feat(ecs): make cluster and vpc optional for higher level constructs #2773
Conversation
| @@ -65,12 +68,16 @@ export class Cluster extends Resource implements ICluster { | |||
| */ | |||
| private _hasEc2Capacity: boolean = false; | |||
|
|
|||
| constructor(scope: Construct, id: string, props: ClusterProps) { | |||
| constructor(scope: Construct, id: string, props?: ClusterProps) { | |||
There was a problem hiding this comment.
| constructor(scope: Construct, id: string, props?: ClusterProps) { | |
| constructor(scope: Construct, id: string, props: ClusterProps = {}) { |
|
If I might suggest something here: I think that you need some kind of "singleton" VPC and "singleton" cluster (less important but also nice) otherwise you are going to create as many VPCs as services in your stack, no? |
|
I see your idea, but I think that is exactly why you can provide the VPC as a prop. If you do not care about VPC (not specify one), you do not care about the number. You can still use the vpc property of the first service for the other ones. |
|
@jogold I really like this idea generally for VPC. Seems like a recurring pattern. Can you raise an issue and let's explore the design/API for this? I have some ideas. In the meantime, this PR is great. |
| @@ -11,8 +13,19 @@ export enum LoadBalancerType { | |||
| export interface LoadBalancedServiceBaseProps { | |||
| /** | |||
| * The cluster where your service will be deployed | |||
| * You can only specify either vpc or cluster. Alternatively, you can leave both blank | |||
| * | |||
| * @default create a new cluster | |||
There was a problem hiding this comment.
Set the default "value" as -:
@default - create a new cluster
Also, mentioned that the cluster will be created with a default VPC.
| * VPC that the cluster instances or tasks are running in | ||
| * You can only specify either vpc or cluster. Alternatively, you can leave both blank | ||
| * | ||
| * @default use vpc of cluster or create a new one |
| const app = new cdk.App(); | ||
| const stack = new cdk.Stack(app, 'aws-ecs-integ'); | ||
|
|
||
| new ecsPatterns.LoadBalancedFargateService(stack, 'L3', { |
| @@ -20,8 +21,10 @@ export interface ClusterProps { | |||
|
|
|||
| /** | |||
| * The VPC where your ECS instances will be running or your ENIs will be deployed | |||
| * | |||
| * @default creates a new VPC | |||
|
@eladb please hold off merging this in as there's an ongoing discussion about cluster/vpc/network constructs. @clareliguori @uttarasridhar |
|
Any info if this will continue or if I should change something? |
|
Stay tuned. I am on it. |
| } else if (props.cluster) { | ||
| this.cluster = props.cluster; | ||
| } else { | ||
| this.cluster = new ecs.Cluster(this, 'Cluster', { vpc: props.vpc }); |
There was a problem hiding this comment.
I like what you're doing here, but this would better fit in the high level FargateService constructs, not in the BaseService constructs. Cluster should be mandatory for any high level Ec2Service constructs as you'll need to add capacity to the cluster. What you have would work for FargateService constructs, but not Ec2Service constructs.
Also, can you use the default cluster here? If one exists use it, otherwise create the default cluster?
There was a problem hiding this comment.
+1 that this makes much more sense for Fargate then for EC2, so I rather optimize for this use case.
As for default cluster, I am not aware that we have a concept like that, but should be fairly easy to introduce:
function getCreateDefaultCluster(scope: Construct, vpc?: ec2.Vpc): ecs.Cluster {
const DEFAULT_CLUSTER_ID = 'EcsDefaultCluster<plug-in-some-uuid>';
const stack = Stack.of(this);
return stack.tryGetChild(id) as ecs.Cluster || new ecs.Cluster(stack, id, { vpc });
}There was a problem hiding this comment.
As the properties are set and only available in the base I added this code here. I am open to moving this to the FargateService.
As I understood it, the concept of defaults is part of another issue or PR
There was a problem hiding this comment.
@eladb ECS has a concept of a cluster literally called 'default'. The console first-run will create it, as will any ECS-optimized AMI-based instances that don't have another cluster name configured. So, many but not all accounts have a 'default' cluster already.
Could we have something like the ImportedVpc and Vpc.fromLookup concepts for ECS clusters? i.e. a way to check if a cluster named 'default' exists in the account/region, and if not, add it to the stack.
There was a problem hiding this comment.
+1 that this makes much more sense for Fargate then for EC2, so I rather optimize for this use case.
As for default cluster, I am not aware that we have a concept like that, but should be fairly easy to introduce:
function getCreateDefaultCluster(scope: Construct, vpc?: ec2.Vpc): ecs.Cluster { const DEFAULT_CLUSTER_ID = 'EcsDefaultCluster<plug-in-some-uuid>'; const stack = Stack.of(this); return stack.tryGetChild(id) as ecs.Cluster || new ecs.Cluster(stack, id, { vpc }); }
https://docs.aws.amazon.com/AmazonECS/latest/APIReference/API_CreateCluster.html -
clusterName - The name of your cluster. If you do not specify a name for your cluster, you create a cluster named default. Up to 255 letters (uppercase and lowercase), numbers, and hyphens are allowed.
There was a problem hiding this comment.
I fully agree with this. If there is a great way to have this default cluster I am totally fine with it. But I like if CDK is not calling AWS before creating the template.
There was a problem hiding this comment.
Since the default cluster has a static name 'default', another option could be to always use the 'default' cluster for the Fargate service if the cluster is not provided. Con: this would require the user to create the 'default' cluster manually in the account/region (through console first-run, etc), otherwise the stack creation will fail due to non-existent cluster.
There was a problem hiding this comment.
FWIW, the VPC construct is already describing stuff about the account, like availability zones
There was a problem hiding this comment.
We could implement a context provider for ECS clusters, probably worth to do generally. However, for this use case, since the default cluster must be created manually, I'd argue that we can simply define a CDK default cluster per stack in the method I described, as it will seamlessly work for any user, and will not create any conflicts between stacks/apps/users within the same account/region.
There was a problem hiding this comment.
Ok, I will implement the default cluster per stack approach. I think one cluster per stack is a reasonable trade-off.
| @@ -198,6 +198,12 @@ export abstract class LoadBalancedServiceBase extends cdk.Construct { | |||
| new cdk.CfnOutput(this, 'LoadBalancerDNS', { value: this.loadBalancer.loadBalancerDnsName }); | |||
| } | |||
|
|
|||
| protected getCreateDefaultCluster(scope: cdk.Construct, vpc?: ec2.IVpc): ecs.Cluster { | |||
| const DEFAULT_CLUSTER_ID = `EcsDefaultCluster${vpc ? vpc.node.id : ''}`; | |||
There was a problem hiding this comment.
"salt" the cluster ID with some uuid or something that will prevent people from accidentally defining constructs that will collide with this name, especially if it's EcsDefaultCluster.
There was a problem hiding this comment.
Do you mean a variable value or some magic string in the code to prevent collision?
| public readonly logDriver?: ecs.LogDriver; | ||
|
|
||
| constructor(scope: cdk.Construct, id: string, props: LoadBalancedServiceBaseProps) { | ||
| super(scope, id); | ||
|
|
||
| if (props.cluster && props.vpc) { |
There was a problem hiding this comment.
Please move this logic to LoadBalancedFargateService as discussed.
There was a problem hiding this comment.
I am not sure how this should work, as the constructor needs the cluster and I cannot do stuff before calling super...
There was a problem hiding this comment.
you are right. OK, let's leave this here, but make sure that for EC2 cluster is required.
There was a problem hiding this comment.
And how? The base class does not know about EC2 or Fargate, does it?
Why shouldn't it be possible to do:
const service = new LoadBalanced....;
service.cluster.addCapacity(...);
I am open for any hint.
There was a problem hiding this comment.
The base class is abstract, isn't it?
