Skip to content
This repository has been archived by the owner on Dec 11, 2023. It is now read-only.

GoogleCloudPlatform/terraform-mean-cloudrun-mongodb

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

56 Commits
launcher
launcher
 
 
.gitignore
.gitignore
 
 
CODE_OF_CONDUCT.md
CODE_OF_CONDUCT.md
 
 
CONTRIBUTING.md
CONTRIBUTING.md
 
 
LICENSE.txt
LICENSE.txt
 
 
NOTICE
NOTICE
 
 
README.md
README.md
 
 
SECURITY.md
SECURITY.md
 
 
atlas.tf
atlas.tf
 
 
ci-cd.tf
ci-cd.tf
 
 
google.tf
google.tf
 
 
main.tf
main.tf
 
 
outputs.tf
outputs.tf
 
 
variables.tf
variables.tf
 
 

Repository files navigation

Cloud Run + MongoDB Atlas demo

This repo contains a demo that deploys a MEAN Stack application on Google Cloud using Cloud Run and MongoDB Atlas. It also deploys a CI/CD pipeline using Cloud Build that you can use to deploy your own changes (or even your own app).

This demo uses Terraform to provision and configure Atlas and Cloud Run and deploy a sample application. You should be able to deploy your own simple application with only minor changes to this repo.

Getting Started

In order to run this demo, you'll need a Google Cloud account, a MongoDB Atlas account, credentials for both services, and a working Terraform installation.

A quick note on security: this demo uses your personal credentials for Google Cloud and a highly privileged API key for Atlas. It also configures Atlas to allow connections from any IP address. We do this to get you up and running as fast as possible, but in the real world you should follow Google Cloud's best practices for service accounts and Atlas's documentation to properly secure your infrastructure.

With that out of the way, let's get started!

MongoDB Atlas

If you don't already have a Atlas account, sign up here. If you are prompted to create a database, look for the "I'll do this later" link in the lower left corner. Once you're logged in, click on "Access Manager" at the top and select "Organization Access".

Select the "API Keys" tab and click the "Create API Key" button. Give your new key a short description and select the "Organization Owner" permission. Click "Next" and then make a note of your public and private keys. This is your last chance to see the private key, so be sure you've written it down somewhere safe.

Next, you'll need your Organization ID. Go to the projects page and click "Settings" in the list on the left side of the window to get to the Organization Settings screen. Your organization ID is in a box in the upper-left corner of the window. Copy your Organization ID and save it with your credentials.

That's everything for Atlas. Now you're ready to move on to setting up Google Cloud!

Google Cloud

If you don't already have a Google Cloud account, sign up here. You'll also need to enable billing and set up a billing account. This demo is designed to qualify for the free tier but some of the services involved require billing to be enabled. See this page for more information on setting up a billing account. Make a note of your Billing Account ID, listed here.

We recommend using Cloud Shell but if you prefer to work locally you can do that too. If you'd like to use Cloud Shell, just click this convenient button:

Open in Cloud Shell

This will open a Cloud Shell window and clone a copy of this repository. Cloud Shell has your credentials built in, and Terraform is already installed, so you're ready to move on to Choosing a Region. You can also open Cloud Shell the normal way but you'll need to clone this repo yourself.

If you want to work locally, you'll need to install the gcloud tool. If you're on MacOS you can also install gcloud via homebrew. Once the install is done, run gcloud init to set up your environment. More information can be found in the docs.

Installing Terraform

If you're using Cloud Shell, you've already got Terraform installed so feel free to move on to the next section. Otherwise, download Terraform and install it. A detailed walkthrough can be found in this tutorial.

Choosing a region

Next, select a region for your infrastructure. For this demo it's okay to choose somewhere close to you, but for production use you may want to choose a different region. If you need some advice, check out Best Practices for Compute Engine regions selection.

For a list of available regions, refer Atlas's Google Cloud provider documentation. Choose a region that's close to you and that supports the M0 cluster tier. Make a note of both the Google Cloud region name and the Atlas region name, as you'll need both in the next step.

Configuring the demo

If you haven't already, clone this repo. Run terraform init to make sure Terraform is working correctly and download the provider plugins.

Then, create a file in the root of the repository called terraform.tfvars with the following contents, replacing placeholders as necessary:

atlas_pub_key          = "<your Atlas public key>"
atlas_priv_key         = "<your Atlas private key>"
atlas_org_id           = "<your Atlas organization ID>"
google_billing_account = "<your billing account ID>"

If you used the Open in Cloud Shell button, check to make sure that you're creating the terraform.tfvars file in the root of the repository. The Cloud Shell terminal will be in the right directory but the Cloud Shell editor may not. Double-check to be sure you're creating the file in the same directory as this README.

If you selected the us-central1/US_CENTRAL region then you're ready to go. If you selected a different region, add the following to your terraform.tfvars file:

atlas_cluster_region = "<Atlas region ID>"
google_cloud_region  = "<Google Cloud region ID>"

Run terraform init again to make sure there are no new errors. If you get an error, check your terraform.tfvars file.

Run it!

You're ready to deploy! You have two options: you can run terraform plan to see a full listing of everything that Terraform wants to do without any risk of accidentally creating those resources. If everything looks good, you can then run terraform apply to execute the plan.

Alternately, you can just run terraform apply on its own and it will create a plan and display it before prompting you to continue. You can learn more about the plan and apply commands in this tutorial.

For this demo, we're going to just run terraform apply:

$ terraform apply

Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols:
+ create

Terraform will perform the following actions:

# mongodbatlas_cluster.cluster will be created
+ resource "mongodbatlas_cluster" "cluster" {
    + auto_scaling_compute_enabled                    = (known after apply)
    + auto_scaling_compute_scale_down_enabled         = (known after apply)
    + auto_scaling_disk_gb_enabled                    = true
    + backing_provider_name                           = "GCP"

[ ... snip ... ]

Plan: 6 to add, 0 to change, 0 to destroy.

Do you want to perform these actions?
Terraform will perform the actions described above.
Only 'yes' will be accepted to approve.

Enter a value:

If everything looks good to you, type yes and press enter, then go grab a snack while Terraform sets everything up for you! When it's done, Terraform will display the URL of your application and your deployment repo:

[ ... snip ... ]
Apply complete! Resources: 10 added, 0 changed, 0 destroyed.

Outputs:

app_url = "https://<randomized url>"
repo_url = "https://source.developers.google.com/p/<project id>/r/repo"

Load the app_url up in your browser and you'll see the sample app running!

Making and deploying changes

If you'd like to experiment with the CI/CD pipeline, now's your chance. First, clone a copy of this fork of the sample application. Next, add the repo_url from the Terraform output as a remote:

$ git remote add deploy <repo_url>

Now you can make some changes to the application. For a simple change, try adding a new level in [client/src/app/employee-form/employee-form.component.ts]. If you want to try something more complex, you could try adding a new field.

When you've made your changes, commit them and then push to your deploy repo:

$ git push deploy main

This will kick off a build that will build the application, run npm test, and deploy the new code. You can monitor the build from the Build history page.

You can also use this pipeline to deploy your own code. See the Next Steps section below for more details.

Cleaning Up

When you're done, run terraform destroy to clean everything up:

$ terraform destroy

[ ... snip ... ]

Terraform used the selected providers to generate the following execution plan. Resource actions are indicated with the following symbols:
- destroy

Terraform will perform the following actions:

[ ... snip ... ]

Plan: 0 to add, 0 to change, 10 to destroy.

Changes to Outputs:
- app_url = "https://example.com" -> null

Do you really want to destroy all resources?
Terraform will destroy all your managed infrastructure, as shown above.
There is no undo. Only 'yes' will be accepted to confirm.

Enter a value:

If you're sure you want to tear everything down, type yes and press enter. This will take a few minutes so now would be a great time for another break. When Terraform is done everything it created will have been destroyed and you will not be billed for any further usage. Note that you may still see the project listed in the project selector in the Google Cloud console. You can confirm it has been marked for deletion by going to the Resources Pending Deletion page and looking for it there.

Next Steps

You can use the code in this repository to deploy your own applications. Out of the box, it will run any application that meets the following requirements:

  • runs in a single container
  • reads MongoDB connection string from an environment variable called ATLAS_URI

Deploying your own container

If you already have a container that meets those requirements, you can deploy it by adding a line to your terraform.tfvars file pointing to your container image:

app_image = '<your container URI>'

Note that if you do this after you've already run Terraform, you will need to taint the Cloud Run service and run terraform apply again:

$ terraform taint google_cloud_run_service.app
Resource instance google_cloud_run_service.app has been marked as tainted.

$ terraform apply

Tainting a resource causes it to be deleted and re-created, so don't be surprised when you see that in the plan.

Deploy via git push

Another option is to use the CI/CD pipeline to build and deploy your own code. To do so there is one extra requirement: your application must be able to successfully run npm install and npm test.

The process is essentially the same as described in the Making and deploying changes section above, except you'd add the remote to your own repository instead of the demo application.

If you've already pushed other code to the deploy repo, you'll need to use a force push the first time:

$ git push --force deploy main

As before, you can see the build status on the Build history page.

Other notes

If you need to add or change the environment variables that get passed into the container, take a look at the google.tf file. You can add additional env blocks next to the ATLAS_URI block, and/or modify that block to fit your needs.

You can also add more google_cloud_run_service blocks to deploy additional services on Cloud Run, just make sure to also include a google_cloud_run_service_iam_binding block if that service needs to be accessible to the public. For more information, see the google_cloud_run_service and google_cloud_run_service_iam_binding pages in the Terraform provider documentation, as well as the Cloud Run IAM documentation.

About

No description, website, or topics provided.

Resources

Readme

License

Apache-2.0 license

Code of conduct

Code of conduct

Security policy

Security policy
Activity
Custom properties

Stars

15 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases

No releases published

Packages

 
 
 

Contributors 2

  •  
  •  

Languages