This example assumes a built Landscaper, a local Helm setup and a kubectl configured to a working Kubernetes cluster.
The example landscape deploys a hello-world Chart. This Chart echoes a specified message to stdout every n seconds.
From a terminal, locally serve it with:
cd $GOPATH/src/github.com/eneco/landscaper/example/charts
helm lint */ && helm package */
helm serve
The example landscape deploys two instances of hello-world.
landscape/hello-kubernetes.yaml greets Kubernetes people; the landscape/hello-world.yaml welcomes a landscaped world.
From another terminal, dry-run the landscape:
cd $GOPATH/src/github.com/eneco/landscaper
./build/landscaper apply --dir example/landscape --namespace example --dry-run
When happy with the output of the Landscaper, deploy the hello-worlds for real by omitting --dry-run:
./build/landscaper apply --dir example/landscape --namespace example
To inspect the deployment:
kubectl get pods --namespace example
Output should be similar to:
NAME READY STATUS RESTARTS AGE
example-hello-kubernetes-hello-world-2511913442-n29c8 1/1 Running 0 25s
example-hello-world-hello-world-3610099532-w0shn 1/1 Running 0 25s
Inspect the output of the deployments with:
kubectl logs --namespace example <one pod>
kubectl logs --namespace example <the other pod>
But wait! hello-kubernetes contained a typo! Change the message yourself by editting hello-kubernetes.yaml or use the fixed landscape provided in example/landscape-fixed:
./build/landscaper apply --dir example/landscape-fixed --namespace example
Instead of manually invoking Landscaper you can also tell it to run in a loop and it will apply the modified landscape the next time it runs its synchronization loop.
./build/landscaper apply --loop --loop-interval 1m --dir example/landscape-fixed --namespace example
This time, modify the landscape in-place and see that landscaper will update your cluster after about a minute.
Change the specification of one of the landscape files of the second example. E.g. change the desired message to "Hello, Looped world!".
- message: Hello, Landscaped world!
+ message: Hello, Looped world!
Save the file and wait for landscaper to apply it.
Landscaper can manage secrets. For a component that has secrets, a companion Kubernetes Secret object is created, with the same name as the Helm release. The keys inside the secret object are specified in the secrets section of a landscape file. The values of the secret are obtained from the environment the landscaper runs in, looking for an environment variable name that is uppercase and hyphens are replaced with underscores.
For example, consider the secrets section of secretive.yaml:
secrets:
- hello-name
- hello-ageFor this section, Landscaper creates an object with then name of the Release, and with two keys hello-name and hello-age that are set to the values from environment variables HELLO_NAME and HELLO_AGE respectively. In the Chart, the secret values are obtained as follows:
secretKeyRef:
name: {{ .Values.secretsRef }}
key: hello-nameHere, secretsRef is filled in by Landscaper with the name of the Secret object, which is identical to the Helm Release.
To make things a bit more concrete, run:
HELLO_NAME=rumpelstiltskin HELLO_AGE=42 ./build/landscaper apply --namespace example --dir example/landscape-complex
Upon success, kubectl get secret --namespace example should contain a Secret object named example-secretive. Use kubectl get pods --namespace example to obtain the exact pod name, and inspecting its output with kubectl --namespace example logs example-secretive-hello-secret-EXACT-NAME should give output similar to:
Tue Dec 20 08:34:10 UTC 2016 | my name is rumpelstiltskin and I am 42 years old
By default landscaper always delete the old secrets during the update of a component.
A workaround to avoid deleting the old secrets with the same name as of the component you can use the flag --disable deleteSecrets during the landscaper apply.
That would only work if the new landscaper object have no secrets.
Loop mode is especially useful when watching a remote Git repository, so that whenever a PR got merged Landscaper will automatically apply the changes. We can use the Git repo sync image to constantly check out the latest commit of a branch and share this path with Landscaper running as a separate container in the same pod.
Below is an example of a deployment that runs Landscaper as a container in a pod in loop mode. It is pointed to the local folder /git/some-repo. It shares this folder with a git-sync container which will populate the folder with the contents of the master branch of the Git repository at https://github.com/you/some-repo.git every minute.
There's one gotcha, though: the very first Landscaper run after each pod creation will remove everything as the Git repo hasn't been synced yet. Use with caution until we find a way around that issue.
apiVersion: extensions/v1beta1
kind: Deployment
metadata:
name: landscaper
labels:
app: landscaper
spec:
template:
metadata:
labels:
app: landscaper
spec:
containers:
- name: landscaper
image: eneco/landscaper:latest
args:
- /usr/bin/landscaper
- apply
- --dir=/git/some-repo
- --namespace=landscaper-test
- --loop
- --loop-interval=1m
- --verbose
volumeMounts:
- mountPath: /git
name: landscaper
readOnly: true
- name: git-sync
image: gcr.io/google-containers/git-sync:v2.0.4
args:
- --branch=master
- --repo=https://github.com/you/some-repo.git
- --root=/git
- --dest=some-repo
- --wait=60
- --username=you
- --password=yourtoken
securityContext:
runAsUser: 0
volumeMounts:
- mountPath: /git
name: landscaper
volumes:
- name: landscaper
emptyDir:
medium: Memory