From 6cc5b38a2e7d32f4bf5a20cdf5440b50e89bf614 Mon Sep 17 00:00:00 2001
From: Cristian Calin <6627509+cristicalin@users.noreply.github.com>
Date: Wed, 27 Apr 2022 20:34:13 +0300
Subject: [PATCH] [terraform] use modern day equinix metal provider (#8748)
* [terraform] use modern day equinix metal provider
* [CI] ensure packet job tests metal
---
.gitlab-ci/terraform.yml | 4 +--
contrib/terraform/{packet => metal}/README.md | 14 ++++-----
contrib/terraform/{packet => metal}/hosts | 0
.../terraform/{packet => metal}/kubespray.tf | 29 +++++++++----------
contrib/terraform/metal/output.tf | 16 ++++++++++
.../sample-inventory/cluster.tfvars | 2 +-
.../sample-inventory/group_vars | 0
.../terraform/{packet => metal}/variables.tf | 16 +++++-----
.../terraform/{packet => metal}/versions.tf | 4 +--
contrib/terraform/packet/output.tf | 16 ----------
contrib/terraform/terraform.py | 16 +++++-----
11 files changed, 58 insertions(+), 59 deletions(-)
rename contrib/terraform/{packet => metal}/README.md (96%)
rename contrib/terraform/{packet => metal}/hosts (100%)
rename contrib/terraform/{packet => metal}/kubespray.tf (74%)
create mode 100644 contrib/terraform/metal/output.tf
rename contrib/terraform/{packet => metal}/sample-inventory/cluster.tfvars (95%)
rename contrib/terraform/{packet => metal}/sample-inventory/group_vars (100%)
rename contrib/terraform/{packet => metal}/variables.tf (78%)
rename contrib/terraform/{packet => metal}/versions.tf (57%)
delete mode 100644 contrib/terraform/packet/output.tf
diff --git a/.gitlab-ci/terraform.yml b/.gitlab-ci/terraform.yml
index 91874091f..8ffb11163 100644
--- a/.gitlab-ci/terraform.yml
+++ b/.gitlab-ci/terraform.yml
@@ -60,11 +60,11 @@ tf-validate-openstack:
PROVIDER: openstack
CLUSTER: $CI_COMMIT_REF_NAME
-tf-validate-packet:
+tf-validate-metal:
extends: .terraform_validate
variables:
TF_VERSION: $TERRAFORM_VERSION
- PROVIDER: packet
+ PROVIDER: metal
CLUSTER: $CI_COMMIT_REF_NAME
tf-validate-aws:
diff --git a/contrib/terraform/packet/README.md b/contrib/terraform/metal/README.md
similarity index 96%
rename from contrib/terraform/packet/README.md
rename to contrib/terraform/metal/README.md
index 5e9bb1598..a21aed461 100644
--- a/contrib/terraform/packet/README.md
+++ b/contrib/terraform/metal/README.md
@@ -60,9 +60,9 @@ Terraform will be used to provision all of the Equinix Metal resources with base
Create an inventory directory for your cluster by copying the existing sample and linking the `hosts` script (used to build the inventory based on Terraform state):
```ShellSession
-cp -LRp contrib/terraform/packet/sample-inventory inventory/$CLUSTER
+cp -LRp contrib/terraform/metal/sample-inventory inventory/$CLUSTER
cd inventory/$CLUSTER
-ln -s ../../contrib/terraform/packet/hosts
+ln -s ../../contrib/terraform/metal/hosts
```
This will be the base for subsequent Terraform commands.
@@ -101,7 +101,7 @@ This helps when identifying which hosts are associated with each cluster.
While the defaults in variables.tf will successfully deploy a cluster, it is recommended to set the following values:
- cluster_name = the name of the inventory directory created above as $CLUSTER
-- packet_project_id = the Equinix Metal Project ID associated with the Equinix Metal API token above
+- metal_project_id = the Equinix Metal Project ID associated with the Equinix Metal API token above
#### Enable localhost access
@@ -119,7 +119,7 @@ Once the Kubespray playbooks are run, a Kubernetes configuration file will be wr
In the cluster's inventory folder, the following files might be created (either by Terraform
or manually), to prevent you from pushing them accidentally they are in a
-`.gitignore` file in the `terraform/packet` directory :
+`.gitignore` file in the `terraform/metal` directory :
- `.terraform`
- `.tfvars`
@@ -135,7 +135,7 @@ plugins. This is accomplished as follows:
```ShellSession
cd inventory/$CLUSTER
-terraform init ../../contrib/terraform/packet
+terraform init ../../contrib/terraform/metal
```
This should finish fairly quickly telling you Terraform has successfully initialized and loaded necessary modules.
@@ -146,7 +146,7 @@ You can apply the Terraform configuration to your cluster with the following com
issued from your cluster's inventory directory (`inventory/$CLUSTER`):
```ShellSession
-terraform apply -var-file=cluster.tfvars ../../contrib/terraform/packet
+terraform apply -var-file=cluster.tfvars ../../contrib/terraform/metal
export ANSIBLE_HOST_KEY_CHECKING=False
ansible-playbook -i hosts ../../cluster.yml
```
@@ -156,7 +156,7 @@ ansible-playbook -i hosts ../../cluster.yml
You can destroy your new cluster with the following command issued from the cluster's inventory directory:
```ShellSession
-terraform destroy -var-file=cluster.tfvars ../../contrib/terraform/packet
+terraform destroy -var-file=cluster.tfvars ../../contrib/terraform/metal
```
If you've started the Ansible run, it may also be a good idea to do some manual cleanup:
diff --git a/contrib/terraform/packet/hosts b/contrib/terraform/metal/hosts
similarity index 100%
rename from contrib/terraform/packet/hosts
rename to contrib/terraform/metal/hosts
diff --git a/contrib/terraform/packet/kubespray.tf b/contrib/terraform/metal/kubespray.tf
similarity index 74%
rename from contrib/terraform/packet/kubespray.tf
rename to contrib/terraform/metal/kubespray.tf
index 819cc707b..c8019e5c6 100644
--- a/contrib/terraform/packet/kubespray.tf
+++ b/contrib/terraform/metal/kubespray.tf
@@ -1,16 +1,15 @@
# Configure the Equinix Metal Provider
-provider "packet" {
- version = "~> 2.0"
+provider "metal" {
}
-resource "packet_ssh_key" "k8s" {
+resource "metal_ssh_key" "k8s" {
count = var.public_key_path != "" ? 1 : 0
name = "kubernetes-${var.cluster_name}"
public_key = chomp(file(var.public_key_path))
}
-resource "packet_device" "k8s_master" {
- depends_on = [packet_ssh_key.k8s]
+resource "metal_device" "k8s_master" {
+ depends_on = [metal_ssh_key.k8s]
count = var.number_of_k8s_masters
hostname = "${var.cluster_name}-k8s-master-${count.index + 1}"
@@ -18,12 +17,12 @@ resource "packet_device" "k8s_master" {
facilities = [var.facility]
operating_system = var.operating_system
billing_cycle = var.billing_cycle
- project_id = var.packet_project_id
+ project_id = var.metal_project_id
tags = ["cluster-${var.cluster_name}", "k8s_cluster", "kube_control_plane", "etcd", "kube_node"]
}
-resource "packet_device" "k8s_master_no_etcd" {
- depends_on = [packet_ssh_key.k8s]
+resource "metal_device" "k8s_master_no_etcd" {
+ depends_on = [metal_ssh_key.k8s]
count = var.number_of_k8s_masters_no_etcd
hostname = "${var.cluster_name}-k8s-master-${count.index + 1}"
@@ -31,12 +30,12 @@ resource "packet_device" "k8s_master_no_etcd" {
facilities = [var.facility]
operating_system = var.operating_system
billing_cycle = var.billing_cycle
- project_id = var.packet_project_id
+ project_id = var.metal_project_id
tags = ["cluster-${var.cluster_name}", "k8s_cluster", "kube_control_plane"]
}
-resource "packet_device" "k8s_etcd" {
- depends_on = [packet_ssh_key.k8s]
+resource "metal_device" "k8s_etcd" {
+ depends_on = [metal_ssh_key.k8s]
count = var.number_of_etcd
hostname = "${var.cluster_name}-etcd-${count.index + 1}"
@@ -44,12 +43,12 @@ resource "packet_device" "k8s_etcd" {
facilities = [var.facility]
operating_system = var.operating_system
billing_cycle = var.billing_cycle
- project_id = var.packet_project_id
+ project_id = var.metal_project_id
tags = ["cluster-${var.cluster_name}", "etcd"]
}
-resource "packet_device" "k8s_node" {
- depends_on = [packet_ssh_key.k8s]
+resource "metal_device" "k8s_node" {
+ depends_on = [metal_ssh_key.k8s]
count = var.number_of_k8s_nodes
hostname = "${var.cluster_name}-k8s-node-${count.index + 1}"
@@ -57,7 +56,7 @@ resource "packet_device" "k8s_node" {
facilities = [var.facility]
operating_system = var.operating_system
billing_cycle = var.billing_cycle
- project_id = var.packet_project_id
+ project_id = var.metal_project_id
tags = ["cluster-${var.cluster_name}", "k8s_cluster", "kube_node"]
}
diff --git a/contrib/terraform/metal/output.tf b/contrib/terraform/metal/output.tf
new file mode 100644
index 000000000..262d91bb7
--- /dev/null
+++ b/contrib/terraform/metal/output.tf
@@ -0,0 +1,16 @@
+output "k8s_masters" {
+ value = metal_device.k8s_master.*.access_public_ipv4
+}
+
+output "k8s_masters_no_etc" {
+ value = metal_device.k8s_master_no_etcd.*.access_public_ipv4
+}
+
+output "k8s_etcds" {
+ value = metal_device.k8s_etcd.*.access_public_ipv4
+}
+
+output "k8s_nodes" {
+ value = metal_device.k8s_node.*.access_public_ipv4
+}
+
diff --git a/contrib/terraform/packet/sample-inventory/cluster.tfvars b/contrib/terraform/metal/sample-inventory/cluster.tfvars
similarity index 95%
rename from contrib/terraform/packet/sample-inventory/cluster.tfvars
rename to contrib/terraform/metal/sample-inventory/cluster.tfvars
index f5f953e0d..f167aeb76 100644
--- a/contrib/terraform/packet/sample-inventory/cluster.tfvars
+++ b/contrib/terraform/metal/sample-inventory/cluster.tfvars
@@ -2,7 +2,7 @@
cluster_name = "mycluster"
# Your Equinix Metal project ID. See hhttps://metal.equinix.com/developers/docs/accounts/
-packet_project_id = "Example-API-Token"
+metal_project_id = "Example-API-Token"
# The public SSH key to be uploaded into authorized_keys in bare metal Equinix Metal nodes provisioned
# leave this value blank if the public key is already setup in the Equinix Metal project
diff --git a/contrib/terraform/packet/sample-inventory/group_vars b/contrib/terraform/metal/sample-inventory/group_vars
similarity index 100%
rename from contrib/terraform/packet/sample-inventory/group_vars
rename to contrib/terraform/metal/sample-inventory/group_vars
diff --git a/contrib/terraform/packet/variables.tf b/contrib/terraform/metal/variables.tf
similarity index 78%
rename from contrib/terraform/packet/variables.tf
rename to contrib/terraform/metal/variables.tf
index 67af8e4a8..f0c9b2889 100644
--- a/contrib/terraform/packet/variables.tf
+++ b/contrib/terraform/metal/variables.tf
@@ -2,12 +2,12 @@ variable "cluster_name" {
default = "kubespray"
}
-variable "packet_project_id" {
+variable "metal_project_id" {
description = "Your Equinix Metal project ID. See https://metal.equinix.com/developers/docs/accounts/"
