feat(k3s): add deployment rules for Helm and OpenTofu projects

2024-06-09 00:00:00 +00:00 · 2024-06-09 00:00:00 +00:00 · e33c3718bf
commit e33c3718bf
parent b317cabe65
7 changed files with 112 additions and 8 deletions
--- a/inventory/host_vars/actinium/vars.yml
+++ b/inventory/host_vars/actinium/vars.yml
@ -4,6 +4,7 @@ ansible_user: "{{ vault_ssh_user }}"

 security_firewall_mangle_drop_privatenets: false
 security_firewall_mangle_policy_forward: accept
+security_firewall_filter_policy_forward: accept

 k3s_cluster_name: internal
 k3s_cluster_role: server
@ -12,3 +13,20 @@ k3s_cluster_ip: "{{ vault_cluster_ip }}"
 mariadb_server_root_password: "{{ vault_mariadb_server_root_password }}"
 mariadb_server_custom_sql: "{{ vault_mariadb_server_custom_sql }}"
 mariadb_server_bind_addresses: "{{ vault_mariadb_server_bind_addresses }}"
+
+k3s_cluster_additional_helm_charts:
+  - release_name: redis
+    release_namespace: default
+    chart_ref: 'oci://registry-1.docker.io/bitnamicharts/redis'
+    chart_version: '^18'
+    values:
+      replica:
+        replicaCount: 1
+k3s_cluster_additional_tf_resources:
+  - name: Invoice Ninja
+    git_repository: 'https://gitlab.0x2a.ninja/flowtech/oss/invoice-ninja.git'
+    git_revision: 0.0.3
+    terraform_dir: 'terraform'
+    tfvars_content: '{{ vault_invoice_ninja_tfvars }}'
+    tfstate_path: '{{ vault_invoice_ninja_tfstate_path }}'
+    # storage_dir:
--- a/inventory/host_vars/unobtainium/vars.yml
+++ b/inventory/host_vars/unobtainium/vars.yml
@ -21,3 +21,6 @@ common_sysctl_configuration:
 security_firewall_filter_policy_output: accept
 security_firewall_filter_policy_forward: accept
 security_firewall_mangle_policy_forward: accept
+
+# provisioner role
+terraform_binary_path: '/usr/bin/tofu'