Whitelist Cloud Providers and Instance Sizes

Create a whitelist JSON file.

The whitelist is a JSON object that contains a key for each cloud service provider. Each cloud service provider key takes an array of corresponding instance sizes as its value. To view a list of available instance sizes, see the providerSettings.instanceSizeName parameter in the Atlas Create a Cluster API.

1. Open your preferred text editor and create a JSON file using the following key-value pairs:

   Key	Type	Description
   TENANT	string array	Array of allowed instance sizes on shared Atlas tenants. Supported values are: M2 M5 Note The value you specify for the spec.regionName setting when you deploy a cluster determines which cloud provider the cluster is deployed to.
   AWS	string array	Array of allowed Amazon Web Services instance sizes.
   GCP	string array	Array of allowed Google Cloud Platform instance sizes.
   AZURE	string array	Array of allowed Microsoft Azure instance sizes.

   Example

   This example JSON file whitelists the following cloud service providers and instance sizes:

   • Shared Atlas tenants: M2 and M5

   • Google Cloud Platform: M10, M20, and M200

   • Amazon Web Services: M10, M20, M100, and M140

   • Microsoft Azure: M10, M20, and M200

   {
       "TENANT": [
         "M2",
         "M5"
       ],
       "GCP": [
           "M10",
           "M20",
           "M200"
       ],
       "AWS": [
           "M10",
           "M20",
           "M100",
           "M140"
       ],
       "AZURE": [
           "M10",
           "M20",
           "M200"
       ]
   }

2. Save this file as providers-whitelist.json.

Create a ConfigMap object from your JSON file.

You use a configMap resource to add the whitelist data into your deployment.

Invoke the following command to create a configMap resource named providers-whitelist from the providers-whitelist.json file:

kubectl create configmap providers-whitelist --from-file=providers-whitelist.json -n <NAMESPACE>

Edit your Deployment resource definition.

1. Open your Deployment resource definition YAML file in your preferred text editor.

   Tip

   If you followed the Installation tutorial, this resource is defined in deployment-and-service.yaml.

2. Copy the highlighted parameters and paste them into to the kind: Deployment resource definition.

   These parameters direct Kubernetes to mount the ConfigMap to this deployment as a volume at the specified path.

   spec:
     template:
       spec:
         containers:
           - name: atlas-service-broker
             image: quay.io/mongodb/mongodb-atlas-service-broker:latest
             ports:
               - containerPort: 4000
             env:
               - name: BROKER_HOST
                 value: 0.0.0.0
               - name: PROVIDERS_WHITELIST_FILE
                 value: <PATH_TO_WHITELIST_FILE>
             volumeMounts:
               - name: <VOLUME_NAME>
                 mountPath: <PATH_TO_MOUNT_VOLUME>
         volumes:
           - name: <VOLUME_NAME>
             configMap:
               name: <CONFIGMAP_NAME>

3. Configure the required settings.

   Key	Description	Example
   spec.template.spec .containers.env.value	Absolute path to the whitelist JSON file.	/etc/config/providers-whitelist.json
   spec.template.spec .containers.volumeMounts.name	Name of the volume that contains the whitelist data. This value must match spec.template.spec.volumes.name.	config-volume
   spec.template.spec .containers.mountPath.value	Absolute path to mount the volume to in this deployment.	/etc/config
   spec.template.spec .volumes.name	Name of the volume that contains the whitelist data. This value must match spec.template.spec .containers.volumeMounts.name.	config-volume
   spec.template.spec .volumes.configMap.name	Name of the configMap that corresponds to the whitelist.	providers-whitelist

4. Save the Deployment resource definition.

Redeploy the Atlas Open Service Broker.

Invoke the following kubectl command:

kubectl apply -f <DEPLOYMENT_RESOURCE_DEFINITION>.yaml -n <NAMESPACE>