Last active
January 13, 2021 23:07
-
-
Save dcanadillas/cf43d5a01eda484427e6f9c288ab8819 to your computer and use it in GitHub Desktop.
HashiCups L7 Traffic for Consul
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # --- | |
| # apiVersion: v1 | |
| # kind: Service | |
| # metadata: | |
| # name: frontend-v2 | |
| # labels: | |
| # app: frontend | |
| # spec: | |
| # type: ClusterIP | |
| # ports: | |
| # - port: 80 | |
| # targetPort: 80 | |
| # selector: | |
| # app: frontend | |
| # --- | |
| # apiVersion: v1 | |
| # kind: ServiceAccount | |
| # metadata: | |
| # name: frontend | |
| # automountServiceAccountToken: true | |
| # --- | |
| # apiVersion: v1 | |
| # kind: ConfigMap | |
| # metadata: | |
| # name: nginx-configmap | |
| # data: | |
| # config: | | |
| # # /etc/nginx/conf.d/default.conf | |
| # server { | |
| # listen 80; | |
| # server_name localhost; | |
| # #charset koi8-r; | |
| # #access_log /var/log/nginx/host.access.log main; | |
| # location / { | |
| # root /usr/share/nginx/html; | |
| # index index.html index.htm; | |
| # } | |
| # # Proxy pass the api location to save CORS | |
| # # Use location exposed by Consul connect | |
| # location /api { | |
| # proxy_pass http://127.0.0.1:8080; | |
| # proxy_http_version 1.1; | |
| # proxy_set_header Upgrade $http_upgrade; | |
| # proxy_set_header Connection "Upgrade"; | |
| # proxy_set_header Host $host; | |
| # } | |
| # error_page 500 502 503 504 /50x.html; | |
| # location = /50x.html { | |
| # root /usr/share/nginx/html; | |
| # } | |
| # } | |
| --- | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| name: frontend-v2 | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| service: frontend | |
| app: frontend | |
| template: | |
| metadata: | |
| labels: | |
| service: frontend | |
| app: frontend | |
| annotations: | |
| prometheus.io/scrape: "true" | |
| prometheus.io/port: "9102" | |
| consul.hashicorp.com/connect-inject: "true" | |
| consul.hashicorp.com/connect-service-upstreams: "public-api:8080" | |
| consul.hashicorp.com/service-tags: "v2" | |
| consul.hashicorp.com/connect-service-protocol: "http" | |
| spec: | |
| serviceAccountName: frontend | |
| volumes: | |
| - name: config | |
| configMap: | |
| name: nginx-configmap | |
| items: | |
| - key: config | |
| path: default.conf | |
| containers: | |
| - name: frontend | |
| image: hashicorpdemoapp/frontend:v0.0.4 | |
| ports: | |
| - containerPort: 80 | |
| volumeMounts: | |
| - name: config | |
| mountPath: /etc/nginx/conf.d | |
| readOnly: true | |
| lifecycle: | |
| postStart: | |
| exec: | |
| command: ["/bin/sh", "-c", "sed -i 's/html{padding:0/html{padding:0;background: rgb(141,250,236)/' /usr/share/nginx/html/index.html"] | |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| name: frontend | |
| labels: | |
| app: frontend | |
| spec: | |
| type: ClusterIP | |
| ports: | |
| - port: 80 | |
| targetPort: 80 | |
| selector: | |
| app: frontend | |
| --- | |
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: frontend | |
| automountServiceAccountToken: true | |
| --- | |
| apiVersion: v1 | |
| kind: ConfigMap | |
| metadata: | |
| name: nginx-configmap | |
| data: | |
| config: | | |
| # /etc/nginx/conf.d/default.conf | |
| server { | |
| listen 80; | |
| server_name localhost; | |
| #charset koi8-r; | |
| #access_log /var/log/nginx/host.access.log main; | |
| location / { | |
| root /usr/share/nginx/html; | |
| index index.html index.htm; | |
| } | |
| # Proxy pass the api location to save CORS | |
| # Use location exposed by Consul connect | |
| location /api { | |
| proxy_pass http://127.0.0.1:8080; | |
| proxy_http_version 1.1; | |
| proxy_set_header Upgrade $http_upgrade; | |
| proxy_set_header Connection "Upgrade"; | |
| proxy_set_header Host $host; | |
| } | |
| error_page 500 502 503 504 /50x.html; | |
| location = /50x.html { | |
| root /usr/share/nginx/html; | |
| } | |
| } | |
| --- | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| name: frontend | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| service: frontend | |
| app: frontend | |
| template: | |
| metadata: | |
| labels: | |
| service: frontend | |
| app: frontend | |
| annotations: | |
| prometheus.io/scrape: "true" | |
| prometheus.io/port: "9102" | |
| consul.hashicorp.com/connect-inject: "true" | |
| consul.hashicorp.com/connect-service-upstreams: "public-api:8080" | |
| consul.hashicorp.com/service-tags: "v1" | |
| consul.hashicorp.com/connect-service-protocol: "http" | |
| spec: | |
| serviceAccountName: frontend | |
| volumes: | |
| - name: config | |
| configMap: | |
| name: nginx-configmap | |
| items: | |
| - key: config | |
| path: default.conf | |
| containers: | |
| - name: frontend | |
| image: hashicorpdemoapp/frontend:v0.0.4 | |
| ports: | |
| - containerPort: 80 | |
| volumeMounts: | |
| - name: config | |
| mountPath: /etc/nginx/conf.d | |
| readOnly: true |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Kind = "ingress-gateway" | |
| Name = "ingress-gateway" | |
| Listeners = [ | |
| { | |
| Port = 8080 | |
| Protocol = "http" | |
| Services = [ | |
| { | |
| Name = "frontend" | |
| Hosts = "*" | |
| } | |
| ] | |
| } | |
| ] |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| name: payments | |
| labels: | |
| app: payments | |
| spec: | |
| type: ClusterIP | |
| ports: | |
| - port: 8080 | |
| targetPort: 8080 | |
| selector: | |
| app: payments | |
| --- | |
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: payments | |
| automountServiceAccountToken: true | |
| --- | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| name: payments | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| service: payments | |
| app: payments | |
| template: | |
| metadata: | |
| annotations: | |
| consul.hashicorp.com/connect-inject: "true" | |
| consul.hashicorp.com/connect-service: payments | |
| consul.hashicorp.com/connect-service-protocol: http | |
| creationTimestamp: null | |
| labels: | |
| service: payments | |
| app: payments | |
| spec: | |
| containers: | |
| - image: hashicorpdemoapp/payments:v0.0.3 | |
| imagePullPolicy: Always | |
| name: payments | |
| ports: | |
| - containerPort: 8080 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| name: postgres | |
| labels: | |
| app: postgres | |
| spec: | |
| type: ClusterIP | |
| ports: | |
| - port: 5432 | |
| targetPort: 5432 | |
| selector: | |
| app: postgres | |
| --- | |
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: postgres | |
| automountServiceAccountToken: true | |
| --- | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| name: postgres | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| service: postgres | |
| app: postgres | |
| template: | |
| metadata: | |
| labels: | |
| service: postgres | |
| app: postgres | |
| annotations: | |
| prometheus.io/scrape: "true" | |
| prometheus.io/port: "9102" | |
| consul.hashicorp.com/connect-inject: "true" | |
| consul.hashicorp.com/connect-service-protocol: "tcp" | |
| spec: | |
| serviceAccountName: postgres | |
| containers: | |
| - name: postgres | |
| image: hashicorpdemoapp/product-api-db:v0.0.11 | |
| ports: | |
| - containerPort: 5432 | |
| env: | |
| - name: POSTGRES_DB | |
| value: products | |
| - name: POSTGRES_USER | |
| value: postgres | |
| - name: POSTGRES_PASSWORD | |
| value: password | |
| # only listen on loopback so only access is via connect proxy | |
| args: ["-c", "listen_addresses=127.0.0.1"] | |
| volumeMounts: | |
| - mountPath: "/var/lib/postgresql/data" | |
| name: "pgdata" | |
| volumes: | |
| - name: pgdata | |
| emptyDir: {} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| # Service to expose web frontend | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| name: product-api | |
