zolfa
/
tendermint
1
0
Fork 0
Code Issues 0 Pull Requests 0 Projects 0 Releases 221 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
70 Commits
183 Branches
291 MiB
Tree: 115b1505f7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '115b1505f7'
${ noResults }
tendermint/mintnet-kubernetes/examples/basecoin/app.yaml

320 lines
8.7 KiB
Raw Normal View History

copy mintnet-kubernetes from https://github.com/tendermint/mintnet-kubernetes
8 years ago
 
  1. ---

  2. apiVersion: v1

  3. kind: Service

  4. metadata:

  5.   annotations:

  6.     service.alpha.kubernetes.io/tolerate-unready-endpoints: "true"

  7.   name: basecoin

  8.   labels:

  9.     app: basecoin

  10. spec:

  11.   ports:

  12.   - port: 46656

  13.     name: p2p

  14.   - port: 46657

  15.     name: rpc

  16.   clusterIP: None

  17.   selector:

  18.     app: tm

  19. ---

  20. apiVersion: v1

  21. kind: ConfigMap

  22. metadata:

  23.   name: tm-config

  24. data:

  25.   seeds: "tm-0,tm-1,tm-2,tm-3"

  26.   validators: "tm-0,tm-1,tm-2,tm-3"

  27.   validator.power: "10"

  28.   genesis.json: |-

  29.     {

  30.       "genesis_time": "2016-02-05T06:02:31.526Z",

  31.       "chain_id": "chain-tTH4mi",

  32.       "validators": [],

  33.       "app_hash": ""

  34.     }

  35.   pub_key_nginx.conf: |-

  36.     server {

  37.       listen 80 default_server;

  38.       listen [::]:80 default_server ipv6only=on;

  39.       location /pub_key.json { root /usr/share/nginx/; }

  40.       location /app_pub_key.json { root /usr/share/nginx/; }

  41.     }

  42. ---

  43. apiVersion: v1

  44. kind: ConfigMap

  45. metadata:

  46.   name: app-config

  47. data:

  48.   genesis.json: |-

  49.     [

  50.       "base/chainID",

  51.       "test_chain_id",

  52.       "base/account",

  53.       {

  54.           "coins" : [

  55.             {"denom": "blank", "amount": 1000}

  56.           ],

  57.           "pub_key" : ["tm-0"]

  58.       },

  59.       "base/account",

  60.       {

  61.           "coins" : [

  62.             {"denom": "blank", "amount": 1000}

  63.           ],

  64.           "pub_key" : ["tm-1"]

  65.       },

  66.       "base/account",

  67.       {

  68.           "coins" : [

  69.             {"denom": "blank", "amount": 1000}

  70.           ],

  71.           "pub_key" : ["tm-2"]

  72.       },

  73.       "base/account",

  74.       {

  75.           "coins" : [

  76.             {"denom": "blank", "amount": 1000}

  77.           ],

  78.           "pub_key" : ["tm-3"]

  79.       }

  80.     ]

  81. ---

  82. apiVersion: policy/v1beta1

  83. kind: PodDisruptionBudget

  84. metadata:

  85.   name: tm-budget

  86. spec:

  87.   selector:

  88.     matchLabels:

  89.       app: tm

  90.   minAvailable: 2

  91. ---

  92. apiVersion: apps/v1beta1

  93. kind: StatefulSet

  94. metadata:

  95.   name: tm

  96. spec:

  97.   serviceName: basecoin

  98.   replicas: 4

  99.   template:

  100.     metadata:

  101.       labels:

  102.         app: tm

  103.       annotations:

  104.         pod.beta.kubernetes.io/init-containers: '[{

  105.           "name": "tm-gen-validator",

  106.           "image": "tendermint/tendermint:0.9.0",

  107.           "imagePullPolicy": "IfNotPresent",

  108.           "command": ["bash", "-c", "

  109.             set -ex\n

  110.             if [ ! -f /tendermint/priv_validator.json ]; then\n

  111.               tendermint gen_validator > /tendermint/priv_validator.json\n

  112.               # pub_key.json will be served by pub-key container\n

  113.               cat /tendermint/priv_validator.json | jq \".pub_key\" > /tendermint/pub_key.json\n

  114.             fi\n

  115.           "],

  116.           "volumeMounts": [

  117.             {"name": "tmdir", "mountPath": "/tendermint"}

  118.           ]

  119.         },

  120.         {

  121.           "name": "app-gen-key",

  122.           "image": "tendermint/basecoin:latest",

  123.           "imagePullPolicy": "IfNotPresent",

  124.           "command": ["bash", "-c", "

  125.             set -ex\n

  126.             if [ ! -f /app/key.json ]; then\n

  127.               basecoin key new > /app/key.json\n

  128.               # pub_key.json will be served by app-pub-key container\n

  129.               cat /app/key.json | jq \".pub_key\" > /app/pub_key.json\n

  130.             fi\n

  131.           "],

  132.           "volumeMounts": [

  133.             {"name": "appdir", "mountPath": "/app"}

  134.           ]

  135.         }]'

  136.     spec:

  137.       containers:

  138.       - name: tm

  139.         imagePullPolicy: IfNotPresent

  140.         image: tendermint/tendermint:0.9.0

  141.         ports:

  142.         - containerPort: 46656

  143.           name: p2p

  144.         - containerPort: 46657

  145.           name: rpc

  146.         env:

  147.         - name: SEEDS

  148.           valueFrom:

  149.             configMapKeyRef:

  150.               name: tm-config

  151.               key: seeds

  152.         - name: VALIDATOR_POWER

  153.           valueFrom:

  154.             configMapKeyRef:

  155.               name: tm-config

  156.               key: validator.power

  157.         - name: VALIDATORS

  158.           valueFrom:

  159.             configMapKeyRef:

  160.               name: tm-config

  161.               key: validators

  162.         - name: TMROOT

  163.           value: /tendermint

  164.         command:

  165.         - bash

  166.         - "-c"

  167.         - |

  168.           set -ex

  169. 

  170.           # copy template

  171.           cp /etc/tendermint/genesis.json /tendermint/genesis.json

  172. 

  173.           # fill genesis file with validators

  174.           IFS=',' read -ra VALS_ARR <<< "$VALIDATORS"

  175.           fqdn_suffix=$(echo $(hostname -f) | sed 's#[^.]*\.\(\)#\1#')

  176.           for v in "${VALS_ARR[@]}"; do

  177.             # wait until validator generates priv/pub key pair

  178.             set +e

  179. 

  180.             curl -s "http://$v.$fqdn_suffix/pub_key.json" > /dev/null

  181.             ERR=$?

  182.             while [ "$ERR" != 0 ]; do

  183.               sleep 5

  184.               curl -s "http://$v.$fqdn_suffix/pub_key.json" > /dev/null

  185.               ERR=$?

  186.             done

  187.             set -e

  188. 

  189.             # add validator to genesis file along with its pub_key

  190.             curl -s "http://$v.$fqdn_suffix/pub_key.json" | jq ". as \$k | {pub_key: \$k, amount: $VALIDATOR_POWER, name: \"$v\"}" > pub_validator.json

  191.             cat /tendermint/genesis.json | jq ".validators |= .+ [$(cat pub_validator.json)]" > /tendermint/genesis.json

  192.             rm pub_validator.json

  193.           done

  194. 

  195.           # construct seeds

  196.           IFS=',' read -ra SEEDS_ARR <<< "$SEEDS"

  197.           seeds=()

  198.           for s in "${SEEDS_ARR[@]}"; do

  199.             seeds+=("$s.$fqdn_suffix:46656")

  200.           done

  201.           seeds=$(IFS=','; echo "${seeds[*]}")

  202. 

  203.           tendermint node --seeds="$seeds" --moniker="`hostname`" --proxy_app="unix:///socks/app.sock"

  204.         volumeMounts:

  205.         - name: tmdir

  206.           mountPath: /tendermint

  207.         - mountPath: /etc/tendermint/genesis.json

  208.           name: tmconfigdir

  209.           subPath: genesis.json

  210.         - name: socksdir

  211.           mountPath: /socks

  212. 

  213.       - name: app

  214.         imagePullPolicy: IfNotPresent

  215.         image: tendermint/basecoin:latest

  216.         workingDir: /app

  217.         command:

  218.         - bash

  219.         - "-c"

  220.         - |

  221.           set -ex

  222. 

  223.           # replace "tm-N" with public keys in genesis file

  224.           cp /etc/app/genesis.json genesis.json

  225.           fqdn_suffix=$(echo $(hostname -f) | sed 's#[^.]*\.\(\)#\1#')

  226.           # for every "base/account"

  227.           i=3

  228.           length=$(cat genesis.json | jq ". | length")

  229.           while [ $i -lt $length ]; do

  230.             # extract pod name ("tm-0")

  231.             pod=$(cat genesis.json | jq -r ".[$i].pub_key[0]")

  232. 

  233.             # wait until pod starts to serve its pub_key

  234.             set +e

  235. 

  236.             curl -s "http://$pod.$fqdn_suffix/app_pub_key.json" > /dev/null

  237.             ERR=$?

  238.             while [ "$ERR" != 0 ]; do

  239.               sleep 5

  240.               curl -s "http://$pod.$fqdn_suffix/app_pub_key.json" > /dev/null

  241.               ERR=$?

  242.             done

  243.             set -e

  244. 

  245.             # get its pub_key

  246.             curl -s "http://$pod.$fqdn_suffix/app_pub_key.json" | jq "." > k.json

  247. 

  248.             # replace pod name with it (["tm-0"] => "[1, XXXXXXXXXXXXXXXXXXXX]")

  249.             cat genesis.json | jq ".[$i].pub_key = $(cat k.json | jq '.')" > genesis.json

  250.             rm -f k.json

  251. 

  252.             i=$((i+2)) # skip "base/account" field itself

  253.           done

  254. 

  255.           rm -f /socks/app.sock # remove old socket

  256. 

  257.           basecoin start --address="unix:///socks/app.sock"

  258.         volumeMounts:

  259.         - name: appdir

  260.           mountPath: /app

  261.         - mountPath: /etc/app/genesis.json

  262.           name: appconfigdir

  263.           subPath: genesis.json

  264.         - name: socksdir

  265.           mountPath: /socks

  266. 

  267.       - name: pub-key

  268.         imagePullPolicy: IfNotPresent

  269.         image: nginx:latest

  270.         ports:

  271.         - containerPort: 80

  272.         command:

  273.         - bash

  274.         - "-c"

  275.         - |

  276.           set -ex

  277.           # fixes 403 Permission Denied (open() "/tendermint/pub_key.json" failed (13: Permission denied))

  278.           # => we cannot serve from /tendermint, so we copy the file

  279.           mkdir -p /usr/share/nginx

  280.           cp /tendermint/pub_key.json /usr/share/nginx/pub_key.json

  281.           cp /app/pub_key.json /usr/share/nginx/app_pub_key.json

  282.           nginx -g "daemon off;"

  283.         volumeMounts:

  284.         - name: tmdir

  285.           mountPath: /tendermint

  286.         - name: appdir

  287.           mountPath: /app

  288.         - mountPath: /etc/nginx/conf.d/pub_key.conf

  289.           name: tmconfigdir

  290.           subPath: pub_key_nginx.conf

  291. 

  292.       volumes:

  293.       - name: tmconfigdir

  294.         configMap:

  295.           name: tm-config

  296.       - name: appconfigdir

  297.         configMap:

  298.           name: app-config

  299.       - name: socksdir

  300.         emptyDir: {}

  301. 

  302.   volumeClaimTemplates:

  303.   - metadata:

  304.       name: tmdir

  305.       annotations:

  306.         volume.alpha.kubernetes.io/storage-class: anything

  307.     spec:

  308.       accessModes: [ "ReadWriteOnce" ]

  309.       resources:

  310.         requests:

  311.           storage: 2Gi

  312.   - metadata:

  313.       name: appdir

  314.       annotations:

  315.         volume.alpha.kubernetes.io/storage-class: anything

  316.     spec:

  317.       accessModes: [ "ReadWriteOnce" ]

  318.       resources:

  319.         requests:

  320.           storage: 12Mi