Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/stuttgart-things/machine-shop-operator
manage the lifecycle of terraform resources w/ custom resources on k8s
https://github.com/stuttgart-things/machine-shop-operator
ansible golang operator terraform vault
Last synced: 2 days ago
JSON representation
manage the lifecycle of terraform resources w/ custom resources on k8s
- Host: GitHub
- URL: https://github.com/stuttgart-things/machine-shop-operator
- Owner: stuttgart-things
- License: apache-2.0
- Created: 2023-05-30T15:52:22.000Z (over 1 year ago)
- Default Branch: main
- Last Pushed: 2023-12-12T12:04:41.000Z (11 months ago)
- Last Synced: 2024-02-06T05:48:25.945Z (9 months ago)
- Topics: ansible, golang, operator, terraform, vault
- Language: Go
- Homepage:
- Size: 19.3 MB
- Stars: 2
- Watchers: 0
- Forks: 0
- Open Issues: 4
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# stuttgart-things/machine-shop-operator
manage the lifecycle of terraform resources w/ custom resources on kubernetes
## DEV-TASKS
```bash
task --list:
* branch: Create branch from main
* build-image: Build image
* crds: Generate crds
* delete-branch: Delete branch from origin
* deploy: Build image & deploy
* deploy-crds: Generate and deploy crds
* git-push: Commit & push the module
* install-kustomize: Download and install-kustomize
* lint: Lint code
* merge: Create pull request into main
* package: Update Chart.yaml and package archive
* push: Push to registry
* tag: commit, push & tag the module
* test: Test code
* release: Create a release
```
## DEPLOYMENT
HELMFILE
## APPLY TO ENV
```bash
export VAULT_ADDR=https://vault-vsphere.labul.sva.de:8200
export VAULT_NAMESPACE=root
export VAULT_TOKEN=
helmfile diff --environment labul-vsphere
helmfile sync --environment labul-vsphere
```
LATEST DEV RELEASE
```yaml
cat < ./values.yaml
secrets:
vault:
name: vault
labels:
app.kubernetes.io/component: manager
app.kubernetes.io/created-by: machine-shop-operator
app.kubernetes.io/instance: controller-manager
app.kubernetes.io/part-of: machine-shop-operator
dataType: stringData
secretKVs:
VAULT_NAMESPACE:
VAULT_ADDR:
VAULT_ROLE_ID:
VAULT_SECRET_ID:
EOF
helm upgrade --install machine-shop-operator \
oci://eu.gcr.io/stuttgart-things/machine-shop-operator --version 0.1.48 \
-n machine-shop-operator-system --values ./values.yaml --create-namespace
```
### Create Terraform CR
EXAMPLE-VSPHERE-VM
```yaml
---
apiVersion: machineshop.sthings.tiab.ssc.sva.de/v1beta1
kind: Terraform
metadata:
name: sthings7
namespace: terraform
labels:
app.kubernetes.io/created-by: machine-shop-operator
app.kubernetes.io/name: terraform
app.kubernetes.io/part-of: machine-shop-operator
spec:
state: present
variables:
- vsphere_vm_name="sthings7"
- vm_count=1
- vm_num_cpus=8
- vm_memory=4096
- vm_disk_size=96
- vsphere_vm_template="/LabUL/host/Cluster01/10.31.101.40/ubuntu22"
- vsphere_vm_folder_path="stuttgart-things/testing"
- vsphere_network="/LabUL/host/Cluster01/10.31.101.41/LAB-10.31.103"
- vsphere_datastore="/LabUL/host/Cluster01/10.31.101.41/UL-ESX-SAS-01"
- vsphere_resource_pool="/LabUL/host/Cluster01/Resources"
- vsphere_datacenter="LabUL"
backend:
- access_key=apps/data/artifacts:accessKey
- secret_key=apps/data/artifacts:secretKey
module:
- moduleName=sthings7
- backendKey=sthings7.tfstate
- moduleSourceUrl=https://artifacts.tiab.labda.sva.de/modules/vsphere-vm.zip
- backendEndpoint=https://artifacts.app.4sthings.tiab.ssc.sva.de
- backendRegion=main
- backendBucket=vsphere-vm
- tfProviderName=vsphere
- tfProviderSource=hashicorp/vsphere
- tfProviderVersion=2.5.1
- tfVersion=1.6.5
secrets:
- vsphere_user=cloud/data/vsphere:username
- vsphere_password=cloud/data/vsphere:password
- vsphere_server=cloud/data/vsphere:ip
- vm_ssh_user=cloud/data/vsphere:vm_ssh_user
- vm_ssh_password=cloud/data/vsphere:vm_ssh_password
template: vsphere-vm
terraform-version: 1.6.5
```
EXAMPLE-PVE-VM
```yaml
apiVersion: machineshop.sthings.tiab.ssc.sva.de/v1beta1
kind: Terraform
metadata:
name: terraform-pve-sample
labels:
app.kubernetes.io/name: terraform
app.kubernetes.io/part-of: machine-shop-operator
app.kubernetes.io/created-by: machine-shop-operator
spec:
variables:
- vm_name="machine-shop-operator-pve1"
- vm_count=1
- vm_num_cpus=6
- vm_memory=8192
- vm_template="u22-rke2-upi"
- pve_network="vmbr101"
- pve_datastore="v3700"
- vm_disk_size="128G"
- pve_folder_path="stuttgart-things"
- pve_cluster_node="sthings-pve1"
module:
- moduleName=machine-shop-operator-pve1
- backendKey=machine-shop-operator-pve1.tfstate
- moduleSourceUrl=https://artifacts.app.sthings-pve.labul.sva.de/modules/proxmox-vm.zip
- backendEndpoint=https://artifacts.app.sthings-pve.labul.sva.de
- backendRegion=main
- backendBucket=pve-vm
- tfProviderName=proxmox
- tfProviderSource=Telmate/proxmox
- tfProviderVersion=2.9.14
- tfVersion=1.6.5
backend:
- access_key=apps/data/artifacts:rootUser
- secret_key=apps/data/artifacts:rootPassword
secrets:
- pve_api_url=cloud/data/pve:api_url
- pve_api_user=cloud/data/pve:api_user
- pve_api_password=cloud/data/pve:api_password
- vm_ssh_user=cloud/data/pve:ssh_user
- vm_ssh_password=cloud/data/pve:ssh_password
terraform-version: 1.6.5
template: pve-vm
```
## License
Copyright 2023 patrick hermann.
Licensed under the Apache License, Version 2.0 (the "License");
you may not use this file except in compliance with the License.
You may obtain a copy of the License at
http://www.apache.org/licenses/LICENSE-2.0
Unless required by applicable law or agreed to in writing, software
distributed under the License is distributed on an "AS IS" BASIS,
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
See the License for the specific language governing permissions and
limitations under the License.