getting-started-scp.md

Installing AWS Service Broker on SAP Cloud Platform

This guide helps you integrate AWS services into the Cloud Foundry environment on SAP Cloud Platform by using the AWS Service Broker.

For a high-level overview of how this works, take a look at the following image:

Pre-requisites

• Account on SAP Cloud Platform, Cloud Foundry environment.
• Account on AWS.
• Cloud Foundry CLI.
• Git.

Configuration in your AWS Environment

1. Sign in to your AWS account and in the AWS console, search for CloudFormation.
2. Choose Create Stack and under Choose a Template, pick Upload a template to Amazon S3.
3. Save the contents of the this file to your local environment as a yaml file. In the AWS console, click Choose and upload this file from your local environment.
4. Choose Next.

Once the CloudFormation stack creation is complete, the DynamoDB table and the IAM user are displayed as follows:

Deploy the AWS Service Broker to SAP Cloud Platform

1. Download the binary zip, aws-sb-cloudfoundry-app.zip, of the AWS Service Broker here.
2. Unzip the file. Open a terminal and navigate to the AWS Service Broker repository:

cd aws-sb-cf-cloudfoundry-app

3. Log in to SAP Cloud Platform in the Cloud Foundry environment:

cf login

4. Adapt the following URL to enter your API endpoint: https://api.<REGION_TECHNICAL_KEY>.hana.ondemand.com.

Find out your region and the technical key here

5. Enter username and password for your SAP Cloud Platform account.
6. Edit the aws-sb-cf-cloudfoundry-app/manifest.yml file and replace the values of the following fields accordingly:

AWS_ACCESS_KEY_ID: <ENTER YOUR AWS ACCOUNT KEY>
AWS_SECRET_ACCESS_KEY: <ENTER YOUR AWS ACCOUNT KEY SECRET> 
SECURITY_USER_PASSWORD: <ENTER ANY PASSWORD FOR YOUR SECURITY USER>
AWS_DEFAULT_REGION: <ENTER YOUR AWS REGION>

7. Push the AWS Service Broker to Cloud Foundry

cf push

You can view the URL of the deployed service that will be used in the next step either in the CF CLI or in the SAP Cloud Platform cockpit.

8. Adapt and use the following command to register the AWS Service Broker:

cf create-service-broker aws-service-broker <SECURITY_USER_NAME> <SECURITY_USER_PASSWORD> <URL_OF_THE_SERVICE_BROKER>

For <SECURITY_USER_NAME> and <SECURITY_USER_PASSWORD>, use the values you entered into the manifest.yml. You can find the <URL_OF_THE_SERVICE_BROKER> in your Space in the SAP Cloud Platform cockpit under Application Routes.

Note: You must either be assigned the role of a Cloud Foundry administrator or limit the registration to a single Cloud Foundry space by using the --space-scoped flag.

For further details, refer to the blog and the official documentation of SAP Cloud Platform.