From 83c1cc82b64c2839c9734b29dd28432141be4570 Mon Sep 17 00:00:00 2001 From: Ian Letourneau Date: Tue, 11 Nov 2025 14:12:56 +0000 Subject: [PATCH 1/2] fix(host_network): remove extra fields from bond config to prevent clashes (#186) Also alias `port` to support both `port` and `ports` as per the nmstate spec. Reviewed-on: https://git.nationtech.io/NationTech/harmony/pulls/186 --- harmony/src/infra/network_manager.rs | 4 +--- harmony/src/modules/okd/crd/nmstate.rs | 1 + harmony_types/src/net.rs | 10 +++++++++- 3 files changed, 11 insertions(+), 4 deletions(-) diff --git a/harmony/src/infra/network_manager.rs b/harmony/src/infra/network_manager.rs index 89321fe..e5dbd24 100644 --- a/harmony/src/infra/network_manager.rs +++ b/harmony/src/infra/network_manager.rs @@ -135,8 +135,6 @@ impl OpenShiftNmStateNetworkManager { description: Some(format!("Member of bond {bond_name}")), r#type: nmstate::InterfaceType::Ethernet, state: "up".to_string(), - mtu: Some(switch_port.interface.mtu), - mac_address: Some(switch_port.interface.mac_address.to_string()), ipv4: Some(nmstate::IpStackSpec { enabled: Some(false), ..Default::default() @@ -162,7 +160,7 @@ impl OpenShiftNmStateNetworkManager { interfaces.push(nmstate::Interface { name: bond_name.to_string(), - description: Some(format!("Network bond for host {host}")), + description: Some(format!("HARMONY - Network bond for host {host}")), r#type: nmstate::InterfaceType::Bond, state: "up".to_string(), copy_mac_from, diff --git a/harmony/src/modules/okd/crd/nmstate.rs b/harmony/src/modules/okd/crd/nmstate.rs index f0eb4ae..3055766 100644 --- a/harmony/src/modules/okd/crd/nmstate.rs +++ b/harmony/src/modules/okd/crd/nmstate.rs @@ -417,6 +417,7 @@ pub struct EthernetSpec { #[serde(rename_all = "kebab-case")] pub struct BondSpec { pub mode: String, + #[serde(alias = "port")] pub ports: Vec, #[serde(skip_serializing_if = "Option::is_none")] pub options: Option>, diff --git a/harmony_types/src/net.rs b/harmony_types/src/net.rs index 51de86e..6086e54 100644 --- a/harmony_types/src/net.rs +++ b/harmony_types/src/net.rs @@ -1,6 +1,6 @@ use serde::{Deserialize, Serialize}; -#[derive(Copy, Clone, Debug, PartialEq, Eq, Hash, Serialize, Deserialize, PartialOrd, Ord)] +#[derive(Copy, Clone, PartialEq, Eq, Hash, Serialize, Deserialize, PartialOrd, Ord)] pub struct MacAddress(pub [u8; 6]); impl MacAddress { @@ -19,6 +19,14 @@ impl From<&MacAddress> for String { } } +impl std::fmt::Debug for MacAddress { + fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result { + f.debug_tuple("MacAddress") + .field(&String::from(self)) + .finish() + } +} + impl std::fmt::Display for MacAddress { fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result { f.write_str(&String::from(self)) -- 2.39.5 From bb6b4b7f88f9ca46641e8f82dc4d5b4c30d64398 Mon Sep 17 00:00:00 2001 From: Ian Letourneau Date: Thu, 13 Nov 2025 18:15:05 -0500 Subject: [PATCH 2/2] docs: New docs structure & rustdoc for HostNetworkConfigScore --- README.md | 87 ++++++++------------ docs/README.md | 34 +++++++- docs/catalogs/README.md | 7 ++ docs/catalogs/capabilities.md | 40 ++++++++++ docs/catalogs/scores.md | 102 ++++++++++++++++++++++++ docs/catalogs/topologies.md | 59 ++++++++++++++ docs/concepts.md | 40 ++++++++++ docs/guides/getting-started.md | 42 ++++++++++ examples/try_rust_webapp/Cargo.toml | 4 + harmony/src/modules/okd/host_network.rs | 68 ++++++++++++++++ 10 files changed, 428 insertions(+), 55 deletions(-) create mode 100644 docs/catalogs/README.md create mode 100644 docs/catalogs/capabilities.md create mode 100644 docs/catalogs/scores.md create mode 100644 docs/catalogs/topologies.md create mode 100644 docs/concepts.md create mode 100644 docs/guides/getting-started.md diff --git a/README.md b/README.md index 4ccdae7..248618f 100644 --- a/README.md +++ b/README.md @@ -1,4 +1,6 @@ -# Harmony : Open-source infrastructure orchestration that treats your platform like first-class code +# Harmony + +Open-source infrastructure orchestration that treats your platform like first-class code. _By [NationTech](https://nationtech.io)_ @@ -18,9 +20,7 @@ All in **one strongly-typed Rust codebase**. From a **developer laptop** to a **global production cluster**, a single **source of truth** drives the **full software lifecycle.** ---- - -## 1 · The Harmony Philosophy +## The Harmony Philosophy Infrastructure is essential, but it shouldn’t be your core business. Harmony is built on three guiding principles that make modern platforms reliable, repeatable, and easy to reason about. @@ -32,9 +32,18 @@ Infrastructure is essential, but it shouldn’t be your core business. Harmony i These principles surface as simple, ergonomic Rust APIs that let teams focus on their product while trusting the platform underneath. ---- +## Where to Start -## 2 · Quick Start +We have a comprehensive set of documentation right here in the repository. + +| I want to... | Start Here | +| ----------------- | ------------------------------------------------------------------ | +| Get Started | [Getting Started Guide](./docs/guides/getting-started.md) | +| See an Example | [Use Case: Deploy a Rust Web App](./docs/use-cases/rust-webapp.md) | +| Explore | [Documentation Hub](./docs/README.md) | +| See Core Concepts | [Core Concepts Explained](./docs/concepts.md) | + +## Quick Look: Deploy a Rust Webapp The snippet below spins up a complete **production-grade Rust + Leptos Webapp** with monitoring. Swap it for your own scores to deploy anything from microservices to machine-learning pipelines. @@ -92,63 +101,33 @@ async fn main() { } ``` -Run it: +To run this: -```bash -cargo run -``` +- Clone the repository: `git clone https://git.nationtech.io/nationtech/harmony` +- Install dependencies: `cargo build --release` +- Run the example: `cargo run --example try_rust_webapp` -Harmony analyses the code, shows an execution plan in a TUI, and applies it once you confirm. Same code, same binary—every environment. +## Documentation ---- +All documentation is in the `/docs` directory. -## 3 · Core Concepts +- [Documentation Hub](./docs/README.md): The main entry point for all documentation. +- [Core Concepts](./docs/concepts.md): A detailed look at Score, Topology, Capability, Inventory, and Interpret. +- [Component Catalogs](./docs/catalogs/README.md): Discover all available Scores, Topologies, and Capabilities. +- [Developer Guide](./docs/guides/developer-guide.md): Learn how to write your own Scores and Topologies. -| Term | One-liner | -| ---------------- | ---------------------------------------------------------------------------------------------------- | -| **Score** | Declarative description of the desired state (e.g., `LAMPScore`). | -| **Interpret** | Imperative logic that realises a `Score` on a specific environment. | -| **Topology** | An environment (local k3d, AWS, bare-metal) exposing verified _Capabilities_ (Kubernetes, DNS, …). | -| **Maestro** | Orchestrator that compiles Scores + Topology, ensuring all capabilities line up **at compile-time**. | -| **Inventory** | Optional catalogue of physical assets for bare-metal and edge deployments. | +## Architectural Decision Records -A visual overview is in the diagram below. +- [ADR-001 · Why Rust](adr/001-rust.md) +- [ADR-003 · Infrastructure Abstractions](adr/003-infrastructure-abstractions.md) +- [ADR-006 · Secret Management](adr/006-secret-management.md) +- [ADR-011 · Multi-Tenant Cluster](adr/011-multi-tenant-cluster.md) -[Harmony Core Architecture](docs/diagrams/Harmony_Core_Architecture.drawio.svg) +## Contribute ---- +Discussions and roadmap live in [Issues](https://git.nationtech.io/nationtech/harmony/-/issues). PRs, ideas, and