Infrastructure as TypeScript

Infrastructure as TypeScript | November 13 | 2019

Why Infrastructure as Code General- purpose Languages

On-Premises 2

On-premises Load Balancer Web Server Web Server Load Balancer Database
Server Database Server

LB Web Web DB LB DB LB Web Web DB
LB DB Web DB Web + DB

Issues with Manual Server Management

Configuration management tools: Puppet/Chef

Benefits of Infrastructure as Code

Cloud Automation 6

Unified Management API

REST calls Content-Type: application/x-www-form-urlencoded; charset=UTF-8 X-Amz-Date: 20130813T150211Z Host: ec2.amazonaws.com Authorization:
AWS4-HMAC-SHA256 Credential=AKIDEXAMPLE/20130813/us-east- 1/ec2/aws4_request, SignedHeaders=content-type;host;x-amz- date, Signature=ced6826de92d2bdeed8f846f0bf508e8559e98e4b0194b84example54174deb456c http://ec2.amazonaws.com/?Action=RunInstances ImageId=ami-2bb65342 &MaxCount=3 &MinCount=1 &Monitoring.Enabled=true &Placement.AvailabilityZone=us-east-1a &Version=2016-11-15

var launchRequest = new RunInstancesRequest() { ImageId = amiID, InstanceType
= "t1.micro", MinCount = 1, MaxCount = 1, KeyName = keyPairName, SecurityGroupIds = groups }; var launchResponse = ec2Client.RunInstances(launchRequest); var instances = launchResponse.Reservation.Instances; SDKs to call those REST endpoints

az storage account create \ --location westus \ --name samplesa
\ --resource-group myrg \ --sku LRS Command-line Tools

Scripting: Challenges

Desired State Configuration 8

Desired State Configuration

Managing Resource Graphs

Challenges

Desired State Provisioning

Markup Languages 12 Yet Another Markup Language

Azure ARM Templates: JSON "resources": [ { "apiVersion": "2016-01-01", "type":
"Microsoft.Storage/storageAccounts", "name": "mystorageaccount", "location": "westus", "sku": { "name": "Standard_LRS" }, "kind": "Storage", "properties": { } } ]

Converted to REST calls PUT https://management.azure.com/subscriptions/{subscriptionId}/resourceGroups/ {resourceGroupName}/providers/Microsoft.Storage/storageAccounts/mystorageaccount?apiversion=2016-01-01 { "location":
"westus", "properties": { } "sku": { "name": "Standard_LRS" }, "kind": "Storage" }

AWS CloudFormation: YAML Resources: S3BucketForURLs: Type: "AWS::S3::Bucket" DeletionPolicy: Delete Properties:
BucketName: !If [ "CreateNewBucket", !Ref "AWS::NoValue", !Ref S3BucketName ] WebsiteConfiguration: IndexDocument: "index.html" LifecycleConfiguration: Rules: - Id: DisposeShortUrls ExpirationInDays: !Ref URLExpiration Prefix: "u" Status: Enabled

Challenges

resource "azurerm_storage_account" "sa" { name = "mysa" location = azurerm_resource_group.rg.location
resource_group_name = azurerm_resource_group.rg.name account_tier = "Standard" account_replication_type = "LRS" } Terraform: DSL (HashiCorp Configuration Language)

• • • • • Terraform Providers • • •
• •

Markup Authoring Experience

Example: Code to infrastructure ratio KV Store Table “URLs” Function
“Add URL” Function “Open URL”

{ "Resources": { "InstanceSecurityGroup": { "Type": "AWS::EC2::SecurityGroup", "Properties": { "SecurityGroupIngress":
[ ... ] } }, "EC2Instance": { "Type": "AWS::EC2::Instance", "Properties": { "InstanceType": "t2.micro", "SecurityGroups": [ { "Ref": "InstanceSecurityGroup" } ], "ImageId": "ami-0080e4c5bc078760e" } } } } References

{ "condition": "[equals(parameters('production'), 'Yes')]", "type": "Microsoft.Compute/availabilitySets", "apiVersion": "2017-03-30", "name": "[variables('availabilitySetName')]",
"location": "[resourceGroup().location]", "properties": { "platformFaultDomainCount": 2, "platformUpdateDomainCount": 3 } } Conditionals

locals { files = ["index.php","main.php"] } resource "aws_s3_bucket_object" "files" {
count = "${length(local.files)}" key = "${local.files[count.index]}" bucket = "${aws_s3_bucket.examplebucket.id}" source = "./src/${local.files[count.index]}" } Loops

Reusability

Testability

I think we solved these problems before?

