Deployment of Dagster (with a materialized asset) on Kubernetes with exposed UI through Nginx Ingress controller protected by basic-auth
Kubectl client version: v1.30.0
Kubernetes server version: v1.30.0
Helm client version: v3.15.2
You may skip if you already have a k8s cluster running.
kind create cluster --config cluster-config.yamlAgain please skip this also if you have Nginx-Ingress-Controller somewhere in your cluster.
kubectl apply -f nginx-ingress-controller/deploy.yamlI tried to keep it simple so we don't need to install more dependencies. There's a file dagster/secrets.yaml.enc which is the encoded file of the secret manifest. Please use the Password provided to you to decrypt it first:
openssl enc -d -aes-256-cbc -salt -in dagster/secrets.yaml.enc -out dagster/secrets.yaml -k <password>There is a simple script dagster/upgrade.sh to upgrade/install the dagster chart after creating namespace and the secrets. (you are welcome to skim through it before running it!)
It's also helpful for keeping track of which chart version is in production.
./dagster/upgrade.sh <namespace> <hostname>- Args:
<namespace>: namespace to deploy dagster [Default: 'default']<hostname>: hostname for the ingress [Default: 'localhost']
Default usage:
./dagster/upgrade.sh default localhostThe Dagster Webserver UI should be accessible by heading to localhost or the domain given to the script if a DNS is configured for the domain to point to the Ingress Controller Service.
The UI is protected by Nginx Basic Auth and the credentials are encrypted in the secrets YAML file.
Each directory in the src represents a user deployment in Dagster with its own assets and pipelines.
For demonstration purposes it sleeps for 60 seconds so we can check whether the file has been downloaded successfully in the ephemeral disk space. It also outputs the secrets and the S3 configs so we can verify their sanity.
A GitHub Action tests the asset, builds the asset code location, and pushes it to Docker Hub if there are changes in the code location directory. We can use tools like ArgoCD for CD as future improvements.