feedback are welcome! -## 4 · Install - -Prerequisites: - -- Rust -- Docker (if you deploy locally) -- `kubectl` / `helm` for Kubernetes-based topologies - -```bash -git clone https://git.nationtech.io/nationtech/harmony -cd harmony -cargo build --release # builds the CLI, TUI and libraries -``` - ---- - -## 5 · Learning More - -- **Architectural Decision Records** – dive into the rationale - - [ADR-001 · Why Rust](adr/001-rust.md) - - [ADR-003 · Infrastructure Abstractions](adr/003-infrastructure-abstractions.md) - - [ADR-006 · Secret Management](adr/006-secret-management.md) - - [ADR-011 · Multi-Tenant Cluster](adr/011-multi-tenant-cluster.md) - -- **Extending Harmony** – write new Scores / Interprets, add hardware like OPNsense firewalls, or embed Harmony in your own tooling (`/docs`). - -- **Community** – discussions and roadmap live in [GitLab issues](https://git.nationtech.io/nationtech/harmony/-/issues). PRs, ideas, and feedback are welcome! - ---- - -## 6 · License +## License Harmony is released under the **GNU AGPL v3**. diff --git a/docs/README.md b/docs/README.md index a125fce..e05f887 100644 --- a/docs/README.md +++ b/docs/README.md @@ -1 +1,33 @@ -Not much here yet, see the `adr` folder for now. More to come in time! +# Harmony Documentation Hub + +Welcome to the Harmony documentation. This is the main entry point for learning everything from core concepts to building your own Score, Topologies, and Capabilities. + +## 1. Getting Started + +If you're new to Harmony, start here: + +- [**Getting Started Guide**](./guides/getting-started.md): A step-by-step tutorial that takes you from an empty project to deploying your first application. +- [**Core Concepts**](./concepts.md): A high-level overview of the key concepts in Harmony: `Score`, `Topology`, `Capability`, `Inventory`, `Interpret`, ... + +## 2. Use Cases & Examples + +See how to use Harmony to solve real-world problems. + +- [**OKD on Bare Metal**](./use-cases/okd-on-bare-metal.md): A detailed walkthrough of bootstrapping a high-availability OKD cluster from physical hardware. +- [**Deploy a Rust Web App**](./use-cases/deploy-rust-webapp.md): A quick guide to deploying a monitored, containerized web application to a Kubernetes cluster. + +## 3. Component Catalogs + +Discover existing, reusable components you can use in your Harmony projects. + +- [**Scores Catalog**](./catalogs/scores.md): A categorized list of all available `Scores` (the "what"). +- [**Topologies Catalog**](./catalogs/topologies.md): A list of all available `Topologies` (the "where"). +- [**Capabilities Catalog**](./catalogs/capabilities.md): A list of all available `Capabilities` (the "how"). + +## 4. Developer Guides + +Ready to build your own components? These guides show you how. + +- [**Writing a Score**](./guides/writing-a-score.md): Learn how to create your own `Score` and `Interpret` logic to define a new desired state. +- [**Writing a Topology**](./guides/writing-a-topology.md): Learn how to model a new environment (like AWS, GCP, or custom hardware) as a `Topology`. +- [**Adding Capabilities**](./guides/adding-capabilities.md): See how to add a `Capability` to your custom `Topology`. diff --git a/docs/catalogs/README.md b/docs/catalogs/README.md new file mode 100644 index 0000000..d718b75 --- /dev/null +++ b/docs/catalogs/README.md @@ -0,0 +1,7 @@ +# Component Catalogs + +This section is the "dictionary" for Harmony. It lists all the reusable components available out-of-the-box. + +- [**Scores Catalog**](./scores.md): Discover all available `Scores` (the "what"). +- [**Topologies Catalog**](./topologies.md): A list of all available `Topologies` (the "where"). +- [**Capabilities Catalog**](./capabilities.md): A list of all available `Capabilities` (the "how"). diff --git a/docs/catalogs/capabilities.md b/docs/catalogs/capabilities.md new file mode 100644 index 0000000..32ec90f --- /dev/null +++ b/docs/catalogs/capabilities.md @@ -0,0 +1,40 @@ +# Capabilities Catalog + +A `Capability` is a specific feature or API that a `Topology` offers. `Interpret` logic uses these capabilities to execute a `Score`. + +This list is primarily for developers **writing new Topologies or Scores**. As a user, you just need to know that the `Topology` you pick (like `K8sAnywhereTopology`) provides the capabilities your `Scores` (like `ApplicationScore`) need. + + + +- [Capabilities Catalog](#capabilities-catalog) + - [Kubernetes & Application](#kubernetes-application) + - [Monitoring & Observability](#monitoring-observability) + - [Networking (Core Services)](#networking-core-services) + - [Networking (Hardware & Host)](#networking-hardware-host) + + + +## Kubernetes & Application + +- **K8sClient**: Provides an authenticated client to interact with a Kubernetes API (create/read/update/delete resources). +- **HelmCommand**: Provides the ability to execute Helm commands (install, upgrade, template). +- **TenantManager**: Provides methods for managing tenants in a multi-tenant cluster. +- **Ingress**: Provides an interface for managing ingress controllers and resources. + +## Monitoring & Observability + +- **Grafana**: Provides an API for configuring Grafana (datasources, dashboards). +- **Monitoring**: A general capability for configuring monitoring (e.g., creating Prometheus rules). + +## Networking (Core Services) + +- **DnsServer**: Provides an interface for creating and managing DNS records. +- **LoadBalancer**: Provides an interface for configuring a load balancer (e.g., OPNsense, MetalLB). +- **DhcpServer**: Provides an interface for managing DHCP leases and host bindings. +- **TftpServer**: Provides an interface for managing files on a TFTP server (e.g., iPXE boot files). + +## Networking (Hardware & Host) + +- **Router**: Provides an interface for configuring routing rules, typically on a firewall like OPNsense. +- **Switch**: Provides an interface for configuring a physical network switch (e.g., managing VLANs and port channels). +- **NetworkManager**: Provides an interface for configuring host-level networking (e.g., creating bonds and bridges on a node). diff --git a/docs/catalogs/scores.md b/docs/catalogs/scores.md new file mode 100644 index 0000000..ffda941 --- /dev/null +++ b/docs/catalogs/scores.md @@ -0,0 +1,102 @@ +# Scores Catalog + +A `Score` is a declarative description of a desired state. Find the Score you need and add it to your `harmony!` block's `scores` array. + + + +- [Scores Catalog](#scores-catalog) + - [Application Deployment](#application-deployment) + - [OKD / Kubernetes Cluster Setup](#okd-kubernetes-cluster-setup) + - [Cluster Services & Management](#cluster-services-management) + - [Monitoring & Alerting](#monitoring-alerting) + - [Infrastructure & Networking (Bare Metal)](#infrastructure-networking-bare-metal) + - [Infrastructure & Networking (Cluster)](#infrastructure-networking-cluster) + - [Tenant Management](#tenant-management) + - [Utility](#utility) + + + +## Application Deployment + +Scores for deploying and managing end-user applications. + +- **ApplicationScore**: The primary score for deploying a web application. Describes the application, its framework, and the features it requires (e.g., monitoring, CI/CD). +- **HelmChartScore**: Deploys a generic Helm chart to a Kubernetes cluster. +- **ArgoHelmScore**: Deploys an application using an ArgoCD Helm chart. +- **LAMPScore**: A specialized score for deploying a classic LAMP (Linux, Apache, MySQL, PHP) stack. + +## OKD / Kubernetes Cluster Setup + +This collection of Scores is used to provision an entire OKD cluster from bare metal. They are typically used in order. + +- **OKDSetup01InventoryScore**: Discovers and catalogs the physical hardware. +- **OKDSetup02BootstrapScore**: Configures the bootstrap node, renders iPXE files, and kicks off the SCOS installation. +- **OKDSetup03ControlPlaneScore**: Renders iPXE configurations for the control plane nodes. +- **OKDSetupPersistNetworkBondScore**: Configures network bonds on the nodes and port channels on the switches. +- **OKDSetup04WorkersScore**: Renders iPXE configurations for the worker nodes. +- **OKDSetup06InstallationReportScore**: Runs post-installation checks and generates a report. +- **OKDUpgradeScore**: Manages the upgrade process for an existing OKD cluster. + +## Cluster Services & Management + +Scores for installing and managing services _inside_ a Kubernetes cluster. + +- **K3DInstallationScore**: Installs and configes a local K3D (k3s-in-docker) cluster. Used by `K8sAnywhereTopology`. +- **CertManagerHelmScore**: Deploys the `cert-manager` Helm chart. +- **ClusterIssuerScore**: Configures a `ClusterIssuer` for `cert-manager`, (e.g., for Let's Encrypt). +- **K8sNamespaceScore**: Ensures a Kubernetes namespace exists. +- **K8sDeploymentScore**: Deploys a generic `Deployment` resource to Kubernetes. +- **K8sIngressScore**: Configures an `Ingress` resource for a service. + +## Monitoring & Alerting + +Scores for configuring observability, dashboards, and alerts. + +- **ApplicationMonitoringScore**: A generic score to set up monitoring for an application. +- **ApplicationRHOBMonitoringScore**: A specialized score for setting up monitoring via the Red Hat Observability stack. +- **HelmPrometheusAlertingScore**: Configures Prometheus alerts via a Helm chart. +- **K8sPrometheusCRDAlertingScore**: Configures Prometheus alerts using the `PrometheusRule` CRD. +- **PrometheusAlertScore**: A generic score for creating a Prometheus alert. +- **RHOBAlertingScore**: Configures alerts specifically for the Red Hat Observability stack. +- **NtfyScore**: Configures alerts to be sent to a `ntfy.sh` server. + +## Infrastructure & Networking (Bare Metal) + +Low-level scores for managing physical hardware and network services. + +- **DhcpScore**: Configures a DHCP server. +- **OKDDhcpScore**: A specialized DHCP configuration for the OKD bootstrap process. +- **OKDBootstrapDhcpScore**: Configures DHCP specifically for the bootstrap node. +- **DhcpHostBindingScore**: Creates a specific MAC-to-IP binding in the DHCP server. +- **DnsScore**: Configures a DNS server. +- **OKDDnsScore**: A specialized DNS configuration for the OKD cluster (e.g., `api.*`, `*.apps.*`). +- **StaticFilesHttpScore**: Serves a directory of static files (e.g., a documentation site) over HTTP. +- **TftpScore**: Configures a TFTP server, typically for serving iPXE boot files. +- **IPxeMacBootFileScore**: Assigns a specific iPXE boot file to a MAC address in the TFTP server. +- **OKDIpxeScore**: A specialized score for generating the iPXE boot scripts for OKD. +- **OPNsenseShellCommandScore**: Executes a shell command on an OPNsense firewall. + +## Infrastructure & Networking (Cluster) + +Network services that run inside the cluster or as part of the topology. + +- **LoadBalancerScore**: Configures a general-purpose load balancer. +- **OKDLoadBalancerScore**: Configures the high-availability load balancers for the OKD API and ingress. +- **OKDBootstrapLoadBalancerScore**: Configures the load balancer specifically for the bootstrap-time API endpoint. +- **K8sIngressScore**: Configures an Ingress controller or resource. +- [HighAvailabilityHostNetworkScore](../../harmony/src/modules/okd/host_network.rs): Configures network bonds on a host and the corresponding port-channels on the switch stack for high-availability. + +## Tenant Management + +Scores for managing multi-tenancy within a cluster. + +- **TenantScore**: Creates a new tenant (e.g., a namespace, quotas, network policies). +- **TenantCredentialScore**: Generates and provisions credentials for a new tenant. + +## Utility + +Helper scores for discovery and inspection. + +- **LaunchDiscoverInventoryAgentScore**: Launches the agent responsible for the `OKDSetup01InventoryScore`. +- **DiscoverHostForRoleScore**: A utility score to find a host matching a specific role in the inventory. +- **InspectInventoryScore**: Dumps the discovered inventory for inspection. diff --git a/docs/catalogs/topologies.md b/docs/catalogs/topologies.md new file mode 100644 index 0000000..e8489ac --- /dev/null +++ b/docs/catalogs/topologies.md @@ -0,0 +1,59 @@ +# Topologies Catalog + +A `Topology` is the logical representation of your infrastructure and its `Capabilities`. You select a `Topology` in your Harmony project to define _where_ your `Scores` will be applied. + + + +- [Topologies Catalog](#topologies-catalog) + - [HAClusterTopology](#haclustertopology) + - [K8sAnywhereTopology](#k8sanywheretopology) + + + +### HAClusterTopology + +- **`HAClusterTopology::autoload()`** + +This `Topology` represents a high-availability, bare-metal cluster. It is designed for production-grade deployments like OKD. + +It models an environment consisting of: + +- At least 3 cluster nodes (for control plane/workers) +- 2 redundant firewalls (e.g., OPNsense) +- 2 redundant network switches + +**Provided Capabilities:** +This topology provides a rich set of capabilities required for bare-metal provisioning and cluster management, including: + +- `K8sClient` (once the cluster is bootstrapped) +- `DnsServer` +- `LoadBalancer` +- `DhcpServer` +- `TftpServer` +- `Router` (via the firewalls) +- `Switch` +- `NetworkManager` (for host-level network config) + +--- + +### K8sAnywhereTopology + +- **`K8sAnywhereTopology::from_env()`** + +This `Topology` is designed for development and application deployment. It provides a simple, abstract way to deploy to _any_ Kubernetes cluster. + +**How it works:** + +1. By default (`from_env()` with no env vars), it automatically provisions a **local K3D (k3s-in-docker) cluster** on your machine. This is perfect for local development and testing. +2. If you provide a `KUBECONFIG` environment variable, it will instead connect to that **existing Kubernetes cluster** (e.g., your staging or production OKD cluster). + +This allows you to use the _exact same code_ to deploy your application locally as you do to deploy it to production. + +**Provided Capabilities:** + +- `K8sClient` +- `HelmCommand` +- `TenantManager` +- `Ingress` +- `Monitoring` +- ...and more. diff --git a/docs/concepts.md b/docs/concepts.md new file mode 100644 index 0000000..afb2c95 --- /dev/null +++ b/docs/concepts.md @@ -0,0 +1,40 @@ +# Core Concepts + +Harmony's design is based on a few key concepts. Understanding them is the key to unlocking the framework's power. + +### 1. Score + +- **What it is:** A **Score** is a declarative description of a desired state. It's a "resource" that defines _what_ you want to achieve, not _how_ to do it. +- **Example:** `ApplicationScore` declares "I want this web application to be running and monitored." + +### 2. Topology + +- **What it is:** A **Topology** is the logical representation of your infrastructure and its abilities. It's the "where" your Scores will be applied. +- **Key Job:** A Topology's most important job is to expose which `Capabilities` it supports. +- **Example:** `HAClusterTopology` represents a bare-metal cluster and exposes `Capabilities` like `NetworkManager` and `Switch`. `K8sAnywhereTopology` represents a Kubernetes cluster and exposes the `K8sClient` `Capability`. + +### 3. Capability + +- **What it is:** A **Capability** is a specific feature or API that a `Topology` offers. It's the "how" a `Topology` can fulfill a `Score`'s request. +- **Example:** The `K8sClient` capability offers a way to interact with a Kubernetes API. The `Switch` capability offers a way to configure a physical network switch. + +### 4. Interpret + +- **What it is:** An **Interpret** is the execution logic that makes a `Score` a reality. It's the "glue" that connects the _desired state_ (`Score`) to the _environment's abilities_ (`Topology`'s `Capabilities`). +- **How it works:** When you apply a `Score`, Harmony finds the matching `Interpret` for your `Topology`. This `Interpret` then uses the `Capabilities` provided by the `Topology` to execute the necessary steps. + +### 5. Inventory + +- **What it is:** An **Inventory** is the physical material (the "what") used in a cluster. This is most relevant for bare-metal or on-premise topologies. +- **Example:** A list of nodes with their roles (control plane, worker), CPU, RAM, and network interfaces. For the `K8sAnywhereTopology`, the inventory might be empty or autoloaded, as the infrastructure is more abstract. + +--- + +### How They Work Together (The Compile-Time Check) + +1. You **write a `Score`** (e.g., `ApplicationScore`). +2. Your `Score`'s `Interpret` logic requires certain **`Capabilities`** (e.g., `K8sClient` and `Ingress`). +3. You choose a **`Topology`** to run it on (e.g., `HAClusterTopology`). +4. **At compile-time**, Harmony checks: "Does `HAClusterTopology` provide the `K8sClient` and `Ingress` capabilities that `ApplicationScore` needs?" + - **If Yes:** Your code compiles. You can be confident it will run. + - **If No:** The compiler gives you an error. You've just prevented a "config-is-valid-but-platform-is-wrong" runtime error before you even deployed. diff --git a/docs/guides/getting-started.md b/docs/guides/getting-started.md new file mode 100644 index 0000000..80b1080 --- /dev/null +++ b/docs/guides/getting-started.md @@ -0,0 +1,42 @@ +# Getting Started Guide + +Welcome to Harmony! This guide will walk you through installing the Harmony framework, setting up a new project, and deploying your first application. + +We will build and deploy the "Rust Web App" example, which automatically: + +1. Provisions a local K3D (Kubernetes in Docker) cluster. +2. Deploys a sample Rust web application. +3. Sets up monitoring for the application. + +## Prerequisites + +Before you begin, you'll need a few tools installed on your system: + +- **Rust & Cargo:** [Install Rust](https://www.rust-lang.org/tools/install) +- **Docker:** [Install Docker](https://docs.docker.com/get-docker/) (Required for the K3D local cluster) +- **kubectl:** [Install kubectl](https://kubernetes.io/docs/tasks/tools/install-kubectl/) (For inspecting the cluster) + +## 1. Install Harmony + +First, clone the Harmony repository and build the project. This gives you the `harmony` CLI and all the core libraries. + +```bash +# Clone the main repository +git clone https://git.nationtech.io/nationtech/harmony +cd harmony + +# Build the project (this may take a few minutes) +cargo build --release +``` + +... + +## Next Steps + +Congratulations, you've just deployed an application using true infrastructure-as-code! + +From here, you can: + +- [Explore the Catalogs](../catalogs/README.md): See what other [Scores](../catalogs/scores.md) and [Topologies](../catalogs/topologies.md) are available. +- [Read the Use Cases](../use-cases/README.md): Check out the [OKD on Bare Metal](./use-cases/okd-on-bare-metal.md) guide for a more advanced scenario. +- [Write your own Score](../guides/writing-a-score.md): Dive into the [Developer Guide](./guides/developer-guide.md) to start building your own components. diff --git a/examples/try_rust_webapp/Cargo.toml b/examples/try_rust_webapp/Cargo.toml index fc4f8a1..c4abedc 100644 --- a/examples/try_rust_webapp/Cargo.toml +++ b/examples/try_rust_webapp/Cargo.toml @@ -5,6 +5,10 @@ version.workspace = true readme.workspace = true license.workspace = true +[[example]] +name = "try_rust_webapp" +path = "src/main.rs" + [dependencies] harmony = { path = "../../harmony" } harmony_cli = { path = "../../harmony_cli" } diff --git a/harmony/src/modules/okd/host_network.rs b/harmony/src/modules/okd/host_network.rs index ee68942..4f11bb9 100644 --- a/harmony/src/modules/okd/host_network.rs +++ b/harmony/src/modules/okd/host_network.rs @@ -12,6 +12,74 @@ use crate::{ topology::{HostNetworkConfig, NetworkInterface, NetworkManager, Switch, SwitchPort, Topology}, }; +/// Configures high-availability networking for a set of physical hosts. +/// +/// This is an opinionated Score that creates a resilient network configuration. +/// It assumes hosts have at least two network interfaces connected +/// to redundant switches for high availability. +/// +/// The Score's `Interpret` logic will: +/// 1. Setup the switch with sane defaults (e.g. mark interfaces as switchports for discoverability). +/// 2. Discover which switch ports each host's interfaces are connected to (via MAC address). +/// 3. Create a network bond (e.g. LACP) on the host itself using these interfaces. +/// 4. Configure a corresponding port-channel on the switch(es) for those ports. +/// +/// This ensures that both the host and the switch are configured to treat the +/// multiple links as a single, aggregated, and redundant connection. +/// +/// Hosts with 0 or 1 detected interfaces will be skipped, as bonding is not +/// applicable. +/// +///
+/// The implementation is currently _not_ idempotent, even though it should be. +/// Running it more than once on the same host might result in duplicated bond configurations. +///
+/// +///
+/// This Score is not named well. A better name would be +/// `HighAvailabilityHostNetworkScore`, or something similar to better express the intent. +///
+/// +/// # Requirements +/// +/// This Score can only be applied to a [Topology] that implements both the +/// [NetworkManager] (to configure the host-side bond) and [Switch] +/// (to configure the switch-side port-channel) capabilities. +/// +/// # Current limitations +/// +/// ## 1. No rollback logic & limited idempotency +/// +/// If any of the steps described above fails, the Score will not attempt to revert any changes +/// already applied. Which could render the host or switch in an inconsistent state. +/// +/// ## 2. Propagation delays on the switch +/// +/// It might take some time for the sane defaults in step 1) to be applied. In some cases, +/// it was observed that the switch takes up to 5min to actually apply the config. +/// +/// But this Score's Interpret doesn't wait and directly proceeds to step 2) to discover +/// the MAC addresses. Which could result interfaces being skipped because their corresponding port +/// on the switch couldn't be found. +/// +/// TODO: Validate that the switch is in the expected state before continuing. +/// +/// ## 3. Bond configuration +/// +/// To find the next available bond id, the current +/// [NetworkManager](crate::infra::network_manager::OpenShiftNmStateNetworkManager) implementation +/// simply checks for existing bonds named `bond[n]` and take the next available `n` number. +/// +/// It doesn't check that there are already a bond for the interfaces that should be bonded. Which +/// might result in a duplicate bond being created. +/// +/// TODO: Make sure the interfaces to aggregate are not already bonded. +/// +/// # Future improvements +/// +/// Along with the `TODO` items above, splitting this Score into multiple smaller ones would be +/// beneficial. It has a lot of moving parts and some of them could be used on their own to make +/// operations on a cluster easier. #[derive(Debug, Clone, Serialize)] pub struct HostNetworkConfigurationScore { pub hosts: Vec, -- 2.39.5