instructlab
diff --git a/‎deploy/k8s/base/doclingserve/deployment.yaml‎
Lines changed: 1 addition & 1 deletion b/‎deploy/k8s/base/doclingserve/deployment.yaml‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎deploy/podman/README.md‎
Lines changed: 6 additions & 112 deletions b/‎deploy/podman/README.md‎
Lines changed: 6 additions & 112 deletions
diff --git a/‎deploy/podman/github/README.md‎
Lines changed: 110 additions & 0 deletions b/‎deploy/podman/github/README.md‎
Lines changed: 110 additions & 0 deletions
diff --git a/‎deploy/podman/native/README.md‎
Lines changed: 91 additions & 0 deletions b/‎deploy/podman/native/README.md‎
Lines changed: 91 additions & 0 deletions
diff --git a/‎deploy/podman/native/instructlab-ui.yaml‎
Lines changed: 2 additions & 2 deletions b/‎deploy/podman/native/instructlab-ui.yaml‎
Lines changed: 2 additions & 2 deletions
diff --git a/‎deploy/podman/native/secret.yaml.example‎
Lines changed: 5 additions & 5 deletions b/‎deploy/podman/native/secret.yaml.example‎
Lines changed: 5 additions & 5 deletions
diff --git a/‎src/app/api/envConfig/route.ts‎
Lines changed: 2 additions & 1 deletion b/‎src/app/api/envConfig/route.ts‎
Lines changed: 2 additions & 1 deletion
@@ -3,7 +3,7 @@ kind: Deployment
 metadata:
   name: doclingserve
 spec:
-  replicas: 1
+  replicas: 3
   strategy:
     type: RollingUpdate
   template:
 
@@ -1,117 +1,11 @@
-# Podman deployment
+# InstructLab UI stack deployment in Podman
 
-To help support knowledge and skill additions as well as the capabilities to chat with a deployed model, the following Podman files have been included to be used with `podman kube play`. UI stack supports two mode of deployments:
+InstructLab UI provides a simple and intuitive web interface that users can use to create knowledge and skill contribution. InstructLab UI supports two mode of deployments:
 
-- Github mode: This mode is used to deploy the UI stack with Github integration. Users can create skill and knowledge and push it to the taxonomy repository present in instructlab org or their own personal clone of the taxonomy repository.
-- Native mode: This mode is used to deploy the UI stack without Github integration. User created skill and knowledge contributions are local to the machine where UI stack is deployed. Users can publish their contribution to any taxonomy repository present on the machine for data generation or training of the model.
+## Github mode
 
-## Secret
+Github mode is used to deploy the UI stack with Github integration. Users can create skill and knowledge contributions and push it to the taxonomy repository present in instructlab org or their own personal clone of the taxonomy repository present under the user's own organization. To deploy InstructLab UI stack in the Github mode on Podman, please follow the detailed instructions present [here](./github/README.md).
 
-A secret is required to personalize the Instructlab UI for both the above mentioned modes.
+## Native mode
 
-Two options exist to generate the secret, either using `kubectl` or filling in values in the `secret.yaml` provided.
-
-> [!NOTE]
-> It is not required to fill in every field. Double quotes `""` can be used for values that are not used.
-
-### Kubectl secret creation
-
-Using `kubectl`, we will use the `--dry-run -o yaml` flags to generate the secret for us.
-
-#### For Github mode
-
-```bash
-cd ./github
-
-kubectl create secret generic ui-env \
-  --from-literal=IL_UI_DEPLOYMENT=github \
-  --from-literal=OAUTH_GITHUB_ID="" \
-  --from-literal=OAUTH_GITHUB_SECRET="" \
-  --from-literal=GITHUB_TOKEN="" \
-  --from-literal=NEXTAUTH_SECRET=your_super_secretdom_string \
-  --from-literal=NEXTAUTH_URL=http://localhost:3000 \
-  --from-literal=NEXT_PUBLIC_AUTHENTICATION_ORG="" \
-  --from-literal=NEXT_PUBLIC_TAXONOMY_REPO_OWNER="" \
-  --from-literal=NEXT_PUBLIC_TAXONOMY_REPO="" \
-  --from-literal=NEXT_PUBLIC_TAXONOMY_DOCUMENTS_REPO=github.com/instructlab-public/taxonomy-knowledge-docs \
-  --from-literal=NEXT_PUBLIC_EXPERIMENTAL_FEATURES="false" \
-  --from-literal=IL_GRANITE_API="" \
-  --from-literal=IL_GRANITE_MODEL_NAME="" \
-  --from-literal=IL_MERLINITE_API="" \
-  --from-literal=IL_MERLINITE_MODEL_NAME="" \
-  --from-literal=IL_ENABLE_DEV_MODE=false \
-  --dry-run=client -o yaml > secret.yaml
-```
-
-#### For Native mode
-
-```bash
-cd ./native
-
-kubectl create secret generic ui-env \
-  --from-literal=IL_UI_DEPLOYMENT=native \
-  --from-literal=IL_UI_ADMIN_USERNAME="" \
-  --from-literal=IL_UI_ADMIN_PASSWORD="" \
-  --from-literal=NEXTAUTH_SECRET=your_super_secretdom_string \
-  --from-literal=NEXTAUTH_URL=http://localhost:3000 \
-  --from-literal=NEXT_PUBLIC_TAXONOMY_ROOT_DIR="" \
-  --from-literal=NEXT_PUBLIC_EXPERIMENTAL_FEATURES="false" \
-  --from-literal=IL_ENABLE_DEV_MODE=false \
-  --dry-run=client -o yaml > secret.yaml
-```
-
-### Manual providing values
-
-A file named `secret.yaml.example` exists for both the modes. Please rename the file to `secret.yaml`. The user can use this file to input their values in place.These values must be `base64` encoded.
-
-Here is an example on how to `base64` encode a value.
-
-```bash
-echo "password" | base64
-```
-
-Using the above fill in the values as it relates to the environment.
-
-## Deploy the secret
-
-Now that the `secret.yaml` has been generated, use `podman kube play` to load the secret.
-
-```bash
-podman kube play secret.yaml
-```
-
-## Launching the UI
-
-Now with the secret in place, use `podman kube play` to launch the containers. If you are deploying the Native mode, please replace the `<TAXONOMY_REPO_ROOT_DIR>` variable in `native/instructlab-ui.yaml` with the absolute path of the directory where the taxonomy repository is present. UI will look for the taxonomy repo in this directory to submit the skill and knowledge contributions.
-
-```bash
-podman kube play instructlab-ui.yaml
-```
-
-> [!NOTE]
-> If you are deploying the UI stack (Native mode) on a rootless Podman and SELinux enabled system, please make sure of the following two issues
->
-> 1. Uncomment the `securityContext` in the `instructlab-ui.yaml` file and set the value of `runAsGroup` to the value of the host user's group id.
-> `id` command should give you the `gid` of the host user.
->
-> 2. Make sure cpu and cpusets cgroup controllers are enabled for the user. To check if the cgroup controllers are enabled, run the following command:
-> ```cat "/sys/fs/cgroup/user.slice/user-$(id -u).slice/user@$(id -u).service/cgroup.controllers"```
->
-> If the output of the above command does not contain `cpu` and `cpuset`, then you need to enable these cgroup controllers for the user. To enable these cgroup controllers, create the following file `/etc/systemd/system/[email protected]/delegate.conf` with the following content:
->
->```[Service]
-> Delegate=memory pids cpu cpuset```
-> Save the file and run `sudo systemctl daemon-reload` followed by `sudo systemctl restart user@$(id -u).service` to apply the changes.
-
-## Accessing the UI
-
-The Instructlab UI should now be accessible from `http://localhost:3000` or `http://<host-ip>:3000` depending on where the UI stack is deployed.
-
-## Cleaning up
-
-To clean up the deployment, use `podman kube down` to delete the deployment.
-
-```bash
-podman kube down instructlab-ui.yaml
-podman kube down secret.yaml
-```
+Native mode is used to deploy the InstructLab UI stack without Github integration. User created skill and knowledge contributions are local to the machine where UI stack is deployed. Users can publish their contribution to any taxonomy repository present on the machine for synthetic data generation or training of the model using the [InstructLab tools](https://github.com/instructlab/instructlab). To deploy the InstructLab UI stack in Native mode, please follow the detailed instructions present [here](./native/README.md).
@@ -0,0 +1,110 @@
+
+# InstructLab UI Github mode deployment in Podman
+
+Please follow the below instructions to deploy UI stack with Github mode enabled in Podman.
+
+## Generate Secret
+
+A secret is required to provide required input to the UI stack in a secure way.
+
+Two options exist to generate the secret, either using `kubectl` or filling in values in the `secret.yaml` provided.
+
+### Generate secrets using kubectl
+
+Using `kubectl`, we will use the `--dry-run -o yaml` flags to generate the secret for us.
+
+```bash
+cd ./github
+
+kubectl create secret generic ui-env \
+  --from-literal=IL_UI_DEPLOYMENT=github \
+  --from-literal=OAUTH_GITHUB_ID="<OAUTH_APP_GITHUB_ID>" \
+  --from-literal=OAUTH_GITHUB_SECRET="<OAUTH_APP_GITHUB_SECRET>" \
+  --from-literal=GITHUB_TOKEN="<GITHUB_PAT_TOKEN>" \
+  --from-literal=NEXTAUTH_SECRET=your_super_secret_random_string \
+  --from-literal=NEXTAUTH_URL=http://localhost:3000 \
+  --from-literal=NEXT_PUBLIC_AUTHENTICATION_ORG="<OAUTH_APP_GITHUB_ID>" \
+  --from-literal=NEXT_PUBLIC_TAXONOMY_REPO_OWNER="<GITHUB_TAXONOMY_OWNER_ORG>" \
+  --from-literal=NEXT_PUBLIC_TAXONOMY_REPO="<TAXONOMY_REPO_NAME>" \
+  --from-literal=NEXT_PUBLIC_EXPERIMENTAL_FEATURES="false" \
+  --from-literal=IL_GRANITE_API="" \
+  --from-literal=IL_GRANITE_MODEL_NAME="" \
+  --from-literal=IL_MERLINITE_API="" \
+  --from-literal=IL_MERLINITE_MODEL_NAME="" \
+  --from-literal=IL_ENABLE_DEV_MODE=false \
+  --dry-run=client -o yaml > secret.yaml
+```
+
+Following are the required inputs that you must set for successful deployment of the InstructLab UI in Github mode. Github mode has a prerequisite to setup an OAuth App in the Github under user owned organization. Please follow the github documentation [here](https://docs.github.com/en/apps/oauth-apps/building-oauth-apps/creating-an-oauth-app) to set up a Github OAuth App.
+
+<OAUTH_APP_GITHUB_ID>: OAuth app ID generated after setting up the OAuth Github app.
+
+<OAUTH_APP_GITHUB_SECRET>: OAuth app secret (it needs to be explicitly created once OAuth app is setup)
+
+<GITHUB_TAXONOMY_OWNER_ORG>: Name of the organization under which the user is cloning the [taxonomy](https://github.com/instructlab/taxonomy) repo.
+
+<TAXONOMY_REPO_NAME>: If you rename the [taxonomy](https://github.com/instructlab/taxonomy) repo while cloning it under the organization, please set it to the new name, otherwise use `taxonomy`
+
+<GITHUB_PAT_TOKEN>: Generate a Personal Access Token in your profile that allows read/write access to the organization and the cloned taxonomy repo.
+
+### Generate secrets manually
+
+A file named [secret.yaml.example](secret.yaml.example) present in the [Github](../github/) directory. Please rename the file to `secret.yaml`. The user can use this file to input their values in place. This file is pre-filled with the default values for the non-mandatory input fields, please set the values of the required input fields as mentioned above. These values must be `base64` encoded.
+
+Here is an example on how to `base64` encode a value.
+
+```bash
+echo "password" | base64
+```
+
+Using the above to fill in all the required input fields.
+
+## Deploy the secret
+
+Now that the `secret.yaml` has been generated, use `podman kube play` to load the secret.
+
+```bash
+podman kube play secret.yaml
+```
+
+## Deploying the InstructLab UI Stack
+
+ With the secrets in place, use the following command to launch the UI stack containers. [instructlab-ui.yaml](./instructlab-ui.yaml) file is present in the [Github](../github/) directory.
+
+```bash
+podman kube play instructlab-ui.yaml
+```
+
+Once the UI stack is up and running, all the skill and knowledge contributions will be pushed to the cloned repository present in the user's organization.
+
+## Upstream contributor
+
+If you are playing with Github mode deployment for making upstream contributions to InstructLab UI project, please reach out to the project maintainers in the [InstructLab UI slack channel or Join the Upstream UI Meeting](../../../README.md). Maintainers already have an existing setup in place that upstream contributors can use. They will be able to provide the secrets file that can be used to deploy the UI stack with Github mode in the matters of minutes.
+
+> [!NOTE]
+> When you deploy the UI stack on a rootless Podman and SELinux enabled system, please make sure to do the following configurations
+>
+> 1. Uncomment the `securityContext` in the `instructlab-ui.yaml` file and set the value of `runAsGroup` to the value of the host user's group id.
+> `id` command should give you the `gid` of the host user.
+>
+> 2. Make sure cpu and cpusets cgroup controllers are enabled for the user. To check if the cgroup controllers are enabled, run the following command:
+> ```cat "/sys/fs/cgroup/user.slice/user-$(id -u).slice/user@$(id -u).service/cgroup.controllers"```
+>
+> If the output of the above command does not contain `cpu` and `cpuset`, then you need to enable these cgroup controllers for the user. To enable these cgroup controllers, create the following file `/etc/systemd/system/[email protected]/delegate.conf` with the following content:
+>
+>```[Service]
+> Delegate=memory pids cpu cpuset```
+> Save the file and run `sudo systemctl daemon-reload` followed by `sudo systemctl restart user@$(id -u).service` to apply the changes.
+
+## Accessing the UI
+
+The Instructlab UI should now be accessible from `http://localhost:3000` or `http://<host-ip>:3000` depending on where the UI stack is deployed.
+
+## Cleaning up
+
+To clean up the deployment, use `podman kube down` to delete the deployment.
+
+```bash
+podman kube down instructlab-ui.yaml
+podman kube down secret.yaml
+```
@@ -0,0 +1,91 @@
+
+# InstructLab UI Native mode deployment in Podman
+
+Please follow the below instructions to deploy UI stack with Native mode enabled in Podman.
+
+## Generate Secret
+
+A secret is required to provide required input to the UI stack in a secure way.
+
+Two options exist to generate the secret, either using `kubectl` or filling in values in the `secret.yaml` provided.
+
+### Generate secrets using kubectl
+
+Using `kubectl`, we will use the `--dry-run -o yaml` flags to generate the secret for us.
+
+```bash
+cd ./native
+
+kubectl create secret generic ui-env \
+  --from-literal=IL_UI_DEPLOYMENT=native \
+  --from-literal=IL_UI_ADMIN_USERNAME="<USERNAME_FOR_LOGIN>" \
+  --from-literal=IL_UI_ADMIN_PASSWORD="<PASSWORD_FOR_LOGIN>" \
+  --from-literal=NEXTAUTH_SECRET=your_super_secret_random_string \
+  --from-literal=NEXTAUTH_URL=http://localhost:3000 \
+  --from-literal=NEXT_PUBLIC_TAXONOMY_ROOT_DIR="<TAXONOMY_ROOT_DIR>" \
+  --from-literal=NEXT_PUBLIC_EXPERIMENTAL_FEATURES="false" \
+  --from-literal=IL_ENABLE_DEV_MODE=false \
+  --dry-run=client -o yaml > secret.yaml
+```
+
+Following are the required inputs that you must set for successful deployment of the InstructLab UI in native mode.
+
+<USERNAME_FOR_LOGIN>: Set the username you want to use to login to the InstructLab UI
+<PASSWORD_FOR_LOGIN>: Set the password you want to use to login to the InstructLab UI
+<TAXONOMY_ROOT_DIR>: Absolute path of the parent directory where the taxonomy repo is cloned.
+
+### Generate secrets manually
+
+A file named [secret.yaml.example](secret.yaml.example) present in the [native](../native/) directory. Please rename the file to `secret.yaml`. The user can use this file to input their values in place. This file is pre-filled with the default values for the non-mandatory input fields, please set the values of the required input fields as mentioned above. These values must be `base64` encoded.
+
+Here is an example on how to `base64` encode a value.
+
+```bash
+echo "password" | base64
+```
+
+Using the above to fill in all the required input fields.
+
+## Deploy the secret
+
+Now that the `secret.yaml` has been generated, use `podman kube play` to load the secret.
+
+```bash
+podman kube play secret.yaml
+```
+
+## Deploying the InstructLab UI Stack
+
+One last step before you launch the InstructLab UI. A file named [instructlab-ui.yaml](instructlab-ui.yaml) present in the [native](../native/) directory. Search for <TAXONOMY_REPO_ROOT_DIR> in the yaml file and replace it with the same value that is used while creating the secret.yaml file. Now with the secret in place and deployment yaml updated, use `podman kube play` to launch the containers. UI will look for the taxonomy repo in this directory to submit the skill and knowledge contributions.
+
+```bash
+podman kube play instructlab-ui.yaml
+```
+
+> [!NOTE]
+> When you deploy the UI stack on a rootless Podman and SELinux enabled system, please make sure to do the following configurations
+>
+> 1. Uncomment the `securityContext` in the `instructlab-ui.yaml` file and set the value of `runAsGroup` to the value of the host user's group id.
+> `id` command should give you the `gid` of the host user.
+>
+> 2. Make sure cpu and cpusets cgroup controllers are enabled for the user. To check if the cgroup controllers are enabled, run the following command:
+> ```cat "/sys/fs/cgroup/user.slice/user-$(id -u).slice/user@$(id -u).service/cgroup.controllers"```
+>
+> If the output of the above command does not contain `cpu` and `cpuset`, then you need to enable these cgroup controllers for the user. To enable these cgroup controllers, create the following file `/etc/systemd/system/[email protected]/delegate.conf` with the following content:
+>
+>```[Service]
+> Delegate=memory pids cpu cpuset```
+> Save the file and run `sudo systemctl daemon-reload` followed by `sudo systemctl restart user@$(id -u).service` to apply the changes.
+
+## Accessing the UI
+
+The Instructlab UI should now be accessible from `http://localhost:3000` or `http://<host-ip>:3000` depending on where the UI stack is deployed.
+
+## Cleaning up
+
+To clean up the deployment, use `podman kube down` to delete the deployment.
+
+```bash
+podman kube down instructlab-ui.yaml
+podman kube down secret.yaml
+```
@@ -67,8 +67,8 @@ spec:
       containers:
       - name: ui
         image: ghcr.io/instructlab/ui/ui:main
-#        securityContext:
-#          runAsGroup: 1000
+        securityContext:
+          runAsGroup: 1000
         volumeMounts:
         - name: taxonomy-repo
           mountPath: /tmp/.instructlab-ui
 
@@ -1,13 +1,13 @@
 apiVersion: v1
 data:
-  IL_UI_DEPLOYMENT:
-  IL_ENABLE_DEV_MODE:
+  IL_ENABLE_DEV_MODE: ZmFsc2U=
   IL_UI_ADMIN_PASSWORD:
   IL_UI_ADMIN_USERNAME:
-  NEXT_PUBLIC_EXPERIMENTAL_FEATURES:
+  IL_UI_DEPLOYMENT: bmF0aXZl
+  NEXT_PUBLIC_EXPERIMENTAL_FEATURES: dHJ1ZQ==
   NEXT_PUBLIC_TAXONOMY_ROOT_DIR:
-  NEXTAUTH_SECRET:
-  NEXTAUTH_URL:
+  NEXTAUTH_SECRET: 
+  NEXTAUTH_URL: aHR0cDovL2xvY2FsaG9zdDozMDAw
 kind: Secret
 metadata:
   creationTimestamp: null
 
@@ -17,7 +17,8 @@ export async function GET() {
     DEPLOYMENT_TYPE: process.env.IL_UI_DEPLOYMENT || '',
     ENABLE_DEV_MODE: process.env.IL_ENABLE_DEV_MODE || 'false',
     EXPERIMENTAL_FEATURES: process.env.NEXT_PUBLIC_EXPERIMENTAL_FEATURES || '',
-    TAXONOMY_ROOT_DIR: process.env.NEXT_PUBLIC_TAXONOMY_ROOT_DIR || ''
+    TAXONOMY_ROOT_DIR: process.env.NEXT_PUBLIC_TAXONOMY_ROOT_DIR || '',
+    TAXONOMY_KNOWLEDGE_DOCUMENT_REPO: process.env.NEXT_PUBLIC_TAXONOMY_DOCUMENTS_REPO || 'github.com/instructlab-public/taxonomy-knowledge-docs'
   };
 
   return NextResponse.json(envConfig);