Infrastructure as Code with AWS Cloud Development Kit (CDK)

© 2020, Amazon Web Services, Inc. or its Affiliates.
Infrastructure as Code with
AWS Cloud Development Kit
Rohini Gaonkar
Sr. Developer Advocate, AWS
@rohini_gaonkar
@rohini-gaonkar-1503
27th June 2020

Infrastructure is Code with AWS
Cloud Development Kit
Rohini Gaonkar
@rohini_gaonkar
27th June 2020

Hello World..!
 Born in Cloud!
 With AWS for 6+ years
 Started as Cloud Support Engineer, Cape Town, South Africa
 Worked as AWS Solutions Architect in Singapore and in Mumbai, India
 Now a Developer Advocate, India.
@rohini_gaonkar

Agenda
• AWS Cloud Development Kit (CDK)
• Why,
• What, and
• How with a demo
• A Glimpse into CDK8s, with a Demo
• Learn & Contribute

Evolution of Infrastructure
Provisioning in Cloud

Level 0: Creating infrastructure by hand
Your
organization’s
infrastructure

High level
Low level
DOMs
Declarative
Scripted
Manual
Componentized
Level 0: Creating infrastructure by hand
� Easy to get started
☹Not reproducible, similar infrastructure for different
environments must be recreated everytime
☹Time consuming to follow click through Console

Level 1: Imperative infrastructure as code
Your
organization’s
infrastructure
deploy.script
AWS SDK

High level
Low level
DOMs
Declarative
Scripted
Manual
Componentized
Level 1: Imperative infrastructure as code
resource = getResource(xyz)
if (resource == desiredResource) {
return
} else if (!resource) {
createResource(desiredResource)
} else {
updateResource(desiredResource)
}deploy.script
☹Lots of boilerplate
☹What if something fails and we
need to retry?
☹What if two people try to run
the script at once?
☹Race conditions?
☹Configuration drift?
aws s3api create-bucket --bucket my-bucket --region us-east-1

Level 2: Declarative infrastructure as code
Your
organization’s
infrastructure
infrastructure.txt
AWS
CloudFormation
HashiCorp
Terraform
AWS SDK

Declarative
High level
Low level
DOMs
Scripted
Manual
Componentized
Level 2: Declarative infrastructure as code
infrastructure.txt
Just a list of each resource to create and its
properties, in this caseYAML format
Some minor helper functions may be built in to
aid in fetching values dynamically
Resources:
# VPC in which containers will be networked.
# It has two public subnets
# We distribute the subnets across the first two available subnets
# for the region, for high availability.
VPC:
Type: AWS::EC2::VPC
Properties:
EnableDnsSupport: true
EnableDnsHostnames: true
CidrBlock: !FindInMap ['SubnetConfig', 'VPC', 'CIDR']
# Two public subnets, where containers can have public IP addresses
PublicSubnetOne:
Type: AWS::EC2::Subnet
Properties:
AvailabilityZone:
Fn::Select:
- 0
- Fn::GetAZs: {Ref: 'AWS::Region'}
VpcId: !Ref 'VPC'
CidrBlock: !FindInMap ['SubnetConfig', 'PublicOne', 'CIDR']
MapPublicIpOnLaunch: true
PublicSubnetTwo:
Type: AWS::EC2::Subnet
Properties:
AvailabilityZone:
Fn::Select:
- 1
- Fn::GetAZs: {Ref: 'AWS::Region'}
VpcId: !Ref 'VPC'
CidrBlock: !FindInMap ['SubnetConfig', 'PublicTwo', 'CIDR']
MapPublicIpOnLaunch: true
� Easy to automate
� Reproducible
� Configuration syntax
☹ No abstraction, lots of details

Level 3: Document Object Models (DOMs)
Your
organization’s
infrastructure
app.py
AWS
CloudFormation
AWS SDK
Troposphere Python
SparkleFormation Ruby
GoFormation Go
…
app.template

Manual
High level
Low level
DOMs
Declarative
Scripted
Componentized
Level 3: Document Object Models (DOMs)
app.py
� Write in a familiar programming language
� Real Code - Can use if statements, for
loops, IDE benefits
☹Abstraction is not built-in –
Ex: 218 lines ofTroposphere for aVPC

Level 4: AWS Cloud Development Kit (AWS CDK)
Your
organization’s
infrastructure
app.js
AWS
CloudFormation
AWS SDKAWS CDK

