Merge pull request #1 from gitizenme/dev

Initial module implementation

Author: gitizenme

.gitignore

@@ -0,0 +1,11 @@
+/.terraform/
+*.tfstate*
+*.auto.tfvars
+.terraform
+.terraform/*
+terraform.tfvars
+terraform.tfvars.example
+terraform.tfstate
+terraform.tfstate*
+kubeconfig-*
+ignore.tf

.pre-commit-config.yaml

@@ -0,0 +1,8 @@
+repos:
+- repo: git://github.com/antonbabenko/pre-commit-terraform
+  rev: v1.43.0
+  hooks:
+    - id: terraform_fmt
+    - id: terraform_docs
+    - id: terraform_validate
+    - id: terraform_tflint

.terraform.lock.hcl

@@ -1,2 +1,52 @@
-# terraform-kubernetes-external-dns-aws-istio
-Terraform module to deploy and configure k8s external DNS with EKS and Istio
+# Kubernetes External DNS for AWS EKS
+
+Terraform module [External DNS with Istio Gateway](https://github.com/kubernetes-sigs/external-dns/blob/master/docs/tutorials/istio.md) for aws.
+
+## Usage
+
+```
+module "external-dns-aws" {
+  source  = "gitizenme/external-dns-aws/kubernetes"
+  version = "1.0.1"
+
+  domain           = "my-domain.com"
+  k8s_cluster_name = "cluster-name"
+  k8s_replicas         = 2
+  hosted_zone_id       = "ROUTE53 ZONE ID"
+}
+```
+
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Requirements
+
+| Name | Version |
+|------|---------|
+| terraform | >= 0.12 |
+
+## Providers
+
+| Name | Version |
+|------|---------|
+| aws | n/a |
+| kubernetes | n/a |
+
+## Inputs
+
+| Name | Description | Type | Default | Required |
+|------|-------------|------|---------|:--------:|
+| domain | Domain to add external DNS to | `string` | n/a | yes |
+| k8s\_cluster\_name | Current Cluster Name | `string` | n/a | yes |
+| hosted\_zone\_id | Route53 Hosted Zone ID | `string` | n/a | yes |
+| external\_dns\_version | The AWS External DNS version to use. See https://github.com/kubernetes-sigs/external-dns/releases for available versions | `string` | `"0.7.6"` | no |
+| k8s\_cluster\_type | K8s cluster Type | `string` | `"eks"` | no |
+| k8s\_namespace | Kubernetes namespace to deploy the AWS External DNS into. | `string` | `"kube-system"` | no |
+| k8s\_pod\_labels | Additional labels to be added to the Pods. | `map(string)` | `{}` | no |
+| k8s\_replicas | Amount of replicas to be created. | `number` | `1` | no |
+
+## Outputs
+
+| Name | Description |
+|------|-------------|
+| kubernetes\_deployment | n/a |
+
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->

README.md

@@ -0,0 +1,159 @@
+
+
+data "aws_eks_cluster" "cluster" {
+  name = module.eks.cluster_id
+}
+
+data "aws_eks_cluster_auth" "cluster" {
+  name = module.eks.cluster_id
+}
+
+provider "kubernetes" {
+  host                   = data.aws_eks_cluster.cluster.endpoint
+  cluster_ca_certificate = base64decode(data.aws_eks_cluster.cluster.certificate_authority.0.data)
+  token                  = data.aws_eks_cluster_auth.cluster.token
+}
+
+data "aws_availability_zones" "available" {
+}
+
+locals {
+  cluster_name = "test-eks-${random_string.suffix.result}"
+}
+
+resource "random_string" "suffix" {
+  length  = 8
+  special = false
+}
+
+resource "aws_security_group" "worker_group_mgmt_one" {
+  name_prefix = "worker_group_mgmt_one"
+  vpc_id      = module.vpc.vpc_id
+
+  ingress {
+    from_port = 22
+    to_port   = 22
+    protocol  = "tcp"
+
+    cidr_blocks = [
+      "10.0.0.0/8",
+    ]
+  }
+}
+
+resource "aws_security_group" "worker_group_mgmt_two" {
+  name_prefix = "worker_group_mgmt_two"
+  vpc_id      = module.vpc.vpc_id
+
+  ingress {
+    from_port = 22
+    to_port   = 22
+    protocol  = "tcp"
+
+    cidr_blocks = [
+      "192.168.0.0/16",
+    ]
+  }
+}
+
+resource "aws_security_group" "all_worker_mgmt" {
+  name_prefix = "all_worker_management"
+  vpc_id      = module.vpc.vpc_id
+
+  ingress {
+    from_port = 22
+    to_port   = 22
+    protocol  = "tcp"
+
+    cidr_blocks = [
+      "10.0.0.0/8",
+      "172.16.0.0/12",
+      "192.168.0.0/16",
+    ]
+  }
+}
+
+module "vpc" {
+  source  = "terraform-aws-modules/vpc/aws"
+  version = "2.70.0"
+
+  name                 = "test-vpc"
+  cidr                 = "10.0.0.0/16"
+  azs                  = data.aws_availability_zones.available.names
+  private_subnets      = ["10.0.1.0/24", "10.0.2.0/24", "10.0.3.0/24"]
+  public_subnets       = ["10.0.4.0/24", "10.0.5.0/24", "10.0.6.0/24"]
+  enable_nat_gateway   = true
+  single_nat_gateway   = true
+  enable_dns_hostnames = true
+
+  public_subnet_tags = {
+    "kubernetes.io/cluster/${local.cluster_name}" = "shared"
+    "kubernetes.io/role/elb"                      = "1"
+  }
+
+  private_subnet_tags = {
+    "kubernetes.io/cluster/${local.cluster_name}" = "shared"
+    "kubernetes.io/role/internal-elb"             = "1"
+  }
+}
+
+module "eks" {
+  source          = "terraform-aws-modules/eks/aws"
+  cluster_name    = local.cluster_name
+  cluster_version = "1.18"
+  subnets         = module.vpc.private_subnets
+
+  tags = {
+    Environment = "test"
+    GithubRepo  = "terraform-aws-eks"
+    GithubOrg   = "terraform-aws-modules"
+  }
+
+  vpc_id = module.vpc.vpc_id
+
+  worker_groups = [
+    {
+      name                 = "worker-group-1"
+      instance_type        = "t3.small"
+      additional_userdata  = "echo foo bar"
+      asg_desired_capacity = 2
+    },
+    {
+      name                 = "worker-group-2"
+      instance_type        = "t3.medium"
+      additional_userdata  = "echo foo bar"
+      asg_desired_capacity = 1
+    },
+  ]
+
+  worker_additional_security_group_ids = [aws_security_group.all_worker_mgmt.id]
+}
+
+resource "aws_route53_zone" "main" {
+  name = "my-domain.com"
+}
+
+resource "aws_route53_zone" "dev" {
+  name = "dev.my-domain.com"
+
+  tags = {
+    Environment = "dev"
+  }
+}
+
+resource "aws_route53_record" "dev-ns" {
+  zone_id = aws_route53_zone.main.zone_id
+  name    = "dev.example.com"
+  type    = "NS"
+  ttl     = "30"
+  records = aws_route53_zone.dev.name_servers
+}
+
+module "external-dns-aws" {
+  source = "gitizenme/external-dns-aws/kubernetes"
+
+  domain           = "my-domain.com"
+  k8s_cluster_name = local.cluster_name
+  k8s_replicas     = 2
+  hosted_zone_id   = aws_route53_zone.main.zone_id
+}