-
Notifications
You must be signed in to change notification settings - Fork 37
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
OSS pattern for EKS Fargate new cluster (#106)
* add eks fargate opensource observability pattern * add eks fargate opensource observability pattern * EKS fargate OSS pattern * EKS fargate OSS pattern * EKS fargate OSS pattern * EKS fargate OSS pattern * EKS fargate OSS pattern * EKS fargate OSS pattern * updated docs and arch diagram * add text in docs * comment fixes * update gitignore --------- Co-authored-by: howlla <[email protected]>
- Loading branch information
Showing
11 changed files
with
365 additions
and
3 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,5 @@ | ||
| import SingleNewEksFargateOpenSourceObservabilityConstruct from '../lib/single-new-eks-fargate-opensource-observability-pattern'; | ||
| import { configureApp } from '../lib/common/construct-utils'; | ||
|
|
||
| const app = configureApp(); | ||
| new SingleNewEksFargateOpenSourceObservabilityConstruct(app, 'single-new-eks-fargate-opensource'); |
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
Loading
Sorry, something went wrong. Reload?
Sorry, we cannot display this file.
Sorry, this file is invalid so it cannot be displayed.
201 changes: 201 additions & 0 deletions
201
...s-observability-accelerators/single-new-eks-fargate-opensource-observability.md
Large diffs are not rendered by default.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
144 changes: 144 additions & 0 deletions
144
lib/single-new-eks-fargate-opensource-observability-pattern/index.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,144 @@ | ||
| import { Construct } from 'constructs'; | ||
| import { utils } from '@aws-quickstart/eks-blueprints'; | ||
| import * as blueprints from '@aws-quickstart/eks-blueprints'; | ||
| import { GrafanaOperatorSecretAddon } from '../single-new-eks-opensource-observability-pattern/grafanaoperatorsecretaddon'; | ||
| import * as amp from 'aws-cdk-lib/aws-aps'; | ||
| import { ObservabilityBuilder } from '@aws-quickstart/eks-blueprints'; | ||
| import * as eks from 'aws-cdk-lib/aws-eks'; | ||
| import * as fs from 'fs'; | ||
|
|
||
| export default class SingleNewEksFargateOpenSourceObservabilityConstruct { | ||
| constructor(scope: Construct, id: string) { | ||
| const stackId = `${id}-observability-accelerator`; | ||
|
|
||
| const account = process.env.COA_ACCOUNT_ID! || process.env.CDK_DEFAULT_ACCOUNT!; | ||
| const region = process.env.COA_AWS_REGION! || process.env.CDK_DEFAULT_REGION!; | ||
| const ampWorkspaceName = process.env.COA_AMP_WORKSPACE_NAME! || 'observability-amp-Workspace'; | ||
| const ampWorkspace = blueprints.getNamedResource(ampWorkspaceName) as unknown as amp.CfnWorkspace; | ||
| const ampEndpoint = ampWorkspace.attrPrometheusEndpoint; | ||
| const ampWorkspaceArn = ampWorkspace.attrArn; | ||
|
|
||
| const amgEndpointUrl = process.env.COA_AMG_ENDPOINT_URL; | ||
| // All Grafana Dashboard URLs from `cdk.json` | ||
| const fluxRepository: blueprints.FluxGitRepo = utils.valueFromContext(scope, "fluxRepository", undefined); | ||
| fluxRepository.values!.AMG_AWS_REGION = region; | ||
| fluxRepository.values!.AMP_ENDPOINT_URL = ampEndpoint; | ||
| fluxRepository.values!.AMG_ENDPOINT_URL = amgEndpointUrl; | ||
|
|
||
| const ampAddOnProps: blueprints.AmpAddOnProps = { | ||
| ampPrometheusEndpoint: ampEndpoint, | ||
| ampRules: { | ||
| ampWorkspaceArn: ampWorkspaceArn, | ||
| ruleFilePaths: [ | ||
| __dirname + '/../common/resources/amp-config/alerting-rules.yml', | ||
| __dirname + '/../common/resources/amp-config/recording-rules.yml' | ||
| ] | ||
| } | ||
| }; | ||
|
|
||
| let doc = utils.readYamlDocument(__dirname + '/../common/resources/otel-collector-config.yml'); | ||
| doc = utils.changeTextBetweenTokens( | ||
| doc, | ||
| "{{ if enableAPIserverJob }}", | ||
| "{{ end }}", | ||
| true | ||
| ); | ||
| console.log(doc); | ||
| fs.writeFileSync(__dirname + '/../common/resources/otel-collector-config-new.yml', doc); | ||
|
|
||
|
|
||
| if (utils.valueFromContext(scope, "java.pattern.enabled", false)) { | ||
| ampAddOnProps.openTelemetryCollector = { | ||
| manifestPath: __dirname + '/../common/resources/otel-collector-config-new.yml', | ||
| manifestParameterMap: { | ||
| javaScrapeSampleLimit: 1000, | ||
| javaPrometheusMetricsEndpoint: "/metrics" | ||
| } | ||
| }; | ||
| ampAddOnProps.ampRules?.ruleFilePaths.push( | ||
| __dirname + '/../common/resources/amp-config/java/alerting-rules.yml', | ||
| __dirname + '/../common/resources/amp-config/java/recording-rules.yml' | ||
| ); | ||
| } | ||
|
|
||
| if (utils.valueFromContext(scope, "apiserver.pattern.enabled", false)) { | ||
| ampAddOnProps.enableAPIServerJob = true, | ||
| ampAddOnProps.ampRules?.ruleFilePaths.push( | ||
| __dirname + '/../common/resources/amp-config/apiserver/recording-rules.yml' | ||
| ); | ||
| } | ||
|
|
||
| if (utils.valueFromContext(scope, "nginx.pattern.enabled", false)) { | ||
| ampAddOnProps.openTelemetryCollector = { | ||
| manifestPath: __dirname + '/../common/resources/otel-collector-config-new.yml', | ||
| manifestParameterMap: { | ||
| javaScrapeSampleLimit: 1000, | ||
| javaPrometheusMetricsEndpoint: "/metrics" | ||
| } | ||
| }; | ||
| ampAddOnProps.ampRules?.ruleFilePaths.push( | ||
| __dirname + '/../common/resources/amp-config/nginx/alerting-rules.yml' | ||
| ); | ||
| } | ||
|
|
||
| Reflect.defineMetadata("ordered", true, blueprints.addons.GrafanaOperatorAddon); | ||
| const addOns: Array<blueprints.ClusterAddOn> = [ | ||
| new blueprints.addons.VpcCniAddOn(), | ||
| new blueprints.addons.CoreDnsAddOn({ | ||
| version: "v1.10.1-eksbuild.1", | ||
| configurationValues: { computeType: "Fargate" } | ||
| }), | ||
| new blueprints.addons.KubeProxyAddOn(), | ||
| new blueprints.addons.AwsLoadBalancerControllerAddOn(), | ||
| new blueprints.addons.CertManagerAddOn({ | ||
| installCRDs: true, | ||
| createNamespace: true, | ||
| namespace: "cert-manager", | ||
| values: { webhook: { securePort: 10260 } } | ||
| }), | ||
| new blueprints.addons.KubeStateMetricsAddOn(), | ||
| new blueprints.addons.MetricsServerAddOn(), | ||
| new blueprints.addons.CloudWatchLogsAddon({ | ||
| logGroupPrefix: `/aws/eks/${stackId}`, | ||
| logRetentionDays: 30 | ||
| }), | ||
| new blueprints.addons.ExternalsSecretsAddOn({ | ||
| namespace: "external-secrets", | ||
| values: { webhook: { port: 9443 } } | ||
| }), | ||
| new blueprints.addons.GrafanaOperatorAddon(), | ||
| new blueprints.addons.FluxCDAddOn({"repositories": [fluxRepository]}), | ||
| new GrafanaOperatorSecretAddon(), | ||
| new blueprints.addons.AdotCollectorAddOn(), | ||
| new blueprints.addons.XrayAdotAddOn(), | ||
| new blueprints.addons.AmpAddOn(ampAddOnProps) | ||
| ]; | ||
|
|
||
|
|
||
| const fargateProfiles: Map<string, eks.FargateProfileOptions> = new Map([ | ||
| ["MyProfile", { | ||
| selectors: [ | ||
| { namespace: "cert-manager" }, | ||
| { namespace: "opentelemetry-operator-system" }, | ||
| { namespace: "external-secrets" }, | ||
| { namespace: "grafana-operator" }, | ||
| { namespace: "flux-system" } | ||
| ] | ||
| }] | ||
| ]); | ||
|
|
||
| // Define fargate cluster provider and pass the profile options | ||
| const fargateClusterProvider: blueprints.FargateClusterProvider = new blueprints.FargateClusterProvider({ | ||
| fargateProfiles, | ||
| version: eks.KubernetesVersion.of("1.27") | ||
| }); | ||
|
|
||
| ObservabilityBuilder.builder() | ||
| .account(account) | ||
| .region(region) | ||
| .clusterProvider(fargateClusterProvider) | ||
| .resourceProvider(ampWorkspaceName, new blueprints.CreateAmpProvider(ampWorkspaceName, ampWorkspaceName)) | ||
| .addOns(...addOns) | ||
| .build(scope, stackId); | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters