Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/stuttgart-things/s3-minio-config

terraform module for base-setup configuration of minio s3
https://github.com/stuttgart-things/s3-minio-config

Last synced: 2 days ago
JSON representation

terraform module for base-setup configuration of minio s3

Host: GitHub
URL: https://github.com/stuttgart-things/s3-minio-config
Owner: stuttgart-things
License: apache-2.0
Created: 2023-12-16T11:14:27.000Z (11 months ago)
Default Branch: main
Last Pushed: 2024-03-21T13:39:37.000Z (8 months ago)
Last Synced: 2024-03-21T14:48:38.629Z (8 months ago)
Language: HCL
Size: 14.6 MB
Stars: 0
Watchers: 1
Forks: 0
Open Issues: 2
Metadata Files:
- Readme: README.md
- License: LICENSE

Awesome Lists containing this project

README

        # stuttgart-things/s3-minio-config

Terraform module for setting up and configure a minio s3 server instance.

## EXAMPLE MODULE USAGE

CREATE USERS

```hcl

# CALL MODULE - main.tf

module "s3-minio-config" {

  source         = "github.com/stuttgart-things/s3-minio-config" # OR LOCAL E.G. "../s3-minio-config"

  minio_user     = var.minio_user

  minio_server   = var.minio_server

  minio_password = var.minio_password

  minio_region   = var.minio_region

  minio_ssl      = true

  users          = var.users

}

variable "minio_region" {

  description = "Default MINIO region"

  default     = "eu-central-1"

}

variable "minio_server" {

  description = "Default MINIO host and port"

}

variable "minio_user" {

  description = "MINIO user"

}

variable "minio_password" {

  description = "MINIO password"

}

variable "users" {

  description = "A list of new users"

}

output "user_minio_user" {

    value = module.s3-minio-config.user_minio_user

}

output "minio_user_secret" {

    value = module.s3-minio-config.minio_user_secret

}

output "minio_user_status" {

    value = module.s3-minio-config.minio_user_status

}

```

```hcl

# VARIABLES -tfvars

minio_server   = "artifacts.app.4sthings.tiab.ssc.sva.de:443"

users = [

  {

    name = "patrick"

    secret = null               # Randomly generated secret key

    policy = null               # No policy is attatched

  },

  {

    name = "hermann"

    secret = "thepassword"

    policy = "readwrite"

  }

]

minio_user = ""

minio_password = ""

```

CREATE BUCKETS

```hcl

# CALL MODULE - main.tf

module "s3-minio-config" {

  source         = "github.com/stuttgart-things/s3-minio-config"

  minio_user     = var.minio_user

  minio_server   = var.minio_server

  minio_password = var.minio_password

  minio_region   = var.minio_region

  minio_ssl      = true

  buckets        = var.buckets

}

variable "minio_region" {

  description = "Default MINIO region"

  default     = "eu-central-1"

}

variable "minio_server" {

  description = "Default MINIO host and port"

}

variable "minio_user" {

  description = "MINIO user"

}

variable "minio_password" {

  description = "MINIO password"

}

variable "buckets" {

  description = "A list of buckets"

}

```

```hcl

# VARIABLES -tfvars

minio_server   = "artifacts.app.4sthings.tiab.ssc.sva.de:443"

buckets = [

  {

    name = "data"

    acl  = "public"

  },

  {

    name = "backup"

    acl  = "public"

  }

]

minio_user = ""

minio_password = ""

```

CREATE POLICIES

```hcl

# CALL MODULE - main.tf

module "s3-minio-config" {

  source         = "github.com/stuttgart-things/s3-minio-config"

  minio_user     = var.minio_user

  minio_server   = var.minio_server

  minio_password = var.minio_password

  minio_region   = var.minio_region

  minio_ssl      = true

  new_policy     = var.new_policy

}

variable "minio_region" {

  description = "Default MINIO region"

}

variable "minio_server" {

  description = "Default MINIO host and port"

}

variable "minio_user" {

  description = "MINIO user"

}

variable "minio_password" {

  description = "MINIO password"

}

variable "new_policy" {

  description = "Policy for creation"

}

