Scope AR requires one of Amazon RDS MySQL 8.x or Amazon RDS Aurora 3.x (MySQL 8 Compatible). It is recommended that both a “Reader” and “Writer” instance be deployed with a minimum instance size of db.t3.medium.
Engine Type | Minimum Nodes | Instance Type | Authentication |
Aurora MySQL 3.x or MySQL 8.x | 2 (1 Reader + 1 Writer) | Minimum db.t3.medium | Username/Password or IAM Auth |
Security Groups
The Scope AR Content Management System (CMS) must connect to this database, requiring an inbound security group rule on the RDS instances to allow traffic from the Kubernetes worker nodes. All connections to RDS will originate from the private Kubernetes worker nodes. There are no requirements for public access.
Authentication
AWS RDS provides two authentication methods: username/password and IAM authentication. Scope AR supports both of these methods. Please refer to this article for detailed steps for setting up IAM authentication:
https://docs.aws.amazon.com/AmazonRDS/latest/UserGuide/UsingWithRDS.IAMDBAuth.Connecting.html
Note: The IAM permissions explained in this document must be added to the EKS Role ARNs for the CMS and Worklink Create services. See Configuring values.yaml for more information.