CSI-1655: added two sample apps

Author: kdeng

bin/cdk-main.ts

@@ -127,6 +127,7 @@ dev1_eks.deploy_my_orgs_baseline_eks_workloads();
 dev1_eks.deploy_lower_envs_eks_workloads();
 dev1_eks.deploy_dev_eks_workloads();
 //^-- deployment time of ~18.6mins (~15-20mins)
+///////////////////////////////////////////////////////////////////////////////////////////
 
 //Example 2: Equivalent to Example 1, just with convenience methods as short hand
 //(This format balances usability and debugability)
@@ -136,6 +137,7 @@ dev2_eks.deploy_eks_construct_into_this_objects_stack(); //<-- creates eks clust
 dev2_eks.deploy_dev_baseline_dependencies(); //<-- convenience method #2
 dev2_eks.deploy_dev_baseline_workload_dependencies(); //<-- convenience method #3
 dev2_eks.deploy_dev_baseline_workloads(); //<-- convenience method #4
+///////////////////////////////////////////////////////////////////////////////////////////
 
 //Example 3: Equivalent to Examples 1 & 2, just shorter
 //(This format optimizes usability, but can make debugability slightly harder)

cdk.context.json

@@ -10,5 +10,77 @@
   },
   "acknowledged-issue-numbers": [
     32775
-  ]
+  ],
+  "availability-zones:account=092464092456:region=ca-central-1": [
+    "ca-central-1a",
+    "ca-central-1b",
+    "ca-central-1d"
+  ],
+  "ami:account=092464092456:filters.image-type.0=machine:filters.name.0=fck-nat-al2023-*-arm64-ebs:filters.state.0=available:owners.0=568608671756:region=ca-central-1": "ami-045d3a84706b8feeb",
+  "availability-zones:account=092464092456:region=ap-southeast-2": [
+    "ap-southeast-2a",
+    "ap-southeast-2b",
+    "ap-southeast-2c",
+    "ap-southeast-2-akl-1a"
+  ],
+  "ami:account=092464092456:filters.image-type.0=machine:filters.name.0=fck-nat-al2023-*-arm64-ebs:filters.state.0=available:owners.0=568608671756:region=ap-southeast-2": "ami-0799b4d92d35edd4a",
+  "vpc-provider:account=092464092456:filter.isDefault=false:filter.tag:Name=lower-envs-vpc:filter.vpc-id=vpc-0b0a49daf937ebd4e:region=ap-southeast-2:returnAsymmetricSubnets=true": {
+    "vpcId": "vpc-0b0a49daf937ebd4e",
+    "vpcCidrBlock": "10.99.0.0/16",
+    "ownerAccountId": "092464092456",
+    "availabilityZones": [],
+    "subnetGroups": [
+      {
+        "name": "Public",
+        "type": "Public",
+        "subnets": [
+          {
+            "subnetId": "subnet-086ef6db7aa03a0c8",
+            "cidr": "10.99.0.0/23",
+            "availabilityZone": "ap-southeast-2a",
+            "routeTableId": "rtb-0ff297699d4ac7ad7"
+          },
+          {
+            "subnetId": "subnet-0aa59909b88944cae",
+            "cidr": "10.99.2.0/23",
+            "availabilityZone": "ap-southeast-2b",
+            "routeTableId": "rtb-006b3e4abc859c868"
+          },
+          {
+            "subnetId": "subnet-0dd9405e4884934d9",
+            "cidr": "10.99.4.0/23",
+            "availabilityZone": "ap-southeast-2c",
+            "routeTableId": "rtb-098ce61b7fa0c7c14"
+          }
+        ]
+      },
+      {
+        "name": "Private",
+        "type": "Private",
+        "subnets": [
+          {
+            "subnetId": "subnet-0c1bbe1320a8d4d4f",
+            "cidr": "10.99.32.0/19",
+            "availabilityZone": "ap-southeast-2a",
+            "routeTableId": "rtb-039cbceea7f95d542"
+          },
+          {
+            "subnetId": "subnet-048c00d9bab4574e1",
+            "cidr": "10.99.64.0/19",
+            "availabilityZone": "ap-southeast-2b",
+            "routeTableId": "rtb-09947c85e71d96615"
+          },
+          {
+            "subnetId": "subnet-0835a3d4741890dfa",
+            "cidr": "10.99.96.0/19",
+            "availabilityZone": "ap-southeast-2c",
+            "routeTableId": "rtb-0f3be7c4448dcd376"
+          }
+        ]
+      }
+    ]
+  },
+  "key-provider:account=092464092456:aliasName=alias/eks/lower-envs:region=ap-southeast-2": {
+    "keyId": "53d98ec6-3051-46b6-a9c6-bd1e4dbf8904"
+  }
 }

config/eks/dev_eks_config.ts

@@ -3,6 +3,8 @@ import * as cdk from 'aws-cdk-lib';
 import * as eks from 'aws-cdk-lib/aws-eks'
 import * as iam from 'aws-cdk-lib/aws-iam';
 import request from 'sync-request-curl'; //npm install sync-request-curl (cdk requires sync functions, async not allowed)
+import { Apply_Podinfo_Http_YAMLs, Apply_Podinfo_Https_YAMLs, Podinfo_Helm_Config, Podinfo_HELM_Generator } from "../../lib/Podinfo_Manifests"; 
+
 //Intended Use: 
 //EasyEKS Admins: edit this file with config to apply to all dev cluster's in your org.
 
@@ -31,5 +33,17 @@ export function deploy_workload_dependencies(config: Easy_EKS_Config_Data, stack
 ////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
 
 export function deploy_workloads(config: Easy_EKS_Config_Data, stack: cdk.Stack, cluster: eks.Cluster){
-
-}//end deploy_workloads()
+    const podinfo_helm_config_a: Podinfo_Helm_Config = (new Podinfo_HELM_Generator({
+        cluster, config,
+        release: "sample-app-a"
+      }
+    )).generate_manifests()
+    Apply_Podinfo_Http_YAMLs(stack, cluster, config, podinfo_helm_config_a)
+
+    const podinfo_helm_config_b: Podinfo_Helm_Config = (new Podinfo_HELM_Generator({
+          cluster, config,
+          release: "sample-app-b"
+      }
+    )).generate_manifests()
+    Apply_Podinfo_Https_YAMLs(stack, cluster, config, podinfo_helm_config_b)
+}//end deploy_workloads()

lib/Podinfo_Manifests.ts

@@ -0,0 +1,200 @@
+import * as cdk from 'aws-cdk-lib';
+import * as eks from 'aws-cdk-lib/aws-eks';
+import { IConstruct } from 'constructs';
+import { Easy_EKS_Config_Data } from "./Easy_EKS_Config_Data";
+
+export interface Podinfo_Helm_Config {
+  helm_chart_version: string,
+  helm_chart_release: string,
+  helm_chart_values?: Record<string, any> | undefined,
+}
+
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+export class Podinfo_HELM_Generator {
+
+  config: Easy_EKS_Config_Data;
+  cluster: eks.Cluster;
+  release: string;
+
+  // Plausible Values to expect:
+  constructor(input_parmeters: Partial<Podinfo_HELM_Generator>) {
+    Object.assign(this, input_parmeters);
+  }
+
+  generate_manifests(): Podinfo_Helm_Config {
+    let config = this.config;
+    let cluster = this.cluster;
+
+    const array_of_yaml_manifests_to_return = {
+      helm_chart_release: this.release,
+    }
+
+    return array_of_yaml_manifests_to_return as Podinfo_Helm_Config;
+  } //end generate_manifests
+
+} //end class Podinfo_YAML_Generator
+
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+const Podinfo_Http_Ingress_Yaml_Generator = (serviceName: string, servicePort: number): Record<string, any> => {
+  return {
+    "apiVersion": "networking.k8s.io/v1",
+    "kind": "Ingress",
+    "metadata": {
+      "name": `${serviceName}-ingress`,
+      "namespace": "default",
+      "annotations": {
+        "kubernetes.io/ingress.class": "alb",
+        "alb.ingress.kubernetes.io/scheme": "internet-facing",
+        "alb.ingress.kubernetes.io/target-type": "ip",
+        "alb.ingress.kubernetes.io/group.name": serviceName,
+        "alb.ingress.kubernetes.io/ip-address-type": "dualstack",
+        "alb.ingress.kubernetes.io/listen-ports": '[{"HTTP": 80}]',
+        "alb.ingress.kubernetes.io/backend-protocol": "HTTP",
+
+      },
+      "labels": {
+        "app": `${serviceName}-ingress`
+      }
+    },
+    "spec": {
+      "rules": [
+        {
+          "http": {
+            "paths": [
+              {
+                "path": "/",
+                "pathType": "Prefix",
+                "backend": {
+                  "service": {
+                    "name": serviceName,
+                    "port": {
+                      "number": servicePort,
+                    }
+                  },
+                }
+              }
+            ]
+          }
+        }
+      ]
+    }
+  } as Record<string, any>;
+}
+
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+const Podinfo_Https_Ingress_Yaml_Generator = (serviceName: string, servicePort: number, certificateArn: string, host: string): Record<string, any> => {
+  return {
+    "apiVersion": "networking.k8s.io/v1",
+    "kind": "Ingress",
+    "metadata": {
+      "name": `${serviceName}-ingress`,
+      "namespace": "default",
+      "annotations": {
+        "kubernetes.io/ingress.class": "alb",
+        "alb.ingress.kubernetes.io/scheme": "internet-facing",
+        "alb.ingress.kubernetes.io/target-type": "ip",
+        "alb.ingress.kubernetes.io/group.name": serviceName,
+        "alb.ingress.kubernetes.io/ip-address-type": "dualstack",
+        "alb.ingress.kubernetes.io/listen-ports": '[{"HTTP": 80}, {"HTTPS": 443}]',
+        "alb.ingress.kubernetes.io/backend-protocol": "HTTP",
+        "alb.ingress.kubernetes.io/actions.ssl-redirect": '{"Type": "redirect", "RedirectConfig": { "Protocol": "HTTPS", "Port": "443", "StatusCode": "HTTP_301"}}',
+        "alb.ingress.kubernetes.io/certificate-arn": certificateArn
+      },
+      "labels": {
+        "app": `${serviceName}-ingress`
+      }
+    },
+    "spec": {
+      "rules": [
+        {
+          "host": host,
+          "http": {
+            "paths": [
+              {
+                "path": "/",
+                "pathType": "Prefix",
+                "backend": {
+                  "service": {
+                    "name": serviceName,
+                    "port": {
+                      "number": servicePort,
+                    }
+                  },
+                }
+              }
+            ]
+          }
+        }
+      ]
+    }
+  } as Record<string, any>;
+}
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+const Apply_Podinfo_YAMLs = (stack: cdk.Stack, cluster: eks.Cluster,
+                                    config: Easy_EKS_Config_Data,
+                                    podinfo_helm_config: Podinfo_Helm_Config,
+                                    readiness_dependency: IConstruct | undefined = undefined) => {
+  if (readiness_dependency) {
+    cluster.node.addDependency(readiness_dependency);
+  }
+
+  cluster.addHelmChart(`podinfo_${podinfo_helm_config.helm_chart_release}`, {
+    repository: "https://stefanprodan.github.io/podinfo",
+    chart: "podinfo",
+    release: podinfo_helm_config.helm_chart_release,
+    version: podinfo_helm_config.helm_chart_version || "6.9.0",
+    values: {
+      ...podinfo_helm_config.helm_chart_values,
+    },
+  })
+
+} //end function Apply_Podinfo_YAMLs
+
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+export function Apply_Podinfo_Http_YAMLs(stack: cdk.Stack, cluster: eks.Cluster,
+                                    config: Easy_EKS_Config_Data,
+                                    podinfo_helm_config: Podinfo_Helm_Config,
+                                    readiness_dependency: IConstruct | undefined = undefined) {
+
+
+  Apply_Podinfo_YAMLs(stack, cluster, config, podinfo_helm_config, readiness_dependency);
+  const apply_podinfo_ingress_YAML = new eks.KubernetesManifest(stack, `${podinfo_helm_config.helm_chart_release}-podinfo-ingress`,
+    {
+      cluster: cluster,
+      manifest: [Podinfo_Http_Ingress_Yaml_Generator(`${podinfo_helm_config.helm_chart_release}-podinfo`, 9898)],
+      overwrite: true,
+      prune: true,   
+    }
+  );
+  if (readiness_dependency) {
+    apply_podinfo_ingress_YAML.node.addDependency(readiness_dependency);
+  }
+  apply_podinfo_ingress_YAML.node.addDependency(cluster.awsAuth);
+} //end function Apply_Podinfo_Http_YAMLs
+
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////
+export function Apply_Podinfo_Https_YAMLs(stack: cdk.Stack, cluster: eks.Cluster,
+                                    config: Easy_EKS_Config_Data,
+                                    podinfo_helm_config: Podinfo_Helm_Config,
+                                    readiness_dependency: IConstruct | undefined = undefined) {
+  
+  Apply_Podinfo_YAMLs(stack, cluster, config, podinfo_helm_config, readiness_dependency);
+  const apply_podinfo_ingress_YAML = new eks.KubernetesManifest(stack, `${podinfo_helm_config.helm_chart_release}-podinfo-ingress`,
+    {
+      cluster: cluster,
+      manifest: [
+        Podinfo_Https_Ingress_Yaml_Generator(
+          `${podinfo_helm_config.helm_chart_release}-podinfo`, 
+          9898, 
+          "arn:aws:acm:ap-southeast-2:092464092456:certificate/a2e016d5-58fb-4308-b894-f7a21f7df0b8", 
+          "kefeng-easyeks.gcp.au-pod-1.cs.doit-playgrounds.dev")],
+      overwrite: true,
+      prune: true,   
+    }
+  );
+  if (readiness_dependency) {
+    apply_podinfo_ingress_YAML.node.addDependency(readiness_dependency);
+  }
+  apply_podinfo_ingress_YAML.node.addDependency(cluster.awsAuth);
+} //end function Apply_Podinfo_Https_YAMLs
+////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////