Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

[ci] Test infrastructure deployment to AWS #978

Merged
merged 31 commits into from
Dec 19, 2023

Conversation

barroco
Copy link
Contributor

@barroco barroco commented Dec 15, 2023

PR #974 was reverted since the pull_request trigger started from a public fork is not allowed to get write permissions on the token_id (used to retrieve AWS credentials). This is possible to overcome that limitation by using a pull_request_target trigger. However, we want to make sure that the workflow is triggered only after being reviewed by a commiter, this PR changes the workflow to be triggered manually only. Once merged to master, it will be possible to trigger the workflow on specific branches.

--- Original #974 description
This PR adds a deployment scenario (aws-1) to the repository which sets up a Kubernetes cluster in AWS using a user with limited permissions on the aws account. For the moment, the scenario only setup the Kubernetes infrastructure and tears it down. A Github Actions workflow is configured to run it on pull requests or manually.

This PR will be followed by two others to keep the changeset as small as possible:

  1. Deployment of the DSS using helm.
  2. Test the deployment of the DSS using interuss/monitoring.

Details of the changes:

  • Add new operations deployment utilities in /deploy/operations to create and destroy the Kubernetes cluster.
  • terraform-aws-kubernetes
    • Add aws_iam_permissions_boundary variable
    • Add iam_role_node_group_arn output
    • Retrieve token using terraform instead of CLI command
    • Various structure improvements
  • Configure the new dss-deploy github workflow

@barroco barroco merged commit 462e8f8 into interuss:master Dec 19, 2023
6 checks passed
@barroco
Copy link
Contributor Author

barroco commented Dec 19, 2023

@barroco barroco deleted the ci-terraform branch December 19, 2023 21:23
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants