The Where for Dinner TAP deployment options are enabled through a Tanzu application accelerator that will generate all necessary configuration for you.
NOTE Where For Dinner is a wholly self contained accelerator intended to be used as learning sample for larger and more sophisticated applications; it includes the generation and application of configuration files for multiple personas. Although creation of all necessary configuration within a single accelerator can facilitate the deployment of such a complex application for learning purposes, it is NOT indicative of how a typical application and ancillary service configuration would be created nor how the platform is intended to be used/configured in a real world scenario . Instead, an application accelerator will normally create a starter project for the developer whilst the creation of other persona based configuration would be generated by and managed by other procedures resulting in a clean separation of concerns and to reduce platform implementation leakage.
These instructions assume that you have a TAP 1.3.x or greater iterate cluster (or some variant similar to an iterate cluster) up and running with the following packages installed and kubectl and the Tanzu CLI installed and configured to access your TAP cluster:
- Tanzu TAP GUI
- Tanzu Build Services
- Tanzu Cloud Native Runtimes
- Tanzu Service Bindings
- Tanzu Services Toolkit
- Tanzu Out of the Box Supply Chains
- Tanzu Out of the Box Templates
- Tanzu Source Controller
- Tanzu AppSSO (required if using the
Enable Securityoption) - Tanzu Spring Cloud Gateway (required if using the
TAP Spring Cloud Gatewayoption)
This section provides a fast track installation of the "simplest" configuration of the Hungry application using the application accelerator and the instructions immediately below. A more thorough description of the configuration and installation scenarios are describes in subsequent sections of this page. This section assumes you have already installed the application accelerator using the instructions at the top of the page.
- Install Rabbit MQ operator:
kubectl apply -f "https://github.com/rabbitmq/cluster-operator/releases/download/v1.14.0/cluster-operator.yml"
-
Navigate to your TAP GUI web page and Application Accelerator tab on the left of the screen. Select the
Choosebutton on theWhere for DinnerApplication -
Select all defaults except change the
workload-namespaceif need be to a namespace that you have already configured to run workloads (e.g. a developer namespace). Download and unzip the generate accelerator file to you workstation. -
Open a command shell and navigate to the root directory of the unzipped file from above. Run the following commands to create a RabbitMQ instance, resource claims, and workloads:
NOTE: If you did not configure the accelerator to automatically create a Git repo for your project, you will need to manually commit the project to a Git repo
and update the workload.yaml file in the./config/developer directory with the appropriate Git repo URL and subPath locations for each workload.
kubectl create ns service-instances
kubectl apply -f ./config/service-operator/
kubectl apply -f ./config/app-operator/
kubectl apply -f ./config/developer/
NOTE: If you have chosen AppSSO as well as TAP Spring Cloud gateway as configuration options, it is likely that the Gateway component will fail to
deploy due to the AppSSO secret needing to be updated. If this occurs, you will need to retrieve the secret from the WorkloadRegistration object, update the secret in the ./config/servie-operator/scgInstance.yaml file, and rerun the kubectl apply -f ./config/service-operator/ command (you will need to execute these steps after applying configuration in the ./config/app-operator directory). To retrieve the secret name from the WorkloadRegistration object, run the following commands (these assume the application is deployed into a namespace named workloads and the AppSSO instance is named appsso-where-for-dinner)
To retrieve the WorkloadRegistration object, run the following command.
kubectl get workloadreg -n workloads | grep appsso-where-for-dinner
You should get something similar to the following: appsso-where-for-dinner-fjqz4 Ready where appsso-where-for-dinner-fjqz4 is the WorkloadRegistration name. Next run the following command to retrieve the secret name using the WorkloadRegistration name from above:
kb get workloadreg appsso-where-for-dinner-fjqz4 -n workloads -o jsonpath='{.status.binding.name}'
Depending on previously installed/cached components, network speed/latency, and available cluster compute, the amount of time for the RabbitMQ cluster to spin up and the workloads to build and deploy may vary greatly. It is possible for the process to take more than 10 minutes in some instances.
