Support multiple environments

2025-12-25 05:36:59 +01:00 · 2019-04-09 00:37:28 +02:00 · 2019-04-09 00:37:28 +02:00 · 51fb76ffb6
commit 51fb76ffb6
parent 224bdffc8b
9 changed files with 41 additions and 32 deletions
--- a/host_vars/localhost
+++ b/host_vars/localhost
@ -1,11 +0,0 @@
---
-harden_linux_sshd_settings_user:
-  "^Port ": "Port 22"
-harden_linux_ufw_rules:
-  - rule: "allow"
-    to_port: "22"
-    protocol: "tcp"
-  - rule: "allow"
-    to_port: "7000"
-    protocol: "udp"
-
--- a/inventories/staging/groups
+++ b/inventories/staging/groups
@ -1,10 +0,0 @@
-[kube-master]
-
-[etcd]
-
-[kube-node]
-
-[k8s]
-
-[k8s-cluster:children]
-k8s
--- a/inventories/staging/group_vars/all.yml
+++ b/inventories/staging/group_vars/all.yml
--- a/inventories/staging/group_vars/k8s-cluster.yml
+++ b/inventories/staging/group_vars/k8s-cluster.yml
@ -3,4 +3,4 @@ ip: "{{vpn_ip}}"
 kube_network_plugin: flannel
 bin_dir: /usr/local/bin
 cluster_name: banditlair-staging
-dns_domain: k8s.staging.banditlair.com
+dns_domain: staging.k8s.banditlair.com
--- a/inventories/staging/group_vars/kube-master.yml
+++ b/inventories/staging/group_vars/kube-master.yml
--- a/inventories/staging/group_vars/kube-node.yml
+++ b/inventories/staging/group_vars/kube-node.yml
--- a/inventories/test/groups
+++ b/inventories/test/groups
@ -0,0 +1,17 @@
+[test-master]
+[test-etcd]
+[test-node]
+
+[kube-master:children]
+test-master
+
+[etcd:children]
+test-etcd
+
+[kube-node:children]
+test-node
+
+[k8s-cluster:children]
+kube-master
+etcd
+kube-node
--- a/inventories/staging/scaleway_inventory.yml
+++ b/inventories/staging/scaleway_inventory.yml
@ -5,9 +5,8 @@ regions:
  - par1
  - ams1
 tags:
-  - k8s
-  - kube-master
-  - etcd
-  - kube-node
+  - test-master
+  - test-etcd
+  - test-node
 variables:
  ansible_host: public_ip.address
--- a/terraform/main.tf
+++ b/terraform/main.tf
@ -1,3 +1,18 @@
+locals {
+  environment = "${terraform.workspace != "" ? terraform.workspace : "test"}"
+}
+
+terraform {
+  backend "s3" {
+    bucket     = "banditlair.tfstate"
+    key        = "k8s.tfstate"
+    region     = "nl-ams"
+    endpoint   = "https://s3.nl-ams.scw.cloud"
+    skip_credentials_validation = true
+    skip_region_validation = true
+  }
+}
+
 provider "scaleway" {
  region = "${var.region}"
 }
@ -7,10 +22,6 @@ data "scaleway_image" "ubuntu" {
  name         = "${var.image}"
 }

-//resource "scaleway_ip" "public_ip" {
-//  count = 1
-//}
-
 resource "scaleway_server" "node" {
  count  = "${var.node_instance_count}"
  name   = "node${count.index+1}"
@ -18,7 +29,7 @@ resource "scaleway_server" "node" {
  type   = "${var.node_instance_type}"
  state  = "running"
  dynamic_ip_required = true,
-  tags   = ["k8s", "kube-node"]
+  tags   = ["${local.environment}-node"]
 }

 resource "scaleway_server" "master" {
@ -28,7 +39,10 @@ resource "scaleway_server" "master" {
  type   = "${var.master_instance_type}"
  state  = "running"
  dynamic_ip_required = true,
-  tags   = ["k8s", "kube-master","etcd"]
+  tags   = [
+    "${local.environment}-master",
+    "${local.environment}-etcd"
+    ]
 }

 output "node_private_ips" {