This repository is intent to provide information on Red Hat's OpenShift Serverless (Knative Serving) capabilities. I'm using a simple web app which is written in Python.
[...]
@app.route("/")
def home():
# Get the message and image path from environment variables or use defaults
message = os.getenv("MESSAGE", "Hello, World!")
image_path = os.getenv("IMAGE_PATH", "static/default.jpg")
image_url = f"/images/{os.path.basename(image_path)}"
print(f"Message: {message}, Image Path: {image_path}") # Print to stdout
return render_template_string(HTML_TEMPLATE, message=message, image_url=image_url)
[...]In order to demonstrate e.g. traffic splitting functionalities, the displayed text which the web outputs when browsing or curling it, can be changed by adjusting the environment variables for the container (--env MESSAGE='Who is it?').
Knative Serving is the runtime component of the Knative project. At its core, Knative Serving provides a Kubernetes-native platform to deploy, run, and manage modern HTTP workloads. In the context of Knative, serverless implies Knative's ability to abstracts away much of the underlying infrastructure complexity, allowing relevant teams to focus on writing code and defining the desired state of their applications.
Key capabilities of Serving are:
- Serverless experience for
HTTPworkloads - Scale-to-zero, request-driven compute runtime
- Point-in-time snapshot of your code and configuration (
Revision) - Traffic routing amongst
revisions - Supports deployment patterns like Blue/Green, Canary and Progressive
- Automatic DNS and TLS handling
You can build the application on your own using e.g. Podman. Follow the provided steps:
Clone the Github repository:
git clone [email protected]:rguske/openshift-serverless-demo.git
Navigate into the folder (cd demo-app) and start buidling the app from scratch.
podman build -t simple-serverless-app:1.0 -f demo-app/Containerfile
Check the build:
podman images
REPOSITORY TAG IMAGE ID CREATED SIZE
localhost/simple-web-app 1.0 8769fca45f40 About a minute ago 168 MB
docker.io/library/python 3.9-slim 95eddd44d6c4 6 days ago 155 MB
Run the app locally to see if it works or to apply your changes.
podman run -d -p 8080:8080 -e MESSAGE="Who is it?" localhost/simple-serverless-app:1.0
Adjust the variables for your namespace and for the text accordingly:
export NS=rguske-kn-serving
export MESSAGE='HI THERE'Now, by copy and pasting the following, a Pod, a Service (type: ClusterIP) and a Route will be created.
oc create -n ${NS} -f - <<EOF
kind: Pod
apiVersion: v1
metadata:
name: simple-app
labels:
app: simple-app
openshift.io/scc: restricted-v2
spec:
containers:
- name: simple-app
image: quay.io/rguske/simple-serverless-app:1.0
env:
- name: MESSAGE
value: ${MESSAGE}
ports:
- containerPort: 8080
---
apiVersion: v1
kind: Service
metadata:
labels:
app: simple-app
name: simple-app-svc
spec:
ports:
- port: 8080
protocol: TCP
selector:
app: simple-app
type: ClusterIP
---
kind: Route
apiVersion: route.openshift.io/v1
metadata:
name: simple-app-route
spec:
host: simple-app-route-${NS}.apps.ocp4.stormshift.coe.muc.redhat.com
path: /
to:
kind: Service
name: simple-app-svc
weight: 100
port:
targetPort: 8080
tls:
termination: edge
insecureEdgeTerminationPolicy: Redirect
EOFoc project rguske-kn-serving
kn service create simple-serverless-app --image quay.io/rguske/simple-serverless-app:1.0
If there's no incoming traffic to the ksvc anymore Knative scales down the ksvc to zero within 30s by default.
For testing purposes it sometimes makes sense to configure the ksvc with --scale-min=1 which will ensure that always one instance is up and running.
Example: kn service update simple-serverless-app --scale-min=1
In order to configure the number of incoming requests per revision, you can use the option --concurrency-limit=1. Default is 0 which means, that there's no limit of incoming request at all. 1 configures the revision to only allow 1. Basically 1 per pod.
kn service update simple-serverless-app --concurrency-limit=1
watch -n 1 curl -s https://simple-serverless-app-rguske-kn-serving.apps.ocp4.stormshift.coe.muc.redhat.com
Bring some load to the app to watch it's getting auto-scaled.
oc run -i --tty load-generator --rm --image=busybox:latest --restart=Never -- /bin/sh -c "while sleep 0.01; do wget -q -O- https://simple-serverless-app-rguske-kn-serving.apps.ocp4.stormshift.coe.muc.redhat.com; done"
kn service update simple-serverless-app --revision-name v1 --env MESSAGE='Who is it?' --concurrency-limit=0
kn service update simple-serverless-app --revision-name v2 --env MESSAGE='Its me!'
kn service update simple-serverless-app --revision-name v3 --env MESSAGE='Sorry?'
List the new revisions:
kn revision list
NAME SERVICE TRAFFIC TAGS GENERATION AGE CONDITIONS READY REASON
simple-serverless-app-v3 simple-serverless-app 100% 10 73s 4 OK / 4 True
simple-serverless-app-v2 simple-serverless-app 0% 9 79s 4 OK / 4 True
simple-serverless-app-v1 simple-serverless-app 0% 8 87s 4 OK / 4 Truekn service update simple-serverless-app --traffic simple-serverless-app-v1=33,simple-serverless-app-v2=33,simple-serverless-app-v3=34
kn revision list
NAME SERVICE TRAFFIC TAGS GENERATION AGE CONDITIONS READY REASON
simple-serverless-app-v3 simple-serverless-app 34% 10 73s 4 OK / 4 True
simple-serverless-app-v2 simple-serverless-app 33% 9 79s 4 OK / 4 True
simple-serverless-app-v1 simple-serverless-app 33% 8 87s 4 OK / 4 Truewatch -n 1 curl -s https://simple-serverless-app-rguske-serverless.apps.isar.coe.muc.redhat.com
Kourier is the default ingress solution for OpenShift Serverless. It has the following properties:
- It is based on envoy proxy.
- It is simple and lightweight.
- It provides the basic routing functionality that Serverless needs to provide its set of features.
- It supports basic observability and metrics.
- It supports basic TLS termination of Knative Service routing.
- It provides only limited configuration and extension options.
Configuring a custom domain for a Knative service
Knative services are automatically assigned a default domain name based on your cluster configuration. For example, <service_name>-<namespace>.example.com. You can customize the domain for your Knative service by mapping a custom domain name that you own to a Knative service.
You can do this by creating a DomainMapping resource for the service. You can also create multiple DomainMapping resources to map multiple domains and subdomains to a single service.