Once the applications have been successfully built and deployed, you can get the URL of the Where for Dinner application by running the following command. Note If need be, change the namespace workloads to the namespace where you deployed the applications.
tanzu apps workloads get where-for-dinner -n workloads
If the application was successfully deployed, you should see a section at the bottom of the command's out similar to the following:
Knative Services
NAME READY URL
where-for-dinner Ready https://where-for-dinner.perfect300rock.com
You can monitor the quick installation steps from above at any point.
Verify RabbitMQ Operator Install
Run the following command to verify that the RabbitMQ operator installed successfully:
kubectl get pod -l app.kubernetes.io/component=rabbitmq-operator -n rabbitmq-system
You should see a result similar to the following:
NAME READY STATUS RESTARTS AGE
rabbitmq-cluster-operator-6f55c6f5fc-98zrm 1/1 Running 0 30m
Verify RabbitMQ Instance Creation
Run the following command to verify that the RabbitMQ instance was created successfully:
kubectl get rabbitmq -n service-instances
You should see a result similar to the following:
NAME ALLREPLICASREADY RECONCILESUCCESS AGE
rmq-where-for-dinner True True 55m
Verify Application Build and Deployment
Run the following command to verify that applications built and deployed successfully. Note If need be, change the namespace workloads to the namespace where you deployed the applications.
kubectl get workload -n workloads
You should see a result similar to the following:
where-for-dinner https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
where-for-dinner-availability https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
where-for-dinner-notify https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
where-for-dinner-notify https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
where-for-dinner-search https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
where-for-dinner-search-proc https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
where-for-dinner-ui https://github.com/acme-samples/where-for-dinner source-to-url True Ready 58m
If you want to be able to view your applications within the TAP GUI and use tools like App Live View, you will need to register the applications with the TAP software catalog. See the instructions here.
Tanzu Application Platform supports the following event streaming options for deployments of Where For Dinner:
- Spring Cloud Streams
In addition, the Where for Dinner application has additional deployment options which consume additional services and/or provide additional functionality. These include
- H2 (In Memory) vs MySQL vs Postgres database options
- In Memory Cache vs Redis cache option
- Security enablement with AppSSO
- Routing with TAP Spring Cloud Gateway
The simplest configuration is to use Spring Cloud Streams. A Spring Cloud Streams binding implementation is required for moving messages from the where-for-dinner-search application; RabbitMQ is the default binding provided.
For database configuration, the default H2 in memory database is the simplest option and requires no additional database services to be installed, however you will lose all database information with an application restart and can not scale past one instance. The MySQL and Postgres options give you persistence and scalability, but require you to install a database operator and provision database instances.
For caching configuration, the default in memory cache is also the simplest option, however you lose all cached content with an application restart. Unlike the MySQL and Postres options, the Redis option does not require an additional operator. Instead, it uses a Bitnami image configuration.
By default, the application has no security. When choosing the security configuration, you are required to create an AppSSO instance resource as well as a ClientRegistration resource for the Where For Dinner application; the accelerator will generate the resource yaml for you. You can either use a built in development account, or have the option (in a future release of this accelerator) to connect to external OIDC identity providers.
For routing, the application uses an OSS version of Spring Cloud Gateway. However, you can choose to using the TAP commerical offering of Spring Cloud Gateway which requires
the deployment of the TAP Spring Cloud Gateway package into your cluster. Choosing this options will remove the where-for-dinner-api-gateway from the set of generated
applications and require the deployment of SpringCloudGateway, SpringCloudGatewayMapping, and SpringCloudGatewayRouteConfig resources (all of which are generated by the
accelerator). Because the gateway is not a TAP managed workload in this option, it will also require the configuration and deployment of an Ingress in the form of an
HttpProxy resource (again, generated by the accelerator). In addition, the Ingress will not use TLS by default. You can manually add TLS to either the
Ingress or allow
TLS pass through and configure TLS on per host basis on the Gateway instance.