There was a problem hiding this comment.
This is the same when you provide a cluster but do not add capacity to it ...
There was a problem hiding this comment.
@hoegertn is correct. We have other similar cases for “late validation”, like codepipeline (you can create a pipeline with no stages and then add them, but at least one is required). This essentially the only reason we have the “validate” hook.
There was a problem hiding this comment.
@hoegertn is correct. We have other similar cases for “late validation”, like codepipeline (you can create a pipeline with no stages and then add them, but at least one is required). This essentially the only reason we have the “validate” hook.
@eladb the intent behind the constructs in ecs-patterns is to provide an opinionated approach to creating ecs services following what is considered best practices. I definitely agree that this works, but by relying on late validation, and not requiring capacity to be an input prop, we're not providing an opinion (allowing the user to decide if they want to add capacity when we know that they need to provide capacity), we're straying away from the intentions of the ecs-patterns module. @SoManyHs thoughts?
I would suggest that AddCapacityOptions (if cluster is not provided) or cluster with capacity already added to it should be required.
There was a problem hiding this comment.
While I agree with this opinion I do not see how this PR changes the current behavior as it currently possible to add clusters without capacity. So I think we could have this PR as is and create an extra issue about late vs. instant validation of capacity whether providing a cluster or not. Any thoughts?
There was a problem hiding this comment.
I'm okay with this, can you create an issue and add it?
|
How do we proceed here? @eladb |
| @@ -82,7 +84,11 @@ export class Cluster extends Resource implements ICluster { | |||
| }); | |||
| this.clusterName = this.getResourceNameAttribute(cluster.ref); | |||
|
|
|||
| this.vpc = props.vpc; | |||
| if (props.vpc) { | |||
There was a problem hiding this comment.
Can you change this into a one-line conditional (to maintain consistency with the way that we set properties in the other constructs).
this.vpc = props.vpc !== undefined ? props.vpc : new ec2.Vpc(this, 'Vpc', { maxAZs: 2 });
| @@ -56,6 +56,23 @@ export = { | |||
| test.done(); | |||
| }, | |||
|
|
|||
| 'setting vpc and cluster throws error'(test: Test) { | |||
There was a problem hiding this comment.
Can you also add a test here for providing a vpc directly?
There was a problem hiding this comment.
@hoegertn LoadBalancedFargateService needs a vpc or a cluster with vpc specified, but it doesn't actually require capacity, where as a LoadBalancedEc2Service needs capacity which requires a cluster to be present with capacity in it.
In this case, you want cluster to be required and ensure that capacity is added, fail if vpc is provided without capacity.
| @@ -51,11 +51,29 @@ export = { | |||
| test.done(); | |||
| }, | |||
|
|
|||
| 'setting vpc and cluster throws error'(test: Test) { | |||
There was a problem hiding this comment.
Can you add a test for the scenario when only vpc is provided and ensure that capacity isn't added?
| public readonly logDriver?: ecs.LogDriver; | ||
|
|
||
| constructor(scope: cdk.Construct, id: string, props: LoadBalancedServiceBaseProps) { | ||
| super(scope, id); | ||
|
|
||
| if (props.cluster && props.vpc) { |
There was a problem hiding this comment.
@hoegertn LoadBalancedFargateService needs a vpc or a cluster with vpc specified, but it doesn't actually require capacity, where as a LoadBalancedEc2Service needs capacity which requires a cluster to be present with capacity in it.
packages/@aws-cdk/aws-ecs-patterns/lib/base/load-balanced-service-base.ts
Outdated
Show resolved
Hide resolved
packages/@aws-cdk/aws-ecs-patterns/lib/base/load-balanced-service-base.ts
Outdated
Show resolved
Hide resolved
Done. |
|
@SoManyHs Hi, any chance to get this merged? |
|
@eladb can we merge this in? |
Pull Request Checklist
designfolderfixes #2753 #2754
By submitting this pull request, I confirm that my contribution is made under the terms of the Apache-2.0 license.