Basic Patterns
This guide demonstrates fundamental TypeKro patterns through practical examples. We'll cover simple web applications, database integration, and essential concepts like resource graphs, factory functions, cross-resource references, and deployment strategies.
Simple Web Application
Let's start with the basics: a simple web application with type-safe configuration and environment-specific settings.
What You'll Build
- A web application deployment running nginx
- A service to expose the application
- Type-safe configuration with environment variants
Complete Example
typescript
import { type } from 'arktype';
import { kubernetesComposition } from 'typekro';
import { Deployment, Service } from 'typekro/simple';
// Define the application interface
const WebAppSpec = type({
name: 'string',
image: 'string',
replicas: 'number',
environment: '"development" | "staging" | "production"'
});
const WebAppStatus = type({
url: 'string',
phase: '"pending" | "running" | "failed"',
readyReplicas: 'number'
});
// Create the resource graph using imperative composition
export const simpleWebApp = kubernetesComposition(
{
name: 'simple-webapp',
apiVersion: 'example.com/v1alpha1',
kind: 'WebApp',
spec: WebAppSpec,
status: WebAppStatus,
},
// Imperative composition - resources auto-register when created
(spec) => {
// Web application deployment
const deployment = Deployment({
name: spec.name,
image: spec.image,
replicas: spec.replicas,
ports: [{ containerPort: 80 }],
// Environment-specific resource limits
resources: spec.environment === 'production'
? { cpu: '500m', memory: '1Gi' }
: { cpu: '100m', memory: '256Mi' }
});
// Service to expose the application
const service = Service({
name: `${spec.name}-service`,
selector: { app: spec.name },
ports: [{ port: 80, targetPort: 80 }],
// LoadBalancer in production, ClusterIP elsewhere
type: spec.environment === 'production' ? 'LoadBalancer' : 'ClusterIP'
});
// ✨ Return status using natural JavaScript expressions - automatically converted to CEL
return {
url: spec.environment === 'production'
? service.status.loadBalancer.ingress?.length > 0
? `http://${service.status.loadBalancer.ingress[0].ip}`
: 'pending'
: `http://${service.spec.clusterIP}`,
phase: deployment.status.readyReplicas === deployment.spec.replicas
? 'running'
: 'pending',
readyReplicas: deployment.status.readyReplicas
};
}
);Deployment Options
Option 1: Direct Deployment
Perfect for development and testing:
typescript
// deploy-direct.ts
import { simpleWebApp } from './simple-webapp.js';
async function deployDirect() {
const factory = simpleWebApp.factory('direct', {
namespace: 'development'
});
const instance = await factory.deploy({
name: 'my-webapp',
image: 'nginx:latest',
replicas: 2,
environment: 'development'
});
console.log('✅ Deployed successfully!');
// Check deployment status
const status = await factory.getStatus(instance);
console.log('📊 Status:', status);
}
deployDirect().catch(console.error);Option 2: Generate YAML
For GitOps workflows:
typescript
// generate-yaml.ts
import { writeFileSync } from 'fs';
import { simpleWebApp } from './simple-webapp.js';
// Generate ResourceGraphDefinition for KRO
const rgdYaml = simpleWebApp.toYaml();
writeFileSync('webapp-definition.yaml', rgdYaml);
// Generate production instance
const prodInstanceYaml = simpleWebApp.toYaml({
metadata: { name: 'production-webapp', namespace: 'production' },
spec: {
name: 'production-webapp',
image: 'nginx:1.24',
replicas: 5,
environment: 'production'
}
});
writeFileSync('webapp-production.yaml', prodInstanceYaml);
// Generate development instance
const devInstanceYaml = simpleWebApp.toYaml({
metadata: { name: 'dev-webapp', namespace: 'development' },
spec: {
name: 'dev-webapp',
image: 'nginx:latest',
replicas: 1,
environment: 'development'
}
});
writeFileSync('webapp-development.yaml', devInstanceYaml);
console.log('📄 YAML files generated!');Deploy with kubectl:
bash
kubectl apply -f webapp-definition.yaml
kubectl apply -f webapp-production.yamlKey Concepts Demonstrated
1. Type-Safe Configuration
The WebAppSpec type ensures your configuration is valid:
typescript
// ✅ This works
const instance = await factory.deploy({
name: 'my-app',
image: 'nginx:latest',
replicas: 3,
