-
Notifications
You must be signed in to change notification settings - Fork 10
/
Copy pathMakefile
219 lines (172 loc) · 7.14 KB
/
Makefile
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
# Start all services, monitoring and the web UI. Does not start server clients
start:
docker-compose up -d usersrv customersrv productsrv promotionsrv auditsrv
docker-compose up -d grafana
docker-compose up web
stop:
docker-compose down
# Docker-compose sample commands
composeup:
docker-compose up
composedown:
docker-compose down
composebuildpromosrv:
docker-compose build promotionsrv
composerestartpromocli:
docker-compose rm -fsv promotioncli
docker-compose up promotioncli
# Docker sample commands
docbuildpromosrv:
docker build -t promosrv -f promotion/Dockerfile .
docrunpromosrv:
docker run --env-file ./promotion/docker-compose.env -p 50051:50051 --name promosrvcont promosrv
# run and attach to existing network
docrunusersrvnet:
docker run --env-file ./user/docker-compose.env --network=gotemp_default -p 50051:50051 --name usersrvcont usersrv
docbuildpromocli:
docker build -t promocli -f promotion/DockerfileCli .
docrunpromocli:
docker run -p 50051:50051 --name promoclicont promocli
#DockerHub
hubpush:
docker build -t $$SERVICE -f $$FOLDER/Dockerfile .
docker tag $$SERVICE bolbeck/gotemp_$$SERVICE
docker push bolbeck/gotemp_$$SERVICE
hubpushcontext:
docker build -t $$SERVICE -f ./$$FOLDER/Dockerfile ./$$FOLDER
docker tag $$SERVICE bolbeck/gotemp_$$SERVICE
docker push bolbeck/gotemp_$$SERVICE
# -------------------------------------------------------------------------------------
# Run service directly
runpromosrv:
go run promotion/server/promotionServer.go
runpromocli:
go run promotion/client/promotionClient.go
# -------------------------------------------------------------------------------------
# Web App
# Directly (dev)
runweb:
npm run dev
# Docker
docbuildweb:
docker build -t gotempweb -f ./web/Dockerfile ./web
docrunweb:
docker run -p 3000:3000 --name gotempwebcont gotempweb
#Docker-compose
composeupweb:
docker-compose up web
# -------------------------------------------------------------------------------------
# Compile proto files
genpromotionproto:
protoc --proto_path=$$GOPATH/src:. --micro_out=source_relative:.. --go_out=. --go_opt=paths=source_relative promotion/proto/promotion.proto
genuserproto:
protoc --proto_path=$$GOPATH/src:. --micro_out=source_relative:.. --go_out=. --go_opt=paths=source_relative user/proto/user.proto
gencustomerproto:
protoc --proto_path=$$GOPATH/src:. --micro_out=source_relative:.. --go_out=. --go_opt=paths=source_relative customer/proto/customer.proto
genproductproto:
protoc --proto_path=$$GOPATH/src:. --micro_out=source_relative:.. --go_out=. --go_opt=paths=source_relative product/proto/product.proto
genstandardFieldsproto:
protoc --proto_path=$$GOPATH/src:. --micro_out=source_relative:.. --go_out=. --go_opt=paths=source_relative globalProtos/standardFields.proto
# -------------------------------------------------------------------------------------
# Call service through the micro gateway
promoviaapigateway:
curl --location --request POST 'http://localhost:8080/promotion/promotionSrv/getPromotions' \
--header 'Content-Type: application/json' \
--header 'Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJVc2VyIjp7ImlkIjoyMzQzNzI1MzkxMjkxNjE4MzA1LCJjb21wYW55IjoiRHVjayBJbmMuIn0sImV4cCI6MTU5NzMzNTMzNywiaWF0IjoxNTk3MjQ4OTM3LCJpc3MiOiJnb1RlbXAudXNlcnNydiJ9.QWAvvoXQHv_Cf48PTrjK9uRvrdEblNvFOxQWjNcX79U' \
--data-raw '{"name":"Promo1", "customerId": "ducksrus"}'
# Call service using the micro gateway running behind the ingress in K8s
authviaapigateway:
