Infrastructure as Code with Terraform, multi provider (AWS) and Kubernetes deploying Python - Django API application
Avoid manual mistakes, more control over the deployments, and more portability.
Reduce CAPEX and accelerate deployment time. You can choose another platform or use a hybrid approach.
As an open-source project, you can use it in various environments. No strings attached to any vendor lock-in. You have full access to the source code. For scalable applications that require a lot of resources (CPU/Memory). It's also a good choice for microservices. For scalability and fault tolerance in a containerized environment.
Install Terraform and AWS CLI.
Configure them.
Create a project directory and infra/, env/ and environment directories inside the env/ directory.
We had previously created another IaC project, so we will just copy some code.
Create a vpc.tf file in the infra/ directory.
Configure as the example provided.
Create a security_groups.tf file in the infra/ directory.
Configure in a way to allow SSH access to the EKS cluster.
Create eks.tf file in the infra/ directory.
Use terraform modules. See: https://registry.terraform.io/modules/terraform-aws-modules/eks/aws/latest
Configure EKS through the eks.tf module.
Open the terminal, at the desired environment directory (env/dev), run the following command:
terraform init
terraform applyCheck the deployment at AWS console, EKS.
If successful, we now can focus on the application.
See: https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs
The example code uses a local path and local context.
For further reading, see these examples which demonstrate different approaches to keeping the cluster credentials up to date:
Azure AKS: https://github.com/hashicorp/terraform-provider-kubernetes/blob/main/_examples/aks/README.md
Amazon EKS: https://github.com/hashicorp/terraform-provider-kubernetes/blob/main/_examples/eks/README.md
Google GKE: https://github.com/hashicorp/terraform-provider-kubernetes/blob/main/_examples/gke/README.md
Open the link of the preferred provider and follow the instructions.
We will use EKS in this project.
At the repository, open kubernetes-config directory and then, main.tf file. Copy the code. Paste it in to Providers.tf.
Then, see this link to learn the usage: https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/eks_cluster_auth
"data" is a service that retrieves data from external sources. In our case, we are retrieving the credentials for the EKS cluster.
See: https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/deployment
Copy the usage example and paste it into a new file at infra/Kubernetes.tf.
At kubernetes.tf file, adjust as needed the liveness_probe.
Push the image to ECR and run terraform init again in the desired environment.
Then run terraform apply.
Check the deployment at AWS console, EKS. Go to the cluster, Workloads and check the pods. The namespace shows what is the default application.
Not implemented through AWS ELB. Instead, we are using an Ingress Controller.
Ideally implemented at service.tf file. It is a Kubernetes service.
In our example, we will use the same kubernetes.tf file.
Test running terraform apply.
Check the deployment at AWS console, EC2, Load balancers. Open at the browser the dns name.
To make it faster to check, let's use data source.
Use the output URL with the port.