1 3 | kind: GrafanaAdditionalDatasource 4 | metadata: 5 | name: victoria-metrics 6 | spec: 7 | access: Proxy 8 | basicAuth: false 9 | jsonData: 10 | timeInterval: 30s 11 | type: prometheus 12 | url: http://victoria-metrics-victoria-metrics-single-server.victoria-metrics-test.svc.cluster.local:8428/ 13 | -------------------------------------------------------------------------------- /2023/03-monitoring/prometheus-remote-write.yaml: -------------------------------------------------------------------------------- 1 | --- 2 | apiVersion: deckhouse.io/v1 3 | kind: PrometheusRemoteWrite 4 | metadata: 5 | name: victoria-metrics 6 | spec: 7 | url: http://victoria-metrics-victoria-metrics-single-server.victoria-metrics-test.svc.cluster.local:8428/api/v1/write 8 | -------------------------------------------------------------------------------- /2023/03-monitoring/victoria-metrics.txt: -------------------------------------------------------------------------------- 1 | https://github.com/VictoriaMetrics/helm-charts 2 | 3 | $ helm repo add vm https://victoriametrics.github.io/helm-charts/ 4 | $ helm repo update 5 | $ helm upgrade --install victoria-metrics vm/victoria-metrics-single --namespace victoria-metrics-test --create-namespace 6 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/.gitignore: -------------------------------------------------------------------------------- 1 | # ---> Go 2 | # If you prefer the allow list template instead of the deny list, see community template: 3 | # https://github.com/github/gitignore/blob/main/community/Golang/Go.AllowList.gitignore 4 | # 5 | # Binaries for programs and plugins 6 | *.exe 7 | *.exe~ 8 | *.dll 9 | *.so 10 | *.dylib 11 | 12 | # Test binary, built with `go test -c` 13 | *.test 14 | 15 | # Output of the go coverage tool, specifically when used with LiteIDE 16 | *.out 17 | 18 | # Dependency directories (remove the comment below to include it) 19 | # vendor/ 20 | 21 | # Go workspace file 22 | go.work 23 | 24 | # IntellijIdea files 25 | *.iml 26 | .idea 27 | out 28 | 29 | *.DS_Store 30 | ._* -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/.helm/templates/ingress.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: networking.k8s.io/v1 2 | kind: Ingress 3 | metadata: 4 | annotations: 5 | kubernetes.io/ingress.class: nginx 6 | name: habr-app 7 | spec: 8 | rules: 9 | - host: habrapp.example.com 10 | http: 11 | paths: 12 | - path: / 13 | pathType: Prefix 14 | backend: 15 | service: 16 | name: habr-app 17 | port: 18 | number: 8080 19 | tls: 20 | - hosts: 21 | - habrapp.example.com 22 | secretName: habr-app-tls -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/.helm/templates/job-db-setup-and-migrate.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: batch/v1 2 | kind: Job 3 | metadata: 4 | # Версия Helm-релиза в имени Job заставит Job каждый раз пересоздаваться. 5 | # Так мы сможем обойти то, что Job неизменяема. 6 | name: "setup-and-migrate-db-rev{{ .Release.Revision }}" 7 | spec: 8 | backoffLimit: 0 9 | template: 10 | spec: 11 | restartPolicy: Never 12 | initContainers: 13 | - name: waiting-mysql 14 | image: alpine:3.6 15 | command: [ '/bin/sh', '-c', 'while ! nc -z mysql 3306; do sleep 1; done' ] 16 | containers: 17 | - name: setup-and-migrate-db 18 | image: {{ .Values.werf.image.app }} 19 | command: ["/migrations/migrate", "-database", "mysql://root:password@tcp(mysql:3306)/habr-app", "-path", "/migrations/schemes", "up"] 20 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/.helm/templates/service.yaml: -------------------------------------------------------------------------------- 1 | apiVersion: v1 2 | kind: Service 3 | metadata: 4 | name: habr-app 5 | spec: 6 | selector: 7 | app: habr-app 8 | ports: 9 | - name: http 10 | port: 8080 11 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/Dockerfile: -------------------------------------------------------------------------------- 1 | # Используем многоступенчатую сборку образа (multi-stage build) 2 | # Образ, в котором будет собираться проект 3 | FROM golang:1.18-alpine AS build 4 | # Устанавливаем curl и tar. 5 | RUN apk add curl tar 6 | # Копируем исходники приложения 7 | COPY . /app 8 | WORKDIR /app 9 | # Скачиваем утилиту migrate и распаковываем полученный архив. 