Current Status:
- Backend APIs: Currently fetches version, liveness & readiness of deployments, statefulSets and pods. Dependencies, feature flags are available via Prometheus metrics.
- Frontend Dashboard: Partially complete. Usable.
Currently there are no prebuilt containers available, however you can easily build the aggregator and collector containers
via ./gradlew aggregator:jib --image <your aggregator image name> and ./gradlew collector:jib --image <your collector image name> .
This requires Java 11.
Configuration can be supplied through application-*.yml files. See the configuration section below for more information. Configuration can be mounted as files via config maps and specified via environment variables as shown in this deployment patch.
The web front end can be built with the given Dockerfile - docker build web/. This requires docker.
There are two ways to set API URL for the frontend.
- At runtime this can be set via a config.js file.
For the provided NGNIX Docker image, the config would go in
/usr/share/nginx/html/config/config.jsand can be mounted as a config map in this directory as seen in this kustomization.
// Example config for a minikube deployment:
window['config'] = {
apiUrl: 'http://igiari.local/aggregator'
}- Before building the docker image, the API URL can be set by modifying creating an
.env.productionat the root of the web folder which contains your aggregator's API URL:
REACT_APP_API_URL=http://my.aggregator.comAndromeda can be quickly deployed to minikube with skaffold run
You will require kubectl, kustomize, minikube, docker and skaffold
For ingresses to work you will need to add the minikube IP (minikube ip) and igiari.local to your /etc/hosts file.
Further examples of how running applications would look can be seen with running skaffold run -p example which features
2 dummy applications that can be messed with to see how the dashboard will change.
Andromeda is designed with the idea of deploying a collector into each cluster with a mounted service account bound with a cluster role similar to the default
view cluster role. Each collector should be configured with the environments (namespace suffixes) required for that cluster in the cluster specific config.
All collectors will use the same global config specifying the applications and the namespace prefixes to be scraped.
The aggregator should be deployed in only one cluster along with the web frontend. The aggregator should be configured to scrape all collectors via accessible ingresses or other multi-cluster networking.
Andromeda's configuration and scraping of Kubernetes clusters is based on selectors and namespaces. For example configuration see the minikube aggregator config, collector global config and collector cluster config
Using a configured namespace prefix for an application and a selector, each collector will search for namespaces matching the configured global namespace prefix for an app + cluster specific namespace suffix for each environment.
e.g Configuration as follows:
# Global config
global:
teams:
- name: teamName
applications:
- name: web-frontend
prefix: webapp
selector:
type: frontend
- name: backend-application
prefix: backend
selector:
type: backend
statefulSet: backend-app# Cluster specific
cluster:
namespaceSuffixes:
- -ft
- -testing
- -release
priority:
last:
- -releaseFor the web-frontend, the collector will look at namespaces in turn:
webapp-ftwebapp-testingwebapp-release
Then it will look for both deployments (by default) and pods with the specified selector.
In this case: type = frontend.
If a selector is not specified, app is used as the default key, and the name of the application as the value.
This default key can be overridden via:
global:
# Sets the default key for when selectors are not configured. Defaults to 'app' as seen below.
defaultSelectorKey: appThe first container in the deployment's image is used to find the version and the deployment's replica availability is used to find the health.
A different container and the pod controller type can be specifically configured via the
<controller name>: <container name> configuration.
e.g the statefulSet: backend-app-container above would look for stateful sets rather than deployments and would
read the version of specifically the backend-app named container.
Canary configuration is in the global (collector) configuration. e.g
global:
canary:
enabled: true
# Labels used to determine if a pod is marked as a canary
# These labels are also explicitly not selected for normal deployments if canaries are enabled.
selector:
variant: canaryIf enabled, canary deployments will be searched for alongside the normal deployments. These are expected to contain a combination of the application's selector and the specified canary selector.
e.g Given an app with a configured selector of app: backend and a canary configuration as above with the canary selector being
variant: canary. The collector will mark anything with labels app=backend, variant=canary as a canary and anything with
only app=backend without the variant=canary as a normal deployment.
This selection logic is based on the canary deployment pattern
The aggregator requires configuring cluster groups which each have a list of collector URIs. The cluster groups are logically grouped clusters e.g by region.
Note: The collector URIs should not include the /team path segment but point to the application root of the collector.
Each cluster group is intended to be shown on one dashboard page.
aggregator:
clusters:
cluster-one:
type: kubernetes
collectors:
- http://my.other.cluster.com
- http://another.cluster/collector
cluster-two:
type: kubernetes
collectors:
- http://third.cluster.com
teams:
- awesome-team
prometheusURI: http://localhost:9091/api/v1/The teams can be configured for front end indexing. The prometheusURI is required for fetching dependency and feature flag information.
Currently this information is gleamed from prometheus metrics: feature_flag and downstream_dependency, with the aggregator
expecting pod_name and namespace labels matching the pod they're coming from. (This comes for free with Prometheus
service discovery and just needs to be relabeled.). The aggregator will need a prometheus instance to query. The prometheus
instance should federate the stated labels from other prometheus instances.
The dependency metric should be a gauge with the name downstream_dependency, with the above mentioned labels along with the dependency_name
label set to the name of the dependency. 0 for down and 1 for up.
The feature flag metric should be a gauge with the name feature_flag, with the above mentioned labels along with the feature_flag_name
label set to the name of the feature flag. A range of -1 to 2 will be shown, each with a varying color.
The prometheusURI in the aggregator configuration should point to the prometheus API and to a prometheus that federates
all application downstream_dependency and feature_flag metrics.
If these settings need to be configured, it usually means your selectors aren't queryable or specify identifying attributes of objects that are meaningful and relevant to users.
For more information about labels and selectors see: kubernetes.io
It is possible to not use merge for canaries and instead apply a suffix in the collector global configuration via:
global:
canary:
enabled: true
appendSuffix: -canaryThis will apply the given suffix to all selectors for each app when discerning a canary deployment or pod.
e.g For given selector app: backend, for canary deployments the collector will mark anything selected with
app=backend-canary as a canary deployment while marking app=backend as a normal deployment.
This should be used instead of the canary selector configuration. If the canary selector is specified, the collector will continue to use it's inverse to mark normal deployments.