locals { annotations = { "vynil.solidite.fr/meta" = var.component "vynil.solidite.fr/name" = var.namespace } annotations_default = { "default.vynil.solidite.fr/sso_vynil" = var.sso_vynil "default.vynil.solidite.fr/domain_name" = var.domain_name "default.vynil.solidite.fr/timezone" = var.timezone "default.vynil.solidite.fr/language" = var.language "default.vynil.solidite.fr/domain" = var.domain "default.vynil.solidite.fr/issuer" = var.issuer "default.vynil.solidite.fr/ingress_class" = var.ingress_class "default.vynil.solidite.fr/app_group" = var.app_group "default.vynil.solidite.fr/backups.enable" = var.backups.enable "default.vynil.solidite.fr/backups.use_barman" = var.backups.use_barman "default.vynil.solidite.fr/backups.endpoint" = var.backups.endpoint "default.vynil.solidite.fr/backups.secret_name" = var.backups.secret_name "default.vynil.solidite.fr/backups.key_id_key" = var.backups.key_id_key "default.vynil.solidite.fr/backups.secret_key" = var.backups.secret_key "default.vynil.solidite.fr/backups.restic_key" = var.backups.restic_key "default.vynil.solidite.fr/storage.volume.accessMode" = var.storage.volume.accessMode "default.vynil.solidite.fr/storage.volume.class" = var.storage.volume.class } global = { "sso_vynil" = var.sso_vynil "domain_name" = var.domain_name "timezone" = var.timezone "language" = var.language "domain" = var.domain "issuer" = var.issuer "ingress_class" = var.ingress_class "app_group" = var.app_group } global-backups = { "enable" = var.backups.enable "use_barman" = var.backups.use_barman "endpoint" = var.backups.endpoint "secret_name" = var.backups.secret_name "key_id_key" = var.backups.key_id_key "secret_key" = var.backups.secret_key "restic_key" = var.backups.restic_key } global-volume = { "accessMode" = var.storage.volume.accessMode "class" = var.storage.volume.class } global-apps = merge(local.global, { "domain_name" = "devtools.${var.domain_name}" "app_group" = "dev" }) okd = merge(local.global-apps,{ "namespaces" = concat([ for station in local.sorted-station-names: "${var.domain}-devspaces-${station}" ],flatten([ for org in local.sorted-organisations:[ for stage in reverse(distinct(sort([for s in lookup(org, "stages", []): s.name]))): "${var.domain}-org-${org.name}-${stage}" ] ]) ) }, { for k, v in var.apps.okd : k => v if !contains(["enable","storage","backups"],k) },{ backups = merge(local.global-backups, lookup(var.apps.okd, "backups", {})) storage = merge({ for k, v in lookup(var.apps.okd, "storage", {}) : k => v if !contains(["volume"],k) }, { volume = merge(local.global-volume, lookup(lookup(var.apps.okd, "storage", {}), "volume", {})) }) }) gramo = merge(local.global-apps, { "namespaces" = concat([ for station in local.sorted-station-names: "${var.domain}-devspaces-${station}" ],flatten([ for org in local.sorted-organisations:[ for stage in reverse(distinct(sort([for s in lookup(org, "stages", []): s.name]))): "${var.domain}-org-${org.name}-${stage}" ] ]) ) }, { for k, v in var.apps.gramo : k => v if !contains(["enable","storage","backups"],k) },{ backups = merge(local.global-backups, lookup(var.apps.gramo, "backups", {})) storage = merge({ for k, v in lookup(var.apps.gramo, "storage", {}) : k => v if !contains(["volume"],k) }, { volume = merge(local.global-volume, lookup(lookup(var.apps.gramo, "storage", {}), "volume", {})) }) }) dbgate = merge(local.global-apps, { "namespaces" = concat([ for station in local.sorted-station-names: "${var.domain}-devspaces-${station}" ],flatten([ for org in local.sorted-organisations:[ for stage in reverse(distinct(sort([for s in lookup(org, "stages", []): s.name]))): "${var.domain}-org-${org.name}-${stage}" ] ]) ) }, { "pg" = concat( flatten([for ds in local.sorted-datasets: [for db in lookup(ds, "databases", []): { "name" = "${ds.name}-dataset-pg" "namespace" = ds.namespace "dbname" = db.name "username" = db.name "secret" = { "name" = "${ds.name}-dataset-pg-${db.name}" "key" = "POSGRESQL_PASSWORD" } }] if ds.engine=="pg"]), flatten([for ds in local.sorted-datasets: { "name" = "${ds.name}-dataset-pg" "namespace" = ds.namespace "dbname" = ds.name "username" = ds.name "secret" = { "name" = "${ds.name}-dataset-pg-app" "key" = "password" } } if ds.engine=="pg"]), flatten([for org in local.sorted-organisations: flatten([for stage in lookup(org, "stages", []): flatten([for ds in org.datasets: [for db in lookup(ds, "databases", []):{ "name" = "${ds.name}-dataset-pg" "namespace" = "${var.domain}-org-${org.name}-${stage.name}" "dbname" = db.name "username" = db.name "secret" = { "name" = "${ds.name}-dataset-pg-${db.name}" "key" = "POSGRESQL_PASSWORD" } }] if ds.engine=="pg"])])]), flatten([for org in local.sorted-organisations: flatten([for stage in lookup(org, "stages", []): flatten([for ds in org.datasets: { "name" = "${ds.name}-dataset-pg" "namespace" = "${var.domain}-org-${org.name}-${stage.name}" "dbname" = ds.name "username" = ds.name "secret" = { "name" = "${ds.name}-dataset-pg-app" "key" = "password" } } if ds.engine=="pg"])])]), var.external-pgs ) "maria" = concat( flatten([for ds in local.sorted-datasets: { "name" = "${ds.name}-dataset-maria" "namespace" = ds.namespace "dbname" = ds.name "username" = ds.name "secret" = { "name" = "${ds.name}-dataset-maria" "key" = "password" } } if ds.engine=="maria"]), flatten([for org in local.sorted-organisations: flatten([for stage in lookup(org, "stages", []): [for ds in org.datasets: { "name" = "${ds.name}-dataset-maria" "namespace" = "${var.domain}-org-${org.name}-${stage.name}" "dbname" = ds.name "username" = ds.name "secret" = { "name" = "${ds.name}-dataset-maria" "key" = "password" } } if ds.engine=="maria"]])]), var.external-marias ) "mongo" = concat( flatten([for ds in local.sorted-datasets: { "name" = "${ds.name}-dataset-mongo" "namespace" = ds.namespace "dbname" = ds.name "username" = ds.name "secret" = { "name" = "${ds.name}-dataset-mongo" "key" = "password" } } if ds.engine=="mongo"]), flatten([for org in local.sorted-organisations: flatten([for stage in lookup(org, "stages", []): [for ds in org.datasets: { "name" = "${ds.name}-dataset-mongo" "namespace" = "${var.domain}-org-${org.name}-${stage.name}" "dbname" = ds.name "username" = ds.name "secret" = { "name" = "${ds.name}-dataset-mongo" "key" = "password" } } if ds.engine=="mongo"]])]), var.external-mongos ) "redis" = concat( flatten([for ds in local.sorted-datasets: { "name" = "${ds.name}-dataset-redis" "namespace" = ds.namespace } if ds.engine=="mongo"]), flatten([for org in local.sorted-organisations: flatten([for stage in lookup(org, "stages", []): [for ds in org.datasets: { "name" = "${ds.name}-dataset-redis" "namespace" = "${var.domain}-org-${org.name}-${stage.name}" } if ds.engine=="mongo"]])]), var.external-redis ) }, { for k, v in var.apps.dbgate : k => v if !contains(["enable","storage","backups"],k) },{ backups = merge(local.global-backups, lookup(var.apps.dbgate, "backups", {})) storage = merge({ for k, v in lookup(var.apps.dbgate, "storage", {}) : k => v if !contains(["volume"],k) }, { volume = merge(local.global-volume, lookup(lookup(var.apps.dbgate, "storage", {}), "volume", {})) }) }) } resource "kubernetes_namespace_v1" "apps-ns" { count = (var.apps.dbgate.enable || var.apps.okd.enable || var.apps.gramo.enable) ? 1 : 0 metadata { annotations = merge(local.annotations, local.annotations_default) labels = merge(local.common-labels, local.annotations) name = "${var.namespace}-devapps" } } resource "kubectl_manifest" "okd" { count = var.apps.okd.enable ? 1 : 0 depends_on = [kubernetes_namespace_v1.apps-ns] yaml_body = <<-EOF apiVersion: "vynil.solidite.fr/v1" kind: "Install" metadata: name: "dev-okd" namespace: "${kubernetes_namespace_v1.apps-ns[0].metadata[0].name}" labels: ${jsonencode(local.common-labels)} spec: distrib: "${var.distributions.domain}" category: "apps" component: "okd" options: ${jsonencode(merge(local.global-apps, local.okd))} EOF } resource "kubectl_manifest" "gramo" { count = var.apps.gramo.enable ? 1 : 0 depends_on = [kubernetes_namespace_v1.apps-ns] yaml_body = <<-EOF apiVersion: "vynil.solidite.fr/v1" kind: "Install" metadata: name: "dev-gramo" namespace: "${kubernetes_namespace_v1.apps-ns[0].metadata[0].name}" labels: ${jsonencode(local.common-labels)} spec: distrib: "${var.distributions.domain}" category: "apps" component: "gramo" options: ${jsonencode(merge(local.global-apps, local.gramo))} EOF } resource "kubectl_manifest" "dbgate" { count = var.apps.dbgate.enable ? 1 : 0 depends_on = [kubernetes_namespace_v1.apps-ns] yaml_body = <<-EOF apiVersion: "vynil.solidite.fr/v1" kind: "Install" metadata: name: "dbgate" namespace: "${kubernetes_namespace_v1.apps-ns[0].metadata[0].name}" labels: ${jsonencode(local.common-labels)} spec: distrib: "${var.distributions.domain}" category: "apps" component: "dbgate" options: ${jsonencode(merge(local.global-apps, local.dbgate))} EOF }