Skip to main content

Migrating to Amazon Aurora PostgreSQL Database

Objective

This lab will show you how to create an Amazon Aurora Serverless v2 PostgreSQL database and update the FastAPI application to connect to this database. We'll be going through the following steps in this lab:

  1. Deploy the Amazon Aurora PostgreSQL database using CloudFormation
  2. Recreate the fastapi-secret object with the new database connection URL
  3. Create the application's database using psql
  4. Restart our application and confirm the connection to the new database

Prerequisites

Initial Setup

Navigate to the root directory of the python-fastapi-demo-docker project where your environment variables are sourced:

cd ~/environment/python-fastapi-demo-docker

Check-out the main branch using the following command:

tip

You may receive an error like error: Your local changes to the following files would be overwritten by checkout when running the below command if there are changes made to any of the source files. To fix this, first run the command git stash and then run the below command. After the checkout is finished, run the command git stash pop to reapply the changes.

git checkout main

1. Deploy the Amazon Aurora PostgreSQL Database Using CloudFormation

Deploying an Amazon Aurora Serverless v2 PostgreSQL database cluster using CloudFormation allows us to predictably create our required resources and take advantage of the values exported by our EKS cluster's CloudFormation stack. There are 3 resources that will be created by our CloudFormation template:

  1. An AWS::RDS::DBCluster which is the regional PostgreSQL cluster
  2. An AWS::RDS::DBInstance which is the instance where our database connections will be made
  3. An AWS::RDS::DBSubnetGroup which specifies which VPC and subnets our DBInstance can be placed in

For convenience, we are using the same VPC, subnets, and security group as our EKS cluster. Similarly, we are also setting the same database user and password for this cluster as we used for the PostgreSQL cluster deployed within the EKS cluster so that only minimal changes have to be made. Please keep in mind that this is not a best practice and that this is being done only for the sake of this lab exercise. This CloudFormation stack is also creating our bookstore database by default so there is no need to manually create this. Since we're also using the admin credentials for the cluster we do not need to manually assign any privileges for bookdbadmin to this database.

info

Before running any of the commands in this exercise, please ensure that you have updated the file .env to set AWS_REGION to the same region where your EKS cluster was created. Run the following command to source these variables into your terminal:

source .env

To create the CloudFormation stack please run correct command below based on whether you created a Fargate or Managed Node Group cluster.

aws cloudformation create-stack --region $AWS_REGION \
  --stack-name eksdevworkshop-rds-cluster \
  --template-body file://eks/rds-serverless-postgres.json \
  --parameters ParameterKey=ClusterType,ParameterValue=Fargate

The output should look as follows:

{
    "StackId": "arn:aws:cloudformation:$AWS_REGION:$AWS_ACCOUNT_ID:stack/eksdevworkshop-rds-cluster/9aa714d0-7e3d-11ee-91c8-0aa42affc2ab"
}

The CloudFormation stack will take between 15 and 20 minutes to create the database.

2. Recreate the fastapi-secret Object with the New Database Connection URL

Now that we've had a cup of coffee and our CloudFormation stack has completed, we can move on to updating the secret fastapi-secret with the new database endpoint.

To find this value, we can run the following command:

aws rds describe-db-clusters --region $AWS_REGION --db-cluster-identifier eksdevworkshop-rds --query 'DBClusters[0].Endpoint' --output text

The output should look as follows:

eksdevworkshop-rds.cluster-xxxxxxxxxx.us-east-1.rds.amazonaws.com

From here, we can edit our .env file and update the DOCKER_DATABASE_URL variable to replace db with the above endpoint. After the update, the value should look like this:

DOCKER_DATABASE_URL=postgresql://bookdbadmin:dbpassword@eksdevworkshop-rds.cluster-xxxxxxxxxx.us-east-1.rds.amazonaws.com:5432/bookstore

With this new value in place the fastapi-secret object can now be deleted and recreated:

kubectl delete secret fastapi-secret -n my-cool-app && \
kubectl create secret generic fastapi-secret --from-env-file=.env -n my-cool-app

The output should look as follows:

secret "fastapi-secret" deleted
secret/fastapi-secret created

3. Restart the FastAPI Deployment and Confirm Connectivity

With all of the pieces in place we can now restart the deployment fastapi-deployment which will get the new database URL from fastapi-secret and will create our database schema for us automatically.

First, retrieve your Amazon ECR repository URI using the following command:

echo ${AWS_ACCOUNT_ID}.dkr.ecr.${AWS_REGION}.amazonaws.com/fastapi-microservices:${IMAGE_VERSION}

The expected output should look like this:

012345678901.dkr.ecr.us-west-1.amazonaws.com/fastapi-microservices:1.0

Next, open eks/deploy-app-python.yaml and replace the sample value with your ECR repository URI image and tag.

Last, clean any previous deployment of Fastapi and re-apply the app manifest with the following commands:

kubectl delete -f eks/deploy-app-python.yaml
kubectl apply -f eks/deploy-app-python.yaml

Once this finishes we can then view our logs for the deployment and make sure we're seeing that it has connected successfully.

kubectl logs deploy/fastapi-deployment -n my-cool-app

We should see the following in the output:

INFO:server.app.connect:Trying to connect to eksdevworkshop-rds.cluster-xxxxxxxxxx.us-east-1.rds.amazonaws.com:5432 as bookdbadmin...
INFO:server.app.connect:Connection successful!
INFO:     Started server process [7]
INFO:     Waiting for application startup.
INFO:     Application startup complete.
INFO:     Uvicorn running on http://0.0.0.0:8000 (Press CTRL+C to quit)

We can now visit our website and see that it's still working as expected:

Screenshot of the FastAPI website showing that books have been created successfully

Cleanup

To clean up the resources provisioned during this lab we will just need to delete the CloudFormation stack using the command below:

aws cloudformation delete-stack --region $AWS_REGION --stack-name eksdevworkshop-rds-cluster
kubectl delete -f eks/deploy-app-python.yaml
kubectl delete secret fastapi-secret -n my-cool-app