MKIt - Micro Kubernetes on Ruby
This is micro kubernetes(tm) on Ruby(tm), a simple tool to deploy containers to mimic a (very) minimalistic k8 cluster with a nice REST API.
It's also a frontend for docker
, providing an easier way for your services to be locally available, without the need to care about local ports
availability.
It contains an internal DNS and uses HAProxy as ingress for Pod access. The database is a simple sqlite3 db and the server is a Sinatra based application.
A client is also included to access the API, e.g. mkit ps
.
The daemon is responsible for HAProxy pods routing configuration. It also provides the cluster DNS and manages the internal host interface and the pod instances.
Requirements
- Ruby
- HAProxy
- Docker
- Linux (iproute2 package)
Note: in order to have ssl support, you must install openssl-dev
package (e.g. libssl-dev
on Ubuntu) prior to install MKIt gem, due to eventmachine
gem native extensions.
Install
This is a simple ruby gem, so to install execute:
# gem install mkit
Configuration
Server configuration
On startup, the server configuration will be created on /etc/mkit
.
The server will available by default on https://localhost:4567
but you can configure server startup parameters on /etc/mkit/mkitd_config.sh
Please check systemd or daemontools directories for more details.
# /etc/mkit/mkitd_config.sh
#
# mkitd server options (for systemd unit | daemontools)
#
OPTIONS=""
# e.g. OPTIONS="-b 0.0.0.0"
HAProxy config directory and control commands are defined on mkit_config.yml
# /etc/mkit/mkit_config.yml - mkit server configuration file.
mkit:
my_network:
ip: 10.210.198.1
haproxy:
config_dir: /etc/haproxy/haproxy.d
ctrl:
start: systemctl start haproxy
stop: systemctl stop haproxy
reload: systemctl reload haproxy
restart: systemctl restart haproxy
status: systemctl status haproxy
database:
env: development
clients:
- id: client_1_id
- id: client_2_id
- ...
You must configure haproxy
to use config directory. for example on Ubuntu:
# /etc/default/haproxy
# Defaults file for HAProxy
#
# This is sourced by both, the initscript and the systemd unit file, so do not
# treat it as a shell script fragment.
# Change the config file location if needed
CONFIG="/etc/haproxy/haproxy.d"
# Add extra flags here, see haproxy(1) for a few options
#EXTRAOPTS="-de -m 16"
Authorization
To access MKIt server API, you must add each client id
to server configuration:
# /etc/mkit/mkit_config.yml - mkit server configuration file.
mkit:
my_network:
...
clients:
- id: client_1_id
- id: client_2_id
- ...
Client configuration
On mkit
first call, default configuration will be copied to $HOME/.mkit
with local
default profile set.
You must call mkit init
to initialize client configuration.
Client identification key (my_id
) will be generated, printed out to console and saved to the client's configuration file.
You may edit the local configuration file to add more servers and change active profile with $mkit profile set <profile_name>
, e.g. $mkit profile set server_2
# ~/.mkit/mkitc_config.yml
mkit:
local:
server.uri: https://localhost:4567
server_2: # you can add more servers. change the client active profile with mkit profile command
server.uri: https://192.168.29.232:4567
my_id: unique_id # this id is generated running mkit init
Service
service:
name: rabbitmq # unique. Available on internal DNS as 'rabbitmq'
image: rabbitmq:3-management-alpine # image
network: bridge # docker network - it will be created if it does not exists
ports: # haproxy port mapping
# <external_port>:[internal_port]:<tcp|http>:[round_robin (default)|leastconn]
# to define a range on `external_port`, leave `internal_port` blank
# - 5000-5100::tcp:round_robin
# range on `internal_port` is not supported
# ssl suport
# <external_port>:[internal_port]:<tcp|http>:round_robin|leastconn[:ssl[,<cert.pem>(mkit.pem default)>]]
# e.g.
# - 443:80:http:round_robin:ssl # uses mkitd default crt file (mkit.pem)
# - 443:80:http:round_robin:ssl,/etc/pki/foo.pem # custom crt file full path
- 5672:5672:tcp:round_robin
- 80:15672:http:round_robin
resources:
min_replicas: 1 # default value. Pods will be available on internal DNS as '<service_name>.internal'
max_replicas: 1 # default value
volumes:
- docker://mkit_rabbitmq_data:/var/lib/rabbitmq # a docker volume - it will be created if it does not exists
- /var/log/rabbitmq/logs:/var/log/rabbitmq # a local volume
environment:
RABBITMQ_DEFAULT_USER: admin
RABBITMQ_DEFAULT_PASS: admin
RABBITMQ_DEFAULT_VHOST: mkit
Running
The mkitd server daemon
requires root
user (due to ip
and haproxy
).
After installing the gem, server and client will be available on host.
# mkitd --help
Usage: mkitd [options]
-c config-dir set the config dir (default is /etc/mkit)
-p port set the port (default is 4567)
-b bind specify bind address (e.g. 0.0.0.0)
-e env set the environment (default is development)
-o addr alias for '-b' option
--no-ssl disable ssl - use http for local server. (default is https)
--ssl-key-file PATH Path to private key (default mkit internal)
--ssl-cert-file PATH Path to certificate (default mkit internal)
There's also samples for systemd and daemontools as well for some miscellaneous spps.
Accessing the API
A client is provided to interact with MKIt server.
Run mkit help
for a list of current supported commands.
Usage: mkit <command> [options]
Micro k8s on Ruby - a simple tool to mimic a (very) minimalistic k8 cluster
Commands:
init init mkit client
ps show services status (alias for status)
status show services status
start start service
stop stop service
restart restart service
create create new service
update update service
get print service configuration
rm remove service
exec execute a command in a running pod
logs view service logs
version prints mkit client and server version
proxy haproxy status and control
profile mkit client configuration profile
Run ' mkit help <command>' for specific command information.
Example:
$ mkit ps
+----+-------+---------------+-------------------+--------------+---------+
| id | name | addr | ports | pods | status |
+----+-------+---------------+-------------------+--------------+---------+
| 1 | mongo | 10.210.198.10 | tcp/27017 | 106e2b59cb11 | RUNNING |
| 2 | nexus | 10.210.198.11 | http/80,https/443 | 68e239e5102a | RUNNING |
+----+-------+---------------+-------------------+--------------+---------+
The service mongo
is available on IP 10.210.198.10:27017
The service nexus
is available on IP 10.210.198.11:80
and on port 443
with ssl.
Note: Don't forget to call mkit init
to initialize client configuration and to add the client-id
to the server authorized clients list.
Development
- build the gem
rake package
- console
rake console
Contributing
- Fork it
- Create your feature branch (git checkout -b my-new-feature)
- Commit your changes (git commit -am 'Add some feature')
- Push to the branch (git push origin my-new-feature)
- Create new Pull Request
Thanks
For my kids. :)