This is a sample application designed to illustrate various concepts related to containers on AWS. It presents a sample retail store application including a product catalog, shopping cart and checkout, deployed using modern DevOps practices including GitOps and Infrastructure as Code.
- Overview
- Architecture
- Prerequisites
- Quick Start
- Branch Strategy
- Getting Started
- GitOps Workflow
- EKS Auto Mode
- Infrastructure Components
- CI/CD Pipeline
- Monitoring and Observability
- Cleanup
- Troubleshooting
The Retail Store Sample App demonstrates a modern microservices architecture deployed on AWS EKS using GitOps principles. The application consists of multiple services that work together to provide a complete retail store experience:
- UI Service: Java-based frontend
- Catalog Service: Go-based product catalog API
- Cart Service: Java-based shopping cart API
- Orders Service: Java-based order management API
- Checkout Service: Node.js-based checkout orchestration API
The application has been deliberately over-engineered to generate multiple de-coupled components. These components generally have different infrastructure dependencies, and may support multiple "backends" (example: Carts service supports MongoDB or DynamoDB).
| Component | Language | Container Image | Helm Chart | Description |
|---|---|---|---|---|
| UI | Java | Link | Link | Store user interface |
| Catalog | Go | Link | Link | Product catalog API |
| Cart | Java | Link | Link | User shopping carts API |
| Orders | Java | Link | Link | User orders API |
| Checkout | Node | Link | Link | API to orchestrate the checkout process |
The Infrastructure Architecture follows cloud-native best practices:
- Microservices: Each component is developed and deployed independently
- Containerization: All services run as containers on Kubernetes
- GitOps: Infrastructure and application deployment managed through Git
- Infrastructure as Code: All AWS resources defined using Terraform
- CI/CD: Automated build and deployment pipelines with GitHub Actions
Want to deploy immediately? Follow these steps for a basic deployment:
- Install Prerequisites: AWS CLI, Terraform, kubectl, Docker, Helm
- Configure AWS:
aws configurewith appropriate credentials - Clone Repository:
git clone https://github.com/LondheShubham153/retail-store-sample-app.git - Deploy Infrastructure: Run Terraform in two phases (see Getting Started)
- Access Application: Get load balancer URL and browse the retail store
Need advanced GitOps workflow? See BRANCHING_STRATEGY.md for automated CI/CD setup.
This repository uses a dual-branch approach for different deployment scenarios:
- Purpose: Simple deployment with public images
- Images: Public ECR (stable versions like v1.2.2)
- Deployment: Manual control with umbrella chart
- Updates: Manual only
- Best for: Demos, learning, quick testing, simple deployments
- Purpose: Full production workflow with CI/CD pipeline
- Images: Private ECR (auto-updated with commit hashes)
- Deployment: Automated via GitHub Actions
- Updates: Automatic on code changes
- Best for: Production environments, automated workflows, enterprise deployments
📚 For detailed branching strategy, CI/CD setup, and advanced workflows, see BRANCHING_STRATEGY.md
- Install Prerequisites: AWS CLI, Terraform, kubectl, Docker, Helm
- Configure AWS:
aws configurewith appropriate credentials - Clone Repository:
git clone https://github.com/LondheShubham153/retail-store-sample-app.git - Deploy Infrastructure: Run Terraform in two phases (see Getting Started)
- Access Application: Get load balancer URL and browse the retail store
| Tool | Version | Installation |
|---|---|---|
| AWS CLI | v2+ | Install Guide |
| Terraform | 1.0+ | Install Guide |
| kubectl | 1.33+ | Install Guide |
| Docker | 20.0+ | Install Guide |
| Helm | 3.0+ | Install Guide |
| Git | 2.0+ | Install Guide |
Follow these steps to install Prerequisites:
🔧 One-Click Installation
#!/bin/bash
# Install all prerequisites
# AWS CLI
curl "https://awscli.amazonaws.com/awscli-exe-linux-x86_64.zip" -o "awscliv2.zip"
unzip awscliv2.zip
sudo ./aws/install
# Terraform
curl -fsSL https://apt.releases.hashicorp.com/gpg | sudo apt-key add -
sudo apt-add-repository "deb [arch=amd64] https://apt.releases.hashicorp.com $(lsb_release -cs) main"
sudo apt-get update && sudo apt-get install terraform
# kubectl
curl -LO "https://dl.k8s.io/release/v1.33.3/bin/linux/amd64/kubectl"
chmod +x kubectl
sudo mv kubectl /usr/local/bin/
# Docker
curl -fsSL https://get.docker.com -o get-docker.sh
sudo sh get-docker.sh
# Helm
curl https://raw.githubusercontent.com/helm/helm/main/scripts/get-helm-3 | bash
# Verify installations
aws --version
terraform --version
kubectl version --client
docker --version
helm versionEnsure your AWS CLI is configured with the Root user credentials:
aws configuregit clone https://github.com/LondheShubham153/retail-store-sample-app.gitImportant
For Public Application (Main Branch):
- Uses stable public ECR images (v1.2.2)
- Manual deployment control
- No GitHub Actions required
- Skip to Step 4 - infrastructure is ready
For Production (GitOps Branch):
- Uses private ECR with automated CI/CD
- Requires GitHub Actions setup
- See BRANCHING_STRATEGY.md for complete setup
cd retail-store-sample-app/terraform/
terraform init
terraform apply --auto-approve
This creates the core infrastructure, including:
- VPC with public and private subnets
- Amazon EKS cluster with Auto Mode enabled
- Security groups and IAM roles
And deploys:
- ArgoCD for Setup GitOps
- NGINX Ingress Controller
- Cert Manager for SSL certificates
aws eks update-kubeconfig --name retail-store --region <region>
Application is live with Public image:
- Get your ingress EXTERNAL-IP and paste it in the browser to access retail-store application.
kubectl get svc -n ingress-nginx
Note
Let's move forward with GitOps principle utilising Amazon private registry to create private registry and store images.
Note: This step is only required if you're using the Production branch for automated deployments. Skip this step if using the Public Application branch for simple deployment.
For GitHub Actions, first configure secrets so the pipelines can be automatically triggered:
Create an IAM User, policies, and generate credentials
Go to your GitHub repo → Settings → Secrets and variables → Actions → New repository secret.
| Secret Name | Value |
|---|---|
AWS_ACCESS_KEY_ID |
Your AWS Access Key ID |
AWS_SECRET_ACCESS_KEY |
Your AWS Secret Access Key |
AWS_REGION |
region-name |
AWS_ACCOUNT_ID |
your-account-id |
Important
Once the entire cluster is created, any changes pushed to the repository will automatically trigger GitHub Actions.
GitHub Actions will automatically build and push the updated Docker images to Amazon ECR.
Check if the nodes are running:
kubectl get nodesThe application is exposed through the NGINX Ingress Controller. Get the load balancer URL:
kubectl get svc -n ingress-nginxUse the EXTERNAL-IP of the ingress-nginx-controller service to access the application.
Verify ArgoCD installation
kubectl get pods -n argocd
Get ArgoCD admin password
kubectl -n argocd get secret argocd-initial-admin-secret -o jsonpath='{.data.password}' | base64 -d
Port-forward to Argo CD UI
kubectl port-forward svc/argocd-server -n argocd 8080:443 &
Open your browser and navigate to: https://localhost:8080
Username: admin
Password:
Once ArgoCD is deployed, you can access the web interface:
The ArgoCD UI provides:
- Application Status: Real-time sync status of all services
- Resource View: Detailed view of Kubernetes resources
- Sync Operations: Manual sync and rollback capabilities
- Health Monitoring: Application and resource health status
kubectl get pods -n retail-store
kubectl get ingress -n retail-storeTo delete all resources created by Terraform:
terraform destroy --auto-approve
Note
ECR Repositories you need to Delete it from AWS Console Manually.
Error: Failed to pull image "123456789012.dkr.ecr.us-west-2.amazonaws.com/retail-store-ui:abc1234"
Solutions:
- Ensure you're using the correct branch for your deployment strategy
- For Production branch: Check GitHub Actions completed successfully
- For Public Application branch: Verify you're using public ECR images
- Check AWS credentials and ECR permissions
Solutions:
- Ensure changes are in
src/directory - Verify you're on the
productionbranch (gitops) - Check GitHub Actions is enabled in repository settings
- Review BRANCHING_STRATEGY.md for detailed setup
- Basic deployment issues: Check this README
- Advanced GitOps issues: See BRANCHING_STRATEGY.md
- Infrastructure issues: Review Terraform logs
- Application issues: Check ArgoCD UI and kubectl logs
This project is licensed under the Apache License 2.0 - see the LICENSE file for details.
- Issues: GitHub Issues
- Discord: TrainWithShubhamCommunity
⭐ Star this repository if you found it helpful!
🔄 For advanced GitOps workflows, see BRANCHING_STRATEGY.md