NOTE: For the fastest and easiest path to deploying this application, use the default options of the H2 database, in memory cache, OSS Spring Cloud Gateweay,
and no security. You will still be required to deploy the RabbitMQ operator out of band, however this step is trivial as explained in the RabbitMQ Operator
section of this guide.
A Spring Cloud Streams binding is a required dependency for Where for Dinner, and RabbitMQ is the default binding. Although Where for Dinner doesn't care where or how your RabbitMQ cluster is deployed, there are relatively simple out of the box solutions, and this guide will cover using a Kubernetes operator for Rabbit MQ.
The RabbitMQ Kubernetes operator provides a resource based option for deploying RabbitMQ clusters to a Kubernetes cluster. It also has the nicety of supporting the Kubernetes Service Binding Spec.
There are two options for installing RabbitMQ:
- The open source RabbitMQ and RabbitMQ Toplogy operators
- The VMware Tanzu� RabbitMQ� for Kubernetes offering.
To install the open source RabbitMQ operator, run the following command against your cluster. Later deployment instructions will assume that your RabbitMQ cluster and the Where For Dinner application are installed on the same cluster for the purpose of service binding, but this is not technically a requirement.
kubectl apply -f "https://github.com/rabbitmq/cluster-operator/releases/download/v1.14.0/cluster-operator.yml"
If successfully installed, there will be an RabbitMQ cluster operator pod running in the rabbitmq-system namespace.
To install VMware Tanzu� RabbitMQ� for Kubernetes, refer to the installation instructions here.
NOTE: The default configuration generated by the accelerator for a RabbitMQ cluster applies CPU and memory limitations. There are known issues with Where For Dinner and resource limitations using VMware Tanzu� RabbitMQ� for Kubernetes. It is recommended to edit the generate config/service-operator/rmqCluster.yaml file to remove these limitations.
The simplest configuration is to have the Where for Dinner services use an in memory database. However; the contents of the database will be reset if a pod is restarted or a new revision of the application is deployed. The default application build supports MySQL as a database target. Similar to RabbitMQ, MySQL can be deployed in various ways and the services don't care where or how MySQL was installed. Using a MySQL Kubernetes operator that supports the service binding specification is an optimal option for application deployment. The Tanzu MySQL for Kubernetes package is one possibility that supports this option, and installation instructions can be found here.
Spring Cloud Gateway is available as an optional TAP package and is a supported option for the where-for-dinner application. The easiest way to install the package is
with a tanzu cli command such as the following (NOTE: : use a version number that is installed as an available package in your cluster).
tanzu package install scg --package-name spring-cloud-gateway.tanzu.vmware.com --version 2.0.0-tap.3 -n tap-install
As of TAP 1.5, the Where For Dinner accelerator support creating configuration for dynamically provisioning data services. A detailed description of the dynamic provisioning capabilities are detailed here.
With the necessary and optional operators installed, you are ready to access the Where for Dinner accelerator and deploy the application.
The Where for Dinner application accelerator generates configuration files for the various options that you select. Configuration files will be placed in a config directory at the root of the generated file system and grouped together in sub directories by operational persona. The personas include
- Service Operator: These configuration files are used to provision services such as a RabbitMQ clusters and database instances.
- Application Operator: These configuration files create resource claims and enables the services instances to be visible to the Tanzu CLI
servicescommand. - Developer: These configuration files contain the workload.yaml files for building and deploying the Where for Dinner application components to the TAP cluster(s).
The accelerator contains the following configuration options:
- Workload Namespace: The namespace where the application micro-services will be deployed. It is assumed that this namespace has already been created and has been configured to run TAP workloads.
- Service Namespace: The namespace where data service instances like RabbitMQ and databases reside (or will reside once created). It is assumed that this namespace has already been created.
- Gateway Type: The type of gateway that will be deployed to route HTTP traffic. Options are OSS and TAP Spring Cloud Gateway.
- Gateway Service Name: If the TAP Spring Cloud Gateway option is selected, this is the name of the gateway service that will be created.
