Remove ansible and configure instance with user_data

Author: rajat-tomar

main.tf

@@ -1,28 +1,36 @@
-resource "aws_key_pair" "ansible" {
-  public_key = "ssh-rsa AAAAB3NzaC1yc2EAAAADAQABAAABgQDMI/oUO7c6QPEUhjQktSRnLDp6VX1IRBzQH9CB4l30C9BBKSS2rhLBkEYopJQkKbFeWbwxEMPL/QWdsOAQnsCTujGAbUMZ8Yepe6kk22nOsvIjsfO+yxptJOUxX3xFmWp2aDr/A/wxAopr80vsI9QpaP86DYSZUimlUxoXS2JjPHbpPC2UICj7FVLqmM4BjxTJUuFoy4664htdtuNNTO5X98DRWfHsZj9mzMeKcxgf7sV1t8el3lC0Yi2qoOs+K7iSlA81YFhc9r7rs+BRZSDrBykiu5ImFdasfjaG7q2eUG0ypO22FT8FPIz7c3CZTTX/I+W2BBWFQu3YlCjUKFuxGpL6ApNQMNsvzvKsSdJMsVFKREgMkRR9JmbTz52qEdc2zuSROOrH0Ov/NVko4Daj+B3seUeCqZTM4Uy7/aP+k/ZsHijOFs4X3u69gdN8CH8/BVUefknfNksc317E40F3WeWfMmyyBv0tKKc8OffFu0tdddG2BKXm/f4mQM7fD5s= ansible"
-  key_name   = "ansible"
-
+locals {
   tags = {
-    Name      = "ansible"
+    Name      = "gitlab-docker-runner"
     ManagedBy = "Terraform"
   }
+  runner_user_data = templatefile("templates/runner.tftpl", {
+    gitlab_url                = var.gitlab_url
+    runner_registration_token = var.runner_registration_token
+    docker_image              = var.docker_image
+    runner_description        = var.runner_description
+    runner_tags               = "\"${join(", ", var.runner_tags)}\""
+    run_untagged_jobs         = var.run_untagged_jobs
+    runner_locked             = var.runner_locked
+  })
 }
 
-resource "aws_instance" "terraform-gitlab-docker-runner" {
-  ami                         = "ami-074cc9cf7a6bfbd02"
-  instance_type               = "c6g.medium"
-  count                       = 2
-  key_name                    = aws_key_pair.ansible.id
-  vpc_security_group_ids      = ["sg-0ecbf0cc9789639b8"]
-  subnet_id                   = "subnet-0add22dd44185ea41"
-  associate_public_ip_address = false
+resource "aws_key_pair" "gitlab_docker_runner" {
+  count      = var.ssh_public_key != null ? 1 : 0
+  key_name   = "gitlab-docker-runner"
+  public_key = var.ssh_public_key
 
-  provisioner "local-exec" {
-    command = "ansible-playbook playbooks/gitlab_runner.yaml -i ${self.private_ip}, -u ubuntu --private-key '/Users/rajattomar/.ssh/ansible/id_rsa' --extra-vars 'ip=${self.private_ip}'"
-  }
+  tags = local.tags
+}
 
-  tags = {
-    Name      = "terraform-gitlab-docker-runner"
-    ManagedBy = "Terraform"
-  }
+resource "aws_instance" "gitlab_docker_runner" {
+  count                       = var.instance_count
+  ami                         = var.ami_id
+  instance_type               = var.instance_type
+  key_name                    = var.ssh_public_key != null ? aws_key_pair.gitlab_docker_runner[0].key_name : null
+  vpc_security_group_ids      = var.vpc_security_group_ids
+  subnet_id                   = var.subnet_id
+  user_data                   = local.runner_user_data
+  user_data_replace_on_change = var.user_data_replace_on_change
+
+  tags = local.tags
 }

playbooks/gitlab_runner.yaml

@@ -0,0 +1,13 @@
+#! /bin/bash
+
+sudo gitlab-runner register \
+  --non-interactive \
+  --url ${gitlab_url} \
+  --registration-token ${runner_registration_token} \
+  --executor docker \
+  --docker-image ${docker_image} \
+  --description ${runner_description} \
+  --tag-list ${runner_tags} \
+  --run-untagged=${run_untagged_jobs} \
+  --locked=${runner_locked} \
+  --access-level="not_protected"

templates/runner.tftpl

@@ -0,0 +1,83 @@
+variable "ami_id" {
+  description = "AMI to use for the instance"
+  type        = string
+  default     = "ami-01783a07b28906745"
+}
+
+variable "instance_type" {
+  description = "Type of instance to provision"
+  type        = string
+  default     = "t2.micro"
+}
+
+variable "instance_count" {
+  description = "Number of instances to provision"
+  type        = number
+  default     = 2
+}
+
+variable "vpc_security_group_ids" {
+  description = "List of security group IDs to associate"
+  type        = list(string)
+  default     = []
+}
+
+variable "subnet_id" {
+  description = "VPC Subnet ID to launch in"
+  type        = string
+  default     = ""
+}
+
+variable "user_data_replace_on_change" {
+  description = "Recreate the instance when the user data changes"
+  type        = bool
+  default     = true
+}
+
+variable "gitlab_url" {
+  description = "Gitlab URL"
+  type        = string
+  default     = ""
+}
+
+variable "runner_registration_token" {
+  description = "Gitlab registration token"
+  type        = string
+  default     = ""
+}
+
+variable "docker_image" {
+  description = "Docker image to use"
+  type        = string
+  default     = "alpine"
+}
+
+variable "runner_description" {
+  description = "Description for Gitlab Runners"
+  type        = string
+  default     = "Docker Runner"
+}
+
+variable "runner_tags" {
+  description = "Runner tags"
+  type        = list(string)
+  default     = ["docker", "aws"]
+}
+
+variable "run_untagged_jobs" {
+  description = "Run untagged jobs or not"
+  type        = bool
+  default     = true
+}
+
+variable "runner_locked" {
+  description = "Lock the runner or not"
+  type        = bool
+  default     = false
+}
+
+variable "ssh_public_key" {
+  description = "SSH public key to use for the key pair"
+  type        = string
+  default     = null
+}

variables.tf

@@ -8,7 +8,3 @@ terraform {
 
   required_version = "~> 1.3.0"
 }
-
-provider "aws" {
-  region = "ap-south-1"
-}