This Terraform script can be used to deploy the Reshuffle runtime in your AWS account.
The script deploys the runtime docker image onto ECS Fargate, and configures an HTTPS load-balancer to access the service. It assumes nothing about your account and provisions the required network settings and IAM roles required for the service to run.
If specified, the script will setup PostgreSQL RDS instances to manage state for the relevant connectors.
-
AWS Account
-
A registered domain
-
SSL Certificate (AWS Certificate Manager will get you one for free)
-
AWS API credentials
-
Set up your configuration in
terraform.tfvars -
Run
terraform init -
Run
terraform apply -
Wait 30 seconds or so for the containers to spin up
-
Test you new service
The Terraform variables file terraform.tfvars is used to configure your
installation.
domain="example.com"
profile="<my-aws-credentials-profile>"
region="<aws-region>"
system="reshuffle"
These parameters describe your system and AWS environment. If you are using AWS Route 53 as your DNS server on this domain, you can add
zoneid="<route-53-zone-id>"
This will allow Terraform to automatically set up a domain alias for
<system>.<domain> to point to the load blancer it configures. Given the
values above, this will expose you Reshuffle runtime at
https://reshuffle.example.com.
If you are not using Route 53, leave out zoneid. Terraform will print out
the load balancer domain name when it's done so you can configure the alias
yourself in your DNS server.
dbInstanceCount=<number-of-database-instance>
To set up PostgreSQL RDS for your Reshuffle runtime, set the number of
database instances to run. Any number above zero will result in the
installation of a single primary instance and n-1 replicas. Other settings
for the database, including instance type, are availabe in settings.tf.
Finally, add the following parameters with the values received from your Reshuffle contact:
reshuffleClientID="..."
reshuffleClientSecret="..."
reshuffleUsername="..."
reshufflePassword="..."
reshuffleStudioBaseURL="..."
Make sure not to commit terraform.tfvars to git. It may contain secrets
and other confidential information.