Event-Driven Automation with Brigade (eBook)

Chapter 2
Brigade Fundamentals and Core Concepts

Beneath the hood of every successful event-driven automation system lies a robust set of abstractions and guiding principles. This chapter dives deep into the engine room of Brigade, unraveling its architectural DNA, operational lifecycles, and the advanced mechanisms that empower secure, observable, and scalable automation. Whether you’re engineering bespoke pipelines or architecting automation at scale, here you’ll discover what truly sets Brigade apart and how to wield its capabilities to maximum effect.

2.1 Project Architecture in Brigade

Brigade organizes automation by structuring workflows within the concept of projects, which serve as the fundamental encapsulation units for event-driven pipelines. Each project acts as a self-contained environment containing all the necessary scripts, configuration, and secrets needed to respond to specific event streams. This delineation not only defines clear boundaries for automation tasks but also enables reuse and modularity in pipeline design.

At its core, a project in Brigade consists of a predefined brigade.js file (or a TypeScript equivalent) that houses the definition of one or more workflows. Each workflow is a sequence of worker tasks triggered by events originating from sources such as GitHub webhooks, container registry updates, or manual invocations. The project lifecycle begins with the reception of an event, which causes Brigade to instantiate an isolated environment for that project, execute the corresponding workflows, and then terminate the instance upon completion.

Project encapsulation in Brigade is achieved by enforcing strict isolation between projects at runtime. Each project is typically implemented as a separate namespace within the Kubernetes cluster, allowing Brigade to leverage Kubernetes’ native isolation mechanisms. This namespace partitioning prevents cross-contamination of environment variables, secrets, and resources, ensuring that workflows operate only on the artifacts pertinent to their respective projects.

This boundary is further reinforced at the scripting level where the project’s brigade.js is scoped solely to the project directory or repository, preventing workflows from referencing or interfering with other projects’ pipelines. Such design enforces modularity and promotes secure management, as secrets and tokens managed by Brigade’s event worker are namespace-scoped, minimizing exposure.

Within a Brigade project, the organization emphasizes the division of the automation process into discrete workflows and worker tasks. Each workflow comprises multiple workers, which can be thought of as individual containers or scripts tasked with a segment of the overall automation sequence. Workers are orchestrated through asynchronous events and message passing within the project context, allowing for flexible composition of complex pipelines.

The event-driven model embraces pluralism in triggering mechanisms. For example, a single event such as a push event in GitHub can spawn a workflow that builds, tests, and deploys an application, where each step is handled by a separate worker container. This approach promotes separation of concerns, enabling independent development, testing, and maintenance of each worker task.

Brigade projects utilize a combination of configuration files and internal APIs to define their automation workflows. The primary declarative artifact is the brigade.js script, written in JavaScript, which leverages Brigade’s API to instantiate and chain workers programmatically. This model combines declarative event handling with imperative task definitions, striking a balance between flexibility and reproducibility.

The workflow logic typically subscribes to specific events and creates workers through Brigade’s Event and Job abstractions:

This example demonstrates the encapsulation of build and deploy steps as separate jobs orchestrated within a single workflow. Combined with configuration for retries, timeouts, and resource limits, Brigade projects afford fine-grained control over execution behavior.

Project isolation facilitates modularity by enabling developers to compose complex automation blueprints from smaller, reusable components. Brigade’s runtime and configuration models encourage encapsulating code in dedicated projects or shared libraries, which can be maintained independently and referenced as dependencies when needed.

Moreover, projects can be version-controlled independently, offering traceability and the ability to roll back or promote pipelines in alignment with application lifecycle practices like GitOps. This modularization complements Brigade’s event-driven architecture by allowing workflows to be composed dynamically based on reusable pieces,...