Updated readme (humanitec-architecture#7)

FL303 · web-flow · commit 8b47a6eb3da9 · 2023-10-25T11:03:46.000+02:00
diff --git a/README.md b/README.md
@@ -1,13 +1,70 @@
 # Humanitec AWS Reference Architecture
 
+> TL;DR
+>
+> Skip the theory? Go [here](README.md#how-to-spin-up-your-humanitec-aws-reference-architecture) to spin up your Humanitec Google Cloud Reference Architecture Implementation. 
+>
+> [Follow this learning path to master you Internal Developer Platform](https://developer.humanitec.com/training/master-your-internal-developer-platform/introduction/).
+>
+
+Building an Internal Developer Platform (IDP) can come with many challenges. To give you a head start, we’ve created a set of [reference architectures](https://humanitec.com/reference-architectures) based on hundreds of real-world setups. These architectures described in code provide a starting point to build your own IDP within minutes, along with customization capabilities to ensure your platform meets the unique needs of your users (developers).
+
+The initial version of this reference architecture has been presented by Mike Gatto, Sr. DevOps Engineer, McKinsey and Stephan Schneider, Digital Expert Associate Partner, McKinsey at [PlartformCon 2023](https://www.youtube.com/watch?v=AimSwK8Mw-U). 
+
+## What is an Internal Developer Platform (IDP)?
+
+An [Internal Developer Platform (IDP)](https://humanitec.com/blog/what-is-an-internal-developer-platform) is the sum of all the tech and tools that a platform engineering team binds together to pave golden paths for developers. IDPs lower cognitive load across the engineering organization and enable developer self-service, without abstracting away context from developers or making the underlying tech inaccessible. Well-designed IDPs follow a Platform as a Product approach, where a platform team builds, maintains, and continuously improves the IDP, following product management principles and best practices.
+
+## Understanding the different planes of the IDP reference architecture
+
+When McKinsey originally [published the reference architecture](https://www.youtube.com/watch?v=AimSwK8Mw-U) they proposed five planes that describe the different parts of a modern Internal Developer Platform (IDP).
+
+![AWS reference architecture Humanitec](docs/images/AWS-reference-architecture-Humanitec.png)
+
+### Developer Control Plane 
+
+This plane is the primary configuration layer and interaction point for the platform users. It harbors the following components:
+
+
+
+* A **Version Control System**. GitHub is a prominent example, but this can be any system that contains two types of repositories:
+    * Application Source Code
+    * Platform Source Code, e.g. using Terraform
+* **Workload specifications**. The reference architecture uses [Score](https://developer.humanitec.com/score/overview/).
+* A **portal** for developers to interact with. It can be the Humanitec Portal, but you might also use [Backstage](https://backstage.io/) or any other portal on the market.
+
+
+### Integration and Delivery Plane 
+
+This plane is about building and storing the image, creating app and infra configs from the abstractions provided by the developers, and deploying the final state. It’s where the domains of developers and platform engineers meet.
+
+This plane usually contains four different tools:
+* A **CI pipeline**. It can be Github Actions or any CI tooling on the market.
+* The **image registry** holding your container images. Again, this can be any registry on the market.
+* An **orchestrator** which in our example, is the Humanitec Platform Orchestrator.
+* The **CD system**, which can be the Platform Orchestrator’s deployment pipeline capabilities — an external system triggered by the Orchestrator using a webhook, or a setup in tandem with GitOps operators like ArgoCD.
+
+### Monitoring and Logging Plane 
+
+The integration of monitoring and logging systems varies greatly depending on the system. This plane however is not a focus of the reference architecture.
+
+### Security Plane 
+
+The security plane of the reference architecture is focused on the secrets management system. The secrets manager stores configuration information such as database passwords, API keys, or TLS certificates needed by an Application at runtime. It allows the Platform Orchestrator to reference the secrets and inject them into the Workloads dynamically. You can learn more about secrets management and integration with other secrets management [here](https://developer.humanitec.com/platform-orchestrator/security/overview). 
+
+The reference architecture sample implementations use the secrets store attached to the Humanitec SaaS system.
+
+### Resource Plane
+
+This plane is where the actual infrastructure exists including clusters, databases, storage, or DNS services. The configuration of the Resources is managed by the Platform Orchestrator which dynamically creates app and infrastructure configurations with every deployment and creates, updates, or deletes dependent Resources as required.
+
+## How to spin up your Humanitec AWS Reference Architecture
 This repo contains an implementation of part of the Humanitec Reference Architecture for an Internal Developer Platform.
 
 To install an implementation containing add-ons, follow the separate README. We currently feature these add-ons:
 
 * [Base layer plus Backstage](examples/with-backstage/)
 
-![AWS reference architecture Humanitec](docs/images/AWS-reference-architecture-Humanitec.png)
-
 This repo covers the base layer of the implementation for AWS.
 
 By default, the following will be provisioned:
@@ -20,14 +77,14 @@ By default, the following will be provisioned:
   - Kubernetes Cluster
   - Logging
 
-## Prerequisites
+### Prerequisites
 
 * A Humanitec account with the `Administrator` role in an Organization. Get a [free trial](https://humanitec.com/free-trial?utm_source=github&utm_medium=referral&utm_campaign=aws_refarch_repo) if you are just starting.
 * An AWS account
 * [AWS CLI](https://aws.amazon.com/cli/) installed locally
 * [terraform](https://www.terraform.io/) installed locally
 
-## Usage
+### Usage
 
 **Note: Using this Reference Architecture Implementation will incur costs for your AWS project.**
 
@@ -67,14 +124,14 @@ This reference architecture implementation uses Terraform. You will need to do t
    ```
    This is due to an upstream issue with the Terraform AWS modules, and can be ignored.
 
-### Required input variables
+#### Required input variables
 
 Terraform reads variables by default from a file called `terraform.tfvars`. You can create your own file by renaming the `terraform.tfvars.example` file in the root of the repo and then filling in the missing values.
 
 You can see find a details about each of those variables and additional supported variables under [Inputs](#inputs).
 
 
-## Verify your result
+### Verify your result
 
 Check for the existence of key elements of the reference architecture. This is a subset of all elements only. For a complete list of what was installed, review the Terraform code.
 
@@ -115,7 +172,7 @@ Check for the existence of key elements of the reference architecture. This is a
    }
    ```
 
-## Cleaning up
+### Cleaning up
 
 Once you are finished with the reference architecture, you can remove all provisioned infrastructure and the resource definitions created in Humanitec with the following:
 
@@ -154,3 +211,34 @@ Once you are finished with the reference architecture, you can remove all provis
 | aws\_region | AWS Region to deploy into | `string` | n/a | yes |
 | humanitec\_org\_id | Humanitec Organization ID | `string` | n/a | yes |
 <!-- END_TF_DOCS -->
+
+## Learn more
+
+Expand your knowledge by heading over to our learning path, and discover how to: 
+
+
+
+* Deploy the Humanitec reference architecture using a cloud provider of your choice
+* Deploy and manage Applications using the Humanitec Platform Orchestrator and Score
+* Provision additional Resources and connect to them
+* Achieve standardization by design
+* Deal with special scenarios
+
+[Master your Internal Developer Platform](https://developer.humanitec.com/training/master-your-internal-developer-platform/introduction/)
+
+
+
+* [Introduction](https://developer.humanitec.com/training/master-your-internal-developer-platform/introduction/)
+* [Design principles](https://developer.humanitec.com/training/master-your-internal-developer-platform/design-principles/)
+* [Structure and integration points](https://developer.humanitec.com/training/master-your-internal-developer-platform/structure-and-integration-points/)
+* [Dynamic Configuration Management](https://developer.humanitec.com/training/master-your-internal-developer-platform/dynamic-config-management/)
+* [Tutorial: Set up the reference architecture in your cloud](https://developer.humanitec.com/training/master-your-internal-developer-platform/setup-ref-arch-in-your-cloud/)
+* [Theory on developer workflows](https://developer.humanitec.com/training/master-your-internal-developer-platform/theory-on-dev-workflows/)
+* [Tutorial: Scaffold a new Workload and create staging and prod Environments](https://developer.humanitec.com/training/master-your-internal-developer-platform/scaffolding-a-new-workload/)
+* [Tutorial: Deploy an Amazon S3 Resource to production](https://developer.humanitec.com/training/master-your-internal-developer-platform/deploy-a-resource/)
+* [Tutorial: Perform daily developer activities (debug, rollback, diffs, logs)](https://developer.humanitec.com/training/master-your-internal-developer-platform/daily-activities/)
+* [Tutorial: Deploy ephemeral Environments](https://developer.humanitec.com/training/master-your-internal-developer-platform/deploy-ephemeral-environments/)
+* [Theory on platform engineering workflows](https://developer.humanitec.com/training/master-your-internal-developer-platform/theory-on-pe-workflows/)
+* [Resource management theory](https://developer.humanitec.com/training/master-your-internal-developer-platform/resource-management-theory/)
+* [Tutorial: Provision a Redis cluster on AWS using Terraform](https://developer.humanitec.com/training/master-your-internal-developer-platform/provision-redis-aws/)
+* [Tutorial: Update Resource Definitions for related Applications](https://developer.humanitec.com/training/master-your-internal-developer-platform/update-resource-definitions-for-related-applications/)
