export PROJECT_ID=<GCP Project ID>
export ADMIN_EMAIL=<Your Email>
export REGION=us-central1
gcloud auth application-default set-quota-project $PROJECT_ID
gcloud auth application-default login
For MacOS, install jq:
brew install jq
Make sure to update to the latest gcloud tool:
# Tested with gcloud v400.0.0
gcloud components update
Change the following Organization policy constraints in GCP Console
- constraints/compute.requireOsLogin - Enforced Off
- constraints/compute.vmExternalIpAccess - Allow All
Set up Terraform environment variables and GCS bucket for state file:
export TF_VAR_api_domain=<Your API Domain>
export TF_VAR_admin_email=$ADMIN_EMAIL
export TF_VAR_project_id=$PROJECT_ID
# Create Terraform Statefile in GCS bucket.
bash setup/setup_terraform.sh
Run Terraform apply
export GOOGLE_IMPERSONATE_SERVICE_ACCOUNT=terraform-sa@$PROJECT_ID.iam.gserviceaccount.com
cd terraform/environments/dev
terraform init
terraform apply
# Enter yes at the promopt to apply Terraform changes.
Do you want to perform these actions?
Terraform will perform the actions described above.
Only 'yes' will be accepted to approve.
Enter a value: yes
Connect to the default-cluster:
gcloud container clusters get-credentials main-cluster --region $REGION --project $PROJECT_ID
Build all microservices (including web app) and deploy to the cluster:
skaffold run -p prod --default-repo=gcr.io/$PROJECT_ID
If you're seeing the following GKE permission error regarding Comopute Engine read permission, run the following to fix
PROJECT_NUMBER=$(gcloud projects describe "$PROJECT_ID" --format 'get(projectNumber)')
gcloud projects add-iam-policy-binding $PROJECT_ID \
--member "serviceAccount:service-${PROJECT_NUMBER?}@container-engine-robot.iam.gserviceaccount.com" \
--role roles/container.serviceAgent
Install required packages:
-
For MacOS:
brew install --cask skaffold kustomize google-cloud-sdk -
For Windows:
choco install -y skaffold kustomize gcloudsdk
- Make sure to use skaffold 1.24.1 or later for development.
After cloning the repo, please set up for local development.
- Export GCP project id and the namespace based on your Github handle (i.e. user ID)
export PROJECT_ID=<Your Project ID> export SKAFFOLD_NAMESPACE=<Replace with your Github user ID> export REGION=us-central1 - Log in gcloud SDK:
gcloud auth login - Run the following to set up critical context and environment variables:
This shell script does the following:
./setup/setup_local.sh- Set the current context to
gke_claims-processing-dev_us-central1_default_cluster. The default cluster name isdefault_cluster.IMPORTANT: Please do not change this context name.
- Create the namespace $SKAFFOLD_NAMESPACE and set this namespace for any further kubectl operations. It's okay if the namespace already exists.
- Set the current context to
NOTE: By default, skaffold builds with CloudBuild and runs in GKE cluster, using the namespace set above.
To build and run in cluster:
skaffold run --port-forward
To build and run in cluster with hot reload:
skaffold dev --port-forward
- Please note that any change in the code will trigger the build process.
skaffold run --port-forward -m <Microservice>
You can also run multiple specific microservices altogether. E.g.:
skaffold run --port-forward -m sample-service,other-service
skaffold dev --default-repo=<Image registry path> --port-forward
E.g. you can point to a different GCP Cloud Source Repository path:
skaffold dev --default-repo=gcr.io/another-project-path --port-forward
Install Minikube:
# For MacOS:
brew install minikube
# For Windows:
choco install -y minikube
Make sure the Docker daemon is running locally. To start minikube:
minikube start
- This will reset the kubectl context to the local minikube.
To build and run locally:
skaffold run --port-forward
# Or, to build and run locally with hot reload:
skaffold dev --port-forward
Optionally, you may want to set GOOGLE_APPLICATION_CREDENTIALS manually to a local JSON key file.
GOOGLE_APPLICATION_CREDENTIALS=<Path to Service Account key JSON file>
IMPORTANT: Please change gcloud project and kubectl context before running skaffold.
Replace the <Custom GCP Project ID> with a specific project ID and run the following:
export PROJECT_ID=<Custom GCP Project ID>
# Switch to a specific project.
gcloud config set project $PROJECT_ID
# Assuming the default cluster name is "default_cluster".
gcloud container clusters get-credentials default_cluster --zone us-central1-a --project $PROJECT_ID
Run with skaffold:
skaffold run -p custom --default-repo=gcr.io/$PROJECT_ID
# Or run with hot reload and live logs:
skaffold dev -p custom --default-repo=gcr.io/$PROJECT_ID
# Using custom profile
skaffold dev -p custom --port-forward
# Using prod profile
skaffold dev -p prod --port-forward
By default, the Skaffold YAML contains the following pre-defined profiles ready to use.
- dev - This is the default profile for local development, which will be activated automatically with the Kubectl context set to the default cluster of this GCP project.
- prod - This is the profile for building and deploying to the Prod environment, e.g. to a customer's Prod environment.
- custom - This is the profile for building and deploying to a custom GCP project environments, e.g. to deploy to a staging or a demo environment.
To check if pods are deployed and running:
kubectl get po
# Or, watch the live update in a separate terminal:
watch kubectl get po
To create a namespace:
kubectl create ns <New namespace>
To set a specific namespace for further kubectl operations:
kubectl config set-context --current --namespace=<Your namespace>
-
Create a fork of a Git repository
- Go to the specific Git repository’s page, click Fork at the right corner of the page:
-
Choose your own Github profile to create this fork under your name.
-
Clone the repo to your local computer. (Replace the variables accordingly)
cd ~/workspace git clone git@github.com:$YOUR_GITHUB_ID/$REPOSITORY_NAME.git cd $REPOSITORY_NAME- If you encounter permission-related errors while cloning the repo, follow this guide to create and add an SSH key for Github access (especially when checking out code with git@github.com URLs)
-
Verify if the local git copy has the right remote endpoint.
git remote -v # This will display the detailed remote list like below. # origin git@github.com:jonchenn/$REPOSITORY_NAME.git (fetch) # origin git@github.com:jonchenn/$REPOSITORY_NAME.git (push)- If for some reason your local git copy doesn’t have the correct remotes, run the following:
git remote add origin git@github.com:$YOUR_GITHUB_ID/$REPOSITORY_NAME.git # or to reset the URL if origin remote exists git remote set-url origin git@github.com:$YOUR_GITHUB_ID/$REPOSITORY_NAME.git
- If for some reason your local git copy doesn’t have the correct remotes, run the following:
-
Add the upstream repo to the remote list as upstream.
git remote add upstream git@github.com:$UPSTREAM_REPOSITORY_NAME.git- In default case, the $UPSTREAM_REPOSITORY_NAME will be the repo that you make the fork from.
-
Sync your fork with the latest commits in upstream/master branch. (more info)
# In your local fork repo folder. git checkout -f master git pull upstream master -
Create a new local branch to start a new task (e.g. working on a feature or a bug fix):
# This will create a new branch. git checkout -b feature_xyz -
After making changes, commit the local change to this custom branch and push to your fork repo on Github. Alternatively, you can use editors like VSCode to commit the changes easily.
git commit -a -m 'Your description' git push # Or, if it doesn’t push to the origin remote by default. git push --set-upstream origin $YOUR_BRANCH_NAME- This will submit the changes to your fork repo on Github.
-
Go to the your Github fork repo web page, click the “Compare & Pull Request” in the notification. In the Pull Request form, make sure that:
- The upstream repo name is correct
- The destination branch is set to master.
- The source branch is your custom branch. (e.g. feature_xyz in the example above.)
- Alternatively, you can pick specific reviewers for this pull request.
-
Once the pull request is created, it will appear on the Pull Request list of the upstream origin repository, which will automatically run tests and checks via the CI/CD.
-
If any tests failed, fix the codes in your local branch, re-commit and push the changes to the same custom branch.
# after fixing the code… git commit -a -m 'another fix' git push- This will update the pull request and re-run all necessary tests automatically.
- If all tests passed, you may wait for the reviewers’ approval.
-
Once all tests pass and get approvals from reviewer(s), the reviewer or Repo Admin will merge the pull request back to the origin master branch.
For code reviewers, go to the Pull Requests page of the origin repo on Github.
- Go to the specific pull request, review and comment on the request. branch.
- Alternatively, you can use Github CLI
ghto check out a PR and run the codes locally: https://cli.github.com/manual/gh_pr_checkout - If all goes well with tests passed, click Merge pull request to merge the changes to the master.
Test for PR changes
- app_registration_id used on the ui is referred as case_id in the API code
- case_id is referred as external case_id in the firestore