Skip to content

carlosonunez-vmw/demoland-tap-on-eks

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

25 Commits
.todos
.todos
 
 
conf
conf
 
 
demos
demos
 
 
include
include
 
 
scripts
scripts
 
 
.dockerignore
.dockerignore
 
 
.env.example
.env.example
 
 
.gitignore
.gitignore
 
 
.nocscope
.nocscope
 
 
.noctags
.noctags
 
 
0-create-or-update-cluster.sh
0-create-or-update-cluster.sh
 
 
1-install-tools.sh
1-install-tools.sh
 
 
10-install-tanzu-sql-postgres.sh
10-install-tanzu-sql-postgres.sh
 
 
11-smoke-test.sh
11-smoke-test.sh
 
 
12-install-trivy.sh
12-install-trivy.sh
 
 
2-provision-cert-manager-contour.sh
2-provision-cert-manager-contour.sh
 
 
3-provision-dns.sh
3-provision-dns.sh
 
 
4-provision-harbor.sh
4-provision-harbor.sh
 
 
5-install-cluster-essentials.sh
5-install-cluster-essentials.sh
 
 
6-relocate-tap-images.sh
6-relocate-tap-images.sh
 
 
7-add-tap-package-repository.sh
7-add-tap-package-repository.sh
 
 
8-set-up-dev-namespace.sh
8-set-up-dev-namespace.sh
 
 
9-install-tap.sh
9-install-tap.sh
 
 
97-terraform-init.sh
97-terraform-init.sh
 
 
98-update-eks-kubeconfig.sh
98-update-eks-kubeconfig.sh
 
 
99-cleanup.sh
99-cleanup.sh
 
 
README.md
README.md
 
 
config.enc.yaml
config.enc.yaml
 
 
config.example.yaml
config.example.yaml
 
 
config.tf
config.tf
 
 
dns.tf
dns.tf
 
 
docker-compose.yml
docker-compose.yml
 
 
eks.tf
eks.tf
 
 
outputs.tf
outputs.tf
 
 
passwords.tf
passwords.tf
 
 
vpc.tf
vpc.tf
 
 

Repository files navigation

TAP on AWS EKS!

This repo documents how to install TAP on AWS EKS through a series of scripts.

💸 WARNING: This will cost you money!

These scripts deploy AWS EKS into a VPC called tkg-tap-land.

While the EKS node group bound to that EKS control plane uses cost-efficient t3a.large nodes with spot prices, it will deploy three of them (with an option to surge to five).

EBS volumes, an ELB and several Route53 records will be created as well.

Free Tier will cover some of this, but not all.

Caveats

  • I wrote this while learning TAP. Don't use this for anything production.
  • This will probably light your computer on fire!
  • Probably not suitable for POCs either, unless it's something super quick.

How to Use

Prerequisites

For everyone

  • Docker
  • yq
  • An AWS Route53 hosted zone (click here to learn how to create one.)

For contributors

  • sops (optional)
  • [gpg2]

Instructions

First, copy config.example.yaml to config.yaml and change all of the blanks to real values.

Afterwards, log into AWS and ensure that the following values are set in your environment:

  • AWS_ACCESS_KEY_ID
  • AWS_SECRET_ACCESS_KEY
  • AWS_DEFAULT_REGION
  • AWS_SESSION_TOKEN (if using an STS-generated credential)

Afterwards, every script starts with a number. Run them in order!

Encrypting your config

If you are contributing and want to create a pull request, or if you are more security-conscious and don't want your passwords and such in plain-text, encrypt your config file with sops, like this:

sops -p CONFIG_FILE_PGP_FINGERPRINT config.yaml > config.enc.yaml

Note that changes to config.enc.yaml are not accepted at this time.

Questions

TAP installs cert-manager and Contour, but they are installed before TAP

This was done to resolve this cyclic dependency:

  • TAP requires Harbor when installing from offline images (the recommended approach)
  • Harbor requires cert-manager and Contour (or any ingress controller) to be present
  • but TAP installs Cert Manager and Contour

To work around this, we specifically exclude those two packages from the TAP install in our values.yaml values file.

References

About

Create TAP demo envs easily on EKS

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

1 tags

Packages

No packages published

Languages