ocp.tf

provider "ibm" {
  ibmcloud_api_key      = var.ibmcloud_api_key
  region                = var.ibmcloud_region
  zone                  = var.ibmcloud_zone
  iaas_classic_username = var.iaas_classic_username
  iaas_classic_api_key  = var.iaas_classic_api_key
}

resource "random_id" "label" {
  count       = var.cluster_id == "" ? 1 : 0
  byte_length = "2" # Since we use the hex, the word length would double
  prefix      = "${var.cluster_id_prefix}-"
}

locals {
  # Generates cluster_id as combination of cluster_id_prefix + (random_id or user-defined cluster_id)
  cluster_id   = var.cluster_id == "" ? random_id.label[0].hex : (var.cluster_id_prefix == "" ? var.cluster_id : "${var.cluster_id_prefix}-${var.cluster_id}")
  name_prefix  = var.use_zone_info_for_names ? "${local.cluster_id}-${var.ibmcloud_zone}" : local.cluster_id
  storage_type = lookup(var.bastion, "count", 1) > 1 ? "none" : var.storage_type
}

data "ibm_is_subnet" "vpc_subnet" {
  count = var.use_ibm_cloud_services ? 1 : 0
  name  = var.ibm_cloud_vpc_subnet_name
}

module "prepare" {
  source = "./modules/1_prepare"

  bastion                         = var.bastion
  service_instance_id             = var.service_instance_id
  cluster_id                      = local.cluster_id
  name_prefix                     = local.name_prefix
  cluster_domain                  = var.cluster_domain
  rhel_image_name                 = var.rhel_image_name
  processor_type                  = var.processor_type
  system_type                     = var.system_type
  network_name                    = var.network_name
  network_dns                     = var.dns_forwarders == "" ? [] : [for dns in split(";", var.dns_forwarders) : trimspace(dns)]
  bastion_health_status           = var.bastion_health_status
  private_network_mtu             = var.private_network_mtu
  rhel_username                   = var.rhel_username
  private_key                     = local.private_key
  public_key                      = local.public_key
  ssh_agent                       = var.ssh_agent
  rhel_subscription_username      = var.rhel_subscription_username
  rhel_subscription_password      = var.rhel_subscription_password
  rhel_subscription_org           = var.rhel_subscription_org
  rhel_subscription_activationkey = var.rhel_subscription_activationkey
  ansible_repo_name               = var.ansible_repo_name
  rhel_smt                        = var.rhel_smt
  storage_type                    = local.storage_type
  volume_size                     = var.volume_size
  volume_shareable                = var.volume_shareable
  setup_squid_proxy               = var.setup_squid_proxy
  proxy                           = var.proxy
}

module "nodes" {
  source = "./modules/4_nodes"

  service_instance_id = var.service_instance_id
  rhcos_image_name    = var.rhcos_image_name
  processor_type      = var.processor_type
  system_type         = var.system_type
  network_name        = var.network_name
  bastion_ip          = lookup(var.bastion, "count", 1) > 1 ? module.prepare.bastion_vip : module.prepare.bastion_ip[0]
  cluster_domain      = var.cluster_domain
  cluster_id          = local.cluster_id
  name_prefix         = local.name_prefix
  bootstrap           = var.bootstrap
  master              = var.master
  worker              = var.worker
  master_volume_size  = var.master_volume_size
  worker_volume_size  = var.worker_volume_size
  volume_shareable    = var.volume_shareable
  bastion_public_ip   = module.prepare.bastion_public_ip
  rhel_username       = var.rhel_username
  private_key         = local.private_key
  ssh_agent           = var.ssh_agent
}

module "install" {
  source = "./modules/5_install"

  service_instance_id            = var.service_instance_id
  cluster_domain                 = var.cluster_domain
  cluster_id                     = local.cluster_id
  name_prefix                    = local.name_prefix
  dns_forwarders                 = var.dns_forwarders
  gateway_ip                     = module.prepare.gateway_ip
  cidr                           = module.prepare.cidr
  public_cidr                    = module.prepare.public_cidr
  bastion_count                  = lookup(var.bastion, "count", 1)
  bastion_vip                    = module.prepare.bastion_vip
  bastion_ip                     = module.prepare.bastion_ip
  rhel_username                  = var.rhel_username
  private_key                    = local.private_key
  ssh_agent                      = var.ssh_agent
  bastion_internal_vip           = module.prepare.bastion_internal_vip
  bastion_external_vip           = module.prepare.bastion_external_vip
  bastion_public_ip              = module.prepare.bastion_public_ip
  bootstrap_ip                   = module.nodes.bootstrap_ip
  master_ips                     = module.nodes.master_ips
  worker_ips                     = module.nodes.worker_ips
  bootstrap_mac                  = module.nodes.bootstrap_mac
  master_macs                    = module.nodes.master_macs
  worker_macs                    = module.nodes.worker_macs
  public_key                     = local.public_key
  pull_secret                    = file(coalesce(var.pull_secret_file, "/dev/null"))
  openshift_install_tarball      = var.openshift_install_tarball
  openshift_client_tarball       = var.openshift_client_tarball
  storage_type                   = local.storage_type
  release_image_override         = var.release_image_override
  private_network_mtu            = var.private_network_mtu
  enable_local_registry          = var.enable_local_registry
  local_registry_image           = var.local_registry_image
  ocp_release_tag                = var.ocp_release_tag
  ocp_release_name               = var.ocp_release_name
  setup_snat                     = var.setup_snat
  setup_squid_proxy              = var.setup_squid_proxy
  proxy                          = var.proxy
  helpernode_repo                = var.helpernode_repo
  helpernode_tag                 = var.helpernode_tag
  install_playbook_repo          = var.install_playbook_repo
  install_playbook_tag           = var.install_playbook_tag
  log_level                      = var.installer_log_level
  ansible_extra_options          = var.ansible_extra_options
  rhcos_kernel_options           = var.rhcos_kernel_options
  chrony_config                  = var.chrony_config
  chrony_config_servers          = var.chrony_config_servers
  upgrade_version                = var.upgrade_version
  upgrade_pause_time             = var.upgrade_pause_time
  upgrade_delay_time             = var.upgrade_delay_time
  ibm_cloud_dl_endpoint_net_cidr = var.ibm_cloud_dl_endpoint_net_cidr
  ibm_cloud_http_proxy           = var.ibm_cloud_http_proxy
  cni_network_provider           = var.cni_network_provider
  use_ibm_cloud_services         = var.use_ibm_cloud_services
  vpc_cidr                       = var.use_ibm_cloud_services ? data.ibm_is_subnet.vpc_subnet[0].ipv4_cidr_block : ""

}

module "ibmcloud" {
  count  = var.use_ibm_cloud_services ? 1 : 0
  source = "./modules/7_ibmcloud"

  cluster_domain  = var.cluster_domain
  cluster_id      = local.cluster_id
  name_prefix     = local.name_prefix
  bastion_count   = lookup(var.bastion, "count", 1)
  bootstrap_count = var.bootstrap["count"]
  master_count    = var.master["count"]
  worker_count    = var.worker["count"]
  bastion_vip     = module.prepare.bastion_vip
  bastion_ip      = module.prepare.bastion_ip
  bootstrap_ip    = module.nodes.bootstrap_ip
  master_ips      = module.nodes.master_ips
  worker_ips      = module.nodes.worker_ips
  vpc_name        = var.ibm_cloud_vpc_name
  vpc_subnet_id   = var.use_ibm_cloud_services ? data.ibm_is_subnet.vpc_subnet[0].id : ""
}