This is the 3rd piece of my demo series from my presentation at Neo4's developer conference NODES in 2020. The other pieces are:
You'll notice there's little to no code here. (The code that does exist is some Go to help leverage Google Secrets Manager.) It's mostly shell scripts. To recreate what I built for the live demo, you'll want to acquire:
- a Confluent Cloud account
- a GCP account and project
- a GCE host with Docker
- a Google Cloud service account and its JSON private key
Alternatively, you can substitute the following:
- a local Apache Kafka deployment
- any host that can run Neo4j
You don't need Docker...I just found it easier for this use case.
Note: it's assumed you use a Neo4j database called "groom" and not the default "neo4j" database. Why? I don't know...just felt like it I guess.
To recreate what I built just like in the demo:
- Create a Confluent Cloud cluster adding a topic named
groom - Generate a Confluent API Key, noting the key and the secret somewhere for now
- In Google Secret Manager, make a new secret containing the Confluent secret value
- Spin up a Container-Optimized OS host in GCE with at least 8GB of memory.
- Copy/clone/etc. the files to the machine.
- Create a Google Cloud Service Account in y our GCP project,
generating a JSON private key, and granting it read access to your
Secret you created. Deploy this key to a
./secretsdirectory on the Neo4j host. - I didn't use the NEO4J_LABS plugin stuff, so fetch the latest 4.0
compliant APOC and Neo4j-Streams plugins, putting them in
./plugins - Run the create script, setting appropriate env vars related to your
Confluent Cloud config and the secret you created in GSM:
$ BOOTSTRAP_SERVER_URL=${CONFLUENT_URL} API_KEY=${CONFLUENT_KEY} \ GCP_PROJECT=${YOUR_GCP_PROJECT} \ GCP_SECRET_NAME=${YOUR_SECRET_NAME} \ create-4.0.sh
- Run
docker start -a neo4j-groomand confirm Neo4j starts up and listens for bolt connections - Disconnect from the Docker connection with
ctrl-c - Connect and set a Neo4j password using cypher-shell:
$ docker exec -it neo4j-groom cypher-shell -u neo4j -p neo4j- Initialize the "groom" database via cypher-shell:
:use system;
CREATE DATABASE groom;
- After disconnecting from cypher-shell, run the schema creation
script:
$ sh cypher.sh schema.cypher
- Then schedule the threading:
$ sh cypher threading.cypher
There are details in the
Telemetry
documentation. In general, if using Confluent Cloud, you would set the
Topic and Broker as instructed by Confluent Cloud's details for
your cluster/topic config.
For SASL User and SASL Password, use your Confluent API key and
secret respectively.
WARNING: my Doom fork does NOT store your api secret securely. It stores it in plaintext in the chocolate-doom config file, which usually in some location of your user account. Make sure it's not globally readable!!!