| spec: | |
| selector: | |
| app: product-api | |
| ports: | |
| - name: http | |
| protocol: TCP | |
| port: 9090 | |
| targetPort: 9090 | |
| --- | |
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: product-api | |
| automountServiceAccountToken: true | |
| --- | |
| apiVersion: v1 | |
| kind: ConfigMap | |
| metadata: | |
| name: db-configmap | |
| data: | |
| config: | | |
| { | |
| "db_connection": "host=localhost port=5432 user=postgres password=password dbname=products sslmode=disable", | |
| "bind_address": ":9090", | |
| "metrics_address": ":9103" | |
| } | |
| --- | |
| # Web frontend | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| name: product-api | |
| labels: | |
| app: product-api | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| app: product-api | |
| template: | |
| metadata: | |
| labels: | |
| app: product-api | |
| annotations: | |
| prometheus.io/scrape: "true" | |
| prometheus.io/port: "9102" | |
| consul.hashicorp.com/connect-inject: "true" | |
| consul.hashicorp.com/connect-service-upstreams: "postgres:5432" | |
| spec: | |
| serviceAccountName: product-api | |
| volumes: | |
| - name: config | |
| configMap: | |
| name: db-configmap | |
| items: | |
| - key: config | |
| path: conf.json | |
| containers: | |
| - name: product-api | |
| image: hashicorpdemoapp/product-api:v0.0.11 | |
| ports: | |
| - containerPort: 9090 | |
| - containerPort: 9103 | |
| env: | |
| - name: "CONFIG_FILE" | |
| value: "/config/conf.json" | |
| livenessProbe: | |
| httpGet: | |
| path: /health | |
| port: 9090 | |
| initialDelaySeconds: 15 | |
| timeoutSeconds: 1 | |
| periodSeconds: 10 | |
| failureThreshold: 30 | |
| volumeMounts: | |
| - name: config | |
| mountPath: /config | |
| readOnly: true |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --- | |
| apiVersion: v1 | |
| kind: Service | |
| metadata: | |
| name: public-api | |
| labels: | |
| app: public-api | |
| spec: | |
| type: ClusterIP | |
| ports: | |
| - port: 8080 | |
| targetPort: 8080 | |
| selector: | |
| app: public-api | |
| --- | |
| apiVersion: v1 | |
| kind: ServiceAccount | |
| metadata: | |
| name: public-api | |
| automountServiceAccountToken: true | |
| --- | |
| apiVersion: apps/v1 | |
| kind: Deployment | |
| metadata: | |
| name: public-api | |
| spec: | |
| replicas: 1 | |
| selector: | |
| matchLabels: | |
| service: public-api | |
| app: public-api | |
| template: | |
| metadata: | |
| labels: | |
| service: public-api | |
| app: public-api | |
| annotations: | |
| prometheus.io/scrape: "true" | |
| prometheus.io/port: "9102" | |
| consul.hashicorp.com/connect-inject: "true" | |
| consul.hashicorp.com/connect-service-upstreams: "product-api:9090,payments:9091" | |
| consul.hashicorp.com/service-tags: "v1" | |
| consul.hashicorp.com/connect-service-protocol: "http" | |
| spec: | |
| serviceAccountName: public-api | |
| containers: | |
| - name: public-api | |
| image: hashicorpdemoapp/public-api:v0.0.1 | |
| ports: | |
| - containerPort: 8080 | |
| env: | |
| - name: BIND_ADDRESS | |
| value: ":8080" | |
| - name: PRODUCTS_API_URI | |
| value: "http://localhost:9090" | |
| - name: PAYMENT_API_URI | |
| value: "http://localhost:9091" |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Kind": "service-resolver", | |
| "Name": "frontend", | |
| "DefaultSubset": "v1", | |
| "Subsets": { | |
| "v1": { | |
| "Filter": "Service.Tags contains v1" | |
| }, | |
| "v2": { | |
| "Filter": "Service.Tags contains v2" | |
| } | |
| } | |
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "Kind": "service-splitter", | |
| "Name": "frontend", | |
| "Splits": [ | |
| { | |
| "Weight": 50, | |
| "ServiceSubset": "v1" | |
| }, | |
| { | |
| "Weight": 90, | |
| "ServiceSubset": "v2" | |
| } | |
| ] | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment