Copy solutions to this repo from github.com/oracle/terraform-provider-oci

These solutions were copied from https://github.com/oracle/terraform-provider-oci/tree/master/docs/solutions

Author: alexng-canuck

.gitignore

@@ -6,3 +6,5 @@ id_rsa
 id_rsa.pub
 .DS_Store
 *.zip
+*.iml
+.idea

README.md

@@ -10,6 +10,6 @@ This repository provides sample/example terraform configurations and modules for
 Examples
 --------
 
-- [Oracle Cloud Infrastructure](https://github.com/oracle/terraform-provider-oci/tree/master/docs/examples)
+- [Oracle Cloud Infrastructure](examples/oci)
 - [Oracle Cloud Infrastructure Classic](examples/opc)
 - [Oracle Cloud Platform](examples/oraclepaas)

examples/README.md

@@ -5,4 +5,4 @@ Examples
 - [`oraclepaas`](./oraclepaas) examples for the Oracle Cloud Platform `oraclepaas` provider
 
 
-- [`oci`](https://github.com/oracle/terraform-provider-oci/tree/master/docs/examples) examples for the Oracle Cloud Infrastructure `oci` provider (separate repo)
+- [`oci`](./oci) examples for the Oracle Cloud Infrastructure `oci` provider

examples/oci/chef/README.md

@@ -0,0 +1,57 @@
+    #     ___  ____     _    ____ _     _____
+    #    / _ \|  _ \   / \  / ___| |   | ____|
+    #   | | | | |_) | / _ \| |   | |   |  _|
+    #   | |_| |  _ < / ___ | |___| |___| |___
+    #    \___/|_| \_/_/   \_\____|_____|_____|
+***
+## Bootstrap an instance as a Chef node
+This example shows how to use Terraform to bootstrap an OCI instance as a Chef node, register it with an existing Chef server, and run a recipe. When the plan completes, you will have a running web server with content and the correct firewall configuration.
+
+### Prerequisites
+
+* `knife` must be installed and configured in your PATH. This allows the Chef node deletion to work properly when `terraform destroy` is called.
+* Access to a Chef server to upload the example_webserver recipe to.
+
+### Using this example
+* Update env-vars with the required information. Most examples use the same set of environment variables so you only need to do this once.
+* Source env-vars
+  * `$ . env-vars`
+* Update `variables.tf` with your instance options.
+* Upload the example Chef recipe and its dependencies to your Chef server.
+  * `$ cd cookbooks/example_webserver`
+  * `$ berks install`
+  * `$ berks upload`
+* Run `terraform apply`.
+* Navigate to the public IP address (reported by Terraform, above) in your browser.
+
+### Files in the configuration
+
+#### `env-vars`
+Is used to export the environmental variables used in the configuration. These are usually authentication related, be sure to exclude this file from your version control system. It's typical to keep this file outside of the configuration.
+
+Before you plan, apply, or destroy the configuration source the file -
+`$ . env-vars`
+
+#### `compute.tf`
+Defines the compute resource. This demo connects to the running instance
+so you will need to supply public/private keys to create an ssh connection.
+**NOTE**: do not try to use your api keys, see [this doc](https://docs.us-phoenix-1.oraclecloud.com/Content/Compute/Tasks/managingkeypairs.htm)
+for more info on configuring keys.
+
+#### `./userdata/bootstrap`
+The user-data script that gets injected into the instance on launch. More information on user-data scripts can be [found at the cloud-init project.](https://cloudinit.readthedocs.io/en/latest/topics/format.html)
+
+#### `variables.tf`
+Defines the variables used in the configuration
+
+#### `datasources.tf`
+Defines the datasources used in the configuration
+
+#### `outputs.tf`
+Defines the outputs of the configuration
+
+#### `provider.tf`
+Specifies and passes authentication details to the OCI TF provider
+
+#### `./cookbooks/example_webserver/recipes/default.rb`
+Installs a web server and configures the firewall to allow inbound http and ssh connections.

examples/oci/chef/compute.tf

@@ -0,0 +1,42 @@
+resource "oci_core_instance" "TFInstance" {
+  availability_domain = "${lookup(data.oci_identity_availability_domains.ADs.availability_domains[var.AD - 1],"name")}"
+  compartment_id = "${var.compartment_ocid}"
+  display_name = "ChefNodeExample"
+  hostname_label = "instance1"
+  image = "${var.InstanceImageOCID[var.region]}"
+  shape = "${var.InstanceShape}"
+  subnet_id = "${var.SubnetOCID}"
+  metadata {
+    ssh_authorized_keys = "${var.ssh_public_key}"
+    user_data = "${base64encode(file(var.BootStrapFile))}"
+  }
+
+  timeouts {
+    create = "60m"
+  }
+
+  provisioner "chef" {
+    server_url = "${var.chef_server}"
+    node_name = "${var.chef_node_name}"
+    run_list = "${var.chef_recipes}"
+    user_name = "${var.chef_user}"
+    user_key = "${file(var.chef_key)}"
+    recreate_client = true
+    fetch_chef_certificates = true
+    connection {
+      host = "${self.public_ip}"
+      type = "ssh"
+      user = "opc"
+      private_key = "${var.ssh_private_key}"
+      timeout = "3m"
+    }
+  }
+
+  #You will need knife.rb in your current path in order for this command to complete successfully.
+  provisioner "local-exec" {
+    when = "destroy"
+    on_failure = "continue"
+    command = "knife node delete ${var.chef_node_name} -y",
+  }
+
+}

examples/oci/chef/cookbooks/example_webserver/.gitignore

@@ -0,0 +1,21 @@
+.vagrant
+*~
+*#
+.#*
+\#*#
+.*.sw[a-z]
+*.un~
+
+# Bundler
+Gemfile.lock
+bin/*
+.bundle/*
+
+# test kitchen
+.kitchen/
+.kitchen.local.yml
+
+# Chef
+Berksfile.lock
+.zero-knife.rb
+Policyfile.lock.json

examples/oci/chef/cookbooks/example_webserver/Berksfile

@@ -0,0 +1,6 @@
+# frozen_string_literal: true
+source 'https://supermarket.chef.io'
+
+metadata
+
+cookbook 'firewall', '~> 2.6.2'

examples/oci/chef/cookbooks/example_webserver/README.md

@@ -0,0 +1,4 @@
+# example_webserver
+
+This recipe installs a web server and configure the firewall to allow inbound http and ssh connections.
+

examples/oci/chef/cookbooks/example_webserver/chefignore

@@ -0,0 +1,107 @@
+# Put files/directories that should be ignored in this file when uploading
+# to a chef-server or supermarket.
+# Lines that start with '# ' are comments.
+
+# OS generated files #
+######################
+.DS_Store
+Icon?
+nohup.out
+ehthumbs.db
+Thumbs.db
+
+# SASS #
+########
+.sass-cache
+
+# EDITORS #
+###########
+\#*
+.#*
+*~
+*.sw[a-z]
+*.bak
+REVISION
+TAGS*
+tmtags
+*_flymake.*
+*_flymake
+*.tmproj
+.project
+.settings
+mkmf.log
+
+## COMPILED ##
+##############
+a.out
+*.o
+*.pyc
+*.so
+*.com
+*.class
+*.dll
+*.exe
+*/rdoc/
+
+# Testing #
+###########
+.watchr
+.rspec
+spec/*
+spec/fixtures/*
+test/*
+features/*
+examples/*
+Guardfile
+Procfile
+.kitchen*
+.rubocop.yml
+spec/*
+Rakefile
+.travis.yml
+.foodcritic
+.codeclimate.yml
+
+# SCM #
+#######
+.git
+*/.git
+.gitignore
+.gitmodules
+.gitconfig
+.gitattributes
+.svn
+*/.bzr/*
+*/.hg/*
+*/.svn/*
+
+# Berkshelf #
+#############
+Berksfile
+Berksfile.lock
+cookbooks/*
+tmp
+
+# Policyfile #
+##############
+Policyfile.rb
+Policyfile.lock.json
+
+# Cookbooks #
+#############
+CONTRIBUTING*
+CHANGELOG*
+TESTING*
+MAINTAINERS.toml
+
+# Strainer #
+############
+Colanderfile
+Strainerfile
+.colander
+.strainer
+
+# Vagrant #
+###########
+.vagrant
+Vagrantfile

examples/oci/chef/cookbooks/example_webserver/metadata.rb

@@ -0,0 +1,22 @@
+name 'example_webserver'
+maintainer 'The Authors'
+maintainer_email 'you@example.com'
+license 'All Rights Reserved'
+description 'Installs/Configures example_webserver'
+long_description 'Installs/Configures example_webserver'
+version '0.1.0'
+chef_version '>= 12.1' if respond_to?(:chef_version)
+
+depends 'firewall'
+
+# The `issues_url` points to the location where issues for this cookbook are
+# tracked.  A `View Issues` link will be displayed on this cookbook's page when
+# uploaded to a Supermarket.
+#
+# issues_url 'https://github.com/<insert_org_here>/example_webserver/issues'
+
+# The `source_url` points to the development repository for this cookbook.  A
+# `View Source` link will be displayed on this cookbook's page when uploaded to
+# a Supermarket.
+#
+# source_url 'https://github.com/<insert_org_here>/example_webserver'

examples/oci/chef/cookbooks/example_webserver/recipes/default.rb

@@ -0,0 +1,35 @@
+#
+# Cookbook:: example_webserver
+# Recipe:: default
+#
+# Copyright:: 2017, The Authors, All Rights Reserved.
+
+package "httpd" do
+  action :install
+end
+
+service "httpd" do
+  action [:enable, :start]
+end
+
+firewall 'default'
+
+# enable platform default firewall
+firewall 'default' do
+  action :install
+end
+
+firewall_rule 'http' do
+  port 80
+  command :allow
+end
+
+firewall_rule 'ssh' do
+  port 22
+  command :allow
+end
+
+# create an example index page on the web server
+file '/var/www/html/index.html' do
+  content 'Hello World!'
+end

examples/oci/chef/cookbooks/example_webserver/spec/spec_helper.rb

@@ -0,0 +1,3 @@
+# frozen_string_literal: true
+require 'chefspec'
+require 'chefspec/berkshelf'

examples/oci/chef/cookbooks/example_webserver/spec/unit/recipes/default_spec.rb

@@ -0,0 +1,22 @@
+#
+# Cookbook:: example_webserver
+# Spec:: default
+#
+# Copyright:: 2017, The Authors, All Rights Reserved.
+
+require 'spec_helper'
+
+describe 'example_webserver::default' do
+  context 'When all attributes are default, on an Ubuntu 16.04' do
+    let(:chef_run) do
+      # for a complete list of available platforms and versions see:
+      # https://github.com/customink/fauxhai/blob/master/PLATFORMS.md
+      runner = ChefSpec::ServerRunner.new(platform: 'ubuntu', version: '16.04')
+      runner.converge(described_recipe)
+    end
+
+    it 'converges successfully' do
+      expect { chef_run }.to_not raise_error
+    end
+  end
+end

examples/oci/chef/datasources.tf

@@ -0,0 +1,16 @@
+# Gets a list of Availability Domains
+data "oci_identity_availability_domains" "ADs" {
+  compartment_id = "${var.tenancy_ocid}"
+}
+
+# Gets a list of vNIC attachments on the instance
+data "oci_core_vnic_attachments" "InstanceVnics" {
+  compartment_id = "${var.compartment_ocid}" 
+  availability_domain = "${lookup(data.oci_identity_availability_domains.ADs.availability_domains[var.AD - 1],"name")}"
+  instance_id = "${oci_core_instance.TFInstance.id}"
+} 
+
+# Gets the OCID of the first (default) vNIC
+data "oci_core_vnic" "InstanceVnic" {
+  vnic_id = "${lookup(data.oci_core_vnic_attachments.InstanceVnics.vnic_attachments[0],"vnic_id")}"
+}

examples/oci/chef/env-vars

@@ -0,0 +1,29 @@
+### Authentication details
+export TF_VAR_tenancy_ocid="<tenancy OCID>"
+export TF_VAR_user_ocid="<user OCID>"
+export TF_VAR_fingerprint="<PEM key fingerprint>"
+export TF_VAR_private_key_path="<path to the private key that matches the fingerprint above>"
+
+### Region
+export TF_VAR_region="<region in which to operate, example: us-ashburn-1, us-phoenix-1>"
+
+### Compartment
+export TF_VAR_compartment_ocid="<compartment OCID>"
+
+### Public/private keys used on the instance
+export TF_VAR_ssh_public_key=$(cat <path to public key>)
+export TF_VAR_ssh_private_key=$(cat <path to private key>)
+## NOTE: These are not your api keys. More info on the right keys see
+## https://docs.us-phoenix-1.oraclecloud.com/Content/Compute/Tasks/managingkeypairs.htm
+
+## Specific to this example
+### Choose a subnet that exists in the AD and compartment you are launching the instance in
+export TF_VAR_SubnetOCID="<subnet>"
+export TF_VAR_AD="<availability domain>"
+
+# Path to Chef SSL certificate
+export TF_VAR_chef_key="<SSL certificate path>"
+export TF_VAR_chef_user="<Chef user>"
+export TF_VAR_chef_node_name="<Chef node name>"
+export TF_VAR_chef_recipes='["recipe[example_webserver::default]"]'
+export TF_VAR_chef_server="https://<Chef server IP>/organizations/<Organization>"