ALPHA-How to setup Gluu Cloud Native with ALB controller and Aurora serverless#
The Gluu Server has been optimized with several container strategies that allow scaling micro-services and orchestrating them using Kubernetes. This tutorial will walk through installation of Gluu on AWS EKS (Elastic Kuberentes service ) with ALB controller.
In recent releases we have noticed that the ALB does not properly work with the oxtrust admin UI. Functions such as access and cache refresh do not work. There is an issue open but the main issue is in the fact that ALB does not support rewrites.
Set up the cluster#
- Follow this guide to install a cluster with worker nodes. We used four nodes of on all three available zones of instance type
t2.mediuminstance type. Please make sure that you have all the
IAMpolicies for the AWS user that will be creating the cluster and volumes.
Create the Kubernetes cluster. We will be using EKS but GKE is also fine to use. Example
eksctl create cluster --name gluualbcluster --version 1.19 --nodegroup-name standard-workers --node-type t2.medium --zones eu-central-1a,eu-central-1b,eu-central-1c --nodes 4 --nodes-min 1 --nodes-max 5 --region eu-central-1 --ssh-public-key "~/.ssh/id_rsa.pub"
The above guide should also walk you through installing
aws clion the VM you will be managing your cluster and nodes from. Check to make sure.
aws-iam-authenticator help aws-cli kubectl version
After setting up your EKS cluster start with installing the ALB controller following this guide
Amazon Aurora is a MySQL and PostgreSQL-compatible relational database built for the cloud, that combines the performance and availability of traditional enterprise databases with the simplicity and cost-effectiveness of open source databases. Gluu fully supports Amazon Aurora, and recommends it in production.
Create an Amazon Aurora database with MySQL compatibility version >=
Aurora(MySQL 5.7) 2.07.1and capacity type
Serverless. Make sure the EKS cluster can reach the database endpoint. You may choose to use the same VPC as the EKS cluster. Save the master user, master password, and initial database name for use in Gluus helm chart.
Once the installation has finished and you can access the GUI. Head to
Configuration > JSON Configuration > OxTrust Configuration, then set
kubectl rollout restart statefulset <helm-name>-oxtrust -n <namespace>
# kubectl rollout restart statefulset gluu-oxtrust -n gluu
Prompts will ask for the rest of the information needed. You may generate the manifests (yaml files) and continue to deployment or just generate the manifests (yaml files) during the execution of
pygluu-kubernetes.pyz will output a file called
settings.json holding all the parameters. More information about this file and the vars it holds is here but please don't manually create this file as the script can generate it using