Chapter 3. Interacting with OpenShift using Container Development Kit

The minishift start command creates an OpenShift cluster using the cluster up approach. For this purpose it copies the oc binary onto your host.

The oc binary is located in the $MINISHIFT_HOME/cache/oc/v3.11.374 directory, assuming that you use the default OpenShift version for CDK. You can add this binary to your PATH using minishift oc-env, which displays the command you need to type into your shell.

The output of minishift oc-env differs depending on the operating system and the shell type.

minishift oc-env
Run this command to configure your shell:
eval $(minishift oc-env)

$ minishift oc-env
export PATH="/home/user/.minishift/cache/oc/v3.11.374:$PATH"
# Run this command to configure your shell:
# eval $(minishift oc-env)

As part of the minishift start command, a CLI profile named minishift is also created. This profile, also known as a context, contains the configuration to communicate with your OpenShift cluster.

CDK activates this context automatically, but if you need to switch back to it after, for example, logging into another OpenShift instance, you can run:

oc config use-context minishift

$ oc config use-context minishift

For an introduction to oc usage, see the Get Started with the CLI topic in the OpenShift documentation.

By default, cluster up uses AllowAllPasswordIdentityProvider to authenticate against the local cluster. This means any non-empty user name and password can be used to login to the local cluster.

The recommended user name and password is developer and developer, respectively. This is because they are already assigned to the default project myproject and also can impersonate the administrator. This allows you to run administrator commands using the --as system:admin parameter.

To login as administrator, use the system account:

oc login -u system:admin

$ oc login -u system:admin

In this case, client certificates are used. The certificates are stored in ~/.kube/config. The cluster up command installs the appropriate certificates as a part of the bootstrap.

To view the available login contexts, run:

oc config view

$ oc config view

To access the OpenShift Web console, you can run this command in a shell after starting CDK to get the URL of the Web console:

minishift console --url

$ minishift console --url

Alternatively, after starting CDK, you can use the following command to directly open the console in a browser:

minishift console

$ minishift console

To access a service that is exposed with a route, run this command in a shell:

minishift openshift service [-n NAMESPACE] [--url] NAME

$ minishift openshift service [-n NAMESPACE] [--url] NAME

For more information refer also to Exposing Services.

To access OpenShift logs, run the following command after starting CDK:

minishift logs

$ minishift logs

While OpenShift is running, you can view and change the master or the node configuration of your cluster.

To view the OpenShift master configuration file master-config.yaml, run the following command:

minishift openshift config view

$ minishift openshift config view

To show the node or kubeapi-server configuration instead of the master configuration, specify the target flag.

For details about the view sub-command, see the minishift openshift config view synopsis.

 minishift openshift config set --patch '{"corsAllowedOrigins": [".*"]}'

$  minishift openshift config set --patch '{"corsAllowedOrigins": [".*"]}'

PS> minishift.exe openshift config set --patch '{\"corsAllowedOrigins\": [\".*\"]}'

PS> minishift.exe openshift config set --patch '{\"corsAllowedOrigins\": [\".*\"]}'

minishift.exe openshift config set --patch "{\"corsAllowedOrigins\": [\".*\"]}"

C:\> minishift.exe openshift config set --patch "{\"corsAllowedOrigins\": [\".*\"]}"

minishift openshift config set --patch '{"routingConfig": {"subdomain": "<IP-ADDRESS>.xip.io"}}'

$ minishift openshift config set --patch '{"routingConfig": {"subdomain": "<IP-ADDRESS>.xip.io"}}'

To add a component to a running OpenShift cluster, use the following:

minishift openshift component add <component-name>

$ minishift openshift component add <component-name>

minishift openshift component add service-catalog

$ minishift openshift component add service-catalog

To list valid components which can be added to the running OpenShift cluster, use the following:

minishift openshift component list

$ minishift openshift component list

There are several ways you can expose your service after you deploy it on OpenShift. The following sections describe the various methods and when to use them.

If you are deploying a Web application, the most common way to expose it is by a route. A route exposes the service as a host name. You can create a route using the Web console or the CLI:

oc expose svc/frontend --hostname=www.example.com

$ oc expose svc/frontend --hostname=www.example.com

To see a full example of creating an application and exposing it with a route, see the Deploying a Sample Application section.

In case the service you want to expose is not HTTP based, you can create a NodePort service. In this case, each OpenShift node will proxy that port into your service. To access this port on your CDK VM, you need to configure an Ingress IP using oc expose with the parameter type=LoadBalancer.

A common use-case for Ingress IP Self-Service is the ability to expose a database service. The following example shows the complete workflow to create and expose a MariaDB instance using CDK:

minishift start
eval $(minishift oc-env)
oc new-app -e MYSQL_ROOT_PASSWORD=admin https://raw.githubusercontent.com/openshift/origin/master/examples/db-templates/mariadb-persistent-template.json
oc rollout status -w dc/mariadb
oc expose dc mariadb --type=LoadBalancer --name=mariadb-ingress
oc export svc mariadb-ingress

$ minishift start
$ eval $(minishift oc-env)
$ oc new-app -e MYSQL_ROOT_PASSWORD=admin https://raw.githubusercontent.com/openshift/origin/master/examples/db-templates/mariadb-persistent-template.json
$ oc rollout status -w dc/mariadb
$ oc expose dc mariadb --type=LoadBalancer --name=mariadb-ingress
$ oc export svc mariadb-ingress
 ....
ports:
    - nodePort: 30907
 ....

After the service is exposed, you can access MariaDB with the mysql CLI using the CDK VM IP and the exposed NodePort service.

mysql --user=root --password=admin --host=$(minishift ip) --port=30907

$ mysql --user=root --password=admin --host=$(minishift ip) --port=30907

OpenShift provides an integrated Docker registry which can be used for development as well. Images present in the registry can directly be used for applications, speeding up the local development workflow.

The following example shows how to deploy an OpenShift application directly from a locally-built Docker image. This example uses the OpenShift project myproject. This project is automatically created by minishift start.

oc run myapp --image 172.30.1.1:5000/myproject/myapp

$ oc run myapp --image 172.30.1.1:5000/myproject/myapp