This repository provides you cdk scripts and sample code to create an Amazon RDS zero-ETL integration with Amazon Redshift Serverless.
An Amazon RDS zero-ETL integration with Amazon Redshift enables near real-time analytics and machine learning (ML) using Amazon Redshift on petabytes of transactional data from RDS.
The cdk.json file tells the CDK Toolkit how to execute your app.
This project is set up like a standard Python project. The initialization
process also creates a virtualenv within this project, stored under the .venv
directory. To create the virtualenv it assumes that there is a python3
(or python for Windows) executable in your path with access to the venv
package. If for any reason the automatic creation of the virtualenv fails,
you can create the virtualenv manually.
To manually create a virtualenv on MacOS and Linux:
$ git clone --depth=1 https://github.com/aws-samples/zero-etl-architecture-patterns.git
$ cd zero-etl-architecture-patterns
$ git sparse-checkout init --cone
$ git sparse-checkout set aurora-postgresql-to-redshift
$ cd aurora-postgresql-to-redshift
$ python3 -m venv .venv
After the init process completes and the virtualenv is created, you can use the following step to activate your virtualenv.
(.venv) $ source .venv/bin/activate
If you are a Windows platform, you would activate the virtualenv like this:
(.venv) % .venv\Scripts\activate.bat
Once the virtualenv is activated, you can install the required dependencies.
(.venv) $ pip install -r requirements.txt
To add additional dependencies, for example other CDK libraries, just add
them to your setup.py file and rerun the pip install -r requirements.txt
command.
Set up cdk.context.json
Before synthesizing the CloudFormation, you need to prepare the cdk context configuration file, cdk.context.json:
For example,
{
"rds_cluster_name": "zero-etl-source-rds",
"redshift": {
"db_name": "zero-etl-target-rs",
"namespace": "zero-etl-target-rs-ns",
"workgroup": "zero-etl-target-rs-wg"
},
"zero_etl_integration": {
"data_filter": "include: demodb.*.retail_trans",
"integration_name": "zero-etl-rss"
}
}
Bootstrap AWS environment for AWS CDK app
Also, before any AWS CDK app can be deployed, you have to bootstrap your AWS environment to create certain AWS resources that the AWS CDK CLI (Command Line Interface) uses to deploy your AWS CDK app.
Run the cdk bootstrap command to bootstrap the AWS environment.
(.venv) $ cdk bootstrap
Now you can deploy the CloudFormation template for this code.
(.venv) $ export CDK_DEFAULT_ACCOUNT=$(aws sts get-caller-identity --query Account --output text)
(.venv) $ export CDK_DEFAULT_REGION=$(aws configure get region)
(.venv) $ cdk list
AuroraPostgresVpcStack
AuroraPostgresStack
AuroraPostgresClientHostStack
RedshiftServerlessStack
ZeroETLfromRDStoRSS
(.venv) $ cdk deploy AuroraPostgresVpcStack AuroraPostgresStack AuroraPostgresClientHostStack
In order to set up the Aurora Postgresql, you need to connect the Aurora Postgresql cluster on an EC2 Bastion host.
ℹ️ The Aurora Postgresql username and password are stored in the AWS Secrets Manager as a name such as DatabaseSecret-xxxxxxxxxxxx.
To retrieve a secret (AWS console)
- (Step 1) Open the Secrets Manager console at https://console.aws.amazon.com/secretsmanager/.
- (Step 2) In the list of secrets, choose the secret you want to retrieve.
- (Step 3) In the Secret value section, choose Retrieve secret value.
Secrets Manager displays the current version (AWSCURRENT) of the secret. To see other versions of the secret, such asAWSPREVIOUSor custom labeled versions, use the AWS CLI.
To confirm that binary logging is enabled
-
Connect to the Aurora cluster writer node.
