khuedoan-homelab/infra/modules/kubernetes-bootstrap/main.tf

resource "helm_release" "metallb" {
  name       = "metallb"
  repository = "https://charts.bitnami.com/bitnami"
  chart      = "metallb"
  version    = "2.3.5"

  namespace        = "metallb-system"
  create_namespace = true

  values = [
    file("${path.module}/values/metallb.yaml")
  ]
}

resource "helm_release" "nginx" {
  name       = "ingress-nginx"
  repository = "https://kubernetes.github.io/ingress-nginx"
  chart      = "ingress-nginx"
  version    = "3.29.0"

  namespace        = "ingress-nginx"
  create_namespace = true
}

resource "helm_release" "cert_manager" {
  name       = "cert-manager"
  repository = "https://charts.jetstack.io"
  chart      = "cert-manager"
  version    = "1.3.1"

  namespace        = "cert-manager"
  create_namespace = true

  values = [
    file("${path.module}/values/cert-manager.yaml")
  ]
}

resource "helm_release" "prometheus" {
  name       = "kube-prometheus-stack"
  repository = "https://prometheus-community.github.io/helm-charts"
  chart      = "kube-prometheus-stack"
  version    = "15.1.1"

  namespace        = "monitoring-system"
  create_namespace = true
}

resource "helm_release" "longhorn" {
  name       = "longhorn"
  repository = "https://charts.longhorn.io"
  chart      = "longhorn"
  version    = "1.1.0"

  namespace        = "longhorn-system"
  create_namespace = true
}

resource "helm_release" "argocd" {
  name       = "argocd"
  repository = "https://argoproj.github.io/argo-helm"
  chart      = "argo-cd"
  version    = "3.1.2"

  namespace        = "argocd"
  create_namespace = true
}

resource "helm_release" "vault" {
  name       = "vault"
  repository = "https://helm.releases.hashicorp.com"
  chart      = "vault"
  version    = "0.11.0"

  namespace        = "vault"
  create_namespace = true

  values = [
    file("${path.module}/values/vault.yaml")
  ]

  # TODO (optimize) HA Vault and auto unseal Vault
}

# TODO (feature) Automatic ingress and tunnel for all services
Move core services to new module 2021-04-20 19:24:23 +07:00			`resource "helm_release" "metallb" {`
			`name = "metallb"`
			`repository = "https://charts.bitnami.com/bitnami"`
			`chart = "metallb"`
Upgrade metallb, nginx and prometheus version 2021-04-22 00:16:23 +07:00			`version = "2.3.5"`
Move core services to new module 2021-04-20 19:24:23 +07:00
			`namespace = "metallb-system"`
			`create_namespace = true`

Move MetalLB config to seperate file 2021-05-01 22:14:00 +07:00			`values = [`
			`file("${path.module}/values/metallb.yaml")`
			`]`
Move core services to new module 2021-04-20 19:24:23 +07:00			`}`

			`resource "helm_release" "nginx" {`
			`name = "ingress-nginx"`
			`repository = "https://kubernetes.github.io/ingress-nginx"`
			`chart = "ingress-nginx"`
Upgrade metallb, nginx and prometheus version 2021-04-22 00:16:23 +07:00			`version = "3.29.0"`
Move core services to new module 2021-04-20 19:24:23 +07:00
			`namespace = "ingress-nginx"`
			`create_namespace = true`
			`}`

			`resource "helm_release" "cert_manager" {`
			`name = "cert-manager"`
			`repository = "https://charts.jetstack.io"`
			`chart = "cert-manager"`
Upgrade cert manager and longhorn version 2021-04-22 01:05:10 +07:00			`version = "1.3.1"`
Move core services to new module 2021-04-20 19:24:23 +07:00
			`namespace = "cert-manager"`
			`create_namespace = true`

Move cert-manager config to seperate file 2021-05-01 22:33:46 +07:00			`values = [`
			`file("${path.module}/values/cert-manager.yaml")`
			`]`
Move core services to new module 2021-04-20 19:24:23 +07:00			`}`

			`resource "helm_release" "prometheus" {`
			`name = "kube-prometheus-stack"`
			`repository = "https://prometheus-community.github.io/helm-charts"`
			`chart = "kube-prometheus-stack"`
Upgrade metallb, nginx and prometheus version 2021-04-22 00:16:23 +07:00			`version = "15.1.1"`
Move core services to new module 2021-04-20 19:24:23 +07:00
			`namespace = "monitoring-system"`
			`create_namespace = true`
			`}`

			`resource "helm_release" "longhorn" {`
			`name = "longhorn"`
			`repository = "https://charts.longhorn.io"`
			`chart = "longhorn"`
Upgrade cert manager and longhorn version 2021-04-22 01:05:10 +07:00			`version = "1.1.0"`
Move core services to new module 2021-04-20 19:24:23 +07:00
			`namespace = "longhorn-system"`
			`create_namespace = true`
			`}`

Add argocd back to bootstrap 2021-04-22 01:25:16 +07:00			`resource "helm_release" "argocd" {`
			`name = "argocd"`
			`repository = "https://argoproj.github.io/argo-helm"`
Restructure 2021-04-24 13:45:13 +07:00			`chart = "argo-cd"`
Add argocd back to bootstrap 2021-04-22 01:25:16 +07:00			`version = "3.1.2"`

			`namespace = "argocd"`
			`create_namespace = true`
			`}`

Turn on Vault ingress 2021-05-01 17:52:17 +07:00			`resource "helm_release" "vault" {`
			`name = "vault"`
			`repository = "https://helm.releases.hashicorp.com"`
			`chart = "vault"`
			`version = "0.11.0"`

			`namespace = "vault"`
			`create_namespace = true`

			`values = [`
			`file("${path.module}/values/vault.yaml")`
			`]`

Standardize TODOs 2021-05-01 22:51:55 +07:00			`# TODO (optimize) HA Vault and auto unseal Vault`
Turn on Vault ingress 2021-05-01 17:52:17 +07:00			`}`
Move core services to new module 2021-04-20 19:24:23 +07:00
Standardize TODOs 2021-05-01 22:51:55 +07:00			`# TODO (feature) Automatic ingress and tunnel for all services`