}
variable "operating_system" {
- default = "ubuntu_16_04"
+ default = "ubuntu_20_04"
}
variable "public_key_path" {
@@ -24,23 +24,23 @@ variable "facility" {
}
variable "plan_k8s_masters" {
- default = "c2.medium.x86"
+ default = "c3.small.x86"
}
variable "plan_k8s_masters_no_etcd" {
- default = "c2.medium.x86"
+ default = "c3.small.x86"
}
variable "plan_etcd" {
- default = "c2.medium.x86"
+ default = "c3.small.x86"
}
variable "plan_k8s_nodes" {
- default = "c2.medium.x86"
+ default = "c3.medium.x86"
}
variable "number_of_k8s_masters" {
- default = 0
+ default = 1
}
variable "number_of_k8s_masters_no_etcd" {
@@ -52,6 +52,6 @@ variable "number_of_etcd" {
}
variable "number_of_k8s_nodes" {
- default = 0
+ default = 1
}
diff --git a/contrib/terraform/packet/versions.tf b/contrib/terraform/metal/versions.tf
similarity index 57%
rename from contrib/terraform/packet/versions.tf
rename to contrib/terraform/metal/versions.tf
index d222f2bdd..637203f23 100644
--- a/contrib/terraform/packet/versions.tf
+++ b/contrib/terraform/metal/versions.tf
@@ -2,8 +2,8 @@
terraform {
required_version = ">= 0.12"
required_providers {
- packet = {
- source = "terraform-providers/packet"
+ metal = {
+ source = "equinix/metal"
}
}
}
diff --git a/contrib/terraform/packet/output.tf b/contrib/terraform/packet/output.tf
deleted file mode 100644
index c27b9b915..000000000
--- a/contrib/terraform/packet/output.tf
+++ /dev/null
@@ -1,16 +0,0 @@
-output "k8s_masters" {
- value = packet_device.k8s_master.*.access_public_ipv4
-}
-
-output "k8s_masters_no_etc" {
- value = packet_device.k8s_master_no_etcd.*.access_public_ipv4
-}
-
-output "k8s_etcds" {
- value = packet_device.k8s_etcd.*.access_public_ipv4
-}
-
-output "k8s_nodes" {
- value = packet_device.k8s_node.*.access_public_ipv4
-}
-
diff --git a/contrib/terraform/terraform.py b/contrib/terraform/terraform.py
index 537dc62f4..f2511c373 100755
--- a/contrib/terraform/terraform.py
+++ b/contrib/terraform/terraform.py
@@ -195,8 +195,8 @@ def parse_bool(string_form):
raise ValueError('could not convert %r to a bool' % string_form)
-@parses('packet_device')
-def packet_device(resource, tfvars=None):
+@parses('metal_device')
+def metal_device(resource, tfvars=None):
raw_attrs = resource['primary']['attributes']
name = raw_attrs['hostname']
groups = []
@@ -213,14 +213,14 @@ def packet_device(resource, tfvars=None):
'state': raw_attrs['state'],
# ansible
'ansible_ssh_host': raw_attrs['network.0.address'],
- 'ansible_ssh_user': 'root', # Use root by default in packet
+ 'ansible_ssh_user': 'root', # Use root by default in metal
# generic
'ipv4_address': raw_attrs['network.0.address'],
'public_ipv4': raw_attrs['network.0.address'],
'ipv6_address': raw_attrs['network.1.address'],
'public_ipv6': raw_attrs['network.1.address'],
'private_ipv4': raw_attrs['network.2.address'],
- 'provider': 'packet',
+ 'provider': 'metal',
}
if raw_attrs['operating_system'] == 'flatcar_stable':
@@ -228,10 +228,10 @@ def packet_device(resource, tfvars=None):
attrs.update({'ansible_ssh_user': 'core'})
# add groups based on attrs
- groups.append('packet_operating_system=' + attrs['operating_system'])
- groups.append('packet_locked=%s' % attrs['locked'])
- groups.append('packet_state=' + attrs['state'])
- groups.append('packet_plan=' + attrs['plan'])
+ groups.append('metal_operating_system=' + attrs['operating_system'])
+ groups.append('metal_locked=%s' % attrs['locked'])
+ groups.append('metal_state=' + attrs['state'])
+ groups.append('metal_plan=' + attrs['plan'])
# groups specific to kubespray
groups = groups + attrs['tags']
--
GitLab