Over the last couple of weekends I’ve been noodling around with my home lab set up to build a full local environment to test out FlowForge with both the Kubernetes Container and Docker Drivers.
The other reason to put all this together is to help to work the right way to put together a proper CI pipeline to build, automatically test and deploy to our staging environment.
This is somewhere to push the various FlowForge NodeJS modules so they can then be installed while building the container images for the FlowForge App and the Project Container Stacks.
This is a private registry so that I can push pre-release builds without them slipping out in to the public domain, but also so I can delete releases and reuse version numbers which is not allowed on the public NPM registry.
I’m using the Verdaccio registry as I’ve used this in the past to host custom Node-RED nodes (which it will probably end up doing again in this set up as things move forwards). This runs as Docker container and I use my Nginx instance to reverse proxy for it.
As well as hosting my private builds it can proxy for the public npmjs.org regisry which speeds up local builds.
Docker Container Registry
This is somewhere to push the Docker containers that represent both the FlowForge app it’s self and the containers that represent the Project Stacks.
Docker ship a container image available that will run a registry.
As well as the registry I’m also running second container with this web UI project to help keep track of what I’ve pushed to the registry and also allows me to delete tags which is useful when testing
Helm Chart Repository
This isn’t really needed, as you can generate all the required files with the
helm command and host the results on any Web server, but this lets me test the whole stack end to end.
I’m using a package called ChartMuseum which will automatically generate
index.yaml manifest file when charts are uploaded via it’s simple UI.
All of the previous components have been stood up as virtual hosts on my public Nginx instance so that they can get HTTPS certificates from LetsEncrypt. This is makes things a lot easier because both Docker and Kubernetes basically require the container registry be secure by default.
While it is possible to add exceptions for specific registries, these days it’s just easier to do it “properly” up front.
And finally I need a Kubernetes cluster to run all this on. In this case I have a 3 node cluster made up of
- 2 Raspberry Pi 4s with 8gb of RAM each
- 1 Intel Celeron based mini PC with 8gb of RAM
All 3 of these are running 64bit Ubuntu 20.04 and MicroK8s. The Intel machine is needed at the moment because the de facto standard PostrgresSQL Helm Chat only have amd64 based containers at the moment so won’t run on the Raspberry Pi based nodes.
The cluster uses the NFS Persistent Volume provisioner to store volumes on my local
I’ll write some more detailed posts about how I’ve configured each of these components and then how I’m using them.
As well as testing the full Helm chart builds, I can also use this to run the FlowForge app locally and have the Kubernetes Container driver running locally on my development machine and have it create Projects in the Kubernetes cluster.