The ambassador pattern derives its name from an ambassador, an envoy representing a country overseas. You can also think of an ambassador as a proxy of a particular application. Let’s say, for example, that you have migrated one of your existing Python Flask applications to containers, and one of your containers needs to communicate with a Redis database. The database always existed in the local host. Therefore, the database connection details within your application contain localhost everywhere.
Now, there are two approaches you can take:
- You can change the application code and use config maps and secrets (more on these later) to inject the database connection details into the environment variable.
- You can keep using the existing code and use a second container as a TCP proxy to the Redis database. The TCP proxy will link with the config map and secrets and contain the Redis database’s connection details.
Tip
The ambassador pattern helps developers focus on the application without worrying about the configuration details. Consider using it if you want to decouple application development from config management.
The second approach solves our problem if we wish to do a like-for-like migration. We can use config maps to define the environment-specific configuration without changing the application code. The following diagram shows this approach:
Figure 5.4 – The ambassador pattern
Before we delve into the technicalities, let’s understand a config map.
Config map
A config map contains key-value pairs that we can use for various purposes, such as defining environment-specific properties or injecting an external variable at container startup or during runtime.
The idea of the config map is to decouple the application with configuration and to externalize configuration at a Kubernetes level. It is similar to using a properties file, for example, to define the environment-specific configuration.
The following diagram explains this beautifully:
Figure 5.5 – Config maps
We will use ConfigMap to define the connection properties of the external Redis database within the ambassador container.
