JFrog

    Cloud customer?
    Start for Free>
    Upgrade in MyJFrog >
    What's New in Cloud >






    Skip to end of metadata
    Go to start of metadata

    Overview

    The JFrog Pipelines and Dynatrace Reference Design enables DevOps teams to better manage the development and delivery of software from code to production. In particular, it allows teams to use Dynatrace to track and tag deployment events for improved troubleshooting of applications and services running in production. Dynatrace automatically detects component versions allowing and centralizing this release-relevant data into a release inventory dashboard where releases by environment, open issues, and security vulnerabilities can be easily analyzed. The Dynatrace integration also opens up the use case of “monitoring as code” where Service Level Objectives, dashboards, and alerts are all managed with JFrog Pipelines and the Dynatrace configuration APIs.

    Benefits

    • Enhance monitoring and troubleshootingof applications and services running in production environments by correlating and tracing performance degradations to specific build updates, deployments, and commits collected through metadata provided by JFrog Pipelines.
    • Accelerate problem resolution and reduce finger pointing通过使用了d contextual data on deployment events including build and git related information to enable faster resolution of issues.
    • Reduce time spent on manual processesby simplifying and standardizing Kubernetes deployments and introducing self-service Dynatrace monitoring as code.

    Prerequisites

    Page Contents

    How it Works

    The JFrog Pipeline and Dynatrace reference design leverages a series of built-in integrations and custom bash scripts available within the JFrog Pipelines platform, that enable users to build a Docker image and deploy it to a Kubernetes cluster instrumented with the Dynatrace OneAgent Operator. As this is done, Dynatrace deployment events are sent to the associated service being monitored in the runtime environment with the important context and hyperlink back to the JFrog pipeline job that performed the deployment.

    Reference design

    JFrog Repositories

    The following set of ArtifactoryRepositoriesare used in the reference design:

    Repository Name

    Type

    Description

    art-docker-dynatrace

    Docker

    Stores a collection of Docker images created by the pipeline.

    art-helm-charts-dynatrace

    Helm

    Stores a collection of Helm charts created by the pipeline.

    Integrations

    Integrationsconnect Pipelines to an external service/tool. Each integration type defines the endpoint, credentials and any other configuration detail required for Pipelines to exchange information with the service. Below are the integrations used in this reference design:

    Integration Name

    Type

    Description

    artifactoryIntegration

    Artifactory Integration

    Stores the Artifactory URL and Token.

    k8sIntegration

    Kubernetes Integration

    Stores the configuration YAML to access Kubernetes cluster connection.

    githubIntegration

    GitHub Integration

    Stores the GitHub URL and User Access Token the GitHub account where the pipeline code is stored. The GitHub user must have admin rights for the Pipelines repository.

    dynatraceIntegration

    Generic Integration

    Stores the Dynatrace instance URL and API token. The API token is configured with the permissions for any APIs it calls. The reference design API permissions are defined lower in this document.

    Pipeline Steps

    The reference JFrog Pipelines executes the followingpipelines stepsas shown in the JFrog picture below.

    1. DockerBuild: Native JFrog Pipelines step that builds a docker image from a Dockerfile and source code within thegithubIntegrationrepo. This step uses theartifactoryIntegrationto connect to the Artifactory instance so that the built image is available to the DockerPush step.
    2. DockerPush: Native JFrog Pipelines step that publishes the Docker image to an Artifactory local Docker repository. Uses theartifactoryIntegrationto push the image to the Artifactory instance.
    3. HelmPublish: Native JFrog Pipelines step that uses the Helm chart in thegithubIntegrationrepo and modifies it with the desired Docker image and tag to deploy. Pushes the updated Helm Chart to the Artifactory local Helm repository.
    4. HelmDeploy: Native JFrog Pipelines step that installs the published Helm chart to the Kubernetes cluster defined in thek8sIntegration. This step will also output the status of the deployed pods.
    5. AppUpCheck: Using the JFrog PipelinesBash这一步一步类型,调用自定义th bash脚本at checks whether the passed in URL is reachable. It will try a few times with a delay between attempts and will return with 'exit 1' if the URL is not reachable.
    6. ConfigureDynatrace: Using the JFrog PipelinesBash这一步一步类型,调用自定义th bash脚本at will run a Docker image with the Dynatrace monitoring as code CLI. ThegithubIntegrationrepo is mounted as a volume so that the monitoring-as-code CLI can access the YAML and JSON configuration files that it will process. Dynatrace credentials are read from thedynatraceIntegration.
    7. ModifyHelmChartProperties: Using the JFrog PipelinesBash这一步一步类型,调用自定义th bash脚本at calls the JFrog API to add custom properties to Helm chart in the repository. This step uses data from the previous step and adds it to the chart file properties. Artifactory credentials are read from theartifactoryIntegration.
    8. PostDynatraceEvent: Using the JFrog PipelinesBash这一步一步类型,调用自定义th bash脚本at sends the custom deployment event to the Dynatrace instance using the Dynatrace API. Dynatrace credentials are read from thedynatraceIntegration.

    Fork GitHub Repo and Create Access Token

    In preparation for setting up the pipelines and running them, you will first need to make a copy of the reference design GitHub code repository. This assumes you have aGitHub account.

    1. Forkthe sampleJFrog Pipeline-Dynatrace repositoryto your own repository.
    2. Adjust thevalues.yamlfile with values for your environment. You must adjust:
      1. gitRepo.path- replacedt-demoswith your github username or org name
      2. image.ImageName- replacedynatracedemoswith your Artifactory account name
    3. Create a GitHub Personal Access Token in the GitHub account for the GitHub pipeline repo according to theJFrog GitHub Integrationdocument.Copy the generated token to a safe location. This Token is needed in the upcoming section for the pipeline GitHub integration setup.

    Preparing the Kubernetes Cluster and Dynatrace

    Step 1 - Create and Connect to Cluster

    A Kubernetes cluster is not required for the integration; instead, the reference pipeline uses a containerized application and uses Helm for deployments.

    This demo uses Google GKE using the default settings from the Google console.

    • cluster-version 1.20.8
    • 3 nodes (12GB 6 CPU) machine-type "e2-medium"

    Once the cluster is provisioned, use the google console web console to run these commands to configure kubectl to connect and view the cluster nodes.

    gcloud container clusters get-credentials  --zone  --project  kubectl get nodes

    Step 2 - Create a JFrog Service Account

    This step creates the service account that is needed in the next section as part of the k8s pipeline integration setup.

    1. From the cloud shell clone the demo repository. For example:

      git clone https://github.com/dt-demos/JFrog-pipelines-dynatrace-example.git

    2. Navigate into the setup folder.

      cd JFrog-pipelines-dynatrace-example/setup

    3. Run this script that creates the k8s service account, adds the namespace for where the sample application will be deployed and generates a kubeconfig file for a GKE cluster.

      ./createKubernetesServiceAccounts.sh
    4. Copy the contents from thekubeconfigfile to a safe location.

    Step 3 - Create a Dynatrace Viewer Role

    This step creates the Kubernetes role that is needed by Dynatrace to call the Kubernetes API.

    1. Assuming you are still in the “JFrog-pipelines-dynatrace-example/setup” folder within the Google cloud shell, run this command to add the role.

      kubectl create -f dynatrace-oneagent-metadata-viewer.yaml

    2. You can verify that the “dynatrace-oneagent-metadata-viewer” was created using this command.

      kubectl -n dev get role

    See theDynatrace Documentationfor more details and the ways this role can be configured.

    Step 4 - Create a JFrog Docker Credentials Secret

    This step creates the Frog Docker repository credentials as a Kubernetes secret. This secret is needed by Helm as it pulls the docker image during Helm deployments.

    1. From the Google cloud shell, run this command to login to your Artifactory Docker repository.

      docker login YOUR-ACCOUNT.JFrog.io

    2. To export the saved credentials into a Kubernetes secret, run this command.

      kubectl create secret docker-registry regcred \ --docker-server= \ --docker-username= \ --docker-password= \ --docker-email=

    See theKubernetes Documentationfor more details.

    Step 5 - Install Dynatrace Operator

    One key Dynatrace advantage is ease of activation and for Kubernetes theDynatrace Operatoris designed specifically to handle the lifecycle of theDynatrace OneAgent, Kubernetes API monitoring, OneAgent traffic routing, and all future containerized componentry such as the forthcoming extension framework.

    Operator setup is typically a one-time activity as part of the Kubernetes cluster and the quickest way to deploy the Dynatrace operator is the deployment wizard within the Dynatrace UI.

    1. Log in into Dynatrace
    2. In theDynatrace menu, select Manage.
    3. Go toDeploy Dynatrace | Start Installation | Kubernetes
    4. On the Kubernetes page fill in the following.
      • Name =same as your cluster name.This name is used by various Dynatrace settings, including Kubernetes cluster name, Network Zone, ActiveGate Group, and Host Group
      • Choose‘Create Token’
      • Depending on you setup, choose‘Skip SSL’
    5. Depending on your setup,‘Enable volume storage’
    6. Use the Copy function to copy and paste the generated command from the Dynatrace wizard in the Google cloud shell and run it.

    7. After processing, you can run this command from the Google cloud web shell. You want to see that all pods are running as shown below before moving to the next section.

      kubectl -n dynatrace get pods NAME READY STATUS RESTARTS AGE dynakube-classic-gkt9f 1/1 Running 0 4d3h dynakube-classic-rnndv 1/1 Running 0 4d3h dynakube-classic-s7v4l 1/1 Running 0 4d3h dynakube-kubemon-0 1/1 Running 0 4d3h dynakube-routing-0 1/1 Running 0 4d3h dynatrace-operator-8b89765d5-znzd6 1/1 Running 10 5d3

    Step 6 - Verify the Cluster within Dynatrace

    Log in to Dynatrace and review each of these pages to verify that the Kubernetes cluster is being monitored.

    1. In theDynatrace menu, selectHosts. You should see several hosts as shown below:
    2. In theDynatrace menu, selectKubernetes. You should see the cluster as shown below:

    Step 7 - Create an API Token

    Within Dynatrace, create anAPI Token.

    1. Log in to Dynatrace.
    2. In theDynatrace menu, selectSettings.
    3. Go toIntegration | Dynatrace API.
    4. SelectGenerate token.
    5. Enter a name for your token such asJFrog.
    6. Select the required permissions for the token as shown below.

    7. Click theGeneratebutton.
    8. Copy the generated token to a safe location. This token is required for the next section for the Dynatrace pipeline integration setup.

    Setting up the Pipeline

    To complete the setup of the pipeline, JFrog integrations, repositories and a pipeline source needs to be added.

    Important

    The reference pipeline within the repo,pipelines.yml,assumes the names for the integrations and repositories match names from the table in the Design Reference section and as described below are used. You are welcome to use different names, but you must adjust thepipelines.ymltoo else the pipeline will fail.

    Step 1: Add Integrations

    1. Add a GitHub JFrog Integration from the JFrog Administration panel. From the Administration page, selectIntegrationsand then click the‘Add Integrations’button. On the form, fill in with these values as shown below.
      • Name =githubIntegration
      • Type = pick‘GitHub’from the drop down list
      • Token =GitHub的个人访问ken
    2. Create theDynatrace Integrationusing the generic integration available within JFrog Pipelines. From the Administration page, selectIntegrationsand then click the‘Add Integrations’button. On the form, fill in with these values as shown below.
      • Name =dynatraceIntegration
      • Type = pick‘Generic Integration’from the drop down list
      • Add the following as the customer environment variables:
    3. Create the Kubernetes integration using the statickubeconfigfile for their cloud provider generated in the previous setup section. From the Administration page, selectIntegrationsand then clickAdd Integrationsbutton.
    4. In the form, fill in the values as shown below.
      • Name =k8sIntegration
      • Type = Select‘Kubernetes’from the drop down list
      • KubeConfig = Paste the statickubeconfigcontents for their cloud provider generated in the previous setup section
    5. Create theArtifactory Integration. From the Administration page, selectIntegrationsand then clickAdd Integrations.
    6. In the form, fill in the values as shown below.
      • Name =artifactoryIntegration
      • Type = select‘Artifactory’from the drop down list
      • Artifactory URL = leave as default
      • Artifactory User = leave as default
      • API Key = Click the‘Get API Key’button

    The new integrations should look like this:

    Step 2 - Add Repositories

    1. Create theDockerrepository.
      1. From the Administration page, selectRepositoriesand then clickAdd Repository.
      2. Select the ‘local repository’ option.
      3. In the popup window, selectDocker.
      4. In the form, set the‘Repository Key’=art-docker-dynatrace。
      5. Leave the other fields with the default settings.
      6. Click theSave and Finish.
    2. Create theHelm Chartrepository.
      1. From the Administration page, selectRepositoriesandthen clickAdd Repository.
      2. Select the ‘local repository’ option.
      3. On the popup window, selectHelm.
      4. On the form, set the‘Repository Key’= art-helm-charts-dynatrace.
      5. Leave the other fields with the default settings.
      6. ClickSave and Finish.

    The new repositories should look like this:


    Step 3 - Add a Pipeline Source

    Create a new GitHub Pipeline source with your new repository using the GitHub integration created in the previous step.

    1. From the Administration panel, selectPipeline Sourcesfrom thePipelinesdrop down menu.
    2. Then clickAdd Pipeline Sourceand selectFrom YAMLfrom the drop down menu.
    3. In the form, fill in the values as shown below.
      • SCM Provider Integration =githubIntegration
      • Repository Full Name =From the dropdown, select theforked repository
      • Branch =main
      • Pipeline Config file Filter =pipelines.yml

    The new pipeline source should look like this.

    Running the Pipeline

    Once the setup is complete, the pipeline can be run manually from within the JFrog console under theMy Pipelinestab within the Applications panel. The pipeline will execute all the steps in a sequential manner and the completed pipeline will look like this.

    You can expand each step to review the details, but there are a number of other things you may want to review.

    Review the Published Helm Chart

    Within JFrog, expand the Artifactory repository and review the updated charts and custom properties as shown below.


    Review the Published Docker Chart

    Within JFrog, expand the Artifactory repository and review the published image.


    Review the Sample Application

    1. First obtain the public IP address from the Kubernetes service using this command.

      kubectl -n dynatrace get service NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE demoapp LoadBalancer 10.84.2.18 34.133.103.200 8080:32602/TCP 5d

    2. 使用上面的示例,自由进出n the application on port 8080 athttp://34.133.103.200:8080. The application will look like this:

    Send Traffic to the Sample Application

    In order for Dynatrace to fully monitor services and applications, there need to be some transactions flowing through the application. To make this process easier, a simple script is provided in the repo that will send cURL requests to the various application URLs within a loop. To run this script, open up the Google web shell and run these commands.

    ~/jfrog-pipelines-dynatrace-example/scripts ./sendSomeTraffic.sh

    ThesendSomeTraffic.shwill determine the public IP for the application and output the loop status as shown below. To stop the script, simply usectrl-c.

    Calling http://111.111.111.111:8080... loop 1 200 200 200 200 loop 2 200 200 200 200 loop 3 200 200 ... ...



    Review the Dynatrace Deployment Event

    Dynatrace内,导航到Releasesmenu to open up therelease inventory dashboard. On this dashboard is the demo application, its auto-detected version and its deployment event. Below are the expanded details for an example deployment event with its associated meta-data including the URL back to the JFrog pipeline that performed the deployment.


    Review the Dynatrace Kubernetes Dashboard

    Dynatrace内,导航到Kubernetesmenu and drill into the workload for the demo application. As shown below, thedemoappworkload dashboard shows overall utilization metrics with links to drill into the specific process.


    Review the Service

    Dynatrace内,导航到Servicesmenu and open up theDemoNodeJsAppas shown below. This dashboard shows everything you need to know about the service including the time series metrics for the requests coming from thesendSomeTraffic.shscript.

    Deploy Another Version of the Demo Application

    The sample app comes with built-in "feature" behaviors - meaning - if you launch the app and tell it to run as feature 1, 2, or 3 to show slightly different behavior. A feature is set using a Docker build argument that sets an environment variable that the application code looks for. You can read more about this in thedemoapp自述文件.

    To change feature numbers, adjust the environment variable FEATURE_NUMBER to the value in thepipeline.ymlfile and commit the code change. JFrog will automatically re-run the pipeline after any code commit, so just monitor the progress of the pipeline and then go back to review the Dynatrace release inventory, events and JFrog artifacts. Below is an example of what the change should look like:

    Support

    If you need help with this integration, contactpartner_support@JFrog.com.

    Copyright © 2023 JFrog Ltd.