GitHub - cookielab/terraform-kubernetes-cluster-apps

Example usage

module "cluster_apps" {
  source  = "cookielab/cluster-apps/kubernetes"
  version = "1.5.0"

  namespace = {
    create = true
    name   = "cluster-apps"
  }

  cluster_name = "<cluster_name>"

  node_selector = {}

  grafana_alloy = {
    metrics = {
      endpoint = "<mimir_http_endpoint>"
      ssl_enabled = false
    }
    loki = {
      enabled = true
      url = "http://loki:3100/loki/api/v1/push"
    }
    aws = {
      account = data.aws_caller_identity.current.account_id
      region  = data.aws_region.current.name
    }
  }

  cert_manager = {
    enabled = true
  }

  external_secrets = {
    enabled = false
  }

  karpenter = {
    enabled = false
  }

  kyverno = {
    enabled = false
  }

  metrics_server = {
    enabled = true
    node_selector = {
      "node-role.kubernetes.io/control-plane" = ""
    }
    tolerations = [
      {
        key      = "CriticalAddonsOnly"
        operator = "Exists"
      },
      {
        key      = "node-role.kubernetes.io/control-plane"
        operator = "Exists"
      }
    ]
  }
}

Requirements

Name	Version
terraform	>= 1.9, < 2.0
aws	~> 5.27
helm	~> 2.14
kubernetes	~> 2.30

Providers

Name	Version
kubernetes	~> 2.30

Modules

Name	Source	Version
cert_manager	./modules/cert-manager	n/a
external_secrets	./modules/external-secrets	n/a
fluent-bit	./modules/fluent-bit	n/a
grafana_alloy_cluster	cookielab/grafana-alloy/kubernetes//modules/cluster	v0.0.4
grafana_alloy_loki	cookielab/grafana-alloy/kubernetes//modules/loki-logs	v0.0.4
grafana_alloy_node	cookielab/grafana-alloy/kubernetes//modules/node	v0.0.4
karpenter	./modules/karpenter	n/a
keda	./modules/keda	n/a
kyverno	./modules/kyverno	n/a
metrics_server	./modules/metrics-server	n/a

