Introduction of the project<\/h2>\n\n\n\n
This tutorial walks you through setting up a cloud-agnostic, open-source data platform on UpCloud using opentofu<\/a>. All the necessary code is available in Github<\/a><\/p>\n\n\n\n Estimated deployment time: ~30\u201345 minutes (most of it waiting for the Kubernetes cluster, Load balancer and managed database to be ready). Expected cost: ~10\u20acX\/day for the demo setup.\u201d<\/p>\n\n\n\n Before we start, here is a high-level overview of the architecture and components used in this demo data platform.<\/p>\n\n\n\n Main components of the infrastructure are as follows:<\/strong><\/p>\n\n\n\n Before starting the deployment, make sure you have:<\/p>\n\n\n\n Before diving into infra deployment, include quick sanity checks to check if needed tools are installed and in which version:<\/p>\n\n\n\n Now you are ready to start deploying the platform on UpCloud.<\/p>\n\n\n\n As a first step, we need to create the OpenTofu state storage such that our OpenTofu state is stored remotely and can be used by multiple people at the same time.<\/p>\n\n\n\n go to the bootstrap folder and initialize backend, which will create an S3 bucket for our state files<\/p>\n\n\n\n When successful, the outputs will print storage_bucket_name <\/strong><\/em>and storage_bucket_domain_name<\/strong><\/em><\/p>\n\n\n\n Next, we will create the core infrastructure which will be needed by all our other platform applications. All the infrastructure code is in the infra\/foundation folder.<\/p>\n\n\n\n <\/p>\n\n\n\n After the cluster is ready you can inspect the pods\/nodes:<\/p>\n\n\n\n Next up is Traefik, which will create a load balancer with a public IP address and expose our applications to the outside world.<\/p>\n\n\n\n After 5 minutes, UpCloud will assign a public IP address to the load balancer. You can find this in the UpCloud console under Load Balancers -> Services. In order to get DNS working, you need to add an A record in your DNS provider that points to the load balancer IP address.<\/p>\n\n\n\n In order to validate that everything is working correctly, make sure that the zitadel service is reachable at https:\/\/zitadel.<your-domain><\/strong> (replace with the domain you configured). The login page looks like this:<\/p>\n\n\n\n If this is not working, double check your DNS configuration and the Traefik, Zitadel pods in kubernetes for any errors.<\/p>\n\n\n\n Before we can setup the remainder of our stack, we need to create a service user in Zitadel. This will allow us to configure authentication (using oauth) for every application on our stack.<\/p>\n\n\n\n Now we are ready to deploy the applications that make up our data platform stack: OPA, Lakekeeper and Trino.<\/p>\n\n\n\n Now that the full stack is deployed, you can start using it.<\/p>\n\n\n\n Before you can run SQL queries, you need to configure a Lakekeeper warehouse that points to the S3-compatible object storage.<\/p>\n\n\n\n To get the necessary information, run the following command in the infra\/foundation folder:<\/p>\n\n\n\n Now go to the Lakekeeper UI at https:\/\/lakekeeper.<your-domain>\/ui and login. From there click on Warehouses in the left menu and then click on Create Warehouse. Fill in the form using the information retrieved from the previous command.<\/p>\n\n\n\n You can now run your first SQL queries against Trino. You can use your favorite SQL client that supports Trino or use the Trino CLI.<\/p>\n\n\n\n Connect to Trino using the CLI:<\/p>\n\n\n\n Execute queries inside Trino:<\/p>\n\n\n\n Congratulations! Your open-source data platform is now live on UpCloud. You can connect to Trino, create Iceberg tables, insert sample data, and query it using SQL.<\/p>\n\n\n\n In order to make this stack production-ready, you will need to take care of the following:<\/p>\n\n\n\n If you want to tear down the platform, you can do it as follows:<\/p>\n\n\n\n This article was written by Niels Claeys from Dataminded.<\/p>\n\n\n\n If you have any questions or run into issues, feel free to open an issue in this Github repo or reach out to niels.claeys@dataminded.com or anyone else at Dataminded.<\/p>\n\n\n\nArchitecture overview<\/h2>\n\n\n\n