- Message Broker Type: The message broker implementation that the services will connect to. RabbitMQ is currently the only option.
- Message Broker Name: The name of the message borker resource that the micro-services will connect to.
- Dynamically Provision Message Broker: If this box is checked, the accelerator will generate configuration that enables dynamically provisioning of the message broker. Dynamic provisioning will use the
ClusterInstanceClassdefined in the next option. - **Message Broker Cluster Instance Class: ** If dynamic provisioning of the message broker is selected, this is the name of the
ClusterInstanceClassused to provision the broker. The defaultClusterInstanceClassname provisions a Tanzu or OSS RabbitMQ instance. You can change the default name to use any other definedClusterInstanceClassthat uses dynamic provisioning. - Number of RabbitMQ Nodes: The number of replica nodes that will be created in the RabbitMQ cluster. This should be an odd number.
- Database Type: The type of database that will be used for the services to store data. Current options are H2, MySQL, and Postgres (not yet supported). If anything other than H2 is selected, you will be asked to configure additional database properties.
- Dynamically Provision Database: If this box is checked, the accelerator will generate configuration that enables dynamically provisioning of the database. Dynamic provisioning will use the
ClusterInstanceClassdefined in the next option. - Database Cluster Instance Class: If dynamic provisioning of the database is selected, this is the name of the
ClusterInstanceClassused to provision the database. The defaultClusterInstanceClassname provisions a Tanzu MySQL instance (the Tanzu MySQL operator needs to be installed first). You can change the default name to use any other definedClusterInstanceClassthat uses dynamic provisioning. - Database Name: The name of the database resource that the micro-services will connect to. This name will be propagated to the
workload.yamlfiles in the resource claim section to indicate the names of the database that micro-services should connect to. - Cache Type: The type of cache that will be used for the services to store state date. Current options are In Memory or Redis.
- Dynamically Provision Cache: If this box is checked, the accelerator will generate configuration that enables dynamically provisioning of the external caching option. Dynamic provisioning will use the
ClusterInstanceClassdefined in the next option. - Cache Cluster Instance Class: If dynamic provisioning of the cache is selected, this is the name of the
ClusterInstanceClassused to provision the cache. The defaultClusterInstanceClassname provisions a Redis instance that uses a Bitnami configuration. You can change the default name to use any other definedClusterInstanceClassthat uses dynamic provisioning. - Cache Instance Name: The name of the caching resource that the micro-services will connect to (in not using the In Memory option). This name will be propagated to the
workload.yamlfiles in the resource claim section to indicate the names of the caching system that micro-services should connect to. - Enable Security: If this box is checked, the accelerator will configure the applications to use a
secureprofile that will require the UI application to authenticate users and for micro-services to require valid oAuth tokens with each request. The accelerator will also generate a file namedappSSOInstance.yamlin theconfig/service-operatordirectory that contains the configuration to create an AppSSO authorization server. It will also generate a file namedclientRegistrationResourceClaim.yamlin theconfig/app-operatordirectory that contains configuration for creating a ClientRegistration resource as well as the resource claims that the micro-services can use to create service bindings to AppSSO instance (via the ClientRegistration). - AppSSO Instance Name: If security is enabled, the name of the AppSSO resource that the micro-services will connect to. This name will also be propagated to the
workload.yamlfiles in the resource claim section to indicate the names of the AppSOO resource that micro-services should connect to. Lastly, this name will be used as the hostname part of the AppSSO URL. - Create Default Dev Account: If this box is checked, a default development account will be created that can be used to authenticate with the AppSSO service.
- Dev Account Username: The username of the default dev account in the AppSSO instance.
- Dev Account Password: The plain text password of the default dev account in the AppSSO instance.
- Workload URL : If TAP Spring Cloud Gateway is selected, this is the expected URL of the Where For Dinner application's UI web page.
Note: If the TAP Spring Cloud Gateway option is selected, the default scheme for the Workload URI will behttp. - Alternate Workload Implementations : If this box is checked, certain services will be built using alternative implementations written in different programming languages.
- Support native GraalVM builds : If this box is checked, native images will be built for workloads that support this feature.
NOTE: The default workload namespace is workloads and NOT default. Make sure the workload namespace you choose is setup to build and run workloads.
The generated zip file from the accelerator will contain project folders for all micro-services and yaml configuration files for the selected options. It will also contain a workloads.yaml files in the config/developer directory that contain configuration data from the choices above that can be used to create the workloads on the cluster.
Before deploying the application, an appropriate persona should first deploy any requested configuration items from the section above using the kubectl command against each yaml file. Service operator config should be applied first then application operator config should be applied next. Run the following commands from the root directory of the exploded accelerator zip file replacing the with the name of the Service Namespace you entered in the accelerator (it was defaulted to service-instances):
kubectl create ns <services-namespace>
kubectl apply -f ./config/service-operator/
kubectl apply -f ./config/app-operator/
Next apply the workloads.yaml file to the cluster to create, build, and deploy the workloads.
kubectl apply -f ./config/developer/workloads.yaml
You can watch the progress of the build and deployment of the applications using the Tanzu CLI. The following tails the build logs for the where-for-dinner-search application (assuming you used the workloads namespace as the workload namespace):
tanzu apps workloads tail where-for-dinner-search -n workloads --since 10m --timestamp
Assuming the application has successfully deployed, you can test the application navigating to the application's URL with a web browser.
If you selecte the OSS Spring Cloud Gateway as the gateway option, you can retrieve the URL with the following command and replacing the <workload-namespace>
placeholder with the namespace that the application has been deployed to.
tanzu apps workloads get where-for-dinner -n <workload-namespace>
If the application was successfully deployed, you should see a section at the bottom of the command's out similar to the following:
Knative Services
NAME READY URL
where-for-dinner Ready http://where-for-dinner.perfect300rock.com
If you chose the TAP Spring Cloud Gateway as the gateway option, use the URL that entered in the Workload URL field of the accelerator.
The application's home screen should look similar to the following (assuming you did not enable security). If you selected to enable security, the home screen will contain a Login button.
The Where for Dinner source repo contains a full TAP catalog configuration that is located in the repository's catalog directory including API docs links. You can register this catalog within TAP by pointing the Repository URL to the URL of catalog-info.yaml file in the catalog directory of the repository.
Ex:
https://github.com/vmware-tanzu/application-accelerator-samples/where-for-dinner/blob/main/catalog/catalog-info.yaml
NOTE: It is highly recommended that you create your own code repository first and then import the catalog from your repository. You will most likely need update the URLs in the files below to properly import the catalog which contains component API configuration (API Docs).
To enable API Docs to work correctly with your deployment, you will need to update the API docs URIs in each of the following files by replacing the $text element with the URI of your deployment:
- catalog
- components
- where-for-dinner-availability
- where-for-dinner-availability.yaml
- where-for-dinner-search
- where-for-dinner-search.yaml
You may also be required to enable CORS access in your TAP-GUI configuration in your tap-values.yaml file before the catalog will successfully import. The following is a snippet from the tap_gui section of a sample tap-values.yaml file. Pay specific attention to the reading section and replace the host field with the URL of your deployed Where for Dinner application.
tap_gui:
.
.
.
app_config:
.
.
.
backend:
baseUrl: http://tap-gui.perfect300rock.com
cors:
origin: http://tap-gui.perfect300rock.com
reading:
allow:
- host: 'where-for-dinner.perfect300rock.com'
You will need to update your TAP install with the updated tap-values file before the CORS change takes effect.
tanzu package installed update tap -n tap-install --values-file tap-values.yaml
To remove the application from your cluster, navigate to the root directory of the unzipped accelerator file and run the following commands to delete all of the created resources:
kubectl delete -f ./config/developer/
kubectl delete -f ./config/app-operator/
kubectl delete -f ./config/service-operator/
kubectl delete ns service-instances