• Home
• org.cdk8s
• cdk8s-awscdk-resolver
• 0.0.177
• source code
• package-info.java

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.cdk8s.awscdkresolver.package-info Maven / Gradle / Ivy

/**
 * 
AWS CDK Resolver
 * 

 * The AwsCdkResolver is able to resolve any CfnOutput
 * defined by your AWS CDK application. In this example, we create an S3 Bucket with the AWS CDK, and pass its (deploy time generated)
 * name as an environment variable to a Kubernetes CronJob resource.
 * 

 * 
 * import * as aws from 'aws-cdk-lib';
 * import * as k8s from 'cdk8s';
 * import * as kplus from 'cdk8s-plus-27';
 * 
 * import { AwsCdkResolver } from '@cdk8s/awscdk-resolver';
 * 
 * const awsApp = new aws.App();
 * const stack = new aws.Stack(awsApp, 'aws');
 * 
 * const k8sApp = new k8s.App({ resolvers: [new AwsCdkResolver()] });
 * const manifest = new k8s.Chart(k8sApp, 'Manifest');
 * 
 * const bucket = new aws.aws_s3.Bucket(stack, 'Bucket');
 * const bucketName = new aws.CfnOutput(stack, 'BucketName', {
 *   value: bucket.bucketName,
 * });
 * 
 * new kplus.CronJob(manifest, 'CronJob', {
 *   schedule: k8s.Cron.daily(),
 *   containers: [{
 *     image: 'job',
 *     envVariables: {
 *       // directly passing the value of the `CfnOutput` containing
 *       // the deploy time bucket name
 *       BUCKET_NAME: kplus.EnvValue.fromValue(bucketName.value),
 *     }
 *  }]
 * });
 * 
 * awsApp.synth();
 * k8sApp.synth();
 * 
 * 

 * During cdk8s synthesis, the custom resolver will detect that bucketName.value is not a concrete value,
 * but rather a value of a CfnOutput. It will then perform AWS service calls in order to fetch the
 * actual value from the deployed infrastructure in your account. This means that in order
 * for cdk8s synth to succeed, it must be executed after the AWS CDK resources
 * have been deployed. So your deployment workflow should (conceptually) be:
 * 

 * 

 * 
cdk deploy
 * 
cdk8s synth
 * 
 * 

 * 

 * 

 * Note that the AwsCdkResolver is only able to fetch tokens that have a CfnOutput defined for them.
 * 

 * 
 * 

 * 
Permissions
 * 

 * Since running cdk8s synth will now require performing AWS service calls, it must have access
 * to a set of AWS credentials. Following are the set of actions the credentials must allow:
 * 

 * 

 * 
cloudformation:DescribeStacks
 * 
 * 

 * Note that the actions cdk8s require are far more scoped down than those normally required for the
 * deployment of AWS CDK applications. It is therefore recommended to not reuse the same set of credentials,
 * and instead create a scoped down ReadOnly role dedicated for cdk8s resolvers.
 * 

 * 
Cross Repository Workflow
 * 

 * As we've seen, your cdk8s application needs access to the objects defined in your cloud application. If both applications
 * are defined within the same file, this is trivial to achieve. If they are in different files, a simple import statement will suffice.
 * However, what if the applications are managed in two separate repositories? This makes it a little trickier, but still possible.
 * 

 * In this scenario, cdk.ts in the AWS CDK application, stored in a dedicated repository.
 * 

 * 
 * import * as aws from 'aws-cdk-lib';
 * 
 * const awsApp = new aws.App();
 * const stack = new aws.Stack(awsApp, 'aws');
 * 
 * const bucket = new aws.aws_s3.Bucket(stack, 'Bucket');
 * const bucketName = new aws.CfnOutput(stack, 'BucketName', {
 *   value: bucket.bucketName,
 * });
 * 
 * awsApp.synth();
 * 
 * 

 * In order for the cdk8s application to have cross repository access, the AWS CDK object instances that we want to expose need to be available
 * via a package repository. To do this, break up the AWS CDK application into the following files:
 * 

 * app.ts
 * 

 * 
 * import * as aws from 'aws-cdk-lib';
 * 
 * const awsApp = new aws.App();
 * const stack = new aws.Stack(awsApp, 'aws');
 * 
 * const bucket = new aws.aws_s3.Bucket(stack, 'Bucket');
 * // export the thing we want to have available for cdk8s applications
 * export const bucketName = new aws.CfnOutput(stack, 'BucketName', {
 *   value: bucket.bucketName,
 * });
 * 
 * // note that we don't call awsApp.synth here
 * 
 * 

 * main.ts
 * 

 * 
 * import { awsApp } from './app.ts'
 * 
 * awsApp.synth();
 * 
 * 

 * Now, publish the app.ts file to a package manager, so that your cdk8s application can install and import it.
 * This approach might be somewhat counter intuitive, because normally we only publish classes to the package manager,
 * not instances. Indeed, these types of applications introduce a new use-case that requires the sharing of instances.
 * Conceptually, this is no different than writing state* to an SSM parameter or an S3 bucket, and it allows us to remain
 * in the boundaries of our programming language, and the typing guarantees it provides.
 * 

 * 

 * 

 * * Actually, we are only publishing instructions for fetching state, not the state itself.
 * 

 * 
 * 

 * Assuming app.ts was published as the my-cdk-app package, our cdk8s application will now look like so:
 * 

 * 
 * import * as k8s from 'cdk8s';
 * import * as kplus from 'cdk8s-plus-27';
 * 
 * // import the desired instance from the AWS CDK app.
 * import { bucketName } from 'my-cdk-app';
 * 
 * import { AwsCdkResolver } from '@cdk8s/awscdk-resolver';
 * 
 * const k8sApp = new k8s.App({ resolvers: [new AwsCdkResolver()] });
 * const manifest = new k8s.Chart(k8sApp, 'Manifest');
 * 
 * new kplus.CronJob(manifest, 'CronJob', {
 *   schedule: k8s.Cron.daily(),
 *   containers: [{
 *     image: 'job',
 *     envVariables: {
 *       // directly passing the value of the `CfnOutput` containing
 *       // the deploy time bucket name
 *       BUCKET_NAME: kplus.EnvValue.fromValue(bucketName.value),
 *     }
 *  }]
 * });
 * 
 * k8sApp.synth();
 * 
 */
@software.amazon.jsii.Stability(software.amazon.jsii.Stability.Level.Stable)
package org.cdk8s.awscdkresolver;