Merge pull request #39 from techiescamp/develop

🔀 fargate-app-project

Author: alexphilipjames

07-fargate-app-deployment/eks-fargate.yaml

@@ -0,0 +1,27 @@
+apiVersion: eksctl.io/v1alpha5
+kind: ClusterConfig
+
+metadata:
+ name: pomodoroapp-fargate
+ region: us-east-1
+
+vpc:
+ id: "vpc-09cda2c938e687f27"
+ cidr: "10.0.0.0/16"
+ subnets:
+ private:
+ us-east-1a: { id: subnet-045d0562c6a1d8233 }
+ us-east-1b: { id: subnet-06dd483abe9150717 }
+
+ clusterEndpoints:
+ publicAccess: false
+ privateAccess: true
+
+iam:
+ withOIDC: true
+
+fargateProfiles:
+ - name: fp-default
+ selectors:
+ - namespace: default
+ - namespace: kube-system

07-fargate-app-deployment/fp-game.yaml

@@ -0,0 +1,11 @@
+apiVersion: eksctl.io/v1alpha5
+kind: ClusterConfig
+
+metadata:
+ name: pomodoroapp-fargate
+ region: us-east-1
+
+fargateProfiles:
+ - name: fp-game
+ selectors:
+ - namespace: game-ns

07-fargate-app-deployment/helm/game-2048/Chart.yaml

@@ -0,0 +1,5 @@
+apiVersion: v2
+name: 2048-game
+description: A Helm chart to deploy the 2048 game
+version: 0.1.0
+appVersion: "1.0"

07-fargate-app-deployment/helm/game-2048/templates/deployment.yaml

@@ -0,0 +1,21 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+ namespace: {{ .Values.namespace }}
+ name: deployment-2048
+spec:
+ selector:
+ matchLabels:
+ app.kubernetes.io/name: app-2048
+ replicas: {{ .Values.replicas }}
+ template:
+ metadata:
+ labels:
+ app.kubernetes.io/name: app-2048
+ spec:
+ containers:
+ - image: {{ .Values.image.repository }}:{{ .Values.image.tag }}
+ imagePullPolicy: Always
+ name: app-2048
+ ports:
+ - containerPort: 80

07-fargate-app-deployment/helm/game-2048/templates/service.yaml

@@ -0,0 +1,17 @@
+apiVersion: v1
+kind: Service
+metadata:
+ namespace: {{ .Values.namespace }}
+ name: service-2048
+ annotations:
+ service.beta.kubernetes.io/aws-load-balancer-nlb-target-type: "ip"
+ service.beta.kubernetes.io/aws-load-balancer-type: external
+ service.beta.kubernetes.io/aws-load-balancer-scheme: internet-facing
+spec:
+ ports:
+ - port: {{ .Values.service.port }}
+ targetPort: 80
+ protocol: TCP
+ type: {{ .Values.service.type }}
+ selector:
+ app.kubernetes.io/name: app-2048

07-fargate-app-deployment/helm/game-2048/values.yaml

@@ -0,0 +1,7 @@
+replicas: 3
+image:
+ repository: public.ecr.aws/l6m2t8p7/docker-2048
+ tag: latest
+service:
+ port: 80
+ type: LoadBalancer

07-fargate-app-deployment/tf-vpc/main.tf

@@ -0,0 +1,149 @@
+/*====
+The VPC
+======*/
+
+resource "aws_vpc" "vpc" {
+ cidr_block = "${var.vpc_cidr}"
+ enable_dns_hostnames = true
+ enable_dns_support = true
+
+ tags = {
+ Name = "${var.environment}-vpc"
+ Environment = "${var.environment}"
+ }
+}
+
+/*====
+Subnets
+======*/
+/* Internet gateway for the public subnet */
+resource "aws_internet_gateway" "ig" {
+ vpc_id = "${aws_vpc.vpc.id}"
+
+ tags = {
+ Name = "${var.environment}-igw"
+ Environment = "${var.environment}"
+ }
+}
+
+
+/* Elastic IP for NAT */
+resource "aws_eip" "nat_eip" {
+ vpc = true
+ depends_on = [aws_internet_gateway.ig]
+}
+
+/* NAT */
+resource "aws_nat_gateway" "nat" {
+ allocation_id = "${aws_eip.nat_eip.id}"
+ subnet_id = "${element(aws_subnet.public_subnet.*.id, 0)}"
+ depends_on = [aws_internet_gateway.ig]
+
+ tags = {
+ Name = "nat"
+ Environment = "${var.environment}"
+ }
+}
+
+/* Public subnet */
+resource "aws_subnet" "public_subnet" {
+ vpc_id = "${aws_vpc.vpc.id}"
+ count = "${length(var.public_subnets_cidr)}"
+ cidr_block = "${element(var.public_subnets_cidr, count.index)}"
+ availability_zone = "${element(var.availability_zones, count.index)}"
+ map_public_ip_on_launch = true
+
+ tags = {
+ Name = "${var.environment}-${element(var.availability_zones, count.index)}-public-subnet"
+ Environment = "${var.environment}"
+ }
+}
+
+/* Private subnet */
+resource "aws_subnet" "private_subnet" {
+ vpc_id = "${aws_vpc.vpc.id}"
+ count = "${length(var.private_subnets_cidr)}"
+ cidr_block = "${element(var.private_subnets_cidr, count.index)}"
+ availability_zone = "${element(var.availability_zones, count.index)}"
+ map_public_ip_on_launch = false
+
+ tags = {
+ Name = "${var.environment}-${element(var.availability_zones, count.index)}-private-subnet"
+ Environment = "${var.environment}"
+ "kubernetes.io/role/elb" = "1"
+ }
+}
+
+/* Routing table for private subnet */
+resource "aws_route_table" "private" {
+ vpc_id = "${aws_vpc.vpc.id}"
+
+ tags = {
+ Name = "${var.environment}-private-route-table"
+ Environment = "${var.environment}"
+ }
+}
+
+/* Routing table for public subnet */
+resource "aws_route_table" "public" {
+ vpc_id = "${aws_vpc.vpc.id}"
+
+ tags = {
+ Name = "${var.environment}-public-route-table"
+ Environment = "${var.environment}"
+ }
+}
+
+resource "aws_route" "public_internet_gateway" {
+ route_table_id = "${aws_route_table.public.id}"
+ destination_cidr_block = "0.0.0.0/0"
+ gateway_id = "${aws_internet_gateway.ig.id}"
+}
+
+resource "aws_route" "private_nat_gateway" {
+ route_table_id = "${aws_route_table.private.id}"
+ destination_cidr_block = "0.0.0.0/0"
+ nat_gateway_id = "${aws_nat_gateway.nat.id}"
+}
+
+/* Route table associations */
+resource "aws_route_table_association" "public" {
+ count = "${length(var.public_subnets_cidr)}"
+ subnet_id = "${element(aws_subnet.public_subnet.*.id, count.index)}"
+ route_table_id = "${aws_route_table.public.id}"
+}
+
+resource "aws_route_table_association" "private" {
+ count = "${length(var.private_subnets_cidr)}"
+ subnet_id = "${element(aws_subnet.private_subnet.*.id, count.index)}"
+ route_table_id = "${aws_route_table.private.id}"
+}
+
+/*====
+VPC's Default Security Group
+======*/
+resource "aws_security_group" "default" {
+ name = "${var.environment}-default-sg"
+ description = "Default security group to allow inbound/outbound from the VPC"
+ vpc_id = "${aws_vpc.vpc.id}"
+ depends_on = [aws_vpc.vpc]
+
+ ingress {
+ from_port = "0"
+ to_port = "0"
+ protocol = "-1"
+ self = true
+ }
+
+ egress {
+ from_port = "0"
+ to_port = "0"
+ protocol = "-1"
+ self = "true"
+ }
+
+ tags = {
+ Environment = "${var.environment}"
+ }
+}
+

07-fargate-app-deployment/tf-vpc/outputs.tf

@@ -0,0 +1,39 @@
+output "vpc_id" {
+ value = "${aws_vpc.vpc.id}"
+}
+
+output "public_subnets_id" {
+ value = ["${aws_subnet.public_subnet.*.id}"]
+}
+
+output "private_subnets_id" {
+ value = ["${aws_subnet.private_subnet.*.id}"]
+}
+
+output "public_subnet_1" {
+ value = "${aws_subnet.public_subnet.0.id}"
+}
+
+output "public_subnet_2" {
+ value = "${aws_subnet.public_subnet.1.id}"
+}
+
+output "private_subnet_1" {
+ value = "${aws_subnet.private_subnet.0.id}"
+}
+
+output "private_subnet_2" {
+ value = "${aws_subnet.private_subnet.1.id}"
+}
+
+output "default_sg_id" {
+ value = "${aws_security_group.default.id}"
+}
+
+output "security_groups_ids" {
+ value = ["${aws_security_group.default.id}"]
+}
+
+output "public_route_table" {
+ value = "${aws_route_table.public.id}"
+}

07-fargate-app-deployment/tf-vpc/variables.tf

@@ -0,0 +1,27 @@
+variable "environment" {
+ description = "The Deployment environment"
+}
+
+variable "vpc_cidr" {
+ description = "The CIDR block of the vpc"
+}
+
+variable "public_subnets_cidr" {
+ type = list
+ description = "The CIDR block for the public subnet"
+}
+
+variable "private_subnets_cidr" {
+ type = list
+ description = "The CIDR block for the private subnet"
+}
+
+variable "region" {
+ description = "The region to launch the bastion host"
+}
+
+variable "availability_zones" {
+ type = list
+ description = "The az that the resources will be launched"
+}
+

07-fargate-app-deployment/tf-vpc/vpc.tfvars

@@ -0,0 +1,8 @@
+#tfvars
+
+environment = "fargate"
+vpc_cidr = "10.0.0.0/16"
+region = "us-east-1"
+public_subnets_cidr = ["10.0.1.0/24", "10.0.2.0/24"]
+private_subnets_cidr = ["10.0.3.0/24", "10.0.4.0/24"]
+availability_zones = ["us-east-1a", "us-east-1b"]