Deploy the prometheus-target helm chart on AWS EKS
TypeScriptTo deploy the Prometheus Helm chart on an Amazon EKS cluster with Pulumi, we will perform several high-level steps:
- Set up an EKS cluster: This involves creating a VPC, subnets, an IAM role for EKS, and finally the EKS cluster itself.
- Install the Prometheus Helm chart: Once the cluster is ready, we'll use Pulumi's
helm.v3.Chartresource to deploy Prometheus to our EKS cluster.
Let's proceed with the detailed implementation in TypeScript:
import * as aws from "@pulumi/aws"; import * as awsx from "@pulumi/awsx"; import * as eks from "@pulumi/eks"; import * as k8s from "@pulumi/kubernetes"; // Step 1: Set up an EKS cluster // We start by creating a new VPC for our EKS cluster to ensure network isolation. const vpc = new awsx.ec2.Vpc("my-vpc", { numberOfAvailabilityZones: 2, }); // Create an IAM role for the EKS cluster with the necessary permissions. const eksRole = new aws.iam.Role("eksRole", { assumeRolePolicy: aws.iam.assumeRolePolicyForPrincipal({ Service: "eks.amazonaws.com", }), }); // Attach the required Amazon EKS service policies to the IAM role. const servicePolicyAttachment = new aws.iam.RolePolicyAttachment("eks-service-policy-attachment", { role: eksRole, policyArn: aws.iam.ManagedPolicy.AmazonEKSServicePolicy, }); const clusterPolicyAttachment = new aws.iam.RolePolicyAttachment("eks-cluster-policy-attachment", { role: eksRole, policyArn: aws.iam.ManagedPolicy.AmazonEKSClusterPolicy, }); // Create an EKS cluster with the created IAM role and VPC configuration. const cluster = new eks.Cluster("my-cluster", { roleArn: eksRole.arn, vpcId: vpc.id, subnetIds: vpc.subnetIds, instanceType: "t2.medium", desiredCapacity: 2, minSize: 1, maxSize: 2, deployDashboard: false, }); // Step 2: Install the Prometheus Helm chart // Set up the Kubernetes provider using the kubeconfig from the created EKS cluster. const k8sProvider = new k8s.Provider("k8s", { kubeconfig: cluster.kubeconfig.apply(JSON.stringify), }); // Create a helm chart resource to deploy Prometheus. const prometheusChart = new k8s.helm.v3.Chart( "prometheus", { chart: "prometheus", version: "14.0.0", // specify the version of Prometheus chart you wish to deploy fetchOpts: { repo: "https://prometheus-community.github.io/helm-charts", }, }, { provider: k8sProvider } ); // Export the EKS cluster kubeconfig and Prometheus service details. export const kubeconfig = cluster.kubeconfig; export const prometheusService = prometheusChart.getResource( "v1/Service", "default/prometheus-server" );What's happening in this Pulumi program:
-
VPC Creation: We create a new VPC with
awsx.ec2.Vpcto host our EKS cluster, ensuring that certain components have high availability across multiple availability zones. -
IAM Role Creation: An IAM role
aws.iam.Roleis created with a trust policy that allows EKS to assume this role. This role is then attached to the EKS service policies, allowing EKS to manage resources on your behalf. -
EKS Cluster Creation: We then define an EKS cluster using
eks.Clusterwithin our VPC and specify the number of worker nodes and instance type. -
Kubernetes Provider Configuration: Using
k8s.Provider, we configure the Kubernetes provider to connect to our newly created EKS cluster by passing in the generatedkubeconfig. -
Helm Chart for Prometheus: Finally, we deploy Prometheus using
k8s.helm.v3.Chartby specifying the chart name and version, as well as the repository where the Helm chart is located. We also associate the Helm release with our Kubernetes provider. -
Exporting Outputs: We export the kubeconfig for accessing the EKS cluster and details of the Prometheus server service for quick access.
To use this Pulumi program, you would need to have Pulumi installed and configured for AWS access. After that, you could run
pulumi upto deploy this infrastructure and application. Remember to replace"14.0.0"with the actual version of the Prometheus chart you want to use; you can find the latest version in the Prometheus community Helm chart repository.