This guide provides instructions for deploying Dagster on Amazon Web Services (AWS). You can use EC2 or ECS to host Dagit and the Dagster daemon, RDS to store runs and events, and S3 as an I/O manager to store op inputs and outputs.
To host Dagster on a bare VM or in Docker on EC2, refer to the Running Dagster as a service guide.
You can use a hosted RDS PostgreSQL database for your Dagster run/events data by configuring your dagster.yaml file:
storage: postgres: postgres_db: username: my_username password: my_password hostname: my_hostname db_name: my_database port: 5432
In this case, you'll want to ensure that:
Be sure that this file is present and DAGSTER_HOME is set on the node where Dagit is running.
Note: Using RDS for run and event log storage doesn't require that Dagit be running in the cloud. If you're connecting a local Dagit instance to a remote RDS storage, verify that your local node is able to connect to RDS.
The Deploying on ECS example on GitHub demonstrates how to configure the Docker Compose CLI integration with ECS to manage all of the required AWS resources that Dagster needs to run on ECS. The example includes:
dagster-daemon container for managing a run queue and submitting runs from schedules and sensorsThe Dagster instance uses the EcsRunLauncher to launch each run in its own ECS task.
The EcsRunLauncher launches an ECS task per run. It assumes that the rest of your Dagster deployment is also running in ECS.
By default, each run's task registers its own task definition. To simplify configuration, these task definitions inherit most of their configuration (networking, cpu, memory, environment, etc.) from the task that launches the run but overrides its container definition with a new command to launch a Dagster run.
When using the DefaultRunCoordinator, runs launched via Dagit or GraphQL inherit their task definitions from the Dagit task while runs launched from a sensor or schedule inherit their task definitions from the daemon task.
Alternatively, you can define your own task definition in your dagster.yaml:
run_launcher: module: "dagster_aws.ecs" class: "EcsRunLauncher" config: task_definition: "arn:aws:ecs:us-east-1:1234567890:task-definition/my-task-definition:1" container_name: "my_container_name"
You can set the run_launcher.config.run_resources field to customize the default memory and CPU resources for Dagster runs. For example:
run_launcher: module: "dagster_aws.ecs" class: "EcsRunLauncher" config: run_resources: cpu: 256 memory: 512
You can also use job tags to customize the CPU and memory of every run for a particular job:
from dagster import job, op @op() def my_op(context): context.log.info('running') @job( tags = { "ecs/cpu": "256", "ecs/memory": "512", } ) def my_job(): my_op()
If the ecs/cpu or ecs/memory tags are set, they will override any defaults set on the run launcher.
Note: Fargate tasks only support certain combinations of CPU and memory.
The EcsRunLauncher creates a new task for each run, using the current ECS task to determine network configuration. For example, the launched run will use the same ECS cluster, subnets, security groups, and launch type (e.g. Fargate or EC2).
To adjust the configuration of the launched run's task, set the run_launcher.config.run_task_kwargs field to a dictionary with additional key-value pairs that should be passed into the run_task boto3 API call. For example, to launch new runs in EC2 from a task running in Fargate, you could apply this configuration:
run_launcher: module: "dagster_aws.ecs" class: "EcsRunLauncher" config: run_task_kwargs: launchType: "EC2"
Refer to the boto3 docs for the full set of available arguments to run_task. Additionally, note that:
camelCase as they correspond to arguments in boto's APItaskDefinition and overrides can be used in run_launcher.config.run_task_kwargs. taskDefinition can be overridden by configuring the run_launcher.config.task_definition field instead.ECS can bind AWS Secrets Managers secrets as environment variables when runs launch. By default, Dagster will fetch any Secrets Manager secrets tagged with the dagster key and set them as environment variables.
Alternatively, you can set your own tag name in your dagster.yaml:
run_launcher: module: "dagster_aws.ecs" class: "EcsRunLauncher" config: secrets_tag: "my-tag-name"
In this example, any secret tagged with my-tag-name will be included as an environment variable with the name and value as that secret.
Additionally, you can pass specific secrets using the same structure as the ECS API:
run_launcher: module: "dagster_aws.ecs" class: "EcsRunLauncher" config: secrets: - name: "MY_API_TOKEN" valueFrom: "arn:aws:secretsmanager:us-east-1:123456789012:secret:FOO-AbCdEf:token::" - name: "MY_PASSWORD" valueFrom: "arn:aws:secretsmanager:us-east-1:123456789012:secret:FOO-AbCdEf:password::"
In this example, any secret tagged with dagster will be included in the environment. MY_API_TOKEN and MY_PASSWORD will also be included in the environment.
To enable parallel computation (e.g., with the multiprocessing or Dagster celery executors), you'll need to configure persistent I/O managers. For example, using an S3 bucket to store data passed between ops.
You'll need to use s3_pickle_io_manager as your I/O Manager or customize your own persistent I/O managers. Refer to the I/O managers documentation for an example.
from dagster_aws.s3.io_manager import s3_pickle_io_manager from dagster_aws.s3.resources import s3_resource from dagster import Int, Out, job, op @op(out=Out(Int)) def my_op(): return 1 @job( resource_defs={ "io_manager": s3_pickle_io_manager, "s3": s3_resource, } ) def my_job(): my_op()
Then, add the following YAML block in your job's config:
resources: io_manager: config: s3_bucket: my-cool-bucket s3_prefix: good/prefix-for-files-
The resource uses boto under the hood. If you're accessing your private buckets, you'll need to provide the AWS_ACCESS_KEY_ID and AWS_SECRET_ACCESS_KEY environment variables or follow one of the other boto authentication methods.
With this in place, your job runs will store data passed between ops on S3 in the location s3://<bucket>/dagster/storage/<job run id>/<op name>.compute.