new changes for eks ci/cd

Author: Sandip Das

.DS_Store

@@ -1,51 +1,7 @@
-FROM node:14
-
-RUN apt-get update
-
-# for https
-RUN apt-get install -yyq ca-certificates
-
-# install libraries
-RUN apt-get install -yyq libappindicator1 libasound2 libatk1.0-0 libc6 libcairo2 libcups2 libdbus-1-3 libexpat1 libfontconfig1 libgcc1 libgconf-2-4 libgdk-pixbuf2.0-0 libglib2.0-0 libgtk-3-0 libnspr4 libnss3 libpango-1.0-0 libpangocairo-1.0-0 libstdc++6 libx11-6 libx11-xcb1 libxcb1 libxcomposite1 libxcursor1 libxdamage1 libxext6 libxfixes3 libxi6 libxrandr2 libxrender1 libxss1 libxtst6
-
-# tools
-RUN apt-get install -yyq gconf-service lsb-release wget xdg-utils
-
-# and fonts
-RUN apt-get install -yyq fonts-liberation
-
-# RUN npm install yarn -g
+FROM 120717539064.dkr.ecr.us-west-2.amazonaws.com/node:14
 
 # Setting working directory. All the path will be relative to WORKDIR
 WORKDIR /usr/src/app
-# Installing dependencies
-RUN npm install typescript -g
-RUN mkdir modules && cd modules && mkdir api && mkdir app && mkdir bull && mkdir creatives && mkdir domain  && mkdir gcp
-RUN DEBIAN_FRONTEND=noninteractive apt-get -y install xorg xvfb gtk2-engines-pixbuf --no-install-recommends
-RUN DEBIAN_FRONTEND=noninteractive apt-get -y install dbus-x11 xfonts-base xfonts-100dpi xfonts-75dpi xfonts-cyrillic xfonts-scalable --no-install-recommends
-RUN DEBIAN_FRONTEND=noninteractive apt-get -y install imagemagick x11-apps --no-install-recommends
-# Install x11vnc.
-RUN apt-get install -y x11vnc
-# Install xvfb.
-RUN apt-get install -y xvfb
-# Install fluxbox.
-RUN apt-get install -y fluxbox
-# Install wget.
-RUN apt-get install -y wget
-# Install wmctrl.
-RUN apt-get install -y wmctrl
-# Set the Chrome repo.
-RUN wget -q -O - https://dl-ssl.google.com/linux/linux_signing_key.pub | apt-key add - \
-    && echo "deb http://dl.google.com/linux/chrome/deb/ stable main" >> /etc/apt/sources.list.d/google.list
-# Install Chrome.
-RUN apt-get update && apt-get -y install google-chrome-stable
-RUN DEBIAN_FRONTEND=noninteractive apt-get -y install gconf-service libasound2 libatk1.0-0 libatk-bridge2.0-0 libc6 libcairo2 libcups2 libdbus-1-3 libexpat1 libfontconfig1 libgcc1 libgconf-2-4 libgdk-pixbuf2.0-0 libglib2.0-0 libgtk-3-0 libnspr4 libpango-1.0-0 libpangocairo-1.0-0 libstdc++6 libx11-6 libx11-xcb1 libxcb1 libxcomposite1 libxcursor1 libxdamage1 libxext6 libxfixes3 libxi6 libxrandr2 libxrender1 libxss1 libxtst6 ca-certificates fonts-liberation libappindicator1 libnss3 lsb-release xdg-utils wget
-RUN DEBIAN_FRONTEND=noninteractive apt-get install -y libgbm-dev
-ENV CHROMIUM_FLAGS=--enable-gpu-rasterization,--enable-hardware-overlays,--enforce-vulkan-protected-memory,--use-vulkan 
-ENV USE_GL=desktop
-RUN Xvfb xvfb :1 & Xvfb :10 -ac & export DISPLAY=:10
-RUN DEBIAN_FRONTEND=noninteractive apt-get install xserver-xorg-core -y
-RUN apt-get install neofetch -y
 
 # Install app dependencies
 # A wildcard is used to ensure both package.json AND package-lock.json are copied

Dockerfile

@@ -0,0 +1,41 @@
+version: 0.2
+run-as: root
+
+phases:
+
+  install:
+    commands:
+      - echo Installing app dependencies...
+      - curl -o kubectl https://amazon-eks.s3.us-west-2.amazonaws.com/1.18.9/2020-11-02/bin/linux/amd64/kubectl   
+      - chmod +x ./kubectl
+      - mkdir -p $HOME/bin && cp ./kubectl $HOME/bin/kubectl && export PATH=$PATH:$HOME/bin
+      - echo 'export PATH=$PATH:$HOME/bin' >> ~/.bashrc
+      - source ~/.bashrc
+      - echo 'Check kubectl version'
+      - kubectl version --short --client
+
+  pre_build:
+    commands:
+      - echo Logging in to Amazon EKS...
+      - aws eks --region $AWS_DEFAULT_REGION update-kubeconfig --name $AWS_CLUSTER_NAME
+      - echo Logging in to Amazon ECR...
+      - aws ecr get-login-password --region $AWS_DEFAULT_REGION | docker login --username AWS --password-stdin $AWS_ACCOUNT_ID.dkr.ecr.$AWS_DEFAULT_REGION.amazonaws.com
+      - REPOSITORY_URI=$AWS_ACCOUNT_ID.dkr.ecr.$AWS_DEFAULT_REGION.amazonaws.com/$IMAGE_REPO_NAME
+      - docker pull $REPOSITORY_URI:$IMAGE_TAG
+      
+
+  build:
+    commands:
+      - echo Build started on `date`
+      - echo Building the Docker image...          
+      - docker build --cache-from $REPOSITORY_URI:$IMAGE_TAG -t $IMAGE_REPO_NAME:$IMAGE_TAG .
+      - docker tag $IMAGE_REPO_NAME:$IMAGE_TAG $AWS_ACCOUNT_ID.dkr.ecr.$AWS_DEFAULT_REGION.amazonaws.com/$IMAGE_REPO_NAME:$IMAGE_TAG 
+
+  post_build:
+    commands:
+      - echo Build completed on `date`
+      - echo Pushing the Docker image...
+      - docker push $AWS_ACCOUNT_ID.dkr.ecr.$AWS_DEFAULT_REGION.amazonaws.com/$IMAGE_REPO_NAME:$IMAGE_TAG
+      - echo Push the latest image to cluster
+      - kubectl apply -f k8s/deployment/deployment.yaml
+      - kubectl rollout restart -f k8s/deployment/deployment.yaml

buildspec_eks.yml

@@ -5,7 +5,7 @@ const config = require('config')
 console.log(config);
 
 app.get('/', (req, res) => {
-  res.send('cicd v3!')
+  res.send('Sample App V2!')
 })
 
