Install on AWS

The tutorial deploys Materialize to AWS Elastic Kubernetes Service (EKS) with a PostgreSQL RDS database as the metadata database and AWS S3 for blob storage. The tutorial uses Terraform both to set up the AWS Kubernetes environment and to deploy Materialize Operator and Materialize instances to that EKS cluster.

Self-managed Materialize requires:

• A Kubernetes (v1.29+) cluster.
• PostgreSQL as a metadata database.
• Blob storage.

When operating in AWS, we recommend:

• Using the r8g, r7g, and r6g families when running without local disk.

• Using the r7gd and r6gd families of instances (and r8gd once available) when running with local disk (Recommended for production. See Operational guidelines for more information.)

Prerequisites

Terraform

If you don’t have Terraform installed, install Terraform.

AWS CLI

If you do not have the AWS CLI installed,

• Install the AWS CLI. For details, see the AWS documentation.

• Configure with your AWS credentials. For details, see the AWS documentation.

kubectl

If you do not have kubectl, install. See the Amazon EKS: install kubectl documentation for details.

Helm 3.2.0+

If you do not have Helm 3.2.0+, install. See the Helm documentation.

Set up AWS Kubernetes environment and install Materialize

Materialize provides sample Terraform modules for evaluation purposes only. The modules deploy a sample infrastructure on AWS (region us-east-1) with the following components:

• A Kuberneted (EKS) cluster
• A dedicated VPC
• An S3 for blob storage
• An RDS PostgreSQL cluster and database for metadata storage
• Materialize Operator
• Materialize instances (during subsequent runs after the Operator is running)

1. Clone the Materialize’s sample Terraform repo and checkout the v0.2.1 tag.

   git clone --depth 1 -b v0.2.1 git@github.com:MaterializeInc/terraform-aws-materialize.git
   

   git clone --depth 1 -b v0.2.1 https://github.com/MaterializeInc/terraform-aws-materialize.git
   

2. Go to the examples/simple folder in the Materialize Terraform repo directory.

   cd terraform-aws-materialize/examples/simple
   

   💡 Tip:

   The tutorial uses the module found in the examples/simple/ directory, which requires minimal user input. For more configuration options, you can run the modules at the root of the repository instead.

   For details on the examples/simple/ infrastructure configuration (such as the node instance type, etc.), see the examples/simple/main.tf.

3. Create a terraform.tfvars file (you can copy from the terraform.tfvars.example file) and specify:

   • A namespace (e.g., my-demo) that will be used to form part of the prefix for your AWS resources. Namespace has a maximum of 18 characters and must be lowercase alphanumeric and hyphens only.

   • An environment name (e.g., dev, test) that will be used to form part of the prefix for your AWS resources.

   • A secure password for the RDS PostgreSQL database (to be created).

   # The namespace and environment variables are used to construct the names of the resources
   # e.g. ${namespace}-${environment}-storage, ${namespace}-${environment}-db etc.
   
   namespace = "enter-namespace"   // 18 characters, lowercase alphanumeric and hyphens only (e.g. my-demo)
   environment = "enter-environment" // For example, dev, test
   database_password  = "enter-secure-password"
   

4. Initialize the terraform directory.

   terraform init
   

5. Create a terraform plan and review the changes.

   terraform plan -out my-plan.tfplan
   

6. If you are satisfied with the changes, apply the terraform plan.

   terraform apply my-plan.tfplan
   

   Upon successful completion, various fields and their values are output:

   Apply complete! Resources: 78 added, 0 changed, 0 destroyed.
   
   Outputs:
   
   database_endpoint = "my-demo-dev-db.abcdefg8dsto.us-east-1.rds.amazonaws.com:5432"
   eks_cluster_endpoint = "https://0123456789A00BCD000E11BE12345A01.gr7.us-east-1.eks.amazonaws.com"
   eks_cluster_name = "my-demo-dev-eks"
   materialize_s3_role_arn = "arn:aws:iam::000111222333:role/my-demo-dev-mz-role"
   metadata_backend_url = <sensitive>
   oidc_provider_arn = "arn:aws:iam::000111222333:oidc-provider/oidc.eks.us-east-1.amazonaws.com/id/7D14BCA3A7AA896A836782D96A24F958"
   persist_backend_url = "s3://my-demo-dev-storage-f2def2a9/dev:serviceaccount:materialize-environment:12345678-1234-1234-1234-12345678912"
   s3_bucket_name = "my-demo-dev-storage-f2def2a9"
   vpc_id = "vpc-0abc000bed1d111bd"
   

7. Note your specific values for the following fields:

   • eks_cluster_name (Used to configure kubectl)

8. Configure kubectl to connect to your EKS cluster, replacing:

   • <your-eks-cluster-name> with the name of your EKS cluster (specified in Terraform output)

   • <your-region> with the region of your EKS cluster. By default, the sample Terraform module uses us-east-1.

   aws eks update-kubeconfig --name <your-eks-cluster-name> --region <your-region>
   

   To verify that you have configured correctly, run the following command:

   kubectl get nodes
   

   For help with kubectl commands, see kubectl Quick reference.

