https://github.com/wi3ard/k8s-nginx-ingress
Terraform configuration for deploying Nginx ingress controller in a Kubernetes cluster
https://github.com/wi3ard/k8s-nginx-ingress
kubernetes kubernetes-service terraform terraform-configurations terraform-scripts
Last synced: 5 months ago
JSON representation
Terraform configuration for deploying Nginx ingress controller in a Kubernetes cluster
- Host: GitHub
- URL: https://github.com/wi3ard/k8s-nginx-ingress
- Owner: Wi3ard
- License: apache-2.0
- Created: 2019-01-18T00:55:07.000Z (over 6 years ago)
- Default Branch: gke-gdns-certmgr-wildcard
- Last Pushed: 2020-09-13T12:52:57.000Z (almost 5 years ago)
- Last Synced: 2025-01-31T01:13:41.902Z (5 months ago)
- Topics: kubernetes, kubernetes-service, terraform, terraform-configurations, terraform-scripts
- Language: HCL
- Size: 26.4 KB
- Stars: 6
- Watchers: 2
- Forks: 2
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
README
# Nginx ingress controller for Kubernetes
- [Nginx ingress controller for Kubernetes](#nginx-ingress-controller-for-kubernetes)
- [Features](#features)
- [Before you begin](#before-you-begin)
- [GCE configuration](#gce-configuration)
- [Terraform initialization](#terraform-initialization)
- [Installation](#installation)
- [Uninstall and cleanup](#uninstall-and-cleanup)
Terraform configuration for deploying Nginx ingress controller in a Kubernetes cluster
## Features
- [X] GKE support.
- [x] Automatic DNS management using Google Cloud DNS.
- [X] Let's Encrypt wildcard certificate generation using [cert-manager](https://cert-manager.readthedocs.io/en/latest/).
## Before you begin
The following prerequisites need to be installed and configured:
- [Terraform](https://www.terraform.io/downloads.html)
- [Google Cloud SDK](https://cloud.google.com/sdk/install) (run `gcloud components update` to update SDK to the latest version if you already have it installed)
- GKE cluster must be created (you may use [this Terraform configuration](https://github.com/Wi3ard/gke-cluster-terraform) to create it)
- [Helm](https://helm.sh/) needs to be installed in the Kubernetes cluster
### GCE configuration
`GOOGLE_APPLICATION_CREDENTIALS` environment variable must be configured to point to GCE JSON key file. For example (PowerShell):
```powershell
$env:GOOGLE_APPLICATION_CREDENTIALS = "C:/mykeys/gce-default.json"
```
## Terraform initialization
Copy [terraform.tfvars.example](terraform.tfvars.example) file to `terraform.tfvars` and set input variables values as per your needs. Then initialize Terraform with `init` command:
```shell
terraform init -backend-config "bucket=$BUCKET_NAME" -backend-config "prefix=apps/$CLUSTER_NAME/nginx-ingress"
```
- `$REGION` should be replaced with a region name.
- `$CLUSTER_NAME` should be replaced with the name of a cluster.
- `$BUCKET_NAME` should be replaced with a GCS Terraform state storage bucket name.
## Installation
To apply the Terraform plan, run:
```shell
terraform apply
```
## Uninstall and cleanup
To remove the Terraform plan, run:
```shell
terraform destroy
```
The `cert-manager` Helm chart included in this plan creates several [Custom Resource Definitions](https://docs.okd.io/latest/admin_guide/custom_resource_definitions.html) that have to be deleted manually:
```shell
$ kubectl delete crd certificates.certmanager.k8s.io -n kube-system
customresourcedefinition.apiextensions.k8s.io "certificates.certmanager.k8s.io" deleted
$ kubectl delete crd clusterissuers.certmanager.k8s.io -n kube-system
customresourcedefinition.apiextensions.k8s.io "clusterissuers.certmanager.k8s.io" deleted
$ kubectl delete crd issuers.certmanager.k8s.io -n kube-system
customresourcedefinition.apiextensions.k8s.io "issuers.certmanager.k8s.io" deleted
```