Giters

szahn / terraform-aws-automation

Deploying Node to AWS with Terraform

Home Page:http://blog.stuartzahn.net/post/deploy-node-aws-ec2-terraform/

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

Deploying Node to AWS with Terraform

Overview

Docker is utilized to run a Terraform build container. The container mounts a local plan and temporary folders to share Terraform state and SSH Keys. The entry point initializes terraform. The deploy make command will use the build container to apply the terraform plan. The plan creates a typical VPC, with internet gateway, a route table, private and public subnets, security group allowing HTTP Port 80 traffic to the client IP, and IAM role with access to S3. The Node.JS server source code is uploaded to a private S3 bucket. When the EC2 instance is created, user data copies the Node JS source from S3, and installs the server as a service. During the EC2 instantiation, The user data script may take 30-60 seconds to install dependencies. Terraform will print the public IP address of the Node server when the plan is complete. Visit that url when the user data script finishes to view the response json.

Prerequisites

  • Debian based system (Ubuntu) recommended
  • Make
  • Docker

Setup

Run sudo make generate_key to generate RSA Keys.

Create an AWS User with Programmatic access having an AdministratorAccess policy in the AWS Console. Specify the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY in a default.env file at the folder root

echo "AWS_ACCESS_KEY_ID=YourAccessKey" > ./default.env
echo "AWS_SECRET_ACCESS_KEY=XXX" >> ./default.env

In a production environment, you will want to use AWS Security Token Service's AssumeRole functionality to temporarily get credentials to different environments.

Example default.env:

AWS_ACCESS_KEY_ID=XXX
AWS_SECRET_ACCESS_KEY=XXX

Setup for Debian Environment

Install Docker:

apt-get update && apt install docker.io -y

Testing

Run unit tests with make test

Deployment

Run sudo make deploy to deploy AWS components. When the deployment is complete, you should be able to visit the address displayed in the NodeServerAddress output variable. It may take 30-60 seconds or more for the server to prepare.

Cleanup

Run sudo make teardown to uninstall the deployment.

Next Steps

Instead of relying on User Data for EC2 initialization, an Ansible playbook can be used to remotely deploy the software.

About

Deploying Node to AWS with Terraform

http://blog.stuartzahn.net/post/deploy-node-aws-ec2-terraform/

Languages

Language:HCL 68.8%Language:JavaScript 15.5%Language:Makefile 12.4%Language:Dockerfile 2.2%Language:Shell 1.2%