Skip to content

Commit

Permalink
Add support for Terraform 0.12 #52
Browse files Browse the repository at this point in the history
  • Loading branch information
ingwarr committed Aug 5, 2019
1 parent 9c7727a commit 53d8228
Show file tree
Hide file tree
Showing 77 changed files with 2,397 additions and 896 deletions.
4 changes: 3 additions & 1 deletion CHANGELOG.md
Original file line number Diff line number Diff line change
Expand Up @@ -7,9 +7,11 @@ project adheres to [Semantic Versioning](http://semver.org/).

## [Unreleased]

### Added

### Added

- Added support for Terraform 0.12 [53]

### Changed

[53]: https://github.com/GoogleCloudPlatform/terraform-google-sql-db/pull/53
2 changes: 1 addition & 1 deletion Gemfile
Original file line number Diff line number Diff line change
@@ -1,5 +1,5 @@
source "https://rubygems.org/"

gem "kitchen-terraform", "~> 4.0"
gem "kitchen-terraform", "~> 4.9"
gem "test-kitchen"
gem 'kitchen-inspec'
30 changes: 12 additions & 18 deletions Makefile
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# Copyright 2018 Google LLC
# Copyright 2019 Google LLC
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
Expand All @@ -12,26 +12,20 @@
# See the License for the specific language governing permissions and
# limitations under the License.

# Please note that this file was generated from [terraform-google-module-template](https://github.com/terraform-google-modules/terraform-google-module-template).
# Please make sure to contribute relevant changes upstream!

# Make will use bash instead of sh
SHELL := /usr/bin/env bash

# Docker build config variables
CREDENTIALS_PATH ?= /cft/workdir/credentials.json


# Docker build config variables
CREDENTIALS_PATH ?= /cft/workdir/credentials.json
DOCKER_ORG := gcr.io/cloud-foundation-cicd
DOCKER_TAG_BASE_KITCHEN_TERRAFORM ?= 1.0.1
DOCKER_TAG_BASE_KITCHEN_TERRAFORM ?= 2.3.0
DOCKER_REPO_BASE_KITCHEN_TERRAFORM := ${DOCKER_ORG}/cft/kitchen-terraform:${DOCKER_TAG_BASE_KITCHEN_TERRAFORM}

# All is the first target in the file so it will get picked up when you just run 'make' on its own
.PHONY: all
all: check generate_docs

# Run all available linters
check: check_shell check_python check_golang check_terraform check_docker check_base_files test_check_headers check_headers check_trailing_whitespace
.PHONY: check
check: check_shell check_python check_golang check_terraform check_base_files test_check_headers check_headers check_trailing_whitespace

# The .PHONY directive tells make that this isn't a real target and so
# the presence of a file named 'check_shell' won't cause this target to stop
Expand Down Expand Up @@ -96,7 +90,7 @@ docker_run:
-e GOOGLE_APPLICATION_CREDENTIALS=${CREDENTIALS_PATH} \
-v $(CURDIR):/cft/workdir \
${DOCKER_REPO_BASE_KITCHEN_TERRAFORM} \
/bin/bash -c "source test/ci_integration.sh && setup_environment && exec /bin/bash"
/bin/bash -c "cd /cft/workdir && source test/ci_integration.sh && setup_environment && exec /bin/bash"

.PHONY: docker_create
docker_create:
Expand All @@ -106,7 +100,7 @@ docker_create:
-e GOOGLE_APPLICATION_CREDENTIALS=${CREDENTIALS_PATH} \
-v $(CURDIR):/cft/workdir \
${DOCKER_REPO_BASE_KITCHEN_TERRAFORM} \
/bin/bash -c "source test/ci_integration.sh && setup_environment && kitchen create"
/bin/bash -c "cd /cft/workdir && source test/ci_integration.sh && setup_environment && kitchen create"

.PHONY: docker_converge
docker_converge:
Expand All @@ -116,7 +110,7 @@ docker_converge:
-e GOOGLE_APPLICATION_CREDENTIALS=${CREDENTIALS_PATH} \
-v $(CURDIR):/cft/workdir \
${DOCKER_REPO_BASE_KITCHEN_TERRAFORM} \
/bin/bash -c "source test/ci_integration.sh && setup_environment && kitchen converge"
/bin/bash -c "cd /cft/workdir && source test/ci_integration.sh && setup_environment && kitchen converge"

.PHONY: docker_verify
docker_verify:
Expand All @@ -126,7 +120,7 @@ docker_verify:
-e GOOGLE_APPLICATION_CREDENTIALS=${CREDENTIALS_PATH} \
-v $(CURDIR):/cft/workdir \
${DOCKER_REPO_BASE_KITCHEN_TERRAFORM} \
/bin/bash -c "source test/ci_integration.sh && setup_environment && kitchen verify"
/bin/bash -c "cd /cft/workdir && source test/ci_integration.sh && setup_environment && kitchen verify"

.PHONY: docker_destroy
docker_destroy:
Expand All @@ -136,7 +130,7 @@ docker_destroy:
-e GOOGLE_APPLICATION_CREDENTIALS=${CREDENTIALS_PATH} \
-v $(CURDIR):/cft/workdir \
${DOCKER_REPO_BASE_KITCHEN_TERRAFORM} \
/bin/bash -c "source test/ci_integration.sh && setup_environment && kitchen destroy"
/bin/bash -c "cd /cft/workdir && source test/ci_integration.sh && setup_environment && kitchen destroy"

.PHONY: test_integration_docker
test_integration_docker:
Expand All @@ -146,4 +140,4 @@ test_integration_docker:
-e GOOGLE_APPLICATION_CREDENTIALS=${CREDENTIALS_PATH} \
-v $(CURDIR):/cft/workdir \
${DOCKER_REPO_BASE_KITCHEN_TERRAFORM} \
make test_integration
/bin/bash -c "cd /cft/workdir && source test/ci_integration.sh && setup_environment && make test_integration"
13 changes: 10 additions & 3 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -8,12 +8,20 @@ This module consists of the following submodules:

See more details in each module's README.

## Compatibility

This module is meant for use with Terraform 0.12. If you haven't [upgraded](https://www.terraform.io/upgrade-guides/0-12.html)
and need a Terraform 0.11.x-compatible version of this module, the last released version intended for
Terraform 0.11.x is [v1.2.0](https://github.com/GoogleCloudPlatform/terraform-google-sql-db/tree/v1.2.0).



## Requirements

### Installation Dependencies

- [terraform](https://www.terraform.io/downloads.html) 0.11.x
- [terraform-provider-google](https://github.com/terraform-providers/terraform-provider-google) plugin v1.12.x
- [terraform](https://www.terraform.io/downloads.html) 0.12.x
- [terraform-provider-google](https://github.com/terraform-providers/terraform-provider-google) plugin v2.5.x

### Configure a Service Account

Expand Down Expand Up @@ -119,7 +127,6 @@ Running flake8
Running go fmt and go vet
Running terraform validate
Running terraform fmt
Running hadolint on Dockerfiles
Checking for required files
The following lines have trailing whitespace
Generating markdown docs with terraform-docs
Expand Down
129 changes: 43 additions & 86 deletions examples/mysql-and-postgres/main.tf
Original file line number Diff line number Diff line change
@@ -1,11 +1,11 @@
/*
* Copyright 2017 Google Inc.
/**
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
Expand All @@ -14,54 +14,29 @@
* limitations under the License.
*/

variable "region" {
default = "us-central1"
}

variable "network" {
default = "default"
}

variable "zone" {
default = "us-central1-b"
}

variable "mysql_version" {
default = "MYSQL_5_6"
}

variable "postgresql_version" {
default = "POSTGRES_9_6"
}

provider "google" {
region = "${var.region}"
region = var.region
}

provider "google-beta" {
region = "${var.region}"
region = var.region
}

variable "network_name" {
default = "mysql-psql-example"
data "google_client_config" "current" {
}

data "google_client_config" "current" {}

variable "project_id" {}

resource "google_compute_network" "default" {
project = "${var.project_id}"
name = "${var.network_name}"
project = var.project_id
name = var.network_name
auto_create_subnetworks = false
}

resource "google_compute_subnetwork" "default" {
project = "${var.project_id}"
name = "${var.network_name}"
project = var.project_id
name = var.network_name
ip_cidr_range = "10.127.0.0/20"
network = "${google_compute_network.default.self_link}"
region = "${var.region}"
network = google_compute_network.default.self_link
region = var.region
private_ip_google_access = true
}

Expand All @@ -72,18 +47,20 @@ resource "random_id" "name" {
module "mysql-db" {
source = "../../modules/mysql"
name = "example-mysql-${random_id.name.hex}"
database_version = "${var.mysql_version}"
project_id = "${var.project_id}"
database_version = var.mysql_version
project_id = var.project_id
zone = "c"

ip_configuration = [{
ip_configuration = {
ipv4_enabled = true
authorized_networks = [
{
name = var.network_name
value = google_compute_subnetwork.default.ip_cidr_range
},
]
}

authorized_networks = [{
name = "${var.network_name}"
value = "${google_compute_subnetwork.default.ip_cidr_range}"
}]
}]

database_flags = [
{
Expand All @@ -96,72 +73,52 @@ module "mysql-db" {
module "postgresql-db" {
source = "../../modules/postgresql"
name = "example-postgresql-${random_id.name.hex}"
database_version = "${var.postgresql_version}"
project_id = "${var.project_id}"
database_version = var.postgresql_version
project_id = var.project_id
zone = "c"

ip_configuration = [{
ip_configuration = {
ipv4_enabled = true

authorized_networks = [{
name = "${var.network_name}"
value = "${google_compute_subnetwork.default.ip_cidr_range}"
}]
}]
authorized_networks = [
{
name = var.network_name
value = google_compute_subnetwork.default.ip_cidr_range
},
]
}
}

// We define a connection with the VPC of the Cloud SQL instance.
module "private-service-access" {
source = "../../modules/private_service_access"
project_id = "${var.project_id}"
vpc_network = "${google_compute_network.default.name}"
project_id = var.project_id
vpc_network = google_compute_network.default.name
}

module "safer-mysql-db" {
source = "../../modules/safer_mysql"
name = "example-safer-mysql-${random_id.name.hex}"
database_version = "${var.mysql_version}"
project_id = "${var.project_id}"
region = "${var.region}"
database_version = var.mysql_version
project_id = var.project_id
region = var.region
zone = "c"

# By default, all users will be permitted to connect only via the
# Cloud SQL proxy.
additional_users = [{
name = "app"
},
additional_users = [
{
name = "app"
},
{
name = "readonly"
},
]

assign_public_ip = true
vpc_network = "${google_compute_network.default.self_link}"
vpc_network = google_compute_network.default.self_link

// Used to enforce ordering in the creation of resources.
peering_completed = "${module.private-service-access.peering_completed}"
}

output "mysql_conn" {
value = "${module.mysql-db.instance_connection_name}"
}

output "mysql_user_pass" {
value = "${module.mysql-db.generated_user_password}"
peering_completed = module.private-service-access.peering_completed
}

output "psql_conn" {
value = "${module.postgresql-db.instance_connection_name}"
}

output "psql_user_pass" {
value = "${module.postgresql-db.generated_user_password}"
}

output "safer_mysql_conn" {
value = "${module.safer-mysql-db.instance_connection_name}"
}

output "safer_mysql_user_pass" {
value = "${module.safer-mysql-db.generated_user_password}"
}
39 changes: 39 additions & 0 deletions examples/mysql-and-postgres/outputs.tf
Original file line number Diff line number Diff line change
@@ -0,0 +1,39 @@
/**
* Copyright 2019 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/

output "mysql_conn" {
value = module.mysql-db.instance_connection_name
}

output "mysql_user_pass" {
value = module.mysql-db.generated_user_password
}

output "psql_conn" {
value = module.postgresql-db.instance_connection_name
}

output "psql_user_pass" {
value = module.postgresql-db.generated_user_password
}

output "safer_mysql_conn" {
value = module.safer-mysql-db.instance_connection_name
}

output "safer_mysql_user_pass" {
value = module.safer-mysql-db.generated_user_password
}
Loading

0 comments on commit 53d8228

Please sign in to comment.