Operate Portworx using PX-Central on-premises
PX-Central on-premises is a graphical user interface that allows you to monitor and manage your Portworx clusters. With PX-Central on-premises, you can do the following:
- Monitor your clusters using built-in dashboards
- Add and manage Portworx licenses through the license server
- View and manage your volumes
- Take snapshots
PX-Central architecture
PX-Central components
The on-premises PX-Central application includes the following components:
- Application gateway
- OIDC server
- Backend service
- Middleware service
Application gateway
The PX-Central on-premises application contains multiple services running in it. Using the Nginx reverse proxy mechanism, more than one service in the application gateway needs to be exposed on an external network. All these services listen on HTTP or HTTPS (allowing reachability through reverse proxy).
OIDC server
The OIDC server manages the identity of users, groups, and roles of a user. PX-Central uses Keycloak as a SSO server to enable user authorization. Keycloak also uses portgres as a datastore. This token is passed to other micro services that need to authorize the user. Keycloak uses postgres as a datastore.
Backend
The backend service is a Laravel PHP based service. This service manages active users and clusters added on Lighthouse. When using stateless micro services, the PX-Central architecture requires some states be saved at a user level or global level. The backend service provides an option to save states at a user level or global level by making use of a MySQL database.
Middleware
The middleware service is a connector service used to interface multiple micro-services and third party services to the UI. The middleware does not authorize any API, it passes the token information to the corresponding services, and authorization happens directly at the provider service. The middleware service also provides a common data interface for error or success messages, paginated responses, pagination services, and so on.