Resources

Name	Type
kubernetes_namespace_v1.this	resource

Inputs

Name	Description	Type	Default	Required
cert_manager	cert manager configuration	object({ enabled = optional(bool, false) node_selector = optional(map(string), null) tolerations = optional(list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) })), null) })	n/a	yes
cluster_name	name of the EKS cluster	`string`	n/a	yes
external_secrets	external secrets configuration	object({ enabled = optional(bool, true) repository = optional(string, "oci.external-secrets.io/external-secrets/external-secrets") node_selector = optional(map(string), null) tolerations = optional(list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) })), null) })	`{}`	no
fluent_bit	fluent bit configuration	object({ enabled = optional(bool, false) logs_storage = optional(string, "loki") loki = optional(object({ tenant_id = optional(string, null) logs_endpoint_url = optional(string, null) basic_auth = optional(object({ enabled = optional(bool, false) username = optional(string, null) password = optional(string, null) }), {}) bearer_token = optional(object({ enabled = optional(bool, false) token = optional(string, null) }), {}) }), {}) elasticsearch = optional(object({ auth = optional(object({ enabled = optional(bool, false) username = optional(string, null) password = optional(string, null) }), {}) }), {}) use_defaults = optional(object({ outputs = optional(bool, true) filters = optional(bool, true) inputs = optional(bool, true) }), {}) logs_custom = optional(object({ outputs = optional(map(string), {}) filters = optional(map(string), {}) inputs = optional(map(string), {}) }), {}) logs_endpoint_url = optional(string, null) tolerations = optional(list(object({ key = string operator = string value = string effect = string })), []) node_selector = optional(map(string), {}) labels = optional(map(string), {}) pod_annotations = optional(map(string), {}) })	`{}`	no
grafana_alloy	grafana alloy configuration	object({ image = optional(object({ repository = optional(string, "grafana/alloy") }), {}) metrics = optional(object({ endpoint = optional(string, null) tenant = optional(string, null) ssl_enabled = optional(bool, false) tenant_id = optional(string, null) }), {}) cluster = optional(object({ enabled = optional(bool, true) replicas = optional(number, 3) requests = optional(object({ cpu = optional(string, "100m") memory = optional(string, "256Mi") }), {}) limits = optional(object({ cpu = optional(string, "100m") memory = optional(string, "256Mi") }), {}) }), {}) node = optional(object({ enabled = optional(bool, true) requests = optional(object({ cpu = optional(string, "100m") memory = optional(string, "128Mi") }), {}) limits = optional(object({ cpu = optional(string, "100m") memory = optional(string, "256Mi") }), {}) }), {}) loki = optional(object({ enabled = optional(bool, false) url = optional(string, null) tenant_id = optional(string, "default") username = optional(string, "") password = optional(string, "") scrape_pods_global = optional(bool, true) scrape_pods_annotation = optional(string, "") clustering_enabled = optional(bool, false) scrape_logs_method = optional(string, "api") replicas = optional(number, 1) }), {}) aws = optional(object({ account = optional(string, "") region = optional(string, "") }), {}) })	`{}`	no
karpenter	karperter configuration	object({ enabled = optional(bool, true) repository = optional(string, "public.ecr.aws/karpenter/controller") node_selector = optional(map(string), null) tolerations = optional(list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) })), null) replicas = optional(number, 2) tag_key = optional(string, "eks:eks-cluster-name") enable_disruption = optional(bool, true) batch_max_duration = optional(string, "10s") batch_idle_duration = optional(string, "1s") spot_to_spot_consolidation = optional(bool, false) pod_annotations = optional(map(string), {}) node_role_arn = optional(string, null) })	`{}`	no
keda	Keda configuration	object({ enabled = optional(bool, false) repository = optional(string, "https://kedacore.github.io/charts") namespace = optional(string, "cluster-apps") replicas = optional(number, 2) log_level = optional(string, "info") metrics_server = optional(bool, true) node_selector = optional(map(string), {}) role_arn = optional(string, null) tolerations = optional(list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) })), []) pod_annotations = optional(map(string), {}) })	`{}`	no
kyverno	kyverno configuration	object({ enabled = optional(bool, false) registry = optional(string, "ghcr.io") docker_hub_registry = optional(string, "docker.io") node_selector = optional(map(string), null) tolerations = optional(list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) })), null) admission_controller = optional( object( { replicas = optional(number, 2) container = optional(object( { resources = object({ requests = object({ cpu = optional(string, "300m") memory = optional(string, "384Mi") }), limits = object({ memory = optional(string, "384Mi") }) }) } ), { resources = { requests = { cpu = "300m" memory = "384Mi" } limits = { memory = "384Mi" } } } ) } ), { replicas = 2 container = { resources = { requests = { cpu = "300m" memory = "384Mi" } limits = { memory = "384Mi" } } } } ) })	`{}`	no
metrics_server	metrics server configuration	object({ enabled = optional(bool, true) repository = optional(string, "registry.k8s.io/metrics-server/metrics-server") node_selector = optional(map(string), null) tolerations = optional(list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) })), null) })	`{}`	no
namespace	value of the namespace to deploy cluster apps	object({ name = string create = bool })	{ "create": true, "name": "cluster-apps" }	no
node_selector	node selector to deploy cluster apps	`map(string)`	{ "node.kubernetes.io/pool": "critical" }	no
tolerations	tolerations to deploy cluster apps	list(object({ key = string operator = string value = optional(string, null) effect = optional(string, null) }))	[ { "effect": "NoSchedule", "key": "CriticalAddonsOnly", "operator": "Exists" } ]	no

Outputs

Name	Description
namespace	n/a

Name		Name	Last commit message	Last commit date
Latest commit History 92 Commits
.github/workflows		.github/workflows
modules		modules
.editorconfig		.editorconfig
.gitignore		.gitignore
LICENSE.md		LICENSE.md
README.md		README.md
main.tf		main.tf
outputs.tf		outputs.tf
renovate.json		renovate.json
variables.tf		variables.tf
versions.tf		versions.tf

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Repository files navigation

Example usage

Requirements

Providers

Modules

Resources

Inputs

Outputs

About

Uh oh!

Releases

Packages

Uh oh!

Contributors 4

Uh oh!

Languages

License

cookielab/terraform-kubernetes-cluster-apps

Folders and files

Latest commit

History

Repository files navigation

Example usage

Requirements

Providers

Modules

Resources

Inputs

Outputs

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Packages 0

Uh oh!

Contributors 4

Uh oh!

Languages

Packages