deployed it on eks

Author: pabhi18

.DS_Store

@@ -0,0 +1,54 @@
+name: Node.js App Deploy to EKS
+
+on:
+  push:
+    branches:
+      - "main"
+
+jobs:
+  build:
+    runs-on: ubuntu-latest
+    steps:
+      - name: Checkout Source
+        uses: actions/checkout@v4
+
+      - name: Login to Docker Hub
+        run: docker login -u ${{ secrets.DOCKER_USERNAME }} -p ${{ secrets.DOCKER_PASSWORD }}
+
+      - name: Build Docker image
+        run: docker build -t ${{ secrets.DOCKER_USERNAME }}/node-app:latest .
+
+      - name: Push Image to Docker Hub
+        run: docker push ${{ secrets.DOCKER_USERNAME }}/node-app:latest
+
+  deploy:
+    runs-on: ubuntu-latest
+    needs: build
+    steps:
+      - name: Checkout Code
+        uses: actions/checkout@v2
+
+      - name: Configure AWS credentials
+        uses: aws-actions/configure-aws-credentials@v1
+        with:
+          aws-access-key-id: ${{ secrets.AWS_ACCESS_KEY_ID }}
+          aws-secret-access-key: ${{ secrets.AWS_SECRET_ACCESS_KEY }}
+          aws-region: us-east-1
+          
+      - name: Install kubectl
+        uses: actions/install-kubectl@v3
+        with:
+          version: 'v1.22.0'
+
+      - name: Install Helm
+        run: |
+          curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
+
+      - name: Update kubeconfig for EKS
+        run: |
+          aws eks update-kubeconfig --region us-east-1 --name node-app
+
+      - name: Deploy to EKS with Helm
+        run: |
+          helm upgrade --install node-app ./node-app --set image.repository=${{ secrets.DOCKER_USERNAME }}/node-app --set image.tag=latest
+

.github/workflows/build.yaml

@@ -1,165 +1,31 @@
-# VPC Steup
-resource "aws_vpc" "vpc_node" {
- cidr_block = var.vpc_cidr
- tags = {
-    Name = "Kubernetes-VPC"
-  }
-}
-
-resource "aws_internet_gateway" "igw" {
-    vpc_id = aws_vpc.vpc_node.id
-    tags = {
-        Name = "IGW"
-    }
-}
-
-resource "aws_subnet" "sub_public" {
-    vpc_id = aws_vpc.vpc_node.id
-    cidr_block = var.public_subnet_cidr
-    availability_zone = var.availability_zone
-    map_public_ip_on_launch = true
-    tags = {
-    Name = "Public Subnet 1"       
-    }
-}
-
-resource "aws_subnet" "sub_private" {
-    vpc_id = aws_vpc.vpc_node.id
-    cidr_block = var.private_subnet_cidr
-    availability_zone = var.availability_zone
-    map_public_ip_on_launch = false
-    tags = {
-        Name = "Private Subnet 1"
-    }
-}
-
-resource "aws_eip" "lb" {
-  domain   = "vpc"
-}
-
-resource "aws_nat_gateway" "ng" {
-  allocation_id = aws_eip.lb.id
-  subnet_id     = aws_subnet.sub_public.id
-
-  tags = {
-    Name = "gw NAT"
-  }
-}
-
-
-resource "aws_route_table" "rt_public" {
-    vpc_id = aws_vpc.vpc_node.id
-    route {
-    cidr_block = var.rt_cidr
-    gateway_id = aws_internet_gateway.igw.id       
-    }
-    tags = {
-        Name = "RT_PUBLIC"
-    }
-}
-
-resource "aws_route_table" "rt_private" {
-    vpc_id = aws_vpc.vpc_node.id
-    route {
-    cidr_block = var.rt_cidr
-    nat_gateway_id = aws_nat_gateway.ng.id       
-    }
-    tags = {
-        Name = "RT_PRIVATE"
-    }
-}
-
-resource "aws_route_table_association" "rta_public" {
-  subnet_id      = aws_subnet.sub_public.id
-  route_table_id = aws_route_table.rt_public.id
-}
-
-resource "aws_route_table_association" "rta_private" {
-  subnet_id      = aws_subnet.sub_private.id
-  route_table_id = aws_route_table.rt_private.id
-}
-
-resource "aws_security_group" "aws_sg_master" {
-  name        = "k8s-master-sg"
-  description = "Security group for Kubernetes master node"
-  vpc_id      = aws_vpc.vpc_node.id
-  
-}
-
-resource "aws_vpc_security_group_ingress_rule" "master_ingress_https" {
-  security_group_id = aws_security_group.aws_sg_master.id
-  cidr_ipv4         = aws_vpc.vpc_node.cidr_block
-  from_port         = 22
-  ip_protocol       = "tcp"
-  to_port           = 22
-}
-
-resource "aws_vpc_security_group_ingress_rule" "master_ingress_k8s" {
-  security_group_id = aws_security_group.aws_sg_master.id
-  cidr_ipv4         = aws_vpc.vpc_node.cidr_block
-  from_port         = 6443
-  ip_protocol       = "tcp"
-  to_port           = 6443
-}
-
-resource "aws_vpc_security_group_egress_rule" "master_egress" {
-  security_group_id = aws_security_group.aws_sg_master.id
-  cidr_ipv4         = "0.0.0.0/0"
-  ip_protocol       = "-1" 
-}
-
-resource "aws_security_group" "aws_sg_worker" {
-  name        = "k8s-worker-sg"
-  description = "Security group for Kubernetes worker node"
-  vpc_id      = aws_vpc.vpc_node.id
+module "vpc" {
+  source  = "terraform-aws-modules/vpc/aws"
+  version = "~> 5.0"
+  name    = "eks-vpc"
+  cidr    = var.vpc_cidr
+  azs     = ["${var.region}a", "${var.region}b"]  
+  private_subnets = var.private_subnets_cidr
+  public_subnets  = var.public_subnets_cidr
+  enable_nat_gateway = true
+}
+
+module "eks" {
+  source  = "terraform-aws-modules/eks/aws"
+  version = "~> 19.0"
+  cluster_name    = var.cluster_name
+  cluster_version = "1.27"
+  vpc_id          = module.vpc.vpc_id
+  subnet_ids      = module.vpc.private_subnets
+  cluster_endpoint_public_access = true
+  cluster_endpoint_private_access = true
 
-}
-
-resource "aws_vpc_security_group_ingress_rule" "worker_ingress_https" {
-  security_group_id = aws_security_group.aws_sg_worker.id
-  cidr_ipv4         = aws_vpc.vpc_node.cidr_block
-  from_port         = 22
-  ip_protocol       = "tcp"
-  to_port           = 22
-}
-
-resource "aws_vpc_security_group_ingress_rule" "worker_ingress_k8s" {
-  security_group_id = aws_security_group.aws_sg_worker.id
-  cidr_ipv4         = aws_vpc.vpc_node.cidr_block
-  from_port         = 6443
-  ip_protocol       = "tcp"
-  to_port           = 6443
-}
-
-resource "aws_vpc_security_group_egress_rule" "worker_egress" {
-  security_group_id = aws_security_group.aws_sg_worker.id
-  cidr_ipv4         = "0.0.0.0/0"
-  ip_protocol       = "-1" 
-}
-
-# EC2 Instances for Master and Worker Node
-
-resource "aws_instance" "master" {
-  ami           = var.ami_id
-  instance_type = "t3.medium"
-  key_name      = var.key_name
-  security_groups = [aws_security_group.aws_sg_master.id]
-  subnet_id     = aws_subnet.sub_public.id
-
-  tags = {
-    Name = "K8s Master"
-  }
-}
-
-resource "aws_instance" "worker" {
-  count         = var.worker_count
-  ami           = var.ami_id
-  instance_type = "t3.small"
-  key_name      = var.key_name
-  security_groups = [aws_security_group.aws_sg_worker.id]
-  subnet_id     = aws_subnet.sub_private.id
-
-  tags = {
-    Name = "K8s Worker ${count.index + 1}"
+  eks_managed_node_groups = {
+    spot = {
+      min_size     = 0
+      max_size     = 5
+      desired_size = 1
+      instance_types = ["t3.small", "t3.medium"]
+      capacity_type  = "SPOT"
+    }
   }
 }