add managed kubernetes module

Author: xiaobing.meng

.gitignore

@@ -7,3 +7,5 @@
 
 # .tfvars files
 *.tfvars
+crash.log
+.idea/

README.md

@@ -1,2 +1,95 @@
-# terraform-alicloud-managed-kubernetes
-Terraform module which create Managed Kubernetes cluster(s) on Alibaba Cloud.
+Alibaba Cloud terraform example for kubernetes cluster
+======================================================
+
+A terraform example to launching a kubernetes cluster in alibaba cloud.
+
+These types of the module resource are supported:
+
+- [VPC](https://www.terraform.io/docs/providers/alicloud/r/vpc.html)
+- [Subnet](https://www.terraform.io/docs/providers/alicloud/r/vswitch.html)
+- [ECS Instance](https://www.terraform.io/docs/providers/alicloud/r/instance.html)
+- [Security Group](https://www.terraform.io/docs/providers/alicloud/r/security_group.html)
+- [Nat Gateway](https://www.terraform.io/docs/providers/alicloud/r/nat_gateway.html)
+- [ManagedKubernetes](https://www.terraform.io/docs/providers/alicloud/r/cs_managed_kubernetes.html)
+
+
+Usage
+-----
+This example can specify the following arguments to create user-defined kuberntes cluster
+
+* alicloud_access_key: The Alicloud Access Key ID
+* alicloud_secret_key: The Alicloud Access Secret Key
+* region: The ID of region in which launching resources
+* k8s_name_prefix: The name prefix of kubernetes cluster
+* worker_number: The number of worker nodes in each kubernetes cluster
+* k8s_pod_cidr: The kubernetes pod cidr block. It cannot be equals to vpc's or vswitch's and cannot be in them. If vpc's cidr block is `172.16.XX.XX/XX`,
+it had better to `192.168.XX.XX/XX` or `10.XX.XX.XX/XX`
+* k8s_service_cidr: The kubernetes service cidr block. Its setting rule is same as `k8s_pod_cidr`
+* Other kubernetes cluster arguments
+
+**Note:** In order to avoid some needless error, you had better to set `new_nat_gateway` to `true`.
+Otherwise, you must you must ensure you specified vswitches can access internet before running the example.
+
+Planning phase
+
+    terraform plan
+
+Apply phase
+
+	terraform apply
+
+
+Destroy
+
+    terraform destroy
+
+
+Conditional creation
+--------------------
+This example can support the following creating kubernetes cluster scenario by setting different arguments.
+
+### 1. Create a new vpc, vswitches and nat gateway for the cluster.
+
+You can specify the following user-defined arguments:
+
+* vpc_name: A new vpc name
+* vpc_cidr: A new vpc cidr block
+* vswitch_name_prefix: The name prefix of several vswitches
+* vswitch_cidrs: List of cidr blocks for several new vswitches
+
+### 2. Using existing vpc and vswitches for the cluster.
+
+You can specify the following user-defined arguments:
+
+* vpc_id: A existing vpc ID
+* vswitch_ids: List of IDs for several existing vswitches
+
+### 3. Using existing vpc, vswitches and nat gateway for the cluster.
+
+You can specify the following user-defined arguments:
+
+* vpc_id: A existing vpc ID
+* vswitch_ids: List of IDs for several existing vswitches
+* new_nat_gateway: Set it to false. But you must ensure you specified vswitches can access internet.
+In other words, you must set snat entry for each vswitch before running the example.
+
+
+Terraform version
+-----------------
+Terraform version 0.11.0 or newer and Provider version 1.57.2 or newer are required for this example to work.
+
+Authors
+-------
+Created and maintained by Meng Xiaobing(@menglingwei, menglingwei@gmail.com)
+
+License
+-------
+Mozilla Public License 2.0. See LICENSE for full details.
+
+Reference
+---------
+* [Terraform-Provider-Alicloud Github](https://github.com/terraform-providers/terraform-provider-alicloud)
+* [Terraform-Provider-Alicloud Release](https://releases.hashicorp.com/terraform-provider-alicloud/)
+* [Terraform-Provider-Alicloud Docs](https://www.terraform.io/docs/providers/alicloud/)
+
+

main.tf

@@ -0,0 +1,106 @@
+// Provider specific configs
+provider "alicloud" {
+  version              = ">=1.57.2"
+  region               = var.region != "" ? var.region : null
+  configuration_source = "terraform-alicloud-modules/kubernetes"
+}
+
+// Instance_types data source for instance_type
+data "alicloud_instance_types" "default" {
+  cpu_core_count = var.cpu_core_count
+  memory_size    = var.memory_size
+}
+
+// Zones data source for availability_zone
+data "alicloud_zones" "default" {
+  available_instance_type = data.alicloud_instance_types.default.instance_types[0].id
+}
+
+// If there is not specifying vpc_id, the module will launch a new vpc
+resource "alicloud_vpc" "vpc" {
+  count      = var.vpc_id == "" ? 1 : 0
+  cidr_block = var.vpc_cidr
+  name       = var.vpc_name == "" ? var.example_name : var.vpc_name
+}
+
+// According to the vswitch cidr blocks to launch several vswitches
+resource "alicloud_vswitch" "vswitches" {
+  count             = length(var.vswitch_ids) > 0 ? 0 : length(var.vswitch_cidrs)
+  vpc_id            = var.vpc_id == "" ? join("", alicloud_vpc.vpc.*.id) : var.vpc_id
+  cidr_block        = var.vswitch_cidrs[count.index]
+  availability_zone = data.alicloud_zones.default.zones[count.index % length(data.alicloud_zones.default.zones)]["id"]
+  name = var.vswitch_name_prefix == "" ? format(
+  "%s-%s",
+  var.example_name,
+  format(var.number_format, count.index + 1),
+  ) : format(
+  "%s-%s",
+  var.vswitch_name_prefix,
+  format(var.number_format, count.index + 1),
+  )
+}
+
+resource "alicloud_nat_gateway" "default" {
+  count  = var.new_nat_gateway == "true" ? 1 : 0
+  vpc_id = var.vpc_id == "" ? join("", alicloud_vpc.vpc.*.id) : var.vpc_id
+  name   = var.example_name
+}
+
+resource "alicloud_eip" "default" {
+  count     = var.new_nat_gateway == "true" ? 1 : 0
+  bandwidth = 100
+}
+
+resource "alicloud_eip_association" "default" {
+  count         = var.new_nat_gateway == "true" ? 1 : 0
+  allocation_id = alicloud_eip.default[0].id
+  instance_id   = alicloud_nat_gateway.default[0].id
+}
+
+resource "alicloud_snat_entry" "default" {
+  count         = var.new_nat_gateway == "false" ? 0 : length(var.vswitch_ids) > 0 ? length(var.vswitch_ids) : length(var.vswitch_cidrs)
+  snat_table_id = alicloud_nat_gateway.default[0].snat_table_ids
+  source_vswitch_id = length(var.vswitch_ids) > 0 ? split(",", join(",", var.vswitch_ids))[count.index % length(split(",", join(",", var.vswitch_ids)))] : length(var.vswitch_cidrs) < 1 ? "" : split(",", join(",", alicloud_vswitch.vswitches.*.id))[count.index % length(split(",", join(",", alicloud_vswitch.vswitches.*.id)))]
+  snat_ip = alicloud_eip.default[0].ip_address
+}
+
+resource "alicloud_log_project" "log" {
+  name    = var.k8s_name_prefix == "" ? format(
+  "%s-managed-sls",
+  var.example_name,
+  ) : format(
+  "%s-managed-sls",
+  var.k8s_name_prefix,
+  )
+  description = "created by terraform for managedkubernetes cluster"
+}
+
+resource "alicloud_cs_managed_kubernetes" "k8s" {
+  count = 1
+  name = var.k8s_name_prefix == "" ? format(
+  "%s-%s",
+  var.example_name,
+  format(var.number_format, count.index + 1),
+  ) : format(
+  "%s-%s",
+  var.k8s_name_prefix,
+  format(var.number_format, count.index + 1),
+  )
+  vswitch_ids = [length(var.vswitch_ids) > 0 ? split(",", join(",", var.vswitch_ids))[count.index%length(split(",", join(",", var.vswitch_ids)))] : length(var.vswitch_cidrs) < 1 ? "" : split(",", join(",", alicloud_vswitch.vswitches.*.id))[count.index%length(split(",", join(",", alicloud_vswitch.vswitches.*.id)))]]
+  new_nat_gateway       = false
+  worker_disk_category  = var.worker_disk_category
+  password              = var.ecs_password
+  pod_cidr              = var.k8s_pod_cidr
+  service_cidr          = var.k8s_service_cidr
+  slb_internet_enabled            = true
+  install_cloud_monitor = true
+  cluster_network_type  = var.cluster_network_type
+
+  depends_on = [alicloud_snat_entry.default]
+  worker_instance_types = var.worker_instance_types
+  worker_number = var.worker_number
+  log_config {
+    type = "SLS"
+    project = alicloud_log_project.log.name
+  }
+}

outputs.tf

@@ -0,0 +1,35 @@
+// Output VPC
+output "vpc_id" {
+  description = "The ID of the VPC."
+  value       = alicloud_cs_managed_kubernetes.k8s[0].vpc_id
+}
+
+output "vswitch_ids" {
+  description = "List ID of the VSwitches."
+  value       = [alicloud_cs_managed_kubernetes.k8s.*.vswitch_ids]
+}
+
+//output "nat_gateway_id" {
+//  value = alicloud_cs_managed_kubernetes.k8s[0].nat
+//}
+
+//Output SLS
+output "sls_project_name" {
+  value = alicloud_log_project.log.name
+}
+
+// Output kubernetes resource
+output "cluster_id" {
+  description = "ID of the kunernetes cluster."
+  value       = alicloud_cs_managed_kubernetes.k8s.*.id
+}
+
+output "security_group_id" {
+  description = "ID of the Security Group used to deploy kubernetes cluster."
+  value       = alicloud_cs_managed_kubernetes.k8s[0].security_group_id
+}
+
+output "cluster_nodes" {
+  description = "List nodes of cluster."
+  value       = alicloud_cs_managed_kubernetes.k8s.*.worker_nodes
+}

variables.tf

@@ -0,0 +1,119 @@
+# common variables
+
+
+variable "region" {
+  description = "The region used to launch this module resources."
+  default     = "cn-beijing"
+}
+
+variable "availability_zone" {
+  description = "The available zone to launch ecs instance and other resources."
+  default     = ""
+}
+
+variable "number_format" {
+  description = "The number format used to output."
+  default     = "%02d"
+}
+
+variable "example_name" {
+  default = "tf-example-managed-kubernetes"
+}
+
+# Instance typs variables
+variable "cpu_core_count" {
+  description = "CPU core count is used to fetch instance types."
+  default     = 1
+}
+
+variable "memory_size" {
+  description = "Memory size used to fetch instance types."
+  default     = 2
+}
+
+# VPC variables
+variable "vpc_name" {
+  description = "The vpc name used to create a new vpc when 'vpc_id' is not specified. Default to variable `example_name`"
+  default     = ""
+}
+
+variable "vpc_id" {
+  description = "A existing vpc id used to create several vswitches and other resources."
+  default     = ""
+}
+
+variable "vpc_cidr" {
+  description = "The cidr block used to launch a new vpc when 'vpc_id' is not specified."
+  default     = "192.168.0.0/16"
+}
+
+# VSwitch variables
+variable "vswitch_name_prefix" {
+  description = "The vswitch name prefix used to create several new vswitches. Default to variable `example_name`"
+  default     = ""
+}
+
+variable "vswitch_ids" {
+  description = "List of existing vswitch id."
+  type        = list(string)
+  default     = []
+}
+
+variable "vswitch_cidrs" {
+  description = "List of cidr blocks used to create several new vswitches when 'vswitch_ids' is not specified."
+  type        = list(string)
+  default     = ["192.168.1.0/24"]
+}
+
+variable "new_nat_gateway" {
+  description = "Whether to create a new nat gateway. In this template, a new nat gateway will create a nat gateway, eip and server snat entries."
+  default     = "true"
+}
+
+# Cluster nodes variables
+
+variable "worker_instance_types" {
+  description = "The ecs instance type used to launch worker nodes. Default from instance typs datasource."
+  type        = list(string)
+  default     = ["ecs.n4.xlarge"]
+}
+
+variable "worker_disk_category" {
+  description = "The system disk category used to launch one or more worker nodes."
+  default     = "cloud_efficiency"
+}
+
+variable "worker_disk_size" {
+  description = "The system disk size used to launch one or more worker nodes."
+  default     = "40"
+}
+
+variable "ecs_password" {
+  description = "The password of instance."
+  default     = "Abc12345"
+}
+
+variable "worker_number" {
+  description = "The number of kubernetes cluster."
+  default     = 2
+}
+
+variable "k8s_name_prefix" {
+  description = "The name prefix used to create several kubernetes clusters. Default to variable `example_name`"
+  default     = ""
+}
+
+variable "k8s_pod_cidr" {
+  description = "The kubernetes pod cidr block. It cannot be equals to vpc's or vswitch's and cannot be in them."
+  default     = "172.20.0.0/16"
+}
+
+variable "k8s_service_cidr" {
+  description = "The kubernetes service cidr block. It cannot be equals to vpc's or vswitch's or pod's and cannot be in them."
+  default     = "172.21.0.0/20"
+}
+
+variable "cluster_network_type" {
+  description = "Network type, valid options are flannel, terway"
+  default = "flannel"
+}

versions.tf

@@ -0,0 +1,4 @@
+
+terraform {
+  required_version = ">= 0.12"
+}