curl --location --request POST 'http://gotemp.tst/user/userSrv/auth' \
--header 'Content-Type: application/json' \
--data-raw '{"pwd":"1234","email":"[email protected]"}'
# -------------------------------------------------------------------------------------
# K8s wihtout Vault
startkub:
kubectl apply -f cicd/K8s/dbsAndBroker
kubectl apply -f cicd/K8s/services
kubectl apply -f cicd/K8s/monitoring
kubectl apply -f cicd/K8s/web
kubectl apply -f cicd/K8s/ingress
stopkub:
kubectl delete -f cicd/K8s/ingress
kubectl delete -f cicd/K8s/web
kubectl delete -f cicd/K8s/monitoring
kubectl delete -f cicd/K8s/services
kubectl delete -f cicd/K8s/dbsAndBroker
kapplyingress:
kubectl apply -f cicd/K8s/ingress
kapplydbandborkers:
kubectl apply -f cicd/K8s/dbsAndBroker
kapplyservices:
kubectl apply -f cicd/K8s/services
kapplyclients:
kubectl apply -f cicd/K8s/clients
kapplyweb:
kubectl apply -f cicd/K8s/web
kdelete:
kubectl delete -f $FOLDER
kstartSubset:
kubectl apply $$(ls cicd/K8s/services/audit*.yaml | awk ' { print " -f " $$1 } ')
# -------------------------------------------------------------------------------------
# Run Micro in K8s with Vault for service secret management
# ---- Setup Vault ------
# init secrets and K8s auth in Vault
vkubinit:
kubectl cp vault/scripts vault-0:/vault/file/scripts
kubectl exec vault-0 -- /vault/file/scripts/setup.sh $$VAULT_TOKEN
# Populate secrets, create roles and policies
vkubsetup:
kubectl cp vault/policies vault-0:/vault/file/
kubectl cp vault/scripts vault-0:/vault/file/
kubectl exec vault-0 -- /vault/file/scripts/allServices.sh $$VAULT_TOKEN
# ---- Start and stop app ------
# Start application and patch it
vstartkub:
make startkub
make vkubpatchdeploy
# Stop application and delete service accounts
vstopkub:
make stopkub
kubectl delete -f cicd/K8s/vault/serviceAccount
# ------ Remove setup from Vault -------
# Remove secrets, create roles and policies
# Remove secrets, create roles and policies
vkubteardown:
kubectl exec vault-0 -- /vault/file/scripts/deleteAllSrv.sh $$VAULT_TOKEN
make vkubcleancontainer
# Remove secret engine and K8s auth in Vault
vkubsetupdelete:
kubectl cp vault/scripts vault-0:/vault/file/scripts
kubectl exec vault-0 -- /vault/file/scripts/deleteSetup.sh $$VAULT_TOKEN
make vkubcleancontainer
# ---- Vault Misc --------
# Unseal Vault on startup
vkubunseal:
kubectl exec -ti vault-0 -- vault operator unseal $$KEY
# Enable Vault UI port
vkubui:
kubectl port-forward vault-0 8100:8200
# Apply patches to the services' deployments so they are visible to the Vault Agent
vkubpatchdeploy:
kubectl apply -f cicd/K8s/vault/serviceAccount
kubectl patch deployment auditsrv --patch "$$(cat cicd/K8s/vault/patch/auditsrv-deployment-patch.yaml)"
kubectl patch deployment customersrv --patch "$$(cat cicd/K8s/vault/patch/customersrv-deployment-patch.yaml)"
kubectl patch deployment productsrv --patch "$$(cat cicd/K8s/vault/patch/productsrv-deployment-patch.yaml)"
kubectl patch deployment promotionsrv --patch "$$(cat cicd/K8s/vault/patch/promotionsrv-deployment-patch.yaml)"
kubectl patch deployment usersrv --patch "$$(cat cicd/K8s/vault/patch/usersrv-deployment-patch.yaml)"
# Clean scripts and policies in Vault container
vkubcleancontainer:
kubectl exec vault-0 -- rm -rf /vault/file/scripts/
kubectl exec vault-0 -- rm -rf /vault/file/policies/
# Test that Vault is populating the secrets properly by deploying YAMLs without the K8s secrets
vkubtestrmsecret:
kubectl apply -f cicd/K8s/vault/testYamlFile
# ---- Monitoring --------
# Check the service metrics when running on docker
getsrvmetrics:
curl http://localhost:$$PORT/metrics
# ---- Misc --------
encode:
echo -n 'data' | base64
decode:
echo -n ZGF0YQ== | base64 -d