9. By default, the example Terraform installs the Materialize Operator. Verify the installation and check the status:

   kubectl get all -n materialize
   

   Wait for the components to be in the Running state:

   NAME                                                           READY   STATUS    RESTARTS   AGE
   pod/my-demo-dev-materialize-operator-84ff4b4648-brjhl   1/1     Running   0          12s
   
   NAME                                                      READY   UP-TO-DATE   AVAILABLE   AGE
   deployment.apps/my-demo-dev-materialize-operator   1/1     1            1           12s
   
   NAME                                                               DESIRED   CURRENT   READY   AGE
   replicaset.apps/my-demo-dev-materialize-operator-84ff4b4648   1         1         1       12s
   

   If you run into an error during deployment, refer to the Troubleshooting guide.

10. Once the Materialize operator is deployed and running, you can deploy the Materialize instances. To deploy Materialize instances, create a mz_instances.tfvars file with the Materialize instance configuration.

    For example, the following specifies the configuration for a demo instance.

    cat <<EOF > mz_instances.tfvars
    
    materialize_instances = [
        {
          name           = "demo"
          namespace      = "materialize-environment"
          database_name  = "demo_db"
          cpu_request    = "1"
          memory_request = "2Gi"
          memory_limit   = "2Gi"
        }
    ]
    EOF
    

11. Create a terraform plan with both .tfvars files and review the changes.

    terraform plan -var-file=terraform.tfvars -var-file=mz_instances.tfvars -out my-plan.tfplan
    

    The plan should show the changes to be made, with a summary similar to the following:

    Plan: 4 to add, 0 to change, 0 to destroy.
    
    Saved the plan to: my-plan.tfplan
    
    To perform exactly these actions, run the following command to apply:
    terraform apply "my-plan.tfplan"
    

12. If you are satisfied with the changes, apply the terraform plan.

    terraform apply my-plan.tfplan
    

    Upon successful completion, you should see output with a summary similar to the following:

    Apply complete! Resources: 4 added, 0 changed, 0 destroyed.
    
    Outputs:
    
    database_endpoint = "my-demo-dev-db.abcdefg8dsto.us-east-1.rds.amazonaws.com:5432"
    eks_cluster_endpoint = "https://0123456789A00BCD000E11BE12345A01.gr7.us-east-1.eks.amazonaws.com"
    eks_cluster_name = "my-demo-dev-eks"
    materialize_s3_role_arn = "arn:aws:iam::000111222333:role/my-demo-dev-mz-role"
    metadata_backend_url = <sensitive>
    oidc_provider_arn = "arn:aws:iam::000111222333:oidc-provider/oidc.eks.us-east-1.amazonaws.com/id/7D14BCA3A7AA896A836782D96A24F958"
    persist_backend_url = "s3://my-demo-dev-storage-f2def2a9/dev:serviceaccount:materialize-environment:12345678-1234-1234-1234-12345678912"
    s3_bucket_name = "my-demo-dev-storage-f2def2a9"
    vpc_id = "vpc-0abc000bed1d111bd"
    

13. Verify the installation and check the status:

    kubectl get all -n materialize-environment
    

    Wait for the components to be in the Running state.

    NAME                                             READY   STATUS      RESTARTS      AGE
    pod/create-db-demo-db-6pw88                      0/1     Completed   0             5m31s
    pod/mzoxtq6663xq-balancerd-d5c64779c-jzqv2       1/1     Running     0             5m16s
    pod/mzoxtq6663xq-cluster-s1-replica-s1-gen-1-0   1/1     Running     0             5m21s
    pod/mzoxtq6663xq-cluster-s2-replica-s2-gen-1-0   1/1     Running     0             5m21s
    pod/mzoxtq6663xq-cluster-s3-replica-s3-gen-1-0   1/1     Running     0             5m21s
    pod/mzoxtq6663xq-cluster-u1-replica-u1-gen-1-0   1/1     Running     0             5m21s
    pod/mzoxtq6663xq-console-6f9f77654-d7wtb         1/1     Running     0             5m9s
    pod/mzoxtq6663xq-console-6f9f77654-l8lnh         1/1     Running     0             5m9s
    pod/mzoxtq6663xq-environmentd-1-0                1/1     Running     0             5m30s
    
    NAME                                               TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)                                        AGE
    service/mzoxtq6663xq-balancerd                     ClusterIP   None            <none>        6876/TCP,6875/TCP                              5m16s
    service/mzoxtq6663xq-cluster-s1-replica-s1-gen-1   ClusterIP   None            <none>        2100/TCP,2103/TCP,2101/TCP,2102/TCP,6878/TCP   5m21s
    service/mzoxtq6663xq-cluster-s2-replica-s2-gen-1   ClusterIP   None            <none>        2100/TCP,2103/TCP,2101/TCP,2102/TCP,6878/TCP   5m21s
    service/mzoxtq6663xq-cluster-s3-replica-s3-gen-1   ClusterIP   None            <none>        2100/TCP,2103/TCP,2101/TCP,2102/TCP,6878/TCP   5m21s
    service/mzoxtq6663xq-cluster-u1-replica-u1-gen-1   ClusterIP   None            <none>        2100/TCP,2103/TCP,2101/TCP,2102/TCP,6878/TCP   5m21s
    service/mzoxtq6663xq-console                       ClusterIP   None            <none>        8080/TCP                                       5m9s
    service/mzoxtq6663xq-environmentd                  ClusterIP   None            <none>        6875/TCP,6876/TCP,6877/TCP,6878/TCP            5m16s
    service/mzoxtq6663xq-environmentd-1                ClusterIP   None            <none>        6875/TCP,6876/TCP,6877/TCP,6878/TCP            5m30s
    service/mzoxtq6663xq-persist-pubsub-1              ClusterIP   None            <none>        6879/TCP                                       5m30s
    
    NAME                                     READY   UP-TO-DATE   AVAILABLE   AGE
    deployment.apps/mzoxtq6663xq-balancerd   1/1     1            1           5m16s
    deployment.apps/mzoxtq6663xq-console     2/2     2            2           5m9s
    
    NAME                                               DESIRED   CURRENT   READY      AGE
    replicaset.apps/mzoxtq6663xq-balancerd-d5c64779c   1         1         1          5m16s
    replicaset.apps/mzoxtq6663xq-console-6f9f77654     2         2         2          5m9s qq
    
    NAME                                                        READY   AGE
    statefulset.apps/mzoxtq6663xq-cluster-s1-replica-s1-gen-1   1/1     5m21s
    statefulset.apps/mzoxtq6663xq-cluster-s2-replica-s2-gen-1   1/1     5m21s
    statefulset.apps/mzoxtq6663xq-cluster-s3-replica-s3-gen-1   1/1     5m21s
    statefulset.apps/mzoxtq6663xq-cluster-u1-replica-u1-gen-1   1/1     5m21s
    statefulset.apps/mzoxtq6663xq-environmentd-1                1/1     5m30s
    
    NAME                           STATUS     COMPLETIONS   DURATION   AGE
    job.batch/create-db-demo-db   Complete   1/1           3s         5m32s
    

14. Open the Materialize Console in your browser:

    1. From the previous kubectl output, find the Materialize console service.

       NAME                           TYPE        CLUSTER-IP   EXTERNAL-IP   PORT(S)    AGE
       service/mzoxtq6663xq-console   ClusterIP   None         <none>        8080/TCP   5m9s
       

    2. Forward the Materialize Console service to your local machine (substitute your service name for mzoxtq6663xq-console):

       while true;
       do kubectl port-forward service/mzoxtq6663xq-console 8080:8080 -n materialize-environment 2>&1 |
       grep -q "portforward.go" && echo "Restarting port forwarding due to an error." || break;
       done;
       

       NOTE: Due to a known Kubernetes issue, interrupted long-running requests through a standard port-forward cause the port forward to hang. The command above automatically restarts the port forwarding if an error occurs, ensuring a more stable connection. It detects failures by monitoring for “portforward.go” error messages.

    3. Open a browser and navigate to http://localhost:8080. From the Console, you can get started with the Quickstart.

Troubleshooting

If you encounter issues:

1. Check operator logs:

kubectl logs -l app.kubernetes.io/name=materialize-operator -n materialize

2. Check environment logs:

kubectl logs -l app.kubernetes.io/name=environmentd -n materialize-environment

3. Verify the storage configuration:

kubectl get sc
kubectl get pv
kubectl get pvc -A

See also Troubleshooting.

Cleanup

To uninstall the Materialize operator:

helm uninstall materialize-operator -n materialize

This will remove the operator but preserve any PVs and data. To completely clean up:

kubectl delete namespace materialize
kubectl delete namespace materialize-environment

In your Terraform directory, run:

terraform destroy

When prompted, type yes to confirm the deletion.

See also

• Materialize Operator Configuration
• Troubleshooting
• Operational guidelines
• Installation