Integrate Image Streams

[maneta]

ToDo:

• Check postCommit in the Build (Split resolv.conf in lines APIcast#618)
• set resource limits/requests
• Update deployment documentation and place a Makefile
• Prepare service for prometheus metrics.

[mikz]

s/Apicast/APIcast/ 😉

[maneta]

Oops I did it again :p

[mikz]

Maybe add the branch name to the tag name? So we know it is "master" and not some tag?

[maneta]

Good Idea 👍

[mikz]

There should be no need for containers to have a suffix no?

[maneta]

yes sure

[mikz]

I think this does not need to be a Parameter.

[maneta]

Ok So I will place the env var with notice as default.

[mikz]

Shuld this use https://docs.openshift.com/container-platform/3.6/architecture/core_concepts/builds_and_image_streams.html#image-stream-mappings-working-periodic ?

[mikz]

That could be set as https://docs.openshift.com/container-platform/3.6/rest_api/openshift_v1.html#v1-tagimportpolicy

[maneta]

Yes I think it is a good idea.

[maneta]

@mikz Should we set the APICAST_WORKERS too?

[mikz]

Nope. APIcast autodetects number of requested CPU cores: 3scale/APIcast#600

[maneta]

ok

[mikz]

Would be good to have a comment pointing to how is this refreshed.
#4 (comment)

[maneta]

TBH, I don't know how quay.io/3scale/apicast:master-builder is refreshed either... Or are you talking about the scheduled imports from the registry?

[mikz]

Yep. Scheduled imports.

Those quay images are built when master branch is updated.

[maneta]

Done in 287e33c

[mikz]

This looks wrong.

[maneta]

yep.

[mikz]

Will this crash when CACHE_TTL is empty? It should.

[maneta]

yes it crashes because there is no predefined value in the template.

Actually it brakes without RELEASE_REF AND ENVIRONMENT also.

The actuall error message:

oc new-app -f /Users/dcesario/src/apicast-cloud-hosted/openshift/04-deployment-template.yml \
		-p RELEASE_REF=test-dani3 \
		-p ENVIRONMENT=staging \
		-p CACHE_TTL=
error: error processing template "apicast-staging/apicast-cloud-hosted-deployment": Template "apicast-cloud-hosted-deployment" is invalid: template.parameters[2]: Required value: template.parameters[2]: parameter CACHE_TTL is required and must be specified
make: *** [deploy] Error 1

[mikz]

👍

[maneta]

@mikz Should we investigate how to build the apicast-mapping-service image or should we let it for the future (as an issue)?

[maneta]

@mikz Should we remove the postCommit ? The Deployment is working without it, but I'm not sure how to solve it...

[mikz]

postCommit is good. It verifies the image will boot. Otherwise you have no idea until you try to deploy it (and fail).

[maneta]

Ok you said something about Apicasy and the RESOLVER env Variable I will take a look at it

[maneta]

@mikz So the problem with the postCommit is that the openshift builder is setting the resolv.conf file like that:

# nameserver updated by /etc/NetworkManager/dispatcher.d/99-origin-dns.sh
# Generated by NetworkManager
search ec2.internal cluster.local
nameserver 10.0.101.97

The problem is the first line, looks like the parse_nameservers function in APIcast https://github.com/3scale/apicast/blob/5c2dc6bbf9295b5e7891fb7bb52e32abcf763972/gateway/src/resty/resolver.lua#L105 is matching with the commented nameserver in the file.

The actual error thrown by nginx is:

nginx: [emerg] invalid IPv6 address in resolver "[domain]:53" in /tmp/lua_c5D5o5:45

I have reproduced it locally.

[mikz]

Yep. Looks like: https://github.com/3scale/apicast/blob/5c2dc6bbf9295b5e7891fb7bb52e32abcf763972/gateway/src/resty/resolver.lua#L135-L140

This should match only from start of the line and ignore comments. We probably need better parsing anyway.

Good catch!

[maneta]

Corrected in 3scale/APIcast#618

[maneta]

@mikz please review 58d7958 when you can.