A simple microservice-project for converting video files to mp3 files with authentification via JSON Web Token using kubernetes (with minikube) and docker for orchestration. The project is based on a tutorial by @kantancoding. (his repo) I made some changes for keeping it up to date and to make it more understandable for me.
Requirements:
- Docker installed
- kubectl installed
- minikube installed
- MySQL installed
- Python3 installed
- k9s or something similar installed
Procedure:
-
Clone the repository
git clone https://github.com/MhouneyLH/file_converter_microservices.git
-
When you want to work for a specific microservice, you should use the virtual environment
cd <microservice-directory> source venv/bin/activate
-
Start Docker
sudo systemctl start docker
-
Start minikube
minikube start
-
First time: Adjust
/etc/hosts(So we can use the domain names for the services)echo "127.0.0.1 mp3converter.com" | sudo tee -a /etc/hosts echo "127.0.0.1 rabbitmq-manager.com" | sudo tee -a /etc/hosts
-
First time: Enable Ingress for minikube
minikube addons list minikube addons enable ingress -
Start minikube tunnel (for exposing the services on a specific ip address)
minikube tunnel --bind-address "127.0.0.1" -
Use something like k9s for monitoring the cluster.
k9s
-
Initialize the local MySQL database. (for auth)
mysql -u root < ./src/auth/init.sql -
Apply all manifests in the
./srcdirectory.kubectl apply --recursive -f ./src # OR kubectl apply -f ./src/auth/manifests kubectl apply -f ./src/converter/manifests kubectl apply -f ./src/notification/manifests kubectl apply -f ./src/gateway/manifests kubectl apply -f ./src/rabbitmq/manifests kubectl apply -f ./src/mongodb/manifests
You can use any tool you want for making HTTP-Requests. I just used curl for testing the services.
-
Get a JSON Web Token for authentication
curl -X POST http://mp3converter.com/login <your_defined_email_address>:<your_defined_password>
-
Upload a
.mp4or.mkvfile (with audio).curl -X POST -F 'file=@<path_to_file>' -H 'Authentification: Bearer <your_json_web_token>' http://mp3converter.com/upload
-
Now you should get a message with an id to your in
./src/notification/manifests/configmap.yamldefined email address. (Create an app password in your google account settings and use it for the email password) -
Download the converted file.
curl --output <path_for_downloaded_file> -X GET -H 'Authorization: Bearer <your_json_web_token>' "http://mp3converter.com/download?fid=<id_from_notification>"
I also have some more notes here. (but they are a bit messy and bilingual)
- User signs up with email and password (Basic Access Authentication)
- Auth-service creates a JWT
- Auth-service encrypts this JWT with the private key (see
./src/auth/manifests/secret.yamlfor the secret) - JWT comes back to client
- Client makes request to gateway with JWT (uploading a file)
- Gateway checks if JWT is valid (with private key) using the auth-service
- Gateway checks if user is admin (with payload of JWT) using the auth-service (at the moment just false / true)
- User authenticates (see Auth Flow)
- User uploads a file to the gateway
- Gateway stores the file in MongoDB
- Gateway sends a message to RabbitMQ, that a file was uploaded (queue=
video) - Converter-service takes the message from the queue and knows the ID of the video in MongoDB
- Converter-service converts the video to mp3
- Converter-service stores the mp3 in MongoDB
- Converter-service sends a message to RabbitMQ, that a mp3 was created (queue=
mp3) - Notification-service takes the message from the queue and knows the ID of the mp3 in MongoDB
- Notification-service sends an email to the user with the download link
- User can download the mp3 from the gateway (with the ID of the mp3 and the JWT)
- with MongoDB you can store files up to 16MB -> problem = videos are mostly > 16MB
- Solution = Use GridFS for storing files > 16MB (file is split into smaller files and stored in MongoDB)
- the mongodb database running in the cluster is not persistent (so if you delete the pod, the data is lost)
- the rabbitmq database running in the cluster is not persistent (so if you delete the pod, the data is lost)
- when you get the message from the queue, that some connection got reset (mostly after e. g. purging the queue or restarting the service) you also have to restart the gateway service (something because of the routing via service name in the code)
Contributions are always welcome! Please look at following commit-conventions, while contributing: https://www.conventionalcommits.org/en/v1.0.0/#summary 😃
- Fork the project.
- Pick or create an issue you want to work on.
- Create your Feature-Branch. (
git checkout -b feat/best_feature) - Commit your changes. (
git commit -m 'feat: add some cool feature') - Push to the branch. (
git push origin feat/best_feature) - Open a Pull-Request into the Develop-Branch.