Create stateful workloads

This page explains how to create and manage stateful workloads within a Google Distributed Cloud (GDC) air-gapped Kubernetes cluster. Stateful workloads let you scale your application deployment with persistent storage. Persistent storage provides your application with consistent identities and stable hostnames, regardless of where its workloads are scheduled.

This page is for developers within the application operator group, who are responsible for creating application workloads for their organization. For more information, see Audiences for GDC air-gapped documentation.

Before you begin

To run commands against a Kubernetes cluster, make sure you have the following resources:

  1. Locate the Kubernetes cluster name, or ask your Platform Administrator what the cluster name is.

  2. Sign in and generate the kubeconfig file for the Kubernetes cluster if you don't have one.

  3. Use the kubeconfig path of the Kubernetes cluster to replace KUBERNETES_CLUSTER_KUBECONFIG in these instructions.

To get the required permissions to create stateful workloads, ask your Organization IAM Admin to grant you the Namespace Admin role (namespace-admin) in your project namespace.

Create a StatefulSet resource

Create a StatefulSet object by writing a StatefulSet manifest and running kubectl apply to create the resource. To provide a stable way for clients to send requests to the pods of your StatefulSet resource, you must also create a Service object.

The kubectl apply command uses manifest files to create, update, and delete resources in your Kubernetes cluster. This is a declarative method of object configuration. This method retains writes made to live objects without merging the changes back into the object configuration files.

To create a StatefulSet and Service resource, run:

kubectl --kubeconfig KUBERNETES_CLUSTER_KUBECONFIG -n NAMESPACE \
    apply -f - <<EOF
apiVersion: v1
kind: Service
metadata:
  name: SERVICE_NAME
  labels:
    app: APP_NAME
spec:
  ports:
  - port: 80
    name: web
  clusterIP: None
  selector:
    app: APP_NAME
---
apiVersion: apps/v1
kind: StatefulSet
metadata:
  name: STATEFULSET_NAME
spec:
  selector:
    matchLabels:
      app: APP_LABEL_NAME
  serviceName: "SERVICE_NAME"
  replicas: NUMBER_OF_REPLICAS
  template:
    metadata:
      labels:
        app: APP_LABEL_NAME
    spec:
      terminationGracePeriodSeconds: 10
      containers:
      - name: CONTAINER_NAME
        image: CONTAINER_IMAGE
        ports:
        - containerPort: 80
          name: web
        volumeMounts:
        - name: www
          mountPath: CONTAINER_STORAGE_VOLUME_PATH
  volumeClaimTemplates:
  - metadata:
      name: www
    spec:
      accessModes: [ "ReadWriteOnce" ]
      resources:
        requests:
          storage: 1Gi
EOF

Replace the following:

  • KUBERNETES_CLUSTER_KUBECONFIG: the kubeconfig file for the cluster to which you're deploying container workloads.

  • NAMESPACE: the project namespace in which to deploy the container workloads.

  • SERVICE_NAME: the name of the Service object. Ensure the StatefulSet object sets the Service object in its serviceName as well.

  • APP_NAME: the name of the application to run within the deployment.

  • APP_LABEL_NAME: the label selector that determines which pods belong to the StatefulSet object.

  • STATEFULSET_NAME: the name of the StatefulSet object.

  • NUMBER_OF_REPLICAS: the number of replicated Pod objects that the deployment manages.

  • CONTAINER_NAME: the name of the container.

  • CONTAINER_IMAGE: the name of the container image. You must include the container registry path and version of the image, such as REGISTRY_PATH/nginx:1.23. For more information about setting the container registry path, see the Managed Harbor Service overview.

  • CONTAINER_STORAGE_VOLUME_PATH: the path within the container at which a storage volume is mounted.

As an example, the following StatefulSet object and corresponding Service object create stateful container workloads:

apiVersion: v1
kind: Service
metadata:
  name: nginx
  labels:
    app: nginx
spec:
  ports:
  - port: 80
    name: web
  clusterIP: None
  selector:
    app: nginx
---
apiVersion: apps/v1
kind: StatefulSet
metadata:
  name: web
spec:
  selector:
    matchLabels:
      app: nginx
  serviceName: "nginx"
  replicas: 3
  template:
    metadata:
      labels:
        app: nginx
    spec:
      terminationGracePeriodSeconds: 10
      containers:
      - name: nginx
        image: REGISTRY_PATH/nginx:1.23
        ports:
        - containerPort: 80
          name: web
        volumeMounts:
        - name: www
          mountPath: /usr/share/nginx/html
  volumeClaimTemplates:
  - metadata:
      name: www
    spec:
      accessModes: [ "ReadWriteOnce" ]
      resources:
        requests:
          storage: 1Gi

In this example:

  • A Service object named nginx is created, indicated by the metadata: name field. The Service object targets an app called nginx, indicated by labels.app: nginx and selector.app: nginx. The Service object exposes port 80 and names it web. This Service object controls the network domain and routes internet traffic to the containerized application deployed by the StatefulSet object.
  • A StatefulSet named web is created with three replicated Pod objects, as set by the field replicas: 3.
  • The Pod template, set by the section .spec.template, indicates that its Pod objects are labelled app: nginx.
  • The Pod specification, set by the section .template.spec, indicates that the pods of the StatefulSet run one container, nginx, which runs the nginx image at version 1.23.
  • The Pod specification uses the web port opened by the Service object.
  • The .template.spec.volumeMounts section specifies a mountPath field, which is named www. The mountPath is the path in the container where a storage volume is mounted.
  • The StatefulSet provisions three PersistentVolumeClaim objects, named web-www-0, web-www-1, and web-www-2, with 1GB of provisioned storage each.

After it's created, the StatefulSet ensures that the desired number of Pod objects are running and available at all times. The StatefulSet automatically replaces Pod objects that fail or are evicted from their nodes, and associates new Pod objects with the storage resources, resource requests and limits, and other configurations defined in the Pod specification of the StatefulSet object.

Request persistent storage in a StatefulSet resource

Persistent storage can be dynamically provisioned so that the underlying volumes are created on demand. Applications can request persistent storage with a PersistentVolumeClaim object.

Typically, you must create PersistentVolumeClaim objects in addition to creating the Pod object. However, StatefulSet objects include a volumeClaimTemplates array which generates the PersistentVolumeClaim objects. Each StatefulSet replica gets its own PersistentVolumeClaim object.

For more information, see Configure container storage.