# ACMEFIT K8s

This repo contains a Polyglot demo application comprised of (presently) 6 microservices and 4 datastores.

The contents here are the necessary YAML files to deploy the ACMEFIT application in a kubernetes cluster.

This app is developed by team behind www.cloudjourney.io

The current version of the application passes JSON Web Tokens (JWT) for authentication on certain API calls. The application will not work as expected if the `users` service is not present to issue / authenticate these tokens.

## Datastore Dependent Services

This section covers the deployment of the datastore dependent microservices. It is recommended to deploy these services first.

### Cart Service

Before deploying the cart datastore (Redis) and cart service please add a secret for the service to use in authenticating with the cache.
*Note: Please replace 'value' in the command below with the desired password text. Changing the name of the secret object or the 'password' key may cause deployment issues*


In [96]:
secretpassword = str(input("Enter a password for all k8s secrets: ") or "VMware1!")


Enter a password for all k8s secrets: 


In [97]:
secretpassword

'VMware1!'

In [98]:
!kubectl create secret generic cart-redis-pass --from-literal=password=secretpassword


secret/cart-redis-pass created


Once the secret object is created, deploy the redis cache and cart service:


In [99]:
!kubectl apply -f cart-redis-total.yaml
!kubectl apply -f cart-total.yaml


service/cart-redis created
deployment.apps/cart-redis created
service/cart created
deployment.apps/cart created


### Catalog Service

Before deploying the catalog datastore (mongo) and catalog service please add a secret for the service to use in authenticating with the cache.
*Note: Please replace 'value' in the command below with the desired password text. Changing the name of the secret object or the 'password' key may cause deployment issues*

In [100]:
!kubectl create secret generic catalog-mongo-pass --from-literal=password=secretpassword

secret/catalog-mongo-pass created


Run the following command to initialize the catalog database with items:

In [101]:
!kubectl create -f catalog-db-initdb-configmap.yaml


configmap/catalog-initdb-config created


Finally, deploy the mongo instance and catalog service:


In [102]:
!kubectl apply -f catalog-db-total.yaml
!kubectl apply -f catalog-total.yaml

service/catalog-mongo created
deployment.apps/catalog-mongo created
service/catalog created
deployment.apps/catalog created


### Payment Service

The payment service does not have an associated datastore. It can be deployed with the following command:


In [103]:
!kubectl apply -f payment-total.yaml


service/payment created
deployment.apps/payment created


NOTE: PAYMENT SERVICE MUST BE UP FIRST IN ORDER FOR ORDER SERVICE TO PROPERLY COMPLETE TRANSACTIONS
   
### Order Service

Before deploying the orders datastore (postgres) and order service please add a secret for the service to use in authenticating with the cache.
*Note: Please replace 'value' in the command below with the desired password text. Changing the name of the secret object or the 'password' key may cause deployment issues*

Before running order please add the following secret:


In [104]:
!kubectl create secret generic order-postgres-pass --from-literal=password=secretpassword


secret/order-postgres-pass created


Once the secret object is created, deploy the mongo instance and order service:


In [105]:
!kubectl apply -f order-db-total.yaml
!kubectl apply -f order-total.yaml


service/order-postgres created
deployment.apps/order-postgres created
service/order created
deployment.apps/order created


### Users Service

Before deploying the users datastore (mongo), users cache (redis) and users service please add secrets for the service to use in authenticating with the database and cache.
*Note: Please replace 'value' in the command below with the desired password text. Changing the name of the secret object or the 'password' key may cause deployment issues*

Before running order please add the following secret:


In [106]:
!kubectl create secret generic users-mongo-pass --from-literal=password=secretpassword
!kubectl create secret generic users-redis-pass --from-literal=password=secretpassword


secret/users-mongo-pass created
secret/users-redis-pass created


Next you need to run the following to initialize the database with an initial set of users:


In [107]:
!kubectl create -f users-db-initdb-configmap.yaml


configmap/users-initdb-config created


Once the secret object is created, and the users database is seeded, deploy the users database and users service:


In [108]:
!kubectl apply -f users-db-total.yaml
!kubectl apply -f users-redis-total.yaml
!kubectl apply -f users-total.yaml

service/users-mongo created
deployment.apps/users-mongo created
service/users-redis created
deployment.apps/users-redis created
service/users created
deployment.apps/users created


**_NOTE: The base set of users is preconfigured. For now, please login as one of this set (eric, dwight, han, or phoebe). The password for these users is 'vmware1!'_**


## Datastore Independent Services

### Front End Service

The front end service also functions without an associated datastore. The manifests in this repository deploy the front end service as a NodePort type for testing purposes. If suitable for the deployment environment, the service type could be changed to 'LoadBalancer' in the `frontend-total.yaml` manifest in this repository.

