Missing CCE cluster options: RBAC and Highavalability #94
Comments
|
@Thomas999999 I'm sorry that I can't find the parameters exposed with the API that we can use :( |
|
Hi niuzhenguo,
Thanks in advance! |
|
I think you should create an issue on Cloud side with the questions above,
and CCE team should provide a solution for such requirements.
…On Wed, Mar 20, 2019 at 2:46 PM Thomas999999 ***@***.***> wrote:
Hi niuzhenguo,
thanks for checking.
We need those possible configuration options for our business in order to
create CCE cluster via terraform.
Thus my questions would be:
- Despite that RBAC option is not configurable via terraform code,
will a CCE cluster - created via terraform - then be created with RBAC by
default?
- To whom may I address a development request to adapt terraform for
huawei-cloud with those options (RBAC & HA cluster)?
Thanks in advance!
Thomas
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<https://github.com/terraform-providers/terraform-provider-huaweicloud/issues/94#issuecomment-474707299>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/ADqYHntvMoj3f7p80bw9V7T5TbDk38pvks5vYdkrgaJpZM4b8BNu>
.
--
Best Regards,
Zhenguo Niu
|
|
With " create an issue on Cloud side" you mean to create a service ticket in Huawei Cloud?...I mean both options are available in Huawei cloud console if setting up an CCE cluster manually...or does the CCE team also deals with developing terraform code adaptions? |
|
Terraform resources are based on the API exposed by services on Cloud side,
so the issue here is that CCE API doesn't expose the abilities of RBAC and
HA. You can paste the API docs above and the requirements to CCE team.
…On Wed, Mar 20, 2019 at 2:58 PM Thomas999999 ***@***.***> wrote:
With " create an issue on Cloud side" you mean to create a service ticket
in Huawei Cloud?...I mean both options are available in Huawei cloud
console if setting up an CCE cluster manually...or does the CCE team also
deals with developing terraform code adaptions?
—
You are receiving this because you commented.
Reply to this email directly, view it on GitHub
<https://github.com/terraform-providers/terraform-provider-huaweicloud/issues/94#issuecomment-474710106>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/ADqYHv-uWUvI5972ohcr6VtZzD4XpBmvks5vYdwDgaJpZM4b8BNu>
.
--
Best Regards,
Zhenguo Niu
|
|
@Thomas999999 Regarding the HA for master node, please refer to the |
|
Thanks!..I really overlooked that... |
|
Hi, But I cannot add any comment/question now to this ticket, thus maybe you can help with syntax in terraform tf file about of how to transfer authentication: {mode: "rbac", authenticatingProxy: {}}: .... And for what purpose is the authenticatingProxy and what to enter here? Thanks in advance! |
|
I will work on that once the docs get updated!
…On Wed, Mar 20, 2019 at 9:22 PM Thomas999999 ***@***.***> wrote:
Hi,
Huawei support now told me in ticket:
"....The parameter of RBAC is authentication: {mode: "rbac",
authenticatingProxy: {}}. The document will be updated later. ...."
But I cannot add any comment/question now to this ticket, thus maybe you
can help with syntax in terraform tf file about of how to transfer
authentication: {mode: "rbac", authenticatingProxy: {}}:
is it like this:?
snip
.....
###CCE cluster creation
resource "huaweicloud_cce_cluster_v3" "cluster_1" {
name = "${var.cce_cluster_name}"
cluster_type = "VirtualMachine"
flavor_id = "${var.cce_flavor_id}"
vpc_id = "${var.vpc_id}"
subnet_id = "${huaweicloud_vpc_subnet_v1.subnet_2.id}"
cluster_version = "${cce_kubectl_version}"
container_network_type = "overlay_l2"
**authentication_mode {
mode = "rbac",
authenticatingProxy = {}
}**
}
....
And for what purpose is the authenticatingProxy and what to enter here?
Thanks in advance!
Thomas
—
You are receiving this because you were assigned.
Reply to this email directly, view it on GitHub
<https://github.com/terraform-providers/terraform-provider-huaweicloud/issues/94#issuecomment-474825987>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/ADqYHqJsklTToVrtuDCeaD-E4eMksHUXks5vYjYlgaJpZM4b8BNu>
.
--
Best Regards,
Zhenguo Niu
|
|
Hi, "Dear customer: Does this mean now in terraform?: Sorry for bothering you, but I'm not quite sure how the process of adding feature/code into terraform is working: Do I need to moderate between Service Support and terraform development (you?), or is this an automated process? Thanks |
|
@Thomas999999 In fact, we don't know what's new/update on Cloud side, so an issue like this should be raised here then we can work on it. When we received the request, we will first check out the API docs to see if that's possible to add on terraform side, if not, a Service ticket should be raised to Service team. I will work on RBAC support later, and it should be available on next release! |
|
Hi, Or do I check the wrong URL? Thanks, |
|
next release will be cut by the end of this month, but you can build the
provider yourself by following this
https://github.com/terraform-providers/terraform-provider-huaweicloud#exact-steps-on-clean-ubuntu-1604
You can check the docs about how to activate RBAC
https://github.com/terraform-providers/terraform-provider-huaweicloud/blob/master/website/docs/r/cce_cluster_v3.html.md
…On Tue, Apr 9, 2019 at 6:29 PM Thomas999999 ***@***.***> wrote:
Hi,
you told above that it will be fixed in next release.
When is next release? already done or how will someone be informed about
that?
I still see no information about syntax of how to activate RABC in
https://www.terraform.io/docs/providers/huaweicloud/r/cce_cluster_v3.html
Or do I check the wrong URL?
Thanks,
Thomas
—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
<https://github.com/terraform-providers/terraform-provider-huaweicloud/issues/94#issuecomment-481196120>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/ADqYHr0P3Jj5b3xUahi-JzbRy_C4FSJsks5vfGukgaJpZM4b8BNu>
.
--
Best Regards,
Zhenguo Niu
|
|
Hi, you wrote above: "next release will be cut by the end of this month," I tried today to use but is still not working:
C:\Testinfo\AWS_Dathub_Vora\Huawei-Cluster\cluster-dev>terraform plan Error: huaweicloud_cce_cluster_v3.cluster_1: : invalid or unknown key: authentication_mode So when will this be productive? |
|
@Thomas999999 due to some CI issue, there will be some delay for 1.5 release, will cut it once the issue fixed. |
|
Dear Niuzhenguo, when do you think this 1.5 release may happen? |
|
I will try to cut it by the end of the week.
…On Tue, May 14, 2019 at 8:30 PM Thomas999999 ***@***.***> wrote:
Dear Niuzhenguo,
when do you think this 1.5 release may happen?
Thanks
—
You are receiving this because you modified the open/close state.
Reply to this email directly, view it on GitHub
<https://github.com/terraform-providers/terraform-provider-huaweicloud/issues/94?email_source=notifications&email_token=AA5JQHRZ4LW55KKZCEPLUNLPVKWENA5CNFSM4G7QCNXKYY3PNVWWK3TUL52HS4DFVREXG43VMVBW63LNMVXHJKTDN5WW2ZLOORPWSZGODVLKEIQ#issuecomment-492216866>,
or mute the thread
<https://github.com/notifications/unsubscribe-auth/AA5JQHVFL2AVRZCAQ5UU55LPVKWENANCNFSM4G7QCNXA>
.
--
Best Regards,
Zhenguo Niu
|
Hi there,
Affected Resource(s)
Please list the resources as a list, for example:
Expected Behavior
I would expect to have parameter for huaweicloud_cce_cluster_v3 to define:
Actual Behavior
Both options not seen from https://www.terraform.io/docs/providers/huaweicloud/r/cce_cluster_v3.html, but are available if creating cluster manually.
Steps to Reproduce
Check https://www.terraform.io/docs/providers/huaweicloud/r/cce_cluster_v3.html
References
none
The text was updated successfully, but these errors were encountered: