richard
/
kubespray
mirror of https://github.com/kubernetes-sigs/kubespray.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4260 Commits
29 Branches
81 Tags
150 MiB
Tree: 097806dfe8
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '097806dfe8'
${ noResults }
kubespray/contrib/terraform/terraform.py

834 lines
28 KiB
Raw Normal View History

Change OpenStack inventory to python2 For distribution who ship python3 as default python, it breaks the inventory script as it is not compatible with python3.
7 years ago
WIP: terraform openstack
8 years ago
Update OpenStack Terraform: Modules, Bastions, and New Floating IP config (#1958) * Adding bastion and private network provisioning for openstack terraform * Remove usage of floating-ip property * Combine openstack instances + floating ips * Fix relating floating IPs to hosts for openstack builds * Tighten up security groups Allow ssh into all instances with floating IP * Add the gluster hosts to the no-floating group * Break terraform into modules * Update README and var descriptions to match current config * Remove volume property in gluster compute def * Include cluster name in internal network and router names * Make dns_nameservers a variable
7 years ago
WIP: terraform openstack
8 years ago
Add support for Packet with Terraform (#4043) * Add support for Packet with Terraform Co-Author: johnstudarus <john@jhlconsulting.com> * removed advanced features to streamline * clarifying usage * Update README.md provide a better test to validate things are working OK * Update README.md clarifying what to set * minor wordsmithing * Fix admin cert path * clarifying how to configure keys * enabling kubeconfig_localhost pull over the configuration file via playbooks rather than the key files individually * Create output.tf * Add support for node specific plans
5 years ago
WIP: terraform openstack
8 years ago
Update OpenStack Terraform: Modules, Bastions, and New Floating IP config (#1958) * Adding bastion and private network provisioning for openstack terraform * Remove usage of floating-ip property * Combine openstack instances + floating ips * Fix relating floating IPs to hosts for openstack builds * Tighten up security groups Allow ssh into all instances with floating IP * Add the gluster hosts to the no-floating group * Break terraform into modules * Update README and var descriptions to match current config * Remove volume property in gluster compute def * Include cluster name in internal network and router names * Make dns_nameservers a variable
7 years ago
WIP: terraform openstack
8 years ago
Add an 'access_ip' for openstack resources to the terraform inventory builder script (#3592) * Add an 'access_ip' for openstack resources to the terraform inventory builder script * Update Openstack README * Only use ipv4 * If there's a floating IP assigned to an openstack instance, use that for access_ip
6 years ago
Adds missing ip based on internal ip, for etcd
8 years ago
WIP: terraform openstack
8 years ago
Update OpenStack Terraform: Modules, Bastions, and New Floating IP config (#1958) * Adding bastion and private network provisioning for openstack terraform * Remove usage of floating-ip property * Combine openstack instances + floating ips * Fix relating floating IPs to hosts for openstack builds * Tighten up security groups Allow ssh into all instances with floating IP * Add the gluster hosts to the no-floating group * Break terraform into modules * Update README and var descriptions to match current config * Remove volume property in gluster compute def * Include cluster name in internal network and router names * Make dns_nameservers a variable
7 years ago
WIP: terraform openstack
8 years ago
GlusterFS with external VMs, terraform/os included
8 years ago
WIP: terraform openstack
8 years ago
