docs: remove iac code

agrc · Apr 3, 2024 · 73037e6 · 73037e6
1 parent fe877b0
commit 73037e6
Showing 1 changed file with 0 additions and 99 deletions.
diff --git a/src/readme.md b/src/readme.md
@@ -7,105 +7,6 @@ a bot that checks on the existence of data and required fields
 
 ![conductor_sm](https://user-images.githubusercontent.com/325813/90076216-62563280-dcbc-11ea-8023-afa62e75b04b.png)
 
-## prerequisites
-
-1. enable
-
-   - cloud pub sub subscription
-     - `gcloud services enable pubsub.googleapis.com`
-   - cloud run api\*
-     - `gcloud services enable run.googleapis.com`
-   - cloud container registry api\*
-     - `gcloud services enable containerregistry.googleapis.com`
-   - cloud scheduler api\*
-     - `gcloud services enable cloudscheduler.googleapis.com`
-   - cloud secrets api\*
-     - `gcloud services enable secretmanager.googleapis.com`
-   - cloud compute engine
-     - `gcloud services enable compute.googleapis.com`
-
-1. give google cloud default compute service account view access to stewardship spreadsheet
-1. Request DTS to attach the project to the DTS [dev, prod] Shared VPC
-
-_\* requires billing_
-
-## cloud configuration
-
-1. Update project id in `src/conductor/server.py:43`
-1. Create a `client-secret.json` file with sheet privileges and read access to the stewardship spreadsheet.
-
-### cloud registry
-
-1. build image
-   - `docker build . -t conductor`
-1. tag image in GCR
-   - `docker tag conductor gcr.io/ut-dts-agrc-porter-prod/conductor`
-1. push image to GCR
-   - `docker push gcr.io/ut-dts-agrc-porter-prod/conductor`
-
-```bash
-docker build . -t conductor &&
-docker tag conductor gcr.io/ut-dts-agrc-porter-prod/conductor &&
-docker push gcr.io/ut-dts-agrc-porter-prod/conductor
-```
-
-### cloud run
-
-1. create a service named `conductor`
-1. choose latest container image
-   - `gcr.io/ut-dts-agrc-porter-prod/conductor@sha256...`
-1. Service Account: `conductor-cloud-run` or an account with the `Secret Manager Secret Accessor` role
-1. Memory allocated: `512Mi`
-1. Request timeout: `300`
-1. Maximum instances: `10`
-1. VPC Connector: `custom`
-   - Route all traffic through the VPC connector
-     - dev: `projects/ut-dts-shared-vpc-dev/locations/us-central1/connectors/dts-shared-vpc-connector`
-     - prod: `projects/ut-dts-sharedvpc-prod/locations/us-central1/connectors/dts-sharedvpc-connector`
-1. Ingress: `Allow all traffic`
-1. Authentication: `require authentication`
-1. copy cloud run url for the subscription
-
-### subscriptions
-
-1. create topic with id: `conductor-topic`
-1. create subscription with id: `conductor-subscription` pointed at the newly created topic
-
-   - delivery type: `push`
-   - expiration: `never expires`
-   - push endpoint: `<cloud run service url>/gcp/schedule`
-   - acknowledgement deadline: `300 seconds`
-   - message retention: `30 minutes`
-   - retry policy: `min: 10; max: 60`
-
-### scheduler
-
-1. create job named `conductor`
-
-   - frequency: `0 9 * * 1`
-   - time zone: `America/Denver (MDT)`
-   - target: `Pub/Sub`
-   - topic: `conductor-topic`
-   - payload: `{ "now": true }`
-
-### secrets
-
-1. create secret as valid json with name: `conductor-connections`
-1. give default compute service account `secret manager secret accessor` role
-1. create a secret named `stewardship-sa` and upload the `client-secret.json` key created earlier
-
-### CI/CD
-
-1. create a service account with the following privileges and create a key:
-   - Cloud Build Service Account
-   - Cloud Build Editor
-   - Service Account User
-   - Cloud Run Admin
-   - Viewer
-1. create two secrets in [github](https://github.com/agrc/porter/settings/secrets)
-   - RUN_PROJECT - the project id to deploy conductor to
-   - RUN_SA_KEY - the service account key data
-
 ## Development
 
 1. create new python environment: `python -m venv venv`