-
Notifications
You must be signed in to change notification settings - Fork 2
/
Copy pathmain.tf
89 lines (69 loc) · 2.42 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
# Copyright (c) HashiCorp, Inc.
# SPDX-License-Identifier: MPL-2.0
resource "random_pet" "prefix" {}
provider "azurerm" {
features {}
subscription_id = var.subscriptionId
}
resource "azurerm_resource_group" "default" {
name = "${random_pet.prefix.id}-rg"
#location = "West US 2"
location = "Central US"
tags = {
environment = "Demo"
}
}
resource "azurerm_kubernetes_cluster" "default" {
#name = "${random_pet.prefix.id}-aks"
name = "${var.clusterName}-${random_pet.prefix.id}"
location = azurerm_resource_group.default.location
resource_group_name = azurerm_resource_group.default.name
dns_prefix = "${random_pet.prefix.id}-k8s"
default_node_pool {
name = "default"
node_count = "${var.nodeCount}"
vm_size = "${var.nodeMachineType}"
os_disk_size_gb = 30
}
#service_principal {
# client_id = var.appId
# client_secret = var.password
#}
#role_based_access_control {
# enabled = true
#}
identity {
type = "SystemAssigned"
}
tags = {
environment = "Demo"
}
}
provider "kubernetes" {
host = "${azurerm_kubernetes_cluster.default.kube_config.0.host}"
client_certificate = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.client_certificate)}"
client_key = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.client_key)}"
cluster_ca_certificate = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.cluster_ca_certificate)}"
}
provider "helm" {
kubernetes {
host = "${azurerm_kubernetes_cluster.default.kube_config.0.host}"
client_certificate = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.client_certificate)}"
client_key = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.client_key)}"
cluster_ca_certificate = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.cluster_ca_certificate)}"
}
}
resource "helm_release" "ingress-ngnix" {
name = "ingress-nginx"
chart = "nginx-stable/nginx-ingress"
depends_on = [azurerm_kubernetes_cluster.default]
}
resource "null_resource" "configure" {
triggers = {
on_version_change = "${var.revision}"
}
provisioner "local-exec" {
command = ". ./do-all.sh 2>&1 | tee tout.txt"
}
depends_on = [azurerm_kubernetes_cluster.default, helm_release.ingress-ngnix]
}