Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

docs: add container deployment options #33

Merged
merged 8 commits into from
Oct 8, 2024
Merged

docs: add container deployment options #33

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
179d938
docs: add container deployment options
reubenmiller Oct 6, 2024
3902f7b
fixup! docs: add container deployment options
reubenmiller Oct 6, 2024
8750108
fixup! fixup! docs: add container deployment options
reubenmiller Oct 6, 2024
a4e20bc
add step to pull in the latest image
reubenmiller Oct 8, 2024
e4266ac
remove option 3
reubenmiller Oct 8, 2024
0b22b09
add note about webssh and using ip addresses
reubenmiller Oct 8, 2024
2d9e121
remove docker compose pre-requisite
reubenmiller Oct 8, 2024
acbc4be
add draft diagram
reubenmiller Oct 8, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
101 changes: 5 additions & 96 deletions README.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -24,111 +24,20 @@ The **tedge-container-bundle** provides the following features:
The following are required in order to deploy the container

* docker
* docker compose

### Step 1: Create a device certificate inside a named volume

Before you can start the containers, you need to create a device certificate inside a named volume, and also to persist the tedge and mosquitto data

1. Create a docker network and volumes which will be used to store the device certificate and the tedge data

```sh
docker network create tedge
docker volume create device-certs
docker volume create tedge
```

2. Set the Cumulocity IoT variable (to make it easier to copy/paste the remaining instructions)

```sh
TEDGE_C8Y_URL="$C8Y_DOMAIN"

# Example
TEDGE_C8Y_URL=my.cumulocity.com
```

3. Create a new device certificate

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest tedge cert create --device-id "<mydeviceid>"
```

Where you should replace the `<mydeviceid>` with the device's identity.
### Choose a setup

4. Upload the device certificate to Cumulocity IoT
[Option 1: On Host Network](./docs/CONTAINER_OPTION1.md)

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest tedge cert upload c8y
```

If you are having problems with the docker network, you can try to use the host network and explicitly set a DNS address:

```sh
docker run --rm -it --dns 8.8.8.8 --network host \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest tedge cert upload c8y
```

**Tip**

If you don't want to be prompted for the Cumulocity IoT Username and Password (required to upload the certificate), then you can provide them via the following environment variables:

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
-e "C8Y_USER=$C8Y_USER" \
-e "C8Y_PASSWORD=$C8Y_PASSWORD" \
ghcr.io/thin-edge/tedge-container-bundle:latest tedge cert upload c8y
```

### Step 2: Start thin-edge.io

Once the device certificate has been created inside the named volume, the same volume can be used when starting the container.

```sh
docker run -d \
--name tedge \
--restart always \
--network tedge \
-p "127.0.0.1:1884:1883" \
-p "127.0.0.1:9000:8000" \
-p "127.0.0.1:9001:8001" \
--add-host host.docker.internal:host-gateway \
-v "device-certs:/etc/tedge/device-certs" \
-v "tedge:/data/tedge" \
-v /var/run/docker.sock:/var/run/docker.sock:rw \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest
```
[Option 2: Container network (Recommended)](./docs/CONTAINER_OPTION2.md)

The `TEDGE_C8Y_URL` env variable is used to set the target Cumulocity IoT so that thin-edge.io knows where to connect to.

### Settings

All of the thin-edge.io settings can be customized via environment variables, which can be useful if you want to change the port numbers like in the following example:
All of the thin-edge.io settings can be customized via environment variables which can be added via the `-e KEY=VALUE` to the `docker run` command:

```sh
docker run -d \
--name tedge \
--restart always \
--add-host host.docker.internal:host-gateway \
-p "127.0.0.1:1884:1883" \
-p "127.0.0.1:9000:8000" \
-p "127.0.0.1:9001:8001" \
-v "device-certs:/etc/tedge/device-certs" \
-v "tedge:/data/tedge" \
-v /var/run/docker.sock:/var/run/docker.sock:rw \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
-e TEDGE_C8Y_OPERATIONS_AUTO_LOG_UPLOAD=always \
ghcr.io/thin-edge/tedge-container-bundle:latest
TEDGE_C8Y_OPERATIONS_AUTO_LOG_UPLOAD=always
```

### Development
Expand Down
67 changes: 67 additions & 0 deletions docs/CONTAINER_OPTION1.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,67 @@
## Option 1: Running thin-edge.io to the the host network

**When to use it?**

* Unfamiliar with container environments
* Running on a device where docker isn't configured properly and the networking is broken
* Just want something working quickly to try things out (and just run it like a normal applications)


### Initial setup

1. Pull the latest image

```sh
docker pull ghcr.io/thin-edge/tedge-container-bundle
```

2. Create a docker volume which will be used to store the device certificate, and a volume for the tedge and mosquitto data

```sh
export TEDGE_C8Y_URL=example.c8y.cumulocity.com

docker volume create device-certs
docker volume create tedge
```

3. Create a new device certificate

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle \
tedge cert create --device-id "<mydeviceid>"
```

4. Upload the device certificate to Cumulocity IoT

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle \
tedge cert upload c8y
```

### Start the container

```sh
docker run -d \
--name tedge \
--restart always \
--network host \
-v "device-certs:/etc/tedge/device-certs" \
-v "tedge:/data/tedge" \
-v /var/run/docker.sock:/var/run/docker.sock:rw \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle
```

### Subscribing to the MQTT broker

```sh
docker run --rm -it --network host \
ghcr.io/thin-edge/tedge-container-bundle \
tedge mqtt sub '#'
```
104 changes: 104 additions & 0 deletions docs/CONTAINER_OPTION2.md
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,104 @@
## Option 2: Container network

**When to use it?**

* Familiar with containers
* Basic understanding of container networking


### Initial setup

1. Pull the latest image

```sh
docker pull ghcr.io/thin-edge/tedge-container-bundle
```

2. Create a docker volume which will be used to store the device certificate, and a volume for the tedge and mosquitto data

```sh
export TEDGE_C8Y_URL=example.c8y.cumulocity.com

docker network create tedge
docker volume create device-certs
docker volume create tedge
```

3. Create a new device certificate

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest \
tedge cert create --device-id "<mydeviceid>"
```

4. Upload the device certificate to Cumulocity IoT

```sh
docker run --rm -it \
-v "device-certs:/etc/tedge/device-certs" \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest \
tedge cert upload c8y
```

### Start the container

```sh
docker run -d \
--name tedge \
--restart always \
--add-host host.docker.internal:host-gateway \
--network tedge \
-p "127.0.0.1:1883:1883" \
-p "127.0.0.1:8000:8000" \
-p "127.0.0.1:8001:8001" \
-v "device-certs:/etc/tedge/device-certs" \
-v "tedge:/data/tedge" \
-v /var/run/docker.sock:/var/run/docker.sock:rw \
-e TEDGE_C8Y_OPERATIONS_AUTO_LOG_UPLOAD=always \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest
```

With this option, you can change the host port mapping in case it conflicts with any other services running on the host, e.g. other services which are already using the ports that thin-edge.io wants to use.

```sh
docker run -d \
--name tedge \
--restart always \
--add-host host.docker.internal:host-gateway \
--network tedge \
-p "127.0.0.1:1884:1883" \
-p "127.0.0.1:9000:8000" \
-p "127.0.0.1:9001:8001" \
-v "device-certs:/etc/tedge/device-certs" \
-v "tedge:/data/tedge" \
-v /var/run/docker.sock:/var/run/docker.sock:rw \
-e TEDGE_C8Y_OPERATIONS_AUTO_LOG_UPLOAD=always \
-e "TEDGE_C8Y_URL=$TEDGE_C8Y_URL" \
ghcr.io/thin-edge/tedge-container-bundle:latest
```

### Subscribing to the MQTT broker

Assuming the container network is called `tedge`, then you can subscribe to the MQTT broker using the following command:

```sh
docker run --rm -it \
--network tedge \
-e TEDGE_MQTT_CLIENT_HOST=tedge \
ghcr.io/thin-edge/tedge-container-bundle \
tedge mqtt sub '#'
```

Or you can access the MQTT broker directly from the host using the port mappings:

```sh
mosquitto_sub -h 127.0.0.1 -p 1883 -t '#'

# or if you used another port
mosquitto_sub -h 127.0.0.1 -p 1884 -t '#'
```
Loading