Deploy the psql-sed helm chart on AWS EKS
TypeScriptTo deploy the
psql-sedHelm chart on AWS EKS, we will follow these steps:- Create an AWS EKS Cluster: We'll define an EKS cluster that Kubernetes workloads can be scheduled on.
- Define IAM Roles for EKS: EKS requires at least two IAM roles: one for the EKS service itself to manage resources and another for the worker nodes to allow them access to other AWS services.
- Deploy the Helm Chart to EKS: After setting up the cluster, we will deploy the
psql-sedHelm chart to the EKS cluster.
The first step is to create an EKS cluster. Pulumi provides an
eks.Clusterresource that simplifies creating EKS clusters eks.Cluster. We also create an IAM role for the EKS cluster combined with theaws-iam.EKSRoleEKSRole which is a custom Pulumi component that encapsulates IAM policy best practices for EKS.Next, typically you would use the
@pulumi/kubernetespackage to deploy Helm charts. However, for this example, I could not find a matching Helm chart namedpsql-sedin the Pulumi Registry Results provided, so I will assume thatpsql-sedrefers to an imaginary or custom Helm chart that you have access to.Here's a detailed program written in TypeScript using Pulumi to create an EKS cluster and deploy a Helm chart called
psql-sed. Make sure you have Pulumi installed and configured for AWS access, and Helm CLI installed if you need to download or customize the chart before deployment.import * as awsx from '@pulumi/awsx'; import * as eks from '@pulumi/eks'; import * as pulumi from '@pulumi/pulumi'; import * as k8s from '@pulumi/kubernetes'; import * as awsiam from '@pulumi/aws-iam'; // This package name is inferred and needs to be installed. // Create an EKS Role for the EKS Cluster. const eksRole = new awsiam.EKSRole("eksRole", {/*...*/}); // Create a VPC for our cluster. const vpc = new awsx.ec2.Vpc("my-vpc"); // Create an EKS cluster with the default configuration. const cluster = new eks.Cluster("my-cluster", { vpcId: vpc.id, subnetIds: vpc.publicSubnetIds, instanceType: "t2.medium", desiredCapacity: 2, minSize: 1, maxSize: 2, deployDashboard: false, roleMapping: [{ roleArn: eksRole.role.arn.apply(arn => arn), // ensure role ARN is passed as an apply function groups: ["system:masters"], username: "admin", }], tags: { Name: "my-cluster", }, }); // Export the clusters' kubeconfig. export const kubeconfig = cluster.kubeconfig.apply(JSON.stringify); // Create a provider for the EKS cluster to deploy Helm charts. const k8sProvider = new k8s.Provider("k8sProvider", { kubeconfig: cluster.kubeconfig, }); // Deploy the psql-sed Helm chart. const psqlSedChart = new k8s.helm.v3.Chart("psql-sed", { chart: "psql-sed", version: "1.0.0", // Specify the version of the Helm chart. fetchOpts:{ repo: "http://charts.example.com/", // Specify the repository for the psql-sed Helm chart. }, }, { provider: k8sProvider }); // Export the EKS cluster's kubeconfig. export const kubeConfig = cluster.kubeconfig; // To access the EKS cluster from your workstation ensure you have the following: // - AWS CLI configured with the same account used to create the EKS cluster. // - kubectl configured with the kubeconfig obtained from 'pulumi up' output. // Install 'aws-iam-authenticator' if you are using a kubeconfig with AWS IAM Authenticator.This Pulumi program does the following:
- Defines an IAM role for EKS with appropriate policies.
- Creates a new VPC for our cluster with
awsx. - Sets up an EKS cluster.
- Creates a Kubernetes provider that allows us to interact with the cluster.
- Deploys a Helm chart called
psql-sed.
Make sure to replace the
chart,version, andrepovalues with the actual details of yourpsql-sedchart. Thereposhould be the valid URL where your Helm chart is hosted.After running
pulumi upwith this Pulumi program, Pulumi will handle provisioning the resources in the