Features
Overview
Features are building blocks for constructing Workload Profiles. They bundle predefined properties and specific UI / API behavior.
Use can use features to help build Custom Workload Profiles quickly. The Platform Orchestrator’s built-in Workload Profiles are also composed out of features.
The following features are available. Keep in mind that some features have dependencies on others to work, as stated in the Requires column.
Runtime only features don’t influence the editing interface of a Workload, but are used to enable specific capabilities when viewing a running Workload.
Top-level features
| Feature | Description | Requires |
|---|---|---|
humanitec/annotations |
Defined annotations on your Workload |
|
humanitec/containers |
Contains a list of container. The available container sub-features are described below. | |
humanitec/ingress |
[DEPRECATED - use a route instead] Configure an ingress resource |
humanitec/service to add the necessary ports |
humanitec/labels |
Defined labels on your Workload |
|
humanitec/schedules |
Define schedules e.g. in a cronjob Workload | |
humanitec/service-account |
Specify a service account | |
humanitec/service |
Define service ports and container ports | |
humanitec/volumes |
Define additional volumes. (Usually hidden) | |
humanitec/image-pull-secrets |
Define image pull secrets. (Required if you Humanitec manages your registry credentials or use the built in registry) | |
humanitec/extra-containers |
Additional containers that might be injected by the Platform Orchestrator. (Usually hidden) | |
humanitec/extra-variables |
Additional variables that might be injected by the Platform Orchestrator. (Usually hidden) | |
humanitec/extra-volumes |
Additional volumes that might be injected by the Platform Orchestrator. (Usually hidden) | |
humanitec/replicas |
(Runtime only) Enable the modification of the replica count in the UI. |
Sub-features
Sub-features are usually used inside a humanitec/container collection.
| Feature | Description | Requires |
|---|---|---|
humanitec/image |
Select a container image. | |
humanitec/variables |
Provides variables that can be used in a container, with support for resolving Humanitec placeholders to resources and values. | humanitec/env (inside humanitec/container) to mount the resulting environment variables. humanitec/annotations to re-deploy your Workload in case of changes. |
humanitec/files |
Mount files as volumes | humanitec/volume-mounts (inside humanitec/container) to mount the resulting volumes.humanitec/extra-variables to hold the file content. |
humanitec/volume-mounts |
Define volume mount inside the container | |
humanitec/probe |
Configure a probe (can be used inside liveness or readiness probes) | |
humanitec/resources |
Defined container resources | |
humanitec/overrides |
Use for CMD or ARG overrides | |
humanitec/envs |
Define environment variables. (Usually hidden) | |
humanitec/logs |
(Runtime only) Surface container logs inside the UI. |
JSON schema
The complete JSON input schema for each feature can be fetched from the Humanitec API.
Set the following environment variables:
| Variable | Example | Description |
|---|---|---|
HUMANITEC_TOKEN |
lsakdjhcals |
A Humanitec token of a user with the Member or above role on the Organization. |
HUMANITEC_ORG |
my-org |
The Humanitec organization the Application is in. |
humctl api get /orgs/${HUMANITEC_ORG}/workload-profile-features \
| jq .
curl -H "Authorization: Bearer $HUMANITEC_TOKEN" \
https://api.humanitec.io/orgs/${HUMANITEC_ORG}/workload-profile-features \
| jq .
humanitec/annotations
The annotations feature defines Annotations that are added to Pods generated for the Workload. Depending on how this feature is implemented by the Workload Profile itself, this may only make up a subset of annotations on the Pod.
Annotations are defined as a map with keys and values.
Keys are made up of an optional prefix followed by a name, separated by a slash (/).
- The name segment is required and must be 63 characters or less, beginning and ending with an alphanumeric character (
[a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. - The prefix is optional. If specified, the prefix must be a DNS subdomain: a series of DNS labels separated by dots (
.), not longer than 253 characters in total, followed by a slash (/).
Values do not have any validation requirements.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"annotations": {
"annotationkey": "annotationvalue",
"humanitec.io/managed-by": "Score"
},
"service": {
"annotations": {
"serviceannotationkey": "serviceannotationvalue"
}
}
}
humanitec/containers
The containers feature allows containers to be added to a Workload. The structure is a map with user-provided IDs as keys and container objects as values. Containers can have various sub-features.
humanitec/containers - envs
Define environment variables. Environment variables defined via the Score extension file don’t support placeholders. They aren’t exposed by default in the UI.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"env": [
{
"name": "SOME",
"value": "VARIABLE"
}
],
"id": "demo",
"image": "registry/my-image:1.0.0"
}
}
}
humanitec/containers - files
The top level of the files object is a map with file paths as keys and file objects as values. The file paths must be rooted and include at least one directory. They cannot be nested inside any mount points defined in volume_mounts.
Note that in the Workload Profile Definition, the features volume_mounts and extra-variables must also be configured as they are a required dependency.
| Property | Type | Description |
|---|---|---|
mode |
String | A Unix style permission bitmask in Octal format. |
value |
String | The content of the file. |
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"files": {
"/app/default.config": {
"mode": "0644",
"value": "[config]\nkey=value\n"
}
}
}
}
}
humanitec/containers - image
Define the image of a container.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"id": "demo",
"image": "registry/my-image:1.0.0"
}
}
}
humanitec/containers - logs (runtime only)
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
(No change to the Deployment Set)
humanitec/containers - overrides
Provide overrides for container commands or arguments.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"args": [
"-c",
"while true; do printenv \u0026\u0026 sleep 60; done"
],
"command": [
"/bin/sh"
],
"id": "demo",
"image": "busybox"
}
}
}
humanitec/containers - probe
A probe can be of four types: command, http, grpc or tcp. The supported properties depend on the value of the type property.
The following properties are available in all probes:
| Property | Type | Description |
|---|---|---|
initialDelaySeconds |
Integer | Number of seconds after the container has started before probes are initiated. |
periodSeconds |
Integer | The number of seconds between probes. |
timeoutSeconds |
Integer | Number of seconds after which the probe times out. Defaults to 1 second. |
successThreshold |
Integer | Minimum consecutive successes for the probe to be considered successful after having failed. |
failureThreshold |
Integer | Minimum consecutive failures for the probe to be considered failed after having succeeded. |
Properties for type “http”
| Property | Type | Description |
|---|---|---|
headers |
Map of strings | A key value map of HTTP headers and their values. |
path |
String | The HTTP path for the request. Must start with /. |
port |
Integer | The port to connect to. Must be in range 1 - 65535. |
Usage in Score: see the complete example below.
Properties for type “command”
| Property | Type | Description |
|---|---|---|
command |
Array of strings | The command to run. |
Usage in Score:
Score file:
|
Score extension file:
|
Properties for type “grpc”
| Property | Type | Description |
|---|---|---|
port |
Integer | The port to connect to. Must be in range 1 - 65535. |
Usage in Score:
Score file:
|
Score extension file:
|
Properties for type “tcp”
| Property | Type | Description |
|---|---|---|
port |
Integer | The port to connect to. Must be in range 1 - 65535. |
Usage in Score
Score file:
|
Score extension file:
|
humanitec/containers - probe: Complete example
The Score examples below show the most commonly used http type probes. See the examples above for the other types.
The Workload Profile definition is identical regardless of the types of probes being used.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
"containers": {
"demo": {
"id": "demo",
"image": "registry/my-image:1.0.0",
"liveness_probe": {
"path": "/alive",
"port": 8080,
"type": "http"
},
"readiness_probe": {
"path": "/ready",
"port": 8080,
"type": "http"
}
}
}
humanitec/containers - resources
Specify the minimum and maximum resources required for this container. Pods will not be scheduled unless the minimum requested resources are available for all containers in a Pod on a node. The Pod will either be throttled or terminated if the maximum resource limit is reached.
The minimum resource is specified by the requests property. The maximum resource is specified by the limits property.
Each of these properties supports the following:
| Property | Type | Description |
|---|---|---|
cpu |
String | A decimal number representing the fractional number of CPUs. e.g. 0.25. |
memory |
String | The amount of memory as an integer number of bytes. The numbers can be scaled by appending E, P, T, G, M, k or their power-of-two equivalents: Ei, Pi, Ti, Gi, Mi, Ki to the end of the number. |
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"id": "demo",
"image": "registry/my-image:1.0.0",
"resources": {
"limits": {
"cpu": "0.250",
"memory": "256Mi"
},
"requests": {
"cpu": "0.025",
"memory": "64Mi"
}
}
}
}
}
humanitec/containers - variables
Environment variables are specified as a map of keys and values where both keys and values are strings. Keys must only contain alphanumeric characters, -, _ or .. There is no restriction on the values.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"id": "demo",
"image": "registry/my-image:1.0.0",
"variables": {
"API_KEY": "${values.API_KEY}"
}
}
}
}
humanitec/containers - volume-mounts
The top level of the volume_mounts object is a map with mount points paths as keys and volume mount objects as values. The mount points must be rooted paths and include at least one directory. They cannot be nested inside any other defined mount points or be a parent of any file specified in the Files section.
Both volumes provisioned via Humanitec Resources or as built-in types are supported.
Persistent Volumes are managed through the Resources system and must be referenced via their Resource ID, e.g. shared.nfs-share. Other volume types must be referenced via the definition in the volumes section, e.g. volumes.common-dir.
| Property | Type | Description |
|---|---|---|
id |
String | The resource ID or volume ID to mount. |
read_only |
Boolean | Defines whether the volume should be mounted as read-only. |
sub_path |
String | Specifies a sub-directory in the volume to mount. Must be a relative path. |
Note that in the Workload Profile Definition, the feature extra-variables must also be configured as it is a required dependency.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"id": "demo",
"image": "registry/my-image:1.0.0",
"volume_mounts": {
"/mnt/data": {
"id": "volumes.tmp-pod",
"read_only": false,
"sub_path": ""
}
}
}
},
"volumes": {
"tmp-pod": {
"source": {
"sizeLimit": "1024Mi"
},
"type": "emptyDir"
}
}
}
humanitec/labels
The labels feature defines Labels that will be added to Pods generated for the Workload. Depending on how this feature is implemented by the Workload Profile itself, this may only make up a subset of labels on the Pod.
Description
Labels are defined as a map with keys and values.
Keys are made up of an optional prefix followed by a name, separated by a slash (/).
- The name segment is required and must be 63 characters or less, beginning and ending with an alphanumeric character (
[a-z0-9A-Z]) with dashes (-), underscores (_), dots (.), and alphanumerics between. - The prefix is optional. If specified, the prefix must be a DNS subdomain: a series of DNS labels separated by dots (
.), not longer than 253 characters in total, followed by a slash (/).
Valid label value:
- Must be 63 characters or less (can be empty).
- Unless empty, must begin and end with an alphanumeric character (
[a-z0-9A-Z]). - May contain dashes (
-), underscores (_), dots (.), and alphanumerics in between.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"containers": {
"demo": {
"id": "demo",
"image": "registry/my-image:1.0.0"
},
"labels": {
"labelkey": "labelvalue"
},
"service": {
"labels": {
"servicelabelkey": "servicelabelvalue"
}
}
}
}
humanitec/replicas (runtime only)
The replicas feature is a runtime only feature. It can be used to adjust the number of replicas on Workload Profiles that are implemented using Deployments or ReplicaSets.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
(No change to the Deployment Set)
humanitec/schedules
The schedules feature defines one or more schedules under which the Workload should run as a Kubernetes CronJob.
Description
Kubernetes CronJobs must have exactly one cron expression defined for them. This feature provides the convenience of creating sets of CronJobs with the same basic configuration, but running on different schedules. As an extra level of flexibility, the command and arguments for the container can optionally be overridden.
The top level is a Map of schedule objects. The key must be a valid Humanitec ID. If empty, it will produce an error.
The schedule object has the following properties:
| Property | Type | Description |
|---|---|---|
schedule |
String | A valid cron expression. |
containers |
Object | A Map with keys of container IDs in the Workload. The values are objects containing command and arg overrides. |
This example shows schedules for a CronJob with one container with the id main-container. The schedule is every six hours.
The Score extension file specifies the humanitec/default-cronjob Workload Profile to use which supports the feature.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"schedules": {
"6-hour-run": {
"containers": {
"main-container": {
"args": [
"--hours",
"6"
]
}
},
"schedule": "15 1,7,13,19 * * *"
}
}
}
humanitec/service
The service feature defines how a service for the Workload is configured.
Description
The top level of the service feature only contains the property ports.
The ports property is a Map or port objects. The Key must be a valid Humanitec ID.
The port object has the following properties:
| Property | Type | Description |
|---|---|---|
service_port |
Integer | The port exposed by the service. Must be in range 1 - 65535 |
container_port |
Integer | The port a container in the Pod is listening on. Traffic will be mapped from service_port to container_port. If not specified, no mapping will occur. Must be in range 1 - 65535. |
protocol |
String | Must be one of TCP, UDP or SCTP. |
This example shows a service configured with two ports. One exposes port 8080 and maps to port 3001 on the container. The other listens on 90245 expecting a UDP connection.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file: |
Resulting Deployment Set snippet:
{
"service": {
"www": {
"container_port": 3001,
"protocol": "TCP",
"service_port": 8080
},
"stream": {
"container_port": 19245,
"protocol": "UDP",
"service_port": 19245
}
}
}
humanitec/service-account
The service-account feature defines the Kubernetes Service Account that Pods in the Workload should run as. It does not manage the creation of that Service Account.
Description
The property is just a string which must be a service account that exists in the cluster.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"serviceAccountName": "data-access-service-account"
}
humanitec/volumes
The volumes feature defines volumes that are not provisioned via the Humanitec resources system for example emptyDir.
Description
The top level of the volumes feature is a map of volumes. The Keys must be valid Humanitec IDs.
The volume object has the following properties:
| Property | Type | Description |
|---|---|---|
source |
Object | This must follow the Kubernetes Volume Type source schema depending on the type specified in type. |
type |
String | A valid Kubernetes Volume Type. |
The example below shows an emptyDir with a 1 GB size limit. Note that it covers the volume declaration only, not the volume mount. See the humanitec/containers - volume-mounts feature for an example on mounting the volume.
Configuration and examples
| Definition | Usage in Score |
|---|---|
Workload Profile definition:
|
Score file:
Score extension file:
|
Resulting Deployment Set snippet:
{
"volumes": {
"common-dir": {
"source": {
"sizeLimit": "1024Mi"
},
"type": "emptyDir"
}
}
}