OpenMCF logoOpenMCF

Loading...

AliCloud MongodbInstance

Deploy and manage Alibaba Cloud ApsaraDB for MongoDB replica-set instances with configurable replication, multi-zone HA, encryption, and backup policies.

Overview

AliCloudMongodbInstance provisions a managed MongoDB replica-set instance on Alibaba Cloud. It supports configurable replication factors (1, 3, 5, or 7 nodes), read-only replicas for read scaling, multi-zone high availability across three AZs, and both TDE and cloud disk encryption at rest.

This component wraps a single alicloud_mongodb_instance Terraform resource (replica-set mode). Sharding deployments require a separate component.

Prerequisites

  • An Alibaba Cloud VPC with at least one VSwitch in the target region
  • For multi-zone HA: VSwitch(es) available in each target AZ
  • For TDE encryption: A KMS key in the same region
  • Alibaba Cloud credentials with permissions for ApsaraDB for MongoDB

Quick Start

apiVersion: ali-cloud.openmcf.org/v1
kind: AliCloudMongodbInstance
metadata:
  name: my-mongodb
spec:
  region: cn-hangzhou
  engineVersion: "7.0"
  dbInstanceClass: dds.mongo.mid
  dbInstanceStorage: 20
  accountPassword: "${MONGODB_PASSWORD}"
  vswitchId:
    value: vsw-abc123

Configuration Reference

Required Fields

FieldTypeDescription
regionstringAlibaba Cloud region (e.g., "cn-hangzhou")
vswitchIdStringValueOrRefVSwitch ID for network placement
engineVersionstringMongoDB version: 4.0, 4.2, 4.4, 5.0, 6.0, 7.0
dbInstanceClassstringInstance specification (e.g., "dds.mongo.mid")
dbInstanceStorageintStorage in GB
accountPasswordstringRoot account password (8-32 chars)

Optional Fields

FieldTypeDefaultDescription
dbInstanceNamestringmetadata.nameDisplay name
zoneIdstringautoPrimary availability zone
secondaryZoneIdstring-Standby node AZ
hiddenZoneIdstring-Hidden node AZ (3-zone HA)
replicationFactorint3Replica set size: 1, 3, 5, 7
readonlyReplicasint-Read replicas: 0-5
storageEnginestringWiredTigerWiredTiger or RocksDB
storageTypestring-cloud_essd1/2/3, cloud_auto, local_ssd
provisionedIopsint-IOPS for cloud storage
instanceChargeTypestringPostPaidPostPaid or PrePaid
securityIpListlist[127.0.0.1]Allowed IP addresses
securityGroupIdstring-ECS security group ID
resourceGroupIdstring-Resource group for organization
tagsmap-Key-value tags
sslActionstring-Open, Close, or Update
tdeStatusstring-"enabled" for TDE encryption
encryptionKeystring-KMS key ID for TDE
encryptedboolfalseCloud disk encryption
cloudDiskEncryptionKeystring-KMS key for disk encryption
maintainStartTimestring-Maintenance window start (UTC)
maintainEndTimestring-Maintenance window end (UTC)
backupTimestring-Backup window (e.g., "02:00Z-03:00Z")
backupPeriodlist-Backup days (e.g., ["Monday"])
parametersmap-MongoDB engine parameters
dbInstanceReleaseProtectionboolfalsePrevent accidental deletion
periodint-Subscription months (PrePaid)
autoRenewboolfalseAuto-renewal (PrePaid)
autoRenewDurationint-Auto-renewal months (1-12)

Stack Outputs

OutputDescription
instance_idMongoDB instance ID (e.g., "dds-xxxxx")
replica_set_nameReplica set name for connection strings

Related Components

  • AliCloudVpc -- VPC for network isolation
  • AliCloudVswitch -- VSwitch for subnet placement
  • AliCloudSecurityGroup -- Network access control
  • AliCloudKmsKey -- Encryption key for TDE
  • AliCloudPrivateDnsZone -- Private DNS for internal resolution

Next article

AliCloud NAS File System

AliCloud NAS File System Deploys an Alibaba Cloud Network Attached Storage (NAS) file system with a VPC mount target and optional custom access control. NAS provides fully managed, elastic, shared file storage supporting NFS and SMB protocols, accessible from ECS instances, Kubernetes pods, and serverless functions within a VPC. What Gets Created When you deploy an AliCloudNasFileSystem resource, OpenMCF provisions: NAS File System -- an alicloudnasfilesystem resource (Pulumi: nas.FileSystem)...
Read next article
Presets
3 ready-to-deploy configurationsView presets →