Operations
/
joystream


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250
							import * as awsx from '@pulumi/awsx'
import * as aws from '@pulumi/aws'
import * as eks from '@pulumi/eks'
import * as k8s from '@pulumi/kubernetes'
import * as pulumi from '@pulumi/pulumi'
import * as fs from 'fs'

const dns = require('dns')

const awsConfig = new pulumi.Config('aws')
const config = new pulumi.Config()

const wsProviderEndpointURI = config.require('wsProviderEndpointURI')
const isProduction = config.require('isProduction') === 'true'
const lbReady = config.get('isLoadBalancerReady') === 'true'

// Create a VPC for our cluster.
const vpc = new awsx.ec2.Vpc('vpc', { numberOfAvailabilityZones: 2 })

// Create an EKS cluster with the default configuration.
const cluster = new eks.Cluster('eksctl-my-cluster', {
  vpcId: vpc.id,
  subnetIds: vpc.publicSubnetIds,
  instanceType: 't2.micro',
  providerCredentialOpts: {
    profileName: awsConfig.get('profile'),
  },
})

// Export the cluster's kubeconfig.
export const kubeconfig = cluster.kubeconfig

// Create a repository
const repo = new awsx.ecr.Repository('colossus-image')

// Build an image and publish it to our ECR repository.
export const colossusImage = repo.buildAndPushImage({
  dockerfile: '../../../colossus.Dockerfile',
  context: '../../../',
})

const name = 'storage-node'
const colossusPort = 3001

// Create a Kubernetes Namespace
const ns = new k8s.core.v1.Namespace(name, {}, { provider: cluster.provider })

// Export the Namespace name
export const namespaceName = ns.metadata.name

const appLabels = { appClass: name }

// Create a LoadBalancer Service for the Deployment
const service = new k8s.core.v1.Service(
  name,
  {
    metadata: {
      labels: appLabels,
      namespace: namespaceName,
    },
    spec: {
      type: 'LoadBalancer',
      ports: [
        { name: 'http', port: 80 },
        { name: 'https', port: 443 },
      ],
      selector: appLabels,
    },
  },
  {
    provider: cluster.provider,
  }
)

// Export the Service name and public LoadBalancer Endpoint
export const serviceName = service.metadata.name
// When "done", this will print the hostname
export let serviceHostname: pulumi.Output<string>
serviceHostname = service.status.loadBalancer.ingress[0].hostname

export let appLink: pulumi.Output<string>

const publicUrlInput: pulumi.Input<string> = pulumi.interpolate`http://${serviceHostname}/`

let additionalParams: string[] | pulumi.Input<string>[] = []
let volumeMounts: pulumi.Input<pulumi.Input<k8s.types.input.core.v1.VolumeMount>[]> = []
let caddyVolumeMounts: pulumi.Input<pulumi.Input<k8s.types.input.core.v1.VolumeMount>[]> = []
let volumes: pulumi.Input<pulumi.Input<k8s.types.input.core.v1.Volume>[]> = []

if (isProduction) {
  const remoteKeyFilePath = '/joystream/key-file.json'
  const providerId = config.require('providerId')
  const keyFile = config.require('keyFile')
  const publicUrl = config.get('publicURL') ? config.get('publicURL')! : publicUrlInput

  const keyConfig = new k8s.core.v1.ConfigMap(name, {
    metadata: { namespace: namespaceName, labels: appLabels },
    data: { 'fileData': fs.readFileSync(keyFile).toString() },
  })
  const keyConfigName = keyConfig.metadata.apply((m) => m.name)

  additionalParams = ['--provider-id', providerId, '--key-file', remoteKeyFilePath, '--public-url', publicUrl]

  volumeMounts.push({
    mountPath: remoteKeyFilePath,
    name: 'keyfile-volume',
    subPath: 'fileData',
  })

  volumes.push({
    name: 'keyfile-volume',
    configMap: {
      name: keyConfigName,
    },
  })

  const passphrase = config.get('passphrase')
  if (passphrase) {
    additionalParams.push('--passphrase', passphrase)
  }
} else {
  additionalParams.push('--anonymous')
}

if (lbReady) {
  async function lookupPromise(url: string) {
    return new Promise((resolve, reject) => {
      dns.lookup(url, (err: any, address: any) => {
        if (err) reject(err)
        resolve(address)
      })
    })
  }

  const lbIp = serviceHostname.apply((dnsName) => {
    return lookupPromise(dnsName)
  })

  const caddyConfig = pulumi.interpolate`${lbIp}.nip.io {
  reverse_proxy localhost:${colossusPort}
}`

  const keyConfig = new k8s.core.v1.ConfigMap(name, {
    metadata: { namespace: namespaceName, labels: appLabels },
    data: { 'fileData': caddyConfig },
  })
  const keyConfigName = keyConfig.metadata.apply((m) => m.name)

  caddyVolumeMounts.push({
    mountPath: '/etc/caddy/Caddyfile',
    name: 'caddy-volume',
    subPath: 'fileData',
  })

  volumes.push({
    name: 'caddy-volume',
    configMap: {
      name: keyConfigName,
    },
  })

  appLink = pulumi.interpolate`${lbIp}.nip.io`

  lbIp.apply((value) => console.log(`You can now access the app at: ${value}.nip.io`))
}

// Create a Deployment
const deployment = new k8s.apps.v1.Deployment(
  name,
  {
    metadata: {
      namespace: namespaceName,
      labels: appLabels,
    },
    spec: {
      replicas: 1,
      selector: { matchLabels: appLabels },
      template: {
        metadata: {
          labels: appLabels,
        },
        spec: {
          hostname: 'ipfs',
          containers: [
            {
              name: 'ipfs',
              image: 'ipfs/go-ipfs:latest',
              ports: [{ containerPort: 5001 }, { containerPort: 8080 }],
              command: ['/bin/sh', '-c'],
              args: [
                'set -e; \
                /usr/local/bin/start_ipfs config profile apply lowpower; \
                /usr/local/bin/start_ipfs config --json Gateway.PublicGateways \'{"localhost": null }\'; \
                /usr/local/bin/start_ipfs config Datastore.StorageMax 200GB; \
                /sbin/tini -- /usr/local/bin/start_ipfs daemon --migrate=true',
              ],
            },
            // {
            //   name: 'httpd',
            //   image: 'crccheck/hello-world',
            //   ports: [{ name: 'hello-world', containerPort: 8000 }],
            // },
            {
              name: 'caddy',
              image: 'caddy',
              ports: [
                { name: 'caddy-http', containerPort: 80 },
                { name: 'caddy-https', containerPort: 443 },
              ],
              volumeMounts: caddyVolumeMounts,
            },
            {
              name: 'colossus',
              image: colossusImage,
              env: [
                {
                  name: 'WS_PROVIDER_ENDPOINT_URI',
                  // example 'wss://18.209.241.63.nip.io/'
                  value: wsProviderEndpointURI,
                },
                {
                  name: 'DEBUG',
                  value: 'joystream:*',
                },
              ],
              volumeMounts,
              command: [
                'yarn',
                'colossus',
                '--ws-provider',
                wsProviderEndpointURI,
                '--ipfs-host',
                'ipfs',
                ...additionalParams,
              ],
              ports: [{ containerPort: colossusPort }],
            },
          ],
          volumes,
        },
      },
    },
  },
  {
    provider: cluster.provider,
  }
)

// Export the Deployment name
export const deploymentName = deployment.metadata.name