Update OpenStack Terraform: Modules, Bastions, and New Floating IP config (#1958) * Adding bastion and private network provisioning for openstack terraform * Remove usage of floating-ip property * Combine openstack instances + floating ips * Fix relating floating IPs to hosts for openstack builds * Tighten up security groups Allow ssh into all instances with floating IP * Add the gluster hosts to the no-floating group * Break terraform into modules * Update README and var descriptions to match current config * Remove volume property in gluster compute def * Include cluster name in internal network and router names * Make dns_nameservers a variable
7 years ago
Add an 'access_ip' for openstack resources to the terraform inventory builder script (#3592) * Add an 'access_ip' for openstack resources to the terraform inventory builder script * Update Openstack README * Only use ipv4 * If there's a floating IP assigned to an openstack instance, use that for access_ip
6 years ago
Update OpenStack Terraform: Modules, Bastions, and New Floating IP config (#1958) * Adding bastion and private network provisioning for openstack terraform * Remove usage of floating-ip property * Combine openstack instances + floating ips * Fix relating floating IPs to hosts for openstack builds * Tighten up security groups Allow ssh into all instances with floating IP * Add the gluster hosts to the no-floating group * Break terraform into modules * Update README and var descriptions to match current config * Remove volume property in gluster compute def * Include cluster name in internal network and router names * Make dns_nameservers a variable
7 years ago
WIP: terraform openstack
8 years ago
contrib/terraform/terraform.py: fix for Ansible 2.6.2+, issue #3067
6 years ago
WIP: terraform openstack
8 years ago
Update OpenStack Terraform: Modules, Bastions, and New Floating IP config (#1958) * Adding bastion and private network provisioning for openstack terraform * Remove usage of floating-ip property * Combine openstack instances + floating ips * Fix relating floating IPs to hosts for openstack builds * Tighten up security groups Allow ssh into all instances with floating IP * Add the gluster hosts to the no-floating group * Break terraform into modules * Update README and var descriptions to match current config * Remove volume property in gluster compute def * Include cluster name in internal network and router names * Make dns_nameservers a variable
7 years ago
WIP: terraform openstack
8 years ago
  1. #!/usr/bin/env python2
  2. #
  3. # Copyright 2015 Cisco Systems, Inc.
  4. #
  5. # Licensed under the Apache License, Version 2.0 (the "License");
  6. # you may not use this file except in compliance with the License.
  7. # You may obtain a copy of the License at
  8. #
  9. # http://www.apache.org/licenses/LICENSE-2.0
  10. #
  11. # Unless required by applicable law or agreed to in writing, software
  12. # distributed under the License is distributed on an "AS IS" BASIS,
  13. # WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
  14. # See the License for the specific language governing permissions and
  15. # limitations under the License.
  16. #
  17. # original: https://github.com/CiscoCloud/terraform.py
  19. """\
  20. Dynamic inventory for Terraform - finds all `.tfstate` files below the working
  21. directory and generates an inventory based on them.
  22. """
  23. from __future__ import unicode_literals, print_function
  24. import argparse
  25. from collections import defaultdict
  26. from functools import wraps
  27. import json
  28. import os
  29. import re
  31. VERSION = '0.3.0pre'
  34. def tfstates(root=None):
  35. root = root or os.getcwd()
  36. for dirpath, _, filenames in os.walk(root):
  37. for name in filenames:
  38. if os.path.splitext(name)[-1] == '.tfstate':
  39. yield os.path.join(dirpath, name)
  42. def iterresources(filenames):
  43. for filename in filenames:
  44. with open(filename, 'r') as json_file:
  45. state = json.load(json_file)
  46. for module in state['modules']:
  47. name = module['path'][-1]
  48. for key, resource in module['resources'].items():
  49. yield name, key, resource
  51. ## READ RESOURCES
  52. PARSERS = {}
  55. def _clean_dc(dcname):
  56. # Consul DCs are strictly alphanumeric with underscores and hyphens -
  57. # ensure that the consul_dc attribute meets these requirements.
  58. return re.sub('[^\w_\-]', '-', dcname)
  61. def iterhosts(resources):
  62. '''yield host tuples of (name, attributes, groups)'''
  63. for module_name, key, resource in resources:
  64. resource_type, name = key.split('.', 1)
  65. try:
  66. parser = PARSERS[resource_type]
  67. except KeyError:
  68. continue
  70. yield parser(resource, module_name)
  73. def iterips(resources):
  74. '''yield ip tuples of (instance_id, ip)'''
  75. for module_name, key, resource in resources:
  76. resource_type, name = key.split('.', 1)
  77. if resource_type == 'openstack_compute_floatingip_associate_v2':
  78. yield openstack_floating_ips(resource)
  81. def parses(prefix):
  82. def inner(func):
  83. PARSERS[prefix] = func
  84. return func
  86. return inner
  89. def calculate_mantl_vars(func):
  90. """calculate Mantl vars"""
  92. @wraps(func)
  93. def inner(*args, **kwargs):
  94. name, attrs, groups = func(*args, **kwargs)
  96. # attrs
  97. if attrs.get('role', '') == 'control':
  98. attrs['consul_is_server'] = True
  99. else:
  100. attrs['consul_is_server'] = False
  102. # groups
  103. if attrs.get('publicly_routable', False):
  104. groups.append('publicly_routable')
  106. return name, attrs, groups
  108. return inner
  111. def _parse_prefix(source, prefix, sep='.'):
  112. for compkey, value in source.items():
  113. try:
  114. curprefix, rest = compkey.split(sep, 1)
  115. except ValueError:
  116. continue
  118. if curprefix != prefix or rest == '#':
  119. continue
  121. yield rest, value
  124. def parse_attr_list(source, prefix, sep='.'):
  125. attrs = defaultdict(dict)
  126. for compkey, value in _parse_prefix(source, prefix, sep):
  127. idx, key = compkey.split(sep, 1)
  128. attrs[idx][key] = value
  130. return attrs.values()
  133. def parse_dict(source, prefix, sep='.'):
  134. return dict(_parse_prefix(source, prefix, sep))
  137. def parse_list(source, prefix, sep='.'):
  138. return [value for _, value in _parse_prefix(source, prefix, sep)]
  141. def parse_bool(string_form):
  142. token = string_form.lower()[0]
  144. if token == 't':
  145. return True
  146. elif token == 'f':
  147. return False
  148. else:
  149. raise ValueError('could not convert %r to a bool' % string_form)
  152. @parses('triton_machine')
  153. @calculate_mantl_vars
  154. def triton_machine(resource, module_name):
  155. raw_attrs = resource['primary']['attributes']
  156. name = raw_attrs.get('name')
  157. groups = []
  159. attrs = {
  160. 'id': raw_attrs['id'],
  161. 'dataset': raw_attrs['dataset'],
  162. 'disk': raw_attrs['disk'],
  163. 'firewall_enabled': parse_bool(raw_attrs['firewall_enabled']),
  164. 'image': raw_attrs['image'],
  165. 'ips': parse_list(raw_attrs, 'ips'),
  166. 'memory': raw_attrs['memory'],
  167. 'name': raw_attrs['name'],
  168. 'networks': parse_list(raw_attrs, 'networks'),
  169. 'package': raw_attrs['package'],
  170. 'primary_ip': raw_attrs['primaryip'],
  171. 'root_authorized_keys': raw_attrs['root_authorized_keys'],
  172. 'state': raw_attrs['state'],
  173. 'tags': parse_dict(raw_attrs, 'tags'),
  174. 'type': raw_attrs['type'],
  175. 'user_data': raw_attrs['user_data'],
  176. 'user_script': raw_attrs['user_script'],
  178. # ansible
  179. 'ansible_ssh_host': raw_attrs['primaryip'],
  180. 'ansible_ssh_port': 22,
  181. 'ansible_ssh_user': 'root', # it's "root" on Triton by default
  183. # generic
  184. 'public_ipv4': raw_attrs['primaryip'],
  185. 'provider': 'triton',
  186. }
  188. # private IPv4
  189. for ip in attrs['ips']:
  190. if ip.startswith('10') or ip.startswith('192.168'): # private IPs
  191. attrs['private_ipv4'] = ip
  192. break
  194. if 'private_ipv4' not in attrs:
  195. attrs['private_ipv4'] = attrs['public_ipv4']
  197. # attrs specific to Mantl
  198. attrs.update({
  199. 'consul_dc': _clean_dc(attrs['tags'].get('dc', 'none')),
  200. 'role': attrs['tags'].get('role', 'none'),
  201. 'ansible_python_interpreter': attrs['tags'].get('python_bin', 'python')
  202. })
  204. # add groups based on attrs
  205. groups.append('triton_image=' + attrs['image'])
  206. groups.append('triton_package=' + attrs['package'])
  207. groups.append('triton_state=' + attrs['state'])
  208. groups.append('triton_firewall_enabled=%s' % attrs['firewall_enabled'])
  209. groups.extend('triton_tags_%s=%s' % item
  210. for item in attrs['tags'].items())
  211. groups.extend('triton_network=' + network
  212. for network in attrs['networks'])
  214. # groups specific to Mantl
  215. groups.append('role=' + attrs['role'])
  216. groups.append('dc=' + attrs['consul_dc'])
  218. return name, attrs, groups
  221. @parses('packet_device')
  222. def packet_device(resource, tfvars=None):
  223. raw_attrs = resource['primary']['attributes']
  224. name = raw_attrs['hostname']
  225. groups = []
  227. attrs = {
  228. 'id': raw_attrs['id'],
  229. 'facility': raw_attrs['facility'],
  230. 'hostname': raw_attrs['hostname'],
  231. 'operating_system': raw_attrs['operating_system'],
  232. 'locked': parse_bool(raw_attrs['locked']),
  233. 'tags': parse_list(raw_attrs, 'tags'),
  234. 'plan': raw_attrs['plan'],
  235. 'project_id': raw_attrs['project_id'],
  236. 'state': raw_attrs['state'],
  237. # ansible
  238. 'ansible_ssh_host': raw_attrs['network.0.address'],
  239. 'ansible_ssh_user': 'root', # it's always "root" on Packet
  240. # generic
  241. 'ipv4_address': raw_attrs['network.0.address'],
  242. 'public_ipv4': raw_attrs['network.0.address'],
  243. 'ipv6_address': raw_attrs['network.1.address'],
  244. 'public_ipv6': raw_attrs['network.1.address'],
  245. 'private_ipv4': raw_attrs['network.2.address'],
  246. 'provider': 'packet',
  247. }
  249. # add groups based on attrs
  250. groups.append('packet_facility=' + attrs['facility'])
  251. groups.append('packet_operating_system=' + attrs['operating_system'])
  252. groups.append('packet_locked=%s' % attrs['locked'])
  253. groups.append('packet_state=' + attrs['state'])
  254. groups.append('packet_plan=' + attrs['plan'])
  256. # groups specific to kubespray
  257. groups = groups + attrs['tags']
  259. return name, attrs, groups
  262. @parses('digitalocean_droplet')
  263. @calculate_mantl_vars
  264. def digitalocean_host(resource, tfvars=None):
  265. raw_attrs = resource['primary']['attributes']
  266. name = raw_attrs['name']
  267. groups = []
  269. attrs = {
  270. 'id': raw_attrs['id'],
  271. 'image': raw_attrs['image'],
  272. 'ipv4_address': raw_attrs['ipv4_address'],
  273. 'locked': parse_bool(raw_attrs['locked']),
  274. 'metadata': json.loads(raw_attrs.get('user_data', '{}')),
  275. 'region': raw_attrs['region'],
  276. 'size': raw_attrs['size'],
  277. 'ssh_keys': parse_list(raw_attrs, 'ssh_keys'),
  278. 'status': raw_attrs['status'],
  279. # ansible
  280. 'ansible_ssh_host': raw_attrs['ipv4_address'],
  281. 'ansible_ssh_port': 22,
  282. 'ansible_ssh_user': 'root', # it's always "root" on DO
  283. # generic
  284. 'public_ipv4': raw_attrs['ipv4_address'],
  285. 'private_ipv4': raw_attrs.get('ipv4_address_private',
  286. raw_attrs['ipv4_address']),
  287. 'provider': 'digitalocean',
  288. }
  290. # attrs specific to Mantl
  291. attrs.update({
  292. 'consul_dc': _clean_dc(attrs['metadata'].get('dc', attrs['region'])),
  293. 'role': attrs['metadata'].get('role', 'none'),
  294. 'ansible_python_interpreter': attrs['metadata'].get('python_bin','python')
  295. })
  297. # add groups based on attrs
  298. groups.append('do_image=' + attrs['image'])
  299. groups.append('do_locked=%s' % attrs['locked'])
  300. groups.append('do_region=' + attrs['region'])
  301. groups.append('do_size=' + attrs['size'])
  302. groups.append('do_status=' + attrs['status'])
  303. groups.extend('do_metadata_%s=%s' % item
  304. for item in attrs['metadata'].items())
  306. # groups specific to Mantl
  307. groups.append('role=' + attrs['role'])
  308. groups.append('dc=' + attrs['consul_dc'])
  310. return name, attrs, groups
  313. @parses('softlayer_virtualserver')
  314. @calculate_mantl_vars
  315. def softlayer_host(resource, module_name):
  316. raw_attrs = resource['primary']['attributes']
  317. name = raw_attrs['name']
  318. groups = []
  320. attrs = {
  321. 'id': raw_attrs['id'],
  322. 'image': raw_attrs['image'],
  323. 'ipv4_address': raw_attrs['ipv4_address'],
  324. 'metadata': json.loads(raw_attrs.get('user_data', '{}')),
  325. 'region': raw_attrs['region'],
  326. 'ram': raw_attrs['ram'],
  327. 'cpu': raw_attrs['cpu'],
  328. 'ssh_keys': parse_list(raw_attrs, 'ssh_keys'),
  329. 'public_ipv4': raw_attrs['ipv4_address'],
  330. 'private_ipv4': raw_attrs['ipv4_address_private'],
  331. 'ansible_ssh_host': raw_attrs['ipv4_address'],
  332. 'ansible_ssh_port': 22,
  333. 'ansible_ssh_user': 'root',
  334. 'provider': 'softlayer',
  335. }
  337. # attrs specific to Mantl
  338. attrs.update({
  339. 'consul_dc': _clean_dc(attrs['metadata'].get('dc', attrs['region'])),
  340. 'role': attrs['metadata'].get('role', 'none'),
  341. 'ansible_python_interpreter': attrs['metadata'].get('python_bin','python')
  342. })
  344. # groups specific to Mantl
  345. groups.append('role=' + attrs['role'])
  346. groups.append('dc=' + attrs['consul_dc'])
  348. return name, attrs, groups
  350. def openstack_floating_ips(resource):
  351. raw_attrs = resource['primary']['attributes']
  352. attrs = {
  353. 'ip': raw_attrs['floating_ip'],
  354. 'instance_id': raw_attrs['instance_id'],
  355. }
  356. return attrs
  358. def openstack_floating_ips(resource):
  359. raw_attrs = resource['primary']['attributes']
  360. return raw_attrs['instance_id'], raw_attrs['floating_ip']
  362. @parses('openstack_compute_instance_v2')
  363. @calculate_mantl_vars
  364. def openstack_host(resource, module_name):
  365. raw_attrs = resource['primary']['attributes']
  366. name = raw_attrs['name']
  367. groups = []
  369. attrs = {
  370. 'access_ip_v4': raw_attrs['access_ip_v4'],
  371. 'access_ip_v6': raw_attrs['access_ip_v6'],
  372. 'access_ip': raw_attrs['access_ip_v4'],
  373. 'ip': raw_attrs['network.0.fixed_ip_v4'],
  374. 'flavor': parse_dict(raw_attrs, 'flavor',
  375. sep='_'),
  376. 'id': raw_attrs['id'],
  377. 'image': parse_dict(raw_attrs, 'image',
  378. sep='_'),
  379. 'key_pair': raw_attrs['key_pair'],
  380. 'metadata': parse_dict(raw_attrs, 'metadata'),
  381. 'network': parse_attr_list(raw_attrs, 'network'),
  382. 'region': raw_attrs.get('region', ''),
  383. 'security_groups': parse_list(raw_attrs, 'security_groups'),
  384. # ansible
  385. 'ansible_ssh_port': 22,
  386. # workaround for an OpenStack bug where hosts have a different domain
  387. # after they're restarted
  388. 'host_domain': 'novalocal',
  389. 'use_host_domain': True,
  390. # generic
  391. 'public_ipv4': raw_attrs['access_ip_v4'],
  392. 'private_ipv4': raw_attrs['access_ip_v4'],
  393. 'provider': 'openstack',
  394. }
  396. if 'floating_ip' in raw_attrs:
  397. attrs['private_ipv4'] = raw_attrs['network.0.fixed_ip_v4']
  399. try:
  400. attrs.update({
  401. 'ansible_ssh_host': raw_attrs['access_ip_v4'],
  402. 'publicly_routable': True,
  403. })
  404. except (KeyError, ValueError):
  405. attrs.update({'ansible_ssh_host': '', 'publicly_routable': False})
  407. # Handling of floating IPs has changed: https://github.com/terraform-providers/terraform-provider-openstack/blob/master/CHANGELOG.md#010-june-21-2017
  409. # attrs specific to Ansible
  410. if 'metadata.ssh_user' in raw_attrs:
  411. attrs['ansible_ssh_user'] = raw_attrs['metadata.ssh_user']
  413. if 'volume.#' in raw_attrs.keys() and int(raw_attrs['volume.#']) > 0:
  414. device_index = 1
  415. for key, value in raw_attrs.items():
  416. match = re.search("^volume.*.device$", key)
  417. if match:
  418. attrs['disk_volume_device_'+str(device_index)] = value
  419. device_index += 1
  422. # attrs specific to Mantl
  423. attrs.update({
  424. 'consul_dc': _clean_dc(attrs['metadata'].get('dc', module_name)),
  425. 'role': attrs['metadata'].get('role', 'none'),
  426. 'ansible_python_interpreter': attrs['metadata'].get('python_bin','python')
  427. })
  429. # add groups based on attrs
  430. groups.append('os_image=' + attrs['image']['name'])
  431. groups.append('os_flavor=' + attrs['flavor']['name'])
  432. groups.extend('os_metadata_%s=%s' % item
  433. for item in attrs['metadata'].items())
  434. groups.append('os_region=' + attrs['region'])
  436. # groups specific to Mantl
  437. groups.append('role=' + attrs['metadata'].get('role', 'none'))
  438. groups.append('dc=' + attrs['consul_dc'])
  440. # groups specific to kubespray
  441. for group in attrs['metadata'].get('kubespray_groups', "").split(","):
  442. groups.append(group)
  444. return name, attrs, groups
  447. @parses('aws_instance')
  448. @calculate_mantl_vars
  449. def aws_host(resource, module_name):
  450. name = resource['primary']['attributes']['tags.Name']
  451. raw_attrs = resource['primary']['attributes']
  453. groups = []
  455. attrs = {
  456. 'ami': raw_attrs['ami'],
  457. 'availability_zone': raw_attrs['availability_zone'],
  458. 'ebs_block_device': parse_attr_list(raw_attrs, 'ebs_block_device'),
  459. 'ebs_optimized': parse_bool(raw_attrs['ebs_optimized']),
  460. 'ephemeral_block_device': parse_attr_list(raw_attrs,
  461. 'ephemeral_block_device'),
  462. 'id': raw_attrs['id'],
  463. 'key_name': raw_attrs['key_name'],
  464. 'private': parse_dict(raw_attrs, 'private',
  465. sep='_'),
  466. 'public': parse_dict(raw_attrs, 'public',
  467. sep='_'),
  468. 'root_block_device': parse_attr_list(raw_attrs, 'root_block_device'),
  469. 'security_groups': parse_list(raw_attrs, 'security_groups'),
  470. 'subnet': parse_dict(raw_attrs, 'subnet',
  471. sep='_'),
  472. 'tags': parse_dict(raw_attrs, 'tags'),
  473. 'tenancy': raw_attrs['tenancy'],
  474. 'vpc_security_group_ids': parse_list(raw_attrs,
  475. 'vpc_security_group_ids'),
  476. # ansible-specific
  477. 'ansible_ssh_port': 22,
  478. 'ansible_ssh_host': raw_attrs['public_ip'],
  479. # generic
  480. 'public_ipv4': raw_attrs['public_ip'],
  481. 'private_ipv4': raw_attrs['private_ip'],
  482. 'provider': 'aws',
  483. }
  485. # attrs specific to Ansible
  486. if 'tags.sshUser' in raw_attrs:
  487. attrs['ansible_ssh_user'] = raw_attrs['tags.sshUser']
  488. if 'tags.sshPrivateIp' in raw_attrs:
  489. attrs['ansible_ssh_host'] = raw_attrs['private_ip']
  491. # attrs specific to Mantl
  492. attrs.update({
  493. 'consul_dc': _clean_dc(attrs['tags'].get('dc', module_name)),
  494. 'role': attrs['tags'].get('role', 'none'),
  495. 'ansible_python_interpreter': attrs['tags'].get('python_bin','python')
  496. })
  498. # groups specific to Mantl
  499. groups.extend(['aws_ami=' + attrs['ami'],
  500. 'aws_az=' + attrs['availability_zone'],
  501. 'aws_key_name=' + attrs['key_name'],
  502. 'aws_tenancy=' + attrs['tenancy']])
  503. groups.extend('aws_tag_%s=%s' % item for item in attrs['tags'].items())
  504. groups.extend('aws_vpc_security_group=' + group
  505. for group in attrs['vpc_security_group_ids'])
  506. groups.extend('aws_subnet_%s=%s' % subnet
  507. for subnet in attrs['subnet'].items())
  509. # groups specific to Mantl
  510. groups.append('role=' + attrs['role'])
  511. groups.append('dc=' + attrs['consul_dc'])
  513. return name, attrs, groups
  516. @parses('google_compute_instance')
  517. @calculate_mantl_vars
  518. def gce_host(resource, module_name):
  519. name = resource['primary']['id']
  520. raw_attrs = resource['primary']['attributes']
  521. groups = []
  523. # network interfaces
  524. interfaces = parse_attr_list(raw_attrs, 'network_interface')
  525. for interface in interfaces:
  526. interface['access_config'] = parse_attr_list(interface,
  527. 'access_config')
  528. for key in interface.keys():
  529. if '.' in key:
  530. del interface[key]
  532. # general attrs
  533. attrs = {
  534. 'can_ip_forward': raw_attrs['can_ip_forward'] == 'true',
  535. 'disks': parse_attr_list(raw_attrs, 'disk'),
  536. 'machine_type': raw_attrs['machine_type'],
  537. 'metadata': parse_dict(raw_attrs, 'metadata'),
  538. 'network': parse_attr_list(raw_attrs, 'network'),
  539. 'network_interface': interfaces,
  540. 'self_link': raw_attrs['self_link'],
  541. 'service_account': parse_attr_list(raw_attrs, 'service_account'),
  542. 'tags': parse_list(raw_attrs, 'tags'),
  543. 'zone': raw_attrs['zone'],
  544. # ansible
  545. 'ansible_ssh_port': 22,
  546. 'provider': 'gce',
  547. }
  549. # attrs specific to Ansible
  550. if 'metadata.ssh_user' in raw_attrs:
  551. attrs['ansible_ssh_user'] = raw_attrs['metadata.ssh_user']
  553. # attrs specific to Mantl
  554. attrs.update({
  555. 'consul_dc': _clean_dc(attrs['metadata'].get('dc', module_name)),
  556. 'role': attrs['metadata'].get('role', 'none'),
  557. 'ansible_python_interpreter': attrs['metadata'].get('python_bin','python')
  558. })
  560. try:
  561. attrs.update({
  562. 'ansible_ssh_host': interfaces[0]['access_config'][0]['nat_ip'] or interfaces[0]['access_config'][0]['assigned_nat_ip'],
  563. 'public_ipv4': interfaces[0]['access_config'][0]['nat_ip'] or interfaces[0]['access_config'][0]['assigned_nat_ip'],
  564. 'private_ipv4': interfaces[0]['address'],
  565. 'publicly_routable': True,
  566. })
  567. except (KeyError, ValueError):
  568. attrs.update({'ansible_ssh_host': '', 'publicly_routable': False})
  570. # add groups based on attrs
  571. groups.extend('gce_image=' + disk['image'] for disk in attrs['disks'])
  572. groups.append('gce_machine_type=' + attrs['machine_type'])
  573. groups.extend('gce_metadata_%s=%s' % (key, value)
  574. for (key, value) in attrs['metadata'].items()
  575. if key not in set(['sshKeys']))
  576. groups.extend('gce_tag=' + tag for tag in attrs['tags'])
  577. groups.append('gce_zone=' + attrs['zone'])
  579. if attrs['can_ip_forward']:
  580. groups.append('gce_ip_forward')
  581. if attrs['publicly_routable']:
  582. groups.append('gce_publicly_routable')
  584. # groups specific to Mantl
  585. groups.append('role=' + attrs['metadata'].get('role', 'none'))
  586. groups.append('dc=' + attrs['consul_dc'])
  588. return name, attrs, groups
  591. @parses('vsphere_virtual_machine')
  592. @calculate_mantl_vars
  593. def vsphere_host(resource, module_name):
