Skip to content

TsuyoshiUshio/TerratestSpikeForAzure

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits

app

app

 
 

app_gateway

app_gateway

 
 

cluster

cluster

 
 

cluster_rbac

cluster_rbac

 
 

helm

helm

 
 

kubernetes_basic

kubernetes_basic

 
 

kubernetes_ingress

kubernetes_ingress

 
 

kubernetes_rbac

kubernetes_rbac

 
 

test

test

 
 

.gitignore

.gitignore

 
 

Readme.md

Readme.md

 
 

Repository files navigation

Terratest samples for Azure

Terratest is a great tool to test infrastructure. However, the basic sample doesn't seem work on Azure environment. As a begineer, it might be painful if you can't run hello world stuff.

I create this repo for my self learning. It might be helpful for terratest begineer for Azure.

For the Cloud agnostic terratest Getting Started, You can refer:

This repo introduces several samples:

For the kubernetes basic, rbac, and helm are based on the original repo's sample. The original sample seems using NodePort with AWS enviornment. I switch the sample to LoadBalancer and change the code.

Prerequisite for the sample

I tested both Linux and Windows, however, it might on Mac as well.

terraform AKS deployment

Login using Azure CLI.

$ az login

In case you are using Azure CLI on WSL

$ az login --use-device

Create a service principal

$ az ad sp create-for-rbac

Configure Environment Variables

It will be refered from terraform. TF_VAR_name used to set variables for terraform. The ARM_SUBSCRIPTION_ID is required for the test.

$ export ARM_SUBSCRIPTION_ID={YOUR_SUBSCRIPTION_ID}
$ export TF_VAR_client_id={YOUR_SERVICE_PRINICIPAL_APP_ID} 
$ export TF_VAR_client_secret={YOUR_SERVICE_PRINICIPAL_SECRET}

It also requires ~/.ssh/id_rsa.pub as public key. If you don't have it on that directory, modify the variables.tf to point your public key.

Create a storage account

This is an example of using bash. However, you can do similar things on windows, or using Azure Portal. Just create a storage account and container for saving state of terraform. Change the Resource Group. The container name should be aksstate.

$ RESOURCE_GROUP=MyResourceGroup
$ STORAGE_ACCOUNT_NAME=YOUR_STORAGE_ACCOUNT_NAME
$ CONTAINER_NAME=aksstate
$ az group create -n $RESOURCE_GROUP -l westus
$ az storage account create -n $STORAGE_ACCOUNT_NAME -g $RESOURCE_GROUP -l westus
$ AZURE_STORAGE_KEY=$(az.cmd storage account keys list --account-name tsushistorageaccount --resource-group MyResourceGroup | jq -r .[0].value)
$ az storage container create --name $CONTAINER_NAME --account-name $STORAGE_ACCOUNT_NAME --account-key "$AZURE_STORAGE_KEY"

Edit Backend config

Go to test/aks_test.go then edit this part to fit your resource group and storage account name. Just chenge storage_account_name and resource_group_name.

		BackendConfig: map[string]interface{}{
			"storage_account_name": "tsushistatetf",
			"resource_group_name":  "RemoveTerraform",
			"container_name":       "aksstate",
			"key":                  "codelab.microsoft.tfstate",
		},

Run test

initialize the go module, then run the test.

$ cd test
$ go mod init github.com/TsuyoshiUshio/TerratestSpikeForAzure
$ go test -v -timeout 30m aks_test.go test_helper.go

This will deploy an AKS cluster that defined under the cluster directory using terraform. And execute the test if the cluster is up and running.

If you want to remove the cluster after the test, enable this line on aks_test.go

// defer terraform.Destroy(t, terraformOptions)

kubernetes basic

This sample deploy the nginx by the yaml file under kubernetes_basic directory. You ndeed AKS cluster in advance. and put the kubeconfig file under cluster directory. If you don't have an AKS cluster, execute aks_test.go. You can refer terraform AKS deployment steps. That script create kubeconfig for you under the cluster dir. kubeconfig is gitignored.

If you already has a AKS cluster and culster/kubeconfig file, run test.

$ go test -v -timeout 30m kubernetes_basic_test.go test_helper.go

kubernetes rbac

This sample requires AKS cluster with RBAC enabled. the target yaml file is under kubernetes_rbac. It requires AKS cluster and cluster_rbac/kubeconfig file

$ go test -v timeout 30m kubernetes_rbac_test.go test_helper.go

If you want to deploy cluster_rbac you can follow the instruction terraform RBAC AKS deployment.

helm

This sample is deploy helm chart(v2). It requires AKS cluster with tiller installded. cluster_rbac script automatically install tiller for you.

$ go test -v -timeout 30m helm_test.go test_helper.go

ingress integration testing on RBAC cluster

This sample is a test in real world. I automated this tutorial Create an ingress controller in Azure Kubernetes Service (AKS) to understand terratest deeply.

If you want to deploy AKS cluster with RBAC you can follow the instruction terraform RBAC AKS deployment. It requires, helm and kubectl is already installed also, AKS cluster for RBAC installed.

$ go test -v timeout 30m kubernetes_ingress_integration_test.go test_helper.go

application gateway testing

This sample is a test against application gateway. It provisions backend VM and Application gateway. This sample doesn't require backend config. For this scenario, I extend timeout since it takes more than 30 min to destroy/create resources.

$ export ARM_SUBSCRIPTION_ID={YOUR_SUBSCRIPTION_ID}
$ go test -v -timeout 60m app_gateway_test.go test_helper.go

About

Spike Solution for self learning of terratest with Azure

Resources

Readme
Activity

Stars

6 stars

Watchers

2 watching

Forks

4 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages