Skip to content

VSHN Conference Booth Blinkenlights Stuff

License

Notifications You must be signed in to change notification settings

vshn/conferenceli

Repository files navigation

VSHN Conferenceli

When attending conferences or Meetups, we bring some fancy hardware to attract people to our booth:

  • Big red chaos-button which randomly deletes Pods on a Kubernetes instance
  • 3D printed shipping containers with LEDs which represent the state of the running Pods
  • A Raspberry Pi which runs everything locally with K3s
  • A label printer which prints a booth raffle ticket

Booth Setup

appuioli-on-scnd.mp4

Hardware Setup

                                      Shipping Containers                      
                                                                               
                 USB  ┌───────┐  ┌───────┐  ┌───────┐  ┌───────┐  ┌───────┐    
               ┌──────┤       ├──┤       ├──┤       ├──┤       ├──┤       │    
               │      └───────┘  └───────┘  └───────┘  └───────┘  └───────┘    
               │                                                                                                                         
               │   ┌──────────────────┐                 ┌─────────────────────┐
               │   │                  ├ ─ ─ ─ ─ ─ ─ ─ ─ ┤                     │
               └───┤ Raspberry Pi 5   │                 │ Brother QL-820NWBc  │
                   │                  ├──────────────┐  │                     │
               **  └────────┬─────────┘    Network   │  └─────────────┬───────┘
           *****            │                        │                │        
Bluetooth  *                │ HDMI                   │                │        
           *                │                     ┌──┴────────────────┴─────┐  
  ┌─────────┐         ┌─────┴──────┐            ┌─│ Integrated Switch       │─┐
  │         │         │            │            │ └─────────────────────────┘ │
  │ Red     │         │  HDMI      │            │                             │
  │ Button  │         │  Display   │            │    PicoCluster 3T           │
  │         │         │            │            │                             │
  └─────────┘         └────────────┘            └─────────────────────────────┘                             

Hardware list:

Raspberry Pi setup

The main Raspberry Pi runs standard latest Raspberry Pi OS and boots directly from the NVME SSD, no SD card is inserted.

K3s installation and bootstrapping

It is installed using the upstream installer:

curl -sfL https://get.k3s.io | INSTALL_K3S_CHANNEL=latest sh -s - \
  --tls-san '192.168.173.10' \
  --tls-san 'conferenceli' \
  --embedded-registry \
  --disable-cloud-controller

To add additional nodes to the cluster, use:

curl -sfL https://get.k3s.io | INSTALL_K3S_CHANNEL=latest K3S_URL=https://192.168.173.10:6443 K3S_TOKEN=mynodetoken sh -

The token can be found at /var/lib/rancher/k3s/server/node-token.

All deployments are done via Argo CD from the deployment/ folder:

kubectl create ns argocd
kubectl -n argocd apply -f deployment/apps/argocd/install.yaml
kubectl -n argocd apply -f deployment/argoapps

Some apps need secrets, they aren't managed by GitOps, but are manually applied:

kubectl -n $app apply -f deployment/apps/$myapp/secret.yaml

Networking

The Raspberry Pi needs to be connected to a wireless network with Internet connectivity. This is needed to expose the applications on it to the Internet and to pull container images running on the K3s instance.

Furthermore, it runs a Dnsmasq DHCP server to assign a static IP to the label printer, which is directly connected to the Raspberry Pi.

Configuration of /etc/dnsmasq.d/landhcp:

interface=eth0
port=53
bind-dynamic
domain-needed
bogus-priv
server=9.9.9.9

## DHCP
dhcp-range=192.168.173.100,192.168.173.200,255.255.255.0,12h
dhcp-host=94:dd:f8:a4:a5:53,label-printer,192.168.173.100,infinite
dhcp-authoritative

It also happens to be configured as NAT router:

# /etc/sysctl.conf
net.ipv4.ip_forward=1

# apt install iptables-persistent
iptables -t nat -A POSTROUTING -o wlan0 -j MASQUERADE

Desktop configuration

The latest Raspberry Pi OS runs with Wayland with Wayfire, its configuration is at .config/wayfire.ini.

The most important parts of the Wayfire configuration:

[autostart]
podstatus = bash -c "until curl --output /dev/null --silent --head --fail http://localhost:32231; do printf '.'; sleep 5; done; chromium-browser "http://localhost:32231" --kiosk --noerrdialogs --disable-infobars --no-first-run --ozone-platform=wayland --enable-features=OverlayScrollbar --start-maximized"

[core]
plugins=alpha animate autostart autostart-static command cube pixdecor expo fast-switcher fisheye grid idle invert move oswitch place resize switcher vswitch window-rules wm-actions wrot zoom winshadows hide-cursor

To hide the mouse cursor, a plugin is used. See this StackExchange article for more information.

