Deploy the istio-egress-gateway helm chart on Oracle Kubernetes Engine (OKE)
TypeScriptTo deploy the Istio Egress Gateway Helm chart on Oracle Kubernetes Engine (OKE), you will follow these steps:
- Set up the Oracle Kubernetes Engine (OKE) cluster, which will form the foundation on which you can deploy applications using Helm charts.
- Install the Istio Egress Gateway using the Helm chart. Helm is a package manager for Kubernetes that simplifies deployment and management of applications.
For this task, we will use the following resources:
-
oci.ContainerEngine.Cluster: This is the resource provided by the Oracle Cloud Infrastructure (OCI) Pulumi provider to create and manage an OKE cluster (docs). -
kubernetes.helm.sh/v3.Chart: This is the resource provided by the Kubernetes Pulumi provider to deploy an application using a Helm chart (docs).
Below is a Pulumi program in TypeScript that performs these steps. Remember that before running this Pulumi program, you need to have Pulumi installed and configured with the appropriate cloud providers—Oracle Cloud Infrastructure (OCI) in this case.
import * as oci from "@pulumi/oci"; import * as k8s from "@pulumi/kubernetes"; // Step 1: Create an Oracle Kubernetes Engine (OKE) cluster const cluster = new oci.ContainerEngine.Cluster("my-oke-cluster", { /* ... You would set properties here like the compartmentId, VCN configuration, and which Kubernetes version you'd like to deploy based on your organization's requirements ... */ }); // Obtain the kubeconfig file from the cluster, which is necessary to communicate with your cluster const kubeconfig = oci.containerengine.getClusterKubeconfigOutput({ clusterId: cluster.id, }); // Step 2: Create a new Kubernetes Provider instance that uses our kubeconfig const k8sProvider = new k8s.Provider("my-k8s-provider", { kubeconfig: kubeconfig.value, }); // Deploy Istio Egress Gateway Helm chart to the OKE cluster using the Kubernetes provider const istioEgressGateway = new k8s.helm.v3.Chart("istio-egress", { chart: "istio-egressgateway", version: "x.y.z", // Specify the version of the Egress Gateway chart you want to deploy namespace: "istio-system", // Specify the namespace where you want to install the chart // You can provide any custom values to the chart which will configure Istio Egress Gateway according to your needs values: { /* ... Your custom values here ... */ }, }, { provider: k8sProvider }); // Export the public URL for the Istio Egress Gateway service export const istioEgressGatewayUrl = istioEgressGateway.getResourceProperty("v1/Service", "istio-egressgateway", "status").apply(s => `http://${s.loadBalancer.ingress[0].hostname}`);Explanation:
- We begin by creating an OKE cluster using
oci.ContainerEngine.Cluster, which provisions a Kubernetes cluster in your OCI account. - Using the
getClusterKubeconfigOutputfunction, the kubeconfig needed to interact with your Kubernetes cluster is retrieved. - A Kubernetes provider is configured using this kubeconfig, which instructs Pulumi to perform Kubernetes operations on the OKE cluster.
- The
kubernetes.helm.v3.Chartresource deploys the Istio Egress Gateway Helm chart to the created OKE cluster by specifying the chart name and version. Additionally, you can pass any custom values to configure the Istio Egress Gateway to your requirements, like specifying a particular namespace or adaptive resource limits. - Finally, the public URL of the Istio Egress Gateway service is exported so you can access it outside the cluster.
Before running this code, you would need to:
- Replace the placeholder values in the comments with actual configuration values specific to your environment and requirements.
- Ensure you have the necessary permissions and OCI credentials configured for Pulumi to manage resources in OCI.
- Replace the chart version
'x.y.z'with the appropriate version number you wish to deploy.
To execute this program, save it in a file (e.g.,
index.ts), and use the Pulumi CLI commandspulumi upto create or update the resources andpulumi destroyto tear down the resources when you're done with them.