►
From YouTube: Cloud Foundry CAB call recording 14th Oct 2021
Description
Recording from the Cloud Foundry Community Advisory Board call held on 14th October 2021.
Agenda:
1. Update about the CF-for-k8s SIG call ... scope, naming, etc.
2. We will get updates about the latest on the CF community working groups and new governance model.
3. Demo by Peter Wagner of datev.de about Cloud Foundry Sidecars.
A
Yeah,
thank
you.
Everyone
for
joining
the
cab
call.
This
is
the
october
cab
call
for
the
cloud
foundry
community
first
item
we
have
on
the
agenda
is
some
updates
from
bird
rock
andrew.
Do
you
want
to
take
it
away.
C
B
The
meeting
to
meet
that
need,
and
so
it'll
be
focused
around
a
broader
set
of
topics
that
are
anything
in
that
space
and
it's
also
going
to
be
a
place
to
talk
about
a
newly
approved
working
group.
That
is
the
cloud
foundry
on
kubernetes
space.
So
that'll
be
anyone
that
wants
to
talk
about
the
new
projects
that
we've
spun
up
the
cfk's
api
and
cf
gates
controllers,
which
are
like
a
new
interpretation
of
the
cloud
foundry
api
on
kubernetes,
as
well
as
any
other
projects
that
people
want
to
bring
up
or
any
other
topics.
B
B
So
that's
sort
of
the
the
short
blurb
and
we
really
love
for
people
to
come
out
again.
It's
a
bi-weekly
meeting
and
I'll
be
posting
requests
for
topics
on
the
cf
kate's
dev
channel
on
the
cloud
foundry
slack.
A
Going
once
going
twice
thanks
andrew
obviously,
the
invitation
for
that
call
is
also
available
on
the
cloud
foundry
calendar
so
folks
that
are
interested
in
either
contributing
or
sort
of
working
with
the
community
in
shaping
the
future
of
how
cloud
foundry
will
work
on
kubernetes.
B
A
A
So
the
next
sort
of
big
item
we
had
on
the
agenda
was
to
give
folks
an
update
about
where
we
stand
with
respect
to
the
different
working
groups
that
are
being
formed
to
manage
the
cloud
foundry
projects
in
terms
of
the
origin
of
these
changes
as
you're
all
you
know
quite
well
aware
we
had
the
technical
oversight
committee
elections
conclude
a
few
months
ago
and
since
then
the
toc
has
been
hard
at
work
in
somewhat
changing
the
way
we
have
governed
the
cf
projects
so
far,
so
we're
transitioning
from
a
pmc
kind
of
governance
to
more
of
a
working
groups,
kind
of
model.
B
A
Get
into
the
technicalities
of
what
the
different
models
are,
but
we
need
to
be
aware
against
that.
There
are
six
different
working
groups
and
each
of
whom
are
responsible
for
like
a
particular
area
of
the
cloud
foundry
tool
itself
and
the
six
groups
that
the
six
working
groups
that
we
have
are
the
app
runtime
interfaces.
A
There's
a
pocket,
centric
working
group
there's
something
for
service
management,
there's
a
vulnerable
vulnerability
management,
sorry
and
there's
one
for
community
experiences
as
well.
We
have
stefan
today
on
the
call.
So
stefan
do
you
want
us
to
give
a,
or
do
you
want
to
give
a
few
updates
to
the
team?
Sorry
to
pick
on
you,
but
stefan
is
a
member
of
the
tvoc,
and
I
think
it's
great
if,
if
he
can
share
some
information
about
the
current
status
of
these
working
groups,.
C
Yeah
welcome
from
my
side,
I'm
stefan
I'm
one
of
the
members
of
the
toc,
I'm
work
with
sap
and
there
are
two
more
important
working
groups.
One
is
the
application
runtime
working
group
that
takes
over
diego
and
yeah
everything
for
the
container
management
and
a
foundation
working
group
that
takes
over
of
bosch
uaa
and
a
number
of
other
infrastructure,
closer
components
that
did
not
fit
so
well
somewhere
else.
C
What
we
are
currently
doing
is
that
we
write
down
charters
for
the
different
working
groups.
You
can
see
them
in
the
community
github
project
and
find
the
list
of
all
github
repositories
that
and
assign
them
to
the
different
working
groups
and
collect
the
initial
approvals.
That
means
basically,
the
committees
formally
but
yeah.
That's
the
steps
that
are
currently
running
and
then
each
work
group
will
get
a
workload
bleed
and
that
isn't
responsible
to
run
the
daily
business
within
the
working
group.
C
Once
it
is
established
for
all
the
working
groups,
then
the
hope
is
that
this
new,
let's
say
more
open,
more
pr
driven
process
of
collaboration
can
get
into
action,
and
one
critical
point
is
here
to
get
sufficient
approvals.
The
name
is
chosen
by
intention
because
they
have
the
responsibility
to
review
and
judge
on
incoming
prs
and
to
take
care
that
the
different
projects
are
actually
open
for
everybody.
C
I
guess
remember
correctly:
three
or
four
of
these
working
groups
are
already
finalized
finalized
in
the
sense
that
the
prs
are
committed
and
we
have
all
the
projects
and
the
initial
set
of
approvers
and
the
workgroup
lead
defined.
C
Of
course,
such
a
working
group
is
never
finished
and
it
can
change
over
time
and
it
will
change
over
time.
There
are
still
some
working
groups
in
progress.
For
instance,
the
up
runtime
interfaces
working
group
is
not
yet
finalized,
but
I
assume
that
this
will
happen
within
the
next.
Let's
say
two
weeks.
A
Yeah,
I
think
it's
been
a
process
of
a
lot
of
churning,
especially
from
the
toc
members,
and
identifying
the
right
kind
of
folks
and
having
them
on
these
different
working
groups,
and
I
guess
getting
them
to
accept
at
some
level,
but
the
toc
has
been
hard
at
work
and
just
so
folks
know,
though
doc
meets
every
tuesday.
A
That
meeting
again
is
also
available
on
the
calendar
and
we
receive
some
status
updates
about
the
different
efforts
that
they
are
taking
on.
I
think
the
like
stefan
mentioned,
there's
like
a
bunch
of
working
groups
that
are
kind
of
sort
of
you
know
finalized
for
whatever
that
means,
but
I
think
it
it
checks
the
boxes
for
what
is
like
required
at
a
minimum
to
get
the
working
groups
going
and
getting
some
of
the
work
started,
and
I
guess
there's
like
one
working
group.
A
I
think
the
community
experience
working
group
that
that
is
still
the
one
that
that
needs
to
see
a
little
more
participation
and
obviously
the
toc
is
aware
of
that
and
working
on
it.
So
yeah.
So
just
wanted
to
share
that
information
on
this
call
as
well,
and
you
know
if
folks
have
any
feedback.
You
know
you're
welcome,
to
share
them
to
take
a
look
at
the
repo
I've
posted
it
on
the
chat
and,
if
folks
want
to
interact
directly
or
comment
on
the
repos
and
the
issues
or
the
prs
that
are
there.
A
Okay,
quiet
group
today,
thanks
stefan
for
for
jumping
in
and
sharing
all
of
those
updates.
So
for
the
I
guess,
the
third
part
of
the
call
I
had
invited
peter
from
that
f
dot.
T
e
peter.
Do
you
want
to
quickly
introduce
yourself?
D
Hello,
everyone
glad
to
be
here,
I'm
peter.
I
work
at
dartf
eg
in
germany,
it's
a
big
software
company,
one
of
the
biggest
in
europe,
and
we
develop
software
for
tax
lawyers,
auditors
and
their
clients,
and
that's
mainly
software
about
text
declarations,
bookkeeping,
accounting
and
so
on,
and
we
have
our
own
data
center
and
we
use
cloud
cloud
foundry
as
our
platform
as
a
service
system.
A
Right
so
I
had
seen
a
tweet
from
one
of
peter's
colleagues
about
them
doing
a
presentation
on
site
cars
and
them
showcasing
internally.
I
guess
about
you
know
some
of
these
nifty
cloud
foundry
features
and
I
reached
out
to
them
asking
them
if
they
wanted
to
demo
some
of
this,
and
you
know
basically
do
a
show
and
tell
get
some
feedback.
A
What
have
you
and
so
here
again
was
kind
enough
to
introduce
me
to
peter
who
actually
gave
the
talk
and
in
turn
peter
was
happy
to
share
some
of
his
work
with
us
and
basically
showcase
what
they're
doing
and
how
they've
been
taking
advantage,
in
particular
about
side,
cars
and
cf
and
stuff
so
yeah
peter?
Why
don't
you
kick
things
off
and
show
us
the
good
stuff.
D
Thanks
a
lot
first,
the
question
to
all:
are
you
all
familiar
with
the
side
car
pattern,
or
should
I
introduce
a
little
bit.
D
You're
all
familiar
okay,
then
I'm
going
to
start
with
how
to
you
use
side,
crossing
cloud
foundry
and
what
we
did
with
it.
So
let
me
share
my
screen.
I
hope
it's
working.
D
If
you're
familiar
with
something
I'm
talking
about
please
step
in,
then
I
can
jump
over
and
go
straight
to
the
demo.
Otherwise,
I
give
a
bit
of
introduction
how
sidecasting
cloud
found
you
are
working.
D
So
how
to
use
sitecast
in
cloud
foundry?
As
you
all
know,
typical
cloud
foundry
app
has
its
core
business
features.
They
are
running
inside
the
app
process
which
is
surrounded
by
an
app
container
and
the
cloud
foundry
jager
cells.
D
Those
processes
has
to
communicate
so
it's
an
inter-process
communication
between
sitecar
and
your
business
application
cloud.
Foundry
offers
several
opportunities.
How
to
communicate
between
both
one
is.
You
can
use
the
file
system.
Well,
for
example,
the
service
can
write
into
a
file
and
the
sitecar
can
read
this
file
and
do
something
with
the
data
written
in
there.
D
D
If
you
have
your
application,
it's
typically
that
the
process
is
running
on
port
8080,
because
all
cloud
foundry
requests
are
default,
forwarded
to
this
port.
Now
the
sidecar
process
has
to
run
on
another
on
another
port.
D
In
this
example
8083,
and
if
a
request
comes
in
the
cloud,
foundry
will
forward
the
request
to
the
airport
process,
and
then
the
process
can
do
its
business
functionality
and
if
it
needed
the
site
car
features,
it
can
send
a
call,
a
request
to
the
sidecut
process
using
localhost
and
the
port.
The
site
color
is
listening
to.
D
D
Yes,
first
of
all
left,
I
forgot
there
are
two
possibilities:
how
you
can
deploy
a
sidecar
to
cloud
foundry.
The
first
is,
you
can
create
your
own
custom,
build
pack,
and
then
this
build
pack.
You
can
integrate
the
sidecar
so
that
everyone
who
uses
your
build
pack
has
automatically
the
sidecut
deployed
into
this
application.
D
D
The
demo
has
this
example:
that's
of
how
how
we
started.
First,
we
have
our
demo
up
with
our
business
functionality,
that's
running
and
it's
as
on
own
application
in
cloud
foundry.
Then
we
needed
some
security
features
like
an
authentication
and
we
first
decided
to
deploy
another
app
in
cloud
foundry.
A
security
app
and
the
security
app
is
called
by
the
our
external
clients.
D
B
D
D
So,
as
you
can
see
here
in
our
cloud
foundry
space,
there
are
two
apps
running
a
demo:
sidecar
standalone
and
a
cf-cap
security
standalone
that
are
the
these
two
applications
quickly.
Show
you
what
they're
doing
it's
pretty
simple.
The
demo
sidecar
standalone
has
a
greeting
api.
If
you
send
a
request
to
it,
you
can
see
here
it's
returning
hello
world.
D
When
we
use
the
securities
standalone
app
with
the
greeting
api
without
authentication,
it
will
return
fully.
Oh,
yes,
it's
http
status401
on
autoresize.
If
I
add
a
typical
http
authority,
authorization
with
username
and
password
in
this
example,
then
it
will
return
hello
user.
So
it's
called
the
demo
app,
which
returns
the
string
and
in
between
is
the
authentication
that
the
the
user
is
allowed
to
access.
It.
D
D
I
prepared
already
a
new
manifest,
including
a
sidecar,
and
what
you
have
to
do.
There's
several
things.
First
of
all,
there's
a
sidecar
configuration.
So
with
this
you
can
add
one
or
more
sidecars
to
be
deployed
with
the
application.
Sidecast
has
always
a
name
has
some
memory
requirements
and
a
process
type.
In
my
example,
the
process
type
is
web.
There
are
a
few
others
you
can
use
for
my
example
because
of
the
http
endpoint,
it's
a
web
and
that's
some
more.
D
The
stuff
that
was
most
difficult
to
be
to
get
able
to
be
to
run
is
the
command.
The
commander
is
well
the
command
here
that
cloud
founder
uses
to
start
the
sidecar
that
depends
on
the
technology
you
are
using
in
their
sitecar.
In
this
example,
the
sidecar
is
also
on
java
application.
C
D
We
had
some
difficult.
It
was
difficult
to
find
the
correct
path
for
the
java
runtime,
but
we
weren't
able
to
find
any
documentation
what
you
have
to
use.
So
it
was
a
bit
of
research
to
make
to
be
made
to
find
this
right
one
and
to
get
it
work
working
another
tricky
part
of
using
sidecast
was
http
is
are
the
ports
in
this?
In
the
example
you
can
see,
there
are
several
two
part.
D
Things,
first
of
all
this
one,
the
java
opts
server
port
cli
equals
8083.
D
D
D
D
D
The
next
thing
we
have
to
do
is
we
have
to
add
the
manifest
to
this
application.
There's
a
command
called
cf
apply
manifest
with
them
manifest.
D
Now
the
manifest
will
be
applied
to
the
application,
then.
Finally,
we
have
to
push
the
application
to
cloud
foundry
there's
another
thing
you
have
to
do.
First
before
you
can
push
the
application,
it's
all
one
single
deployment,
so
you
have
to
integrate
all
your
sidecars
into
the
artifact
you're
deploying
for
your
application.
D
D
D
Looks
there
are
two
things
yeah
interesting.
As
I've
mentioned,
there
will
be
two
jvm
processors
running
and
here
you
can
see
I'm
using
spring
boot.
There
are
two
spring
boot
well
icons
and
text,
one
for
the
sidecar
and
one
for
the
application
in
the
locks
you
can
see
which
processor
creates
this
lock
line.
D
Here
you
you
have
the
the
text,
sidecar
security
site
cut,
so
that's
unlock
written
by
the
sidecar
process
and
the
app
proc
web
zero.
For
example.
This
line
that's
a
lot
written
by
the
demo
application,
the
original
application.
D
Well,
my
look
farts
yes
here.
My
look
for
my
two
lock
lines:
one
of
the
security
side,
car
prints
out
the
username
and
one
of
the
process
of
the
app
which
says
hello.
I
I'm
in
the
you're
in
the
hello
world
controller,
so
you
can
see
both
with
the
request.
Both
processes
were
attached.
First,
the
security
sidecar
and
afterwards
the
dim
web.
D
D
It
will
look
into
the
app
folder
there
we
can
see.
The
blue
folders
are
the
artifacts
of
the
demo
app
and
the
security
jar
that's
lying
in
the
upholder
tube.
That's
a
side
car
though,
if,
if
we
deploy
our
other
side,
cars,
for
example,
on
nginx
or
so
there
will
be,
the
nginx
configurations
will
be
also
in
this
add
folder,
and
that's
the
reason
why
we
have
to
integrate
the
sidebars
into
the
the
artifact
of
the
application
now
that
it
will
be-
and
this
pla
be
deployed
in
this
place.
D
We
have
a
look
at
the
parts
like
this,
then
we
can
see
the
process
with
id.
53
is
listening
to
part
8083.
So
that's
our
application,
the
demo
application
and
we
can
see
that
process
id
40
has
a
connection
established
to
this
port.
Now,
that's
the
connection
between
the
sidecar
and
our
applications.
There
you
can.
These
are
really
to
parts
into
process
communication
using
localhost
between
sidecar
and
application.
E
B
D
Our
private
cloud,
with
typically
about
20
to
30
milliseconds
when
we're
communicating
between
two
applications
and
without
car,
it's
about
two
to
five
milliseconds.
D
E
E
D
It
will
be
an
individual
decision
depending
on
the
problems
and
the
use
cases
we
have
to
solve,
for
example,
with
the
authorization
problem.
We
have
a
lot
of
use
cases
with
authorization
and
sometimes
we
use
authorization.
D
But
in
my
opinion,
it's
a
very
good
solution
for
dedicated
problems,
and
I
want
to
the
our
development
teams
to
be
able
to
decide
if
they
want
to
use
a
sidecar
or
an
api
gateway
or
implement
it
in
the
service
for
itself
or
deploy
another
application
for
this
problem.
D
But
we
will
always
evaluate
their
to
this
use
case.
A
Thanks
peter,
I
think
that
was
a
very
good
demo
quite
informative.
At
least
I
learned
like
a
bunch
of
things.
Thank
you
for
you
know,
taking
the
time
and
making
all
of
the
effort
to
you
know,
share
this
information
with
your
team
and
with
the
larger
cf
community
as
well.
So
I
really
appreciate
you
doing
that,
but
overall,
thank
you.
Everyone,
I
guess
for
attending
the
call.