Skip to content

Latest commit

 

History

History
69 lines (45 loc) · 3.5 KB

README.md

File metadata and controls

69 lines (45 loc) · 3.5 KB

places.io

COMP 413 Blue Team Fall 2019 Project

Use of Kanban Board

At the beginning of each week, each sub-team should revise their kanban board sections for the current milestone, making changes as necessary in order to ensure that all of the things to do for the week are layed out (this should also enable separation of tasks among team members).

Making Edits to the Repo

  • Make a separate branch specific to the feature you are working on (your subteam should decide how to format this) and check it out.
  • Make commits to that branch until the feature the branch is focused on is completed and tested.
  • Make a pull request to the master which needs at least one person to verify the code (the verifier should actually go through it and make comments on any issues with the code including documentation issues, inconsistencies with other working branches, presence of tests for the code, etc.).
  • Once the pull request, and any changes needed, are approved, the branch should be merged with the master.

Secret Management

All credentials are stored in encrypted form within the repository. We are using git-crypt and keybase to enable this (and gpg). These are good tools to get familiar with, even outside the scope of this class.

Setup

Use apt install git-crypt on linux or brew install git-crypt on mac.

Usage

Use git crypt lock before committing and git crypt unlock after pulling to update the secrets files.

AWS

Use npm run aws:setup -- <platform> to setup AWS utilities. Valid platforms include linux and macos.

ECR

Registry Authentication

Run aws ecr get-login --region <region> --no-include-email. We are using region us-east-2.

The output should look like docker login -u AWS -p **password** https://**aws_account_id**.dkr.ecr.us-east-2.amazonaws.com. Copy and paste this docker login command into your terminal to authenticate your Docker CLI to the registry. This provides an auth token that is valid for the specified registry for 12 hours.

Pushing your image

Build the image with docker build -t <image_name> <path_to_dockerfile>. For example, docker build -t server .

Run docker images to see built images. Get the IMAGE ID of the image you just build (should look something like b28feb2019c2).

Tag the server (or proxy) image with the repository uri: docker tag <image_id> 865745777952.dkr.ecr.us-east-2.amazonaws.com/<repo name> If you are pushing the server image, the repo name is server; the repo name for the proxy is proxy.

Push the image to ECR: docker push 865745777952.dkr.ecr.us-east-2.amazonaws.com/<repo name>

ECS

Use npm run aws:newkey -- <region> to create an RSA key pair.

Use npm run aws:ecs:config -- <cluster_name> <region> to configure an ECS cluster.

Use npm run aws:ecs:create -- <cluster_name> <key_region> to create the configured ECS cluster.

Use npm run aws:ecs:deploy -- <cluster_name> to deploy the docker compose definition in the current directory to the ECS cluster.

Use npm run aws:ecs:view -- <cluster_name to view running containers on the ECS cluster. Import the keybase key to your local gpg keychain (see this article).

Give someone on the infrastructure team your keybase username (not email) and they will add your public key to git crypt.

If you are having trouble with any of these tools, reach out in the #infrastructure channel.