![\"-\"](\"https:\/\/upcloud.com\/media\/image-282.png\")
<\/figure>\n\n\n\n\n
Prerequisites<\/h1>\n\n\n\n
\n
Prerequisites\nBefore starting the deployment, make sure you have:\nA verified UpCloud account with an API enabled subaccount for creating resources.\nA hosted domain and DNS provider for assigning a subdomain to the data platform stack.\nInstalled OpenTofu, kubectl, AWS CLI (for the S3-compatible object storage backend)\nBefore diving into infra deployment, include quick sanity checks to check if needed tools are installed and in which version:<\/code><\/pre>\n\n\n\nDeploying the platform<\/h2>\n\n\n\n
Step 1: Clone the repo and bootstrap Opentofu state storage<\/h3>\n\n\n\n
git clone https:\/\/github.com\/datamindedbe\/demo-upcloud-data-platform.git\ncd demo-upcloud-data-platform<\/code><\/pre>\n\n\n\n\n
export UPCLOUD_USERNAME=\"your_upcloud_username\"\nexport UPCLOUD_PASSWORD=\"your_upcloud_password\"<\/code><\/pre>\n\n\n\ncd infra\/bootstrap\ntofu init\ntofu apply<\/code><\/pre>\n\n\n\nStep 2: Deploy the core infrastructure (Kubernetes, Postgres, Traefik, Zitadel)<\/h3>\n\n\n\n
\n
tofu init -var-file=terraform.tfvars\ntofu apply -var-file=terraform.tfvars \\\n-target=upcloud_kubernetes_cluster.this \\\n-target=upcloud_kubernetes_node_group.default_group \\\n-target=upcloud_managed_database_postgresql.db<\/code><\/pre>\n\n\n\nexport KUBECONFIG=$(pwd)\/.kubeconfig.yml\nkubectl get nodes<\/code><\/pre>\n\n\n\ntofu apply -var-file=terraform.tfvars -target=module.traefik<\/code><\/pre>\n\n\n\n\n
tofu apply -var-file=terraform.tfvars<\/code><\/pre>\n\n\n\n![\"-\"](\"https:\/\/upcloud.com\/media\/image-279-1024x644.png\")
<\/figure>\n\n\n\nStep 3: Create a Zitadel service user<\/h3>\n\n\n\n
\n
![\"-\"](\"https:\/\/upcloud.com\/media\/image-280-1024x405.png\")
<\/figure>\n\n\n\n\n
![\"-\"](\"https:\/\/upcloud.com\/media\/image-281.png\")
<\/figure>\n\n\n\n\n
Step 4: Deploy the platform applications (Trino, Lakekeeper, OPA)<\/h3>\n\n\n\n
\n
tofu init -var-file=terraform.tfvars\ntofu apply -var-file=terraform.tfvars<\/code><\/pre>\n\n\n\nTroubleshooting tips<\/h3>\n\n\n\n
\n
Using the data platform<\/h2>\n\n\n\n
Configure your warehouse in Lakekeeper<\/h3>\n\n\n\n
tofu output s3_warehouse_info<\/code><\/pre>\n\n\n\nRunning your first SQL queries<\/h2>\n\n\n\n
\n
curl -o trino https:\/\/repo1.maven.org\/maven2\/io\/trino\/trino-cli\/476\/trino-cli-476-executable.jar\nchmod a+x trino<\/code><\/pre>\n\n\n\ntrino --server trino.<your-domain> --user <zitadel-admin-email><\/code><\/pre>\n\n\n\n-- Find available catalogs & schemas:\n\nSHOW CATALOGS;\n-- check the schemas in the iceberg catalog\nSHOW SCHEMAS FROM iceberg;\n\n-- Create a demo schema and table, insert some data and run a few queries\nCREATE SCHEMA IF NOT EXISTS iceberg.demo;\n\nCREATE TABLE IF NOT EXISTS iceberg.demo.events (\nid BIGINT,\nuser_name VARCHAR,\nevent_type VARCHAR,\nts TIMESTAMP\n);\n\nINSERT INTO iceberg.demo.events (id, user_name, event_type, ts) VALUES\n(1, 'alice', 'login', TIMESTAMP '2025-09-18 08:00:00'),\n(2, 'bob', 'click', TIMESTAMP '2025-09-18 08:05:00');\n\nSELECT event_type, count(*) as cnt FROM iceberg.demo.events GROUP BY event_type;\nSELECT * FROM iceberg.demo.events ORDER BY ts DESC LIMIT 10;<\/code><\/pre>\n\n\n\nNext steps<\/h2>\n\n\n\n
\n
Cleaning up<\/h2>\n\n\n\n
cd infra\/apps\ntofu destroy -var-file=terraform.tfvars\n\ncd ..\/foundation\ntofu destroy -var-file=terraform.tfvars -target=module.traefik -target=module.zitadel\n# Now you can destroy the rest of the resources\ntofu destroy -var-file=terraform.tfvars\n\ncd ..\/bootstrap\ntofu destroy<\/code><\/pre>\n\n\n\nSupport<\/h2>\n\n\n\n