This is a architectural description of the smad-deploy-azure
| Folder | Description | Depends on |
|---|---|---|
| ./ | Root module | |
| ./modules | Modules used by the script. | |
| ../k8s | Module for creating kubernetes cluster to Azure (AKS) | |
| ../container_deployment | Handles deployment of the stack via Helm to k8s cluster. Holds all the information regarding setting up the cloud environment | k8s |
| ../influxdb | Module that handles deployment of Influxdb to k8s cluster. Holds all the information to set up database for prometheus metrics | k8s |
| ../container_registry | Creates ACR for k8s cluster. Currently not used | k8s |
| ../datam | Gets value from remote state file located in Azure subscription. | |
| ../tfstate_storage_azure | Creates resource group for terraform state file | |
| ../storage_rg | Creates separate resource group for persistent data needs |
Every module follows the conventional Terraform naming scheme, and therefore has main.tf, variables.tf and outputs.tf files.
Used for deploying modules and setting up proper environment for kubernetes and helm providers, and azurerm backend.
Project name is prefixed with Terraform Workspace name.
Uses module specified in ./modules/k8s/ folder for deploying Kubernetes cluster under k8test-rg resource group. Node count of cluster is controlled by k8s_agent_count variable, where node count for default terraform workspace is 3, and non-default workspace is 2. use_separate_storage_rg variable controls whether separate resource group for storage purposes is created
Role assingment for separate resource group. Gets scope value from datamodule. Created only when use_separate_storage_rg is true.
Uses module specified in ./modules/container_deployment/ folder for deploying services on previously created Kubernetes cluster. Custom MongoDB username and password could be supplied to services, otherwise default is used.
Kubernetes and Helm providers are configured with outputs acquired from created k8s cluster module.
Adds bitnami helm charts that bootstrap a Influxdb deployment on the k8s cluster using the Helm package manager.
Used to specify project name. No need to change because Terraform Workspace prefix can create unique project names.
Node count for clusters using "default" Terraform Workspace
Node count for clusters using non-default Terraform Workspace. Used for test deployments.
MongoDB username for deployed MongoDB instance. Can be specified with .tfvars
MongoDB password for deployed MongoDB instance. Can be specified with .tfvars
Outputs for kube config files and path's for it
Example .tfvars for supplying custom variables.
This module can be deploy independetly because of provider specifications in module.
Creates resource group for Kubernetes cluster with project name and resource_group_name suffix specified in variables.
Log analytics workspace is also created with ContainerInsights name.
Kubernetes cluster is created with resource "azurerm_kubernetes_cluster" "k8s_cluster" under previously created resource group.
Creates storage class with reclaim policy of retain. Resource group is defined with the separate_storage_rg variable, and if it is false then null value is used. This means that when resource group is null then resource group is created under the same resource group where k8s_cluster is.
Creates persistent volume claim for MongoDB.
Creates persistent volume claim for InfluxDB.
Contains variables for naming all the resources and specifying node count. Project name, k8s_agent_count and resource_group_name_suffix variables can be set from root main.tf
Output values acquired from k8s_clusters kube config. THese include client keys, cerficates, usernames, passwords and hosts for k8s cluster.
Depends on k8s module
This module handles all the aspects of deploying smad service stack. Which consists of Hono, MongoDB, Prometheus, Jaeger and Grafana. Uses Helm for deployment.
Direct URL to chart's source is provided one line above a helm_release resource. Usually that URL is where one can see how the chart can be configured.
The chart values can be set either by giving the values in a .yaml file or by including a set block within the helm_release block.
In the current script, the chart values are mostly set by giving the values via the included .yaml files.
If the chart source page doesn't provide list of settable values, the values can also be shown by adding the repo and running helm show values:
$ helm repo add <choose_repo_name> <repo_url>
$ helm repo update
$ helm show values <chosen_repo_name>/<chart_name>Values used by service are supplied by mongo_values.yaml -file. Sensitive values such as usernames and passwords acquired from variables.tf
Deploys Hono from Helm Chart. Uses hono_values.yaml for configuration and sensitive values from MongoDB are acquired from variables.tf. Deploys only after kube-prometheus-stack has succesfully deployed.
Used for creating ingress for Jaeger-query service
Deploys jaeger-operator, and is configured with values from jaeger_values.yaml
Creates kubernetes config map and supplies preconfigured Grafana dashboards via .json
Deploys kube-prometheus-stack which consists of Prometheus, kube metrics and grafana. Gets values from prom_values.yaml
Holds information related to mondogb username and passwords. Can be configured independetly otherwise defaults used.
Configures Hono helm chart to use separately deployed jaeger-operator. Also configures to use separately deployed MongoDB for Hono device registry. Other services provided by Hono Helm chart are disabled. Smad-deploy-azure uses separately deployed and configured services.
Jaeger is enabled with simple metadata.
Configures grafana, prometheus as LoadBalancers, and configures scrape configs for Hono.
Configures persistence volumeclaim for MongoDB, and enables metrics and statefuls set.
NOT USED
Depends on k8s module
Creates Azure Container registry in the same resource group as k8s modules.
Assigns acrpull role for k8s cluster
Variables for naming resources.
Output values for ACR. Containing id, login url, username and password.
Depends on k8s module
This module deploys influxdb as a long term storage for prometheus monitoring data.
Adds bitnami helm charts that bootstraps a Influxdb deployment on a Kubernetes cluster using the Helm package manager and creates a database monitoring_data for monitoring data.
Values used for deploying Influx.
Stores admin, user, writeUser and readUser passwords for authentication.
This module used for getting data from remote Terraform state for creating role assingment in root folders main.tf
Data resource which uses previously created tfstate naming for getting informatio of created tfstate in Azure subscription
Outputs remote state's id.
This module is to be ran separately, because it creates needed Terraform State files and storage account and container to Azure
Hold variables for naming resources created by this module.
Output values four resource group, storage account and storate container.
This modules creates separate resource group for persistent volume claim.
Establish azurerm backend with previously set naming for tfstate files, and create resource group named storage-resource-group"
Output value of created resource group's id.