ThingsBoard dockerized application deployment to AWS Elastic Beanstalk.
ThingsBoard is an open-source IoT platform that enables rapid development, management and scaling of IoT projects. Our goal is to provide the out-of-the-box IoT cloud or on-premises solution that will enable server-side infrastructure for your IoT applications.
To run locally the dockerized ThingsBoard application, follow the instructions described in these links:
The deploy.py CLI deploys the ThingsBoard application to AWS Elastic Beanstalk performing the following tasks:
- Create a boto3 session to store the AWS credentials and the region to use for the deployment. If there is any configuration defined through environment variables or stored in AWS CLI
~/.awsfolder, the AWS credentials and the region are directly retrieved from there (it is possible to specify the profile to use as optional argument). Otherwise, the CLI asks for these parameters interactively. - Check if the Elastic Beanstalk application is already created, and if not, create it.
- Create the ZIP package (source bundle) for the new application version.
- Upload the application version package to a source bundle S3 bucket.
- Create the new application version for the Elastic Beanstalk application.
- Create the environment if it does not exist or has been previously terminated, or update it if it is already created. The CLI check if there is an operation in progress in the environment and wait for it to be completed before updating or recreating it.
- Python 3.3+
- Boto3
-
The
aws-elasticbeanstalk-ec2-roleinstance profile (AWS IAM EC2 Role) created in the AWS account: -
The
aws-elasticbeanstalk-service-roleservice role (AWS IAM Elastic Beanstalk Role) created in the AWS account: -
An IAM User or an AWS IAM Role attached to the EC2 instance (only for executions from EC2 instances) with the following IAM Managed Policy attached:
AWSElasticBeanstalkFullAccess -
Pip tool for Python packages management. Installation:
# From Linux $ curl -O https://bootstrap.pypa.io/get-pip.py $ sudo python3 get-pip.py # From macOS $ brew install python -
AWS SDK for Python. Installation:
# From Linux $ sudo pip3 install boto3 # From macOS $ pip3 install boto3
Here you have the message that you will get if you request help to the deploy.py CLI:
$ ./deploy.py --help
usage: deploy.py [-h] -a APPLICATION_NAME -e ENVIRONMENT_NAME [-p PROFILE]
Custom CLI to deploy an application to AWS Elastic Beanstalk
optional arguments:
-h, --help show this help message and exit
Options:
-a APPLICATION_NAME, --application-name APPLICATION_NAME
Name of the Elastic Beanstalk application
-e ENVIRONMENT_NAME, --environment-name ENVIRONMENT_NAME
Name of the environment for the Elastic Beanstalk
application
-p PROFILE, --profile PROFILE
Use a specific profile from AWS CLI stored
configurations
This project provides the following configuration profiles:
env.yaml.staging=> Configuration profile intended for staging environments deployed for development, test, QA or demo purposes (lower cost and performance). This profile allows to deploy a single-instance type environment (henceforthSingleInstance) made up of one EC2 instance with an Elastic IP address to serve the application, and a Single-AZ RDS instance to host the databases.env.yaml.production=> Configuration profile intended for environments with productive loads. This profile allows to deploy a load-balancing, autoscaling type environment (henceforthLoadBalanced) made up of an Auto Scaling group of EC2 instances with an ELB to serve the application, and a Multi-AZ RDS instance to host the databases.
# Deployment of a staging environment
$ ln -sf env.yaml.staging env.yaml
$ ./deploy.py --application-name thingsboard --environment-name demo [--profile <aws_cli_profile>]
# Deployment of a productive environment
$ ln -sf env.yaml.production env.yaml
$ ./deploy.py --application-name thingsboard --environment-name live [--profile <aws_cli_profile>]
If you need to modify any settings provided in this project or add new ones, feel free to fork or import this repository and apply the changes you need to fulfil your use case.
Here are some common customizations that you might want to add to an environment:
-
To deploy a
SingleInstancetype environment in a existing custom VPC, add the following configuration block to theenv.yaml.stagingfile:aws:ec2:vpc: VPCId: <vpc_id> Subnets: <subnet_1a_id>,<subnet_1b_id>,... # Subnet IDs for EC2 instance DBSubnets: <subnet_2a_id>,<subnet_2b_id>,... # Subnet IDs for RDS instance AssociatePublicIpAddress: true # True required for immutable deployments/updates -
To deploy a
LoadBalancedtype environment in a existing custom VPC, add the following settings to the existingaws:ec2:vpcnamespace inenv.yaml.productionfile:aws:ec2:vpc: ELBScheme: public # This setting is already defined VPCId: <vpc_id> ELBSubnets: <subnet_3a_id>,<subnet_3b_id>,... # Subnet IDs for ELB Subnets: <subnet_1a_id>,<subnet_1b_id>,... # Subnet IDs for Auto Scaling group DBSubnets: <subnet_2a_id>,<subnet_2b_id>,... # Subnet IDs for RDS instance AssociatePublicIpAddress: true # Review this option in https://amzn.to/2Vhgt5B -
To configure SSL in a
LoadBalancedtype environment for a custom domain using an ACM issued certificate, add the following configuration block to theenv.yaml.productionfile:aws:elb:listener:443: ListenerProtocol: SSL InstancePort: '80' InstanceProtocol: TCP ListenerEnabled: true SSLCertificateId: <acm_certificate_arn>Then modify the
InstancePortsetting belonging to theaws:elb:listener:80namespace replacing the port80by81. -
To configure a SSH key pair to securely log into the EC2 instance/s belonging to an environment, add the following setting to the existing
aws:autoscaling:launchconfigurationnamespace in any of theenv.yaml.<config_profile>files:aws:autoscaling:launchconfiguration: . . . . . . EC2KeyName: <key_pair_name>