forked from kubernetes-sigs/kubespray
-
Notifications
You must be signed in to change notification settings - Fork 0
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge pull request kubernetes-sigs#1 from theobarberbany/testpr
Add configs
- Loading branch information
Showing
15 changed files
with
784 additions
and
373 deletions.
There are no files selected for viewing
Large diffs are not rendered by default.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,226 +1,55 @@ | ||
| resource "openstack_networking_floatingip_v2" "k8s_master" { | ||
| count = "${var.number_of_k8s_masters + var.number_of_k8s_masters_no_etcd}" | ||
| pool = "${var.floatingip_pool}" | ||
| } | ||
|
|
||
| resource "openstack_networking_floatingip_v2" "k8s_node" { | ||
| count = "${var.number_of_k8s_nodes}" | ||
| pool = "${var.floatingip_pool}" | ||
| } | ||
|
|
||
|
|
||
| resource "openstack_compute_keypair_v2" "k8s" { | ||
| name = "kubernetes-${var.cluster_name}" | ||
| public_key = "${file(var.public_key_path)}" | ||
| } | ||
|
|
||
| resource "openstack_compute_secgroup_v2" "k8s_master" { | ||
| name = "${var.cluster_name}-k8s-master" | ||
| description = "${var.cluster_name} - Kubernetes Master" | ||
| } | ||
|
|
||
| resource "openstack_compute_secgroup_v2" "k8s" { | ||
| name = "${var.cluster_name}-k8s" | ||
| description = "${var.cluster_name} - Kubernetes" | ||
| rule { | ||
| ip_protocol = "tcp" | ||
| from_port = "22" | ||
| to_port = "22" | ||
| cidr = "0.0.0.0/0" | ||
| } | ||
| rule { | ||
| ip_protocol = "icmp" | ||
| from_port = "-1" | ||
| to_port = "-1" | ||
| cidr = "0.0.0.0/0" | ||
| } | ||
| rule { | ||
| ip_protocol = "tcp" | ||
| from_port = "1" | ||
| to_port = "65535" | ||
| self = true | ||
| } | ||
| rule { | ||
| ip_protocol = "udp" | ||
| from_port = "1" | ||
| to_port = "65535" | ||
| self = true | ||
| } | ||
| rule { | ||
| ip_protocol = "icmp" | ||
| from_port = "-1" | ||
| to_port = "-1" | ||
| self = true | ||
| } | ||
| } | ||
|
|
||
| resource "openstack_compute_instance_v2" "k8s_master" { | ||
| name = "${var.cluster_name}-k8s-master-${count.index+1}" | ||
| count = "${var.number_of_k8s_masters}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_k8s_master}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = [ "${openstack_compute_secgroup_v2.k8s_master.name}", | ||
| "${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| floating_ip = "${element(openstack_networking_floatingip_v2.k8s_master.*.address, count.index)}" | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "etcd,kube-master,kube-node,k8s-cluster,vault" | ||
| } | ||
|
|
||
| } | ||
|
|
||
| resource "openstack_compute_instance_v2" "k8s_master_no_etcd" { | ||
| name = "${var.cluster_name}-k8s-master-ne-${count.index+1}" | ||
| count = "${var.number_of_k8s_masters_no_etcd}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_k8s_master}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = [ "${openstack_compute_secgroup_v2.k8s_master.name}", | ||
| "${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| floating_ip = "${element(openstack_networking_floatingip_v2.k8s_master.*.address, count.index + var.number_of_k8s_masters)}" | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "kube-master,kube-node,k8s-cluster,vault" | ||
| } | ||
|
|
||
| } | ||
|
|
||
| resource "openstack_compute_instance_v2" "etcd" { | ||
| name = "${var.cluster_name}-etcd-${count.index+1}" | ||
| count = "${var.number_of_etcd}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_etcd}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = [ "${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "etcd,vault,no-floating" | ||
| } | ||
| provisioner "local-exec" { | ||
| command = "sed s/USER/${var.ssh_user}/ contrib/terraform/openstack/ansible_bastion_template.txt | sed s/BASTION_ADDRESS/${element(openstack_networking_floatingip_v2.k8s_master.*.address, 0)}/ > contrib/terraform/openstack/group_vars/no-floating.yml" | ||
| } | ||
| } | ||
|
|
||
|
|
||
| resource "openstack_compute_instance_v2" "k8s_master_no_floating_ip" { | ||
| name = "${var.cluster_name}-k8s-master-nf-${count.index+1}" | ||
| count = "${var.number_of_k8s_masters_no_floating_ip}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_k8s_master}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = [ "${openstack_compute_secgroup_v2.k8s_master.name}", | ||
| "${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "etcd,kube-master,kube-node,k8s-cluster,vault,no-floating" | ||
| } | ||
| provisioner "local-exec" { | ||
| command = "sed s/USER/${var.ssh_user}/ contrib/terraform/openstack/ansible_bastion_template.txt | sed s/BASTION_ADDRESS/${element(openstack_networking_floatingip_v2.k8s_master.*.address, 0)}/ > contrib/terraform/openstack/group_vars/no-floating.yml" | ||
| } | ||
| } | ||
|
|
||
| resource "openstack_compute_instance_v2" "k8s_master_no_floating_ip_no_etcd" { | ||
| name = "${var.cluster_name}-k8s-master-ne-nf-${count.index+1}" | ||
| count = "${var.number_of_k8s_masters_no_floating_ip_no_etcd}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_k8s_master}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = [ "${openstack_compute_secgroup_v2.k8s_master.name}", | ||
| "${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "kube-master,kube-node,k8s-cluster,vault,no-floating" | ||
| } | ||
| provisioner "local-exec" { | ||
| command = "sed s/USER/${var.ssh_user}/ contrib/terraform/openstack/ansible_bastion_template.txt | sed s/BASTION_ADDRESS/${element(openstack_networking_floatingip_v2.k8s_master.*.address, 0)}/ > contrib/terraform/openstack/group_vars/no-floating.yml" | ||
| } | ||
| } | ||
|
|
||
|
|
||
| resource "openstack_compute_instance_v2" "k8s_node" { | ||
| name = "${var.cluster_name}-k8s-node-${count.index+1}" | ||
| count = "${var.number_of_k8s_nodes}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_k8s_node}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = ["${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| floating_ip = "${element(openstack_networking_floatingip_v2.k8s_node.*.address, count.index)}" | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "kube-node,k8s-cluster,vault" | ||
| } | ||
| } | ||
|
|
||
| resource "openstack_compute_instance_v2" "k8s_node_no_floating_ip" { | ||
| name = "${var.cluster_name}-k8s-node-nf-${count.index+1}" | ||
| count = "${var.number_of_k8s_nodes_no_floating_ip}" | ||
| image_name = "${var.image}" | ||
| flavor_id = "${var.flavor_k8s_node}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = ["${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user}" | ||
| kubespray_groups = "kube-node,k8s-cluster,vault,no-floating" | ||
| } | ||
| provisioner "local-exec" { | ||
| command = "sed s/USER/${var.ssh_user}/ contrib/terraform/openstack/ansible_bastion_template.txt | sed s/BASTION_ADDRESS/${element(openstack_networking_floatingip_v2.k8s_master.*.address, 0)}/ > contrib/terraform/openstack/group_vars/no-floating.yml" | ||
| } | ||
| module "network" { | ||
| source = "modules/network" | ||
|
|
||
| external_net = "${var.external_net}" | ||
| network_name = "${var.network_name}" | ||
| cluster_name = "${var.cluster_name}" | ||
| dns_nameservers = "${var.dns_nameservers}" | ||
| } | ||
|
|
||
|
|
||
| module "ips" { | ||
| source = "modules/ips" | ||
|
|
||
| number_of_k8s_masters = "${var.number_of_k8s_masters}" | ||
| number_of_k8s_masters_no_etcd = "${var.number_of_k8s_masters_no_etcd}" | ||
| number_of_k8s_nodes = "${var.number_of_k8s_nodes}" | ||
| floatingip_pool = "${var.floatingip_pool}" | ||
| number_of_bastions = "${var.number_of_bastions}" | ||
| external_net = "${var.external_net}" | ||
| network_name = "${var.network_name}" | ||
| router_id = "${module.network.router_id}" | ||
| } | ||
|
|
||
| module "compute" { | ||
| source = "modules/compute" | ||
|
|
||
| cluster_name = "${var.cluster_name}" | ||
| number_of_k8s_masters = "${var.number_of_k8s_masters}" | ||
| number_of_k8s_masters_no_etcd = "${var.number_of_k8s_masters_no_etcd}" | ||
| number_of_etcd = "${var.number_of_etcd}" | ||
| number_of_k8s_masters_no_floating_ip = "${var.number_of_k8s_masters_no_floating_ip}" | ||
| number_of_k8s_masters_no_floating_ip_no_etcd = "${var.number_of_k8s_masters_no_floating_ip_no_etcd}" | ||
| number_of_k8s_nodes = "${var.number_of_k8s_nodes}" | ||
| number_of_bastions = "${var.number_of_bastions}" | ||
| number_of_k8s_nodes_no_floating_ip = "${var.number_of_k8s_nodes_no_floating_ip}" | ||
| number_of_gfs_nodes_no_floating_ip = "${var.number_of_gfs_nodes_no_floating_ip}" | ||
| gfs_volume_size_in_gb = "${var.gfs_volume_size_in_gb}" | ||
| public_key_path = "${var.public_key_path}" | ||
| image = "${var.image}" | ||
| image_gfs = "${var.image_gfs}" | ||
| ssh_user = "${var.ssh_user}" | ||
| ssh_user_gfs = "${var.ssh_user_gfs}" | ||
| flavor_k8s_master = "${var.flavor_k8s_master}" | ||
| flavor_k8s_node = "${var.flavor_k8s_node}" | ||
| flavor_etcd = "${var.flavor_etcd}" | ||
| flavor_gfs_node = "${var.flavor_gfs_node}" | ||
| network_name = "${var.network_name}" | ||
| flavor_bastion = "${var.flavor_bastion}" | ||
| k8s_master_fips = "${module.ips.k8s_master_fips}" | ||
| k8s_node_fips = "${module.ips.k8s_node_fips}" | ||
| bastion_fips = "${module.ips.bastion_fips}" | ||
|
|
||
| network_id = "${module.network.router_id}" | ||
| } | ||
|
|
||
| resource "openstack_blockstorage_volume_v2" "glusterfs_volume" { | ||
| name = "${var.cluster_name}-gfs-nephe-vol-${count.index+1}" | ||
| count = "${var.number_of_gfs_nodes_no_floating_ip}" | ||
| description = "Non-ephemeral volume for GlusterFS" | ||
| size = "${var.gfs_volume_size_in_gb}" | ||
| } | ||
|
|
||
| resource "openstack_compute_instance_v2" "glusterfs_node_no_floating_ip" { | ||
| name = "${var.cluster_name}-gfs-node-nf-${count.index+1}" | ||
| count = "${var.number_of_gfs_nodes_no_floating_ip}" | ||
| image_name = "${var.image_gfs}" | ||
| flavor_id = "${var.flavor_gfs_node}" | ||
| key_pair = "${openstack_compute_keypair_v2.k8s.name}" | ||
| network { | ||
| name = "${var.network_name}" | ||
| } | ||
| security_groups = ["${openstack_compute_secgroup_v2.k8s.name}" ] | ||
| metadata = { | ||
| ssh_user = "${var.ssh_user_gfs}" | ||
| kubespray_groups = "gfs-cluster,network-storage" | ||
| } | ||
| volume { | ||
| volume_id = "${element(openstack_blockstorage_volume_v2.glusterfs_volume.*.id, count.index)}" | ||
| } | ||
| provisioner "local-exec" { | ||
| command = "sed s/USER/${var.ssh_user}/ contrib/terraform/openstack/ansible_bastion_template.txt | sed s/BASTION_ADDRESS/${element(openstack_networking_floatingip_v2.k8s_master.*.address, 0)}/ > contrib/terraform/openstack/group_vars/gfs-cluster.yml" | ||
| } | ||
| } | ||
|
|
||
|
|
||
|
|
||
|
|
||
| #output "msg" { | ||
| # value = "Your hosts are ready to go!\nYour ssh hosts are: ${join(", ", openstack_networking_floatingip_v2.k8s_master.*.address )}" | ||
| #} |
Oops, something went wrong.