Frequently Asked Questions#
Why have ioc-XXX repositories?#
Why not put the Dockerfile and image generating in the support module itself instead of creating a separate Generic IOC module for each image we generate?
Answers:
There is not always a 1-1 relationship between support modules and Generic IOCs. A Generic IOC image is free to add any number of support modules it requires.
The lifecycle of a support module will often differ from a Generic IOC. The version number of the image is tied to the ioc-XXX source repo that it generates, so we can have separate versions for support and IOC.
Not all users of a support module will need images generated and it may be counter productive for them to be required to update the Dockerfile when they are working on changes to a support module.
How can I do IOC rollback if the internet is down?#
The examples all use cloud registries for storing the Generic IOC images and IOC instances. However it is still possible to roll back an IOC version when the internet is not available.
That is because Helm keeps track of several versions of each chart it deploys, they are stored in the cluster itself (as ReplicaSets). By default the last 10 are saved.
It is also necessary for Kubernetes to be able to pull the Generic IOC image. If the beamline has only one Kubernetes worker node then the previous image will be in the node’s local cache. If you have more than one then you will need a global image cache which is useful anyway for reducing traffic to the registries. At DLS we have a global cache for all container registry interactions, it uses Harbour. See https://goharbor.io/ for more details.
Note that making changes to an IOC and spinning them up would not be possible if all registries were in the cloud and the internet connection had failed. However it is recommended that the ‘work’ registries are on premises.