Redis Operator creates/configures/manages redis-failovers atop Kubernetes.
Redis Operator is meant to be run on Kubernetes 1.9+. All dependencies have been vendored, so there's no need to any additional download.
The image versions deployed by the operator can be found on the defaults file.
In order to create Redis failovers inside a Kubernetes cluster, the operator has to be deployed. It can be done with deployment or with the provided Helm chart.
To create the operator, you can directly create it with kubectl:
kubectl create -f https://raw.githubusercontent.com/spotahome/redis-operator/master/example/operator/all-redis-operator-resources.yaml
This will create a deployment named redisoperator
.
From the root folder of the project, execute the following:
helm install --name redisfailover charts/redisoperator
Once the operator is deployed inside a Kubernetes cluster, a new API will be accesible, so you'll be able to create, update and delete redisfailovers.
In order to deploy a new redis-failover a specification has to be created:
kubectl create -f https://raw.githubusercontent.com/spotahome/redis-operator/master/example/redisfailover/basic.yaml
This redis-failover will be managed by the operator, resulting in the following elements created inside Kubernetes:
rfr-<NAME>
: Redis configmaprfr-<NAME>
: Redis statefulsetrfr-<NAME>
: Redis service (if redis-exporter is enabled)rfs-<NAME>
: Sentinel configmaprfs-<NAME>
: Sentinel deploymentrfs-<NAME>
: Sentinel service
NOTE: NAME
is the named provided when creating the RedisFailover.
IMPORTANT: the name of the redis-failover to be created cannot be longer that 48 characters, due to prepend of redis/sentinel identification and statefulset limitation.
The operator has the ability of add persistence to Redis data. By default an emptyDir
will be used, so the data is not saved.
In order to have persistence, a PersistentVolumeClaim
usage is allowed. The full PVC definition has to be added to the Redis Failover Spec under the Storage
section.
IMPORTANT: By default, the persistent volume claims will be deleted when the Redis Failover is. If this is not the expected usage, a keepAfterDeletion
flag can be added under the storage
section of Redis. An example is given.
You can use NodeAffinity and Tolerations to deploy Pods to isolated groups of Nodes. Examples are given for node affinity, pod anti affinity and tolerations.
It is possible to configure both Redis and Sentinel. This is done with the customConfig
option inside their spec. It is a list of configurations and their values. Example are given in the custom config example file.
In order to have the ability of this configurations to be changed "on the fly", without the need of reload the redis/sentinel processes, the operator will apply them with calls to the redises/sentinels, using config set
or sentinel set mymaster
respectively. Because of this, no changes on the configmaps will appear regarding this custom configurations and the entries of customConfig
from Redis spec will not be written on redis.conf
file. To verify the actual Redis configuration use redis-cli CONFIG GET *
.
Important: in the Sentinel options, there are some "conversions" to be made:
- Configuration on the
sentinel.conf
:sentinel down-after-milliseconds mymaster 2000
- Configuration on the
configOptions
:down-after-milliseconds 2000
Important 2: do NOT change the options used for control the redis/sentinel such as port
, bind
, dir
, etc.
By default, a custom shutdown file is given. This file makes redis to SAVE
it's data, and in the case that redis is master, it'll call sentinel to ask for a failover.
This behavior is configurable, creating a configmap and indicating to use it. An example about how to use this option can be found on the shutdown example file.
Important: the configmap has to be in the same namespace. The configmap has to have a shutdown.sh
data, containing the script.
By default Kubernetes will run containers as the user specified in the Dockerfile (or the root user if not specified), this is not always desirable.
If you need the containers to run as a specific user (or provide any other PodSecurityContext options) then you can specify a custom securityContext
in the
redisfailover
object. See the SecurityContext example file for an example. Keys available under securityContext are detailed here
By default, redis and sentinel will be called with de basic command, giving the configuration file:
- Redis:
redis-server /redis/redis.conf
- Sentinel:
redis-server /redis/sentinel.conf --sentinel
If necessary, this command can be changed with the command
option inside redis/sentinel spec. An example can be found in the custom command example file.
By default, no pod annotations will be applied to Redis nor Sentinel pods.
In order to apply custom pod Annotations, you can provide the podAnnotations
option inside redis/sentinel spec. An example can be found in the custom annotations example file.
In order to connect to the redis-failover and use it, a Sentinel-ready library has to be used. This will connect through the Sentinel service to the Redis node working as a master. The connection parameters are the following:
url: rfs-<NAME>
port: 26379
master-name: mymaster
To enable auth create a secret with a password field:
echo -n "pass" > password
kubectl create secret generic redis-auth --from-file=password
## example config
apiVersion: databases.spotahome.com/v1
kind: RedisFailover
metadata:
name: redisfailover
spec:
sentinel:
replicas: 3
redis:
replicas: 1
auth:
secretPath: secret
If you want to delete the operator from your Kubernetes cluster, the operator deployment should be deleted.
Also, the CRD has to be deleted too:
kubectl delete crd redisfailovers.databases.spotahome.com
Thanks to Kubernetes' OwnerReference
, all the objects created from a redis-failover will be deleted after the custom resource is.
kubectl delete redisfailover <NAME>
For the code documentation, you can lookup on the GoDoc.
Also, you can check more deeply information on the docs folder.