Merge pull request #4 from lablabs/add_argocd_support

Thumbiceq · web-flow · commit 9da523a9a43e · 2021-09-29T13:46:46.000+02:00
Add argocd support
diff --git a/README.md b/README.md
@@ -54,6 +54,7 @@ No modules.
 | [aws_iam_role_policy_attachment.cert_manager](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/resources/iam_role_policy_attachment) | resource |
 | [helm_release.cert_manager](https://registry.terraform.io/providers/hashicorp/helm/latest/docs/resources/release) | resource |
 | [helm_release.default_cluster_issuer](https://registry.terraform.io/providers/hashicorp/helm/latest/docs/resources/release) | resource |
+| [kubernetes_manifest.this](https://registry.terraform.io/providers/hashicorp/kubernetes/latest/docs/resources/manifest) | resource |
 | [time_sleep.default_cluster_issuer](https://registry.terraform.io/providers/hashicorp/time/latest/docs/resources/sleep) | resource |
 | [aws_iam_policy_document.cert_manager](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
 | [aws_iam_policy_document.cert_manager_assume](https://registry.terraform.io/providers/hashicorp/aws/latest/docs/data-sources/iam_policy_document) | data source |
@@ -69,6 +70,12 @@ No modules.
 | <a name="input_cluster_identity_oidc_issuer"></a> [cluster\_identity\_oidc\_issuer](#input\_cluster\_identity\_oidc\_issuer) | The OIDC Identity issuer for the cluster | `string` | n/a | yes |
 | <a name="input_cluster_identity_oidc_issuer_arn"></a> [cluster\_identity\_oidc\_issuer\_arn](#input\_cluster\_identity\_oidc\_issuer\_arn) | The OIDC Identity issuer ARN for the cluster that can be used to associate IAM roles with a service account | `string` | n/a | yes |
 | <a name="input_cluster_name"></a> [cluster\_name](#input\_cluster\_name) | The name of the cluster | `string` | n/a | yes |
+| <a name="input_argo_application_enabled"></a> [argo\_application\_enabled](#input\_argo\_application\_enabled) | If set to true, the module will be deployed as ArgoCD application, otherwise it will be deployed as a Helm release | `bool` | `false` | no |
+| <a name="input_argo_destionation_server"></a> [argo\_destionation\_server](#input\_argo\_destionation\_server) | Destination server for ArgoCD Application | `string` | `"https://kubernetes.default.svc"` | no |
+| <a name="input_argo_info"></a> [argo\_info](#input\_argo\_info) | ArgoCD info manifest parameter | `list` | <pre>[<br>  {<br>    "name": "terraform",<br>    "value": "true"<br>  }<br>]</pre> | no |
+| <a name="input_argo_namespace"></a> [argo\_namespace](#input\_argo\_namespace) | Namespace to deploy ArgoCD application CRD to | `string` | `"argo"` | no |
+| <a name="input_argo_project"></a> [argo\_project](#input\_argo\_project) | ArgoCD Application project | `string` | `"default"` | no |
+| <a name="input_argo_sync_policy"></a> [argo\_sync\_policy](#input\_argo\_sync\_policy) | ArgoCD syncPolicy manifest parameter | `map` | `{}` | no |
 | <a name="input_cluster_issuer_enabled"></a> [cluster\_issuer\_enabled](#input\_cluster\_issuer\_enabled) | Variable indicating whether default ClusterIssuer CRD is enabled | `bool` | `false` | no |
 | <a name="input_cluster_issuer_settings"></a> [cluster\_issuer\_settings](#input\_cluster\_issuer\_settings) | Additional settings which will be passed to the Helm chart cluster\_issuer values, see https://github.com/lablabs/terraform-aws-eks-aws-cert-manager/blob/master/helm/defaultClusterIssuer/values.yaml | `map(any)` | `{}` | no |
 | <a name="input_cluster_issuers_values"></a> [cluster\_issuers\_values](#input\_cluster\_issuers\_values) | Additional values for cert manager cluster issuers helm chart. Values will be merged, in order, as Helm does with multiple -f options | `string` | `""` | no |
diff --git a/argo.tf b/argo.tf
@@ -0,0 +1,30 @@
+resource "kubernetes_manifest" "this" {
+  count = var.argo_application_enabled ? 1 : 0
+  manifest = {
+    "apiVersion" = "argoproj.io/v1alpha1"
+    "kind"       = "Application"
+    "metadata" = {
+      "name"      = var.helm_release_name
+      "namespace" = var.argo_namespace
+    }
+    "spec" = {
+      "project" = var.argo_project
+      "source" = {
+        "repoURL"        = var.helm_repo_url
+        "chart"          = var.helm_chart_name
+        "targetRevision" = var.helm_chart_version
+        "helm" = {
+          "releaseName" = var.helm_release_name
+          "parameters"  = [for k, v in var.settings : tomap({ "forceString" : true, "name" : k, "value" : v })]
+          "values"      = data.utils_deep_merge_yaml.values[0].output
+        }
+      }
+      "destination" = {
+        "server"    = var.argo_destionation_server
+        "namespace" = var.k8s_namespace
+      }
+      "syncPolicy" = var.argo_sync_policy
+      "info"       = var.argo_info
+    }
+  }
+}
diff --git a/main.tf b/main.tf
@@ -51,7 +51,7 @@ data "utils_deep_merge_yaml" "default_cluster_issuer_values" {
 
 
 resource "helm_release" "cert_manager" {
-  count = var.enabled ? 1 : 0
+  count = var.enabled && !var.argo_application_enabled ? 1 : 0
 
   chart            = var.helm_chart_name
   create_namespace = var.helm_create_namespace
diff --git a/variables.tf b/variables.tf
@@ -119,3 +119,41 @@ variable "policy_allowed_zone_ids" {
   default     = ["*"]
   description = "List of the Route53 zone ids for service account IAM role access"
 }
+
+variable "argo_namespace" {
+  type        = string
+  default     = "argo"
+  description = "Namespace to deploy ArgoCD application CRD to"
+}
+
+
+variable "argo_application_enabled" {
+  type        = bool
+  default     = false
+  description = "If set to true, the module will be deployed as ArgoCD application, otherwise it will be deployed as a Helm release"
+}
+
+variable "argo_destionation_server" {
+  type        = string
+  default     = "https://kubernetes.default.svc"
+  description = "Destination server for ArgoCD Application"
+}
+
+variable "argo_project" {
+  type        = string
+  default     = "default"
+  description = "ArgoCD Application project"
+}
+
+variable "argo_info" {
+  default = [{
+    "name"  = "terraform"
+    "value" = "true"
+  }]
+  description = "ArgoCD info manifest parameter"
+}
+
+variable "argo_sync_policy" {
+  description = "ArgoCD syncPolicy manifest parameter"
+  default     = {}
+}
