This topic tells you how to build your customized Tanzu Developer Portal with Configurator.
Ensure that the following is true:
-
Configurator has a running and operating Tanzu Application Platform instance to build the customized portal and run the resulting customized image. You can use a
fullprofile for everything or you can use abuildprofile for customizing the portal and aviewprofile for running the customized portal. For more information, see Components and installation profiles for Tanzu Application Platform. -
Your instance of Tanzu Application Platform has a working supply chain that can build the Tanzu Developer Portal bundle. It doesn't need to be able to deliver it because currently an overlay is used to place the built image on the cluster where the pre-built Tanzu Developer Portal resides.
-
Your developer namespace has access to both:
- Your installation registry where the source Tanzu Application bundles are located
- Your build registry where your built images are staged
-
You have a working Tanzu Application Platform installation and you can build a sample application, such as
Tanzu-Java-Web-Appin Generate an application with Application Accelerator. -
Your extra plug-ins are in the npmjs.com registry or a private registry.
-
Carvel tools is installed on your workstation.
imgpkg, in particular, must be installed to perform some of the build steps. -
The yq tool is installed.
-
The Docker CLI is installed and you are logged into your registry.
Important Tanzu Application Platform plug-ins cannot be removed from customized portals. However, if you decide you want to hide them, you can use the runtime configuration options in your
tap-values.yamlfile.
To prepare your Configurator configuration file:
-
Create a new file called
tdp-config.yamlby using the following template:app: plugins: - name: "NPM-PLUGIN-FRONTEND" version: "NPM-PLUGIN-FRONTEND-VERSION" backend: plugins: - name: "NPM-PLUGIN-BACKEND" version: "NPM-PLUGIN-BACKEND-VERSION"
Where:
NPM-PLUGIN-FRONTENDis the npm registry and module name of the front-end plug-inNPM-PLUGIN-FRONTEND-VERSIONis the version of your desired front-end plug-in that exists in the npm registryNPM-PLUGIN-BACKENDis the npm registry and module name of the back-end plug-in that you wantNPM-PLUGIN-BACKEND-VERSIONis the version of your desired back-end plug-in that exists in the npm registry
The following example adds the sample
techinsightsplug-in. The plug-in wrapper is available in the VMware NPM repository:app: plugins: - name: "@vmware-tanzu/tdp-plugin-techinsights" version: "0.0.2" backend: plugins: - name: "@vmware-tanzu/tdp-plugin-techinsights-backend" version: "0.0.2"
-
If you plan to add plug-ins that exist in a private registry, configure the Configurator with a private registry.
-
Encode the file in Base64, to later embed
tdp-config.yamlin the workload definition file, by running:base64 -i tdp-config.yamlIf no plug-ins are specified in your
tdp-config.yamlfile, the following plug-ins are present by default:- Runtime Resources Visibility
- Application Live View
- Application Accelerator
- API Documentation
- Supply Chain Choreographer
- Security Analysis
- DORA Metrics
To build a customized Tanzu Developer Portal, you must identify the Configurator image to pass
through the supply chain. Depending on your choices during installation, this is on either
registry.tanzu.vmware.com or the local image registry (imgpkg) that you moved the installation
packages to.
-
Using the
imgpkgtool, retrieve the image location by running:imgpkg describe -b $(kubectl get -n tap-install $(kubectl get package -n tap-install \ --field-selector spec.refName=tpb.tanzu.vmware.com -o name) -o \ jsonpath="{.spec.template.spec.fetch[0].imgpkgBundle.image}") -o yaml --tty=true | grep -A 1 \ "kbld.carvel.dev/id:[[:blank:]]*[^[:blank:]]*configurator" | grep "image:" | sed 's/[[:blank:]]*image:[[:blank:]]*//g'
Output similar to the following appears:
IMAGE-REGISTRY/tap-packages@sha256:bea2f5bec5c5102e2a69a4c5047fae3d51f29741911cf5bb588893aa4e03ca27 -
Record this value to later use it in place of the
TDP-IMAGE-LOCATIONplaceholder in the workload definition.
