Repo contains IaC code to bootstrap kubernetes node machines.
Built for Proxmox 8.1.3.
Set S3 env vars, or store in secret.env:
export AWS_ACCESS_KEY_ID=""
export AWS_SECRET_ACCESS_KEY=""
# Keyname should be fully qualified, therefore <name>. (dot at end)
export DNS_UPDATE_KEYNAME=""
export DNS_UPDATE_KEYSECRET=$(echo "..." | base64) # <- must be base64 encoded
export DNS_UPDATE_KEYALGORITHM="hmac-sha256"
export MINIO_USER=""
export MINIO_PASSWORD=""
# If stored in secret.env
set -o allexport && source secret.env && set +o allexportCreate secret.tfvars:
pve_password = ""Initialize:
terraform init #-backend-config=backend.conf(Optional) Prepare a few env vars:
export TF_LOG="" # Set to DEBUG if need be
export VAULT_ADDR="http://10.0.1.152:8200"
export VAULT_TOKEN="..."To apply or preview a plan, make use of the Makefile:
# Preview
make plan
# Apply WITHOUT confirmation
make apply To add new nodes, add them to main.tf in the root directory under module "kube-machine".
Furhter sizing options can be conducted in there.
Upon inventory generation, a CI action will attempt to upload the new inventory into the ansible repo.
For caching purposes, the runners are expected to have a /cache directory mounted.
Attempts to get S3 or GH cache targets to work have been in vain.