MKIt - Micro Kubernetes on Ruby

This is micro kubernetes(tm) on Ruby(tm), a simple tool to deploy containers to mimic a (very) minimalistic k8 cluster with a nice REST API.

It's also a frontend for docker, providing an easier way for your services to be locally available, without the need to care about local ports availability.

It contains an internal DNS and uses HAProxy as ingress for Pod access. The database is a simple sqlite3 db and the server is a Sinatra based application.

A client is also included to access the API, e.g. mkit ps.

The daemon is responsible for HAProxy pods routing configuration. It also provides the cluster DNS and manages the internal host interface and the pod instances.

Requirements

  • Ruby
  • HAProxy
  • Docker
  • Linux (iproute2 package)

Note: in order to have ssl support, you must install openssl-dev package (e.g. libssl-dev on Ubuntu) prior to install MKIt gem, due to eventmachine gem native extensions.

Install

This is a simple ruby gem, so to install execute:

# gem install mkit

Configuration

Server configuration

On startup, the server configuration will be created on /etc/mkit.

The server will available by default on https://localhost:4567 but you can configure server startup parameters on /etc/mkit/mkitd_config.sh

Please check systemd or daemontools directories for more details.

# /etc/mkit/mkitd_config.sh
#
# mkitd server options (for systemd unit | daemontools)
#
OPTIONS=""
# e.g. OPTIONS="-b 0.0.0.0"

HAProxy config directory and control commands are defined on mkit_config.yml

# /etc/mkit/mkit_config.yml - mkit server configuration file. 
mkit:
  my_network:
    ip: 10.210.198.1
  haproxy:
    config_dir: /etc/haproxy/haproxy.d
    ctrl:
      start:   systemctl start   haproxy
      stop:    systemctl stop    haproxy
      reload:  systemctl reload  haproxy
      restart: systemctl restart haproxy
      status:  systemctl status  haproxy
  database:
    env: development
  clients:
    - id: client_1_id
    - id: client_2_id
    - ...

You must configure haproxy to use config directory. for example on Ubuntu:

# /etc/default/haproxy

# Defaults file for HAProxy
#
# This is sourced by both, the initscript and the systemd unit file, so do not
# treat it as a shell script fragment.

# Change the config file location if needed
CONFIG="/etc/haproxy/haproxy.d"

# Add extra flags here, see haproxy(1) for a few options
#EXTRAOPTS="-de -m 16"

Authorization

To access MKIt server API, you must add each client id to server configuration:

# /etc/mkit/mkit_config.yml - mkit server configuration file. 
mkit:
  my_network:
...
  clients:
    - id: client_1_id
    - id: client_2_id
    - ...

Client configuration

On mkit first call, default configuration will be copied to $HOME/.mkit with localdefault profile set.

You must call mkit init to initialize client configuration.

Client identification key (my_id) will be generated, printed out to console and saved to the client's configuration file.

You may edit the local configuration file to add more servers and change active profile with $mkit profile set <profile_name>, e.g. $mkit profile set server_2

# ~/.mkit/mkitc_config.yml
mkit:
  local: 
    server.uri: https://localhost:4567
  server_2:  # you can add more servers. change the client active profile with mkit profile command
    server.uri: https://192.168.29.232:4567
my_id: unique_id # this id is generated running mkit init

Service

service:
  name: rabbitmq # unique. Available on internal DNS as 'rabbitmq'
  image: rabbitmq:3-management-alpine # image
  network: bridge # docker network - it will be created if it does not exists
  ports:  # haproxy port mapping
          #   <external_port>:[internal_port]:<tcp|http>:[round_robin (default)|leastconn]
          # to define a range on `external_port`, leave `internal_port` blank
          #   - 5000-5100::tcp:round_robin
          #   range on `internal_port` is not supported
          # ssl suport
          #   <external_port>:[internal_port]:<tcp|http>:round_robin|leastconn[:ssl[,<cert.pem>(mkit.pem default)>]]
          #   e.g.
          #  - 443:80:http:round_robin:ssl # uses mkitd default crt file (mkit.pem)
          #  - 443:80:http:round_robin:ssl,/etc/pki/foo.pem # custom crt file full path
    - 5672:5672:tcp:round_robin
    - 80:15672:http:round_robin
  resources:
    min_replicas: 1 # default value. Pods will be available on internal DNS as '<service_name>.internal'
    max_replicas: 1 # default value
  volumes:
    - docker://mkit_rabbitmq_data:/var/lib/rabbitmq # a docker volume - it will be created if it does not exists
    - /var/log/rabbitmq/logs:/var/log/rabbitmq # a local volume
  environment:
    RABBITMQ_DEFAULT_USER: admin
    RABBITMQ_DEFAULT_PASS: admin
    RABBITMQ_DEFAULT_VHOST: mkit

Running

The mkitd server daemon requires root user (due to ip and haproxy). After installing the gem, server and client will be available on host.

# mkitd  --help
Usage: mkitd [options]
    -c config-dir                    set the config dir (default is /etc/mkit)
    -p port                          set the port (default is 4567)
    -b bind                          specify bind address (e.g. 0.0.0.0)
    -e env                           set the environment (default is development)
    -o addr                          alias for '-b' option
        --no-ssl                     disable ssl - use http for local server. (default is https)
        --ssl-key-file PATH          Path to private key (default mkit internal)
        --ssl-cert-file PATH         Path to certificate (default mkit internal)

There's also samples for systemd and daemontools as well for some miscellaneous spps.

Accessing the API

A client is provided to interact with MKIt server.

Run mkit help for a list of current supported commands.

Usage: mkit <command> [options]

Micro k8s on Ruby - a simple tool to mimic a (very) minimalistic k8 cluster

Commands:

init         init mkit client
ps           show services status (alias for status)
status       show services status
start        start service
stop         stop service
restart      restart service
create       create new service
update       update service
get          print service configuration
rm           remove service
exec         execute a command in a running pod
logs         view service logs
version      prints mkit client and server version
proxy        haproxy status and control
profile      mkit client configuration profile

Run ' mkit help <command>' for specific command information.

Example:

$ mkit ps
+----+-------+---------------+-------------------+--------------+---------+
| id | name  |     addr      |       ports       |     pods     | status  |
+----+-------+---------------+-------------------+--------------+---------+
| 1  | mongo | 10.210.198.10 | tcp/27017         | 106e2b59cb11 | RUNNING |
| 2  | nexus | 10.210.198.11 | http/80,https/443 | 68e239e5102a | RUNNING |
+----+-------+---------------+-------------------+--------------+---------+

The service mongo is available on IP 10.210.198.10:27017 The service nexus is available on IP 10.210.198.11:80 and on port 443 with ssl.

Note: Don't forget to call mkit init to initialize client configuration and to add the client-id to the server authorized clients list.

Development

  • build the gem
    • rake package
  • console
    • rake console

Contributing

  • Fork it
  • Create your feature branch (git checkout -b my-new-feature)
  • Commit your changes (git commit -am 'Add some feature')
  • Push to the branch (git push origin my-new-feature)
  • Create new Pull Request

Thanks

For my kids. :)