2022-10-06 11:51:26 +02:00
|
|
|
terraform {
|
|
|
|
required_providers {
|
|
|
|
azurerm = {
|
|
|
|
source = "hashicorp/azurerm"
|
2024-02-21 14:36:53 +01:00
|
|
|
version = "3.92.0"
|
2022-10-06 11:51:26 +02:00
|
|
|
}
|
|
|
|
random = {
|
|
|
|
source = "hashicorp/random"
|
2023-12-12 16:00:16 +01:00
|
|
|
version = "3.6.0"
|
2022-10-06 11:51:26 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-06-22 16:53:40 +02:00
|
|
|
locals {
|
|
|
|
tags = merge(
|
|
|
|
var.tags,
|
|
|
|
{ constellation-role = var.role },
|
|
|
|
{ constellation-node-group = var.node_group_name },
|
|
|
|
)
|
|
|
|
group_uid = random_id.uid.hex
|
2023-06-23 12:08:30 +02:00
|
|
|
name = "${var.base_name}-${var.role}-${local.group_uid}"
|
2023-06-22 16:53:40 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
resource "random_id" "uid" {
|
|
|
|
byte_length = 4
|
|
|
|
}
|
2023-12-15 10:36:58 +01:00
|
|
|
|
2022-10-06 11:51:26 +02:00
|
|
|
resource "random_password" "password" {
|
2022-11-02 02:08:41 +01:00
|
|
|
length = 16
|
|
|
|
min_lower = 1
|
|
|
|
min_upper = 1
|
|
|
|
min_numeric = 1
|
|
|
|
min_special = 1
|
2022-10-06 11:51:26 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
resource "azurerm_linux_virtual_machine_scale_set" "scale_set" {
|
2023-06-22 16:53:40 +02:00
|
|
|
name = local.name
|
2022-10-06 11:51:26 +02:00
|
|
|
resource_group_name = var.resource_group
|
|
|
|
location = var.location
|
|
|
|
sku = var.instance_type
|
2023-06-30 10:53:00 +02:00
|
|
|
instances = var.initial_count
|
2022-10-06 11:51:26 +02:00
|
|
|
admin_username = "adminuser"
|
|
|
|
admin_password = random_password.password.result
|
|
|
|
overprovision = false
|
2022-10-21 10:06:02 +02:00
|
|
|
provision_vm_agent = false
|
2022-10-06 11:51:26 +02:00
|
|
|
vtpm_enabled = true
|
|
|
|
disable_password_authentication = false
|
|
|
|
upgrade_mode = "Manual"
|
2022-10-19 13:10:15 +02:00
|
|
|
secure_boot_enabled = var.secure_boot
|
2023-12-08 14:40:31 +01:00
|
|
|
# specify the image id only if a non-marketplace image is used
|
|
|
|
source_image_id = var.marketplace_image != null ? null : var.image_id
|
|
|
|
tags = local.tags
|
|
|
|
zones = var.zones
|
2022-10-06 11:51:26 +02:00
|
|
|
identity {
|
|
|
|
type = "UserAssigned"
|
|
|
|
identity_ids = [var.user_assigned_identity]
|
|
|
|
}
|
|
|
|
|
|
|
|
boot_diagnostics {}
|
|
|
|
|
|
|
|
dynamic "os_disk" {
|
|
|
|
for_each = var.confidential_vm ? [1] : [] # if confidential_vm is true
|
|
|
|
content {
|
|
|
|
security_encryption_type = "VMGuestStateOnly"
|
|
|
|
caching = "ReadWrite"
|
|
|
|
storage_account_type = "Premium_LRS"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
dynamic "os_disk" {
|
|
|
|
for_each = var.confidential_vm ? [] : [1] # else
|
|
|
|
content {
|
|
|
|
caching = "ReadWrite"
|
|
|
|
storage_account_type = "Premium_LRS"
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2023-12-08 14:40:31 +01:00
|
|
|
# Specify marketplace plan and image if set
|
|
|
|
dynamic "plan" {
|
|
|
|
for_each = var.marketplace_image != null ? [1] : [] # if a marketplace image is set
|
|
|
|
content {
|
|
|
|
name = var.marketplace_image.name
|
|
|
|
publisher = var.marketplace_image.publisher
|
|
|
|
product = var.marketplace_image.product
|
|
|
|
}
|
|
|
|
}
|
|
|
|
dynamic "source_image_reference" {
|
|
|
|
for_each = var.marketplace_image != null ? [1] : [] # if a marketplace image is set
|
|
|
|
content {
|
|
|
|
publisher = var.marketplace_image.publisher
|
|
|
|
offer = var.marketplace_image.product
|
|
|
|
sku = var.marketplace_image.name
|
|
|
|
version = var.marketplace_image.version
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2022-10-06 11:51:26 +02:00
|
|
|
data_disk {
|
|
|
|
storage_account_type = var.state_disk_type
|
|
|
|
disk_size_gb = var.state_disk_size
|
|
|
|
caching = "ReadWrite"
|
|
|
|
lun = 0
|
|
|
|
}
|
|
|
|
|
|
|
|
network_interface {
|
|
|
|
name = "node-network"
|
|
|
|
primary = true
|
|
|
|
network_security_group_id = var.network_security_group_id
|
|
|
|
|
|
|
|
ip_configuration {
|
|
|
|
name = "node-network"
|
|
|
|
primary = true
|
|
|
|
subnet_id = var.subnet_id
|
|
|
|
load_balancer_backend_address_pool_ids = var.backend_address_pool_ids
|
|
|
|
}
|
|
|
|
}
|
2022-11-07 11:04:10 +01:00
|
|
|
|
|
|
|
lifecycle {
|
|
|
|
ignore_changes = [
|
2023-12-08 14:40:31 +01:00
|
|
|
name, # required. Allow legacy scale sets to keep their old names
|
|
|
|
instances, # required. autoscaling modifies the instance count externally
|
|
|
|
source_image_id, # required. update procedure modifies the image id externally
|
|
|
|
source_image_reference, # required. update procedure modifies the image reference externally
|
2022-11-07 11:04:10 +01:00
|
|
|
]
|
|
|
|
}
|
2022-10-06 11:51:26 +02:00
|
|
|
}
|