environment: 'production'
});
// ❌ This causes a TypeScript error
const invalidInstance = await factory.deploy({
name: 'my-app',
image: 'nginx:latest',
replicas: '3', // Error: string not assignable to number
environment: 'prod' // Error: not a valid environment
});2. Environment-Specific Configuration
Resources adapt based on the environment:
typescript
// Production gets more resources
resources: schema.spec.environment === 'production'
? { cpu: '500m', memory: '1Gi' }
: { cpu: '100m', memory: '256Mi' }
// Production gets LoadBalancer, others get ClusterIP
type: schema.spec.environment === 'production' ? 'LoadBalancer' : 'ClusterIP'3. Status Builder
The status builder uses natural JavaScript expressions that are automatically converted to CEL:
typescript
// StatusBuilder function - maps resource status to your custom status
(schema, resources) => ({
// ✨ Natural JavaScript - automatically converted to CEL
url: schema.spec.environment === 'production'
? resources.service.status.loadBalancer.ingress?.length > 0
? `http://${resources.service.status.loadBalancer.ingress[0].ip}`
: 'pending'
: `http://${resources.service.spec.clusterIP}`,
phase: resources.deployment.status.readyReplicas === resources.deployment.spec.replicas
? 'running'
: 'pending',
readyReplicas: resources.deployment.status.readyReplicas
})Database Integration
Now let's build a more complex example with a PostgreSQL database, demonstrating StatefulSets, Services, ConfigMaps, Secrets, and cross-resource references.
What You'll Build
- PostgreSQL StatefulSet with persistent storage
- Headless Service for StatefulSet pod discovery
- LoadBalancer Service for external access
- ConfigMap for database configuration
- Secret for sensitive credentials
- API application that connects to the database
Complete Database Example
typescript
import { type } from 'arktype';
import { kubernetesComposition } from 'typekro';
import { Deployment, Service, StatefulSet, ConfigMap, Secret } from 'typekro/simple';
// Define the database schema
const DatabaseSpec = type({
name: 'string',
replicas: 'number>=1',
storageSize: 'string',
databaseName: 'string',
username: 'string',
password: 'string',
externalAccess: 'boolean'
});
const DatabaseStatus = type({
ready: 'boolean',
replicas: 'number',
primaryEndpoint: 'string',
externalEndpoint: 'string'
});
// Create the database resource graph using imperative composition
const database = kubernetesComposition(
{
name: 'postgres-database',
apiVersion: 'data.example.com/v1',
kind: 'PostgresDatabase',
spec: DatabaseSpec,
status: DatabaseStatus
},
(spec) => {
// Configuration for the database
const config = ConfigMap({
name: `${spec.name}-config`,
data: {
// Database configuration
POSTGRES_DB: spec.databaseName,
POSTGRES_USER: spec.username,
PGPORT: '5432',
PGDATA: '/var/lib/postgresql/data/pgdata',
// Performance tuning
shared_preload_libraries: 'pg_stat_statements',
max_connections: '200',
shared_buffers: '256MB',
effective_cache_size: '1GB',
work_mem: '4MB'
}
});
// Secret for sensitive data
const credentials = Secret({
name: `${spec.name}-credentials`,
data: {
POSTGRES_PASSWORD: spec.password,
// Additional database users
REPLICATION_USER: 'replicator',
REPLICATION_PASSWORD: 'repl-secret-password'
}
});
// StatefulSet for PostgreSQL with persistent storage
const statefulSet = StatefulSet({
name: spec.name,
image: 'postgres:15',
replicas: spec.replicas,
serviceName: `${spec.name}-headless`,
ports: [5432],
env: {
// ✨ Reference configuration and secrets using JavaScript expressions
POSTGRES_DB: spec.databaseName,
POSTGRES_USER: spec.username,
POSTGRES_PASSWORD: spec.password,
PGDATA: '/var/lib/postgresql/data/pgdata'
}
// Note: volumeClaimTemplates would be added in full StatefulSet specification
});
// Headless service for StatefulSet pod discovery
const headlessService = Service({
name: `${spec.name}-headless`,
selector: { app: spec.name },
ports: [{ port: 5432, targetPort: 5432, name: 'postgres' }],
clusterIP: 'None' // Makes it headless
});
// Regular service for database access
const service = Service({
name: spec.name,
selector: { app: spec.name },
ports: [{ port: 5432, targetPort: 5432, name: 'postgres' }],
type: 'ClusterIP'
});
// Conditional external service
const externalService = spec.externalAccess ? Service({
name: `${spec.name}-external`,
selector: { app: spec.name },
ports: [{ port: 5432, targetPort: 5432, name: 'postgres' }],
type: 'LoadBalancer'
}) : null;
// ✨ Return status using natural JavaScript expressions - automatically converted to CEL
return {
ready: statefulSet.status.readyReplicas >= spec.replicas,
replicas: statefulSet.status.readyReplicas,
primaryEndpoint: `${service.spec.clusterIP}:5432`,
externalEndpoint: spec.externalAccess
? externalService?.status.loadBalancer.ingress?.length > 0
? `${externalService.status.loadBalancer.ingress[0].ip}:5432`
: 'pending'
: 'disabled'
};
}
);Application Connected to Database
Now let's create an API application that connects to our database:
typescript
// Application that connects to the database
const ApiAppSpec = type({
name: 'string',
image: 'string',
replicas: 'number',
databaseName: 'string'
});
const apiApp = kubernetesComposition(
{
name: 'api-with-database',
apiVersion: 'apps.example.com/v1',
kind: 'ApiApp',
spec: ApiAppSpec,
status: type({ ready: 'boolean', url: 'string' })
},
(spec) => {
// API deployment that connects to database
const api = Deployment({
name: spec.name,
image: spec.image,
replicas: spec.replicas,
ports: [8080],
env: {
// ✨ Database connection configuration using JavaScript template literals
DATABASE_URL: `postgres://app:password@${spec.databaseName}:5432/${spec.databaseName}`,
DATABASE_HOST: spec.databaseName,
DATABASE_PORT: '5432',
DATABASE_NAME: spec.databaseName,
DATABASE_USER: 'app',
// Application configuration
PORT: '8080',
NODE_ENV: 'production'
}
});
// Service for the API
const apiService = Service({
name: spec.name,
selector: { app: spec.name },
ports: [{ port: 80, targetPort: 8080 }]
});
// ✨ Return status using natural JavaScript expressions - automatically converted to CEL
return {
ready: api.status.readyReplicas > 0,
url: `http://${apiService.spec.clusterIP}`
};
}
);
// Deploy the complete system
async function deployDatabaseApp() {
// Deploy database first
const dbFactory = database.factory('direct', { namespace: 'database' });
await dbFactory.deploy({
name: 'postgres-main',
replicas: 3,
storageSize: '50Gi',
databaseName: 'myapp',
username: 'app',
password: 'secure-password',
externalAccess: true
});
// Deploy API application
const apiFactory = apiApp.factory('direct', { namespace: 'default' });
await apiFactory.deploy({
name: 'myapp-api',
image: 'myapp/api:v1.0',
replicas: 2,
databaseName: 'postgres-main'
});
}Key Database Concepts
1. StatefulSet with Persistent Storage
typescript
statefulSet: StatefulSet({
name: schema.spec.name,
image: 'postgres:15',
replicas: schema.spec.replicas,
serviceName: `${schema.spec.name}-headless`, // ✨ JavaScript template literal
ports: [5432]
})StatefulSets provide:
- Stable network identities for database pods
- Ordered deployment and scaling
- Persistent storage per pod
- Stable hostnames for replication
2. Headless vs Regular Services
typescript
// Headless service for StatefulSet internal communication
headlessService: Service({
name: `${schema.spec.name}-headless`, // ✨ JavaScript template literal
selector: { app: schema.spec.name },
clusterIP: 'None' // Makes it headless
}),
// Regular service for application access
service: Service({
name: schema.spec.name,
selector: { app: schema.spec.name },
type: 'ClusterIP'
})3. Configuration Management
typescript
// ConfigMap for non-sensitive configuration
config: simple({
name: `${schema.spec.name}-config`, // ✨ JavaScript template literal
data: {
POSTGRES_DB: schema.spec.databaseName,
POSTGRES_USER: schema.spec.username,
max_connections: '200'
}
}),
// Secret for sensitive data
credentials: Secret({
name: `${schema.spec.name}-credentials`, // ✨ JavaScript template literal
data: {
POSTGRES_PASSWORD: schema.spec.password
}
})4. Cross-Resource References
typescript
// API deployment references database
api: Deployment({
env: {
// ✨ JavaScript template literal - automatically converted to CEL
DATABASE_URL: `postgres://app:password@${schema.spec.databaseName}:5432/${schema.spec.databaseName}`
}
})YAML Integration
Integrate existing YAML manifests with TypeKro resources for gradual migration or leveraging existing infrastructure.
What You'll Build
- Bootstrap existing Kubernetes manifests
- Combine YAML files with TypeKro Enhanced resources
- Environment-specific YAML configuration
Complete Example
typescript
import { type } from 'arktype';
import { kubernetesComposition, Cel, yamlFile, yamlDirectory } from 'typekro';
import { Deployment, Service } from 'typekro/simple';
// Define schema
const HybridAppSpec = type({
name: 'string',
image: 'string',
environment: '"development" | "staging" | "production"',
useFlux: 'boolean'
});
const HybridAppStatus = type({
ready: 'boolean',
bootstrapped: 'boolean',
endpoint: 'string',
environment: 'string'
});
// Hybrid TypeKro + YAML composition
export const hybridApp = kubernetesComposition(
{
name: 'hybrid-app',
apiVersion: 'example.com/v1alpha1',
kind: 'HybridApp',
spec: HybridAppSpec,
status: HybridAppStatus,
},
(spec) => {
// Bootstrap with Flux CD (if requested)
const fluxBootstrap = spec.useFlux ? yamlFile({
name: 'flux-system',
path: 'https://github.com/fluxcd/flux2/releases/latest/download/install.yaml',
deploymentStrategy: 'skipIfExists'
}) : null;
// Environment-specific configuration
const envConfig = yamlDirectory({
name: 'env-config',
path: `./manifests/${spec.environment}`,
recursive: false,
include: ['*.yaml', '*.yml'],
exclude: ['*-secret.yaml'] // Handle secrets separately
});
// TypeKro managed application
const app = Deployment({
name: spec.name,
image: spec.image,
replicas: spec.environment === 'production' ? 3 : 1,
env: {
ENVIRONMENT: spec.environment,
FLUX_ENABLED: spec.useFlux.toString()
}
});
const service = Service({
name: `${spec.name}-service`,
selector: { app: spec.name },
ports: [{ port: 80, targetPort: 8080 }],
type: spec.environment === 'production' ? 'LoadBalancer' : 'ClusterIP'
});
// ✨ Return status using natural JavaScript expressions - automatically converted to CEL
return {
ready: app.status.readyReplicas > 0,
bootstrapped: spec.useFlux ? true : true, // YAML files don't have status
endpoint: service.status.clusterIP,
environment: spec.environment
};
}
);Directory Structure
Your project might look like:
my-app/
├── src/
│ └── hybrid-app.ts
├── manifests/
│ ├── development/
│ │ ├── configmap.yaml
│ │ └── storage.yaml
│ ├── staging/
│ │ ├── configmap.yaml
│ │ ├── storage.yaml
│ │ └── monitoring.yaml
│ └── production/
│ ├── configmap.yaml
│ ├── storage.yaml
│ ├── monitoring.yaml
│ └── backup.yaml
└── package.jsonDeploy the Hybrid Application
typescript
// deploy-hybrid.ts
import { hybridApp } from './src/hybrid-app.js';
async function deployHybridApp() {
const factory = hybridApp.factory('direct', {
namespace: 'hybrid-apps'
});
// Development deployment
await factory.deploy({
name: 'my-hybrid-app-dev',
image: 'myapp:dev-latest',
environment: 'development',
useFlux: false
});
console.log('✅ Development environment deployed');
// Production deployment with Flux
await factory.deploy({
name: 'my-hybrid-app-prod',
image: 'myapp:v1.0.0',
environment: 'production',
useFlux: true
});
console.log('✅ Production environment deployed with Flux CD');
}
deployHybridApp().catch(console.error);Key Benefits
- Gradual Migration: Keep existing YAML while adopting TypeKro
- Environment Consistency: Same structure across environments
- Type Safety: TypeKro resources get full type checking
- Status Awareness: Enhanced resources provide live cluster state
- Deployment Strategy: Control how YAML resources are applied
Common Pattern Extensions
Add Health Checks
typescript
const deployment = Deployment({
name: schema.spec.name,
image: schema.spec.image,
replicas: schema.spec.replicas,
ports: [{ containerPort: 80 }],
// Add health checks
livenessProbe: {
httpGet: { path: '/', port: 80 },
initialDelaySeconds: 30,
periodSeconds: 10
},
readinessProbe: {
httpGet: { path: '/', port: 80 },
initialDelaySeconds: 5,
periodSeconds: 5
}
});Add ConfigMap
typescript
import { kubernetesComposition } from 'typekro';
import { Deployment, Service, ConfigMap } from 'typekro/simple';
const resources = {
config: ConfigMap({
