-
Notifications
You must be signed in to change notification settings - Fork 11
/
main.tf
120 lines (93 loc) · 3.09 KB
/
main.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
resource "azurerm_resource_group" "azure_k8s" {
location = var.location
name = local.common_name
tags = var.tags
}
resource "azurerm_container_registry" "k8s_acr" {
location = var.location
name = var.acr
resource_group_name = azurerm_resource_group.azure_k8s.name
sku = "Premium"
georeplication_locations = ["North Europe", "West Europe"]
}
resource "random_id" "azure_random" {
byte_length = 8
}
resource "azurerm_log_analytics_workspace" "azure_workspace" {
location = var.location
name = "k8s-workspace-${random_id.azure_random.hex}"
resource_group_name = azurerm_resource_group.azure_k8s.name
sku = "PerGB2018"
retention_in_days = 30
}
resource "azurerm_log_analytics_solution" "azure_logsolution" {
location = azurerm_resource_group.azure_k8s.location
resource_group_name = azurerm_resource_group.azure_k8s.name
solution_name = "ContainerInsights"
workspace_name = azurerm_log_analytics_workspace.azure_workspace.name
workspace_resource_id = azurerm_log_analytics_workspace.azure_workspace.id
plan {
publisher = "Microsoft"
product = "OMSGallery/ContainerInsights"
}
}
resource "azurerm_virtual_network" "vnet" {
address_space = [element(var.address_space, 0)]
location = var.location
name = "${local.common_name}-vnet"
resource_group_name = azurerm_resource_group.azure_k8s.name
}
resource "azurerm_subnet" "subnet" {
address_prefix = element(var.address_space, 1)
name = "${local.common_name}-subnet"
resource_group_name = azurerm_resource_group.azure_k8s.name
virtual_network_name = azurerm_virtual_network.vnet.name
}
resource "azurerm_public_ip" "public_ip" {
location = var.location
name = "${local.common_name}-public_ip"
resource_group_name = azurerm_resource_group.azure_k8s.name
allocation_method = "Static"
sku = element(var.publicip_sku,1 )
}
resource "azurerm_kubernetes_cluster" "k8s_cluster" {
dns_prefix = var.dns_prefix
location = var.location
kubernetes_version = "1.16.7"
name = "${local.common_name}-k8scluster"
resource_group_name = azurerm_resource_group.azure_k8s.name
default_node_pool {
name = element(var.agent_pool,0)
vm_size = element(var.agent_pool,1)
node_count = 2
availability_zones = ["1","2"]
}
service_principal {
client_id = var.client_id
client_secret = var.client_secret
}
network_profile {
network_plugin = element(var.network_profile, 0)
load_balancer_sku = element(var.network_profile, 2)
network_policy = element(var.network_profile, 0)
}
role_based_access_control {
enabled = true
}
addon_profile {
oms_agent {
enabled = true
log_analytics_workspace_id = azurerm_log_analytics_workspace.azure_workspace.id
}
kube_dashboard {
enabled = true
}
}
lifecycle {
ignore_changes = [
windows_profile,
default_node_pool,
]
}
tags = var.tags
}