Deploy the tyk-gateway helm chart on Rancher

Question

Pulumi · Accepted Answer

Deploying the Tyk Gateway using Helm on Rancher requires multiple steps. You will first need a Rancher Kubernetes cluster where you can deploy resources. Using Pulumi with the `rancher2` package, you can manage Rancher resources, but deploying Helm charts directly is not part of the `rancher2` Pulumi package.

However, you can manage Kubernetes resources using the `kubernetes` Pulumi package. In a typical workflow, after setting up the Rancher Kubernetes cluster, you would configure your Pulumi Kubernetes provider to target that cluster. Then, you would use the Helm chart resource from the Kubernetes package to deploy Tyk Gateway onto the cluster.

Here are the steps to deploy a Helm chart on a Rancher cluster with Pulumi in TypeScript:

1. **Create or select a Kubernetes cluster in Rancher**.
2. **Install and configure Pulumi CLI and the Kubernetes CLI (kubectl)**.
3. **Configure Pulumi to use the Kubernetes cluster from Rancher**.
4. **Write the Pulumi code to deploy the Helm chart**.

We'll only focus on step 4 since the previous steps involve actions outside of writing Pulumi code.

The following program assumes you have a Kubernetes cluster managed by Rancher and that you have configured your `kubeconfig` file to include the credentials for this cluster. The `kubeconfig` file tells Pulumi (and kubectl) how to communicate with your Kubernetes cluster.

The program will use the Pulumi Kubernetes provider to deploy the Tyk Gateway Helm chart to your Rancher-managed cluster. It will:

- Import necessary Pulumi libraries.
- Create a Pulumi Kubernetes provider instance configured to use the cluster's context from the `kubeconfig`.
- Use the `helm.v3.Chart` resource to deploy the Tyk Gateway Helm chart.

Here's how you would write the Pulumi program in TypeScript:

```typescript
import * as k8s from "@pulumi/kubernetes";

// The context name from your kubeconfig that points to the Rancher managed cluster.
const clusterContext = "my-rancher-cluster";

// Create an instance of the Kubernetes provider with the specific cluster context.
const k8sProvider = new k8s.Provider("k8s-provider", { context: clusterContext });

// Deploy the Tyk Gateway Helm chart using the Pulumi Kubernetes Provider.
const tykGatewayChart = new k8s.helm.v3.Chart("tyk-gateway", {
    chart: "tyk-gateway",
    version: "1.0.0", // replace with a specific chart version if needed
    fetchOpts:{
        repo: "https://helm.tyk.io/public/helm/charts/", // replace with the correct Helm chart repository
    },
}, { provider: k8sProvider });

// Export the public IP or hostname that can be used to communicate with Tyk Gateway.
export const tykGatewayHost = tykGatewayChart.getResourceProperty("v1/Service", "tyk-gateway-tyk-gateway", "status")
    .apply(status => status.loadBalancer.ingress[0].hostname || status.loadBalancer.ingress[0].ip);
```

In this program:

- We create a Kubernetes provider that is configured to connect to a specific cluster according to the provided cluster context.
- We declare a `helm.v3.Chart` resource, specifying the name of the chart (`tyk-gateway`) and its version. We also set the Helm repository where the Tyk Gateway Helm chart is located. Make sure this repository is accessible for chart fetching.
- We pass the Kubernetes provider instance to the Helm chart resource to ensure that it's deployed to the correct Kubernetes cluster managed by Rancher.
- An export statement is included to create an output of the Tyk Gateway host. This is useful for checking the deployment status or for configuring DNS records.

Before running this Pulumi program, you must ensure that the Pulumi Kubernetes provider has been set up to interact with your Rancher cluster. This typically requires configuring your `kubeconfig` with the correct context and ensuring that Pulumi is authenticated to manage the resources on the cluster.