name: `${spec.name}-config`,
data: {
'nginx.conf': `
server {
listen 80;
location / {
return 200 'Hello from ${spec.name}!';
}
}
`
}
}),
deployment: Deployment({
name: spec.name,
image: spec.image,
volumeMounts: [{
name: 'config',
mountPath: '/etc/nginx/conf.d'
}],
volumes: [{
name: 'config',
configMap: { name: config.metadata.name }
}]
})
};Add Ingress
typescript
import { kubernetesComposition } from 'typekro';
import { Deployment, Service, Ingress } from 'typekro/simple';
// Only in production
const ingress = spec.environment === 'production' ? Ingress({
name: `${spec.name}-ingress`,
rules: [{
host: `${spec.name}.example.com`,
http: {
paths: [{
path: '/',
pathType: 'Prefix',
backend: {
service: {
name: service.metadata.name,
port: { number: 80 }
}
}
}]
}
}]
}) : null;Conditional Resources
Create resources only when certain conditions are met:
typescript
const app = Deployment({ /* ... */ });
// Only create external service if external access is enabled
const externalService = spec.externalAccess ? Service({
name: `${spec.name}-external`,
type: 'LoadBalancer'
}) : null;
// Only create ingress in production
const ingress = spec.environment === 'production' ? Ingress({
name: `${spec.name}-ingress`,
host: `${spec.name}.example.com`
}) : null;Testing Your Deployments
Verify Resources
bash
# Check pods
kubectl get pods -l app=my-webapp
# Check service
kubectl get service my-webapp-service
# Check your custom resource (if using KRO)
kubectl get webapp my-webapp -o yamlAccess Your Application
For development (ClusterIP):
bash
kubectl port-forward service/my-webapp-service 8080:80
curl http://localhost:8080For production (LoadBalancer):
bash
kubectl get service my-webapp-service -o jsonpath='{.status.loadBalancer.ingress[0].ip}'
curl http://<EXTERNAL-IP>Database Access
For development:
bash
kubectl port-forward service/postgres-main 5432:5432
psql -h localhost -p 5432 -U app -d myappFor external access:
bash
kubectl get service postgres-main-external -o jsonpath='{.status.loadBalancer.ingress[0].ip}'
psql -h <EXTERNAL-IP> -p 5432 -U app -d myappBest Practices
1. Use Secrets for Passwords
Always store sensitive data in Kubernetes Secrets:
typescript
credentials: Secret({
name: 'db-credentials',
data: {
POSTGRES_PASSWORD: process.env.DB_PASSWORD // From environment
}
})2. Configure Resource Limits
Set appropriate resource limits for your workloads:
typescript
deployment: Deployment({
name: 'my-app',
image: 'nginx:latest',
resources: {
requests: { cpu: '100m', memory: '256Mi' },
limits: { cpu: '500m', memory: '1Gi' }
}
})3. Use Descriptive Names
typescript
// ✅ Good
const userApiDeployment = Deployment({ name: 'user-api' });
const userApiService = Service({ name: 'user-api-service' });
// ❌ Avoid
const d1 = Deployment({ name: 'app' });
const s1 = Service({ name: 'svc' });4. Environment-Specific Configuration
typescript
const config = schema.spec.environment === 'production'
? { replicas: 5, resources: { cpu: '500m', memory: '1Gi' } }
: { replicas: 1, resources: { cpu: '100m', memory: '256Mi' } };
const deployment = Deployment({
name: schema.spec.name,
image: schema.spec.image,
replicas: config.replicas,
resources: config.resources
});5. Validate Configuration Early
typescript
async function deployApp(input: unknown) {
const spec = AppSpec(input); // Validate immediately
if (spec instanceof type.errors) {
throw new Error(`Invalid spec: ${spec.summary}`);
}
// Proceed with validated data
const factory = app.factory('direct', { namespace: 'default' });
return factory.deploy(spec);
}Next Steps
Now that you understand the basic patterns, try these examples:
- Microservices - Multiple interconnected services
- Multi-Environment - Deploy across environments
- Monitoring - Set up monitoring and observability
Or explore advanced topics:
- Status Hydration - Status hydration and cross-references
- CEL Expressions - Add dynamic logic
- Factories - Build custom factory functions
- Deployment Strategies - Learn different deployment methods