Install or Upgrade Digital.ai Release on an Air-gapped Environment
You can install Release in an air-gapped environment disconnected from the public internet. This topic provides information about installing and upgrading Release in such environments using a Minikube cluster and a custom image registry. For other Kubernetes platforms, steps are similar to the ones listed here for Minikube as long as the custom image registry contains all the required images.
Note: The Amazon Elastic Container Registry (ECR) does not support having all necessary images in a single repository and hence, cannot be used as a custom image registry.
Prerequisites
- Read and understand the Plan Your Installation or Upgrade
- Read and understand the XL CLI's xl kube command
- A computer that runs Windows, macOS, or Linux to install and run the kubectl and other CLIs
- XL CLI 24.3.0 or later
- kubectl
- Docker
Installing Deploy in an Air-gapped Cluster Environment
Here's a detailed step-by-step.
Step 1: Download the appropriate blueprint version
- Run the following command:
xl kube help
This command returns the following message:
Install, upgrade or clean Digital.ai Deploy or Digital.ai Release on a Kubernetes cluster using operator technology.
Installation blueprint files are used from https://dist.xebialabs.com/public/xl-op-blueprints/24.3.x/.
You need to have kubectl installed and configured for the target Kubernetes cluster.
The xl kube command will search for blueprints from this location.
Note: The 24.3.x in the URL refers to the appropriate version of xl-op-blueprints. Use the specific version required for your installation.
- Download all the files from that location and place them in the server directory where you will execute the
xl kubecommand.
Tip: Download the zipped version of the xl-op-blueprints from this location
- Unzip it to the server where you will execute the
xl kubecommand.
Step 2: Add the necessary operator-related images to your image registry
When you run a Kubernetes cluster in an air-gapped environment, it's impossible to download images from public registries such as docker.io, gcr.io, or quay.io. Therefore, you need to set up an image registry also called as custom image registry. This should be either public (not password protected) or private (password protected), that is accessible to the Kubernetes cluster. This can be done by creating a private image repository on your cloud provider or a local image registry.
- Get Prerequisite Images
Based on your installation plan, push the images to your image repository.
For the list of prerequisite images check Setup Custom Image Registry
- Push the images to an internally accessible Docker registry.
To ensure that the required images are available in an air-gapped Kubernetes cluster, you must pull them first on a Bastion instance with public internet connectivity, tag them, and push them to the previously created Docker image registry that's internally accessible. Once this is done, your Kubernetes cluster can pull the required images from the Docker registry.
For example:
In the Docker registry (myrepo_host), run the following command to push the Docker image (xl-release) to the repository (myrepo):
Note: Replace <version> with the version of Release you are trying to install.
docker pull docker.io/xebialabs/xl-release:<version>
docker tag docker.io/xebialabs/xl-release:<version> myrepo_host/myrepo/xl-release:<version>
docker push myrepo_host/myrepo/xl-release:<version>
Note: Ensure that you are logged in to the Docker registry before pushing the images.
- Create a secret for private image registry with password protection.
Note: It's required only when you use a private image registry.
Run the following command:
kubectl create secret docker-registry regcred \
--docker-server=myrepo_host \
--docker-username=<reg-user> \
--docker-password=<reg-password> \
-n digitalai
This example creates a secret called regcred which can be used as pull secrets required for pulling images from a private image registry.
Step 3: Use xl kube install to install using custom Docker image registry
Note: For instructions on installing Release using the default image registry, see Install—Release—On-premise Kubernetes.
When using custom Docker registry, the operator image will be in this format: myrepo_host/myrepo/release-operator:image_tag
The following is an example of the installation on Minikube with a local Docker registry running at localhost:5000.
- ? Enter the custom docker image registry name:
localhost:5000 - ? Enter the repository name (eg:
<repositoryName>from<repositoryName>/<imageName>:<tagName>):myrepo - ? Enter the Release image name (eg:
<imageName>from<repositoryName>/<imageName>:<tagName>):xl-release - ? Enter the operator image to use (eg:
<imageName>from<repositoryName>/<imageName>:<tagName>):release-operator
Note: For the above mentioned prompts, override the default answers and specify answers in this format.
For more information about these prompts, see Installation Options Reference for Digital.ai Release.
❯ xl kube install -l ./xl-op-blueprints
? Following kubectl context will be used during execution: `minikube`? Yes
? Select the Kubernetes setup where the Digital.ai Devops Platform will be installed, updated or cleaned: PlainK8s [Plain multi-node K8s cluster]
? Do you want to use an custom Kubernetes namespace (current default is 'digitalai'): No
? Do you want to create custom Kubernetes namespace digitalai, it does not exist: Yes
? Product server you want to perform install for: dai-release [Digital.ai Release]
? Select type of image registry: public [Custom Public Registry (Uses a specific custom registry)]
? Enter the custom docker image registry name: localhost:5000
? Enter the repository name for the application and operator images (eg: <repositoryName> from <repositoryName>/<imageName>:<tagName>): myrepo
? Enter the Release image name (eg: <imageName> from <repositoryName>/<imageName>:<tagName>): xl-release
? Enter the image tag (eg: <tagName> from <repositoryName>/<imageName>:<tagName>): 24.3.x
? Enter PVC size for Release (Gi): 1
? Select between supported Access Modes for the Release pods (use ReadWriteMany if you plan to use multiple pods): ReadWriteMany [ReadWriteMany]
? Do you want to enable http2 for release: No
? Select between supported ingress types: nginx [NGINX]
? Do you want to enable an TLS/SSL configuration (if yes, requires existing TLS secret in the namespace): No
? Provide DNS name for accessing UI of the server: test.com
? Provide administrator password: OJnEi1BMBRuDm3ny
? Type of the OIDC configuration: no-oidc [No OIDC Configuration]
? Enter the operator image to use (eg: <imageName> from <repositoryName>/<imageName>:<tagName>): release-operator
? Select source of the license: file [Path to the license file (the file can be in clean text or base64 encoded)]
? Provide license file for the server: ./xl-release-license.lic
? Select source of the repository keystore: generate [Generate the repository keystore during installation (you need to have keytool utility installed in your path)]
? Provide keystore passphrase: ANk9nAJnmQjLmFPy
? Provide storage class for the server: standard
? Do you want to install a new PostgreSQL on the cluster: Yes
? Provide Storage Class to be defined for PostgreSQL: standard
? Provide PVC size for PostgreSQL (Gi): 1
? Do you want to install a new RabbitMQ on the cluster: Yes
? Replica count to be defined for RabbitMQ: 1
? Storage Class to be defined for RabbitMQ: standard
? Provide PVC size for RabbitMQ (Gi): 1
...
? Do you want to proceed to the deployment with these values? Yes
For current process files will be generated in the: digitalai/dai-release/digitalai/20231023-234412/kubernetes
Generated answers file successfully: digitalai/generated_answers_dai-release_digitalai_install-20231023-234412.yaml
Starting install processing.
...
Once the installation is completed successfully, you will see the operator and other resources pods up and running.
Use xl kube upgrade to Upgrade Release Using a Custom Docker Image Registry
The upgrade process for a custom Docker image registry is similar to the installation process except using xl kube upgrade instead of xl kube install.
Following is an example of running upgrade using the custom docker image registry option:
❯ xl kube upgrade -l ./xl-op-blueprints
...
? Select type of image registry: public [Custom Public Registry (Uses a specific custom registry)]
? Enter the custom docker image registry name: localhost:5000
? Enter the repository name (eg: <repositoryName> from <repositoryName>/<imageName>:<tagName>): myrepo
...
? Enter the operator image to use (eg: <imageName> from <repositoryName>/<imageName>:<tagName>): release-operator
...
? Edit list of custom resource keys that will migrate to the new Release CR:
...
? Do you want to proceed to the deployment with these values? Yes
For current process files will be generated in the: digitalai/dai-release/digitalai/20231023-004412/kubernetes
Generated answers file successfully: digitalai/generated_answers_dai-release_digitalai_upgrade-20231023-004412.yaml
Starting upgrade processing.
...