Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update deployment templates for Aurora Serverless v2 #3623

Merged
merged 8 commits into from
Apr 18, 2024
Merged

Update deployment templates for Aurora Serverless v2 #3623

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
8 commits
Select commit Hold shift + click to select a range
f3c05e9
update CL
Apr 8, 2024
64639c7
update terraform templates to serverless v2
Apr 10, 2024
6bea497
Merge branch 'master' into teclark/CUMULUS-3669-serverless-update-dep…
Apr 10, 2024
3be0a8a
add terraform variable validation
Apr 10, 2024
e669cdd
Merge branch 'master' into teclark/CUMULUS-3669-serverless-update-dep…
Apr 16, 2024
fddeec5
remove upgrade variables
Apr 16, 2024
2b0ef7c
add prevent_destroy = true
Apr 18, 2024
16254be
add prevent_destroy = true
Apr 18, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 2 additions & 0 deletions CHANGELOG.md
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -82,6 +82,8 @@ the CloudWatch logs for your async operations (e.g. `PREFIX-AsyncOperationEcsLog
- Added user guide on querying dead-letter-archive messages using AWS Athena.

### Changed
- **CUMULUS-3669**
- Updates deployment template to create and utilize an Aurora Serverless V2 PostgreSQL cluster.
- **CUMULUS-3570**
- Updated Kinesis docs to support latest AWS UI and recommend server-side encryption.
- **CUMULUS-3519**
Expand Down
3 changes: 1 addition & 2 deletions example/rds-cluster-tf/main.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -23,11 +23,10 @@ module "rds_cluster" {
engine_version = var.engine_version
deletion_protection = true
cluster_identifier = var.cluster_identifier
cluster_instance_count = var.cluster_instance_count
tags = var.tags
snapshot_identifier = var.snapshot_identifier
lambda_timeouts = var.lambda_timeouts
lambda_memory_sizes = var.lambda_memory_sizes
enable_upgrade = var.enable_upgrade
parameter_group_family = var.parameter_group_family
parameter_group_family_v13 = var.parameter_group_family_v13
}
4 changes: 4 additions & 0 deletions example/rds-cluster-tf/outputs.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,10 @@ output "rds_endpoint" {
value = module.rds_cluster.rds_endpoint
}

output "rds_reader_endpoint" {
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice! 👍🏻

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Might as well add this output now, we know we'll need it soon.

value = module.rds_cluster.rds_reader_endpoint
}

output "admin_db_login_secret_arn" {
value = module.rds_cluster.admin_db_login_secret_arn
}
Expand Down
19 changes: 10 additions & 9 deletions example/rds-cluster-tf/terraform.tfvars.example
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,9 +1,10 @@
prefix = "prefix"
db_admin_username = "changethisuser"
db_admin_password = "changethispassword"
region = "us-east-1"
vpc_id = "vpc_id"
subnets = ["subnet-some-subnet-1", "subnet-some-subnet-in-another-az-2"]
deletion_protection = false
cluster_identifier = "some_cluster"
tags = { "Deployment" = "some_deployment_identifier" }
prefix = "prefix"
db_admin_username = "changethisuser"
db_admin_password = "changethispassword"
region = "us-east-1"
vpc_id = "vpc_id"
subnets = ["subnet-some-subnet-1", "subnet-some-subnet-in-another-az-2"]
deletion_protection = false
cluster_identifier = "some_cluster"
cluster_instance_count = 1
tags = { "Deployment" = "some_deployment_identifier" }
22 changes: 10 additions & 12 deletions example/rds-cluster-tf/variables.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -48,6 +48,16 @@ variable "cluster_identifier" {
default = "cumulus-rds-serverless-default-cluster"
}

variable "cluster_instance_count" {
description = "Number of instances to create inside of the cluster"
type = number
default = 1
validation {
condition = var.cluster_instance_count >= 1 && var.cluster_instance_count <= 16
error_message = "Variable cluster_instance_count should be between 1 and 16."
}
}
npauzenga marked this conversation as resolved.
Show resolved Hide resolved

variable "snapshot_identifier" {
description = "Optional database snapshot for restoration"
type = string
Expand Down Expand Up @@ -86,12 +96,6 @@ variable "lambda_memory_sizes" {
}
}

variable "enable_upgrade" {
description = "Flag to enable use of updated parameter group"
type = bool
default = false
}

variable "lambda_timeouts" {
description = "Configurable map of timeouts for lambdas"
type = map(number)
Expand All @@ -100,12 +104,6 @@ variable "lambda_timeouts" {
}
}

variable "parameter_group_family" {
description = "Database family to use for creating database parameter group"
type = string
default = "aurora-postgresql11"
}

variable "parameter_group_family_v13" {
description = "Database family to use for creating database parameter group under postgres 13 upgrade conditions"
type = string
Expand Down
40 changes: 20 additions & 20 deletions tf-modules/cumulus-rds-tf/main.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -38,6 +38,7 @@ resource "aws_secretsmanager_secret_version" "rds_login" {
database = "postgres"
engine = "postgres"
host = aws_rds_cluster.cumulus.endpoint
hostReader = aws_rds_cluster.cumulus.reader_endpoint
port = 5432
dbClusterIdentifier = aws_rds_cluster.cumulus.id
})
Expand All @@ -52,21 +53,6 @@ resource "aws_security_group_rule" "rds_security_group_allow_postgres" {
self = true
}

resource "aws_rds_cluster_parameter_group" "rds_cluster_group" {
count = var.enable_upgrade ? 0 : 1
name = "${var.prefix}-cluster-parameter-group"
family = var.parameter_group_family

dynamic "parameter" {
for_each = var.db_parameters
content {
apply_method = parameter.value["apply_method"]
name = parameter.value["name"]
value = parameter.value["value"]
}
}
}

resource "aws_rds_cluster_parameter_group" "rds_cluster_group_v13" {
name = "${var.prefix}-cluster-parameter-group-v13"
family = var.parameter_group_family_v13
Expand All @@ -82,9 +68,9 @@ resource "aws_rds_cluster_parameter_group" "rds_cluster_group_v13" {
}

resource "aws_rds_cluster" "cumulus" {
depends_on = [aws_db_subnet_group.default, aws_rds_cluster_parameter_group.rds_cluster_group]
depends_on = [aws_db_subnet_group.default, aws_rds_cluster_parameter_group.rds_cluster_group_v13]
cluster_identifier = var.cluster_identifier
engine_mode = "serverless"
engine_mode = "provisioned"
npauzenga marked this conversation as resolved.
Show resolved Hide resolved
engine = "aurora-postgresql"
engine_version = var.engine_version
database_name = "postgres"
Expand All @@ -94,21 +80,35 @@ resource "aws_rds_cluster" "cumulus" {
preferred_backup_window = var.backup_window
db_subnet_group_name = aws_db_subnet_group.default.id
apply_immediately = var.apply_immediately
storage_encrypted = true
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It's worth noting - this is required as the default changed from v1 to v2. 👍🏻

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Correct, v2 default is storage_encrypted = false, so we need to add it.


scaling_configuration {
serverlessv2_scaling_configuration {
npauzenga marked this conversation as resolved.
Show resolved Hide resolved
max_capacity = var.max_capacity
min_capacity = var.min_capacity
timeout_action = var.rds_scaling_timeout_action
}
vpc_security_group_ids = [aws_security_group.rds_cluster_access.id]
deletion_protection = var.deletion_protection
enable_http_endpoint = true
tags = var.tags
final_snapshot_identifier = "${var.cluster_identifier}-final-snapshot"
snapshot_identifier = var.snapshot_identifier
db_cluster_parameter_group_name = var.enable_upgrade ? aws_rds_cluster_parameter_group.rds_cluster_group_v13.id : aws_rds_cluster_parameter_group.rds_cluster_group[0].id
db_cluster_parameter_group_name = aws_rds_cluster_parameter_group.rds_cluster_group_v13.id

lifecycle {
ignore_changes = [engine_version]
prevent_destroy = true
}
}

resource "aws_rds_cluster_instance" "cumulus" {
cluster_identifier = aws_rds_cluster.cumulus.id
identifier = "${aws_rds_cluster.cumulus.id}-instance-${count.index+1}"
count = var.cluster_instance_count
instance_class = "db.serverless"
engine = aws_rds_cluster.cumulus.engine
engine_version = aws_rds_cluster.cumulus.engine_version

lifecycle {
prevent_destroy = true
}
}
4 changes: 4 additions & 0 deletions tf-modules/cumulus-rds-tf/outputs.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -6,6 +6,10 @@ output "rds_endpoint" {
value = aws_rds_cluster.cumulus.endpoint
}

output "rds_reader_endpoint" {
value = aws_rds_cluster.cumulus.reader_endpoint
}
npauzenga marked this conversation as resolved.
Show resolved Hide resolved

output "admin_db_login_secret_arn" {
value = aws_secretsmanager_secret_version.rds_login.arn
}
Expand Down
22 changes: 10 additions & 12 deletions tf-modules/cumulus-rds-tf/variables.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -91,24 +91,12 @@ variable "engine_version" {
default = "13.12"
}

variable "parameter_group_family" {
description = "Database family to use for creating database parameter group"
type = string
default = "aurora-postgresql11"
}

variable "parameter_group_family_v13" {
description = "Database family to use for creating database parameter group under postgres 13 upgrade conditions"
type = string
default = "aurora-postgresql13"
}

variable "enable_upgrade" {
description = "Flag to enable use of updated parameter group for postgres v13"
type = bool
default = true
}

variable "max_capacity" {
type = number
default = 4
Expand All @@ -119,6 +107,16 @@ variable "min_capacity" {
default = 2
}

variable "cluster_instance_count" {
description = "Number of instances to create inside of the cluster"
type = number
default = 1
validation {
condition = var.cluster_instance_count >= 1 && var.cluster_instance_count <= 16
error_message = "Variable cluster_instance_count should be between 1 and 16."
}
}

### Required for user/database provisioning
variable "prefix" {
type = string
Expand Down