Deploying Choreo Connect on Kubernetes With WSO2 API Manager as a Control Plane¶
Let's deploy an API on Choreo Connect, which running on Kubernetes, with WSO2 API Manager as the Control Plane.
Before you begin
Step 1 - Setup Choreo Connect in Kubernetes¶
Download and extract the Choreo Connect distribution .zip
The latest Choreo Connect distribution can be downloaded from https://wso2.com/choreo/choreo-connect/. Extract the Choreo Connect distribution .zip file. The extracted folder will be called as
Step 2 - Setup WSO2 API Manager in Kubernetes¶
Download WSO2 API Manager 4.2.0 distribution .zip file from https://wso2.com/api-manager/.
Place the .zip file in
Build the Docker image of WSO2 API Manager 4.2.0 using the following command.
docker-compose -f CHOREO-CONNECT_HOME/docker-compose/choreo-connect-with-apim/docker-compose.yaml build apim
If your Kubernetes Cluster is running in a remote environment, make the created docker image available to the Kubernetes Cluster. You can push the docker image to a docker registry and update the image tag specified in the CHOREO-CONNECT_HOME/k8s-artifacts/choreo-connect-with-apim/apim/apim-deployment.yaml file.
Step 3 - Deploy Artifacts and update /etc/hosts entries¶
Add the Kubernetes configurations for Choreo Connect and API Manager using the kubectl tool.
kubectl apply -f <CHOREO-CONNECT_HOME>/k8s-artifacts/choreo-connect-with-apim/apim
Apply the Kubernetes configurations for Choreo Connect after starting the API Manager instance.
kubectl apply -f <CHOREO-CONNECT_HOME>/k8s-artifacts/choreo-connect-with-apim/choreo-connect
Add the host entry to the
Add the following entry to
/etc/hostsfile in order to access the Choreo Connect Router, API Manager publisher and Developer Portal.
<ingress_address> gw.wso2.com apim.wso2.com
Step 4 - Update the JWKS Endpoint¶
The JWKS endpoint of the API Manager has the external facing hostname by default, and it is not always routable via Choreo Connect Enforcer. As a result, you can alter the JWKS endpoint in the API Manager to use the API Manager's internal service name in Kubernetes.
- Log into Admin portal - https://apim.wso2.com/admin/
- Navigate to
Key Managerssection and select the
Resident Key Manager.
- Change the JWKS URL in the
Step 5 - Deploy Sample API from API Manager¶
- Publisher Portal: https://apim.wso2.com/publisher/
- Developer Portal: https://apim.wso2.com/devportal/
Follow the instructions in create and publish an API from API Manager using the above URLs to access each of the portals.Top