High level
Low level
DOMs
Declarative
Scripted
Manual
Componentized
Level 4: AWS CDK
� Each stack is made up of
“constructs,” which are simple
classes in the code
� Still declarative, no need to handle
create vs update
app.js
app.py
class MyService extends cdk.Stack {
constructor(scope: cdk.App, id: string) {
super(scope, id);
// Network for all the resources
const vpc = new ec2.Vpc(this, 'MyVpc', { maxAzs: 2 });
// Cluster to hold all the containers
const cluster = new ecs.Cluster(this, 'Cluster', { vpc: vpc });
// Load balancer for the service
const LB = new elbv2.ApplicationLoadBalancer(this, 'LB', {
vpc: vpc,
internetFacing: true
});
}
}
� Write in a familiar programming language
� Create many underlying AWS resources at
once with a single construct

AWS Cloud Development Kit
(AWS CDK)

CDK Announcement History
AUG 2018
CDK developer
preview
APRIL 2020NOV 2019
GA
Java and C#
JUL 2019
CDK GA
TypeScript
and Python
Public
Roadmap
MAY 2020
CDK8s Alpha
Typescript
and Python
???
+1

AWS
CloudFormation
template
AWS CDK Application
Stack(s)
Construct Construct
AWS CDK – ConstructTree
Resources

AWS CDK
The big picture—from AWS CDK application to provisioned infrastructure
Framework CLI
CDK Application
Stack(s)
ConstructConstruct
“Source” “Compiler” “Assembly language” “Processor”
Execute Synthesize Deploy

AWS CDK
AWS Construct Library
Framework CLI
CDK Application
Stack(s)
ConstructConstruct
Core framework AWS CDK CLI
Serverless
Containers CI/ CD
Application Integration / Foundational
Autoscaling
Main components

AWS Construct Library (L2 constructs)
• AWS Lambda
• Amazon API Gateway
• AWS DynamoDB
• AWS Step Functions
• Amazon CloudWatch
• Metrics, alarms, dashboards
• AWS CodePipeline
• AWS Auto Scaling
• Amazon Elastic Cloud Compute (Amazon EC2)
• VPCs, security groups, Auto Scaling
• ……
https://docs.aws.amazon.com/cdk/api/latest/docs/aws-construct-library.html
Includes a module for each AWS service that offer rich API
The aim is to reduce the complexity and glue logic required when integrating
variousAWS services to achieve your goals on AWS.

CLIWorkflow
cdk bootstrap – Deploys the CDK toolkit stack into anAWS environment
cdk init – Creates a new CDK project
Add construct(s)
e.g.,npm install @aws-cdk/aws-lambda  TERMINAL
import * as ec2 from '@aws-cdk/aws-ec2’;  TYPESCRIPT CODE
Compile your code if needed
e.g., npm run build OR npm run watch
cdk synth – Synthesizes and prints the AWS CloudFormation template for the stack
cdk deploy – Deploys the stack(s) into your AWS account
cdk destroy – Destroys the stack(s)
cdk diff - Compares the specified stack with the deployed stack or a local template file

Workflow
cdk bootstrap – Deploys the CDK toolkit stack into anAWS environment
cdk init – Creates a new CDK project
Add construct(s)
e.g.,npm install @aws-cdk/aws-lambda  TERMINAL
import * as ec2 from '@aws-cdk/aws-ec2’;  TYPESCRIPT CODE
Compile your code if needed
e.g., npm run build OR npm run watch
cdk synth – Synthesizes and prints the AWS CloudFormation template for the stack
cdk deploy – Deploys the stack(s) into your AWS account
cdk destroy – Destroys the stack(s)
cdk diff - Compares the specified stack with the deployed stack or a local template file

Dive Deep into Constructs

Types of Constructs – Low Level
• Represent all of the AWS resources that are available in AWS CloudFormation.
• Named CfnXyz, where Xyz represents the name of the resource.
• You must explicitly configure all required resource properties
E.g. ec2.CfnVPC represents the AWS::EC2::VPC CFN Resource.
cidrBlock is a required property
Define Subnets & other resources separately
cdk synth

Types of Constructs – High Level
• High level intent-based API.
• Handle much of the details for resources, boilerplate, and glue logic required by
CFN constructs.
• Offer convenient defaults and reduce the need to know all the details about the
AWS resources.
E.g. ec2.Vpc represents anVPC with
additional properties, resources, methods.
456 lines of JSON
CloudFormation template

