Skip to content
/ infrastructure Public

Modular and Extensible Infrastructure Setup with Seamless Data Exchange Between Terraform and Kubernetes

2 stars 1 fork Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

alustan/infrastructure

BranchesTags

Repository files navigation

Introduction

  • Modular and Extensible Infrastructure Setup with Seamless Data Exchange Between Terraform and Kubernetes
  • Serves as infrastructure repo used in testing alustan continuous delivery platform

Architecture

The project architecture consists of the following main components:

  • Cluster: current implementaion EKS : Users can extend to other kubernetes solutions.

  • Database: Current implementation AWS RDS: Users can extend to other DB implementations.

  • Gitops Bridge: Shares cloud matadata with kubernetes resources/manifest using argocd cluster secret.

  • Remote Backend: Remote backend with S3 and Dynamodb with a single flow GO deploy script.

  • Github Action Workflow: Workflow to build infrastructure OCI image with Trivy vulnerability scan

The cluster addons being used are hosted here

The relevant metadata needed by the addons are automatically sourced from the argod cluster secret

The relevant cloud resource metadata needed by alustan service-controller are automatically sourced from the alustan cluster secret

setup

  • Run make setup to install and configure all needed dependencies.

  • Run make store-secrets to create or store secret in aws secret manager

  • Run make deploy to bootstrap a control cluster with other infrastructure

  • Run make retrieve-creds to retrieve relevant credentials and urls from cluster

  • Run make destroy to destroy provisioned infrastructure

  • Run make destroy-cluster to destroy the control cluster

  • Run make destroy-db to destroy bootstrapped database

  • Run make build-deploy to build deploy binary from the GO deploy code

  • Run make build-destroy to build destroy binary from the GO destroy code

  • Run build-postdeploy to build aws-resource binary from the GO postdeploy code

  • To see all available options run make help

  • All needed variables can be found in root level variables.tf

Relevant URLs

  • argocd UI: argocd.<workspace>.<domain>

  • Grafana UI: grafana.<workspace>.<domain>

  • Prometheus UI: prometheus.<workspace>.<domain>

  • Kubecost UI: kubecost.<workspace>.<domain>

  • Argo rollout Dashboard: kubectl argo rollouts dashboard -n <namespace>; Then visit localhost:3100

  • Robusta UI: robusta

Relevant Secrets Keys to be stored in aws secret manager

  • SSH_KEY: git ssh key (if using private repo)

  • SLACK_API_KEY: slack api key (if robusta is enabled)

  • ROBUSTA_SINK_TOKEN: robusta sink token (if robusta is enabled)

  • ROBUSTA_ACCOUNT_ID: robusta account id (if robusta is enabled)

  • ROBUSTA_SIGNING_KEY: robusta signing key (if robusta is enabled)

  • DB_NAME: database name (if DB was provisioned)

  • DB_USER: database user (if DB was provisioned)

  • DB_PASSWORD: database password (if DB was provisioned)

  • REGISTRY_SECRET: for alustan container registry secret

About

Modular and Extensible Infrastructure Setup with Seamless Data Exchange Between Terraform and Kubernetes

Resources

Readme
Activity
Custom properties

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages