Page MenuHomePhabricator
Differential D12531

[terraform] initial ecs setup for keyserver primary
AcceptedPublic
Actions

Authored by will on Thu, Jun 20, 8:30 PM.
Tags
None
Referenced Files
F2133563: D12531.diff
Fri, Jun 28, 3:52 AM
F2131546: D12531.diff
Thu, Jun 27, 6:41 PM
F2130531: D12531.diff
Thu, Jun 27, 4:13 PM
Unknown Object (File)
Fri, Jun 21, 6:42 AM
Unknown Object (File)
Fri, Jun 21, 6:42 AM
Unknown Object (File)
Fri, Jun 21, 6:42 AM
Subscribers
ashoat
tomek

Details

Reviewers
varun
bartek
Summary

Drafting this for some initial feedback. This sets up ecs cluster with primary keyserver task def

Depends on D12529

Test Plan

Successfully running the the keyserver task in a docker container

Diff Detail

Repository
rCOMM Comm
Branch
keyserver_to_aws
Lint
No Lint Coverage
Unit
No Test Coverage

Event Timeline

will created this revision.Thu, Jun 20, 8:30 PM
will held this revision as a draft.
Herald added subscribers: tomek, ashoat. · View Herald TranscriptThu, Jun 20, 8:30 PM
will edited the summary of this revision. (Show Details)Thu, Jun 20, 8:30 PM
will added a parent revision: D12529: [terraform] Allow all ip addresses to access self-host internet gateway.
Harbormaster completed remote builds in B29855: Diff 41590.Thu, Jun 20, 8:45 PM
bartek added inline comments.Fri, Jun 21, 10:00 PM
services/terraform/self-host/aws_ecs.tf
10–12

Is service connect needed in self-host? Are nodes going to talk to each other?

services/terraform/self-host/aws_iam.tf
48–58

I'd use jsonencode() - see examples in aws_iam.tf e.g. for resource "aws_iam_role" "ecs_task_execution".

Just see you used it right below

services/terraform/self-host/keyserver_primary.tf
3

You're going to change this later to comm repo?

70–76

can we use jsonencode()?

will added inline comments.Sun, Jun 23, 8:48 PM
services/terraform/self-host/aws_ecs.tf
10–12

That's a good question. I don't think so. I'll remove for now and add back in a separate diff if it comes up

services/terraform/self-host/keyserver_primary.tf
3

Yep! Before landing the stack, I'll test and push the primary and secondary images on the commapp repo

will published this revision for review.Mon, Jun 24, 6:42 PM
will added a child revision: D12558: [keyserver] add health check route to keyserver for use by load balancer.Mon, Jun 24, 7:25 PM
will added inline comments.
services/terraform/self-host/aws_iam.tf
48–58

Will include in next rebase

services/terraform/self-host/keyserver_primary.tf
70–76

Will include in next rebase

bartek accepted this revision.Wed, Jun 26, 2:22 AM

Accepting but please address feedback before landing

This revision is now accepted and ready to land.Wed, Jun 26, 2:22 AM

Revision Contents
Changeset List

PathSize
services/
terraform/
self-host/
7 lines
27 lines
85 lines
149 lines
17 lines

Diff 41590

View Options

services/terraform/self-host/aws_db.tf

Loading...
View Options

services/terraform/self-host/aws_ecs.tf

Loading...
View Options

services/terraform/self-host/aws_iam.tf

Loading...
View Options

services/terraform/self-host/keyserver_primary.tf

Loading...
View Options

services/terraform/self-host/variables.tf

Loading...