Search K
Appearance
Cluster Controller: Installation
WARNING
To install cluster controller you need to first setup Palomar.
Cluster Controller requires either:
- a Kubernetes cluster
- a Docker environment
High Availability
Cluster controller is not required to be highly available itself. (In fact, it can't be HA as it is REQUIRED that only a single instance is running in a site at one time.)
However, controller is required to optimize Palomar performance so maximum availability of the service should be the goal. Thus, installation of controller should be done in such a way to ensure maximum availability of the component.
Node Sizing
We recommend setting up a highly-available Kubernetes cluster with at least 2 worker nodes to ensure proper availability and resilience for the Cluster controller service.
Alternatively, as a fallback option, you can deploy a single-node Kubernetes cluster using Minikube or a similar tool, OR run the service on a single machine with Docker Compose.
In both scenarios, each node should have at least 4 CPU cores and 8 GB of memory.
Kubernetes Installation
You need to use Helm package manager to install cluster controller chart.
INFO
See Kubernetes Support Policy for details on Kubernetes version support.
Any recent version of Helm should be OK.
Installation Steps
Repository Authentication
Before installing the helm chart, you will need to make sure you have access to the Open-Xchange container registry and have your helm logged in.
console
helm registry login registry.open-xchange.comThis step is needed once. After a successful login, helm will not normally need to be re-authenticated.
Chart Configuration
Create global.yaml and controller.yaml files for your site.
See Cluster Controller Chart values for values applicable for this chart, with global.yaml containing the parameters starting with global. (that will be shared with other charts in the future) and controller.yaml with the other controller-specific parameters.
NOTE
Cluster controller expects to be deployed in a dedicated Kubernetes namespace.
Chart Install
To install, run:
console
helm install <release-name> oci://registry.open-xchange.com/dovecot-pro/charts/controller --version <version> -f global.yaml -f controller.yaml -n <namespace>Example:
console
helm install controller oci://registry.open-xchange.com/dovecot-pro/charts/controller --version 3.0.0 -f global.yaml -f controller.yaml -n dovecotIf everything goes well, you should now have a functional controller.
Rollback
You can use Helm package manager to rollback to a previous working version of your Cluster Controller chart.
First, you need to identify the revision number of the release you want to rollback to. You can list all the previous releases of your Helm chart with:
console
helm history <release-name>Once you have identified the revision number you want to revert to, you can perform the rollback with:
console
helm rollback <release-name> <revision-number>After executing the rollback, you can verify that the rollback was successful by checking the status of the release:
console
helm status <release-name>Docker Compose Installation Experimental
Even though the primary method to install cluster controller is on Kubernetes managed deployments, It is possible to install it via docker-compose as well.
All the files needed for this installation method are bundled in a traditional package included in dovecot-pro repositories. The package does not have any dependencies against docker or docker-compose and it's left for the administrator to choose their preferred method of installing them.
Dependencies
- Docker: any recent version should be OK
- docker-compose: any relatively recent version that supports variable interpolation syntax should be ok. v1.19.2 is the oldest version we have tested for compatibility.
The package includes a compose file along with extra configuration files needed to run various services need for controller. A systemd unit file is also included that invokes the docker-compose file to to start or stop all containers.
Installation Steps
Repository Authentication
Before installing the controller compose package, you will need to make sure you have access to the Open-Xchange container registry and have your docker logged in.
console
docker login registry.open-xchange.comThis step is needed once. After a successful login, docker will not normally need to be re-authenticated.
Package Install
Install dovecot-pro-controller-compose package from Dovecot Pro repositories. Once installed, all the configuration files and the docker-compose file will be located at /usr/share/doc/dovecot-pro-controller-compose/.
Cluster Configuration
The controller configuration file is located at /usr/share/doc/dovecot-pro-controller-compose/controller_config.
Please refer to Cluster Controller Settings for all available options. Review and apply any necessary changes.
