https://github.com/ctron/hawkbit-operator

A Kubernetes operator for Eclipse Hawkbit
https://github.com/ctron/hawkbit-operator

firmware-updater iot kubernetes-operator

Last synced: 9 months ago
JSON representation

A Kubernetes operator for Eclipse Hawkbit

• Host: GitHub
• URL: https://github.com/ctron/hawkbit-operator
• Owner: ctron
• License: epl-2.0
• Created: 2020-08-17T15:22:40.000Z (almost 6 years ago)
• Default Branch: main
• Last Pushed: 2021-10-07T16:21:16.000Z (over 4 years ago)
• Last Synced: 2025-07-31T13:25:57.283Z (10 months ago)
• Topics: firmware-updater, iot, kubernetes-operator
• Language: Rust
• Homepage:
• Size: 266 KB
• Stars: 5
• Watchers: 2
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

          
## Install the operator

You need to install the operator. Once you have installed the operator, you can create a new hawkBit instance by

create a new custom resource of type `Hawkbit`.

### Using OperatorHub

The operator is available on [OperatorHub](https://operatorhub.io/operator/hawkbit-operator).

### Using Helm

You can also install the operator using [Helm](https://helm.sh/):

    helm install hawkbit-operator ./helm/hawkbit-operator

On OpenShift, you can also build a local instance using S2I:

    helm install hawkbit-operator ./helm/hawkbit-operator --set s2i.enabled=true --set openshift.enabled=true

## Create a hawkBit instance

The following sections describe briefly what is required to create a new instance.

### Database instance

hawkBit requires a database to run. You can provide an existing database instance, or

you can choose from the following options:

#### Use an embedded database

  

This can be achieved by using the following `database` configuration in the `Hawkbit` resource:

~~~yaml

spec:

  database:

    embedded: {}

~~~

NOTE: This uses an embedded instance of H2. This is only intended for testing.

#### Create a new PostgreSQL instance:

    

NOTE: This currently requires a manually provide hawkBit image.

    

~~~

helm install hawkbit-db bitnami/postgresql --set securityContext.enabled=false --set postgresqlDatabase=hawkbit --set postgresqlUsername=hawkbit --set postgresqlPassword=hawkbit

~~~

And use the following `database` configuration in the `Hawkbit` resource:

~~~yaml

spec:

  database:

    postgres:

      database: hawkbit

      host: hawkbit-db-postgresql

      username: hawkbit

      passwordSecret:

        name: hawkbit-db-postgresql

        field: postgresql-password

~~~

#### Create a new MySQL instance:

~~~

helm install hawkbit-db bitnami/mysql --set master.securityContext.enabled=false --set db.name=hawkbit --set db.user=hawkbit --set db.password=hawkbit --set replication.enabled=false

~~~

Use the following `database` configuration in the `Hawkbit` resource:

~~~yaml

spec:

  database:

    mysql:

      database: hawkbit

      host: hawkbit-db-mysql

      username: hawkbit

      passwordSecret:

        name: hawkbit-db-mysql

        field: mysql-password

~~~

### Broker instance

Eclipse hawkBit requires a RabbitMQ broker. You can use an existing instance or let the

operator manage one for you.

#### Managed by the operator

~~~yaml

spec:

rabbit:

  managed: {}

~~~

#### Create a new RabbitMQ instance

  

~~~

helm install hawkbit-rabbit bitnami/rabbitmq --set podSecurityContext= --set auth.username=hawkbit --set auth.password=hawkbit

~~~

Use the following configuration:

~~~yaml

spec:

rabbit:

  external:

    host: hawkbit-rabbit-rabbitmq

    username: hawkbit

    passwordSecret:

      name: hawkbit-rabbit-rabbitmq

      field: rabbitmq-password

~~~

### Sign on solution

The console requires some kind of authentication/authorization backend:

  * Basic username/password

  

    By default, the operator creates static username/password combination for login in to

    the hawkBit instance.

  

    Once the instance is deployed, you can retrieve the information using the following

    commands:

    

    ~~~sh

    kubectl get secret default-admin -o jsonpath='{.data.adminUsername}' | base64 -d

    kubectl get secret default-admin -o jsonpath='{.data.adminPassword}' | base64 -d | cut -c7-

    ~~~

      

    You can update the secret with your own credentials, and the operator will reconcile

    the deployment.

    

  * Using OAuth2 with Keycloak

    It is also possible to use Keycloak as a sign-on solution. To enable Keycloak, you need to:

    * Install the Keycloak operator

    * Use the following configuration:

    

      ~~~yaml

      spec:

        signOn:

          keycloak: {}

      ~~~

      

      This will create a new Keycloak instance, realm, client, and initial admin user. You can

      retrieve the access credentials using the following command once the instance is deployed:

      

      ~~~sh

      kubectl describe keycloakuser default-admin

      ~~~

### The hawkBit instance

Also, see the snippets above or the other examples: [examples/](examples/).

~~~yaml

kind: Hawkbit

apiVersion: iot.eclipse.org/v1alpha1

metadata:

name: default

spec:

database:

  embedded: {}

rabbit:

  managed: {}

~~~