Building unbreakable automated multi-stage pipelines with keptn workshop given @Lakeside Hackfest 2019
In this workshop, you will get hands-on experience with the open source framework keptn and see how it can help you to manage your cloud-native applications on Kubernetes.
- For a great workshop experience, we ask you to keep track of your completed tasks. Therefore, please open this spreadsheet and enter your name.
- Dynatrace - Create an account for a trial Dynatrace SaaS tenant and create a PaaS and API token. See details in the keptn docs.
- GitHub - A GitHub account is required and a personal access token with the permissions Keptn expects. See details in the keptn docs.
- Cloud provider account - Highly recommended to sign up for personal free trial to have full admin rights and to not cause any issues with your enterprise account. Links to free trials:
Keptn expects all the code repositories and project files to be in the same GitHub organization.
-
GitHub Organization - You can create an organization using the instruction on GitHub.
Suggested GitHub organization name:
<your last name>-keptn-hackfest-<cloud provider>, e.g.,braeuer-keptn-hackfest-gcloud
In this workshop, we are going to use a pre-built Docker image that already has all required tools installed. The only requirement is that you have Docker installed on your machine, or you can use the Google Cloud Shell if you have a Google account.
-
Option A: Docker local - You can install Docker using the instructions on the Docker homepage.
-
Option B: Docker in Google Cloud Shell - Just go to Google Cloud and activate Cloud Shell as shown below:
Activate Cloud Shell
-
Now, it's time to set up your workshop environment. During the setup, you will need the following values. We recommend copying the following lines into an editor, fill them out and keep them as a reference for later:
Dynatrace Host Name (e.g. abc12345.live.dynatrace.com): Dynatrace API Token: Dynatrace PaaS Token: GitHub User Name: GitHub Personal Access Token: GitHub User Email: GitHub Organization: PaaS Resource Prefix (e.g. lastname): ======== Azure only ========= Azure Subscription ID: Azure Location: francecentral ======== GKE only =========== Google Project: Google Cluster Zone: us-east1-b Google Cluster Region: us-east1Note: The Azure Subscription ID can be found in your Azure console:
Show screenshot
Note: The Google Project can be found at the top bar of your GCP console:
Show screenshot
-
To start the docker container you will use for this workshop, please execute:
docker run -d -t jbraeuer/keptn-demo:0.2 -
Afterwards, you can SSH into this container. First, retrieve the
CONTAINER_IDof thekeptn-democontainer. Then, use that ID to SSH into the container:docker psdocker exec -it <CONTAINER_ID> /bin/sh -c "[ -e /bin/bash ] && /bin/bash || /bin/sh" -
When you are in the container, you need to log in to your PaaS account (GCP or AKS):
- If you are using GCP, execute
gcloud init - If you are using Azure, execute
az login
- If you are using GCP, execute
-
When you are logged in you PaaS account, navigate to the
scriptsfolder:cd scripts -
Here you will find multiple scripts used for the setup and they must be run the right order. Just run the setup script that will prompt you with menu choices.
./setup.sh <deployment type>Note: Valid
deployment typeargument values are:- gke = Google
- aks = Azure
The setup menu looks as follows:
==================================================== SETUP MENU for Azure AKS ==================================================== 1) Enter Installation Script Inputs 2) Provision Kubernetes cluster 3) Install Keptn 4) Install Dynatrace 5) Expose Keptn's Bridge ---------------------------------------------------- 99) Delete Kubernetes cluster ==================================================== Please enter your choice or <q> or <return> to exit
Before you do this step, be prepared with your GitHub credentials, Dynatrace tokens, and Cloud provider project information available.
This will prompt you for values that are referenced in the remaining setup scripts. Inputted values are stored in creds.json file. For example, on GKE the menu looks like:
===================================================================
Please enter the values for provider type: Google GKE:
===================================================================
Dynatrace Host Name (e.g. abc12345.live.dynatrace.com) (current: DYNATRACE_HOSTNAME_PLACEHOLDER) :
Dynatrace API Token (current: DYNATRACE_API_TOKEN_PLACEHOLDER) :
Dynatrace PaaS Token (current: DYNATRACE_PAAS_TOKEN_PLACEHOLDER) :
GitHub User Name (current: GITHUB_USER_NAME_PLACEHOLDER) :
GitHub Personal Access Token (current: PERSONAL_ACCESS_TOKEN_PLACEHOLDER) :
GitHub User Email (current: GITHUB_USER_EMAIL_PLACEHOLDER) :
GitHub Organization (current: GITHUB_ORG_PLACEHOLDER) :
PaaS Resource Prefix (e.g. lastname) (current: RESOURCE_PREFIX_PLACEHOLDER) :
Google Project (current: GKE_PROJECT_PLACEHOLDER) :
Cluster Name (current: CLUSTER_NAME_PLACEHOLDER) :
Cluster Zone (eg.us-east1-b) (current: CLUSTER_ZONE_PLACEHOLDER) :
Cluster Region (eg.us-east1) (current: CLUSTER_REGION_PLACEHOLDER) :
This will provision a cluster on the specified cloud deployment type using the platforms CLI. This script will take several minutes to run and you can verify afterwards if the cluster was created with the cloud provider console.
The cluster will take 5-10 minutes to provision.
This will install the Keptn control plane components into your cluster, using the Keptn CLI: keptn install -c=creds.json --platform=<Cluster>
The install will take 5-10 minutes to perform.
Details about this step
Note: Internally, this script will perform the following:
- Clones https://github.com/keptn/installer. This repo has the cred.sav templates for building a creds.json file that the Keptn CLI can use as an argument
- Uses the values we already captured in the
2-enterInstallationScriptInputs.shscript to create the creds.json file - Runs the
keptn install -c=creds.json --platform=<Cluster>
This will install the Dynatrace OneAgent Operator into your cluster.
The install will take 3-5 minutes to perform.
Details about this step
Note: Internally, this script will perform the following:
- Clones https://github.com/keptn/dynatrace-service. This repo has scripts for each platform to install the Dyntrace OneAgent Operator and the cred_dt.sav template for building a creds_dt.json file that the install script expects to read
- Uses the values we already captured in the
1-enterInstallationScriptInputs.shscript to create the creds_dt.json file - Runs the
/deploy/scripts/deployDynatraceOn<Platform>.shscript in the dynatrace-service folder
The Keptn’s bridge provides an easy way to browse all events that are sent within Keptn and to filter on a specific Keptn context. When you access the keptn’s bridge, all Keptn entry points will be listed in the left column. Please note that this list only represents the start of a deployment of a new artifact. Thus, more information on the executed steps can be revealed when you click on one event.
In the default installation of Keptn, the bridge is only accessible via kubectl port-forward. To make things easier for workshop participants, we will expose it by creating a public URL for this component.
After provision the cluster and installing Keptn, we are now ready to explore to execute the following hands-on labs. They are based on each other, why it is important to complete the according to this order:
- Onboarding the carts service: Lab
- Deploying the carts service: Lab
- Introducing quality gates: Lab
- Homework ;) Runbook automation and self-healing: Lab
Join the Keptn community!
Further information about Keptn you can find on the keptn.sh website. Keptn itself lives on GitHub.
Feel free to contribute or reach out to the Keptn team using a channel provided here.