This tutorial will walk through creating a kpack image resource to build a docker image from source and allow kpack to keep the image up to date.
-
kpack is installed and available on a kubernetes cluster with a ClusterBuilder
Follow these docs to install and setup kpack
-
kpack log utility is downloaded and available
Follow these docs to setup log utility
-
Create a secret with push credentials for the docker registry that you plan on publishing images to with kpack.
apiVersion: v1 kind: Secret metadata: name: tutorial-registry-credentials annotations: build.pivotal.io/docker: <registry> type: kubernetes.io/basic-auth stringData: username: <username> password: <password>
Note: The secret must be annotated with the registry prefix for its corresponding registry. For dockerhub this should be
index.docker.io. For GCR this should begcr.io.Your secret configuration should look something like this:
apiVersion: v1 kind: Secret metadata: name: tutorial-registry-credentials annotations: build.pivotal.io/docker: index.docker.io type: kubernetes.io/basic-auth stringData: username: sample-username password: sample-password
Apply that credential to the cluster
kubectl apply -f <name-of-secret-file.yaml>
Note: Learn more about kpack secrets with the kpack secret documentation
-
Create a service account that references the registry secret created above
apiVersion: v1 kind: ServiceAccount metadata: name: tutorial-service-account secrets: - name: tutorial-registry-credentials
Apply that service account to the cluster
kubectl apply -f <name-of-service-account-file.yaml> -
Fork the buildpacks sample app
Navigate to https://github.com/buildpack/sample-java-app and fork the repo to your account.
You will use this fork to build an app with kpack and watch it update when pushes are made to your fork.
-
Apply kpack image configuration
An image configuration is the specification for an image that kpack should build and manage. For more info check out the image documentation. We will create a sample image that builds with the default builder setup in the installing documentation.
Create an image configuration:
apiVersion: build.pivotal.io/v1alpha1 kind: Image metadata: name: tutorial-image spec: tag: <DOCKER-IMAGE> serviceAccount: tutorial-service-account builder: name: default-builder kind: ClusterBuilder source: git: url: <YOUR-BULIDPACK-SAMPLE-APP-FORK> revision: master
- Make sure to replace with the registry you configured in step #2. Something like: gcr.io/your-project/app
- Make sure to replace with the publicly accessible github url to your fork from step #3
Note: To use a private git repo follow the instructions in secrets
Apply that image to the cluster
kubectl apply -f <name-of-image-file.yaml>
You can now check the status of the image.
kubectl get images
You should see that the image has an unknown READY status as it currently building.
NAME LATESTIMAGE READY tutorial-image UnknownYou can tail the logs for image that is currently building using the logs utility
Note: The log utility will not exit when the build finishes. You will need to exit when it finishes.
logs -image tutorial-imageOnce the image finishes building you can get the fully resolved built image with
kubectl getkubectl get image tutorial-imageThe output should look something like this:
NAMESPACE NAME LATESTIMAGE READY test tutorial-image gcr.io/project-name/app@sha256:6744b3b24a7ab8d2b45d7673313c180daccb534b3d931369d0aa9805712f34b8 TrueThe latest image is available to be used locally via
docker pulland in a kubernetes deployment. -
Run the build app locally
Download the latest image available in step #4 and run it with docker.
docker run -p 8080:8080 <latest-image-with-digest>
You should see the java app start up:
|'-_ _-'| ____ _ _ _ _ _ | | | | _ \ (_)| | | | | | (_) '-_|_-' | |_) | _ _ _ | | __| | _ __ __ _ ___ | | __ ___ _ ___ |'-_ _-'|'-_ _-'| | _ < | | | || || | / _` || '_ \ / _` | / __|| |/ // __| | | / _ \ | | | | | | |_) || |_| || || || (_| || |_) || (_| || (__ | < \__ \ _ | || (_) | '-_|_-' '-_|_-' |____/ \__,_||_||_| \__,_|| .__/ \__,_| \___||_|\_\|___/(_)|_| \___/ | | |_| :: Built with Spring Boot :: 2.1.3.RELEASE -
kpack rebuilds with source code updates
Push any update to the forked sample app repository configured in step #4. In a short amount of time, kpack should recognize the update and automatically rebuild your image.
You can see this happen by running
kubectl get buildskubectl get buildsYou should see a new build with
NAME IMAGE SUCCEEDED tutorial-image-build-1-8mqkc gcr.io/project-name/app@sha256:6744b3b24a7ab8d2b45d7673313c180daccb534b3d931369d0aa9805712f34b True tutorial-image-build-2-xsf2l UnknownYou can tail the logs for the image with log utility used in step #4.
logs -image tutorial-image -build 2 -
kpack rebuilds with buildpack updates
The next time the
cloudfoundry/cnb:bionicis updated, kpack will detect if it contains buildpack updates to any of the buildpacks used by the tutorial image. If there is a buildpack update, kpack will automatically create a new build to rebuild your image.