To deploy the front end service, run the following command:


In [109]:
!kubectl apply -f frontend-total.yaml


service/frontend created
deployment.apps/frontend created


To find the external port on which to access the site in browser, run the following command:


In [110]:
!kubectl get services -l service=frontend


NAME       TYPE           CLUSTER-IP      EXTERNAL-IP   PORT(S)        AGE
frontend   LoadBalancer   10.102.163.17   <pending>     80:30601/TCP   0s


The output of the above command should be similar to this:


$ kubectl get services -l service=frontend
NAME       TYPE       CLUSTER-IP   EXTERNAL-IP   PORT(S)          AGE
frontend   NodePort   10.0.0.81    <none>        3000:30430/TCP   3d

The external value appears under 'PORT(S)'. It is after the '3000:' and before the '/TCP' portion of the string. Appending it to the public address of the Kubernetes cluster (or loadbalancer fronting the cluster) to access the site.


### Point-of-Sales

Just like the front end service, the Point-of-Sales app functions without any associated datastores. The only prerequisite is that the FrontEnd service is deployed. The manifests in this repository deploy the Point-of-Sales service as a NodePort type for testing purposes. If you're running the Point-of-Sales app on a different Kubernetes cluster, or as a standalone container, you'll have to update the value of `FRONTEND_HOST` (set to `frontend.default.svc.cluster.local` by default) to match the IP or FQDN of the front end service.

To deploy the service, run the following command:



In [111]:
!kubectl apply -f point-of-sales-total.yaml

service/pos created
deployment.apps/pos created


To find the external port on which to access the site in browser, run the following command:


In [112]:
!kubectl get services -l service=pos


NAME   TYPE       CLUSTER-IP      EXTERNAL-IP   PORT(S)          AGE
pos    NodePort   10.110.52.235   <none>        7777:30431/TCP   1s


The output of the above command should be similar to this:

```
$ kubectl get services -l service=frontend
NAME       TYPE       CLUSTER-IP   EXTERNAL-IP   PORT(S)          AGE
pos        NodePort   10.0.0.81    <none>        3000:30431/TCP   3d
```

The external value appears under 'PORT(S)'. It is after the '3000:' and before the '/TCP' portion of the string. Appending it to the public address of the Kubernetes cluster (or loadbalancer fronting the cluster) to access the Point-of-Sales app.

Check that pods/services/deployments are running

In [113]:
!kubectl get all -A

NAMESPACE              NAME                                             READY   STATUS              RESTARTS   AGE
cabpk-system           pod/cabpk-controller-manager-7bf77b6ddb-lzprc    2/2     Running             85         178d
capd-system            pod/capd-controller-manager-5cf7d47656-2zbf7     2/2     Running             91         178d
capi-system            pod/capi-controller-manager-55b9d8ffc7-x96nt     1/1     Running             91         178d
default                pod/cart-564f5c6c84-9qp8l                        0/1     ContainerCreating   0          5s
default                pod/cart-redis-78f644696b-f92rv                  0/1     ContainerCreating   0          6s
default                pod/catalog-6f4c978d85-4vtkb                     0/1     ContainerCreating   0          4s
default                pod/catalog-mongo-748f9c547b-tlzlh               0/1     ContainerCreating   0          5s
default                pod/frontend-746bb69469-9mw6k                    0

In [114]:
#if using minikube you can use the target port url 
!minikube service list

|----------------------|------------------------------------------|----------------------------|-----|
|      NAMESPACE       |                   NAME                   |        TARGET PORT         | URL |
|----------------------|------------------------------------------|----------------------------|-----|
| cabpk-system         | cabpk-controller-manager-metrics-service | No node port               |
| capd-system          | capd-controller-manager-metrics-service  | No node port               |
| default              | cart                                     | No node port               |
| default              | cart-redis                               | No node port               |
| default              | catalog                                  | No node port               |
| default              | catalog-mongo                            | No node port               |
| default              | frontend                                 | http://172.16.39.211:30601 |
| 

## Distributed Tracing

**Note: Distributed tracing is advanced functionality which requires additional configuration to use successfully. Please read this section carefully before attempting to test / demonstrate tracing**

The current version of the application has been augmented with distributed tracing funcionality. Each of the services has two relevant environment vairables `JAEGER_AGENT_HOST` and `JAEGER_AGENT_PORT`. Regardless of the span aggregator being used, the code expects that these two values to be populates with the hostname and port of whichever span collecter is being used *likely the jaeger agent*.

To avoid issues with unresolvable hostnames, `JAEGER_AGENT_HOST` is set to `localhost` in all of the manifests in this repo. To use tracing, this value will need to be replaced. If using the `jaeger-all-in-one.yml` manifest included in this repo, this value should be changed to `<jaeger namespace>.jaeger`.

It is strongly recommended that the `JAEGER_AGENT_PORT` values not be modified as the tracing library implementations for specific languages favor certain ports.

## Cleanup


In [115]:
#bulk delete of all deployments/services/pods/secrets in reverse order
!kubectl delete -f point-of-sales-total.yaml
!kubectl delete -f frontend-total.yaml
!kubectl delete -f users-db-total.yaml
!kubectl delete -f users-redis-total.yaml
!kubectl delete -f users-total.yaml
!kubectl delete -f users-db-initdb-configmap.yaml
!kubectl delete secret users-mongo-pass 
!kubectl delete secret users-redis-pass 
!kubectl delete -f order-db-total.yaml
!kubectl delete -f order-total.yaml
!kubectl delete secret order-postgres-pass 
!kubectl delete -f payment-total.yaml
!kubectl delete -f catalog-db-total.yaml
!kubectl delete -f catalog-total.yaml
!kubectl delete -f catalog-db-initdb-configmap.yaml
!kubectl delete secret catalog-mongo-pass
!kubectl delete -f cart-redis-total.yaml
!kubectl delete -f cart-total.yaml
!kubectl delete secret cart-redis-pass 

service "pos" deleted
deployment.apps "pos" deleted
service "frontend" deleted
deployment.apps "frontend" deleted
service "users-mongo" deleted
deployment.apps "users-mongo" deleted
service "users-redis" deleted
deployment.apps "users-redis" deleted
service "users" deleted
deployment.apps "users" deleted
configmap "users-initdb-config" deleted
secret "users-mongo-pass" deleted
secret "users-redis-pass" deleted
service "order-postgres" deleted
deployment.apps "order-postgres" deleted
service "order" deleted
deployment.apps "order" deleted
secret "order-postgres-pass" deleted
service "payment" deleted
deployment.apps "payment" deleted
service "catalog-mongo" deleted
deployment.apps "catalog-mongo" deleted
service "catalog" deleted
deployment.apps "catalog" deleted
configmap "catalog-initdb-config" deleted
secret "catalog-mongo-pass" deleted
service "cart-redis" deleted
deployment.apps "cart-redis" deleted
service "cart" deleted
deployment.apps "cart" deleted
secret "cart-redis-pass" dele

Check that the pods/services were deleted

In [118]:
!kubectl get all

NAME                                  READY   STATUS        RESTARTS   AGE
pod/cart-564f5c6c84-9qp8l             1/1     Terminating   0          50s
pod/catalog-6f4c978d85-4vtkb          1/1     Terminating   0          49s
pod/frontend-746bb69469-9mw6k         0/1     Terminating   0          46s
pod/order-d6fd9854b-rn6gm             0/1     Terminating   0          48s
pod/order-postgres-56bd5dcddd-xnfln   0/1     Terminating   0          49s
pod/users-7d8485d99c-tlstl            0/1     Terminating   0          46s
pod/users-mongo-57869df5b5-q58gb      0/1     Terminating   0          47s

NAME                 TYPE        CLUSTER-IP   EXTERNAL-IP   PORT(S)   AGE
service/kubernetes   ClusterIP   10.96.0.1    <none>        443/TCP   178d
