Skip to content

benko/amq-openshift

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

19 Commits
consumer
consumer
 
 
json
json
 
 
producer
producer
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

amq-openshift

This project demonstrates how multiple A-MQ brokers can be set up in a mesh in OpenShift without sharing a DeploymentConfig (that is, how an A-MQ mesh can work without a ReplicationController, just several stand-alone independent pods).

the problem

This project uses RWO (ReadWriteOnce) PVCs (PersistentVolumeClaims), which is apparently the only write-access mode currently supported by EBS storage backend. This means that only one pod will be able to acquire write access and all others trying to access that particular PVC will have to be happy just observing.

That is also why a PVC with this access mode can not be shared by multiple brokers in split mode (that is, sharing one PVC by creating multiple message stores inside subdirectories, one per pod replica), and herein lies the root of all evil, and the reason for this sample project to exist in the first place.

Using a ReplicationController to scale A-MQ pods up to create a mesh works wonderfully when there are RWM (ReadWriteMany) PVCs available - there is almost nothing to do except deploy the pod and scale it.

In RWO access mode, however, each broker must have its own PVC (and a corresponding PV on the cluster side), which means we can not control their number simply by scaling the pods - scaled pods will use the exact same pod template, all of them, which also means their Volumes and VolumeMounts will be the same - referring to the same PersistentVolumeClaim.

For this reason, we create one PVC per broker, deploy each of them using its own DeploymentConfig which has a shared label between all the pods we deployed, to enable the mesh Service to find all pods using a selector over the common label.

To be able to prove that messages are indeed being forwarded between the brokers (i.e. store-and-forward federation), we also use two additional services, an incoming and and outgoing service used by the JMS producer and consumer applications, respectively - we want to be sure they connect to different brokers so as to trigger the message forwarding, of course.

before you begin

  • Log in to OpenShift (either online or on-premise).
$ oc login -u johndoe -p password https://your.on-premise.broker:8443/
$ oc login --token=xxxxxx https://api.preview.openshift.com/

NOTE: amq images are currently not available in OSO (developer preview)

  • Create a new OpenShift project or reuse an existing one (switch to it).
$ oc new-project <new-project>
$ oc project <existing-project>
  • Make sure there are as many PersistentVolumes available as the number of brokers you intend to run. (Unfortunately there is no way to obtain a list of PVs as a normal user - ask your cluster admin, check the project limits, or look it up in documentation.)

deploying

create dependencies

  • Create the PersistentVolumeClaims for the brokers:
    $ oc create -f json/amq-claims.json
  • Create the three services: incoming, outgoing and amq-mesh:
    $ oc create -f json/amq-service.json
  • Create the A-MQ broker service account (optional, but remove the reference from the DC and forget about Kube discovery type if you want to run without it):
    $ oc create -f json/amq-svc-account.json

edit and create the two brokers

We have two options with the brokers. We can either use the DNS or the Kube API mesh discovery type.

The DNS discovery type is excellent because it is lightweight, requires no special privileges and works nicely across projects (provided you have a cross-project SDN established).

The Kube API discovery type is simpler to set up (no project references) but requires a special privilege for the serviceaccount used to run the broker pods, and will only work if all the brokers are defined in the same project.

Edit the deployment configurations in amq-incoming.json and amq-outgoing.json to select the discovery type (and fill in your project name).

  • option 1: use the internal DNS for resolving service endpoints (replace "<project-name>" with the actual project name)
    {
	"name": "AMQ_MESH_DISCOVERY_TYPE",
	"value": "dns"
    },
    {
	"name": "AMQ_MESH_SERVICE_NAME",
	"value": "amq-mesh.<project-name>.svc.cluster.local"
    },
  • option 2: use Kube API for resolving service endpoints
    {
	"name": "AMQ_MESH_DISCOVERY_TYPE",
	"value": "kube"
    },
    {
	"name": "AMQ_MESH_SERVICE_NAME",
	"value": "amq-mesh"
    },

NOTE: You must add the "view" privilege to the service account used to run the pods if using the Kube API:

    $ oc adm policy add-role-to-user view system:serviceaccount:<project-name>:amq-service-account

Create the deployment configurations:

    $ oc create -f amq-incoming.json
    $ oc create -f amq-outgoing.json

start the brokers

Having created the DCs, there are no triggers that would start a deployment, so do it manually:

    $ oc deploy amq-incoming --latest
    $ oc deploy amq-outgoing --latest

Upon start-up, the last log messages displayed by either broker should be:

 INFO | Adding service: [tcp://10.x.y.z:61616, failed:false, connectionFailures:0]
 INFO | Establishing network connection from
	vm://amq-outgoing-x-yyyyy?async=false&network=true to tcp://10.x.y.z:61616
 INFO | Connector vm://amq-outgoing-x-yyyyy started
 INFO | Network connection between vm://amq-outgoing-x-yyyyy#0 and
	tcp:///10.x.y.z:61616@36988 (amq-incoming-x-yyyyy) has been established.

This proves that the two brokers have been able to resolve each other's endpoints through the use of a common service (set by the environment variable AMQ_MESH_SERVICE_NAME).

deploying the clients

create new apps

Once the brokers are running, simply create two new apps, the producer and the consumer.

NOTE: It is recommended to create the producer first, and only proceed to the consumer once the former one is up and running. This will make debugging any potential problems easier and also prove that messages will indeed be stored, not just forwarded while both clients are alive and running.

We will be using the fis-karaf-openshift image with those to initiate a S2I build of the OSGi bundles that will eventually do the sending and receiving of the JMS messages.

NOTE: Since these two sample bundles are just subdirectories of this Git repository, you need to use the --context-dir= option to tell the S2I build not to invoke Maven from the top level of the Git module.

$ oc new-app --name=producer --context-dir=producer \
	fis-karaf-openshift~http://github.com/benko/amq-openshift/
$ oc new-app --name=consumer --context-dir=consumer \
	fis-karaf-openshift~http://github.com/benko/amq-openshift/

Wait for the builds to finish and the pods to be deployed to start seeing the messages being passed between the two every 5 seconds (the environment should already contain the service lookup variables as required to use the services).

monitor the output

When these two are built and deployed, the following messages of level INFO should appear at the start in the logs of the producer and consumer pods (respectively):

TODO: WTF is up with initializers?

The following messages of level INFO (among others) should also appear periodically every 5 seconds, in the logs of the producer and consumer pods (respectively):

yyyy-mm-dd hh:mm:ss,µµµ
| INFO 
| #0 - timer://foo
| route1
| 69 - org.apache.camel.camel-core - 2.17.2
| Sending message Ohai! to jms:queue:testQueue
yyyy-mm-dd hh:mm:ss,µµµ
| INFO
| sumer[testQueue]
| route1
| 69 - org.apache.camel.camel-core - 2.17.2
| Got message Ohai! from jms:queue:testQueue

About

No description, website, or topics provided.

Resources

Readme

License

MIT license
Activity

Stars

2 stars

Watchers

3 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages