This project is the final project of the Cloud DevOps Engineer Udacity Nanodegree. The project showcases all skills and knowledge acquired throughout the Cloud DevOps Nanodegree program which included:
- Provisioning network resources in AWS with CloudFormation / Ansible
- Containerizing applications with Docker
- Building CI/CD pipelines with Jenkins / CircleCI
- Building and deploying microservices in a Kubernetes cluster
The app I decided to use (I call it the dragon ball z database) is a microservice reference architecture using flask (frontend) and mongodb (backend).
The flask app is a simple router with a single endpoint (/dbz) that accepts GET, PUT, and POST methods and then routes to a mongodb instance.
Requirements
- Install Python 3.7
- Install Docker
- Install
minikube(comes bundled with Docker Desktop)
-
Clone the repository:
git clone https://github.com/spider-sauce/cloud-devops-capstone.git
-
Setup
venv:python -m venv ~/.capstone source ~/.capstone/bin/activate
-
Run
make install && make lint -
Download and run the
mongodservice -
Run
python app.pyto run the flask app. -
Test the app stack:
These examples use cURL
# Test the app curl http://localhost:5000/dbz # Insert data curl -v -X POST -H "Content-type: application/json" -d \ '{"name":"Goku", "powerlevel": 150,000,000}' \ 'http://localhost:5000/dbz' # Test the record curl http://localhost:5000/dbz/Goku
-
Install Docker Compose.
-
Launch the app stack:
docker-compose -f docker-compose.yml up -d -
Ensure the containers deployed and are running:
cloud-devops-capstone % docker ps CONTAINER ID IMAGE COMMAND CREATED STATUS PORTS NAMES ada25e53f6dd dbz-app:latest "python app.py" 6 hours ago Up 6 hours 0.0.0.0:5000->5000/tcp dbz-app a1c987fe96b4 mongo:latest "docker-entrypoint.s…" 6 hours ago Up 6 hours 0.0.0.0:27017->27017/tcp mongodb
-
Test the app stack (see step 6 in local python deployment)
-
Tag and push the
dbz-appto DockerHubdocker tag dbz-app:latest <dockerhub-username>/<app-name>:<tag> docker push <dockerhub-username/<repo-name>:<tag>
-
Download and install
minikube. Then start the cluster:minikube start
-
Send the
deployment:kubectl apply -f kube/deployment.yaml
-
Send the
loadbalancer:kubectl apply -f kube/loadbalancer.yaml
-
With
minikube, you must launch atunnelto use theLoadBalancerservice:sudo minikube tunnel
-
Get the services to gather the
EXTERNAL-IPkubectl get service NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE dbz-app NodePort 10.108.4.164 <none> 5000:31828/TCP 5m3s kubernetes ClusterIP 10.96.0.1 <none> 443/TCP 5m22s loadbalancer LoadBalancer 10.107.181.204 127.0.0.1 80:30582/TCP 4m59s mongodb NodePort 10.104.18.254 <none> 27017:30444/TCP 5m4s
-
Test the application against
http://127.0.0.1/. See step 6 in local python deployment) for the specific test commands.
Requirements
- AWS CLI with permissions to create the following resources:
- VPC
- Subnets
- Internet Gateway
- Router
- EKS Cluster
- EKS Cluster Nodes
- VM with:
- Jenkins Configured with BlueOcean Plugin
- AWS CLI installed
kubectlinstalled- Docker + Docker Compose Installed
- Python 3.7 Installed along with
pylintandpytest
- A Git Repo (GitHub, GitLab, etc.)
-
Navigate to the
cloudformationdirectory:cd cloudformation -
Ensure the AWS CLI in installed and configured, then run the following command:
aws cloudformation create-stack --stack-name capstone-project \ --template-body file://network.yaml \ --parameters file://network-parameters.json \ --capabilities "CAPABILITY_IAM" "CAPABILITY_NAMED_IAM" \ --region=us-west-2
-
Verify that network resources deployed successfully:
aws cloudformation list-stacks "StackId": "arn:aws:cloudformation:us-west-2:874642742331:stack/capstone-project/d1236720-3fde-11eb-9618-0602e4ee10e5", "StackName": "capstone-project", "TemplateDescription": "James Tacker / Udacity Cloud DevOps Engineer Nanodegree This template deploys aws network resources for the capstone project.", "CreationTime": "2020-12-16T20:39:39.079000+00:00", "StackStatus": "CREATE_COMPLETE",
-
Run the following command to deploy the EKS Cluster:
aws cloudformation create-stack --stack-name capstone-eks \ --template-body file://cluster.yaml \ --parameters file://cluster-parameters.json \ --capabilities "CAPABILITY_IAM" "CAPABILITY_NAMED_IAM" \ --region=us-west-2
-
Verify that EKS cluster resources deployed successfully:
aws cloudformation list-stacks "StackId": "arn:aws:cloudformation:us-west-2:874642742331:stack/capstone-eks/20465860-4004-11eb-a8b8-0ab8c9371e4d", "StackName": "capstone-eks", "TemplateDescription": "James Tacker / Udacity Cloud DevOps Engineer Nanodegree This template deploys aws EKS resources for the capstone project.", "CreationTime": "2020-12-17T01:06:43.118000+00:00", "StackStatus": "CREATE_COMPLETE",
In order to communicate with the remote EKS cluster, we must generate a new kubeconfig. By default, kubectl uses the config in $HOME/.kube/config, which we already used in a local deployment with minikube. So the options are to either update that config, or create a new one.
-
Create a new directory and config for the new config file:
mkdir .kube && touch .kube/config-aws -
Use the
awsclito generate a new config file:aws eks --region us-west-2 update-kubeconfig --kubeconfig .kube/config-aws --name <cluster-name>
-
Test the config:
kubectl --kubeconfig=.kube/config-aws get svc
-
Manually deploy the App Stack to the EKS Cluster:
kubectl --kubeconfig=.kube/config-aws apply -f .kube/deployment.yaml
-
Deploy the Load Balancer to the EKS Cluster:
kubectl --kubeconfig=.kube/config-aws apply -f .kube/loadbalancer.yaml
-
Gather services to extract the External IP:
kubectl --kubeconfig=.kube/config-aws get services NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE dbz-app NodePort 172.20.217.6 <none> 5000:32239/TCP 3m24s kubernetes ClusterIP 172.20.0.1 <none> 443/TCP 107m loadbalancer LoadBalancer 172.20.194.205 <elb-id>.us-west-2.elb.amazonaws.com 80:31088/TCP 90s mongodb NodePort 172.20.123.220 <none> 27017:31669/TCP 3m24s
You can also go to the AWS Console to retrieve the elb dns name
-
Test the services:
curl http://<elb-id>.us-west-2.elb.amazonaws.com/ #Response "Please use /dbz URI to view content"
-
Teardown the services:
kubectl --kubeconfig=.kube/config-aws delete pods,services -l app=dbz-app kubectl --kubeconfig=.kube/config-aws delete pods,services -l app=mongodb kubectl --kubeconfig=.kube/config-aws delete pods,services -l app=loadbalancer
-
SSH into your Jenkins VM
-
Generate a new
kubeconfig:aws eks --region us-west-2 update-kubeconfig --name EKSCluster
-
Test the connection:
kubectl get svc NAME TYPE CLUSTER-IP EXTERNAL-IP PORT(S) AGE kubernetes ClusterIP 172.20.0.1 <none> 443/TCP 158m
-
In your project, add the following Jenkinsfile. The pipeline will run the same steps as the local deployment but in the pipeline.
For example, if the Python Linter step fails it will appear as this:
After a fix is committed, all checks (including the linter) pass except for the last two—which only execute after a successful merge onto the
masterbranch:
-
Merge your pull request to the
masterbranch to deploy the resources to EKS and kickoff arolling restartof the Kubernetes pods:
