⭐ feat: Update website, API, and infra (#164)

>Adds `maitred` in charge of handling automated game installs, updates, and even execution. >Not only that, we have the hosted stuff here >- [x] AWS Task on ECS GPUs >- [ ] Add a service to listen for game starts and stops (docker-compose.yml) >- [x] Add a queue for requesting a game to start >- [x] Fix up the play/watch UI >TODO: >- Add a README >- Add an SST docs Edit: - This adds a new landing page, updates the homepage etc etc >I forgot what the rest of the updated stuff are 😅
2025-12-12 08:45:38 +02:00 · 2025-02-11 12:26:35 +03:00
parent 93327bdf1a
commit 060718d8b0
139 changed files with 5814 additions and 5049 deletions
--- a/infra/cluster.ts
+++ b/infra/cluster.ts
@@ -0,0 +1,155 @@
+import { sshKey } from "./ssh";
+import { authFingerprintKey } from "./auth";
+
+export const ecsCluster = new aws.ecs.Cluster("NestriGPUCluster", {
+    name: "NestriGPUCluster",
+});
+
+const ecsInstanceRole = new aws.iam.Role("NestriGPUInstanceRole", {
+    name: "GPUAssumeRoleProd",
+    assumeRolePolicy: JSON.stringify({
+        Version: "2012-10-17",
+        Statement: [{
+            Action: "sts:AssumeRole",
+            Principal: {
+                Service: "ec2.amazonaws.com",
+            },
+            Effect: "Allow",
+            Sid: "",
+        }],
+    }),
+});
+
+new aws.iam.RolePolicyAttachment("NestriGPUInstancePolicyAttachment", {
+    role: ecsInstanceRole.name,
+    policyArn: "arn:aws:iam::aws:policy/service-role/AmazonEC2ContainerServiceforEC2Role",
+});
+
+const ecsInstanceProfile = new aws.iam.InstanceProfile("NestriGPUInstanceProfile", {
+    role: ecsInstanceRole.name,
+});
+
+// const server = new aws.ec2.Instance("NestriGPU", {
+//     instanceType: aws.ec2.InstanceType.G4dn_XLarge,
+//     ami: "ami-046a6af96ef510bb6",//Fedora cloud
+//     keyName: sshKey.keyName,
+//     instanceMarketOptions: {
+//         marketType: "spot",
+//         spotOptions: {
+//             maxPrice: "0.2",
+//             spotInstanceType: "persistent",
+//             instanceInterruptionBehavior: "stop"
+//         },
+//     },
+//     iamInstanceProfile: ecsInstanceProfile,
+// });
+
+const logGroup = new aws.cloudwatch.LogGroup("NestriGPULogGroup", {
+    name: "/ecs/nestri-gpu-prod",
+    retentionInDays: 7,
+});
+
+// Create a Task Definition for the ECS service to test it
+export const gpuTaskDefinition = new aws.ecs.TaskDefinition("NestriGPUTask", {
+    family: "NestriGPUTaskProd",
+    requiresCompatibilities: ["EC2"],
+    volumes: [
+        {
+            name: "host",
+            hostPath: "/mnt/"
+            // efsVolumeConfiguration: {
+            //     fileSystemId: storage.id,
+            //     authorizationConfig: { accessPointId: storage.accessPoint },
+            //     transitEncryption: "ENABLED",
+            // }
+        }
+    ],
+    containerDefinitions: authFingerprintKey.result.apply(v => JSON.stringify([{
+        "essential": true,
+        "name": "nestri",
+        "memory": 1024,
+        "cpu": 200,
+        "gpu": 1,
+        "image": "ghcr.io/nestrilabs/nestri/runner:nightly",
+        "environment": [
+            {
+                "name": "RESOLUTION",
+                "value": "1920x1080"
+            },
+            {
+                "name": "AUTH_FINGERPRINT",
+                "value": v
+            },
+            {
+                "name": "FRAMERATE",
+                "value": "60"
+            },
+            {
+                "name": "NESTRI_ROOM",
+                "value": "aws-testing"
+            },
+            {
+                "name": "RELAY_URL",
+                "value": "https://relay.dathorse.com"
+            },
+            {
+                "name": "NESTRI_PARAMS",
+                "value": "--verbose=true --video-codec=h264 --video-bitrate=4000 --video-bitrate-max=6000 --gpu-card-path=/dev/dri/card0"
+            },
+        ],
+        "mountPoints": [{ "containerPath": "/home/nestri", "sourceVolume": "host" }],
+        "disableNetworking": false,
+        "linuxParameter": {
+            "sharedMemorySize": 5120
+        },
+        "logConfiguration": {
+            "logDriver": "awslogs",
+            "options": {
+                "awslogs-group": "/ecs/nestri-gpu-prod",
+                "awslogs-region": "us-east-1",
+                "awslogs-stream-prefix": "nestri-gpu-task"
+            }
+        }
+    }]))
+});
+
+sst.Linkable.wrap(aws.ecs.TaskDefinition, (resource) => ({
+    properties: {
+        value: resource.arn,
+    },
+}));
+
+sst.Linkable.wrap(aws.ecs.Cluster, (resource) => ({
+    properties: {
+        value: resource.arn,
+    },
+}));
+
+//     userData: $interpolate`#!/bin/bash
+// sudo rm /etc/sysconfig/docker
+// echo DAEMON_MAXFILES=1048576 | sudo tee -a /etc/sysconfig/docker
+// echo DAEMON_PIDFILE_TIMEOUT=10 | sud o tee -a /etc/sysconfig/docker
+// echo OPTIONS="--default-ulimit nofile=32768:65536" | sudo tee -a /etc/sysconfig/docker
+// sudo tee "/etc/docker/daemon.json" > /dev/null <<EOF
+// {
+//     "default-runtime": "nvidia",
+//     "runtimes": {
+//         "nvidia": {
+//             "path": "/usr/bin/nvidia-container-runtime",
+//             "runtimeArgs": []
+//         }
+//     }
+// }
+// EOF
+// sudo systemctl restart docker
+// echo ECS_CLUSTER='${ecsCluster.name}' | sudo tee -a /etc/ecs/ecs.config
+// echo ECS_ENABLE_GPU_SUPPORT=true | sudo tee -a /etc/ecs/ecs.config
+// echo ECS_CONTAINER_STOP_TIMEOUT=3h | sudo tee -a /etc/ecs/ecs.config
+// echo ECS_ENABLE_SPOT_INSTANCE_DRAINING=true | sudo tee -a /etc/ecs/ecs.config
+// `,
+    
+// This is used for requesting a container to be deployed on AWS
+// const queue = new sst.aws.Queue("PartyQueue", { fifo: true });
+
+// queue.subscribe({ handler: "packages/functions/src/party/subscriber.handler", permissions:{}, link:[taskF]})
+// const authRes = $interpolate`${authFingerprintKey.result}`