Kubernetes, also known as K8s, is an established open-source container orchestration. We will describe a Couper integration as gateway service to connect multiple internal services.
Note: Currently Couper is not an Ingress-Controller. This is still required e.g. for TLS offloading.
A running Kubernetes Cluster where you can apply the following configuration manifests. Running a local cluster can be achieved e.g. with the MiniKube.
The kubectl is required to apply the manifest files to your cluster.
To keep things simple, we will configure a Pod containing a Couper deployment and a service to describe our basic setup.
Depending on the project you may want to connect the upstream services via additional Kubernetes services.
For those cases use the related service dns-record as origin for your backend configuration within your Couper configuration file.
The following configuration shows a setup with just one container - Couper. We have changed the listening port to 8099 (default: 8080) via environment variable. This change will affect the service configuration since we will map the service to the container port.
apiVersion: apps/v1
kind: Deployment
metadata:
name: couper-example
spec:
replicas: 1
selector:
matchLabels:
app: couper
minReadySeconds: 2
template:
metadata:
labels:
app: couper
spec:
containers:
- name: couper
# With 'latest' tag, K8s pull policy is implicitly 'always'
image: coupergateway/couper:latest
ports:
- containerPort: 8099
livenessProbe:
httpGet:
path: /healthz
port: 8099
initialDelaySeconds: 2
periodSeconds: 5
env:
- name: COUPER_DEFAULT_PORT
value: '8099'The service makes Couper available within your cluster namespace. To do so, we will link the service name to the Couper container: compare the label selector with the key app and the value couper. This selector is also configured in the deployment configuration above.
Additionally, all packages are sent from service port 7070 to the container port 8099.
apiVersion: v1
kind: Service
metadata:
name: couper-example
spec:
ports:
- port: 7070
targetPort: 8099
protocol: TCP
selector:
app: couperNow we are going to apply those manifest (yaml) files. After that Couper will show a welcome page.
I am using MiniKube here, but the following commands should work for all local or remote clusters. Just ensure your kubectl context and namespace is set accordingly.
First, let's see what is already running:
kubectl get pods,services -o wide
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE SELECTOR
service/kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 21h <none>Just the MiniKube service, we will ignore this for now.
Execute the following apply command which will create all resources related to our configurations:
kubectl apply -f deployment.yaml -f service.yaml
deployment.apps/couper-example created
service/couper-example createdCheck the results:
kubectl get pods,services -o wide
NAME READY STATUS RESTARTS AGE IP NODE NOMINATED NODE READINESS GATES
pod/couper-example-579d556dfc-4cpmv 1/1 Running 0 51s 172.17.0.5 minikube <none> <none>
NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE SELECTOR
service/couper-example ClusterIP 10.96.203.227 <none> 7070/TCP 51s app=couper
service/kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 22h <none>We can see the newly created pod/couper-example-* and the service named couper-example with port 7070.
To be able to access the newly created couper-example service and keeping things simple we will just use the kubectl port-forward command.
Note: For production setups this may be solved by a properly configured Ingress-Controller which will forward the traffic, e.g. for a specific hostname to your Couper service.
We will pick a free port on our local machine, e.g. 9090, and forward it to the service port 7070:
kubectl port-forward service/couper-example 9090:7070
Forwarding from 127.0.0.1:9090 -> 8099
Forwarding from [::1]:9090 -> 8099Running curl -v http://127.0.0.1:9090/ results in:
...
< HTTP/1.1 200 OK
< Content-Type: text/html; charset=utf-8
< Server: couper.io
...Or you can visit the welcome page with your browser: http://localhost:9090/
To customize the Couper configuration you can build a container inherited from coupergateway/couper, add the related configuration file and make this image available to your K8s cluster.
First, we will mount the configuration file into the Pod with help from the configmap.
Let's run the following:
kubectl create configmap couper-example --from-file=couper.hcl=couper.hcl
configmap/couper-example createdThis will make the content from our couper.hcl available as key couper.hcl within the configmap couper-example.
The following updates can be found as complete configuration file in deployment_part_two.yaml.
We will add a configmap volume with our couper.hcl and another environment variable to response the current Pod name.
The environment variable MY_POD_NAME gets referred via Couper configuration.
spec:
template:
spec:
containers:
- name: couper
# ... complete spec see file
env:
- name: MY_POD_NAME
valueFrom:
fieldRef:
fieldPath: metadata.name
volumeMounts:
- name: couper-conf
mountPath: /my-conf/couper.hcl
subPath: couper.hcl
volumes:
- name: couper-conf
configMap:
name: couper-examplekubectl replace --force -f deployment_part_two.yaml
deployment.apps "couper-example" deleted
deployment.apps/couper-example replacedNote: The
--forceargument triggers a recreation even if nothing has changed.
You may want to re-run the port-forward command since the previous container got removed.
kubectl port-forward service/couper-example 9090:7070Finally, we call curl -v http://localhost:9090/hello and see the result from our custom endpoint response:
< HTTP/1.1 200 OK
< Content-Type: text/plain
< Server: couper.io
<
Hello! I am couper-example-7fdf98f4c8-mrbx5- K8s: Expose a service