docs(deployments): add Burr UI on AWS deployment example (#391)#829
Open
vaquarkhan wants to merge 2 commits into
Open
docs(deployments): add Burr UI on AWS deployment example (#391)#829vaquarkhan wants to merge 2 commits into
vaquarkhan wants to merge 2 commits into
Conversation
Deploy the Burr tracking UI server in a private VPC on AWS: - Single EC2 instance in private subnet (single-tenant, per issue requirements) - SSM Session Manager for private access (no public IP, no open ports) - Parameterizable on S3 bucket (bring-your-own-bucket) - Read-only IAM scoped to the single bucket ARN - VPC with NAT gateway + SSM VPC endpoints - IMDSv2 enforced, encrypted gp3 EBS - Systemd service for automatic restart - 45 automated tests (structure, license, security, terraform fmt/validate) - Full README with architecture diagram, SSM access, troubleshooting - RST docs page wired into deployment toctree Addresses apache#391
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Adds a deployment example for running the Burr tracking UI server on AWS in a private VPC, reading from an existing S3 tracking bucket. Directly addresses Issue #391 requirements: inside a VPC, parameterizable on S3 bucket, single-tenant server, Terraform.
Architecture: Private VPC with NAT Gateway, SSM VPC Endpoints, EC2 running burr as systemd service, read-only IAM to single bucket, access via SSM port forwarding.
Security: No public IP, no inbound ports, IMDSv2, encrypted EBS, least-privilege IAM, no SSH keys.
Testing: terraform fmt/validate pass, 45 pytest tests pass (structure, license, security, bucket parameterization).
Files: 21 created in examples/deployment/aws/burr-ui/, 1 test, 1 RST doc, 1 toctree update.
Addresses #391