Doddophonique/tah-deploy
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
tah-deploy/README.md
Davide Oddone 81288cdf4e
All checks were successful
--> Linted: ANSIBLE No errors were found in the linting process
Details
--> Linted: GITLEAKS No errors were found in the linting process
Details
--> Linted: JSCPD No errors were found in the linting process
Details
--> Linted: MARKDOWN No errors were found in the linting process
Details
--> Linted: NATURAL_LANGUAGE No errors were found in the linting process
Details
Lint Code Base / run-lint (push) Successful in 38s
Details
Fixed typo
2024-10-18 16:59:25 +02:00

38 lines
1.7 KiB
Markdown
Raw Permalink Blame History

# Terraform-Ansible-Helm Deployer
[![Super-Linter](https://github.com/doddophonique/tah-deploy/actions/workflows/super-linter.yml/badge.svg)](https://github.com/marketplace/actions/super-linter)
## Usage
From the `terraform/` folder:
```shell
terraform init
terraform plan
terraform apply
```
## Decisions and goals
The `terraform-provider-libvirt` has been chosen over Vagrant to deploy the VMs as a way to simplify the structure of the project. The choice over a cloud provider such as AWS or GCP has been done to not incur into billing cost during troubleshooting and deployments.
### Terraform script
The Terraform script roughly follows these steps:
1. Deploy 3 VMs (one master and two workers) with:
- 2 vCPUs;
- 2GB vRAM;
- 20GB of disk space;
- Ubuntu 24.04 LTS;
- An Ansible user.
2. Call an Ansible Playbook that:
1. Configures the master node and installs Kubernetes;
2. Configures the network for the Kubernetes cluster;
3. Configures the worker nodes and installs Kubernetes.
3. Create the `kiratech-test` namespace;
4. Run the CIS Kubernetes benchmark;
5. Copy the helm folder to the master node and install helm.
### Next steps
The script currently lacks:
- [ ] Capability of deploying an Helm application;
- [ ] Usage of Terraform outputs to populate Ansible files;
### CIS Kubernetes Benchmark
The CIS Benchamrk is one of (if not the) most popular benchmarks publicly available, and also has a simple way to implement it in a deployment pipeline using the [kube-bench](https://github.com/aquasecurity/kube-bench) implementation.
## Linting
The project uses GitHub Actions as a CI tool, running [super-linter](https://github.com/super-linter/super-linter) on the entire codebase.
Reference in New Issue View Git Blame Copy Permalink