Deployment Variables
Apart from cluster controller's configuration options, there are various deployment variables that can be tweaked to customize deployment. An example .env file is included with the compose package (located in the same directory as the compose file) that contains a list of key-value pairs for all these deployment variables:
| Variable Name | Description | Default |
|---|---|---|
CONTROLLER_IMAGE_URL | URL of the registry used to pull the cluster controller image from. | registry.open-xchange.com/dovecot-pro/controller |
CONTROLLER_IMAGE_TAG | Docker image tag of the cluster controller version used. | <released-version> |
CONTROLLER_API_LOG_LEVEL | Log level set for cluster controller API container. | info |
CONTROLLER_WORKER_LOG_LEVEL | Log level set for cluster controller worker container. | info |
CONTROLLER_SCHEDULER_LOG_LEVEL | Log level set for cluster controller scheduler container. | info |
CONTROLLER_WORKER_LOW_PRIO_REPLICAS | Number of replicas for controller worker performing low priority tasks. | 2 |
CONTROLLER_WORKER_HIGH_PRIO_REPLICAS | Number of replicas for controller worker performing high priority tasks. | 1 |
REDIS_IMAGE_URL | URL of the registry used to pull Redis image from. | docker.io/bitnami/redis |
REDIS_IMAGE_TAG | Docker image tag of the Redis version used. | 7.2.3 |
CONTROLLER_REDIS_REPLICAS | Number of replicas for Redis containers. | 1 |
PROMETHEUS_IMAGE_URL | URL of the registry used to pull Prometheus image from. | quay.io/prometheus/prometheus |
PROMETHEUS_IMAGE_TAG | Docker image tag of the Prometheus version used. | 25.8.2 |
Rename the example file to .env or create a new file in the same folder with modified values.
console
cp /usr/share/doc/dovecot-pro-controller-compose/{example,}.envEnv file
Overridden variables must be in .env file otherwise the default values will be used.
Cassandra Initialization
It is expected that there is an external Cassandra cluster running and the address of the server(s) is passed to controller in settings (refer to controller configuration described above).
Therefore, the keyspace and all tables needed for Palomar to function need to have been correctly created for controller to function properly.
It is possible, however, to enable automatic initialization of the database as part of the deployment. If enabled, the keyspace and necessary tables are created if missing from the database based on the parameters described in the table below. Most of these initialization parameters are a direct translation of some of Chart settings for Kubernetes deployments as described in Cluster Controller Chart values.
For docker-compose installations these settings must be in the same config file as other settings outlined above.
| Variable Name | Description | Default |
|---|---|---|
INIT_GEODB_SCHEMA | Initialize the Cassandra schema (keyspace and tables) needed for Palomar. | True |
CASSANDRA_DATACENTER_REPLICATIONFACTOR | A sequence of data centers and their configured replication factor on the Cassandra cluster (can be a Python dict or list object). Each element in the sequence is a string containing datacenter and its replication factor separated by comma. | ( |
CASSANDRA_GEODB_KEYSPACE | Cassandra keyspace used for Palomar GeoDB. Must have the same value as CASSANDRA_KEYSPACE controller setting. | "d8s_cluster" |
INIT_SITE | Should the site be created as well. If enabled, controller API is used to create a site with name taken from CLUSTER_SITE controller setting. | True |
DOMAIN | Public FQDN of the cluster site load balancer. Used when creating the site if INIT_SITE is true. | "d8s.test" |
DICTMAP_ENABLED | Whether fs-dictmap is configured for Dovecot object storage. | True |
INIT_DICTMAP_SCHEMA | Initialize the Cassandra schema (keyspace and tables) used for fs-dictmap. | True |
CASSANDRA_DICTMAP_KEYSPACE | Cassandra keyspace used for fs-dictmap. | "d8s_dovecot" |
Start Container
Start cluster controller either by invoking docker-compose directly or by using the systemd service.
Executable File Permissions
Depending on the distribution used, files bundled in the package might have been stripped of their execution permission. Make sure cassandra-bootstrap.sh and config2env.py (located in the same director as the compose file) are executable.
console
docker-compose -f /usr/share/doc/dovecot-pro-controller-compose/docker-compose.yml upOr
console
systemctl start dovecot-cluster-controller