Skip to content

nsubrahm-aws/containers-bb-pilot-mock-test

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
app
app
 
 
png
png
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 

Repository files navigation

Introduction

This repository documents the mock test.

Overview

By end of this mock test, the participants should be able to invoke an API, hosted in Kubernetes cluster, that queries a MySQL database on Amazon RDS successfully.

Architecture

The participants are expected to implement the following architecture successfully.

Cloud

cloud

Cluster

k8s

Test

The mock test requires implementation of the architecture diagrams shown above. The requirements can be organised into four sections viz. Cloud, Cluster, Container and Code as seen in the figure below.

4c

  • The Code layer is already implemented in the app folder. Rest of the layers are to be developed.
  • At least, one aspect of Security and monitoring must be implemented.
  • Implementation of automation is optional.

Cloud

The Cloud layer is to be implemented is described in the subsequent sections.

Amazon RDS

  1. Launch an Amazon RDS database in the default VPC of your AWS account.
  2. Allow traffic into Amazon RDS database from the NAT gateway of the Amazon EKS VPC.
  3. Enable authentication with IAM.

Amazon CloudWatch

  1. Implement at least one detective control on the Amazon EKS control plane logs.
  2. Enable Amazon CloudWatch Container Insights to monitor the performance of the Amazon EKS cluster.

Amazon ECR

  1. Launch an Amazon ECR registry with at least one of the features enabled.
    1. Immutable tags.
    2. Scan on push.
    3. Encrypted images.

Amazon IAM

Cluster

The Cluster layer is to be implemented is described in the subsequent sections.

Amazon EKS

  1. Launch an Amazon EKS cluster that satisfies the following conditions
    1. 1 instance of type t3.small with label as workload: web.
    2. 1 instance of type t3.small with label as workload: db.

Kubernetes objects

  1. ns/mock
  2. mock/deployment/demo
  3. mock/svc/demo
  4. mock/ing/demo
  5. mock/sa/demo

Container

  1. Create Dockerfile to build container image for the application in the app folder.
  2. Build and push the container image to Amazon ECR.

Result

ARN

Populate the following results table.

Item ARN
Amazon RDS
AWS IAM
Amazon EKS
Amazon ECR

Kubernetes objects

  1. Paste the result of the command kubectl -n mock get all.
# Run kubectl -n mock get all and paste here.

Result of API invocation

  1. Get the DNS of ALB provisioned.
ALB_DNS=`kubectl -n demo get ing/demo -o jsonpath='{.status.loadBalancer.ingress[0].hostname}'`
echo ${ALB_DNS}
  1. Paste the result of API invocation - curl -X GET http://${ALB_DNS}/demo/ts and past here.


   



      


  
      

      

        

          

            

  
About


      

        Mock test
      



    
Resources

    

      
        
        Readme
    


  



  
  

  

    
      Activity  



  
Stars

  

    
      0
      stars  


  
Watchers

  

    
      1
      watching  


  
Forks

  

    
      0
      forks  


    

      
          Report repository
    




          

        


        
            

              

                

  Releases


    
No releases published


              

            


        
        
            

              

                
  

  Packages
      



      

        No packages published 

      




              

            


        
            

        
        
        
            

              

                
Languages