-
kevin.wilder authoredkevin.wilder authored
- Package Requirements
- GitLab Project Settings
- PR-X. Kubernetes Cluster Requirements
- PR-X. Iron Bank Images
- PR-X. Packages are Helm Charts
- Helm Chart Types
- Upstream Helm Charts
- Custom Helm Charts
- Documentation for how to upgrade the Package helm charts
- PR-X. Package Standards
- PR-X. CI/CD pipeline is required for each Big Bang Package
- PR-X. Dependencies must be a Big Bang Package
- PR-X. Dependency Matrix
- Branching
- Package Standards
Package Requirements
All Big Bang Packages shall adhere to the following requirements. Where possible, each package shall validate these requirements in their CI/CD processes
- Package Requirements
GitLab Project Settings
- The
mainbranch should be default in each project - Merge Requests should require 1 approver
- The
mainbranch should be protected:- Developers + Maintainers should be allowed to merge.
- No one should be allowed to push and it should allow
- CODEOWNERs approval should be allowed
- There should exist a protected tag with the wildcard
*-bb*
PR-X. Kubernetes Cluster Requirements
Each package will work with any cluster under the following criteria.
- Kubernetes Versions "Latest -2". Current latest is 1.20, so also supports 1.19 and 1.18.
- Cloud Native Computing Federation Kubernetes Certified Distribution.
- Default Storage Class with RWO
PR-X. Iron Bank Images
Big Bang Package shall be configured to use Iron Bank images. The images used from Iron Bank must be fully approved and functional to be in compliance with the Big Bang baseline security posture.
Please see New Package Requests and the BBTOC process for additional pre-requisites.
PR-X. Packages are Helm Charts
All packages that the Big Bang product consume are helm charts. This decision is explored in depth in the ADR here. The quick summary is that helm provides the best tools for the problem statement that Big Bang is built to address: an opinionated yet configurable deployment of the Platform One baseline.
Helm Chart Types
Baselining off of the assumption that all packages are helm charts, we can identify two different types of packages:
Upstream Helm Charts
Many of the tools and applications that BigBang deploys have actively maintained helm charts, rather than re-inventing the wheel, it is encouraged to leverage charts maintained by vendors or the community.
The unfortunate downside to helm is the lack of chart customization without forking from upstream. While there are several options out there (post-rendering, etc...) that are slowly becoming more widespread, the unfortunate reality is upstream charts that BigBang consumes must be forked into repo1 and the appropriate changes must be made.
Forked upstream helm charts will be configured with the appropriate BigBang additions, and in rare cases, modifications. They will be versioned in accordance with BigBangs package versioning scheme.
Custom Helm Charts
In the case where an accepted upstream helm chart does not exist, BigBang will create and maintain it's own custom helm chart for the package in question. The helm chart will be in conformance with the Package Standards.
Documentation for how to upgrade the Package helm charts
The Package chart should include maintenance documentation that describes
- The process for upgrading
- How to test the upgrade
- Documentation for changes made to the upstream chart.
This documentation will be located in each Package repo and named /docs/DEVELOPMENT_MAINTENANCE.md. The document should be linked from the top level /CONTRIBUTING.md in the "To contribute a change" section item #2 (closed).
PR-X. Package Standards
The common components that each package will have are defined in the following folder layout:
├── CODEOWNERS # GitLab Code Owners for Package Owners/Understudies.
├── README.md # top level summary of package
├── docs/ # detailed documentation folder describing package consumption details and assumptions
├── tests/
├── cypress # folder containing e2e tests using the cypress test framework
├── chart/ # Folder containing helm chart
├── templates # folder helm chart templates
├── tests # folder containing helm chart tests PR-X. CI/CD pipeline is required for each Big Bang Package
Each package shall contain a .gitlab-ci.yml file at the top of the package repo. This file shall reference the pipeline CI/CD infrastructure files and include the following contents:
include:
- project: 'platform-one/big-bang/pipeline-templates/pipeline-templates'
ref: master
file: '/templates/package-tests.yaml'PR-X. Dependencies must be a Big Bang Package
If a Package has a dependency on another Package to function, the dependency shall also be a Big Bang Package
PR-X. Dependency Matrix
Each Package will clearly articulate in documentation any dependent Big Bang Package and versions.
Branching
Each package will have a default branch of main. Immutable tags will be used to identify releases and will follow a semver versioning scheme. For more information, see the versioning section.
Package Standards
-
Helm Packages contain one kubernetes object definition
-
Helm dependency manage charts dependencies in Chart.yaml and the dependency chart can be enabled or disabled using condition.
-
All Chart names are lower case letters and numbers, separated with dashes. No dots, uppercase or underscores.
-
Helm Chart values variable names should begin with a lowercase letter and words should be separated with Camel case
-
Helm chart dependency version,use version ranges instead of pinning to an exact version. version: ~1.2.3
-
There should be a Helm values file located at
tests/test-values.yamlused for pipeline testing. -
Charts should support
affinityandnodeSelectorconfiguration for all components. If there is only one type ofPods, then a single, top level value shall be provided, otherwise there should beaffinityandnodeSelectorregions for each component. See the Kubernetes Docs for more information