This project is currently in development
Here you can see some diagrams describing the architecture of this project.
In order to achieve high availability we're deploying the cluster to three Availability Zones with the nodes being an EC2 Auto Scaling Group.
We're using Consul to store Vault data.
On top of the cluster above mentioned we deploy Vault and Consul with StatefulSets to, again, ensure high availability.
StatefulSets are built on top of a Deployment, who handles the replication of Pods.
The steps to spin up the infrastructure are declared within each environment.
cd environments/developAfter everything is setup you should be able to access Vault via CLI.
Thanks to the VAULT_ADDR environment variable
So to read the database credentials created by Terraform:
vault login $VAULT_TOKENvault kv get static/databaseIf you don't have the Vault CLI installed, you can get it here
And with the credentials in hand you can access the MySQL Database:
mysql \
-h $(terraform output -json database | jq -r .address) \
-P $(terraform output -json database | jq -r .port) \
-u '{THE_USERNAME_DECLARED_ON_TFVARS}' -pIf you don't have MySQL CLI installed, you can get it here