Runtime updates

Contents

Overview

If you want to make a WebLogic domain home configuration update to a running Model in Image domain, and you want the update to survive WebLogic Server pod restarts, then you must modify your existing model and instruct the WebLogic Kubernetes Operator to propagate the change.

If instead you make a direct runtime WebLogic configuration update of a Model in Image domain using the WebLogic Server Administration Console or WLST scripts, then the update will be ephemeral. This is because a Model in Image domain home is regenerated from the model on every pod restart.

There are two approaches for propagating model updates to a running Model in Image domain without first shutting down the domain:

  • Offline updates: Offline updates are propagated to WebLogic pods by updating your model and then initiating a domain roll, which generates a new domain configuration, restarts the domain’s WebLogic Server Administration Server with the updated configuration, and then restarts other running servers.

  • Online updates: If model changes are configured to fully dynamic configuration MBean attributes, then you can optionally propagate changes to WebLogic pods without a roll using an online update. If an online update request includes non-dynamic model updates that can only be achieved using an offline update, then the resulting behavior is controlled by the domain resource YAML domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges attribute, which is described in detail in Online update handling of non-dynamic WebLogic configuration changes.

The operator does not support all types of WebLogic configuration changes while a domain is still running. If a change is unsupported for an online or offline update, then propagating the change requires entirely shutting domain the domain, applying the change, and finally restarting the domain. Full domain restarts are described in Full domain restarts.

NOTE: Supported and unsupported changes are described in these sections: Supported updates and Unsupported updates. It is the administrator’s responsibility to make the necessary changes to a domain resource to initiate the correct approach for an update.

Custom configuration overrides, which are WebLogic configuration overrides specified using a domain resource YAML file configuration.overridesConfigMap, as described in Configuration overrides, are not supported in combination with Model in Image. Model in Image will generate an error if custom overrides are specified. This should not be a concern because model file, secret, or model image updates are simpler and more flexible than custom configuration override updates. Unlike configuration overrides, the syntax for a model file update exactly matches the syntax for specifying your model file originally.

Updating an existing model

If you have verified your proposed model updates to a running Model in Image domain are supported by consulting Supported updates and Unsupported updates, then you can use the following approaches.

For online or offline updates:

  • Specify a new or changed WDT ConfigMap that contains model files and use your domain resource YAML file configuration.model.configMap field to reference the map. The model files in the ConfigMap will be merged with any model files in the image. Ensure the ConfigMap is deployed to the same namespace as your domain.

  • Change, add, or delete secrets that are referenced by macros in your model files and use your domain resource YAML file configuration.secrets field to reference the secrets. Ensure the secrets are deployed to the same namespace as your domain.

For offline updates only, there are two additional options:

  • Supply a new image with new or changed model files.

    • If the files are located in the image specified in the domain resource YAML file spec.image, then change this field to reference the image.
    • If you are using auxiliary images to supply model files in an image, then change the corresponding serverPod.auxiliaryImages.image field value to reference the new image or add a new serverPod.auxiliaryImages mount for the new image.

  • Change, add, or delete environment variables that are referenced by macros in your model files. Environment variables are specified in the domain resource YAML file spec.serverPod.env or spec.serverPod.adminServer.env attributes.

It is advisable to defer the last two modification options, or similar domain resource YAML file changes to fields that cause servers to be restarted, until all of your other modifications are ready. This is because such changes automatically and immediately result in a rerun of your introspector job, and, if the job succeeds, then a roll of the domain, plus, an offline update, if there are any accompanying model changes.

Model updates can include additions, changes, and deletions. For help generating model changes:

After your model updates are prepared, you can instruct the operator to propagate the changed model to a running domain by following the steps in Offline updates or Online updates.

