This guide outlines the steps necessary to test out the operator in an OpenShift cluster. It assumes you are running this from the git root of the cockroach-operator repo.
Steps in this guide:
- Prerequisites
- Create an OpenShift cluster with GCP (~40m)
- Installing the operator
- Creating a CrdbCluster
- Verifying the cluster is operational
- Tearing down the cluster
For the rest of this guide, we'll be using some placeholders:
<CLUSTER_NAME>- The name of the OpenShift cluster<DNS_ZONE>- The DNS zone that will be used by the installer script<GCP_PROJECT>- Your GCP project id (not necessarily the same as the name)<GCP_REGION>- The region you want to deploy to (e.g.us-central1,us-east1)
You can get your project id by running the following command:
gcloud projects list --format="value(PROJECT_ID)" --filter="PROJECT_ID ~ ^<START_OF_PROJECT_NAME>"Replace <START_OF_PROJECT_NAME> with your project. E.g. muto-playground)
You'll need to have a few binaries available on the path. Specifically:
- gcloud
- oc
- openshift-install
gcloud will need to be installed via the instructions here. However oc
and openshift-install can be installed with bazel build //hack/bin/....
In order to create the OpenShift in GCP, you'll need to have a DNS configured. You can verify that it's setup correctly
by running gcloud dns managed-zones list. If you have an existing domain name sitting somewhere that you'd like to
migrate over, check out this guide.
You should see a publicly visible DNS NAME entry for a root domain like example.com.. Take note of this value. We'll
need it in the next step (referred to as <DNS_ZONE> hereafter).
The installer script we use here will use the default configuration from gcloud. For this reason you'll need to ensure you've logged into and set the default context.
gcloud auth login application-default # ensure you're logged in
gcloud config set project <GCP_PROJECT> # set the default projectYou'll want the following environment variables to be exported (by running these in your terminal):
export PATH="$(pwd)/bazel-bin/hack/bin:${PATH}" # ensures oc and openshift-install are on the PATH
export CLUSTER_NAME="<CLUSTER_NAME>"
export DNS_ZONE="<DNS_ZONE>"
export GCP_PROJECT="<GCP_PROJECT>"
export GCP_REGION="<GCP_REGION>"- Login to OpenShift
- Press "Create Cluster" button
- Scroll down to "Run it yourself"
- Click on Google Cloud
- Select Installer Provisioned (recommended)
- Click on download pull secret
NOTE: You must download the pull secret file as it is required for the install. This guide assumes it's at
${HOME}/Downloads/pull-secret.txt.
Next, let's run the installer script. This will create a cluster in GCP and install OpenShift on it.
hack/openshift-gcp-create.sh \
-p "${GCP_PROJECT}" \
-s <pull secret file> \
-z "${DNS_ZONE}" \
-n "${CLUSTER_NAME}" \
-r "${GCP_REGION}"This will take some time. Be sure to take note of the web console details (URL, username, and password). You'll need this later. This info will be printed at the end of the run.
Verify that the install worked by running the following commands:
export KUBECONFIG="${HOME}/openshift-${CLUSTER_NAME}/auth/kubeconfig"
oc whoamiNOTE: DO NOT delete the folder where the installation was made, in our case
${HOME}/openshift-<cluster name>. If you delete this you will have to decommission manually the infrastructure from GCP.
You have a few choices when in comes to installing the CRDs and the operator.
This option will install the CRDs and the operator as they are defined locally. This will typically mean using a
published image (e.g. cockroachdb/cockroach-operator:v2.2.1)
oc apply -f install/crds.yaml
oc apply -f install/operator.yaml
oc wait --for condition=Available deploy/cockroach-operator --timeout=2mNOTE: If you'd rather pull from GitHub, you can prefix the paths with
https://raw.githubusercontent.com/cockroachdb/cockroach-operator/<tag>/
You can also install the operator from OperatorHub. This option will install the latest published version of the operator.
- Login to the web console using the address, username, and password you got from the installer script output.
- From the side menu, select Operators -> OperatorHub
- Search for cockroach and install the one NOT marked with the Marketplace tag
With the operator running we can now create CrdbCluster resources. For example, we can deploy the example cluster by running the following:
oc apply -f examples/example.yaml
oc rollout status -w sts/cockroachdbWith our cluster in place and running, we can test it out by running some basic commands or a Crdb workload. To do this we'll need to deploy a pod that can access the cluster. We have one predefined in the examples directory.
oc apply -f examples/client-secure-operator.yaml
oc wait --for condition=Ready pod/cockroachdb-client-secure --timeout=2mWhen we want to run commands (e.g. sql or workload) we do this by running those commands via the secure client pod.
# general format
oc exec -it cockroachdb-client-secure -- cockroach <ARGS>
# EXAMPLE: execute some SQL
oc exec -it cockroachdb-client-secure -- cockroach sql --execute "SHOW DATABASES;"
# EXAMPLE: run a workflow
oc exec -it cockroachdb-client-secure -- cockroach workload init bank
oc exec -it cockroachdb-client-secure -- cockroach workload run bank --duration 1mThe last step is to tear it all down:
# delete the cluster
GOOGLE_CREDENTIALS=~/.gcp/osServiceAccount.json \
openshift-install destroy cluster --dir "${HOME}/openshift-${CLUSTER_NAME}" --log-level=debug
# delete the service accounts
hack/openshift-iam-delete.sh -p "${GCP_PROJECT}" -n "${CLUSTER_NAME}"openshift-install will take care of removing the local directory in "${HOME}". However, you will need to archive the
cluster from OpenShift.