Add setup script and configuration for Minikube cluster.

The Minikube version of the cluster has some differences from the main config (noted in the README) but will be useful for for future DevOps development.
2019-10-04 15:29:14 -04:00
parent da6916b1a1
commit d1ed0f6692
9 changed files with 538 additions and 0 deletions
--- a/README.md
+++ b/README.md
@@ -329,3 +329,51 @@ fi
 ```

 Also note that if the line number of a previously whitelisted secret changes, the whitelist file, `.secrets.baseline`, will be updated and needs to be committed.
+
+## Local Kubernetes Setup
+
+A modified version of the Kubernetes cluster can be deployed locally for
+testing and development purposes.
+
+It is strongly recommended that you backup your local K8s config (usually
+`~/.kube/config`) before launching Minikube for the first time.
+
+Before beginning:
+
+- install the [Docker CLI](https://docs.docker.com/v17.12/install/)
+- install [Minikube](https://kubernetes.io/docs/tasks/tools/install-minikube/)
+  (this will also require installing a Hypervisor, such as VirtualBox)
+
+### Setup
+
+Run
+
+```
+script/minikube_setup
+```
+
+Once the script exits successfully, run
+
+```
+minikube service list
+```
+
+### Access the site
+
+One of the two URLs given for the `atat-auth` service will load an HTTP version
+of the application.
+
+For HTTP basic auth, the username and password are both `minikube`.
+
+### Differences from the main config
+
+As of the time of writing, this setup does not include the following:
+
+- SSL/TLS or the complete DoD PKI
+- the cronjob for syncing CRLs and the peristent storage
+- production configuration
+
+In order for the application to run, the K8s config for Minikube includes an
+additional deployment resource called `datastores`. This includes Postgres
+and Redis containers. It also includes hard-coded versions of the K8s secrets
+used in the regular clusters.