feat(aws-eks): Add L2 Construct for Amazon EKS clusters and worker nodes

examples/cdk-examples-typescript/eks-cluster/cdk.json

@@ -0,0 +1,15 @@
+{
+ "app": "node index",
+ "context": {
+ "availability-zones:413174413047:us-east-1": [
+ "us-east-1a",
+ "us-east-1b",
+ "us-east-1c",
+ "us-east-1d",
+ "us-east-1e",
+ "us-east-1f"
+ ],
+ "ssm:413174413047:us-east-1:/aws/service/ami-amazon-linux-latest/amzn-ami-hvm-x86_64-gp2": "ami-0ff8a91507f77f867",
+ "ssm:413174413047:us-east-1:/aws/service/ami-amazon-linux-latest/amzn2-ami-hvm-x86_64-gp2": "ami-0922553b7b0369273"
+ }
+}

examples/cdk-examples-typescript/eks-cluster/index.ts

@@ -0,0 +1,99 @@
+import ec2 = require("@aws-cdk/aws-ec2");
+import eks = require("@aws-cdk/aws-eks");
+import cdk = require("@aws-cdk/cdk");
+
+const ENV = "dev";
+const app = new cdk.App();
+
+/**
+ * Ths stack creates the VPC and network for the cluster
+ *
+ * @default single public subnet per availability zone (3)
+ * This creates three (3) total subnets with an Internet Gateway
+ * The subnets could be private with a Nat Gateway
+ * they must not be isolated, as instances later need to
+ * have outbound internet access to contact the API Server
+ */
+const networkStack = new cdk.Stack(app, "Network");
+
+const vpc = new ec2.VpcNetwork(networkStack, "VPC", {
+ cidr: "10.244.0.0/16",
+ maxAZs: 3,
+ natGateways: 0,
+ subnetConfiguration: [
+ {
+ name: "pub",
+ cidrMask: 24,
+ subnetType: ec2.SubnetType.Public
+ }
+ ],
+ tags: {
+ env: `${ENV}`
+ }
+});
+const vpcExport = vpc.export();
+
+/**
+ * This stack creates the EKS Cluster with the imported VPC
+ * above, and puts the cluster inside the chosen placement
+ *
+ * clusterName can be set (not recommended), let cfn generate
+ * version can be specified, only 1.10 supported now
+ * will become useful when more versions are supported
+ *
+ * It also creates a group of 3 worker nodes with default types
+ * and given min, max and sshKeys
+ */
+const clusterStack = new cdk.Stack(app, "Cluster");
+
+const clusterVpc = ec2.VpcNetworkRef.import(
+ clusterStack,
+ "ClusterVpc",
+ vpcExport
+);
+const cluster = new eks.Cluster(clusterStack, "Cluster", {
+ vpc: clusterVpc,
+ vpcPlacement: {
+ subnetsToUse: ec2.SubnetType.Public
+ }
+});
+
+/**
+ * This is optional and should be more specific to given
+ * corparate CIDRS for access from the outside, maybe
+ * even a bastion host inside AWS.
+ */
+cluster.connections.allowFromAnyIPv4(new ec2.TcpPort(443));
+
+const grp1 = new eks.Nodes(clusterStack, "NodeGroup1", {
+ vpc: clusterVpc,
+ cluster,
+ minNodes: 3,
+ maxNodes: 6,
+ sshKeyName: "aws-dev-key"
+});
+grp1.nodeGroup.connections.allowFromAnyIPv4(new ec2.TcpPort(22));
+
+/**
+ * This adds a second group of worker nodes of different
+ * InstanceClass and InstanceSize
+ * This gets pushed into an Array of Nodes
+ */
+const grp2 = new eks.Nodes(clusterStack, "NodeGroup2", {
+ vpc: clusterVpc,
+ cluster,
+ nodeClass: ec2.InstanceClass.T2,
+ nodeSize: ec2.InstanceSize.Medium,
+ nodeType: eks.NodeType.Normal,
+ minNodes: 2,
+ maxNodes: 4,
+ sshKeyName: "aws-dev-key"
+});
+/**
+ * This is optional and should be more specific to given
+ * corparate CIDRS for access from the outside, maybe
+ * even a bastion host inside AWS.
+ */
+grp2.nodeGroup.connections.allowFromAnyIPv4(new ec2.TcpPort(22));
+
+app.run();

examples/cdk-examples-typescript/package.json

@@ -29,6 +29,7 @@
  "@aws-cdk/aws-dynamodb": "^0.15.0",
  "@aws-cdk/aws-ec2": "^0.15.0",
  "@aws-cdk/aws-ecs": "^0.15.0",
+ "@aws-cdk/aws-eks": "^0.15.0",
  "@aws-cdk/aws-elasticloadbalancing": "^0.15.0",
  "@aws-cdk/aws-elasticloadbalancingv2": "^0.15.0",
  "@aws-cdk/aws-iam": "^0.15.0",
@@ -50,4 +51,4 @@
  "cdk"
  ],
  "homepage": "https://github.com/awslabs/aws-cdk"
-}
+}