Types of Constructs – Patterns
• Patterns are designed to help you complete common tasks in AWS
• Common architecture patterns built on top of the basic patterns, often involving
multiple kinds of resources.
E.g., the aws-ecs-patterns.ApplicationLoadBalancedFargateService
construct represents an architecture that includes an AWS Fargate container cluster
employing an Application Load Balancer (ALB).
829 lines of JSON

AWS Solutions Constructs - Patterns
Can easily be assembled into production-ready well-architected applications
• Pre-built
• Multi-service architecture
• Vetted
• Configurable

Constructs Release Levels
• Stable release, safe to use!
• Experimental release, we are still working on this!
E.g. :

CDK Demo
https://github.com/rohinigaonkar/my_microservices_app

One CDK construct expands to many underlying resources
270 lines ofYAML
OR
456 lines of JSON
I don’t have to write!
cdk synth

VPC
Public Subnet in
Availability Zone
Public Subnet in
Availability Zone 2
Private Subnet in
Availability Zone
Private Subnet in
Availability Zone 2
Internet
gateway
NAT gateway NAT gateway
One CDK construct expands to many underlying resources
cdk deploy
AWS Cloud
Route table
RouteTable RouteTable
EIP EIP

To Summarize…
• Re-use : Define high level abstractions, share them, and publish them to your
team, company, or community
• Real- code : Code completion within your IDE
• Organize your project into logical modules
• Use object-oriented techniques to create a model of your system
• Use logic (if statements, for-loops, etc) when defining your infrastructure
• Testing your infrastructure code using industry-standard protocols
• Use your existing code review workflow

Another Open Source Project - JSII
Open source framework to define cloud infrastructure in popular programming
languages
‘By compiling our source module using jsii, we can now package it as modules in one of the supported target
languages.’
JSII (JavaScript Interoperability Interface)
https://github.com/aws/jsii

CDK8s – CDK for Kubernetes
https://github.com/rohinigaonkar/kubHello

• Define Kubernetes native apps and abstractions
• This is day one. cdk8s is alpha today and we have big things planned!
• Supported languages are Python, Typescript, and Javascript.
• Support for more languages (including Go, Java, and .NET) is on our roadmap!
• Roadmap published on Github.
https://github.com/awslabs/cdk8s

• cdk8s is built for the entire community.
• Agnostic - It can work with any cluster, anywhere.
• We love contributions. Open a issue or pull request at
github.com/awslabs/cdk8s

Kubernetes
Manifest FileAWS CDK8s Application
Chart(s)
Construct Construct
AWS CDK8s – ConstructTree
Kubernetes
Resources

CDK8s Demo

AWS CDK8s
The big picture—from AWS CDK8s application to provisioned Kubernetes applications
“Source” “Compiler” “Assembly language” “Processor”
Kubernetes
Manifest File
Execute Synthesize Deploy
AWS CDK8s Application
Chart(s)
Construct Construct

CDK8s to Kubernetes Manifest file
cdk8s
synth

To summarize..
• Imperative approach to declarative state
• Works for any cluster - it is environment agnostic.
• Use any Kubernetes API version and custom resources
• Open Source – Built for entire Kubernetes community, not just AWS customers
• Language support – plans to add support for more languages

Contribute
https://github.com/aws/aws-cdk/blob/master/CONTRIBUTING.md

Next steps
Engage
• github.com/aws/aws-cdk
• gitter.im/awslabs/aws-cdk
Get started
• cdkworkshop.com
• aws.amazon.com/cdk
• aws.amazon.com/vscode

awesome-cdk
• Open CDK Guide opinionated set of tips and best practices
• kevinslin/open-cdk
• punchcard type-safe AWS infrastructure
• punchcard/punchcard
• aws-cdk-pure purely functional CDK
• fogfish/aws-cdk-pure
• cdk-clj a clojure wrapper for the CDK
• StediInc/cdk-clj
• cdk-components a collection of higher-level cdk constructs
• cloudcomponents/cdk-components
• CDK GitHub Action
• ScottBrenner/aws-cdk-action
eladb/awesome-cdk
DISCLAIMER: this is a personal project and not affiliated with Amazon or AWS.

Go Build..!
Rohini Gaonkar
@rohini_gaonkar

Infrastructure as Code with AWS Cloud Development Kit (CDK)

Recommended

Recommended

More Related Content

Recently uploaded

Recently uploaded (20)

Featured

Featured (20)

Infrastructure as Code with AWS Cloud Development Kit (CDK)

Editor's Notes