Offline updates

Use the following steps to initiate an offline configuration update to your model:

  1. Ensure your updates are supported by checking Supported and Unsupported updates.
  2. Modify, add, or delete your model resources as per Updating an existing model.
  3. Modify your domain resource YAML file:
    1. If you have updated your image:
      • If the files are located in the image specified in the domain resource YAML file spec.image, then change this field to reference the image.
      • If you are using auxiliary images to supply model files in an image, then change the corresponding serverPod.auxiliaryImages.image field value to reference the new image or add a new serverPod.auxiliaryImages mount for the new image.
    2. If you are updating environment variables, change domain.spec.serverPod.env or domain.spec.adminServer.serverPod.env accordingly.
    3. If you are specifying a WDT ConfigMap, then set domain.spec.configuration.model.configMap to the name of the ConfigMap.
    4. If you are adding or deleting secrets as part of your change, then ensure the domain.spec.configuration.secrets array reflects all current secrets.
    5. If you have modified your image or environment variables, then no more domain resource YAML file changes are needed; otherwise, change an attribute that instructs the operator to roll the domain. For examples, see change the domain spec.restartVersion or change any of the other Domain resource YAML fields that cause servers to be restarted.

The operator will subsequently rerun the domain’s introspector job. This job will reload all of your secrets and environment variables, merge all of your model files, and generate a new domain home.

If the job succeeds, then the operator will make the updated domain home available to pods using a ConfigMap named DOMAIN_UID-weblogic-domain-introspect-cm and the operator will subsequently roll (restart) each running WebLogic Server pod in the domain so that it can load the new configuration. A domain roll begins by restarting the domain’s Administration Server and then proceeds to restart each Managed Server in the domain.

If the job reports a failure, see Debugging for advice.

Offline update sample

For an offline update sample which adds a data source, see the Update 1 use case in the Model in Image sample.

Online updates

Use the following steps to initiate an online configuration update to your model:

  1. Ensure your updates are supported by checking Supported and Unsupported updates.
  2. Modify, add, or delete your model secrets or WDT ConfigMap as per Updating an existing model.
  3. Modify your domain resource YAML file:

    1. Do not change domain.spec.image, domain.spec.serverPod.env, or any other domain resource YAML fields that cause servers to be restarted; this will automatically and immediately result in a rerun of your introspector job, a roll if the job succeeds, plus an offline update if there are any accompanying model changes.

    2. If you are specifying a WDT ConfigMap, then set domain.spec.configuration.model.configMap to the name of the ConfigMap.

    3. If you are adding or deleting secrets as part of your change, then ensure the domain.spec.configuration.secrets array reflects all current secrets.

    4. Set domain.spec.configuration.model.onlineUpdate.enabled to true (default is false).

    5. Set domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges to one of CommitUpdateOnly (default), and CommitUpdateAndRoll. For details, see online update handling of non-dynamic WebLogic configuration changes.

    6. Optionally, tune the WDT timeouts in domain.spec.configuration.model.onlineUpdate.wdtTimeouts.

      • This is only necessary in the rare case when an introspector job’s WDT online update command timeout results in an error in the introspector job log or operator log.
      • All timeouts are specified in milliseconds and default to two or three minutes.
      • For a full list of timeouts, you can call kubectl explain domain.spec.configuration.model.onlineUpdate.wdtTimeouts.

    7. Change domain.spec.introspectVersion to a different value. For examples, see change the domain spec.introspectVersion.

After you’ve completed these steps, the operator will subsequently run an introspector Job which generates a new merged model, compares the new merged model to the previously deployed merged model, and runs WebLogic Deploy Tooling to process the differences:

  • If the introspector job WDT determines that the differences are confined to fully dynamic WebLogic configuration MBean changes, then the operator will send delta online updates to the running WebLogic pods.

  • If WDT detects non-dynamic WebLogic configuration MBean changes, then the operator may ignore the updates, honor only the online updates, or initiate an offline update (roll) depending on whether you have configured domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges to CommitUpdateOnly (default), or CommitUpdateAndRoll. For details, see online update handling of non-dynamic WebLogic configuration changes.

If the introspector job reports a failure or any other failure occurs, then see Debugging for advice. When recovering from a failure, please keep the following points in mind:

  • The operator cannot automatically revert changes to resources that are under user control (just like with offline updates). For example, it is the administrator’s responsibility to revert problem changes to an image, configMap, secrets, and domain resource YAML file.

  • If there is any failure during an online update, then no WebLogic configuration changes are made to the running domain and the introspector job retries up to the failure retry time limit specified in domain.spec.failureRetryLimitMinutes. To correct the problem, modify and reapply your model resources (ConfigMap and/or secrets), plus, if the introspector job has stopped retrying, you must also change your domain resource domain.spec.introspectVersion again. For more information, see Domain failure retry processing.

Sample domain resource YAML file for an online update:

...
kind: Domain
metadata:
  name: sample-domain1
  namespace: sample-domain1-ns
...
spec:
  ...
  introspectVersion: 5
  configuration:
    ...
    model:
      domainType: "WLS"
      configMap: sample-domain1-wdt-config-map
      runtimeEncryptionSecret: sample-domain1-runtime-encryption-secret
      onlineUpdate:
        enabled: true
        onNonDynamicChanges: "CommitUpdateAndRoll"
    secrets:
    - sample-domain1-datasource-secret
    - sample-domain1-another-secret

Online update scenarios

  1. Successful online update that includes only dynamic WebLogic MBean changes.

    • Example dynamic WebLogic MBean changes:
      • Changing data source connection pool capacity, password, and targets.
      • Changing application targets.
      • Deleting or adding a data source.
      • Deleting or adding an application.
      • The MBean changes are committed in the running domain and effective immediately.
    • Expected outcome after the introspector job completes:
      • The domain Completed condition status is set to True. For more information, see Domain conditions.
      • The weblogic.introspectVersion label on all pods will be set to match the domain.spec.introspectVersion.
    • Actions required:
      • None.

  2. Successful online update that includes non-dynamic WebLogic MBean attribute changes when domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges is CommitUpdateOnly (the default).

    • Example non-dynamic WebLogic MBean change:
      • Changing a data source driver parameter property (such as username).
    • Expected outcome after the introspector job completes:
      • Any dynamic WebLogic configuration changes are committed in the running domain and effective immediately.
      • Non-dynamic WebLogic configuration changes will not take effect on already running WebLogic Server pods until an administrator subsequently rolls the pod.
      • The domain status Available condition will have a Status of True.
      • The domain status ConfigChangesPendingRestart condition will have a Status of True until an administrator subsequently rolls all WebLogic Server pods that are already running.
      • Each WebLogic Server pod’s weblogic.introspectVersion label will match domain.spec.introspectVersion.
      • Each WebLogic Server pod that is already running will be given a weblogic.configChangesPendingRestart=true label until an administrator subsequently rolls the pod.
    • Actions required:

  3. Successful online update that includes non-dynamic WebLogic MBean attribute changes when domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges is CommitUpdateAndRoll.

    • Expected outcome after the introspector job completes:
      • Any dynamic WebLogic configuration changes are committed in the running domain and effective immediately.
      • The operator will initiate a domain roll.
      • Non-dynamic WebLogic configuration changes will take effect on each pod when the pod is rolled.
      • Each WebLogic Server pod’s weblogic.introspectVersion label will match domain.spec.introspectVersion after it is rolled.
      • The domain status Available condition will have a Status of True after the roll completes.
    • Actions required:

  4. Changing any of the domain resource fields that cause servers to be restarted in addition to domain.spec.introspectVersion, spec.configuration.secrets, spec.configuration.model.onlineUpdate, or spec.configuration.model.configMap.

    • Expected outcome after the introspector job completes:
      • No online update was attempted by the introspector job.
      • All model changes are treated the same as offline updates (which may result in restarts/roll after job success).
    • Actions required:
      • None.

  5. Changing any model attribute that is unsupported.

    • Expected outcome:
      • The expected behavior is often undefined, but in some cases there will be helpful error in the introspector job, events, and/or domain status, and the job will periodically retry until the error is corrected or its maximum error count exceeded.
    • Actions required:
      • Use offline updates if they are supported, or, if not, shutdown the entire domain and restart it.
      • See Debugging.

  6. Errors in the model; for example, a syntax error.

    • Expected outcome after the introspector job completes:
      • Error in the introspector job’s pod log, domain events, and domain status.
      • The domain status Failed condition will have a Status of True.
      • Periodic job retries until the error is corrected or until a maximum error count is exceeded.
    • Actions required:
      • Correct the model.
      • If retries have halted, then alter the spec.introspectVersion.

  7. Other errors while updating the domain.

    • Expected outcome:
      • Error in the introspector job, domain events, and/or domain status.
      • The domain status Failed condition will have a Status of True.
      • If there’s a failed introspector job, the job will retry periodically until the error is corrected or until it exceeds its maximum error count. Other types of errors will also usually incur periodic retries.
    • Actions required:
      • See Debugging.
      • Make corrections to the domain resource and/or model.
      • If retries have halted, then alter the spec.introspectVersion.

Online update status and labels

During an online update, the operator will rerun the introspector job, which in turn attempts online WebLogic configuration changes to the running domain. You can monitor an update’s status using its domain resource’s status conditions and its WebLogic Server pod labels.

For example, for the domain status you can check the domain resource domain.status stanza using kubectl -n MY_NAMESPACE get domain MY_DOMAINUID -o yaml, and for the WebLogic pod labels you can use kubectl -n MY_NAMESPACE get pods --show-labels plus optionally add --watch to watch the pods as they change over time.

The ConfigChangesPendingRestart condition in domain.status contains information about the progress of the online update. See ConfigChangesPendingRestart condition for details.

Here are some of the expected WebLogic pod labels after an online update success:

  1. Each WebLogic Server pod’s weblogic.introspectVersion label value will eventually match the domain.spec.introspectVersion value that you defined.

    • If the domain resource attribute domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges is CommitUpdateOnly (the default), then the introspect version label on all pods is immediately updated after the introspection job successfully completes.
    • If the domain resource attribute domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges is CommitUpdateAndRoll and there are no non-dynamic configuration changes to the model, then the introspect version label on all pods is immediately updated after the introspection job successfully completes.
    • If the domain resource attribute domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges is CommitUpdateAndRoll and there are non-dynamic clabel onfiguration changes to the model, then the introspect version label on each pod is updated after the pod is rolled.

  2. There will be a weblogic.configChangesPendingRestart=true label on each WebLogic Server pod until the pod is restarted (rolled) by an administrator if all of the following are true:

    • The domain resource domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges attribute is CommitUpdateOnly (the default).
    • Non-dynamic WebLogic configuration changes were included in a successful online model update.

Online update handling of non-dynamic WebLogic configuration changes

The domain resource YAML domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges attribute controls behavior when non-dynamic WebLogic configuration changes are detected during an online update introspector job. Non-dynamic changes are changes that require a domain restart to take effect. Valid values are CommitUpdateOnly (default), or CommitUpdateAndRoll:

  • If set to CommitUpdateOnly (the default) and any non-dynamic changes are detected, then all changes will be committed, dynamic changes will take effect immediately, the domain will not automatically restart (roll), and any non-dynamic changes will become effective on a pod only when the pod is later restarted.

  • If set to CommitUpdateAndRoll and any non-dynamic changes are detected, then all changes will be committed, dynamic changes will take effect immediately, the domain will automatically restart (roll), and non-dynamic changes will take effect on each pod after the pod restarts.

  When updating a domain with non-dynamic MBean changes with
  `domain.spec.configuration.model.onlineUpdate.onNonDynamicChanges=CommitUpdateOnly` (the default),
  the non-dynamic changes are not effective on a WebLogic pod until the pod is restarted.
  However, if you scale up a cluster or otherwise start any new servers in the domain,
  then the new servers will start with the new non-dynamic changes
  and the domain will then be running in an inconsistent state until its older servers are restarted.

Online update handling of deletes

The primary use case for online updates is to make small additions, deletions of single resources or MBeans that have no dependencies, or changes to non-dynamic MBean attributes.

Deletion can be problematic for online updates in two cases:

  • Deleting multiple resources that have cross dependencies.
  • Deleting the parent type section in an MBean hierarchy.

In general, complex deletion should be handled by offline updates to avoid these problems.

NOTE: Implicitly removing a model’s parent type section may sometimes work depending on the type of the section. For example, if you have an application in the model under appDeployments: in a model.configMap and you subsequently update the ConfigMap using an online update so that it no longer includes the appDeployment section, then the online update will delete the application from the domain.

MBean type section deletion

For an example of an MBean deletion, consider a WDT ConfigMap that starts with:

      resources:
        SelfTuning:
          WorkManager:
            wm1:
              Target: 'cluster-1'
            wm2:
              Target: 'cluster-1'
        JDBCSystemResource:
          ...

If you want to online update to a new model without work-managers, then change the ConfigMap to the following:

      resources:
        SelfTuning:
          WorkManager:
        JDBCSystemResource:
          ...

Or, supply an additional ConfigMap:

      resources:
        SelfTuning:
          WorkManager:
            '!wm1':
            '!wm2':

The online update will fail if you try replace the ConfigMap with the SelfTuning section omitted:

      resources:
        JDBCSystemResource:
          ...

This fails because it implicitly removes the MBean types SelfTuning and WorkManager.

Deleting cross-referenced MBeans

For an example of an unsupported online update delete of MBeans with cross references, consider the case of a Work Manager configured with constraints where you want to delete the entire Work Manager:

      resources:
        SelfTuning:
          WorkManager:
            newWM:
              Target: 'cluster-1'
              MinThreadsConstraint: 'SampleMinThreads'
              MaxThreadsConstraint: 'SampleMaxThreads'
          MinThreadsConstraint:
            SampleMinThreads:
              Count: 1
          MaxThreadsConstraint:
            SampleMaxThreads:
              Count: 10

If you try to specify the updated model in the ConfigMap as:

      resources:
          SelfTuning:
              WorkManager:
              MinThreadsConstraint:
              MaxThreadsConstraint:

Then, the operator will try use this delta to online update the domain:

      resources:
          SelfTuning:
              MaxThreadsConstraint:
                  '!SampleMaxThreads':
              WorkManager:
                  '!newWM':
              MinThreadsConstraint:
                  '!SampleMinThreads':

This can fail because an online update might not delete all the referenced Constraints first before deleting the WorkManager.

To work around problems with online updates to objects with cross dependencies, you can use a series of online updates to make the change in stages. For example, continuing the previous Work Manager example, first perform an online update to omit the Work Manager but not the constraints:

      resources:
        SelfTuning:
          WorkManager:
          MinThreadsConstraint:
            SampleMinThreads:
              Count: 1
          MaxThreadsConstraint:
            SampleMaxThreads:
              Count: 10

After that update completes, then perform another online update:

      resources:
          SelfTuning:
              WorkManager:
              MinThreadsConstraint:
              MaxThreadsConstraint:

Online update sample

For an online update sample which alters a data source and Work Manager, see the Update 4 use case in the Model in Image sample.

Appendices

Review the following appendices for additional, important information.

Supported updates

The following updates are supported for offline or online updates, except when they reference an area that is specifically documented as unsupported:

  • You can add a new WebLogic cluster or standalone server.

  • You can increase the size of a dynamic WebLogic cluster.

  • You can add new MBeans or resources by specifying their corresponding model YAML file snippet along with their parent bean hierarchy. For example, you can add a data source.

  • You can change or add MBean attributes by specifying a YAML file snippet along with its parent bean hierarchy that references an existing MBean and the attribute. For example, to add or alter the maximum capacity of a data source named mynewdatasource:

    resources:
  JDBCSystemResource:
    mynewdatasource:
      JdbcResource:
        JDBCConnectionPoolParams:
          MaxCapacity: 5

    For more information, see Using Multiple Models in the WebLogic Deploy Tooling documentation.

  • You can change or add secrets that your model macros reference (macros that use the @@SECRET:secretname:secretkey@@ syntax). For example, you can change a database password secret.

  • For offline updates only, you can change or add environment variables that your model macros reference (macros that use the @@ENV:myenvvar@@ syntax).

  • You can remove an MBean, application deployment, or resource by omitting any reference to it in your image model files and WDT config map. You can also remove a named MBean, application deployment, or resource by specifying an additional model file with an exclamation point (!) just before its name plus ensuring the new model file is loaded after the original model file that contains the original named configuration. For example, if you have a data source named mynewdatasource defined in your model, then it can be removed by specifying a small model file that loads after the model file that defines the data source, where the small model file looks like this:

    resources:
  JDBCSystemResource:
    !mynewdatasource:

    There are some exceptions for online updates.

    For more information, see Declaring Named MBeans to Delete in the WebLogic Deploying Tooling documentation.

Unsupported updates

It is important to avoid applying unsupported model updates to a running domain. An attempt to use an unsupported update may not always result in a clear error message, and the expected behavior may be undefined. If you need to make an unsupported update and no workaround is documented, then shut down your domain entirely before making the change. See Full domain restarts.

The following summarizes the types of runtime update configuration that are not supported in Model in Image unless a workaround or alternative is documented:

  • Altering cluster size:
    • You have a limited ability to change an existing WebLogic cluster’s membership.
    • Specifically, do not apply runtime updates for:
      • Adding WebLogic Servers to a configured cluster. As an alternative, consider using dynamic clusters instead of configured clusters.
      • Removing WebLogic Servers from a configured cluster. As an alternative, you can lower your cluster’s domain resource YAML replicas attribute.
      • Decreasing the size of a dynamic cluster. As an alternative, you can lower your cluster’s domain resource YAML replicas attribute.
  • You cannot change, add, or remove network listen address, port, protocol, and enabled configuration for existing clusters or servers at runtime.
    • Specifically, do not apply runtime updates for:
      • A Default, SSL, Admin channel Enabled, listen address, or port.
      • A Network Access Point (custom channel) Enabled, listen address, protocol, or port.
      • Note that it is permitted to override network access point public or external addresses and ports. External access to JMX (MBean) or online WLST requires that the network access point internal port and external port match (external T3 or HTTP tunneling access to JMS, RMI, or EJBs don’t require port matching).

Due to security considerations, we strongly recommend that T3 or any RMI protocol should not be exposed outside the cluster.

  • Node Manager related configuration.
  • Log related settings. This applies to changing, adding, or removing server and domain log related settings in an MBean at runtime when the domain resource is configured to override the same MBeans using the spec.logHome, spec.logHomeEnabled, or spec.httpAccessLogInLogHome attributes.
  • Changing the domain name. You cannot change the domain name at runtime.
  • Deleting an MBean attribute:
    • There is no way to directly delete an attribute from an MBean that’s already been specified by a model file.
    • The workaround is to do this using two model files:
      • Add a model file that deletes the named bean/resource that is a parent to the attribute you want to delete using the ! syntax as described in Supported Updates.
      • Add another model file that will be loaded after the first one, which fully defines the named bean/resource but without the attribute you want to delete.
  • Changing any existing MBean name:
    • There is no way to directly change the MBean name of an attribute.
    • Instead, you can remove a named MBean using the ! syntax as described in Supported Updates.
    • Then, you add a new one as a replacement.
  • Embedded LDAP entries:
    • Embedded LDAP security entries for users, groups, roles, and credential mappings. For example, you cannot add a user to the default security realm.
    • Online update attempts in this area will fail during the introspector job, and offline update attempts may result in inconsistent security checks during the offline update’s rolling cycle.
    • If you need to make these kinds of updates, then shut down your domain entirely before making the change, or switch to an external security provider.
  • Any Model YAML topology: stanza changes:
    • For example, ConsoleEnabled, RootDirectory, AdminServerName, and such.
    • For a complete list, run /u01/wdt/weblogic-deploy/bin/modelHelp.sh -oracle_home $ORACLE_HOME topology (this assumes you have installed WDT in the /u01/wdt/weblogic-deploy directory).
  • Dependency deletion in combination with online updates.
  • Deleting Model entries by type:
    • For example, you cannot delete an entire SelfTuning type stanza by omitting the stanza in an online update or by specifying an additional model with !SelfTuning in either an offline or an online update.
    • Instead, you can delete the specific MBean by omitting the MBean itself while leaving its SelfTuning parent in place or by specifying an additional model using the ! syntax in combination with the name of the specific MBean.
    • For details, see Online update handling of deletes.
  • Deleting multiple resources that have cross-references in combination with online updates:
    • For example, concurrently deleting a persistent store and a data source referenced by the persistent store.
    • For this type of failure, the introspection job will fail and log an error describing the failed reference, and the job will automatically retry up to its maximum retries.
    • For details, see Online update handling of deletes.
  • Security related changes in combination with online updates:
    • Such changes included security changes in domainInfo.Admin*, domainInfo.RCUDbinfo.*, topology.Security.*, and topology.SecurityConfiguration.*.
    • Any online update changes in these sections will result in a failure.

Using the WDT Discover Domain and Compare Model Tools

Optionally, you can use the WDT Discover Domain and Compare Domain Tools to help generate your model file updates. The WebLogic Deploy Tooling Discover Domain Tool generates model files from an existing domain home, and its Compare Model Tool compares two domain models and generates the YAML file for updating the first domain to the second domain.

