This repo contains an implementation of part of the Humanitec Reference Architecture for an Internal Developer Platform.
To install an implementation containing add-ons, follow the separate README. We currently feature these add-ons:
This repo covers the base layer of the implementation for AWS.
By default, the following will be provisioned:
- VPC
- EKS Cluster
- IAM User to access the cluster
- Ingress NGINX in the cluster
- Resource Definitions in Humanitec for:
- Kubernetes Cluster
- Logging
- A Humanitec account with the
Administratorrole in an Organization. Get a free trial if you are just starting. - An AWS account
- AWS CLI installed locally
- terraform installed locally
Note: Using this Reference Architecture Implementation will incur costs for your AWS project.
It is recommended that you fully review the code before you run it to ensure you understand the impact of provisioning this infrastructure. Humanitec does not take responsibility for any costs incurred or damage caused when using the Reference Architecture Implementation.
This reference architecture implementation uses Terraform. You will need to do the following:
-
Fork this GitHub repo, clone it to your local machine and navigate to the root of the repository.
-
Set the required input variables. (see Required input variables)
-
Ensure you are logged in with
aws. (Follow the quickstart if you aren't) -
Set the
HUMANITEC_TOKENenvironment variable to an appropriate Humanitec API token with theAdministratorrole on the Humanitec Organization.For example:
export HUMANITEC_TOKEN="my-humanitec-api-token" -
Run terraform:
terraform init terraform plan terraform applyterraform planandapplymight output this message:│ Warning: Argument is deprecated │ │ with module.base.module.aws_eks.aws_eks_addon.this["aws-ebs-csi-driver"], │ [...]This is due to an upstream issue with the Terraform AWS modules, and can be ignored.
Terraform reads variables by default from a file called terraform.tfvars. You can create your own file by renaming the terraform.tfvars.example file in the root of the repo and then filling in the missing values.
You can see find a details about each of those variables and additional supported variables under Inputs.
Check for the existence of key elements of the reference architecture. This is a subset of all elements only. For a complete list of what was installed, review the Terraform code.
-
Set the
HUMANITEC_ORGenvironment variable to the ID of your Humanitec Organization (must be all lowercase):export HUMANITEC_ORG="my-humanitec-org" -
Verify the existence of the Resource Definition for the EKS cluster in your Humanitec Organization:
curl -s https://api.humanitec.io/orgs/${HUMANITEC_ORG}/resources/defs/ref-arch \ --header "Authorization: Bearer ${HUMANITEC_TOKEN}" \ | jq .id,.typeThis should output:
"ref-arch" "k8s-cluster" -
Verify the existence of the newly created EKS cluster:
aws eks list-clusters --region <your-region>This should output:
{ "clusters": [ "ref-arch", "[more previously existing clusters here]" ] }
Once you are finished with the reference architecture, you can remove all provisioned infrastrcuture and the resource definitions created in Humanitec with the following:
-
Ensure you are (still) logged in with
aws. -
Ensure you still have the
HUMANITEC_TOKENenvironment variable set to an appropriate Humanitec API token with theAdministratorrole on the Humanitec Organization. -
Run terraform:
terraform destroy
| Name | Version |
|---|---|
| terraform | >= 1.3.0 |
| aws | ~> 5.17 |
| humanitec | ~> 0.13 |
| Name | Source | Version |
|---|---|---|
| base | ./modules/base | n/a |
| Name | Description | Type | Default | Required |
|---|---|---|---|---|
| aws_account_id | AWS Account (ID) to use | string |
n/a | yes |
| aws_region | AWS Region to deploy into | string |
n/a | yes |
| humanitec_org_id | Humanitec Organization ID | string |
n/a | yes |