Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[IBCDPE-1007] Templatizing items out to a root level #15

Merged
merged 194 commits into from
Aug 16, 2024
Merged

[IBCDPE-1007] Templatizing items out to a root level #15

merged 194 commits into from
Aug 16, 2024

Conversation

BryanFauble
Copy link
Contributor

Problem:

  1. As noted by @BWMac in:
  1. There are a bunch of areas that are not templatized, and are using static values that we had set up for development.

Solution:

  1. Setting up more variable and environment value passing between the stacks. Allowing us to define all of the levers within the root main.tf and deployments/main.tf
  2. Removing the dev directory and instead allowing us to create different dev/prod stacks from the same terraform scripts depending on how we are defining it's usage in deployments/main.tf

Testing:

  1. Tested the deployment of the dev stack and verified that it came up healthy.

BryanFauble added 30 commits July 18, 2024 12:03
@BryanFauble
Create a spacelift private workerpool
c2c74de
@BryanFauble
Add the private workerpool module
84c36db
@BryanFauble
Allow conditional create of the workerpool
3c08ae6
@BryanFauble
skip creating worker pool
324ce7f
@BryanFauble
Add missed variable
4546b72
@BryanFauble
increment workerpool
d224c1b
@BryanFauble
Correct version of helm chart
0e9324b
@BryanFauble
Increment workerpool module version
d3d5c24
@BryanFauble
Create the k8s worker pool
c928d8a
@BryanFauble
Add warning for drift detection
5b39416
@BryanFauble
Set to private worker pool id
83b96f1
@BryanFauble
Enable drift detection via tf
63a6868
@BryanFauble
correct resource name
f6378bb
@BryanFauble
Remove drift detection from stack
ba2dbb4
@BryanFauble
Remove note
97f0412
@BryanFauble
Comment out already imported block
ebd8b3d
@BryanFauble
Add module back for 2 step removal process
b4517ec
@BryanFauble
Remove private workerpool module
d53caa6
@BryanFauble
Leave helm provider
d60047a
@BryanFauble
Merge branch 'ibcdpe-935-private-worker-pool' into ibcdpe-935-vpc-upd…
dbf0d45 
…ates
@BryanFauble
hacking around to get the helm_release out of state
910b4e5
@BryanFauble
Leave module in to remove resources
98efa20
@BryanFauble
Remove module
3ada360
@BryanFauble
Update to specify provider required versions in modules instead of pr…
846b1c2 
…oviders themselves
@BryanFauble
Updating modules
90f38ef
@BryanFauble
Remove provider that is not actually required
b20890d
@BryanFauble
Try setting load bal ip ranges
a6229bd
@BryanFauble
Capture flow logs
589de1d
@BryanFauble
Catpure flow logs
d1a8d28
@BryanFauble
Add to documentation
113e816
@spacelift-int-sagebionetworks spacelift-int-sagebionetworks bot temporarily deployed to spacelift/root-spacelift-administrative-stack August 2, 2024 16:48 Inactive
@spacelift-int-sagebionetworks spacelift-int-sagebionetworks bot temporarily deployed to spacelift/root-spacelift-administrative-stack August 2, 2024 16:51 Inactive
@spacelift-int-sagebionetworks spacelift-int-sagebionetworks bot temporarily deployed to spacelift/root-spacelift-administrative-stack August 2, 2024 17:00 Inactive
@spacelift-int-sagebionetworks spacelift-int-sagebionetworks bot temporarily deployed to spacelift/root-spacelift-administrative-stack August 2, 2024 17:33 Inactive
BryanFauble
BryanFauble commented Aug 2, 2024
View reviewed changes
modules/trivy-operator/main.tf
}
}
}
resource "kubectl_manifest" "vmservicescrape" {
Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Swapping over to this is to resolve a race condition issue. Since the VMServiceScrape kind is a resource that depends on a CRD (Custom Resource Definition) being installed already on the cluster the terraform plan stage was failing with:

│ Error: API did not recognize GroupVersionKind from manifest (CRD may not be installed)
│ 
│   with module.trivy-operator.kubernetes_manifest.vmservicescrape,
│   on .terraform/modules/trivy-operator/main.tf line 20, in resource "kubernetes_manifest" "vmservicescrape":
│   20: resource "kubernetes_manifest" "vmservicescrape" {
│ 
│ no matches for kind "VMServiceScrape" in group
│ "operator.victoriametrics.com"

The suggestion was to try out a different provider (https://registry.terraform.io/providers/gavinbunney/kubectl/latest/docs/resources/kubectl_manifest) to get around this issue. This allows the resources to be created as expected in the right order.

Copy link
Contributor

@BWMac BWMac Aug 2, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Interesting that this resource has you pass a whole YAML configuration to the yaml_body arg instead of something more similar to how kubernetes_manifest is configured

@BryanFauble BryanFauble marked this pull request as ready for review August 2, 2024 18:12
@BryanFauble BryanFauble requested a review from a team as a code owner August 2, 2024 18:12
This was referenced Aug 2, 2024
Merged
Merged
BWMac
BWMac reviewed Aug 2, 2024
View reviewed changes
modules/victoria-metrics/templates/values.yaml
@@ -16,7 +16,7 @@ victoria-metrics-operator:
cleanupImage:
repository: bitnami/kubectl
# use image tag that matches k8s API version by default
# tag: 1.29.6
tag: 1.30.2
Copy link
Contributor

@BWMac BWMac Aug 2, 2024
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Is pinning this tag better than using the default as was done before?

Copy link
Contributor Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

There was a bug that I had reported around this. Basically a '+' sign that was getting included in the tag image that prevented the cleanup job from running. I updated the helm chart to the newer version so we don't need to set this tag manually anymore. I will remove

@BWMac BWMac self-requested a review August 2, 2024 21:46
@spacelift-int-sagebionetworks spacelift-int-sagebionetworks bot temporarily deployed to spacelift/root-spacelift-administrative-stack August 12, 2024 18:54 Inactive
Base automatically changed from ibcdpe-1007-monitoring to main August 15, 2024 23:07
@BryanFauble BryanFauble merged commit 782556d into main Aug 16, 2024
9 of 11 checks passed
@BryanFauble BryanFauble deleted the ibcdpe-1007-split-into-vars branch August 16, 2024 00:14
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@BWMac BWMac BWMac approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@BryanFauble @BWMac