Note: Data Lakes is currently in Limited Availability.
Terraform modules which create AWS resources for a Segment Data Lake.
- Accept the Data Lakes Terms of Service (replace the
{workspace_slug}with your workspace slug). - Authorized AWS account.
- Ability to run Terraform with your AWS Account. You must use Terraform 0.11 or higher.
- A subnet within a VPC for the EMR cluster to run in.
- S3 Bucket to send data from Segment to and to store logs.
You'll need to provide a subnet within a VPC for the EMR to cluster to run in. Here are some resources that can guide you through setting up a VPC for your EMR cluster:
- https://aws.amazon.com/blogs/big-data/launching-and-running-an-amazon-emr-cluster-inside-a-vpc/
- https://docs.aws.amazon.com/emr/latest/ManagementGuide/emr-clusters-in-a-vpc.html
- https://github.com/terraform-aws-modules/terraform-aws-vpc
The repository is split into multiple modules, and each can be used independently:
- iam - IAM roles that give Segment access to your AWS resources.
- emr - EMR cluster that Segment can submit jobs to load events into your Data Lake.
- glue - Glue tables that Segment can write metadata to.
provider "aws" {
region = "us-west-2" # Replace this with the AWS region your infrastructure is set up in.
}
locals {
segment_sources = {
# Find these in the Segment UI: (for each source you intend to connect)
# - Settings > SQL Settings > Schema Name (aka: Source Slug)
# - Settings > API Keys > Source ID
<Segment Source Slug> = "<Segment Source ID>"
}
}
# This is the target where Segment will write your data.
# You can skip this if you already have an S3 bucket and just reference that name manually later.
resource "aws_s3_bucket" "segment_datalake_s3" {
name = "my-first-segment-datalake"
}
# Creates the IAM Policy that allows Segment to access the necessary resources
# in your AWS account for loading your data.
module "iam" {
source = "[email protected]:segmentio/terraform-aws-data-lake//modules/iam?ref=v0.2.0"
name = "segment-data-lake-iam-role"
s3_bucket = "${aws_s3_bucket.segment_datalake_s3.name}"
external_ids = "${values(local.segment_sources)}"
}
# Creates an EMR Cluster that Segment uses for performing the final ETL on your
# data that lands in S3.
module "emr" {
source = "[email protected]:segmentio/terraform-aws-data-lake//modules/emr?ref=v0.2.0"
s3_bucket = "${aws_s3_bucket.segment_datalake_s3.name}"
subnet_id = "subnet-XXX" # Replace this with the subnet ID you want the EMR cluster to run in.
# LEAVE THIS AS-IS
iam_emr_autoscaling_role = "${module.iam.iam_emr_autoscaling_role}"
iam_emr_service_role = "${module.iam.iam_emr_service_role}"
iam_emr_instance_profile = "${module.iam.iam_emr_instance_profile}"
}With the Terraform CLI, you can run terraform plan to preview the changes by the modules, and terraform apply to generate the resources.
Note that creating the EMR cluster can take a while (typically 5 minutes).
Once applied, make a note of the following (you'll need to provide this information to your Segment contact):
- The AWS Region and AWS Account ID where your Data Lake was configured
- The Source ID and Slug for each Segment source that will be connected to the data lake
- The generated EMR Cluster ID
- The generated IAM Role ARN
The VPC/subnet configuration was invalid: No route to any external sources detected in Route Table for Subnet
Error: Error applying plan:
1 error(s) occurred:
* module.emr.aws_emr_cluster.segment_data_lake_emr_cluster: 1 error(s) occurred:
* aws_emr_cluster.segment_data_lake_emr_cluster: Error waiting for EMR Cluster state to be "WAITING" or "RUNNING": TERMINATED_WITH_ERRORS: VALIDATION_ERROR: The VPC/subnet configuration was invalid: No route to any external sources detected in Route Table for Subnet: subnet-{id} for VPC: vpc-{id}
Terraform does not automatically rollback in the face of errors.
Instead, your Terraform state file has been partially updated with
any resources that successfully completed. Please address the error
above and apply again to incrementally change your infrastructure.
exit status 1
The EMR cluster requires a route table attached to the subnet with an internet gateway. You can follow this guide for guidance on creating and attaching a route table and internet gateway.
Error: Error applying plan:
1 error(s) occurred:
* module.emr.aws_emr_cluster.segment_data_lake_emr_cluster: 1 error(s) occurred:
* aws_emr_cluster.segment_data_lake_emr_cluster: Error waiting for EMR Cluster state to be "WAITING" or "RUNNING": TERMINATED_WITH_ERRORS: VALIDATION_ERROR: The subnet configuration was invalid: The subnet subnet-{id} does not exist.
Terraform does not automatically rollback in the face of errors.
Instead, your Terraform state file has been partially updated with
any resources that successfully completed. Please address the error
above and apply again to incrementally change your infrastructure.
exit status 1
The EMR cluster requires a subnet with a VPC. You can follow this guide to create a subnet.
If all else fails, teardown and start over.
Terraform 0.11 or higher is supported.
To develop in this repository, you'll want the following tools set up:
- Terraform, >= 0.12 (note that 0.12 is used to develop this module, even though 0.11 is supported)
- terraform-docs
- tflint
- Ruby, >= 2.4.2
- Bundler
To run unit tests, you also need an AWS account to be able to provision resources.
Released under the MIT License.