Make Verrazzano components configurable (#17)

* feat: added configuration of various Verrazzano components

Signed-off-by: Ali Mukadam <ali.mukadam@oracle.com>

* feat: made additional components configurable

Signed-off-by: Ali Mukadam <ali.mukadam@oracle.com>

---------

Signed-off-by: Ali Mukadam <ali.mukadam@oracle.com>

Author: hyder

docs/src/multi/pub-ep.md

@@ -169,7 +169,7 @@ Only uncomment the admin region in outputs if you happen to also run a managed c
 6. Configure the following input variables:
 
 ```terraform,editable
-configure_clusters = false
+get_kubeconfigs = false
 install_verrazzano = false
 ```
 
@@ -198,7 +198,7 @@ You will now generate the installation script.
 1. Configure the following input variables:
 
 ```terraform,editable
-configure_clusters = true
+get_kubeconfigs = true
 install_verrazzano = true
 ```
 

docs/src/single/dev.md

@@ -46,7 +46,7 @@ admin_region = {
 6. Configure the following input variables:
 
 ```
-configure_clusters = false
+get_kubeconfigs = false
 install_verrazzano = false
 ```
 ```admonish important
@@ -70,7 +70,7 @@ You will now generate the installation script.
 1. Configure the following input variables:
 
 ```
-configure_clusters = true
+get_kubeconfigs = true
 install_verrazzano = true
 ```
 

docs/src/single/production.md

@@ -45,7 +45,7 @@ admin_region = {
 6. Configure the following input variables:
 
 ```
-configure_clusters = false
+get_kubeconfigs = false
 install_verrazzano = false
 ```
 ```admonish important
@@ -69,7 +69,7 @@ You will now generate the installation script.
 1. Configure the following input variables:
 
 ```
-configure_clusters = true
+get_kubeconfigs = true
 install_verrazzano = true
 ```
 

docs/src/terraformoptions.md

@@ -32,7 +32,7 @@
 | Parameter | Description | Type        | Default |
 | --------- | ----------- | ----------- | ------- |
 | admin_region | The region parameters of the Admin cluster. In case a single cluster is created, the Admin region is used for the single cluster. | map(any)| |
-| configure_clusters | Whether to set up access to the clusters. Set to false on cluster creation. | bool | false |
+| get_kubeconfigs | Whether to set up access to the clusters. Set to false on cluster creation. | bool | false |
 | kubernetes_version | The version of Kubernetes to use. | string | v1.24.1 |
 | oke_control_plane | Whether to keep all OKE control planes public or private | public/private | public |
 | managed_clusters | A map of OCI regions where managed clusters will be created | map(bool) |  |

main.tf

@@ -79,43 +79,54 @@ module "verrazzano" {
 
   ssh_private_key_path = var.ssh_private_key_path
 
-  oke_control_plane = var.oke_control_plane
-
-  verrazzano_version = var.verrazzano_version
-
+  # verrazzano
   install_verrazzano = var.install_verrazzano
+  verrazzano_version = var.verrazzano_version
 
-  admin_region = var.admin_region
-
-  verrazzano_profile = var.verrazzano_profile
-
+  # verrazzano infrastructure
+  admin_region             = var.admin_region
+  oke_control_plane        = var.oke_control_plane
+  verrazzano_profile       = var.verrazzano_profile
   verrazzano_control_plane = var.verrazzano_control_plane
-
-  verrazzano_data_plane = var.verrazzano_data_plane
-
-  verrazzano_data_plane_id = var.verrazzano_data_plane_id
-  
+  verrazzano_data_plane    = var.verrazzano_data_plane
   verrazzano_load_balancer = var.verrazzano_load_balancer
-
-  cluster_ids = merge({ "admin" = module.admin.cluster_id }, module.clusters.cluster_ids)
-
-  int_nsg_ids = merge({ "admin" = lookup(module.admin.nsg_ids, "int_lb") }, module.clusters.int_nsg_ids)
-
-  pub_nsg_ids = merge({ "admin" = lookup(module.admin.nsg_ids, "pub_lb") }, module.clusters.pub_nsg_ids)
-
-  configure_dns = var.configure_dns
-
-  secret_id = var.secret_id
-
-  dns_zone_id = var.dns_zone_id
-
+  cluster_ids              = merge({ "admin" = module.admin.cluster_id }, module.clusters.cluster_ids)
+  int_nsg_ids              = merge({ "admin" = lookup(module.admin.nsg_ids, "int_lb") }, module.clusters.int_nsg_ids)
+  pub_nsg_ids              = merge({ "admin" = lookup(module.admin.nsg_ids, "pub_lb") }, module.clusters.pub_nsg_ids)
+
+  # verrazzano components
+  argocd                = var.argocd
+  coherence             = var.coherence
+  configure_dns         = var.configure_dns
+  console               = var.console
+  fluentd               = var.fluentd
+  grafana               = var.grafana
+  jaeger                = var.jaeger
+  kiali                 = var.kiali
+  kube_state_metrics    = var.kube_state_metrics
+  opensearch            = var.opensearch
+  opensearch_dashboards = var.opensearch_dashboards
+  prometheus            = var.prometheus
+  prometheus_operator   = var.prometheus_operator
+  rancher               = var.rancher
+  velero                = var.velero
+  weblogic_operator     = var.weblogic_operator
+
+  # dns
+  secret_id          = var.secret_id
+  dns_zone_id        = var.dns_zone_id
   dns_compartment_id = var.dns_compartment_id
+  dns_zone_name      = var.dns_zone_name
+
+  # istio
+  mesh_id     = var.mesh_id
+  istio_model = var.istio_model
 
-  dns_zone_name = var.dns_zone_name
 
   depends_on = [
     module.clusters
   ]
 
-  count = var.configure_clusters == true ? 1 : 0
+  count = tobool(var.get_kubeconfigs) ? 1 : 0
 }
+

modules/clusters/africa.tf

@@ -82,6 +82,6 @@
 #     oci.home = oci.home
 #   }
 
-#   count = lookup(var.clusters, "johannesburg") == true ? 1 : 0
+#   count = tobool(lookup(var.clusters, "johannesburg")) ? 1 : 0
 
 # }

modules/clusters/australia.tf

@@ -82,94 +82,94 @@ module "melbourne" {
     oci.home = oci.home
   }
 
-  count = lookup(var.clusters, "melbourne") == true ? 1 : 0
+  count = tobool(lookup(var.clusters, "melbourne")) ? 1 : 0
 
 }
 
-module "sydney" {
-  source  = "oracle-terraform-modules/oke/oci"
-  version = "4.5.9"
-
-  home_region = var.home_region
-  region      = local.regions["sydney"]
-
-  tenancy_id = var.tenancy_id
-
-  # general oci parameters
-  compartment_id = var.compartment_id
-  label_prefix   = var.label_prefix
-
-  # ssh keys
-  ssh_private_key_path = "~/.ssh/id_rsa"
-  ssh_public_key_path  = "~/.ssh/id_rsa.pub"
-
-  # networking
-  create_drg       = true
-  drg_display_name = "sydney"
-
-  remote_peering_connections = var.connectivity_mode == "mesh" ? { for k, v in merge({ "admin" = true }, var.clusters) : "rpc-to-${k}" => {} if tobool(v) && k != "sydney" } : { "rpc-to-admin" : {} }
-
-  nat_gateway_route_rules = concat([
-    {
-      destination       = lookup(var.admin_region, "vcn_cidr")
-      destination_type  = "CIDR_BLOCK"
-      network_entity_id = "drg"
-      description       = "To Admin"
-    }], var.connectivity_mode == "mesh" ?
-    [for c in keys(var.clusters) :
-      {
-        destination       = lookup(lookup(var.cidrs, c), "vcn")
-        destination_type  = "CIDR_BLOCK"
-        network_entity_id = "drg"
-        description       = "Routing to allow connectivity to ${title(c)} cluster"
-    } if tobool(lookup(var.clusters, c) && c != "sydney")] : []
-  )
-
-  vcn_cidrs     = [lookup(lookup(var.cidrs, lower("sydney")), "vcn")]
-  vcn_dns_label = "sydney"
-  vcn_name      = "sydney"
-
-  # bastion host
-  create_bastion_host = false
-  upgrade_bastion     = false
-
-  # operator host
-  create_operator                    = false
-  upgrade_operator                   = false
-  enable_operator_instance_principal = false
-
-
-  # oke cluster options
-  allow_worker_ssh_access     = false
-  cluster_name                = "sydney"
-  control_plane_type          = var.oke_control_plane
-  control_plane_allowed_cidrs = ["0.0.0.0/0"]
-  kubernetes_version          = var.kubernetes_version
-  pods_cidr                   = lookup(lookup(var.cidrs, lower("sydney")), "pods")
-  services_cidr               = lookup(lookup(var.cidrs, lower("sydney")), "services")
-
-
-  # node pools
-  kubeproxy_mode = "ipvs"  
-  node_pools = local.managed_nodepools
-  cloudinit_nodepool_common = var.cloudinit_nodepool_common  
-
-  node_pool_image_type = "oke"
-
-  # oke load balancers
-  load_balancers            = "both"
-  preferred_load_balancer   = "public"
-  internal_lb_allowed_cidrs = [lookup(var.admin_region, "vcn_cidr")]
-  internal_lb_allowed_ports = var.connectivity_mode == "mesh" ? [80, 443, 15012, 15017, 15021, 15443] : [80, 443]
-  public_lb_allowed_cidrs   = ["0.0.0.0/0"]
-  public_lb_allowed_ports   = [80, 443]
-
-  providers = {
-    oci      = oci.sydney
-    oci.home = oci.home
-  }
-
-  count = lookup(var.clusters, "sydney") == true ? 1 : 0
-
-}
+# module "sydney" {
+#   source  = "oracle-terraform-modules/oke/oci"
+#   version = "4.5.9"
+
+#   home_region = var.home_region