10 | RUN curl -L https://github.com/golang-migrate/migrate/releases/download/v4.16.2/migrate.linux-amd64.tar.gz | tar xvz 11 | # Запускаем загрузку нужных пакетов. 12 | RUN go mod download 13 | # Запускаем сборку приложения. 14 | RUN go build -o /goapp cmd/main.go 15 | 16 | # Образ, который будет разворачиваться в кластере. 17 | FROM alpine:latest 18 | WORKDIR / 19 | # Копируем из сборочного образа исполняемый файл проекта. 20 | COPY --from=build /goapp /goapp 21 | # Копируем из сборочного образа распакованный файл утилиты migrate и схемы миграции. 22 | COPY --from=build /app/migrate /migrations/migrate 23 | COPY db/migrations /migrations/schemes 24 | # Копируем файлы ассетов и шаблоны. 25 | COPY ./templates /templates 26 | EXPOSE 8080 27 | ENTRYPOINT ["/goapp"] 28 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/README.md: -------------------------------------------------------------------------------- 1 | # An application for deployment to a cluster managed by Deckhouse. 2 | 3 | 4 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/cmd/main.go: -------------------------------------------------------------------------------- 1 | package main 2 | 3 | import "habr_app/internal/app" 4 | 5 | func main() { 6 | app.Run() 7 | } 8 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/db/migrations/000001_create_talkers_table.down.sql: -------------------------------------------------------------------------------- 1 | DROP TABLE IF EXISTS talkers; -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/db/migrations/000001_create_talkers_table.up.sql: -------------------------------------------------------------------------------- 1 | CREATE TABLE talkers ( 2 | id INTEGER NOT NULL PRIMARY KEY AUTO_INCREMENT, 3 | message TEXT NOT NULL, 4 | name TEXT NOT NULL 5 | ); -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/internal/app/app.go: -------------------------------------------------------------------------------- 1 | package app 2 | 3 | import ( 4 | "habr_app/internal/common" 5 | "habr_app/internal/controllers" 6 | "net/http" 7 | 8 | "github.com/gin-gonic/gin" 9 | ) 10 | 11 | func Run() { 12 | route := gin.New() 13 | route.Use(gin.Recovery()) 14 | route.Use(common.JsonLogger()) 15 | 16 | route.LoadHTMLGlob("templates/*") 17 | 18 | route.GET("/", func(context *gin.Context) { 19 | context.HTML(http.StatusOK, "index.html", gin.H{}) 20 | }) 21 | 22 | route.GET("/remember", controllers.RememberController) 23 | route.GET("/say", controllers.SayController) 24 | 25 | err := route.Run() 26 | if err != nil { 27 | return 28 | } 29 | } 30 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/internal/common/json_logger_filter.go: -------------------------------------------------------------------------------- 1 | package common 2 | 3 | import ( 4 | "encoding/json" 5 | "github.com/gin-gonic/gin" 6 | ) 7 | 8 | func JsonLogger() gin.HandlerFunc { 9 | return gin.LoggerWithFormatter( 10 | func(params gin.LogFormatterParams) string { 11 | log := make(map[string]interface{}) 12 | 13 | log["status_code"] = params.StatusCode 14 | log["path"] = params.Path 15 | log["method"] = params.Method 16 | log["start_time"] = params.TimeStamp.Format("2023/01/02 - 13:04:05") 17 | log["remote_addr"] = params.ClientIP 18 | log["response_time"] = params.Latency.String() 19 | 20 | str, _ := json.Marshal(log) 21 | return string(str) + "\n" 22 | }, 23 | ) 24 | } 25 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/internal/services/db_service.go: -------------------------------------------------------------------------------- 1 | package services 2 | 3 | import "os" 4 | 5 | func GetDBCredentials() (string, string) { 6 | dbType := os.Getenv("DB_TYPE") 7 | dbName := os.Getenv("DB_NAME") 8 | dbUser := os.Getenv("DB_USER") 9 | dbPasswd := os.Getenv("DB_PASSWD") 10 | dbHost := os.Getenv("DB_HOST") 11 | dbPort := os.Getenv("DB_PORT") 12 | return dbType, dbUser + ":" + dbPasswd + "@tcp(" + dbHost + ":" + dbPort + ")/" + dbName 13 | } 14 | -------------------------------------------------------------------------------- /2023/08-deckhouse-werf/templates/remember.html: -------------------------------------------------------------------------------- 1 | 2 | 3 | 4 | 5 | 6 |