For example, assuming you’ve installed WDT in /u01/wdt/weblogic-deploy and assuming your domain type is WLS:

  1. Run discover for your existing domain home.

    $ /u01/wdt/weblogic-deploy/bin/discoverDomain.sh \
  -oracle_home $ORACLE_HOME \
  -domain_home $DOMAIN_HOME \
  -domain_type WLS \
  -archive_file old.zip \
  -model_file old.yaml \
  -variable_file old.properties

  2. Now make some WebLogic config changes using the console or WLST.

  3. Run discover for your changed domain home.

    $ /u01/wdt/weblogic-deploy/bin/discoverDomain.sh \
  -oracle_home $ORACLE_HOME \
  -domain_home $DOMAIN_HOME \
  -domain_type WLS \
  -archive_file new.zip \
  -model_file new.yaml \
  -variable_file new.properties

  4. Compare your old and new YAML using diff.

    $ diff new.yaml old.yaml

  5. Compare your old and new YAML using compareDomain to generate the YAML update file you can use for transforming the old to new.

    $ /u01/wdt/weblogic-deploy/bin/compareModel.sh \
  -oracle_home $ORACLE_HOME \
  -output_dir /tmp \
  -variable_file old.properties \
  old.yaml \
  new.yaml

  6. The compareModel will generate these files:

    #      /tmp/diffed_model.json
#      /tmp/diffed_model.yaml, and
#      /tmp/compare_model_stdout

Changing a Domain restartVersion or introspectVersion

As was mentioned in Offline updates, one way to tell the operator to apply offline configuration changes to a running domain is by altering the Domain spec.restartVersion. Similarly, an online update is initiated by altering the Domain spec.introspectVersion. Here are some common ways to alter either of these fields:

  • You can alter restartVersion or introspectVersion interactively using kubectl edit -n MY_NAMESPACE domain MY_DOMAINUID.

  • If you have your domain’s resource file, then you can alter this file and call kubectl apply -f on the file.

  • You can use the Kubernetes get and patch commands.

    Here’s a sample automation script for restartVersion that takes a namespace as the first parameter (default sample-domain1-ns) and a domainUID as the second parameter (default sample-domain1):

    #!/bin/bash
NAMESPACE=${1:-sample-domain1-ns}
DOMAINUID=${2:-sample-domain1}
currentRV=$(kubectl -n ${NAMESPACE} get domain ${DOMAINUID} -o=jsonpath='{.spec.restartVersion}')
if [ $? = 0 ]; then
  # we enter here only if the previous command succeeded

  nextRV=$((currentRV + 1))

  echo "@@ Info: Rolling domain '${DOMAINUID}' in namespace '${NAMESPACE}' from restartVersion='${currentRV}' to restartVersion='${nextRV}'."

  kubectl -n ${NAMESPACE} patch domain ${DOMAINUID} --type='json' \
    -p='[{"op": "replace", "path": "/spec/restartVersion", "value": "'${nextRV}'" }]'
fi

    Here’s a similar sample script for introspectVersion:

    #!/bin/bash
NAMESPACE=${1:-sample-domain1-ns}
DOMAINUID=${2:-sample-domain1}
currentIV=$(kubectl -n ${NAMESPACE} get domain ${DOMAINUID} -o=jsonpath='{.spec.introspectVersion}')
if [ $? = 0 ]; then
  # we enter here only if the previous command succeeded

  nextIV=$((currentIV + 1))

  echo "@@ Info: Rolling domain '${DOMAINUID}' in namespace '${NAMESPACE}' from introspectVersion='${currentIV}' to introspectVersion='${nextIV}'."

  kubectl -n ${NAMESPACE} patch domain ${DOMAINUID} --type='json' \
    -p='[{"op": "replace", "path": "/spec/introspectVersion", "value": "'${nextIV}'" }]'
fi

  • You can use a WebLogic Kubernetes Operator sample script that invokes the same commands that are described in the previous bulleted item.

    • See patch-restart-version.sh and patch-introspect-version.sh in the kubernetes/samples/scripts/create-weblogic-domain/model-in-image/utils/ directory.
    • Or, see the more advanced introspectDomain.sh and rollDomain.sh among the Domain lifecycle sample scripts.