WIP - Merge Une-T INS improvements #5
Conversation
* Add some missing variables * build on remove_hard_coded_variables branch * add excute permission for deploy.sh * Install AWS CLI * Fix AWS credentials * Change build on master branch
Import changes and improvements from Unee-T INS
…sing names for key variables
Pre-requisite:Dependencies:We MUST have reviewed, merged and tag released version 0.2.2 of the https://github.com/unee-t/env codebase. AWS variables in the parameter store:We MUST have the correct values for the following variables in the AWS parameter store for each environment: DEV (DONE), PROD (DONE), DEMO (DONE)
Travis CI Setting:We MUST have the correct values for the following variables in the AWS parameter store for each environment: DEV (DONE), PROD (DONE), DEMO (DONE)
DONE Issues that are NOT fixed yet:We need to have a solution for these before we merge. |
test.sh
Outdated
| curl -i -X POST \ | ||
| http://localhost:3000 \ | ||
| -H "Authorization: Bearer $(aws --profile uneet-dev ssm get-parameters --names API_ACCESS_TOKEN --with-decryption --query Parameters[0].Value --output text)" \ | ||
| -H "Authorization: Bearer $(aws --profile ins-dev ssm get-parameters --names API_ACCESS_TOKEN --with-decryption --query Parameters[0].Value --output text)" \ |
There was a problem hiding this comment.
@kaihendry ins is there because we shoulde replace this with a variable but I don't know how we could to that,
See #3 for more details
main.go
Outdated
| // - Stage (AWS parameter `STAGE`) | ||
| // The value for "ins-dev" is also declared in Travis Setting | ||
| // it is then passed on as the variable `TRAVIS_PROFILE` | ||
| cfg, err := external.LoadDefaultAWSConfig(external.WithSharedConfigProfile("ins-dev")) |
There was a problem hiding this comment.
The way this line works, is that it uses "ins-dev" locally, else it uses the current execution environment.
So imo it should be set to the environment you develop in. E.g. uneet-dev in this case
There was a problem hiding this comment.
So imo it should be set to the environment you develop in. E.g. uneet-dev in this case
The problem with this approach is that this means the code will not be usable "as is" in the Unee-T INS fork <-- this will make things more obscure as the people in charge on the Unee-T INS code will have to know that this repo has to be forked and modified in order for their installation to work as intended.
Much better to use a variable that is already declared in the AWS parameter store and in the Travis settings instead.
See #4 for more details
deploy.sh
Outdated
| @@ -0,0 +1,47 @@ | |||
| #!/bin/bash | |||
There was a problem hiding this comment.
Why not configure the AWS environment in travis.yml?
There was a problem hiding this comment.
Why not configure the AWS environment in travis.yml?
Because I'm not sure how this can be done.
Feel free to suggest an alternative to how things are done today
There was a problem hiding this comment.
It was shown how to do it here: https://github.com/Unee-T-INS/lambda2sqs/blob/master/.travis.yml
Makefile
Outdated
| # We create a function to simplify getting variables for aws parameter store. | ||
|
|
||
| define ssm | ||
| $(shell aws --profile $(TRAVIS_PROFILE) ssm get-parameters --names $1 --with-decryption --query Parameters[0].Value --output text) |
There was a problem hiding this comment.
What's the default TRAVIS_PROFILE?
Why is it called TRAVIS_PROFILE and not.... AWS_PROFILE?
There was a problem hiding this comment.
What's the default TRAVIS_PROFILE?
See the code in the travis.yml file on line 46, 53 and 61
Why is it called TRAVIS_PROFILE and not.... AWS_PROFILE?
Because that variable is NOT coming from AWS, that variable is defined when travis.yml runs and because its value will be based on the Travis CI settings for this environment.
There was a problem hiding this comment.
The idea with a Makefile and most other robust software is that you define a default that can be overridden.
These are defaults: https://github.com/Unee-T-INS/lambda2sqs/blob/master/Makefile#L1-L5 and the style you should emulate here, else when you run make it won't work.
There was a problem hiding this comment.
The idea with a Makefile and most other robust software is that you define a default that can be overridden.
These are defaults: https://github.com/Unee-T-INS/lambda2sqs/blob/master/Makefile#L1-L5 and the style you should emulate here, else when you run
makeit won't work.
I understand the idea but we've not been able to implement that using variables instaed of hardcoded values.
In your example: https://github.com/Unee-T-INS/lambda2sqs/blob/master/Makefile#L1-L5
We need to replace the hardcoded values
PROJECT = lambda2sqs <--- this is OK since this is the hardcoded name of the project
STACK_NAME ?= $(PROJECT) <--- this is OK (it's a variable)
AWS_REGION = ap-southeast-1 <--- this does NOT seem to be OK: it should be a variable
DEPLOY_S3_PREFIX = lambda2sqs <--- this is OK since this is a hardcoded prefix related to the name of the project (question: why not use the existing PROJECT variable since the value is the same?)
AWS_PROFILE = ins-dev <--- this does NOT seem to be OK: it should be a variable
There was a problem hiding this comment.
These are variables that can be overridden.
DEPLOY_S3_PREFIX can be the PROJECT variable.
There was a problem hiding this comment.
These are variables that can be overridden.
I'm sure this is true but you've never explained HOW they can ACTUALLY be overridden...
If you can do that (show HOW they can be overridden) then I think we'll have made huge progress.
There was a problem hiding this comment.
Sorry I thought I showed in the call / screen share.
[hendry@t480s m]$ make
foobar
[hendry@t480s m]$ make A_VARIABLE=somethingelse
somethingelse
[hendry@t480s m]$ cat Makefile
A_VARIABLE := foobar
all:
@echo $(A_VARIABLE)
|
Build is failing with this error: @kaihendry mentioned in some of our conversation that this might be solved by setting a parameter The problem at this stage are:
@kaihendry more information about how/where we can find the value for the |
|
https://help.github.com/en/github/authenticating-to-github/creating-a-personal-access-token-for-the-command-line I believe shows how to create a GITHUB_TOKEN |
Which one do I need to choose? |
|
You don't need to choose any, the idea with GITHUB_TOKEN is that just identifies you to facilitate the download. It doesn't need capabilities to access repos IIRC. You could just copy it from the unee-t travis configuration too btw. |
…ys be specific and descriptive
… specific and descriptive
… be specific and descriptive
… and descriptive
This is needed so that the codebase for Unee-T is easier to deploy on different installation.
We are importing some of the improvements made in the Unee-T INS fork.
We are also making sure that we are using variables instead of hardcoded values as much as possible