+#   region      = local.regions["sydney"]
+
+#   tenancy_id = var.tenancy_id
+
+#   # general oci parameters
+#   compartment_id = var.compartment_id
+#   label_prefix   = var.label_prefix
+
+#   # ssh keys
+#   ssh_private_key_path = "~/.ssh/id_rsa"
+#   ssh_public_key_path  = "~/.ssh/id_rsa.pub"
+
+#   # networking
+#   create_drg       = true
+#   drg_display_name = "sydney"
+
+#   remote_peering_connections = var.connectivity_mode == "mesh" ? { for k, v in merge({ "admin" = true }, var.clusters) : "rpc-to-${k}" => {} if tobool(v) && k != "sydney" } : { "rpc-to-admin" : {} }
+
+#   nat_gateway_route_rules = concat([
+#     {
+#       destination       = lookup(var.admin_region, "vcn_cidr")
+#       destination_type  = "CIDR_BLOCK"
+#       network_entity_id = "drg"
+#       description       = "To Admin"
+#     }], var.connectivity_mode == "mesh" ?
+#     [for c in keys(var.clusters) :
+#       {
+#         destination       = lookup(lookup(var.cidrs, c), "vcn")
+#         destination_type  = "CIDR_BLOCK"
+#         network_entity_id = "drg"
+#         description       = "Routing to allow connectivity to ${title(c)} cluster"
+#     } if tobool(lookup(var.clusters, c) && c != "sydney")] : []
+#   )
+
+#   vcn_cidrs     = [lookup(lookup(var.cidrs, lower("sydney")), "vcn")]
+#   vcn_dns_label = "sydney"
+#   vcn_name      = "sydney"
+
+#   # bastion host
+#   create_bastion_host = false
+#   upgrade_bastion     = false
+
+#   # operator host
+#   create_operator                    = false
+#   upgrade_operator                   = false
+#   enable_operator_instance_principal = false
+
+
+#   # oke cluster options
+#   allow_worker_ssh_access     = false
+#   cluster_name                = "sydney"
+#   control_plane_type          = var.oke_control_plane
+#   control_plane_allowed_cidrs = ["0.0.0.0/0"]
+#   kubernetes_version          = var.kubernetes_version
+#   pods_cidr                   = lookup(lookup(var.cidrs, lower("sydney")), "pods")
+#   services_cidr               = lookup(lookup(var.cidrs, lower("sydney")), "services")
+
+
+#   # node pools
+#   kubeproxy_mode = "ipvs"  
+#   node_pools = local.managed_nodepools
+#   cloudinit_nodepool_common = var.cloudinit_nodepool_common  
+
+#   node_pool_image_type = "oke"
+
+#   # oke load balancers
+#   load_balancers            = "both"
+#   preferred_load_balancer   = "public"
+#   internal_lb_allowed_cidrs = [lookup(var.admin_region, "vcn_cidr")]
+#   internal_lb_allowed_ports = var.connectivity_mode == "mesh" ? [80, 443, 15012, 15017, 15021, 15443] : [80, 443]
+#   public_lb_allowed_cidrs   = ["0.0.0.0/0"]
+#   public_lb_allowed_ports   = [80, 443]
+
+#   providers = {
+#     oci      = oci.sydney
+#     oci.home = oci.home
+#   }
+
+#   count = tobool(lookup(var.clusters, "sydney")) ? 1 : 0
+
+# }
 

modules/clusters/brazil.tf

@@ -82,7 +82,7 @@
 #     oci.home = oci.home
 #   }
 
-#   count = lookup(var.clusters, "saupaulo") == true ? 1 : 0
+#   count = tobool(lookup(var.clusters, "saupaulo")) ? 1 : 0
 
 # }
 
@@ -167,7 +167,6 @@
 #     oci.home = oci.home
 #   }
 
-#   count = lookup(var.clusters, "vinhedo") == true ? 1 : 0
-
-# }
+#   count = tobool(lookup(var.clusters, "vinhedo")) ? 1 : 0
 
+# }

modules/clusters/canada.tf

@@ -82,7 +82,7 @@
 #     oci.home = oci.home
 #   }
 
-#   count = lookup(var.clusters, "toronto") == true ? 1 : 0
+#   count = tobool(lookup(var.clusters, "toronto")) ? 1 : 0
 
 # }
 
@@ -167,7 +167,7 @@
 #     oci.home = oci.home
 #   }
 
-#   count = lookup(var.clusters, "montreal") == true ? 1 : 0
+#   count = tobool(lookup(var.clusters, "montreal")) ? 1 : 0
 
 # }