Skip to content
This repository has been archived by the owner on Aug 6, 2024. It is now read-only.
/ istio-demo Public archive

demonstrating canary deployments with istio

11 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

digio/istio-demo

BranchesTags

Repository files navigation

Istio Demonstration

A basic example of implementing ingress into an Istio service mesh, with a demonstration of canary based policy which utilises labels on a multi-versioned microservice, which has been deployed within the Istio service mesh.

Contents

Reference

[1] https://istio.io/docs/reference/config/istio.networking.v1alpha3/

[2] https://istio.io/blog/2018/v1alpha3-routing/

Prerequisites

  • I've developed and tested this using Docker for Mac, with the Kubernetes local cluster enabled. It is available here. These instructions/tooling should also work with Minikube, however I have not tested yet.

  • nginx/haproxy to enable a single origin to prevent CORS complaints when web-app accesses the backend. associated steps are implemented in the Makefile contained in this repo, instructions below.

  • NVM installed and configured in the shell.

Getting Started

To start the presentation alone run the following:

nvm install
nvm use
npm install
npm run start

install dependencies

make install

Resolution

Add the following to your /etc/hosts to faciliate domain resolution which will be used for requesting content from the service mesh, running on your local machine within docker-for-desktop.

...
127.0.0.1   webapp.demo api.demo grafana.demo kiali.demo tracing.demo
...

Install Demo

The end-to-end install can be started by running:

make install.demo

Install Istio

In order to install Istio we run the below command. What this will do is deploy the Istio control plane via Helm, there are a range of flags added to add in the additional observability tooling as part of the deployment

make istio.intall

Deploy Example Microservice

With the namespace labelled, the below deployment will have side-cars added and consequently be augmented into the mesh.

These are deployed in the development namespace. This namespace has been labeled with istio-injection=enabled, consequently the admissionMutatingWebhook will modify the deployment resource to include an istio side-car in the deployment.

make deploy.demo

This will apply the related Istio CRD's to faciliate ingress into the mesh to the required microservices. You can see these polices in policy/istio within this repo.

Open a browser and hit http://localhost:3000, and we are ready to roll.

Observability

The observability tooling such as Jaeger, Grafana, Prometheus, and Kiali will be deployed as part of the make istio-install command. However, in order to enable ingress to these services we need to deploy some Ingress policies to enable this connectivity.

This can be achieved with the following make command:

make istio.observability

If you've added the required /etc/hosts configuration. These services will be available at the the following ${HOSTNAME}:${NODE_PORT}. Example:

Generate Traffic

In order to stimulate the given backend microservices and the Istio service mesh, we can generte some Siege traffic via the following command:

make traffic

This will generate many requests to the http://api.demo host, and we should see this traffic coming in via the myriad of observability tooling made available in the previous step.

About

demonstrating canary deployments with istio

Topics

react kubernetes microservices-architecture service-mesh spectaclejs isitio

Resources

Readme
Activity
Custom properties

Stars

11 stars

Watchers

9 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages