Телега: http://t.me/mmorev
Disclaimer рекрутерам: на момент данного коммита работу не ищу, так что если будете присылать вакансии - не обессудьте, буду игнорить.
apt update && apt install -y git docker minikubekubectl
curl -LO "https://dl.k8s.io/release/$(curl -sSL https://dl.k8s.io/release/stable.txt)/bin/linux/amd64/kubectl"
sudo install -o root -g root -m 0755 kubectl /usr/local/bin/kubectlcurl -L https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bashhttps://github.com/MuhammedKalkan/OpenLens/releases
git clone https://github.com/mmorev/observability-practice
cd observability-practicegit clone https://github.com/open-telemetry/opentelemetry-java-examples.git
git clone https://github.com/eugenp/tutorials.githelm repo add prometheus https://prometheus-community.github.io/helm-charts
helm repo add grafana https://grafana.github.io/helm-charts
helm repo add jetstack https://charts.jetstack.io
helm repo add twuni https://helm.twun.io
helm repo add opentelemetry https://open-telemetry.github.io/opentelemetry-helm-chartsminikube start \
--driver=docker \
--addons=default-storageclass \
--addons=ingress \
--addons=ingress-dns \
--insecure-registry "192.168.0.0/16" \
--memory=4g \
--cpus=2Запускаем, проверяем что кластер стартовал.
Добавляем плагин для работы с Node/Pod Logs/CLI:
File -> Extensions -> @alebcay/openlens-node-pod-menu -> Install
Manual: https://minikube.sigs.k8s.io/docs/handbook/addons/ingress-dns/#installation
alias hui='helm upgrade --install'hui cert-manager jetstack/cert-manager -n cert-manager --create-namespace --set installCRDs=true
kubectl apply -f ./minikube/minikube-cert-manager.yamlhui registry twuni/docker-registry -n kube-system --values ./minikube/registry-values.yaml
kubectl create secret docker-registry registry-auth --docker-server=registry.test --docker-username=admin --docker-password=admin
kubectl patch serviceaccount default -p '{"imagePullSecrets": [{"name": "registry-auth"}]}'Резолвим адрес
echo $(minikube ip) registry.test | sudo tee -a /etc/hostsДобавляем в доверенные локально
{
"insecure-registries" : ["registry.test"]
}Добавляем в доверенные в minikube, если вдруг забыли параметр к minikube start
mkdir -p $HOME/.minikube/certs
kubectl -n cert-manager get secret minikube-ca-secret -o jsonpath="{.data.ca\.crt}" | base64 -d > $HOME/.minikube/certs/minikube-ca-cert.pem
minikube stop
minikube start --embed-certsрестартим Docker и логинимся в регистри. Учтите, что minikube тоже перезапустится.
sudo systemctl restart docker
docker login registry.test -u admin -p adminhui grafana grafana/grafana --namespace grafana --values ./lgtm/grafana-values.yamlhui mimir-distributed grafana/mimir-distributed --values ./lgtm/mimir-distributed-values.yaml -n mimir --create-namespaceУстановка одним чартом Grafana, Prometheus, Kube-State-Metrics, Node Exporter и экспортеров control-plane
kubectl create ns prometheus
kubectl create ns grafana
hui prometheus prometheus/kube-prometheus-stack -n prometheus --values ./lgtm/prom-stack-values.yamlРезолвим адрес
echo $(minikube ip) grafana.test | sudo tee -a /etc/hostsLoki
hui loki grafana/loki --namespace grafana --values ./lgtm/loki-values.yamlTempo
hui tempo grafana/tempo --namespace grafana --values ./lgtm/tempo-values.yamlПолучаем пароль от графаны, логин - admin
kubectl get secret --namespace grafana prometheus-grafana -o jsonpath="{.data.admin-password}" | base64 -d; echoОткрываем графану, проверяем - https://grafana.test/
Grafana Provisioning docs: https://grafana.com/docs/grafana/latest/administration/provisioning/
additionalDataSources:
- name: Tempo
uid: tempo
type: tempo
url: http://tempo.grafana:3100
jsonData:
tracesToLogsV2:
datasourceUid: 'loki'
spanStartTimeShift: '1h'
spanEndTimeShift: '-1h'
tags: [{key: "service_name", value: "service_name"}]
customQuery: true
query: '{$${__tags}} |= `"traceid":"$${__trace.traceId}"` | json'
tracesToMetrics:
datasourceUid: prometheus
queries:
- name: 95% Latency
query: >
histogram_quantile(0.95, sum(rate(latency_bucket{$$__tags}[$$__rate_interval])) by (le, operation))
- name: RPS
query: sum(rate(latency_count{$$__tags}[$$__rate_interval])) by (operation)
spanEndTimeShift: -1h
spanStartTimeShift: 1h
tags:
- key: service.name
value: service_name
- key: span.name
value: operation
serviceMap:
datasourceUid: 'prometheus'
lokiSearch:
datasourceUid: 'loki'
nodeGraph:
enabled: true
- name: Loki
uid: loki
type: loki
url: http://loki.grafana:3100
jsonData:
derivedFields:
- datasourceUid: tempo
matcherRegex: '"traceid":"(\w+)"'
name: TraceID
url: '$${__value.raw}'
- name: Prometheus
uid: prometheus
type: prometheus
url: http://promstack-prometheus.prometheus:9090
jsonData:
prometheusType: Prometheus
exemplarTraceIdDestinations:
- datasourceUid: tempo
name: trace_idkubectl create ns opentelemetrykubectl -n opentelemetry create configmap otelcol --from-file ./opentelemetry/simple/otelcol.yaml
kubectl -n opentelemetry apply -f ./opentelemetry/simple/deployment.yaml -f ./opentelemetry/simple/service.yamlkubectl -n opentelemetry delete service otelcol
kubectl -n opentelemetry delete deployment otelcol
kubectl -n opentelemetry delete configmap otelcolhui opentelemetry-operator opentelemetry/opentelemetry-operator -n opentelemetry --create-namespace --values ./opentelemetry/operator/operator-values.yamlждем пару минут, пока поднимутся вебхуки, иначе будет ошибка
kubectl apply -f ./opentelemetry/operator/collector-crd.yaml -n opentelemetry
kubectl apply -f ./opentelemetry/operator/instrumentation-crd.yaml -n opentelemetryInstall JDK versions
apt install -y openjdk-8-jdk openjdk-11-jdk openjdk-17-jdkcd opentelemetry-java-examples/javaagent../gradlew bootJar
docker build -t registry.test/javaagent-simple .
docker push registry.test/javaagent-simplekubectl run javaagent-simple \
--image registry.test/javaagent-simple:latest \
--env OTEL_SERVICE_NAME="agent-example-app" \
--env OTEL_LOGS_EXPORTER=otlp \
--env OTEL_EXPORTER_OTLP_ENDPOINT=http://default-collector.opentelemetry:4317 \
--port 8080../gradlew bootJar
docker build -t registry.test/javaagent-simple-auto .
docker push registry.test/javaagent-simple-autokubectl run javaagent-simple-auto \
--image registry.test/javaagent-simple-auto:latest \
--annotations "instrumentation.opentelemetry.io/inject-java=opentelemetry/default" \
--port 8080sudo apt install -y maven
cd -
cd tutorials/spring-cloud-modules/spring-cloud-open-telemetry/
mvn package
docker build -t registry.test/product-service spring-cloud-open-telemetry1
docker push registry.test/product-service
docker build -t registry.test/price-service spring-cloud-open-telemetry2
docker push registry.test/price-service
kubectl run price-service \
--image registry.test/price-service:latest \
--port 8081
kubectl run product-service \
--image registry.test/product-service:latest \
--port 8080
kubectl expose pod price-service --port 8081
kubectl expose pod product-service --port 8080kubectl create ingress products --rule="products-service.test/=product-service:8080,tls=products-service-cert"
echo $(minikube ip) product-service.test | sudo tee -a /etc/hosts