forked from ocp-power-automation/ocp4-upi-powervm
-
Notifications
You must be signed in to change notification settings - Fork 0
/
ocp.tf
182 lines (169 loc) · 8.86 KB
/
ocp.tf
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
################################################################
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
# http://www.apache.org/licenses/LICENSE-2.0
#
# Licensed Materials - Property of IBM
#
# ©Copyright IBM Corp. 2020
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
# See the License for the specific language governing permissions and
# limitations under the License.
#
################################################################
provider "openstack" {
user_name = var.user_name
password = var.password
tenant_name = var.tenant_name
domain_name = var.domain_name
auth_url = var.auth_url
insecure = var.insecure
}
resource "random_id" "label" {
count = var.cluster_id == "" ? 1 : 0
byte_length = "2" # Since we use the hex, the word lenght would double
prefix = "${var.cluster_id_prefix}-"
}
locals {
# Generates cluster_id as combination of cluster_id_prefix + (random_id or user-defined cluster_id)
cluster_id = var.cluster_id == "" ? random_id.label[0].hex : (var.cluster_id_prefix == ""? var.cluster_id : "${var.cluster_id_prefix}-${var.cluster_id}")
storage_type = lookup(var.bastion, "count", 1) > 1 ? "none" : var.storage_type
}
module "bastion" {
source = "./modules/1_bastion"
cluster_domain = var.cluster_domain
cluster_id = local.cluster_id
bastion = var.bastion
bastion_port_ids = module.network.bastion_port_ids
scg_id = var.scg_id
openstack_availability_zone = var.openstack_availability_zone
rhel_username = var.rhel_username
private_key = local.private_key
public_key = local.public_key
create_keypair = local.create_keypair
keypair_name = "${local.cluster_id}-keypair"
ssh_agent = var.ssh_agent
connection_timeout = var.connection_timeout
jump_host = var.jump_host
rhel_subscription_username = var.rhel_subscription_username
rhel_subscription_password = var.rhel_subscription_password
rhel_subscription_org = var.rhel_subscription_org
rhel_subscription_activationkey = var.rhel_subscription_activationkey
ansible_repo_name = var.ansible_repo_name
storage_type = local.storage_type
volume_size = var.volume_size
volume_storage_template = var.volume_storage_template
setup_squid_proxy = var.setup_squid_proxy
proxy = var.proxy
}
module "network" {
source = "./modules/2_network"
cluster_id = local.cluster_id
network_name = var.network_name
fixed_ip_v4 = lookup(var.bastion, "fixed_ip_v4", "")
bastion_count = lookup(var.bastion, "count", 1)
bootstrap = var.bootstrap
master = var.master
worker = var.worker
network_type = var.network_type
}
module "helpernode" {
source = "./modules/3_helpernode"
cluster_domain = var.cluster_domain
cluster_id = local.cluster_id
dns_forwarders = var.dns_forwarders
gateway_ip = module.network.gateway_ip
cidr = module.network.cidr
allocation_pools = module.network.allocation_pools
bastion_vip = module.network.bastion_vip
bastion_ip = module.bastion.bastion_ip
rhel_username = var.rhel_username
private_key = local.private_key
ssh_agent = var.ssh_agent
connection_timeout = var.connection_timeout
jump_host = var.jump_host
bootstrap_port_ip = module.network.bootstrap_port_ip
master_port_ips = module.network.master_port_ips
worker_port_ips = module.network.worker_port_ips
bootstrap_mac = module.network.bootstrap_mac
master_macs = module.network.master_macs
worker_macs = module.network.worker_macs
openshift_install_tarball = var.openshift_install_tarball
openshift_client_tarball = var.openshift_client_tarball
enable_local_registry = var.enable_local_registry
local_registry_image = var.local_registry_image
ocp_release_tag = var.ocp_release_tag
helpernode_repo = var.helpernode_repo
helpernode_tag = var.helpernode_tag
ansible_extra_options = var.ansible_extra_options
chrony_config = var.chrony_config
chrony_config_servers = var.chrony_config_servers
pull_secret = file(coalesce(var.pull_secret_file, "/dev/null"))
}
module "nodes" {
source = "./modules/4_nodes"
bastion_ip = module.network.bastion_vip == "" ? module.bastion.bastion_ip[0] : module.network.bastion_vip
cluster_id = local.cluster_id
bootstrap = var.bootstrap
master = var.master
worker = var.worker
scg_id = var.scg_id
openstack_availability_zone = var.openstack_availability_zone
bootstrap_port_id = module.network.bootstrap_port_id
master_port_ids = module.network.master_port_ids
worker_port_ids = module.network.worker_port_ids
mount_etcd_ramdisk = var.mount_etcd_ramdisk
rhel_username = var.rhel_username
private_key = local.private_key
ssh_agent = var.ssh_agent
connection_timeout = var.connection_timeout
jump_host = var.jump_host
}
module "install" {
depends_on = [module.helpernode, module.nodes]
source = "./modules/5_install"
cluster_domain = var.cluster_domain
cluster_id = local.cluster_id
cidr = module.network.cidr
bastion_vip = module.network.bastion_vip
bastion_ip = module.bastion.bastion_ip
rhel_username = var.rhel_username
private_key = local.private_key
ssh_agent = var.ssh_agent
connection_timeout = var.connection_timeout
jump_host = var.jump_host
bootstrap_ip = module.nodes.bootstrap_ip
master_ips = module.nodes.master_ips
worker_ips = module.nodes.worker_ips
public_key = local.public_key
pull_secret = file(coalesce(var.pull_secret_file, "/dev/null"))
storage_type = local.storage_type
release_image_override = var.release_image_override
enable_local_registry = var.enable_local_registry
local_registry_image = var.local_registry_image
ocp_release_tag = var.ocp_release_tag
install_playbook_repo = var.install_playbook_repo
install_playbook_tag = var.install_playbook_tag
log_level = var.installer_log_level
ansible_extra_options = var.ansible_extra_options
rhcos_kernel_options = var.rhcos_kernel_options
sysctl_tuned_options = var.sysctl_tuned_options
sysctl_options = var.sysctl_options
match_array = var.match_array
setup_squid_proxy = var.setup_squid_proxy
proxy = var.proxy
upgrade_version = var.upgrade_version
upgrade_channel = var.upgrade_channel
upgrade_image = var.upgrade_image
upgrade_pause_time = var.upgrade_pause_time
upgrade_delay_time = var.upgrade_delay_time
chrony_config = var.chrony_config
chrony_config_servers = var.chrony_config_servers
cni_network_provider = var.cni_network_provider
}