Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Document setup-linkerd.sh #17

Open
wants to merge 1 commit into
base: main
Choose a base branch
from
Open

Document setup-linkerd.sh #17

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
64 changes: 49 additions & 15 deletions setup-linkerd.sh
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,9 @@
#!/usr/bin/env bash
#
# SPDX-FileCopyrightText: 2022 Buoyant Inc.
# SPDX-FileCopyrightText: 2023 Buoyant Inc.
# SPDX-License-Identifier: Apache-2.0
#
# Copyright 2022 Buoyant Inc.
# Copyright 2023 Buoyant Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License"); you may
# not use this file except in compliance with the License. You may obtain
Expand All @@ -17,7 +17,27 @@
# See the License for the specific language governing permissions and
# limitations under the License.

#@SHOW
# This sets up Linkerd for the World demo. It assumes that you have Kubernetes
# contexts named 'us-east', 'us-west', and 'eu-central', and that they can
# talk to each other in some way. You can tune this script using environment
# variables, but for the World, _probably_ all you want to do is to set
# CLUSTER_TYPE to something other than "k3d" if you're not using k3d clusters
# on a flat network.
#
# - Set CUSTOM_DOMAINS to a non-empty value to use custom cluster domains for
# each cluster. This will happen automatically if you set CLUSTER_TYPE to
# "k3d", which is its default.
#
# - Set FLAT_NETWORKS to a non-empty value to disable gateways between
# clusters. For the World demo, you should not do this (since CockroachDB
# needs the gateways at the moment).
#
# - Set DISABLE_HEADLESS to a non-empty value to disable headless services.
# This is another thing you should not do right now for the World.

# gen_anchor and gen_issuer use the "step" CLI to make certificates for
# Linkerd. THIS IS NOT PRODUCTION READY: you should be using cert-manager
# or the like. For this demo, it's fine.

gen_anchor () {
rm -rf trust-anchor.crt trust-anchor.key
Expand All @@ -42,7 +62,9 @@ gen_issuer () {
"issuer-${domain}.crt" "issuer-${domain}.key"
}

# Assume that we're on k3d, but allow overriding.
# Handle tuning variables. Start by assuming that we're on k3d, but allow
# overriding.

if [ -z "$CLUSTER_TYPE" ]; then
CLUSTER_TYPE=k3d
CUSTOM_DOMAINS=true
Expand All @@ -60,13 +82,19 @@ if [ -n "$DISABLE_HEADLESS" ]; then
LINK_ARGS=
fi

#### LINKERD_INSTALL_START
#### LINKERD INSTALLATION

# First, set up certificates.

gen_anchor
gen_issuer us-east
gen_issuer us-west
gen_issuer eu-central

# Next, just walk over the different contexts and install Linkerd. Most of
# this is straight out of the Linkerd quickstart; the custom-domains part is
# the main difference here.

for ctx in us-east us-west eu-central; do \
domain="${ctx}" ;\
CLUSTER_DOMAIN= ;\
Expand All @@ -82,20 +110,27 @@ for ctx in us-east us-west eu-central; do \
| kubectl --context $ctx apply -f - ;\
done

set -x
# Next, walk contexts and install the Linkerd multicluster extension. We do
# this after the main Linkerd install to minimize waiting time: if we
# installed multicluster in the loop above, we'd be waiting for each control
# plane to get ready in series, rather than in parallel.

for ctx in us-east us-west eu-central; do \
linkerd --context=$ctx multicluster install $GATEWAY \
| kubectl --context $ctx apply -f - ;\
done

# Finally, run linkerd check to make sure everything is working.

for ctx in us-east us-west eu-central; do \
linkerd --context=$ctx check ;\
done

# Link clusters.
# Note that this bit with overriding the API server address is just a thing
# for k3d.
# Link the clusters together. This looks more complex than it is because, for
# k3d, we need to override the APIserver address that Linkerd multicluster
# will try to use -- this is because of the way k3d's networking works.
# Basically, we grab the IP address of the server node in each cluster _on the
# shared Docker network_; that's where we need to talk to the APIserver.

USEAST_APISERVER=
USWEST_APISERVER=
Expand All @@ -114,12 +149,11 @@ if [ "$CLUSTER_TYPE" = "k3d" ]; then
EUCENTRAL_APISERVER=$(apiserver_addr eu-central)
fi

set -x

# This looks completely bizarre, I know, but we're going to link
# each cluster to _all three clusters_. Why? It's the way to make
# get ClusterIP services for each pod in each cluster. Horrible,
# but yeah.
# This looks completely bizarre, I know, but we're going to link each cluster
# to _all three clusters_. Why? It's the way to make get ClusterIP services
# for each pod in each cluster, which is important for CockroachDB because it
# needs to have a single name for each CockroachDB node that's resolvable in
# every cluster.

for ctx in us-east us-west eu-central; do \
linkerd --context=us-east multicluster link \
Expand Down