Add openshift route module

Author: anilkumarnagaraj

README.md

@@ -15,6 +15,7 @@ And it also has the following modules to configure a already provisioned cluster
 * classic-cluster-worker-pool
 * vpc-cluster-worker-pool
 * add-ons
+* openshift-route
 
 ## Compatibility
 
@@ -96,6 +97,19 @@ module "vpc_openshift_cluster" {
 }
 ```
 
+Creation of openshift route:
+
+```hcl
+module "openshift_cluster_route" {
+  source = "github.com/terraform-ibm-modules/terraform-ibm-cluster//modules/openshift-route"
+
+  ibmcloud_api_key    = var.ibmcloud_api_key
+  cluster_service_url = var.cluster_service_url
+  namespace           = var.namespace
+  route_data          = var.route_data
+}
+```
+
 ## Requirements
 
 ### Terraform plugins

examples/openshift-route/README.md

@@ -0,0 +1,95 @@
+# Module openshift-route
+
+This module is used to provision a route to an openshift cluster. An [OpenShift route](https://docs.openshift.com/enterprise/3.0/architecture/core_concepts/routes.html) is a way to expose a service by giving it an externally-reachable hostname like www.example.com.
+
+
+## Example Usage
+
+``` terraform
+provider "ibm" {
+}
+
+locals {
+    # get json
+    data = jsondecode(var.route_data)
+}
+
+data "ibm_satellite_cluster" "cluster" {
+  name  = var.cluster
+}
+
+module "openshift_cluster_route" {
+  source = "github.com/terraform-ibm-modules/terraform-ibm-cluster//modules/openshift-route"
+
+  ibmcloud_api_key    = var.ibmcloud_api_key
+  cluster_service_url = data.ibm_satellite_cluster.cluster.server_url
+  namespace           = var.namespace
+  route_data          = var.route_data
+}
+```
+
+## Note
+
+* To update a openshift route, users has to get the "resourceVersion" parameter value from terraform.tfstate or openshift console file, And add it to 'route_data' variable as a route specification.
+
+``` Route Specfication
+{
+   "kind":"Route",
+   "apiVersion":"route.openshift.io/v1",
+   "metadata":{
+      "name":"route-01",
+      "resourceVersion": "<resourceVersion>"
+   },
+	.....
+	.....
+}
+```
+* All optional fields are given value `null` in varaible.tf file. User can configure the same by overwriting with appropriate values.
+* Provide `version` attribute in terraform block in versions.tf file to use specific version of terraform provider.
+
+
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+## Inputs
+
+| Name                     | Description                                                    | Type   |Default  |Required |
+|--------------------------|----------------------------------------------------------------|:-------|:--------|:--------|
+| ibmcloud_api_key         | IBM Cloud IAM API key                                          |`string`| n/a     | yes     |
+| cluster                  | Cluster Name                                                   |`string`| n/a     | yes     |
+| namespace                | Openshift namespace name                                       |`string`| default | no      |
+| route_data               | Route specification                                            |`string`| n/a     | no      |
+
+## Outputs
+
+| Name                     | Description                |
+|--------------------------|----------------------------|
+| route_response           | Route response             |
+
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+
+## Usage
+
+Initialising Provider
+
+Make sure you declare a required providers ibm block to make use of IBM-Cloud Terraform Provider
+
+```terraform
+terraform {
+  required_providers {
+    restapi = {
+      source  = "fmontezuma/restapi"
+      version = "1.14.1"
+    }
+    ibm = {
+      source = "IBM-Cloud/ibm"
+    }
+  }
+}
+```
+
+```bash
+terraform init
+terraform plan
+terraform apply
+```
+
+Run `terraform destroy` when you don't need these resources.

examples/openshift-route/main.tf

@@ -0,0 +1,20 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+provider "ibm" {
+}
+
+data "ibm_satellite_cluster" "cluster" {
+  name = var.cluster
+}
+
+module "openshift_cluster_route" {
+  source = "github.com/terraform-ibm-modules/terraform-ibm-cluster//modules/openshift-route"
+
+  ibmcloud_api_key    = var.ibmcloud_api_key
+  cluster_service_url = data.ibm_satellite_cluster.cluster.server_url
+  namespace           = var.namespace
+  route_data          = var.route_data
+}

examples/openshift-route/output.tf

@@ -0,0 +1,8 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+output "route_response" {
+  value = module.openshift_cluster_route.route_response
+}

examples/openshift-route/variables.tf

@@ -0,0 +1,54 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+variable "ibmcloud_api_key" {
+  description = "IBM Cloud API Key"
+}
+
+variable "cluster" {
+  description = "Cluster Name"
+  type        = string
+
+  validation {
+    error_message = "Cluster name must begin and end with a letter and contain only letters, numbers, and - characters."
+    condition     = can(regex("^([a-z]|[a-z][-a-z0-9]*[a-z0-9])$", var.cluster))
+  }
+}
+
+variable "namespace" {
+  type        = string
+  description = "Namespace name"
+  default     = "default"
+
+  validation {
+    error_message = "Cluster name must begin and end with a letter and contain only letters, numbers, and - characters."
+    condition     = can(regex("^([a-z]|[a-z][-a-z0-9]*[a-z0-9])$", var.namespace))
+  }
+}
+
+variable "route_data" {
+  description = "Route specification"
+  default     = <<EOT
+  {
+   "kind":"Route",
+   "apiVersion":"route.openshift.io/v1",
+   "metadata":{
+      "name":"route-01"
+   },
+   "spec":{
+      "to":{
+         "kind":"Service",
+         "name":"nginx-service"
+      },
+      "port":{
+         "targetPort":"https"
+      },
+      "tls":{
+         "termination":"passthrough"
+      }
+   }
+}
+EOT
+}

examples/openshift-route/versions.tf

@@ -0,0 +1,32 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+/***************************************************
+NOTE: To source a particular version of IBM terraform provider, configure the parameter `version` as follows
+
+terraform {
+  required_version = ">=0.13"
+  required_providers {
+    ibm = {
+      source = "IBM-Cloud/ibm"
+      version = "1.21.0"
+    }
+  }
+}
+
+If we dont configure the version parameter, it fetches the latest provider version.
+****************************************************/
+
+terraform {
+  required_providers {
+    restapi = {
+      source  = "fmontezuma/restapi"
+      version = "1.14.1"
+    }
+    ibm = {
+      source = "IBM-Cloud/ibm"
+    }
+  }
+}

modules/openshift-route/README.md

@@ -0,0 +1,74 @@
+# This module is used to create openshift route
+
+This module is used to provision a route to an openshift cluster. An [OpenShift route](https://docs.openshift.com/enterprise/3.0/architecture/core_concepts/routes.html) is a way to expose a service by giving it an externally-reachable hostname like www.example.com.
+
+## Prerequisite
+
+* Set up the IBM Cloud command line interface (CLI), the Satellite plug-in, and other related CLIs.
+* Install cli and plugin package
+```console
+    ibmcloud plugin install container-service
+```
+## Usage
+
+```
+terraform init
+```
+```
+terraform plan
+```
+```
+terraform apply
+```
+```
+terraform destroy
+```
+## Example Usage
+
+``` hcl
+module "openshift-route" {
+  source = "github.com/terraform-ibm-modules/terraform-ibm-cluster//modules/openshift-route"
+
+  ibmcloud_api_key    = var.ibmcloud_api_key
+  cluster_service_url = var.cluster_service_url
+  namespace           = var.namespace
+  route_data          = var.route_data
+}
+```
+<!-- BEGINNING OF PRE-COMMIT-TERRAFORM DOCS HOOK -->
+
+## Note
+
+* To update a openshift route, users has to get "resourceVersion" parameter value from terraform.tfstate or openshift console file and add it to 'route_data' variable as a route specification.
+
+``` Route Specfication
+{
+   "kind":"Route",
+   "apiVersion":"route.openshift.io/v1",
+   "metadata":{
+      "name":"route-01",
+      "resourceVersion": "<resourceVersion>"
+   },
+	.....
+	.....
+}
+```
+* If we want to make use of a particular version of module, then set the argument "version" to respective module version
+
+## Inputs
+
+| Name                     | Description                                                    | Type   |Default  |Required |
+|--------------------------|----------------------------------------------------------------|:-------|:--------|:--------|
+| ibmcloud_api_key         | IBM Cloud IAM API key                                          |`string`| n/a     | yes     |
+| cluster_service_url      | Cluster service URL                                            |`string`| n/a     | yes     |
+| namespace                | Openshift namespace name                                       |`string`| default | no      |
+| route_data               | Route specification                                            |`string`| n/a     | yes     |
+
+## Outputs
+
+| Name                     | Description                |
+|--------------------------|----------------------------|
+| route_response           | Route response             |
+
+
+<!-- END OF PRE-COMMIT-TERRAFORM DOCS HOOK -->

modules/openshift-route/main.tf

@@ -0,0 +1,44 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+locals {
+  # get json
+  data = jsondecode(var.route_data)
+}
+
+###################################################################
+# Generate openshift token to file
+###################################################################
+resource "null_resource" "get_oc_token" {
+  provisioner "local-exec" {
+    interpreter = ["/bin/bash", "-c"]
+    command     = <<-EOT
+      curl -u "apikey:${var.ibmcloud_api_key}" -H "X-CSRF-Token: a" "$(curl ${var.cluster_service_url}/.well-known/oauth-authorization-server | jq -r .issuer)/oauth/authorize?client_id=openshift-challenging-client&response_type=token" -vvv &> /dev/stdout | tee -a resp.log
+      token=$(awk -v FS="(#access_token=|&expires_in)" '{print $2}' resp.log)
+      echo $token > token.log
+      rm -f resp.log
+    EOT
+  }
+}
+
+###################################################################
+# Read openshift token from file
+###################################################################
+data "local_file" "token_file" {
+  filename = "token.log"
+
+  depends_on = [null_resource.get_oc_token]
+}
+
+###################################################################
+# Provision openshift route
+###################################################################
+resource "restapi_object" "create_route" {
+  object_id = local.data.metadata.name
+  path      = "/apis/route.openshift.io/v1/namespaces/${var.namespace}/routes"
+  data      = var.route_data
+
+  depends_on = [null_resource.get_oc_token]
+}

modules/openshift-route/output.tf

@@ -0,0 +1,8 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+output "route_response" {
+  value = restapi_object.create_route.api_response
+}

modules/openshift-route/provider.tf

@@ -0,0 +1,12 @@
+#####################################################
+# Openshift cluster route provisioning
+# Copyright 2021 IBM
+#####################################################
+
+provider "restapi" {
+  uri   = var.cluster_service_url
+  debug = true
+  headers = {
+    Authorization = format("Bearer %v", chomp(element(tolist(data.local_file.token_file.*.content), 0)))
+  }
+}