~/.hadean/deployment/init/readme.mdand can be viewed either as raw text, or with a markdown renderer.
az login --identity, and use managed service identity to create and destroy dynamic resources.
HadeanPlatformClusterRolewhich clusters will use for their permissions. The policy in this role is tightly constrained to the specific permissions that the platform uses.
HadeanPlatformClusterUserPolicypolicy to the groups or users that are going to use the platform. This will give those users the ability to use the instance profile to setup the credentials for the scheduler, so that it can dynamically scale.
Resourcepart of the policy, by setting it to the ARN of the hosted zone you created.
--domain-nameargument to the
hadean cluster createcommand, specifying the name used by the hosted zone. For example, if you've registered
hadean.com., then your users must use
--domain-name hadean.comwhen creating clusters.