gcp_terraform_gke_example

Example code for using Terraform to deploy GKE with sample Kubernetes deployments

Deploy a GKE Cluster

If this is a new GCP project, make sure to enable the Google Kubernetes Engine API
Create a Service Account with the following permissions:
- Compute Viewer
- Kubernetes Engine Admin
- Service Account User
- Storage Object Admin
Select option to create private JSON key for Service Account (it will be download onto your device)
Create a new GCS bucket
Create a Debian GCE instance and set the Service Account as the service account you created previously. Once the instance has started, connect to it through SSH

Install Terraform
Once you have verified the install, clone this repo into the VM and cd into it
Upload the Service Account private key we created earlier to the terraform/ directory
- details on how to transfer a file to an instance
You’ll need make the following edits to terraform/provider.tf:
- Add your project id to line 1 -- it should like something like:
  
  variable "project" { default = "<YOUR-PROJECT-ID>"}
- Reference your private key file: (in this example it's called credentials.json)
```
 provider "google" {
 	credentials = "${file("credentials.json")}"
 	project     = "${var.project}"
 	region      = "us-central1"
 }
```
- Update the bucket name to the name of the GCS bucket we created earlier (your Service Account should have access to this bucket through the Storage Object Admin role). This enables a simple locking mechanism to make sure multiple people aren’t running the Terraform job at the same time.
  
  bucket = "<SHARED_BUCKET_NAME>"
You can see in terraform/setup.tf that it declares the GKE cluster as well as some properties about the deployments. This will include which zones you’ll be using, the size of the machines, and the autoscaling properties. To run terraform, go to the terraform directory and run:
- sudo terraform init
- sudo terraform apply

Using this tutorial you can see how to quickly get your containers into Google Container Registry (GCR), which can act as a private repo for your containers. This sample code should give an example of two very simple services.
- gcloud auth configure-docker (you may need to authorize docker)
- export PROJECT="<PROJECT>" (replace with your project id name)
- docker build -t endpoint1 deployments/endpoint1
- docker build -t endpoint2 deployments/endpoint2
- docker tag endpoint1 gcr.io/$PROJECT/endpoint1:v1
- docker tag endpoint2 gcr.io/$PROJECT/endpoint2:v1
- docker push gcr.io/$PROJECT/endpoint1:v1
- docker push gcr.io/$PROJECT/endpoint2:v1
Once the containers have been pushed to GCR, update the code in the sample deployment folders to point to the new gcr.io links in both deployment.yaml files on line 20.
- deployments/endpoint1/deployment.yaml
- deployments/endpoint2/deployment.yaml

Similar to the instructions in this tutorial, deploy the two services to Kubernetes and then apply the load balancer.
- gcloud container clusters get-credentials prod-main --zone=us-central1-a (You may need to run this for kubectl to grab your latest deployment)
- kubectl apply -f deployments/endpoint1/deployment.yaml
- kubectl apply -f deployments/endpoint2/deployment.yaml
- kubectl apply -f deployments/fanout-ingress.yaml
This will set up two sets of microservices and can easily be extended to deploy multiple sets individually. The ingress will create a loadbalancer and you can see the paths for each service in the fanout-ingress.yaml file. Note that it will take some time for the IP address on the load balancer to start responding to requests but you can test with the IP and IP/v2/ to see the different deployments

Name		Name	Last commit message	Last commit date
Latest commit History 11 Commits
deployments		deployments
terraform		terraform
LICENSE		LICENSE
README.md		README.md