 app.get('/status', (req, res) => {

index.js

@@ -0,0 +1,135 @@
+# 1.2 Configuring an EKS Cluster
+
+- Create the EKS service role
+- Create the VPC infrastructure using CloudFormation
+- Create a cluster in the AWS Management Console
+- Configure kubectl for EKS
+- Configure aws-iam-authenticator
+- Launch EKS worker nodes
+- Deploy the Kubernetes dashboard
+
+## Amazon EKS Prerequisites
+
+Before you can create an Amazon EKS cluster, you must create an IAM role that Kubernetes can assume to create AWS resources. For example, when a load balancer is created, Kubernetes assumes the role to create an Elastic Load Balancing load balancer in your account. This only needs to be done one time and can be used for multiple EKS clusters.
+
+You must also create a VPC and a security group for your cluster to use. Although the VPC and security groups can be used for multiple EKS clusters, we recommend that you use a separate VPC for each EKS cluster to provide better network isolation.
+
+## Create EKS Service Role
+
+### Create the EKS service role in the IAM console
+
+1. Open the IAM console at [https://console\.aws\.amazon\.com/iam/](https://console.aws.amazon.com/iam/)\.
+
+1. Choose **Roles**, then **Create role**\.
+
+1. Choose **EKS** from the list of services, then **Allows Amazon EKS to manage your clusters on your behalf** for your use case, then **Next: Permissions**\.
+
+1. Choose **Next: Review**\.
+
+1. For **Role name**, enter a unique name for your role, such as `eksServiceRole`, then choose **Create role**\.
+
+## Create EKS Cluster VPC
+
+Specify this S3 template URL in CloudFormation:
+
+`https://amazon-eks.s3-us-west-2.amazonaws.com/cloudformation/2018-11-07/amazon-eks-vpc-sample.yaml`
+
+This is also available from the [EKS Getting Started Guide](https://docs.aws.amazon.com/eks/latest/userguide/getting-started.html#vpc-create)
+
+Note the `SecurityGroups`, `VpcId`, and `SubnetIds` output values.
+
+## Create EKS Cluster
+
+Use AWS Management Console, supplying values from the CloudFormation output in the previous step.
+
+The Security group should be the one containing `ControlPlaneSecurityGroup` in the name.
+
+**Note:** Be sure to create the EKS Cluster using the same IAM user or role that you intend to manage that cluster with from the CLI.
+
+This step can take several minutes to complete.
+
+## Install kubectl
+
+For example, to install version 1.10.3 on macOS:
+
+```sh
+curl -o kubectl https://amazon-eks.s3-us-west-2.amazonaws.com/1.10.3/2018-07-26/bin/darwin/amd64/kubectl
+
+chmod +x ./kubectl
+```
+
+Ensure that `kubectl` is in your `PATH`.
+
+To install on Amazon Linux:
+
+```bash
+curl -o kubectl https://amazon-eks.s3-us-west-2.amazonaws.com/1.10.3/2018-07-26/bin/linux/amd64/kubectl
+
+chmod +x ./kubectl
+
+
+mkdir $HOME/bin && cp ./kubectl $HOME/bin/kubectl && export PATH=$HOME/bin:$PATH
+
+echo 'export PATH=$HOME/bin:$PATH' >> ~/.bashrc
+```
+
+## Install aws-iam-authenticator
+
+For example, to install version 1.10.3 for macOS:
+
+```sh
+curl -o aws-iam-authenticator https://amazon-eks.s3-us-west-2.amazonaws.com/1.10.3/2018-07-26/bin/darwin/amd64/aws-iam-authenticator
+
+chmod +x ./aws-iam-authenticator
+```
+
+Ensure that `aws-iam-authenticator` is in your `PATH`.
+
+## Configure kubectl
+
+`aws eks update-kubeconfig --name <cluster name>`
+
+## Launch Worker Nodes
+
+Wait for the cluster status to show `ACTIVE`.
+
+Create the following CloudFormation stack using this S3 URL:
+
+`https://amazon-eks.s3-us-west-2.amazonaws.com/cloudformation/2018-11-07/amazon-eks-nodegroup.yaml`
+
+Specify the Amazon EKS-optimized AMI ID for your region:
+
+|Region|Amazon EKS-optimized AMI|
+|------|------------------------|
+|US West (Oregon) (us-west-2)|ami-0f54a2f7d2e9c88b3|
+|US East (N. Virginia)(us-east-1)|ami-0a0b913ef3249b655|
+|US East (Ohio)(us-east-2)|ami-0958a76db2d150238|
+|EU (Ireland)(eu-west-1)|ami-00c3b2d35bddd4f5c|
+
+## Enable Worker Nodes to Join Cluster
+
+Download the configuration map:
+
+`curl -O https://amazon-eks.s3-us-west-2.amazonaws.com/cloudformation/2018-11-07/aws-auth-cm.yaml`
+
+Edit this file, replacing the `<ARN of instance role (not instance profile)> ` snippet with the `NodeInstanceRole` value that you recorded in the previous procedure, and save the file.
+
+Apply the configuration.
+
+`kubectl apply -f aws-auth-cm.yaml`
+
+`kubectl get nodes --watch`
+
+## Deploy the Kubernetes Dashboard
+
+`kubectl create -f https://raw.githubusercontent.com/kubernetes/dashboard/master/src/deploy/recommended/kubernetes-dashboard.yaml`
+
+`kubectl proxy &`
+
+Browse to: <http://localhost:8080/api/v1/namespaces/kube-system/services/https:kubernetes-dashboard:/proxy/>
+
+## Get an authentication token
+
+`aws-iam-authenticator token -i <cluster_name> --token-only`
+
+Set this token in the k8s dashboard.