Skip to content

Application Package Definition

This section defines the application package provided by an “Application Developer” who has implemented the application and aims to provide it to Margo-conformant systems. The application package comprises:

  • The application description: a YAML document with the element kind defined as ApplicationDescription, which is stored in a file (e.g., margo.yaml) and contains information about the application's metadata (e.g., description, icon, release notes, license file, etc.), application supported deployment configurations (e.g, Helm charts, Docker Compose package), and configurable application parameters. There SHALL be only one YAML file in the package root of kind ApplicationDescription.
  • The resources, which are additional information about the application (e.g., manual, icon, release notes, license file, etc.) that can be provided in an application catalog or marketplace.

The application package has the following file/folder structure:

/                           # REQUIRED top-level directory 
└── application description # REQUIRED a YAML document with element 'kind' as 'ApplicationDescription' stored in a file  (e.g., 'margo.yaml')
└── resources               # OPTIONAL folder with application resources (e.g., icon, license file, release notes) that can be displayed in an application catalog

An application aggregates one or more OCI Containers. While the application package is made available in an application registry, the referenced OCI artifacts are stored in a remote or local registry.

Note
Application catalogs or marketplaces are out of scope for Margo. The exact requirements of the marketing material shall be defined by the application marketplace beyond outlined mandatory content.

The deployment profiles specified in the application description SHALL be defined as Helm Charts AND/OR Docker Compose components.

  • To target devices, which run Kubernetes, applications must be packaged as Helm charts using Helm V3.
  • To target devices, which deploy applications using Docker Compose, applications must be packaged as a tarball file containing the docker-compose.yml file and any additional artifacts referenced by the docker compose file (e.g., configuration files, environment variable files, etc.). It is highly recommend to digitally sign this package. When digitally signing the package PGP MUST be used.

Investigation Needed: We plan to do a security review of this package definition later. During this review we will revisit the way the Docker Compose tarball file should be signed. We will also discuss how we should handle secure container registries that require a username and password.

Investigation Needed: We need to determine what impact, if any, using 3rd party helm charts has on being Margo compliant.

Investigation Needed: Missing in the current specification are ways to define the compatibility information (resources required to run, application dependencies) as well as required infrastructure services such as storage, message queues/bus, reverse proxy, or authentication/authorization/accounting.

If either one cannot be implemented it MAY be omitted but Margo RECOMMENDS defining deployment profiles as both Helm chart AND Docker Compose components to strengthen interoperability and applicability.

Note A device running the application will only install the application using either Docker Compose files or Helm Charts but not both.

Application Description

The application description has the purpose of presenting the application, e.g., on an application catalog or marketplace from where an end user selects an application to be installed. The end user defines an ApplicationDeployment by specifying configuration parameters for an ApplicationDescription. An ApplicationDeployment defines the desired state for an application.

Application Description Example

A simple hello-world example of an ApplicationDescription is shown below:

apiVersion: margo.org/v1-alpha1
kind: ApplicationDescription
metadata:
  id: com-northstartida-hello-world
  name: Hello World
  description: A basic hello world application
  version: "1.0"
  catalog:
    application:
      icon: ./resources/hw-logo.png
      tagline: Northstar Industrial Application's hello world application.
      descriptionFile: ./resources/description.md
      releaseNotes: ./resources/release-notes.md
      licenseFile: ./resources/license.pdf
      site: http://www.northstar-ida.com
      tags: ["monitoring"]
    author:
      - name: Roger Wilkershank
        email: rpwilkershank@northstar-ida.com
    organization:
      - name: Northstar Industrial Applications
        site: http://northstar-ida.com
deploymentProfiles:
  - type: helm.v3
    components:
      - name: hello-world
        properties:  
          repository: oci://northstarida.azurecr.io/charts/hello-world
          revision: 1.0.1
          wait: true
parameters:
  greeting:
    value: Hello
    targets:
    - pointer: global.config.appGreeting
      components: ["hello-world"]
  greetingAddressee:
    value: World
    targets:
    - pointer: global.config.appGreetingAddressee
      components: ["hello-world"]
configuration:
  sections:
    - name: General Settings
      settings:
        - parameter: greeting
          name: Greeting
          description: The greeting to use.
          schema: requireText
        - parameter: greetingAddressee
          name: Greeting Addressee
          description: The person, or group, the greeting addresses.
          schema: requireText
  schema:
    - name: requireText
      dataType: string
      maxLength: 45
      allowEmpty: false

An example of an ApplicationDescription defining deployment profiles for both cases, Helm chart as well as Docker Compose, is shown below.

apiVersion: margo.org/v1-alpha1
kind: ApplicationDescription
metadata:
  id: com-northstartida-digitron-orchestrator
  name: Digitron orchestrator
  description: The Digitron orchestrator application
  version: 1.2.1 
  catalog:
    application:
      icon: ./resources/ndo-logo.png
      tagline: Northstar Industrial Application's next-gen, AI driven, Digitron instrument orchestrator.
      descriptionFile: ./resources/description.md
      releaseNotes: ./resources/release-notes.md
      licenseFile: ./resources/license.pdf
      site: http://www.northstar-ida.com
      tags: ["optimization", "instrumentation"]
    author:
      - name: Roger Wilkershank
        email: rpwilkershank@northstar-ida.com
    organization:
      - name: Northstar Industrial Applications
        site: http://northstar-ida.com
deploymentProfiles:
  - type: helm.v3
    components:
      - name: database-services
        properties: 
          repository: oci://quay.io/charts/realtime-database-services
          revision: 2.3.7
          wait: true
          timeout: 8m30s
      - name: digitron-orchestrator
        properties:
          repository: oci://northstarida.azurecr.io/charts/northstarida-digitron-orchestrator
          revision: 1.0.9
          wait: true
  - type: docker-compose
    components:
      - name: digitron-orchestrator-docker
        properties:
          packageLocation: https://northsitarida.com/digitron/docker/digitron-orchestrator.tar.gz
          keyLocation: https://northsitarida.com/digitron/docker/public-key.asc
parameters:
  idpName:
    targets:
      - pointer: idp.name
        components: ["digitron-orchestrator"]
      - pointer: ENV.IDP_NAME
        components: ["digitron-orchestrator-docker"]
  idpProvider:
    targets:
      - pointer: idp.provider
        components: ["digitron-orchestrator"]
      - pointer: ENV.IDP_PROVIDER
        components: ["digitron-orchestrator-docker"]
  idpClientId:
    targets:
      - pointer: idp.clientId
        components: ["digitron-orchestrator"]
      - pointer: ENV.IDP_CLIENT_ID
        components: ["digitron-orchestrator-docker"]
  idpUrl:
    targets:
      - pointer: idp.providerUrl
        components: ["digitron-orchestrator"]
      - pointer: idp.providerMetadata
        components: ["digitron-orchestrator"]
      - pointer: ENV.IDP_URL
        components: ["digitron-orchestrator-docker"]
  adminName:
    targets:
      - pointer: administrator.name
        components: ["digitron-orchestrator"]
      - pointer: ENV.ADMIN_NAME
        components: ["digitron-orchestrator-docker"]
  adminPrincipalName:
    targets:
      - pointer: administrator.userPrincipalName
        components: ["digitron-orchestrator"]
      - pointer: ENV.ADMIN_PRINCIPALNAME
        components: ["digitron-orchestrator-docker"]
  pollFrequency:
    value: 30
    targets: 
      - pointer: settings.pollFrequency
        components: ["digitron-orchestrator", "database-services"]
      - pointer: ENV.POLL_FREQUENCY
        components: ["digitron-orchestrator-docker"]
  siteId:
    targets:
      - pointer: settings.siteId
        components: ["digitron-orchestrator", "database-services"]
      - pointer: ENV.SITE_ID
        components: ["digitron-orchestrator-docker"]
  cpuLimit:
    value: 1 
    targets:
      - pointer: settings.limits.cpu
        components: ["digitron-orchestrator"]
  memoryLimit:
    value: 16384
    targets:
      - pointer: settings.limits.memory
        components: ["digitron-orchestrator"]
configuration:
  sections:
    - name: General
      settings:
        - parameter: pollFrequency
          name: Poll Frequency
          description: How often the service polls for updated data in seconds
          schema: pollRange
        - parameter: siteId
          name: Site Id
          description: Special identifier for the site (optional)
          schema: optionalText
    - name: Identity Provider
      settings:
        - parameter: idpName
          name: Name
          description: The name of the Identity Provider to use
          immutable: true
          schema: requiredText
        - parameter: idpProvider
          name: Provider
          description: Provider something something
          immutable: true
          schema: requiredText
        - parameter: idpClientId
          name: Client ID
          description: The client id
          immutable: true
          schema: requiredText
        - parameter: idpUrl
          name: Provider URL
          description: The url of the Identity Provider
          immutable: true
          schema: url
    - name: Administrator
      settings:
        - parameter: adminName
          name: Presentation Name
          description: The presentation name of the administrator
          schema: requiredText
        - parameter: adminPrincipalName
          name: Principal Name
          description: The principal name of the administrator
          schema: email
    - name: Resource Limits
      settings:
        - parameter: cpuLimit
          name: CPU Limit
          description: Maximum number of CPU cores to allow the application to consume
          schema: cpuRange
        - parameter: memoryLimit
          name: Memory Limit
          description: Maximum number of memory to allow the application to consume
          schema: memoryRange
  schema:
    - name: requiredText
      dataType: string
      maxLength: 45
      allowEmpty: false
    - name: email
      dataType: string
      allowEmpty: false
      regexMatch: .*@[a-z0-9.-]*
    - name: url
      dataType: string
      allowEmpty: false
      regexMatch: ^(http(s):\/\/.)[-a-zA-Z0-9@:%._\+~#=]{2,256}\.[a-z]{2,6}\b([-a-zA-Z0-9@:%_\+.~#?&//=]*)$
    - name: pollRange
      dataType: integer
      minValue: 30
      maxValue: 360
      allowEmpty: false
    - name: optionalText
      dataType: string  
      minLength: 5
      allowEmpty: true
    - name: cpuRange
      dataType: double
      minValue: 0.5
      maxPrecision: 1
      allowEmpty: false
    - name: memoryRange
      dataType: integer
      minValue: 16384
      allowEmpty: false

Top-level Attributes

Attribute Type Required? Description
apiVersion string Y Identifier of the version of the API the object definition follows.
kind string Y Specifies the object type; must be 'application'.
metadata Metadata Y Metadata element specifying characteristics about the application deployment. See the Metadata Attributes section below.
deploymentProfiles []DeploymentProfile Y Deployment profiles element specifying the types of deployments the application supports. See the Deployment section below.
parameters map[string][Parameter] N Parameters element specifying the configurable parameters to use when installing, or updating, the application. See the Parameter section below.
configuration Configuration N Configuration element specifying how parameters should be displayed to the user for setting the value as well as the rules to use to validate the user's input. See the Configuration section below.

Metadata Attributes

Metadata about the application.

Attribute Type Required? Description
id string Y An identifier for the application. The id is used to help create unique identifiers where required, such as namespaces. The id must be lower case letters and numbers and MAY contain dashes. Uppercase letters, underscores and periods MUST NOT be used. The id MUST NOT be more than 200 characters.
name string Y The application's official name. This name is for display purposes only and can container whitespace and special characters.
description string N None
version string Y The application's version.
catalog Catalog Y Catalog element specifying the application catalog details used to display the application in an application catalog or marketplace. See the Catalog section below.

Catalog Attributes

Catalog metadata for displaying the application.

Attribute Type Required? Description
application ApplicationMetadata N Application element specifying the application specific metadata. See the Application Metadata section below.
author []Author N Author element specifying metadata about the application's author. See the Author Metadata section below.
organization []Organization Y Organization element specifying metadata about the organization/company providing the application. See the Organization Metadata section below.

ApplicationMetadata Attributes

Metadata specific to the application.

Attribute Type Required? Description
descriptionFile string N Link to the file containing the application's full description. The file should be a markdown file.
icon string N Link to the icon file (e.g., in PNG format).
licenseFile string N Link to the file that details the application's license. The file should either be a plain text, markdown or PDF file.
releaseNotes string N Statement about the changes for this application's release. The file should either be a markdown or PDF file.
site string N Link to the application's website.
tagline string N The application's slogan.
tags []string N An array of strings that can be used to provide additional context for the application in a user interface to assist with task such as categorizing, searching, etc.

Author Attributes

Information about the application's author.

Attribute Type Required? Description
name string N The name of the application's creator.
email string N Email address of the application's creator.

Organization Attributes

Information about the providing organization.

Attribute Type Required? Description
name string Y Organization responsible for the application's development and distribution.
site string N Link to the organization's website.

DeploymentProfile Attributes

Represents a deployment configuration for the application.

Attribute Type Required? Description
type string Y Indicates the components's deployment configuration. The values are helm.v3 to indicate the component's package format is Helm version 3 and docker-compose to indicate the component's package format is Docker Compose. When installing the application on a device supporting the Kubernetes platform all helm.v3 components, and only helm.v3 components, will be provided to the device in same order they are listed in the application description file. When installing the application on a device supporting docker-compose all docker-compose components, and only docker-compose components, will be provided to the device in the same order they are listed in the application description file. The device will install the components in the same order they are listed in the application description file.
components []Component Y Component element indicating the components to deploy when installing the application. See the Component section below.

Component Attributes

A class representing a component of a deployment profile.

Attribute Type Required? Description
name string Y A unique name used to identify the component package. For helm installations the name will be used as the chart name. The name must be lower case letters and numbers and MAY contain dashes. Uppercase letters, underscores and periods MUST NOT be used.
properties ComponentProperties Y A dictionary element specifying the component packages's deployment details. See the Component Properties section below.

ComponentProperties Attributes

The expected properties for the suppported deployment types are indicated below.

  • Properties for helm.v3 components
Attribute Type Required? Description
repository string Y The URL indicating the helm chart's location.
revision string Y The helm chart's full version.
wait bool N If True, indicates the device MUST wait until the helm chart has finished installing before installing the next helm chart. The default is True. The Workload Orchestration Agent MUST support True and MAY support False. Only applies if multiple helm.v3 components are provided.
timeout string N The time to wait for the component's installation to complete. If the installation does not completed before the timeout occurs the installation process fails. The format is "##m##s" indicating the total number of minutes and seconds to wait.
  • Properties for docker-compose components

Investigation Needed: We need to have more discussion about how docker-compose should be handled and what is required here. We also need to determine if there is a version of docker-compose that needs to be specified. The docker compose schema version has been deprecated so it's not clear what we would even use for this if we wanted to.

Attribute Type Required? Description
packageLocation string Y The URL indicating the Docker Compose package's location.
keyLocation string N The public key used to validated the digitally signed package. It is highly recommend to digitally sign the package. When signing the package PGP MUST be used.
wait bool N If True, indicates the device MUST wait until the Docker Compose file has finished starting up before starting the next Docker Compose file. The default is True. The Workload Orchestration Agent MUST support True and MAY support False. Only applies if multiple docker-compose components are provided.
timeout string N The time to wait for the component's installation to complete. If the installation does not completed before the timeout occurs the installation process fails. The format is "##m##s" indicating the total number of minutes and seconds to wait.

Defining configurable application parameters

To allow customizable configuration values when installing an application, the application description defines the parameters and configuration sections giving the application vendor control over what can be configured when installing, or updating, an application. The configuration section describes how the workload orchestration software vendor must display parameters to the user to allow them to specify the values. The schema section describes how the workload orchestration software vendor must validate the values provided by the user before the application is installed or updated.

Note: At this point the specification only deals with parameter values provided by the user as part of installing, or updating, the application. We anticipate parameter values to come from other sources, such as the device, in the future and not only from the user.

Parameter Attributes

Defines a configurable parameter for the application.

Attribute Type Required? Description
name string Y Name of the parameter.
value <see description> N The parameter's default value. Accepted data types are string, integer, double, boolean, array[string], array[integer], array[double], array[boolean].
targets []Target Y Used to indicate which component the value should be applied to when installing, or updating, the application. See the Target section below.

Target Attributes

Specifies where the parameter applies in the deployment.

Attribute Type Required? Description
pointer string Y The name of the parameter in the deployment configuration. For Helm deployments, this is the dot notation for the matching element in the values.yaml file. This follows the same naming convention you would use with the --set command line argument with the helm install command. For docker-compose deployments, this is the name of the environment variable to set.
components []string Y Indicates which deployment profile [component](#component-attributes the parameter target applies to. The component name specified here MUST match a component name in the deployment profiles section.

Configuration Attributes

Configuration layout and validation rules.

Attribute Type Required? Description
sections []Section Y Sections are used to group related parameters together, so it is possible to present a user interface with a logical grouping of the parameters in each section. See the Section section below.
schema []Schema Y Schema is used to provide details about how to validate each parameter value. At a minimum, the parameter value must be validated to match the schema's data type. The schema indicates additional rules the provided value must satisfy to be considered valid input. See the Schema section below.

Section Attributes

Named sections within the configuration layout.

Attribute Type Required? Description
name string Y The name of the section. This may be used in the user interface to show the grouping of the associated parameters within the section.
settings []Setting Y Settings are used to provide instructions to the workload orchestration software vendor for displaying parameters to the user. A user MUST be able to provide values for all settings. See the Setting section below.

Setting Attributes

Individual configuration settings.

Attribute Type Required? Description
parameter string Y The name of the parameter the setting is associated with.
name string Y The parameter's display name to show in the user interface.
description string N The parameters's short description to provide additional context to the user in the user interface about what the parameter is for.
immutable boolean N If true, indicates the parameter value MUST not be changed once it has been set and used to install the application. Default is false if not provided.
schema string Y The name of the schema definition to use to validate the parameter's value. See the Schema section below.

Schema Attributes

Defines data type and rules for validating user provided parameter values. Subclasses (see below) define for each data type their own set of validation rules that can be used. The value MUST be validated against all rules defined in the schema.

Attribute Type Required? Description
name string Y The name of the schema rule. This used in the setting to link the setting to the schema rule.
dataType string Y Indicates the expected data type for the user provided value. Accepted values are string, integer, double, boolean, array[string], array[integer], array[double], array[boolean]. At a minimum, the provided parameter value MUST match the schema's data type if no other validation rules are provided.

  • TextValidationSchema Attributes

    (Subclass of Schema)

    Extends schema to define a string/text-specific set of validation rules that can be used.
Attribute Type Required? Description
allowEmpty boolean N If true, indicates a value must be provided. Default is false if not provided.
minLength integer N If set, indicates the minimum number of characters the value must have to be considered valid.
maxLength integer N If set, indicates the maximum number of characters the value must have to be considered valid.
regexMatch string N If set, indicates a regular expression to use to validate the value.

  • BooleanValidationSchema Attributes

    (Subclass of Schema)

    Extends schema to define a boolean-specific set of validation rules that can be used.
Attribute Type Required? Description
allowEmpty boolean N If true, indicates a value must be provided. Default is false if not provided.

  • NumericIntegerValidationSchema Attributes

    (Subclass of Schema)

    Extends schema to define a integer-specific set of validation rules that can be used.
Attribute Type Required? Description
allowEmpty boolean N If true, indicates a value must be provided. Default is false if not provided.
minValue integer N If set, indicates the minimum allowed integer value the value must have to be considered valid.
maxValue integer N If set, indicates the maximum allowed integer value the value must have to be considered valid.

  • NumericDoubleValidationSchema Attributes

    (Subclass of Schema)

    Extends schema to define a double-specific set of validation rules that can be used.
Attribute Type Required? Description
allowEmpty boolean N If true, indicates a value must be provided. Default is false if not provided.
minValue float N If set, indicates the minimum value to be considered valid.
maxValue float N If set, indicates the maximum value to be considered valid.
minPrecision integer N If set, indicates the minimum level of precision the value must have to be considered valid.
maxPrecision integer N If set, indicates the maximum level of precision the value must have to be considered valid.

  • SelectValidationSchema Attributes

    (Subclass of Schema)

    Extends schema to define a specific set of validation rules that can be used for select options.
Attribute Type Required? Description
allowEmpty boolean N If true, indicates a value must be provided. Default is false if not provided.
multiselect boolean N If true, indicates multiple values can be selected. If multiple values can be selected the resulting value is an array of the selected values. The default is false if not provided.
options []string Y This provides the list of acceptable options the user can select from. The data type for each option must match the parameter setting’s data type.