There are two options for passing your workload through a supply chain and building your customized portal:
Use an existing supply chain : To use an existing supply chain to build your custom portal:
-
Create a file called
tdp-workload.yamlwith the following content:apiVersion: carto.run/v1alpha1 kind: Workload metadata: name: tdp-configurator namespace: DEVELOPER-NAMESPACE labels: apps.tanzu.vmware.com/workload-type: web app.kubernetes.io/part-of: tdp-configurator spec: build: env: - name: BP_NODE_RUN_SCRIPTS value: 'set-tdp-config,portal:pack' - name: TPB_CONFIG value: /tmp/tpb-config.yaml - name: TPB_CONFIG_STRING value: ENCODED-TDP-CONFIG-VALUE source: image: TDP-IMAGE-LOCATION subPath: builder
Where:
DEVELOPER-NAMESPACEis an appropriately configured developer namespace on the cluster.ENCODED-TDP-CONFIG-VALUEis the Base64-encoded value that you encoded earlier.TDP-IMAGE-LOCATIONis the location of the Configurator image in the image registry from which you installed Tanzu Application Platform. You discovered this location earlier when you identified your Configurator image.
Depending on which supply chain you're using or how you configured it, you might need to add extra sections to your workload definition file to accommodate activities such as testing.
For example:
apiVersion: carto.run/v1alpha1 kind: Workload metadata: name: tdp-configurator namespace: default labels: apps.tanzu.vmware.com/workload-type: web app.kubernetes.io/part-of: tdp-configurator spec: build: env: - name: BP_NODE_RUN_SCRIPTS value: "set-tdp-config,portal:pack" - name: TPB_CONFIG value: /tmp/tdp-config.yaml - name: TPB_CONFIG_STRING value: YXBwOgogIHBsdWdpbnM6CiAgICAtIG5hbWU6ICdAdm13YXJlLXRhbnp1L3RkcC1wbHVnaW4tdGVjaGluc2lnaHRzJwogICAgICB2ZXJzaW9uOiAnMC4wLjInCgpiYWNrZW5kOgogIHBsdWdpbnM6IAogICAgLSBuYW1lOiAnQHZtd2FyZS10YW56dS90ZHAtcGx1Z2luLXRlY2hpbnNpZ2h0cy1iYWNrZW5kJwogICAgICB2ZXJzaW9uOiAnMC4wLjIn source: image: TDP-IMAGE-LOCATION subPath: builder
The
TPB_CONFIG_STRINGvalue can be decoded as the earlier example that includes the TechInsights front-end and back-end plug-ins.TDP-IMAGE-LOCATIONis the location of your Configurator image identified in earlier steps. -
Submit the workload definition file by running:
kubectl apply -f tdp-workload.yamlThe supply chain does not need to go beyond the image-provider stage. After an image is built, you can proceed to run your customized Tanzu Developer Portal.
Use a custom supply chain
: To use a custom supply chain to build your custom portal, follow these steps.
This method creates a custom supply chain for workload-type: tdp that encompasses only the steps
necessary to build the customized image:
-
Create a file called
tdp-sc.yamlwith the following content:apiVersion: carto.run/v1alpha1 kind: ClusterSupplyChain metadata: name: tdp-configurator spec: resources: - name: source-provider params: - default: default name: serviceAccount - default: TDP-IMAGE-LOCATION name: tdp_configurator_bundle templateRef: kind: ClusterSourceTemplate name: tdp-source-template - name: image-provider params: - default: default name: serviceAccount - name: registry default: ca_cert_data: "" repository: IMAGE-REPOSITORY server: REGISTRY-HOSTNAME - default: default name: clusterBuilder sources: - name: source resource: source-provider templateRef: kind: ClusterImageTemplate name: tdp-kpack-template selectorMatchExpressions: - key: apps.tanzu.vmware.com/workload-type operator: In values: - tdp --- apiVersion: carto.run/v1alpha1 kind: ClusterImageTemplate metadata: name: tdp-kpack-template spec: healthRule: multiMatch: healthy: matchConditions: - status: "True" type: BuilderReady - status: "True" type: Ready unhealthy: matchConditions: - status: "False" type: BuilderReady - status: "False" type: Ready imagePath: .status.latestImage lifecycle: mutable params: - default: default name: serviceAccount - default: default name: clusterBuilder - name: registry default: {} ytt: | #@ load("@ytt:data", "data") #@ load("@ytt:regexp", "regexp") #@ def merge_labels(fixed_values): #@ labels = {} #@ if hasattr(data.values.workload.metadata, "labels"): #@ exclusions = ["kapp.k14s.io/app", "kapp.k14s.io/association"] #@ for k,v in dict(data.values.workload.metadata.labels).items(): #@ if k not in exclusions: #@ labels[k] = v #@ end #@ end #@ end #@ labels.update(fixed_values) #@ return labels #@ end #@ def image(): #@ return "/".join([ #@ data.values.params.registry.server, #@ data.values.params.registry.repository, #@ "-".join([ #@ data.values.workload.metadata.name, #@ data.values.workload.metadata.namespace, #@ ]) #@ ]) #@ end #@ bp_node_run_scripts = "set-tpb-config,portal:pack" #@ tpb_config = "/tmp/tpb-config.yaml" #@ for env in data.values.workload.spec.build.env: #@ if env.name == "TPB_CONFIG_STRING": #@ tpb_config_string = env.value #@ end #@ if env.name == "BP_NODE_RUN_SCRIPTS": #@ bp_node_run_scripts = env.value #@ end #@ if env.name == "TPB_CONFIG": #@ tpb_config = env.value #@ end #@ end apiVersion: kpack.io/v1alpha2 kind: Image metadata: name: #@ data.values.workload.metadata.name labels: #@ merge_labels({ "app.kubernetes.io/component": "build" }) spec: tag: #@ image() serviceAccountName: #@ data.values.params.serviceAccount builder: kind: ClusterBuilder name: #@ data.values.params.clusterBuilder source: blob: url: #@ data.values.source.url subPath: builder build: env: - name: BP_OCI_SOURCE value: #@ data.values.source.revision #@ if regexp.match("^([a-zA-Z0-9\/_-]+)(\@sha1:)?[0-9a-f]{40}$", data.values.source.revision): - name: BP_OCI_REVISION value: #@ data.values.source.revision #@ end - name: BP_NODE_RUN_SCRIPTS value: #@ bp_node_run_scripts - name: TPB_CONFIG value: #@ tpb_config - name: TPB_CONFIG_STRING value: #@ tpb_config_string --- apiVersion: carto.run/v1alpha1 kind: ClusterSourceTemplate metadata: name: tdp-source-template spec: healthRule: singleConditionType: Ready lifecycle: mutable params: - default: default name: serviceAccount revisionPath: .status.artifact.revision urlPath: .status.artifact.url ytt: | #@ load("@ytt:data", "data") #@ def merge_labels(fixed_values): #@ labels = {} #@ if hasattr(data.values.workload.metadata, "labels"): #@ exclusions = ["kapp.k14s.io/app", "kapp.k14s.io/association"] #@ for k,v in dict(data.values.workload.metadata.labels).items(): #@ if k not in exclusions: #@ labels[k] = v #@ end #@ end #@ end #@ labels.update(fixed_values) #@ return labels #@ end --- apiVersion: source.apps.tanzu.vmware.com/v1alpha1 kind: ImageRepository metadata: name: #@ data.values.workload.metadata.name labels: #@ merge_labels({ "app.kubernetes.io/component": "source" }) spec: serviceAccountName: #@ data.values.params.serviceAccount interval: 10m0s #@ if hasattr(data.values.workload.spec, "source") and hasattr(data.values.workload.spec.source, "image"): image: #@ data.values.workload.spec.source.image #@ else: image: #@ data.values.params.tdp_configurator_bundle #@ end
Where:
TDP-IMAGE-LOCATIONis the location of the Configurator image in the image registry from which you installed Tanzu Application Platform. You discovered this location earlier when you identified your Configurator image.REGISTRY-HOSTNAMEis the name of the container registry that your developer namespace was configured to push artifacts to.IMAGE-REPOSITORYis the name of the repository (folder) on theREGISTRY-HOSTNAMEthat you want to push built artifacts to.
-
Submit the custom supply chain file by running:
kubectl apply -f tdp-sc.yaml -
Create a file called
tdp-workload.yamlwith the following content:apiVersion: carto.run/v1alpha1 kind: Workload metadata: name: tdp-configurator-1-sc namespace: DEVELOPER-NAMESPACE labels: apps.tanzu.vmware.com/workload-type: tdp app.kubernetes.io/part-of: tdp-configurator-1-custom spec: build: env: - name: TPB_CONFIG_STRING value: ENCODED-TDP-CONFIG-VALUE
Where:
DEVELOPER-NAMESPACEis an appropriately configured developer namespace on the clusterENCODED-TDP-CONFIG-VALUEis the Base64-encoded value that you encoded earlier
-
Submit the workload definition file by running:
tanzu apps workload create -f tdp-workload.yamlAfter the job finishes the Image Provider stage of your supply chain, run your customized Tanzu Developer Portal instance.