IDEs Code completion Unit tests Types Functions Package managers Versioning
Classes Code reviews Contracts SDKs Workflows Refactoring

What if developers did infrastructure?

Pulumi 20

General-Purpose Programming Languages

const resourceGroup = new azure.core.ResourceGroup("rg"); const storageAccount = new azure.storage.Account("storage",
{ resourceGroupName: resourceGroup.name, accountReplicationType: "LRS", accountTier: "Standard", }); TypeScript example

const resourceGroup = new azure.core.ResourceGroup("rg"); const storageAccount = new azure.storage.Account("storage",
{ resourceGroupName: resourceGroup.name, accountReplicationType: "LRS", accountTier: "Standard", }); Still, Desired State!

How Pulumi works CLI and Engine Last deployed state index.ts
Language host AWS Azure GCP Kubernetes new Resource() Create, update, delete

• • • • • Providers • • • •
•

AWS Cloud Development Kit (CDK) 24

м TypeScript Python Java .NET Compiles to CloudFormation

const hello = new lambda.Function(this, 'HelloHandler', { runtime: lambda.Runtime.NODEJS_8_10, code:
lambda.Code.asset('lambda'), handler: 'hello.handler' }); new apigw.LambdaRestApi(this, 'Endpoint', { handler: hello }); AWS CDK example

Benefits of Real Code

Programming Languages for Infrastructure? You sure?

Static Website on AWS 27

Serverless Functions on Azure 32

Resources to Provision an Azure Function

// A resource group to contain our Azure Functions const
resourceGroup = new azure.core.ResourceGroup("rg"); // A Node.js Azure Function const nodeApp = new azure.appservice.ArchiveFunctionApp("http", { resourceGroup, archive: new pulumi.asset.FileArchive("./javascript"), }); export const nodeEndpoint = nodeApp.endpoint; Node.js Azure Function

// A .NET (C#) Azure Function const dotnetApp = new
azure.appservice.ArchiveFunctionApp("dotnet", { resourceGroup, archive: new pulumi.asset.FileArchive("./dotnet/bin/Debug/"), appSettings: { runtime: "dotnet", }, }); .NET Azure Function

const linuxResourceGroup = new azure.core.ResourceGroup("linuxrg"); const linuxPlan = new azure.appservice.Plan("linux-asp",
{ resourceGroupName: linuxResourceGroup.name, kind: "Linux", sku: { tier: "Dynamic", size: "Y1" }, reserved: true, }); const pythonApp = new azure.appservice.ArchiveFunctionApp(...); Azure Function in Python on Linux

const f = new azure.appservice.HttpEventSubscription("greeting", { resourceGroup, callback: async (context,
req) => { return { status: 200, body: `Hello ${req.params.name}!`, }; }, }); Serverless Functions as Callbacks

Containers 35

Load- balanced container instances Load Balancer nginx nginx

const listener = new awsx.elasticloadbalancingv2.NetworkListener("lb",{ port: 80 }); const service
= new awsx.ecs.FargateService("nginx", { desiredCount: 2, taskDefinitionArgs: { containers: { nginx: { image: awsx.ecs.Image.fromPath("nginx", "./app"), memory: 512, portMappings: [listener], }}}}); Nginx on Fargate with a Load Balancer

Cosmos App 36

Cosmos App (1)

Cosmos App (2)

Cosmos App (3)

export const functions = new CosmosApp("urls", { resourceGroup, locations: ["WestEurope",
"WestUS", "SouthEastAsia"], factory: ({location, cosmosdb}) => { const app = new azure.appservice.ArchiveFunctionApp("app", { location, archive: new pulumi.asset.FileArchive("./app"), appSettings: { COSMOSDB_ENDPOINT: cosmosdb.endpoint, }, }); return { id: app.functionApp.id }; }}); Global Apps

Kubernetes 39

Conclusions 42

Define Infrastructure as Code Making Cloud Apps?

Fine-grained components Better Automation

м Infrastructure as Code Architecture as Code

Infrastructure as TypeScript

Infrastructure as TypeScript

More Decks by Mikhail Shilkov

Other Decks in Technology

Featured

Transcript