PicoCluster

In addition to the main Raspberry Pi, there is an optional PicoCluster running. The boards of the PicoCluster are installed as K3s nodes, so that we have more computing power. And because we want blinken lights, each of the boards have a Pimoroni Blinkt! attached.

To properly shut down the cluster, execute the script stopPicoCluster.sh in the home directory.

Blinkt!

To get the Blinkt! up and running on a Raspberry Pi 5, the following manual steps are followed on each PicoCluster node:

mkdir -p src
cd src
git clone https://github.com/pimoroni/blinkt -b repackage
cd blinkt
./install.sh --unstable

Would you like us to create and/or use a default one? [y/N] y
Would you like to copy examples to /home/picocluster/Pimoroni/blinkt? [y/N] y
Would you like to generate documentation? [y/N] N

The systemd unit at /etc/systemd/system/blinkt.service makes sure the Blinkt! blinks after power on:

[Unit]
Description=blinkt

[Service]
Type=simple
ExecStart=/home/picocluster/.virtualenvs/pimoroni/bin/python /home/picocluster/Pimoroni/blinkt/examples/cpu_load.py
Restart=on-abort

[Install]
WantedBy=multi-user.target

Make sure to install and enable this unit:

sudo systemctl daemon-reload
sudo systemctl start blinkt
sudo systemctl enable blinkt

Apps

Podstatus with LEDs

The Podstatus app lives in the podstatus/ folder. It serves two main purposes:

  • A simple web application which displays the live status of the Pods and Nodes, and it does the actual chaos Pod deletion
  • A controller which manages the BlinkStick LEDs in the shipping containers

Both apps are connecting to the Kubernetes API and are watching the Pod status.

The web application is a Flask application and uses htmx with Server Sent Events to dynamically update the Pod status. By issuing an authenticated GET request to the /chaos endpoint, a random Pod in the configured namespace gets deleted.

On startup, an autostart command in the Wayfire configuration tries to connect to the Podstatus web application. Once this is successful, a full-screen Chromium kiosk session is started, displaying the Podstatus web application.

During development, the app can be started with (make sure to install dependencies with Poetry first):

FLASK_APP="podstatus/app.py" PYTHONPATH="podstatus" flask run --reload

And in production, the idea is that it runs with gunicorn:

GUNICORN_WORKERS=1 PYTHONPATH=./podstatus GUNICORN_BIND='0.0.0.0:8000' gunicorn -k gevent podstatus.app:app

The Red Button

The red buzzer button contains a Puck.js button, wired to the red button itself. It connects via Bluetooth to the Raspberry Pi and emulates a HID device, a keyboard. The file puckjs-redbutton.js contains the code running on the Puck.js.

A configuration in Wayfire calls curl on a button press:

[command]
binding_chaos=<ctrl> <alt> KEY_G
command_chaos=sh -c "notify-send -t 2000 $(curl -s -u username:password http://localhost:32231/chaos | jq .message)"

Contactform with Printer

The Contactform app lives in the contactform/ folder. It serves these purposes:

  • Collecting leads at the conference booth and store them in Odoo as CRM lead
  • Printing of labels for all kind of fun, for example for the booth raffle

The application connects to the Odoo API to store the collected leads, and it connects to the label printer over the network to print labels. A simple configuration is available at the authenticated config/ endpoint. It allows configuration of the Odoo campaign name, the label header and can optionally enable or disable label printing and lead creation.

As the application runs directly on the Raspberry Pi, it needs to be available on the Internet, so that a booth visitor can directly access it. This is made possible with FRP, see next section.

The label printing is made possible thanks to the fantastic brother_ql_web Python module.

APPUiO Voucher

The app generates an APPUiO Voucher and prints it on a label. The generated QR code links to https://www.appuio.ch/sign-up with URL parameters to prefill the form fields for user convenience:

?voucher=abc123&company=XYZ&name=John%20Doe&email=john@example.com&phone=123456789

For this form field pre-filling to work, a small JavaScript snippet (hack/field-values-from-url.js) needs to be available in the APPUiO website. It is added into a <script> tag via the theme configuration in Odoo.

Connectivity from the Internet

To allow connections from the Internet to the Raspberry Pi, the Raspberry Pi needs to be connected to a WLAN with Internet connectivity. It then uses frp - fast reverse proxy to tunnel connections.

Fog Machine

There is a fog machine attached to a relay which is controlled via Raspberry Pi GPIOs. It's a Micro Smoke Machine v2 from Costronica.

To control it, a small webserver is running locally. See hack/relay-web-server.py for the code.

It's running as SystemD service:

systemctl status fog-relay-server.service