### Complete Application Setup with K8s Components

Overview:
We're going to deploy 2 applications, MongoDB and MongoExpress. These 2 are used because they demonstrate a simple setup of a web app and its database and we can apply this to any similar setup we have.

1) we will create a mongodb pod and in order to talk to this pod we need a service. We will be creating an internal Service that no external requests are allowed to the pod, only components inside the same cluster can talk to it. 

2) then we wil create a Mongo-Express deployment. We'll need the database URL of MongoDB so that MongoExpress can connect to it. The second one is the credentials (db_username and db_password) for authentication. We can pass this information to MongoExpress deployment is through its deployment configuration file (Deployment.yaml) through environmental variables because that's how the applications are configured. So we will create a ConfigMap that contains a database url and we'll create a *Secret* that contains the credentails (db_username and db_password). We'll reference both inside of the deployment file.

3) Once we have this set up, we'll need Mongo Express to be accessible through the browser. In order to do that, we'll create an external service that wil allow external requests to talk to the pod so the url will be the 

URL:
- IP Address of Node
- Port of external Service 

#### Browser Request Flow through K8s Components

- the request comes from the browser and it goes to the external service of Mongo Express

- which will then forward it to the Mongo Expreess Pod. 

- The pod will then connect to the internal service of MongoDB (ConfigMap DB Url) 

- and it will forward to the MongoDB pod where it will authenticate the request using the credentials (Secret DB User, DB Pwd) so now let's create this entire setup with K8s config files

#### BrainStorming Session for TwitterAnalysisV2

- we have three apps: mysql database, dash plotly app, a pyspark data wrangling app 

#### Setup

- minikube cluster is already running

- kubectl get all (gets all components inside the cluster)

Looking at Nana's screen, the only component inside is the default K8s service so my cluster is empty and I'm starting from scratch.

- We're oging to create a MongoDB deployment and we'll create it in a edicator, and pastes a deployment file in vscode. 

- it is wihtin our spec > template that we have our definition or blueprint for pods this deployment will create.

- in the example she only has 1 replica

- the container will be called mongodb

spec > template > spec > containers > name: mongodb, image: mongo

- where the image configuration for mongo is on dockerhub. We go to dockerhub and look for how to use that container: what ports it'll use, which external config it'll tkae. 

The default port of MongoDB port is 27017 so we'll use it and we will use environmental variables

- MONGO_INITDB_ROOT_USERNAME, MONGO_INITDB_ROOT_PASSWORD 

Remember we don't want ot save username or password in config file so we'll now create a *Secret* in K8s and not in the Config file 

- save as mongo.yaml (to get syntax highlights)

In [1]:
# Secret Configuration file

'''
apiVersion: v1
kind: Secret
metadata:
    name: mongodb-secret
type: Opaque
data:
    mongo-root-username: dXNlcm5hbWU=
    mongo-root-password: cGFzc3dvcmQ=
    
'''

'\napiVersion: v1\nkind: Secret\nmetadata:\n    name: mongodb-secret\ntype: Opaque\ndata:\n    username:\n    password:\n    \n'

#### Secret Configuration File

- so first we define the kind which is 'Secret'  

- then metadata (the name)

- type: Opaue (which is the default Secret type)

Other types include TLS certificate, but mostly you're gonna use default secret

- data (key value pairs of mongo-root-username and mongo-root-password)

The values for the Secret are not plain text, the value must be base64 encoded. The way to do this is to 

1) go to your terminal

echo -n 'username' | base64 (for mac)|
### Note

I installed a base64 converted for windows on my computer. The command prompt is 

- echo | set /p=username| base64

WHERE there is NO space between password (username) and '|' AND no space between /p and 'username'. You MUST use 'set'. You might want to check with a base54 converter tool or website OR use the linux shell 

and then we post it into the secret's username nad password configs.  

So far we've only written config files and haven't created anything in the cluster. This is only prep work. 

We MUST create the Secret before the deployment if we're gonna reference the secret values. THerefore the order of creation matters because if I'm creating a deployment that references a Secret that doesn't exist yet, we'll get an error. 

Once we have our first deployment, let's create our secret from a config file. WE

- go into the folder with all the configuration files (I do not have her files, they are on git.)

cd k8s-configuration/

- kubectl apply -f mongo-secret.yaml

- kubectl get secret to see th ecreation of our secret 

Now that we have our secrets, we can reference our Secrets inside of our deployment configuration file

In [2]:
# inside our mongo.yaml file

# template > spec > containers> env
'''
env: 
- name: MONGO_INITDB_ROOT_USERNAME
    valueFrom:
        secretKeyRef:
            name: mongodb-secret 
            key: mongo-root-username
- name: MONGO_INITDB_ROOT_PASSWORD
    valueFrom:
        secretKeyRef:
            name: mongodb-secret
            key: mongo-root-password
            


'''
# where the name is the metadata name in mongo-secret.yaml
# mongo-root-username, the key, is in the data key value pair in mongo-secret.yaml

# remeber yaml has strict indentation

'\nenv: \n- name: MONGO_INITDB_ROOT_USERNAME\n    valueFrom:\n        secretKeyRef:\n            name: mongodb-secret \n            key: mongo-root-username\n- name: MONGO_INITDB_ROOT_PASSWORD\n    valueFrom:\n        secretKeyRef:\n            name: mongodb-secret\n            key: mongo-root-password\n            \n\n\n'

Our deployment file is now ready so let's apply it.

- kubectl apply -f mongo.yaml

- kubectl get all (should see the deployment and the replicaset)

- kubectl get pod (check how pod is doing)

- kubectl get pod --watch (to see live status of pod)

If it takes long and you want to see whether there's a problem you can do 

- kubectl describe pod 'pod-name' (to see if there's nayting wrong)

- kubectl get pod (again)

#### Create a MongoDB Internal Service