Skip to content

Examples

Real-world configuration recipes for common use cases.

Data Residency & PII Compliance

This pattern is essential for teams working with sensitive data (PII, PHI) that cannot leave a specific geographic region. By provisioning the workstation in the same region as the data, you ensure compliance because the data never touches your local laptop.

vars:
  project: sensitive-analysis
  remote_dir: /home/ubuntu/${project}

defaults:
  # STRICTLY enforce the region where data resides
  region: eu-central-1  # Frankfurt (GDPR strict)

  # Filter out all environment variables to prevent accidental leakage
  # Only allow specific, safe variables
  env_filter:
    - ^SAFE_VAR_.*

camps:
  secure-workstation:
    instance_type: m5.2xlarge
    disk_size: 100

    command: |
      echo "Connected to secure workstation in eu-central-1."
      echo "Data analysis can proceed without downloading PII."
      bash

Data Science (Jupyter + GPU)

A complete setup for deep learning. This camp spins up a GPU instance, installs PyTorch, and forwards Jupyter Lab to your local browser.

vars:
  project: deep-learning
  remote_dir: /home/ubuntu/${project}

playbooks:
  gpu-setup:
    - name: Install Drivers
      hosts: all
      become: true
      tasks:
        - name: Install CUDA
          apt: {name: nvidia-cuda-toolkit, state: present}
        - name: Install PyTorch
          pip: {name: [torch, torchvision, jupyterlab, tensorboard]}

camps:
  experiment:
    instance_type: g5.xlarge  # NVIDIA A10G
    region: us-west-2
    disk_size: 200

    # Forward Jupyter (8888)
    ports: [8888]

    ansible_playbooks: [gpu-setup]

    # Auto-start Jupyter
    command: jupyter lab --ip=0.0.0.0 --port=8888 --no-browser --allow-root

  training:
    instance_type: p3.2xlarge # V100 GPU
    region: us-west-2
    ports: [6006] # TensorBoard
    ansible_playbooks: [gpu-setup]

    # Pull data on every start
    startup_script: |
      cd ${remote_dir}
      dvc pull data/

    # Run background monitoring + training
    command: |
      tensorboard --logdir logs --port 6006 &
      python train_model.py

Workflow: 1. Run campers run experiment for interactive work. 2. Run campers run training for heavy batch jobs.

Heavy Compilation (Rust/C++)

Offload long compile times to a high-core CPU instance.

vars:
  project: rust-engine
  remote_dir: /home/ubuntu/${project}

camps:
  builder:
    instance_type: c6a.12xlarge  # 48 vCPUs!
    disk_size: 50

    setup_script: |
      curl --proto '=https' --tlsv1.2 -sSf https://sh.rustup.rs | sh -s -- -y
      sudo apt-get install -y build-essential clang

    command: cargo build --release

When the build completes, you'll be prompted to stop or destroy the instance.

Web Development (Full Control)

Run a backend, frontend, and database in the cloud using Docker Compose. This gives you full control over the environment.

camps:
  webapp:
    instance_type: t3.medium

    # Forward Frontend, API, and DB admin ports
    ports:
      - 3000  # React
      - 8000  # FastAPI
      - 5432  # Postgres

    setup_script: |
      # Install Docker & Compose
      curl -fsSL https://get.docker.com | sh
      sudo usermod -aG docker ubuntu

    command: docker compose up

Client Demos

Share your running application with clients by exposing ports publicly. Unlike ports (which tunnels to localhost), public_ports opens security group rules so anyone can access the instance's public IP.

vars:
  project: client-demo
  remote_dir: /home/ubuntu/${project}

camps:
  demo:
    instance_type: t3.medium

    # Public access for clients
    public_ports: [80, 3000]

    # Also tunnel to localhost for your own dev access
    ports: [3000]

    setup_script: |
      curl -fsSL https://get.docker.com | sh
      sudo usermod -aG docker ubuntu

    command: docker compose up

Workflow:

  1. Run campers run demo to start the instance.
  2. Share the public URL with your client: http://<public-ip>:3000
  3. When finished, press Q and select Keep running to disconnect while preserving client access.
  4. Later, run campers stop demo or campers destroy demo to clean up.

HTTPS for Demos:

For production-quality demos with SSL, you can use Caddy as a reverse proxy. Caddy auto-provisions Let's Encrypt certificates.

playbooks:
  caddy-proxy:
    - name: Setup Caddy
      hosts: all
      become: true
      tasks:
        - apt: {name: caddy, state: present, update_cache: true}
        - copy:
            dest: /etc/caddy/Caddyfile
            content: |
              {{ public_ip | replace('.', '-') }}.sslip.io {
                reverse_proxy localhost:3000
              }
          notify: Reload Caddy
      handlers:
        - name: Reload Caddy
          systemd: {name: caddy, state: reloaded}

camps:
  demo-https:
    instance_type: t3.medium
    public_ports: [80, 443]
    ansible_playbooks: [caddy-proxy]
    command: npm start

This gives you a shareable HTTPS URL like https://54-123-45-67.sslip.io with a valid certificate.

Advanced: AWS Profile Support

If you rely on AWS_PROFILE (switching between accounts/roles) instead of raw environment variables, you can sync your credentials file to the remote instance.

Security Implication

This copies your entire ~/.aws directory (all profiles) to the cloud instance.

While Campers instances are secured by SSH keys and strictly limited security groups (no open ports), if the instance is compromised, all your local profiles are exposed. Only use this if you trust the environment.

defaults:
  env_filter:
    # Forward the profile name env var
    - AWS_PROFILE

  sync_paths:
    # 1. Sync your code
    - local: .
      remote: /home/ubuntu/${project}

    # 2. Sync your AWS credentials
    - local: ~/.aws
      remote: /home/ubuntu/.aws
      ignore:
        - "cli/cache" # Don't sync CLI cache junk

Usage: 

export AWS_PROFILE=dev-account
campers run
# On remote: aws s3 ls (uses dev-account profile)