Sid is a research tool developed by the Harvard-MIT Data Center (HMDC) designed to give researchers a way to easily launch secure cloud-based scientific computing environments. Sid users can simply login to the web UI, select their desired computing environment (e.g., R Studio, Jupyter Notebook) and data source (e.g., Dataverse, Google Drive), and access it through their browser within minutes. In the background, Sid spawns a new Linux container, mounts the selected data source, and configures the network routes necessary for SSL-secured user access. This tool allows users to harness the storage and processing capabilites of a cloud platform without needing to know the ins and outs of Linux system administration or cloud computing.
Currently, teams at the HMDC are actively developing Sid and preparing it for launch sometime in late 2019. On launch, Sid's backend container infrastructure (i.e. the system for launching scientific computing containers upon user request) will be powered solely by Amazon Elastic Kubernetes Service (EKS). Our goal for this semester is to diversify Sid's infrastructure by porting it over to the Massachusetts Open Cloud (MOC). By the end of the project, a Sid user will be able to launch the same scientific computing containers on MOC OpenStack VMs with Kubernetes that they can launch on Amazon EKS. And because Sid and Kubernetes are both open-source projects, other universities and research organizations will be able to set up their own instances of Sid without having to rely on (or pay for) Amazon's proprietary cloud infrastructure.
Our team will work closely with the HMDC to make this port possible. We will begin by installing Sid's node.js-based frontend and middleware on our local machines (for development); in production, these components will run on Heroku. We will then set up a Kubernetes cluster on MOC OpenStack in our development environment and attempt to provision it with the objects (e.g., ServiceAccounts, Roles, etc.) normally used with Kubernetes on Amazon EKS. As we encounter incompatibilities preventing unmodified use of EKS and Kubernetes(Previously OpenShift) , or work with the HMDC to develop a workaround in the middleware. Each of these compatibility upgrade tasks will be assigned to 1-2 team members. As Sid and Kubernetes are both complex platforms with several moving pieces, each team member will also spend significant time researching unfamiliar technologies and discussing with the HMDC team. Once we are able to successfully deploy Sid on Kubernetes in our development environment, we will begin rollout on the MOC's production OpenShift cluster.
At the moment, our only open question is if there's any scenario where Sid's backend needs to be coupled to the infrastructure underlying the chosen orchestration platform (Kubernetes or OpenShift) that would need to be provisioned in some custom fashion with a tool like Ansible or Terraform. We plan to answer this question in our next meeting with our mentor.
Our main risk is that there is some fundamental incompatibility between Sid and OpenShift that would prevent our port from succeeding. In that unfortunate scenario, our backup plan is to create an automated way to deploy Sid on a "pure" Kubernetes cluster running on MOC virtual machines. Based on several issues with incompatibilities with pieces outside of the scope of our role in this project and time constraints we have decided with the Harvard team to go with this backup plan instead of trying to force Sid to work with OpenShift
-
Although Sid's end users will primarily be scientists and researchers wishing to utilize cloud computing environments, as a backend project, our primary users are the administrators and developers of Sid.
-
Sid's users should require no knowledge of the backend platforms on which their scientific computing containers are running. Our users (Sid administrators) should only need to know how to deploy a project on an OpenShift cluster in order to stand up their backend.
- Containerized scientific computing environment backed by the Massachusetts Open Cloud
- Create a cluster on VM's running vanilla K8s that can be used in place of EKS
- Create a set of terraform scripts to stand up a K8s cluster that can run Sid
The components which make up Sid can be viewed as three sections. The front end is where the user interacts with the software and tells it the job they would like to run. The middleware includes the components that interact with and control the Kubernetes. This section tells the backend how it should perform its computations and what the user has requested. The back end is where all of the actual containers are created (currently on AWS, but soon to be on the MOC). Because of issues with compatibility between the current Sid implementation and OpenShift we have decided to instead run a vanilla k8s cluster on VMs on the MOC.
This diagram shows at a very high level how a user interacts with Sid by requesting that Sid create a new job, and how Sid hands off the newly created job to the user to directly interact with
- User AAA
- User Management
- User History
- How the user tells the tool what job they want to run
- Administrative Controls
- Heroku
- Launching and controlling jobs
- Logging
The success or failure of this project will be determined by whether or not we are able to successfully port Sid's current deployment to run on an MOC OpenShift cluster.
Release 1 (Week 4) - Demo Slides
- Revise Project Description.
- Follow tutorial given by Sid team to download mongo, nginx, virtual machines and start running some kubernetes containers.
- Request OpenShift access on the MOC.
- Install Minishift
- Complete OpenShift tutorial using MiniShift.
Release 2 (Week 6) - Demo Slides
- Figure out how to add priority classes to MiniShift.
- When adapting Sid development environment from Kubernetes to OpenShift, we need to find an alternative to minishift of the minikube’s ‘NGINX ingress controller add-on.
- Solve permission issues for add-role step in the original sid tutorial.
Release 3 (Week 8) - Demo Slides
- Finish addressing incompatibilites that we can handle within OpenShift
- Begin working with HMDC to workaround any remaining incompatibilities in middleware
- Adapt the current tutorial for setting up a local environment to use minishift
- Manually deploy sid in a pre production environment on the MOC
Release 4 (Week 10) - Demo Slides
- Decided to switch to using vanilla k8s over openshift due to incompatibilities
- Work on setting up a new heroku instance for our MOC cluster
- Try to run sid docker images and if the cluster is up put them onto the cluster
Release 5 (Week 12) Demo Slides
- Request more Floating IPs from the MOC team.
- Roll vanilla Kubernetes out on MOC virtual machines.
- Create a new ‘Sid Middleware’ instance on Heroku
- Test run Reddis on our MOC openstack instance.
- Test express web-server on MOC.
- Fix networking/load-balancing experiencing issues. Pods that expose ports might not be publicly accessible.
- Migrate Mongo from Heroku to a local machine and put it in a container using Kubernetes.
- Prepare entire Kubernetes cluster for Sid usage.
- Install Docker Daemon on a new MOC VM to enable the use of Reddis, Mongo and Express webserver.
Release 6 (Week 13)
- Finalize documentation
- Finish writing terraform scripts
- Integrate our backend and middleware
- Complete switchover from using staging instances of Sid's frontend and middleware to production instances
- Handoff to HMDC team
Final Video Presentation Link https://youtu.be/No_C1XHVel0