The latest articles on Forem by Aron Johnson (@aronjohnson). https://forem.com/aronjohnson https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F401401%2Fc94c136c-b0b9-4039-ab1a-fd9a967d93f8.jpg https://forem.com/aronjohnson en Aron Johnson Tue, 20 Oct 2020 18:13:42 +0000 https://forem.com/harperfast/how-we-use-infrastructure-as-code-in-harperdb-cloud-41mh https://forem.com/harperfast/how-we-use-infrastructure-as-code-in-harperdb-cloud-41mh <h2> Why Infrastructure as Code? </h2> <p>Earlier this year we launched <a href="https://harperdb.io/harperdb-cloud-get-started-today" rel="noopener noreferrer">HarperDB Cloud</a>, a fully-managed, cloud-hosted version of HarperDB. We wanted HarperDB Cloud to be a fast and low-friction way to get HarperDB. <a href="https://studio.harperdb.io/sign-up" rel="noopener noreferrer">Sign up</a>, answer a couple of questions, and a few minutes later you have a working instance of HarperDB. To make this happen, we understood that all aspects of deploying the infrastructure to host customer workloads must be automated. In other words, we needed to leverage Infrastructure as Code (IaC.) </p> <h2> What is Infrastructure as Code? </h2> <p>Traditionally, the deployment of IT infrastructure (creating virtual machines and installing applications, provisioning storage and networking, etc.) was largely a manual effort. Meaning, IT administrators would use a series of CLI and GUI tools, maybe some scripts, to build and configure each piece of the infrastructure. This way of building infrastructure is very inefficient and prone to error. IaC is the response to these challenges. </p> <p>IaC is a method of defining a set of infrastructure components in one or more configuration files (usually in the form of YAML, JSON, or a similar format), which are then passed to an IaC software tool (such as HashiCorp <a href="https://www.terraform.io/" rel="noopener noreferrer">Terraform</a> or AWS <a href="https://aws.amazon.com/cloudformation/" rel="noopener noreferrer">CloudFormation</a>) that will provision those components on a cloud platform. IaC allows infrastructure to be built in a fast, consistent, and repeatable fashion!</p> <h2> How and Why We Use CloudFormation </h2> <p>HarperDB Cloud consists of:</p> <ol> <li>HarperDB Studio, our hosted application for managing your HarperDB instances.</li> <li>AWS Lambda functions that build AWS resources for running customer workloads (the functions also do various other things, such as update our payment and CRM platforms.)</li> <li>The AWS resources that run customer workloads, such as VPCs, EC2 Instances, EBS Volumes, Elastic Load Balancers, etc.</li> </ol> <p>The Lambda functions use CloudFormation to build AWS resources. Sure, we could call the individual AWS APIs for VPC, EC2, Route53, etc. to build each of these resources, but we would have to create the logic to deal with resource dependencies (wait to build this until that is built) and rollback when a resource fails to build (that EC2 instance doesn't do any good if there is not a related ELB rule.) An IaC tool like CloudFormation takes care of all that, and more, for us! 😁</p> <h2> What About Terraform? </h2> <p>There are lots of great IaC tools besides CloudFormation out there. We currently only place HarperDB Cloud customer workloads on AWS, and we already use AWS services for the other backend parts of HarperDB Cloud (<a href="https://dev.to/davidcockerill">David</a> has an <a href="https://dev.to/harperdb/how-we-build-and-deploy-our-serverless-harperdb-studio-backend-application-52cg">excellent article</a> for more about that), so using the AWS-native IaC tool made sense. Don't worry all you HashiCorp fans out there, we use and love HashiCorp tools (we use <a href="https://www.packer.io/" rel="noopener noreferrer">Packer</a> to automate the build of all our Amazon Machine Images), so of course we considered using Terraform! CloudFormation and Terraform each have different strengths, but either IaC tool would work.</p> <h2> With a Little Help From Systems Manager Automation </h2> <p>While CloudFormation is awesome at provisioning and terminating AWS resources, the management of existing infrastructure, particularly the guest OS and applications of an instance, often requires another tool. Need to patch Linux, then upgrade HarperDB, and make a configuration change, to hundreds of EC2 instances, in just a few minutes? AWS <a href="https://docs.aws.amazon.com/systems-manager/latest/userguide/systems-manager-automation.html" rel="noopener noreferrer">Systems Manager (SSM) Automation</a> can make that happen! Yup, there are other great tools for doing this kind of work (<em>Cough! Ansible. Cough!</em>), but SSM Automation works great for us.</p> <h2> What's Next? </h2> <p>This technology stack works great for us, but what's next? Lots! You probably noticed that I said a few icky words like "EC2 instance" and "patch," but I didn't mention "containers" or "immutable infrastructure." Well, don't worry, we are making plans. Also, it now seems likely we will have customer demand to host HarperDB Cloud workloads on cloud platforms other than AWS. Hmm, about that Terraform thing... 😅</p> <p>If you are interested, <a href="https://dev.to/margo_hdb">Margo</a> has a <a href="https://dev.to/harperdb/building-a-database-written-in-node-js-from-the-ground-up-2hgm">great article</a> about what makes HarperDB different and special. Also, you can <a href="https://harperdb.io/harperdb-cloud-get-started-today/" rel="noopener noreferrer">try out HarperDB</a>, for free!</p> devops aws iac cloudformation