```

```hcl

# VARIABLES -tfvars

minio_server   = "artifacts.app.4sthings.tiab.ssc.sva.de:443"

new_policy = [

    {

        name = "test_policy_1"

        policy = <

DEPLOYMENT SERVER-INSTANCE

```hcl

# CALL MODULE - main.tf

module "s3-minio-config" {

  source                   = "github.com/stuttgart-things/s3-minio-config"

  enable_deployment        = true

  kube_config              = "/home/sthings/.kube/labda-dev7"

  namespace                = "minio"

  minio_region             = "eu-central-1"

  minio_ssl                = true

  minio_image_tag          = "13.3.3"

  enable_storage           = true

  helm_chart_version       = "13.3.3"

  ingress_hostname_api     = "artifacts"

  ingress_hostname_console = "artifacts-console"

  ingress_domain           = "dev7.4sthings.tiab.ssc.sva.de"

  minio_user               = "admin"

  minio_password           = "superSecret"

  ingress_class            = "nginx"

}

```

To create api and console certificates for the deployment include the following variables:

```hcl

# CALL MODULE - main.tf

module "s3-minio-config" {

...

cluster_issuer = "cluster-issuer-approle"

create_cert = true

...

}

```

CREATE MULTIPLE-RESOURCES (USER + BUCKETS + POLICY WITHIN DEPLOYMENT SERVER-INSTANCE)

```hcl

# CALL MODULE - main.tf

# main.tf

module "s3-minio-config" {

  source         = "github.com/stuttgart-things/s3-minio-config"

  minio_user     = "admin"

  minio_password = "superSecret"

  minio_server   = "artifacts.dev11.4sthings.tiab.ssc.sva.de"

  minio_region   = "eu-central-1"

  minio_ssl      = true

  ############

  ## TFVARS ##

  ############

  users          = var.users

  buckets        = var.buckets

  new_policy     = var.new_policy

  ################

  ## Deploy K8s ##

  ################

  enable_deployment        = true

  namespace                = "minio"

  minio_image_tag          = "13.3.3"

  enable_storage           = true

  helm_chart_version       = "13.3.3"

  ingress_hostname_api     = "artifacts"

  ingress_hostname_console = "artifacts-console"

  ingress_domain           = "dev11.4sthings.tiab.ssc.sva.de"

  ingress_class            = "nginx"

  create_cert              = true

  cluster_issuer           = "cluster-issuer-approle"

}

variable "users" {

  description = "A list of new users"

}

variable "buckets" {

  description = "A list of buckets"

}

variable "new_policy" {

  description = "Policy for creation"

}

```

```hcl

# VARIABLES -tfvars

users = [

  {

    name = "patrick"

    secret = null               # Randomly generated secret key

    policy = null               # No policy is attatched

  },

  {

    name = "hermann"

    secret = "thepassword"

    policy = "test_policy"

  }

]

buckets = [

  {

    name = "data"

    acl  = "public"

  },

  {

    name = "backup"

    acl  = "public"

  }

]

new_policy = [

    {

        name = "test_policy"

        policy = <

## EXECUTION

EXECUTE TERRAFORM

```bash

export TF_VAR_minio_user=""

export TF_VAR_minio_password=""

terraform init

terraform validate

terraform plan

terraform apply

```

## DEV

TASKS

```bash

task: Available tasks for this project:

* branch:       Create branch from main

* commit:       Commit + push code into branch

* pr:           Create pull request into main

```

## Author Information

```bash

Ana Calva, stuttgart-things 01/2024

Patrick Hermann, stuttgart-things 12/2023

```

## License

Licensed under the Apache License, Version 2.0 (the "License").

You may obtain a copy of the License at [apache.org/licenses/LICENSE-2.0](http://www.apache.org/licenses/LICENSE-2.0).

Unless required by applicable law or agreed to in writing, software distributed under the License is distributed on an _"AS IS"_ basis, without WARRANTIES or conditions of any kind, either express or implied.

See the License for the specific language governing permissions and limitations under the License.