Use JPL AWS jenkins to launch terraform scripts

NASA-PDS / devops

Parent repo for PDS DevOps activities

Apache License 2.0

0 stars 0 forks source link

Use JPL AWS jenkins to launch terraform scripts #48

Open tloubrieu-jpl opened 1 year ago

tloubrieu-jpl commented 1 year ago

💡 Description

Jobs should be triggered by changes on the github repositories

sjoshi-jpl commented 1 year ago

@nutjob4life @tloubrieu-jpl is the pds-expo node in Jenkins setup on-prem or in cloud?

tloubrieu-jpl commented 1 year ago

Hi @sjoshi-jpl , pds-expo is running on prem.

viviant100 commented 1 year ago

@sjoshi-jpl you won't be able to access pds-expo directly. I DM you the wiki on access.

sjoshi-jpl commented 1 year ago

@viviant100 @tloubrieu-jpl I highly recommend we setup a separate node for cloud deployments (unless the idea is to deploy resources on-prem?) and keep these 2 environments separate. Some reasons why :

Access control becomes easier. Since the way you’d access cloud vs on-prem is different.
Scalability becomes easier too since we can have dynamic scaling in cloud but no on-prem.
Also it will help maintain a clear distinction between the environments, so chances of misconfiguration or accidental deployment to incorrect environments is reduced greatly.

Thoughts?

If we setup a new node, I'd need help from Jenkins team since I don't have access to manage nodes in Jenkins.

viviant100 commented 1 year ago

+1 on separate node for cloud deployment. Contact SA to set up new nodes in Jenkins.

jordanpadams commented 1 year ago

@sjoshi-jpl will be working with SA team to get a cloud node setup to do this

sjoshi-jpl commented 1 year ago

@jordanpadams @tloubrieu-jpl @viviant100 @nutjob4life ticket created for cloud node setup - https://itsd-jira.jpl.nasa.gov/servicedesk/customer/portal/16/DSIO-3963

sjoshi-jpl commented 1 year ago

@jordanpadams @viviant100 @tloubrieu-jpl @nutjob4life as per preliminary discussion with SA team on the above ticket, they will need to request a separate VPC / Dev Env for our testing. It will give us more control in terms of what resources we can build / test using terraform within AWS.

SA team will then setup an EC2 instance that we can use as an agent for Jenkins builds within the new VPC.

tloubrieu-jpl commented 1 year ago

Waiting for SAs to create a specific dev account and VPC for this node.

jordanpadams commented 11 months ago

Jenkins agent has been configured and getting this work started

tloubrieu-jpl commented 11 months ago

We are tabling that for now since it only applies to JPL AWS but the new priority is to deploy on MCP