This document describes basic Model in Image model file syntax, naming, and macros. For additional information, see the WebLogic Deploy Tooling documentation.
The WDT Discover Domain Tool is particularly useful for generating model files from an existing domain home.
Here’s an example of a model YAML file that defines a WebLogic Server Administration Server and dynamic cluster.
domainInfo:
AdminUserName: '@@SECRET:__weblogic-credentials__:username@@'
AdminPassword: '@@SECRET:__weblogic-credentials__:password@@'
ServerStartMode: 'prod'
topology:
Name: '@@ENV:DOMAIN_UID@@'
AdminServerName: "admin-server"
Cluster:
"cluster-1":
DynamicServers:
ServerTemplate: "cluster-1-template"
ServerNamePrefix: "managed-server"
DynamicClusterSize: 5
MaxDynamicClusterSize: 5
CalculatedListenPorts: false
Server:
"admin-server":
ListenPort: 7001
ServerTemplate:
"cluster-1-template":
Cluster: "cluster-1"
ListenPort: 8001
This sample model file:
DOMAIN_UID
, but note that this is not required.For a description of model file macro references to secrets and environment variables, see Model file macros.
Using model file macros
You can use model macros to reference arbitrary secrets from model files. This is recommended for handling mutable values such as database user names, passwords, and URLs. See Using secrets in model files.
All password fields in a model should use a secret macro. Passwords should not be directly included in property or model files because the files may appear in logs or debugging.
Model files encrypted with the WDT Encrypt Model Tool are not supported. Use secrets instead.
You can use model macros to reference arbitrary environment variables from model files. This is useful for handling plain text mutable values that you can define using an env
stanza in your Domain YAML file, and is also useful for accessing the built in DOMAIN_UID
environment variable. See Using environment variables in model files.
For most models, it’s useful to minimize or eliminate the usage of model variable files (also known as property files) and use secrets or environment variables instead.
A model must contain a domainInfo
stanza that references your WebLogic administrative credentials. You can use the @@SECRET
macro with the reserved secret name __weblogic-credentials__
to reference your Domain YAML file’s WebLogic credentials secret for this purpose. For example:
domainInfo:
AdminUserName: '@@SECRET:__weblogic-credentials__:username@@'
AdminPassword: '@@SECRET:__weblogic-credentials__:password@@'
A JRF domain type model must contain a domainInfo.RCUDbInfo
stanza. NOTE: JRF support in Model in Image domains is deprecated in operator version 4.1.0; use the Domain on PV domain home source type instead.
You can control the order that WDT uses to load your model files, see Model file naming and loading order.
Refer to this section if you need to control the order in which your model files are loaded. The order is important when two or more model files refer to the same configuration, because the last model that’s loaded has the highest precedence.
During domain home creation, model and property files are first loaded from the configuration.models.modelHome
directory within a pod. After the modelHome
files are all loaded, the domain home creation then loads files from the optional WDT ConfigMap, described in Optional WDT model ConfigMap. If a modelHome
file and ConfigMap file both have the same name, then both files are loaded.
The loading order within each of these locations is first determined using the convention filename.##.yaml
and filename.##.properties
, where ##
are digits that specify the desired order when sorted numerically. Additional details:
.##.
in a file name is optional.
properties
or yaml
extension in order for it to take precedence over alphabetical precedence..##.
is undefined..##.
sort before other files as if they implicitly have the lowest possible .##.
NOTE: If configuration.models.modelHome
files are supplied by combining multiple
Auxiliary images,
then the files in this directory are populated according to their
Auxiliary image merge order
before the loading order is determined.
For example, if you have these files in the model home directory:
jdbc.20.yaml
main-model.10.yaml
my-model.10.yaml
y.yaml
And you have these files in the ConfigMap:
jdbc-dev-urlprops.10.yaml
z.yaml
Then the combined model files list is passed to WebLogic Deploy Tooling as:
y.yaml,main-model.10.yaml,my-model.10.yaml,jdbc.20.yaml,z.yaml,jdbc-dev-urlprops.10.yaml
Property files (ending in .properties
) use the same sorting algorithm, but they are appended together into a single file prior to passing them to the WebLogic Deploy Tooling.
WDT models can have macros that reference secrets or environment variables.
You can use WDT model @@SECRET
macros to reference the WebLogic administrator username
and password
keys that are stored in a Kubernetes Secret and to optionally reference additional secrets. Here is the macro pattern for accessing these secrets:
Domain Resource Attribute | Corresponding WDT Model @@SECRET Macro |
---|---|
webLogicCredentialsSecret |
@@SECRET:__weblogic-credentials__:username@@ and @@SECRET:__weblogic-credentials__:password@@ |
configuration.secrets |
@@SECRET:mysecret:mykey@@ |
For example, you can reference the WebLogic credential user name using @@SECRET:__weblogic-credentials__:username@@
, and you can reference a custom secret mysecret
with key mykey
using @@SECRET:mysecret:mykey@@
.
Any secrets that are referenced by an @@SECRET
macro must be deployed to the same namespace as your Domain, and must be referenced in your Domain YAML file using the weblogicCredentialsSecret
and configuration.secrets
fields.
Here’s a sample snippet from a Domain YAML file that sets a webLogicCredentialsSecret
and two custom secrets my-custom-secret1
and my-custom-secret2
.
...
spec:
webLogicCredentialsSecret:
name: my-weblogic-credentials-secret
configuration:
secrets: [ my-custom-secret1,my-custom-secret2 ]
...
You can reference operator environment variables in model files. This includes any that you define yourself in your Domain YAML file using domain.spec.serverPod.env
or domain.spec.adminServer.serverPod.env
, or the built-in DOMAIN_UID
environment variable.
For example, the @@ENV:DOMAIN_UID@@
macro resolves to the current domain’s domain UID.
You can embed an environment variable macro in a secret macro. This is useful for referencing secrets that you’ve named based on your domain’s domainUID
.
For example, if your domainUID
is domain1
, then the macro @@SECRET:@@ENV:DOMAIN_UID@@-super-double-secret:mykey@@
resolves to the value stored in mykey
for secret domain1-super-double-secret
.