KServe ML Deployment Project

This repository provides a batteries-included template for serving machine-learning models on Kubernetes with the following stack:

• Istio for service mesh & ingress
• Knative Serving for serverless autoscaling
• KServe for model management & prediction endpoints

The goal is to give you an opinionated, yet extensible starting point that you can run locally on Kind or promote to any managed Kubernetes service.

Architecture Overview

The following diagram illustrates the complete request flow when a user uploads an image for circular object detection:

flowchart TB
    User[User/Client] 
    
    subgraph K8s["Kubernetes Cluster"]
        Gateway[Istio Gateway :80/:443]
        
        subgraph NS1["Namespace: aiq-backend"]
            Service[Backend Service]
            
            subgraph BackendPod["Backend Pod"]
                Envoy1[Envoy Proxy]
                FastAPI[FastAPI :8000]
            end
            
            Storage[(PVC Storage)]
            DB[(SQLite DB)]
        end
        
        subgraph NS2["Namespace: aiq-detector"]
            ModelService[Model Service]
            
            subgraph ModelDeployment["KServe Deployment"]
                Knative[Knative Autoscaler]
                
                subgraph ModelPod["Model Pod"]
                    Envoy2[Envoy Proxy]
                    Model[Model Server :8080]
                end
            end
        end
        
        Gateway <--> Service
        Service <--> Envoy1
        Envoy1 <--> FastAPI
        FastAPI <--> Storage
        FastAPI <--> DB
        FastAPI <--> ModelService
        ModelService <--> Knative
        Knative <--> ModelPod
        Envoy2 <--> Model
    end
    
    User <--> Gateway
    Gateway <--> User
    
    style Gateway fill:#4285F4,color:#fff
    style FastAPI fill:#34A853,color:#fff
    style Model fill:#FBBC04,color:#000
    style Knative fill:#EA4335,color:#fff

Loading

Request Flow Steps

1. User → Istio Gateway: Client sends POST request to /images/ endpoint
2. Gateway → Backend Service: VirtualService routes request to backend service
3. Service → Pod: Kubernetes service load balancer to backend pod
4. Envoy → FastAPI: Sidecar proxy forwards request with mTLS
5. FastAPI Processing:
   • Stores image in PVC-backed storage
   • Saves metadata to SQLite database
   • Prepares inference request
6. FastAPI → Model Service: Sends base64 image for inference
7. Knative Autoscaling: Scales model pod from 0 to 1 if needed
8. Model Inference: Detects circles and returns bounding boxes
9. Response Flow: Results flow back through the same path
10. User Response: Client receives JSON with detected objects

Detailed Request Flow

sequenceDiagram
    box External
        participant U as User
    end
    
    box Kubernetes Cluster
        participant IG as Istio Gateway
        participant VS as VirtualService
        participant EP as Envoy Proxy
        participant API as FastAPI Backend
        participant S as Storage PVC
        participant DB as Database
        participant KS as KServe
        participant M as Model Server
    end
    
    U->>IG: POST /images/ with image file
    IG->>VS: Route based on path
    VS->>EP: Forward to backend service
    EP->>API: mTLS secured request
    API->>S: Store image file
    API->>DB: Save image metadata
    API->>KS: Request inference with base64 image
    Note over KS: Knative scales from 0 to 1
    KS->>M: Forward to model pod
    M->>M: Detect circles
    M->>KS: Return detections
    KS->>API: JSON response
    API->>DB: Save detected objects
    API->>EP: Response with detections
    EP->>VS: Return via mesh
    VS->>IG: Route response
    IG->>U: JSON result

Loading

Workflow Description

1. User Upload: Client sends a POST request to /api/v1/images/ with an image file
2. Istio Ingress: Request enters through Istio Gateway and is routed by VirtualService rules
3. Service Mesh: Envoy sidecar proxy handles mTLS, observability, and load balancing
4. FastAPI Backend:
   • Receives and validates the image
   • Stores image in persistent storage (PVC-backed filesystem)
   • Registers metadata in database (image ID, path, timestamp)
5. Model Inference Request: Backend prepares inference request with base64-encoded image
6. KServe/Knative Autoscaling:
   • Knative autoscaler receives request
   • Scales model pod from 0 to 1 (cold start) or routes to existing pod
   • Creates revision-specific pods on demand
7. Model Processing:
   • Model server receives image
   • PyTorch/TensorFlow model detects circular objects
   • Returns bounding boxes, centroids, and confidence scores
8. Response Processing:
   • Backend receives detection results
   • Saves detected objects to database
   • Returns comprehensive response to user

Key Components

• Istio Gateway: Entry point for all external traffic, handles TLS termination
• VirtualService: Defines routing rules for different endpoints
• Envoy Proxy: Sidecar container providing service mesh capabilities
• Knative Serving: Provides serverless scaling, including scale-to-zero
• KServe: Manages model deployment, versioning, and inference endpoints
• Persistent Storage: Ensures data survives pod restarts (critical for SQLite)

---

Project Structure

.
├── environments/           # Environment-specific Kubernetes manifests
│   ├── dev/                # Development environment configs
│   ├── stage/              # Staging environment configs
│   ├── prod/               # Production configs (Helm values, manifests)
│   └── local/              # Local Kind cluster setup
│       ├── aiq_detector/   # Model server deployment manifests
│       ├── backend/        # Backend service K8s manifests
│       │   ├── *.yaml      # Deployments, services, storage, Istio routing
│       │   ├── deploy.sh   # Automated deployment script
│       │   └── test-istio.sh # Test script with Istio integration
│       ├── test/           # Demo model and test payloads
│       ├── install_kserve_knative.sh  # KServe/Knative installation
│       ├── setup_ingress_routing.sh   # Ingress configuration
│       ├── setup_kind.sh   # Kind cluster setup
│       └── README.md       # Local environment documentation
├── services/               # Microservices
│   ├── backend/            # FastAPI backend service
│   │   ├── aiq_circular_detection/  # Main application package
│   │   ├── config/         # Configuration management
│   │   ├── tests/          # Unit and integration tests
│   │   ├── data/           # Backend data storage
│   │   ├── Dockerfile      # Optimized multi-stage build
│   │   ├── docker-compose.yml  # Docker Compose configuration
│   │   ├── pyproject.toml  # Python project configuration
│   │   ├── uv.lock         # Dependency lock file
│   │   ├── start-dev.sh    # Development server startup
│   │   ├── start-dev-real.sh  # Real mode development server
│   │   └── test_full_integration.sh  # Integration tests
│   ├── evaluation/         # Model evaluation module
│   │   ├── dataset/        # Evaluation dataset
│   │   ├── output/         # Evaluation results
│   │   ├── evaluate_model.py  # Evaluation script
│   │   ├── requirements.txt   # Evaluation dependencies
│   │   ├── run_evaluation.sh  # Execution script
│   │   └── README.md       # Evaluation documentation
├── run_all.sh              # Unified runner script (local/kind modes)
├── run_all_k8s.sh          # Kubernetes deployment script
└── README.md               # This file

Getting Started

Prerequisites

• Docker Desktop with Kubernetes enabled
• kind - Kubernetes in Docker
• kubectl - Kubernetes CLI
• kustomize - Tool for customizing Kubernetes YAML configurations
• jq - JSON processor
• uv - Fast Python package manager (installation guide)
• just - Modern command runner (installation guide) - Required

Quick Start

Option 1: Local Development (No Kubernetes)

For rapid development and testing without Kubernetes or Docker, run all services locally on your machine:

# Run all services locally (model server + backend + tests)
just dev

This command will:

1. Start the AI model server on port 9090
2. Start the backend API service on port 8000
3. Run integration tests automatically
4. Run model evaluation (if dataset is available)
5. Display performance metrics summary
6. Keep services running for manual testing

Option 2: Kubernetes Development (Kind)

For testing in a real Kubernetes environment:

# Set up Kubernetes development environment (one-time setup)
just dev --k8s          # or just dev -k

# Run tests on Kubernetes (auto-detects and sets up if needed)
just test --k8s         # or just test -k

# Clean up when done
just clean --k8s        # or just clean -k

Advanced Options:

# Clean first, then setup fresh infrastructure
just dev --k8s --clean

# Force delete entire cluster
just clean --k8s --force

Key Features:

• just test --k8s automatically sets up infrastructure if it doesn't exist
• just dev --k8s sets up and keeps infrastructure running for development
• Infrastructure persists between test runs for faster iteration
• Smart auto-detection prevents redundant setup

What happens during setup:

1. Creates a Kind cluster with proper configuration
2. Installs KServe, Knative, Istio, and Cert-Manager
3. Sets up ingress routing for Kind
4. Builds and deploys the model server
5. Builds and deploys the backend service
6. Runs integration tests
7. Performs model evaluation (optional)

To enable automatic model evaluation:

1. Place your evaluation dataset in services/evaluation/dataset/
2. Include _annotations.coco.json and image files
3. The script will automatically run evaluation and display results

Manual Local Testing

If you prefer to run services individually:

1. Start the Model Server:

   # Interactive mode (blocks terminal)
   just model-server
   
   # Background mode (non-blocking)
   just model-server --background
   just model-server -b            # Short flag
   # Model server will run on http://localhost:9090
   # Swagger UI: http://localhost:9090/docs

2. Start the Backend Service:

   # Dummy mode (no model server required)
   just backend
   just backend --background       # Background mode
   just backend -b                 # Background mode (short)
   
   # Real mode (requires model server running)
   just backend --real             # Interactive
   just backend --real --background # Background
   just backend -r -b              # Real + background (short flags)
   # Backend API will run on http://localhost:8000
   # API Docs: http://localhost:8000/docs

3. Run Integration Tests:

   # Automatic mode (starts services, runs tests, cleans up)
   just test
   
   # Manual mode (assumes services already running)
   just test --manual
   just test -m                    # Short flag
   
   # Run tests on Kubernetes (auto-setup if needed)
   just test --k8s
   just test -k                    # Short flag

4. Cleanup:

   just clean                      # Stop all local services
   just clean --k8s                # Clean up Kubernetes resources
   just clean -k                   # Clean up Kubernetes (short)

Troubleshooting Local Development

• Port conflicts: Use just clean to stop all services and free ports
• Model download: First run downloads the AI model (~300MB)
• Logs: Use just logs to view service logs or check logs/ directory
• Service status: Use just status and just health to check service state
• Dependencies: Use just check-deps to verify required tools are installed
• Cleanup: Use just clean for local services, just clean --k8s for Kubernetes
• Help: Use just to see all available commands organized by category

API Endpoints

Once deployed, the backend service provides:

• POST /images/ - Upload image for circle detection
• GET /images/{image_id}/objects - List detected objects for an image
• GET /images/{image_id}/objects/{object_id} - Get object details
• GET /health - Health check endpoint
• GET /docs - Interactive API documentation (Swagger UI)

Configuration

The backend service can operate in two modes:

1. Dummy Mode (default): Returns mock detection results for testing
2. Real Mode: Connects to actual KServe model endpoint

Configure via environment variables:

MODE: "dummy"  # or "real"
MODEL_SERVER_URL: "http://model-service.namespace.svc.cluster.local"

Production Deployment

For production environments:

1. Replace SQLite with PostgreSQL or MySQL for multi-replica support
2. Use cloud storage (S3, GCS, Azure Storage) instead of local filesystem
3. Configure proper ingress with TLS certificates and domain names
4. Set resource limits and autoscaling policies
5. Enable monitoring with Prometheus and distributed tracing

See environments/local/backend/DEPLOYMENT.md for detailed deployment instructions.

Model Evaluation

The project includes a comprehensive evaluation module to assess model performance on circular object detection tasks.

Evaluation Metrics

The evaluation module uses industry-standard computer vision metrics:

• Jaccard Index (IoU): Measures overlap between predicted and ground truth regions

  • Simple and weighted averages computed
  • Range: 0 to 1 (higher is better)

• F1 Score: Balances precision and recall

  • Precision: Ratio of correct detections to total detections
  • Recall: Ratio of detected objects to total ground truth objects
  • Uses IoU threshold of 0.5 for matching

• Hungarian Assignment: Optimally matches predictions to ground truth objects

Running Evaluation

1. Prepare dataset in COCO format:

   cd services/evaluation
   mkdir -p dataset
   # Copy COCO annotations and images
   cp /path/to/_annotations.coco.json dataset/
   cp /path/to/images/*.jpg dataset/

2. Run evaluation:

   cd services/evaluation
   ./run_evaluation.sh

The evaluation generates:

• Detailed metrics report (precision, recall, F1 score, Jaccard Index)
• Annotated images showing predictions (red) vs ground truth (green)
• Per-image performance breakdowns

See services/evaluation/README.md for detailed documentation.

Development

Quick Commands

All development tasks are managed through Just commands:

# View all available commands organized by category
just

# Development workflow
just dev              # Start local development environment
just dev --k8s        # Start Kubernetes development environment
just test             # Run integration tests (auto-manages services)
just test --manual    # Run tests (assumes services running)
just test --k8s       # Run tests on Kubernetes (auto-setup if needed)

# Service management
just model-server               # Start model server (interactive)
just model-server --background  # Start model server (background)
just model-server -b            # Start model server (background, short)
just backend                    # Start backend (dummy mode)
just backend --real             # Start backend (real mode)
just backend --real --background # Real mode + background
just backend -r -b              # Real mode + background (short flags)
just clean                      # Clean up all local services
just clean --k8s                # Clean up Kubernetes resources

# Evaluation and testing
just eval             # Run model evaluation (requires dataset)
just lint             # Run code linting
just pytest           # Run unit tests only

# Utilities
just status           # Check service status
just health           # Check service health
just logs             # View local service logs
just k8s-logs         # View Kubernetes service logs
just endpoints        # Show service endpoints
just install-deps     # Install development dependencies
just check-deps       # Verify required tools are installed

Why Just? Modern Advantages

Just provides significant advantages over traditional build tools:

• 🚀 Intuitive Flags: just model-server --background vs separate commands
• 📏 Short Flags: just backend -r -b (real + background), just test -k (Kubernetes)
• 🔗 Flag Combinations: Mix and match flags naturally (--k8s --clean)
• 🧠 Smart Auto-Detection: just test --k8s sets up infrastructure if needed
• 🌍 Cross-Platform: Works consistently across macOS, Linux, and Windows
• ⚡ Modern Syntax: Cleaner, more readable command definitions
• 📋 Organized Help: Commands grouped by category with just

Traditional Commands (if needed)

# Running Tests
cd services/backend && pytest

# Building Docker Image
cd services/backend && docker build -t aiq-circular-detection:latest .

# Local Development
cd services/backend && ./start-dev.sh

Additional Resources

For detailed development instructions, see the individual README files in:

• environments/local/aiq_detector/README.md - Model server details
• environments/local/backend/DEPLOYMENT.md - Backend deployment guide
• services/backend/README.md - Backend development guide
• services/evaluation/README.md - Evaluation tools guide

Contributing

1. Fork the repository
2. Create a feature branch
3. Make your changes
4. Run tests and ensure the deployment works
5. Submit a pull request