$ BASTION_HOST_ID=$(aws cloudformation describe-stacks --stack-name AuroraPostgresClientHostStack --region ${CDK_DEFAULT_REGION} | \ jq -r '.Stacks[0].Outputs | .[] | select(.OutputKey | endswith("EC2InstanceId")) | .OutputValue') $ aws ec2-instance-connect ssh --instance-id ${BASTION_HOST_ID} --os-user ec2-user [ec2-user@ip-172-31-7-186 ~]$ psql -h db-cluster-name.cluster-xxxxxxxxxxxx.region-name.rds.amazonaws.com -U postgres -W Password: psql (16.1) SSL connection (protocol: TLSv1.2, cipher: AES128-SHA256, compression: off) Type "help" for help. postgres=>ℹ️
AuroraPostgresClientHostStackis a CDK Stack to create the bastion host.ℹ️ You can connect to an EC2 instance using the EC2 Instance Connect CLI:
aws ec2-instance-connect ssh. For more information, see Connect using the EC2 Instance Connect CLI. -
Run the below command to create the sample database named
demodb.postgres=> \l List of databases Name | Owner | Encoding | Locale Provider | Collate | Ctype | ICU Locale | ICU Rules | Access privileges -----------+----------+----------+-----------------+-------------+-------------+------------+-----------+----------------------- postgres | postgres | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8 | | | rdsadmin | rdsadmin | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8 | | | rdsadmin=CTc/rdsadmin template0 | rdsadmin | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8 | | | =c/rdsadmin + | | | | | | | | rdsadmin=CTc/rdsadmin template1 | postgres | UTF8 | libc | en_US.UTF-8 | en_US.UTF-8 | | | =c/postgres + | | | | | | | | postgres=CTc/postgres (4 rows) postgres=> CREATE DATABASE demodb; CREATE DATABASE postgres=> \c demodb Password: SSL connection (protocol: TLSv1.2, cipher: AES128-SHA256, compression: off) You are now connected to database "demodb" as user "postgres". demodb=> \dt Did not find any relations. demodb=> -
Also run this to create the sample table named
retail_transdemodb=> CREATE TABLE IF NOT EXISTS retail_trans ( trans_id BIGSERIAL PRIMARY KEY, customer_id VARCHAR(12) NOT NULL, event VARCHAR(10) DEFAULT NULL, sku VARCHAR(10) NOT NULL, amount INT DEFAULT 0, device VARCHAR(10) DEFAULT NULL, trans_datetime TIMESTAMP DEFAULT CURRENT_TIMESTAMP ); CREATE TABLE demodb=> CREATE INDEX trans_datetime_key ON retail_trans(trans_datetime); CREATE INDEX demodb=> \dt List of relations Schema | Name | Type | Owner --------+--------------+-------+---------- public | retail_trans | table | postgres (1 row) demodb=> \d+ retail_trans Table "public.retail_trans" Column | Type | Collation | Nullable | Default | Storage | Compression | Stats target | Description ----------------+-----------------------------+-----------+----------+------------------------------------------------+----------+-------------+--------------+------------- trans_id | bigint | | not null | nextval('retail_trans_trans_id_seq'::regclass) | plain | | | customer_id | character varying(12) | | not null | | extended | | | event | character varying(10) | | | NULL::character varying | extended | | | sku | character varying(10) | | not null | | extended | | | amount | integer | | | 0 | plain | | | device | character varying(10) | | | NULL::character varying | extended | | | trans_datetime | timestamp without time zone | | | CURRENT_TIMESTAMP | plain | | | Indexes: "retail_trans_pkey" PRIMARY KEY, btree (trans_id) "trans_datetime_key" btree (trans_datetime) Access method: heap demodb=>
After setting up the Aurora Postgresql, you should come back to the terminal where you are deploying stacks.
(.venv) $ cdk deploy RedshiftServerlessStack
Before you create a zero-ETL integration, you must create a source database and a target Amazon Redshift data warehouse. You also must allow replication into the data warehouse by adding the database as an authorized integration source.
You can configure authorized integration sources from the Resource Policy tab on the Amazon Redshift console or using the Amazon Redshift PutResourcePolicy API operation.
To control the source that can create an inbound integration into the namespace, create a resource policy and attach it to the namespace. With the resource policy, you can specify the source that has access to the integration.
The following is a sample resource policy (e.g., rs-rp.json).
{
"Version": "2012-10-17",
"Statement": [
{
"Effect": "Allow",
"Principal": {
"Service": "redshift.amazonaws.com"
},
"Action": "redshift:AuthorizeInboundIntegration",
"Resource": "arn:aws:redshift-serverless:{region}:{account-id}:namespace/{namespace-uuid}",
"Condition": {
"StringEquals": {
"aws:SourceArn": "arn:aws:rds:{region}:{account-id}:cluster:{rds-cluster-name}"
}
}
}
]
}
ℹ️ You can find out the Amazon Aurora Cluster ARN by running the following.
aws cloudformation describe-stacks --stack-name AuroraPostgresStack --region {region} | \
jq -r '.Stacks[0].Outputs | .[] | select(.OutputKey | endswith("DBClusterArn")) | .OutputValue'
ℹ️ You can find out the Amazon Redshift namespace ARN by running the following.
aws cloudformation describe-stacks --stack-name RedshiftServerlessStack --region {region} | \
jq -r '.Stacks[0].Outputs | .[] | select(.OutputKey | endswith("NamespaceNameArn")) | .OutputValue'
To put a resource policy on your Amazon Redshift namespace ARN for a Aurora Postgresql source, run a AWS CLI command similar to the following.
(.venv) $ export RSS_RESOURCE_ARN=$(aws cloudformation describe-stacks --stack-name RedshiftServerlessStack --region ${CDK_DEFAULT_REGION} | \
jq -r '.Stacks[0].Outputs | .[] | select(.OutputKey | endswith("NamespaceNameArn")) | .OutputValue')
(.venv) $ aws redshift put-resource-policy \
--region ${CDK_DEFAULT_REGION} \
--policy file://rs-rp.json \
--resource-arn ${RSS_RESOURCE_ARN}
In this example we only want to replicate data from the Postgresql table demodb.retail_trans to Redshift.
So we add the data filtering option to cdk.context.json like this:
{
...
"zero_etl_integration": {
"data_filter": "include: demodb.*.retail_trans",
"integration_name": "zero-etl-rss"
}
}
ℹ️ Data filtering for Aurora zero-ETL integrations with Amazon Redshift
Now let's create the Zero-ETL integration. It takes a few minutes to change the status of the Zero-ETL integration from Creating to Active. The time varies depending on size of the dataset already available in the source.
(.venv) $ cdk deploy ZeroETLfromRDStoRSS
$ BASTION_HOST_ID=$(aws cloudformation describe-stacks --stack-name AuroraPostgresClientHostStack --region ${CDK_DEFAULT_REGION} | jq -r '.Stacks[0].Outputs | .[] | select(.OutputKey | endswith("EC2InstanceId")) | .OutputValue')
$ aws ec2-instance-connect ssh --instance-id ${BASTION_HOST_ID} --os-user ec2-user
[ec2-user@ip-172-31-7-186 ~]$ python3 gen_fake_postgres_data.py \
--database {your-database-name} \
--table {your-table-name} \
--user {user-name} \
--password {password} \
--host {db-cluster-name}.cluster-xxxxxxxxxxxx.{region-name}.rds.amazonaws.com \
--max-count 10
After filling data into the Postgresql table, connect to the Aurora cluster writer node and run some queries.
For example, retrieve some records.
$ BASTION_HOST_ID=$(aws cloudformation describe-stacks --stack-name AuroraPostgresClientHostStack --region ${CDK_DEFAULT_REGION} | \
jq -r '.Stacks[0].Outputs | .[] | select(.OutputKey | endswith("EC2InstanceId")) | .OutputValue')
$ aws ec2-instance-connect ssh --instance-id ${BASTION_HOST_ID} --os-user ec2-user
[ec2-user@ip-172-31-7-186 ~]$ psql -h db-cluster-name.cluster-xxxxxxxxxxxx.region-name.rds.amazonaws.com -U postgres -W
Password:
psql (16.1)
SSL connection (protocol: TLSv1.2, cipher: AES128-SHA256, compression: off)
Type "help" for help.
postgres=>
postgres=> \c demodb
Password:
SSL connection (protocol: TLSv1.2, cipher: AES128-SHA256, compression: off)
You are now connected to database "demodb" as user "postgres".
demodb=>
demodb=> SELECT count(*) FROM retail_trans;
count
-------
10
(1 row)
demodb=> SELECT * FROM retail_trans LIMIT 10;
trans_id | customer_id | event | sku | amount | device | trans_datetime
----------+--------------+----------+------------+--------+--------+---------------------
1 | 460104780596 | cart | IQ6879MMTB | 8 | mobile | 2025-01-22 12:08:06
2 | 758933025159 | like | RL1573WWLT | 1 | tablet | 2025-01-22 12:17:21
3 | 754384589074 | like | PX4135DYNT | 1 | mobile | 2025-01-22 12:08:52
4 | 602811489876 | purchase | PI7913TREO | 66 | pc | 2025-01-22 12:31:21
5 | 633562273212 | visit | WU8498ZKAS | 1 | tablet | 2025-01-22 12:18:00
6 | 222873787990 | list | NC2470LAIB | 1 | pc | 2025-01-22 12:05:58
7 | 240843982894 | view | WB4509MDAC | 1 | tablet | 2025-01-22 12:19:12
8 | 292181770698 | list | NL7801JSYP | 1 | mobile | 2025-01-22 12:26:40
9 | 591774808340 | cart | LZ4781KFOA | 100 | tablet | 2025-01-22 12:18:30
10 | 263118465851 | list | RX8118ZLSJ | 1 | mobile | 2025-01-22 12:29:10
(10 rows)
demodb=>
To create your database, complete the following steps:
-
On the Redshift Serverless dashboard, navigate to the
zero-etl-target-rs-nsnamespace. -
Choose Query data to open Query Editor v2.
-
Connect to the Redshift Serverless data warehouse by choosing Create connection.
-
Obtain the
integration_idfrom thesvv_integrationsystem table:---- copy this result, use in the next sql SELECT integration_id FROM svv_integration; -
Use the
integration_idfrom the previous step to create a new database from the integration.For Aurora PostgreSQL sources, you must also include a reference to the named database within the cluster that you specified when you created the integration.
For example:
CREATE DATABASE aurora_zeroetl FROM INTEGRATION '{result from above}' DATABASE demodb;The integration is now complete, and an entire snapshot of the source will reflect as is in the destination. Ongoing changes will be synced in near-real time.
-
On the Redshift Serverless dashboard, open Query Editor v2 using the database you created as part of the integration setup. Use the following query to get information about checkpoint, snaphost, and subsequent CDC data replication:
SELECT * FROM SYS_INTEGRATION_ACTIVITY WHERE TRUNC(INTEGRATION_START_TIME)= CURRENT_DATE ORDER BY INTEGRATION_START_TIME;
-
To delete a zero-ETL integration, run the below command.
(.venv) $ cdk destroy --force -e ZeroETLfromRDStoRSS
When you delete a zero-ETL integration, your transactional data isn’t deleted from Aurora or Amazon Redshift, but Aurora doesn’t send new data to Amazon Redshift.
-
If you want to delete all CloudFormation stacks, run the below command.
(.venv) $ cdk destroy --force --all
npm install -g aws-cdkinstall the AWS CDK Toolkit (thecdkcommand).npm install -g aws-cdk@latestinstall the latest AWS CDK Toolkit (thecdkcommand).
cdk init app --language pythoncreate a new, empty CDK Python project.cdk bootstrap --profile <AWS Profile>Deploys the CDK Toolkit staging stack; see Bootstrappingcdk lslist all stacks in the appcdk synthemits the synthesized CloudFormation templatecdk deploydeploy this stack to your default AWS account/regioncdk diffcompare deployed stack with current statecdk docsopen CDK documentation
Enjoy!
- (User Guide) Aurora zero-ETL integrations with Amazon Redshift
- (Management Guide) Amazon Redshift - Zero-ETL integrations
- Supported Regions and Aurora DB engines for zero-ETL integrations with Amazon Redshift
- (AWS Blog) Getting started guide for near-real time operational analytics using Amazon Aurora zero-ETL integration with Amazon Redshift (2023-06-28)
- (AWS Blog) Unlock insights on Amazon RDS for MySQL data with zero-ETL integration to Amazon Redshift (2024-03-21)
- (Workshop) Zero ETL Integration
- (Workshop) Achieve near real-time data analytics with Zero-ETL on AWS
- AWS CDK Toolkit (cdk command)
- Install PostgreSQL16 on Amazon Linux
- PostgreSQL Tutorial