#
Deployment
The Tilores CLI comes with the commands to deploy your customized instance into your own AWS account.
#
Prerequisites
For deploying we will need that
terraform
in at least version 1.2 and
git
in any version is installed.
Verify your terraform
and git
installation by running
terraform version
git version
Furthermore you need to provide valid AWS credentials into either your
credentials file
or set them up as
environment variables.
For security reasons, we do not offer flags for providing the credentials. If
you are using a credentials file, you can optionally specify a profile using
the --profile
flag while running the deploy
command.
You can only deploy if you have a valid license and your AWS account has been registered by our service team (service@tilotech.io). If your account has not been registered you may receive the following error during the deployment:
Error: failed getting S3 Bucket (tilotech-artifacts)
#
Deploy
Deploying Tilores is as simple as running:
tilores-cli deploy --region <your-aws-region>
The --region
flag is required and must be one of the official
AWS region codes,
e.g. us-east-1 for North Virginia or eu-west-1 for Ireland. Check
This will automatically create all the needed resources in your AWS account.
Once the deployment finished, you can request an access token using the
outputted token_url
and start sending requests using the token_url
. For more
details, please refer to the authentication
documentation.
#
Customize Deployment
The terraform files for the deployment are stored under deployment/tilores
and can be customized to some extend or you can add your own features where
needed.
#
Change Resource Prefix
The resource prefix is a short text that every AWS resource created during the deployment is prefixed with. For most of the resources this is only for convenience, but for some resources that must have a global unique name, this is important (e.g. S3 buckets).
You can change the name in deployment/tilores/main.tf
in the local
resource_prefix
variable. We recommend a value that typically only makes sense
for your company, most of the times you company name and maybe a stage, e.g.
mycompany-prod
.
#
Shard Count
One of the biggest advantages of Tilores is, that you don't need to worry about scaling. However, the automatic scaling feature for Kinesis streams provided by AWS does not (yet) work well. For that reason, the user currently would need to configure the amount of shards for the raw data and for the entity events.
The amount of raw data shards are important when it comes to submitting records. Each shard handles approx. 10 to 20 submissions per second. However, you don't need to scale for spikes, but for the average. This is because all submitted records stay in the shard for up to 24 hours, before they must have been processed or they are lost. Unless you have batch processes, you most likely want to have them processed within a few seconds or within a few minutes.
The amount of shards for entity events is typically 1/8th of the amount of raw data shards. This depends of course on how you use that stream.
To use 16 raw data shards and 2 entity event shards, you can change the
tilores
module in deployment/tilores/main.tf
like this:
module "tilores" {
# other parameters
rawdata_stream_shard_count = 16
entity_event_stream_shard_count = 2
}
Notice, that AWS Kinesis only lets you double the amount of shards for each change. So when your current value is at 4, you can at maximum increase it to 8. This does not apply for the initial value, which you can freely decide upon.
#
Example: Realtime Processing with Spikes
Let's say you are expecting on average 100 submissions during your normal business hours (ignoring the idle night time) and have spikes of up to 250 submissions for a few minutes every now and then. Since each shard can handle typically at least 10 submissions per second, you would need 10 shards for the average. However, shards should be provisioned in multiples of 2, so the recommendation would be 16 shards, which would provide you with at least 160 submissions per second (or more than 13.8 million per day). Enough to let the backlog of unprocessed items not to grow to fast during spikes. In that case you would need 2 shards for the entity event stream.
#
Example: Batch Imports
When your business is more batch oriented, you would most likes want to consider the amount of submissions per day or for one time submissions per batch. Let's say, you typically have 4 batches per day, with an average of 250 thousand submissions per batch. You may want to scale your shards so that all submissions will be processed in 12 hours, so your shard capacity should be at 2 million submissions per day or roughly 23 submissions per second. You can now either use 2 or 4 raw data shards and 1 shard for the entity event stream. In most cases 2 shards should be fine for these amounts of records.
#
Fix Versions
You may want to prevent automatic upgrades when reapplying your API changes. You
can change this in the module tilores
in deployment/tilores/main.tf
.
For fixing the core version you can modify it like this:
module "tilores" {
# other parameters
core_version = "v0-1-0"
}
You can also fix it to a major version, e.g. v0
.
Please refer to the modules input parameters for the full list of versions, that can be fixed.
#
Non-local State Files
The terraform state files store the
current state of your deployed resources. By default Tilores uses a local state,
meaning that it is stored within the project under
deployment/tilores/terraform.tfstate
. While this is easy to setup, it is not a
good practice to do so in environments with multiple developers or ops. Most of
the time you want to store the state in a system that is reachable by multiple
people. Terraform provides various backends for this purpose. We won't go into
details, but would recommend you to store your state in an
S3 bucket. You can
either add the backend configuration in deployment/tilores/provider.tf
or
create a new .tf
file for that in the same folder.
#
Access Token Validity Duration
Access token validity duration is the time after which the access token is no longer valid and cannot be used.
The default value is 60 minutes. A different value can be provided in cognito
module in deployment/tilores/main.tf
by adding access_token_validity = <yourOwnValue>
to the list of parameters.
Example: for setting the duration to 90 minutes, modify the cognito module as follows:
module "cognito" {
# other parameters
access_token_validity = 90
}
Valid values for access_token_validity
are between 5
and 1440
minutes (1 day).
#
Remove
Removing the created resources from your AWS account is as simple as deploying:
tilores-cli destroy --region <your-aws-region>
Be careful when using this on a production account. This will remove all the resources and all the data stored in your Tilores instance. The data cannot be restored afterwards!
#
Deploy Multiple Instances
Multiple Tilores instances can be deployed from the same project. This can be either in the same AWS account or in different ones, e.g. for production and development environments.
Simply use the flag workspace
when deploying your environment as follows
tilores-cli deploy --region <your-aws-region> --workspace <your-env-name>
Note that the same flag needs to be used when removing the environment to avoid removing the wrong one
tilores-cli destroy --region <your-aws-region> --workspace <your-env-name>
All resources are prefixed with the workspace you provide, which allows multiple instances to be deployed into the same AWS account.
#
Supported Regions
Deployment is currently only possible to the following AWS regions:
- US East (N. Virginia)
us-east-1
- US East (Ohio)
us-east-2
- US West (Oregon)
us-west-2
- Europe (Frankfurt)
eu-central-1
- Europe (Ireland)
eu-west-1
- Europe (London)
eu-west-2
- Europe (Milan)
eu-south-1
- Europe (Zurich)
eu-central-2
More regions can be made available for deployment. Contact sales (service@tilotech.io) to submit a request.