Reusable, mass-producible code scaffolding for EQ Stacks
This IaaS code assumes that you have a Shared VPC set up in your Google Cloud organization, as well as a project that specifically contains your service account(s).
You will need the IDs of both of those projects to start.
- Install the Google Cloud SDK
gcloud auth login- Get the service account information from your administrator and add it to your gcloud config
Then run:
$ ./scripts/add_sa_role.shThis will give the service account the necessary permissions for one hour while you do your IaaS work.
This stack is structured in three modules, executed in following order:
- Infrastructure module contains all cloud infrastructure configuration. It builds the stack to the point where Kubernetes API comes up.
- Kubernetes module configures the basic cluster configurations. It sets defaults to storage classes and refines the k8s role bindings for Terraform service account.
- Workload module configures the actual workload this stack is running on the k8s cluster. By default there is prometheus stack installed, but any more specific workload configuration goes here.
Additionally, there is charts directory that is meant to be used for embedded Helm charts which are hosted in this repo. These can be then referenced from the workload configuration.