Update Deployment and Development docs

Update the deployment and development docs so that it can help developers/users to refer to the latest guide and be able to run/deploy the hub on their own environment. Signed-off-by: vinamra28 <[email protected]>
tektoncd · Jan 19, 2021 · 4815bd3 · 4815bd3
1 parent f645eea
commit 4815bd3
Show file tree

Hide file tree

Showing 2 changed files with 152 additions and 40 deletions.
diff --git a/docs/DEPLOYMENT.md b/docs/DEPLOYMENT.md
@@ -1,35 +1,29 @@
 # Deployment
 
-### Prerequisites
+## Prerequisites
 
 - Kubernetes Cluster
   - You can also deploy on [Minkube][minikube], [kind][kind] or [OpenShift][openshift].
 - [kubectl][kubectl]
 - [ko][ko]
 
-  - You can find installation steps [here][ko].
+  - You can find installation steps [here][ko] or if you have Go installed then you can execute the command :-
 
-  ```
-  go get github.com/google/ko/cmd/ko
-  ```
+    ```bash
+    go get github.com/google/ko/cmd/ko
+    ```
 
-- [docker][docker]
+- [docker][docker] or [podman][podman]
 
-### Deploy API Service
+## Deploy API Service
 
 Ensure you are in `api` directory
 
-```
+```bash
 cd api
 ```
 
-#### Deploy the database
-
-```
-kubectl apply -f config/00-config
-```
-
-#### Update the GitHub Api secret and client id
+### Update the GitHub Api secret and client id
 
 Navigate to the `config/00-config/` and edit `31-api-secret.yaml` . Set GitHub `oauth` client id and client secret.
 
@@ -50,28 +44,36 @@ stringData:
 
 **NOTE:** DO NOT commit and push
 
-#### Prepare the API and DB Migration Release and apply the Yaml
+### Apply supporting Resources
+
+```bash
+kubectl apply -f config/00-config
+```
+
+### Prepare the API and DB Migration Release and apply the Yaml
 
 Export `KO_DOCKER_REPO` for ko to publish image to. E.g.
 
-```
+```bash
 export KO_DOCKER_REPO=quay.io/<username>
 ```
 
-```
+```bash
 ko resolve -f config > api.yaml
 ```
 
+The command above will create a container image and push it to the registry pointed by `KO_DOCKER_REPO`. Ensure that the image is **publicly** available.
+
 Apply the release yaml
 
-```
-kubectl apply -f api.yaml
+```bash
+ko apply -f api.yaml
 ```
 
-The command above will create a container image and push it to the registry pointed by `KO_DOCKER_REPO`. Ensure that the image is **publicly** available
+The command above will create the deployment for Database and API and a job for DB-Migration.
 
-```
-kubectl get pods
+```bash
+$ kubectl get pods
 NAME                   READY   STATUS      RESTARTS   AGE
 api-86ccf7484f-qrz4k   1/1     Running     3          50s
 db-589d44fdd5-ksf8v    1/1     Running     0          50s
@@ -85,21 +87,48 @@ One can also check the logs using `kubectl logs db-migration-8vhpd`
 
 The migration logs at the end should show
 
-```
+```bash
 2020-09-22T15:35:16.412Z INFO migration/migration.go:91 Migration ran successfully !! {"service": "migration"}
 2020-09-22T15:35:16.412Z INFO db/main.go:39 DB initialisation successful !! {"service": "main"}
 ```
 
-#### Verify if api route is accessible
+### Setup Route/Ingress
 
-```
+After the deployment is done successfully, we need to expose the URL to access the API.
+
+- If deploying on OpenShift:-
+
+  ```bash
+  oc apply -f config/openshift/
+  ```
+
+- If deploying on Kubernetes:-
+
+  - Create the secret containing tls cert and tls key
+
+    ```bash
+    kubectl create secret tls api-hub-tekton-dev-tls --cert=path/to/cert/file --key=path/to/key/file
+    ```
+
+  - Apply the Ingress
+
+    ```bash
+    kubectl apply -f config/99-post-deploy/33-api-ingress.yaml
+    ```
+
+### Verify if api route is accessible
+
+For `OpenShift`:-
+
+```bash
 curl -k -X GET -I $(oc get routes api --template='https://{{ .spec.host }}/categories')
 ```
 
-#### In case of refreshing the catalog
+### Setup Catalog Refresh Secret
 
 1. Get the Hub Token
-2. Navigate to `config/99-post-deploy` and edit `34-catalog-refresh-secret.yaml`. Set the Hub Token
+2. Make sure you have your Github ID in Catalog Refresh scope present in [config.yaml][config.yaml]
+3. Navigate to `config/99-post-deploy` and edit `34-catalog-refresh-secret.yaml`. Set the Hub Token
 
    ```yaml
    apiVersion: v1
@@ -112,25 +141,25 @@ curl -k -X GET -I $(oc get routes api --template='https://{{ .spec.host }}/categ
      HUB_TOKEN: hub token
    ```
 
-3. `kubectl apply -f config/99-post-deploy/34-catalog-refresh-secret.yaml`
+4. `kubectl apply -f config/99-post-deploy/34-catalog-refresh-secret.yaml`
 
-### Deploy UI
+## Deploy UI
 
-```
+```bash
 cd ui
 ```
 
-#### Build and Publish Image
+### Build and Publish Image
 
-```
+```bash
 docker build -t <image> . && docker push <image>
 ```
 
-#### Update the deployment image
+### Update the deployment image
 
 Update `config/11-deployement` to use the image built above
 
-#### Update the GitHub OAuth Client ID
+### Update the GitHub OAuth Client ID
 
 Edit `config/10-config.yaml` and set your GitHub OAuth Client ID
 
@@ -146,25 +175,106 @@ data:
   GH_CLIENT_ID: GH OAuth Client ID   <<< update this
 ```
 
-#### Apply the manifests
+### Apply the manifests
 
-```
+```bash
 kubectl apply -f config
 ```
 
-#### Ensure pods are up and running
+### Ensure pods are up and running
 
-```
+```bash
 kubectl get pods
 ```
 
+### Setup Route/Ingress
+
+After the deployment is done successfully, we need to expose the URL to access the UI.
+
+- If deploying on OpenShift:-
+
+  ```bash
+  oc apply -f config/openshift/
+  ```
+
+- If deploying on Kubernetes:-
+
+  - Create the secret containing tls cert and tls key
+
+    ```bash
+    kubectl create secret tls ui-hub-tekton-dev-tls --cert=path/to/cert/file --key=path/to/key/file
+    ```
+
+  - Apply the Ingress
+
+    ```bash
+    kubectl apply -f config/post-deploy
+    ```
+
+### Verify if UI route is accessible
+
 If on openshift verify if the ui route is accessible
 
-Open: oc get routes ui --template='https://{{ .spec.host }} '
+Open: `oc get routes ui --template='https://{{ .spec.host }} '`
+
+## Deploying for the first time?
+
+> Note: Make sure you have added your name in the scopes present [config.yaml][config.yaml]
+
+1. Open currently deployed hub in the browser
+2. Login into the Hub
+3. After successful login, now open the terminal and follow below steps.
+4. Exec into the database pod
+   ```bash
+   kubectl exec -it <db-pod-name> bash
+   ```
+5. Open PostgreSQL terminal by executing the command
+
+   ```bash
+   psql -U postgres
+   ```
+
+   You'll see the terminal changed to
+
+   ```bash
+   $ psql -U postgres
+   psql (13beta3 (Debian 13~beta3-1.pgdg100+1))
+   Type "help" for help.
+
+   postgres=#
+   ```
+
+6. Connect to Hub database by executing
+   ```sql
+   postgres=# \c hub
+   ```
+7. Execute the SQL query
+
+   ```sql
+   postgres=# delete from configs;
+   ```
+
+8. Quit the database pod by first executing
+
+   ```sql
+   postgres=# \q
+   ```
+
+   and then `exit`.
+
+9. Delete the API pod by executing the following command
+   ```bash
+   oc delete pod <pod-name>
+   ```
+   This will delete the previously created pod and spin a new pod which will add the scopes in the DB
+10. Repeat the steps 1-2
+11. Copy the Hub Token from the UI and add that in [catalog refresh step](#setup-catalog-refresh-secret)
 
 [ko]: https://github.com/google/ko
 [kubectl]: https://kubernetes.io/docs/tasks/tools/install-kubectl/
 [kind]: https://kind.sigs.k8s.io/docs/user/quick-start/
 [minikube]: https://kubernetes.io/docs/tasks/tools/install-minikube/
 [openshift]: https://www.openshift.com/try
 [docker]: https://docs.docker.com/engine/install/
+[podman]: https://podman.io/getting-started/installation
+[config.yaml]: https://raw.githubusercontent.com/tektoncd/hub/master/config.yaml
diff --git a/docs/DEVELOPMENT.md b/docs/DEVELOPMENT.md
@@ -104,6 +104,8 @@ After creation, add the OAuth Client ID as `GH_CLIENT_ID` and Client Secret as `
 
 For `JWT_SIGNING_KEY`, you can use any random word.
 
+For `ACCESS_JWT_EXPIRES_IN` and `REFRESH_JWT_EXPIRES_IN` you can set the time as per your convenience. Example `15m`, `10y`.
+
 ### Running API Service
 
 Once the database is setup and the migration has been run, you can run api service by