  594. raw_attrs = resource['primary']['attributes']
  595. network_attrs = parse_dict(raw_attrs, 'network_interface')
  596. network = parse_dict(network_attrs, '0')
  597. ip_address = network.get('ipv4_address', network['ip_address'])
  598. name = raw_attrs['name']
  599. groups = []
  601. attrs = {
  602. 'id': raw_attrs['id'],
  603. 'ip_address': ip_address,
  604. 'private_ipv4': ip_address,
  605. 'public_ipv4': ip_address,
  606. 'metadata': parse_dict(raw_attrs, 'custom_configuration_parameters'),
  607. 'ansible_ssh_port': 22,
  608. 'provider': 'vsphere',
  609. }
  611. try:
  612. attrs.update({
  613. 'ansible_ssh_host': ip_address,
  614. })
  615. except (KeyError, ValueError):
  616. attrs.update({'ansible_ssh_host': '', })
  618. attrs.update({
  619. 'consul_dc': _clean_dc(attrs['metadata'].get('consul_dc', module_name)),
  620. 'role': attrs['metadata'].get('role', 'none'),
  621. 'ansible_python_interpreter': attrs['metadata'].get('python_bin','python')
  622. })
  624. # attrs specific to Ansible
  625. if 'ssh_user' in attrs['metadata']:
  626. attrs['ansible_ssh_user'] = attrs['metadata']['ssh_user']
  628. groups.append('role=' + attrs['role'])
  629. groups.append('dc=' + attrs['consul_dc'])
  631. return name, attrs, groups
  633. @parses('azure_instance')
  634. @calculate_mantl_vars
  635. def azure_host(resource, module_name):
  636. name = resource['primary']['attributes']['name']
  637. raw_attrs = resource['primary']['attributes']
  639. groups = []
  641. attrs = {
  642. 'automatic_updates': raw_attrs['automatic_updates'],
  643. 'description': raw_attrs['description'],
  644. 'hosted_service_name': raw_attrs['hosted_service_name'],
  645. 'id': raw_attrs['id'],
  646. 'image': raw_attrs['image'],
  647. 'ip_address': raw_attrs['ip_address'],
  648. 'location': raw_attrs['location'],
  649. 'name': raw_attrs['name'],
  650. 'reverse_dns': raw_attrs['reverse_dns'],
  651. 'security_group': raw_attrs['security_group'],
  652. 'size': raw_attrs['size'],
  653. 'ssh_key_thumbprint': raw_attrs['ssh_key_thumbprint'],
  654. 'subnet': raw_attrs['subnet'],
  655. 'username': raw_attrs['username'],
  656. 'vip_address': raw_attrs['vip_address'],
  657. 'virtual_network': raw_attrs['virtual_network'],
  658. 'endpoint': parse_attr_list(raw_attrs, 'endpoint'),
  659. # ansible
  660. 'ansible_ssh_port': 22,
  661. 'ansible_ssh_user': raw_attrs['username'],
  662. 'ansible_ssh_host': raw_attrs['vip_address'],
  663. }
  665. # attrs specific to mantl
  666. attrs.update({
  667. 'consul_dc': attrs['location'].lower().replace(" ", "-"),
  668. 'role': attrs['description']
  669. })
  671. # groups specific to mantl
  672. groups.extend(['azure_image=' + attrs['image'],
  673. 'azure_location=' + attrs['location'].lower().replace(" ", "-"),
  674. 'azure_username=' + attrs['username'],
  675. 'azure_security_group=' + attrs['security_group']])
  677. # groups specific to mantl
  678. groups.append('role=' + attrs['role'])
  679. groups.append('dc=' + attrs['consul_dc'])
  681. return name, attrs, groups
  684. @parses('clc_server')
  685. @calculate_mantl_vars
  686. def clc_server(resource, module_name):
  687. raw_attrs = resource['primary']['attributes']
  688. name = raw_attrs.get('id')
  689. groups = []
  690. md = parse_dict(raw_attrs, 'metadata')
  691. attrs = {
  692. 'metadata': md,
  693. 'ansible_ssh_port': md.get('ssh_port', 22),
  694. 'ansible_ssh_user': md.get('ssh_user', 'root'),
  695. 'provider': 'clc',
  696. 'publicly_routable': False,
  697. }
  699. try:
  700. attrs.update({
  701. 'public_ipv4': raw_attrs['public_ip_address'],
  702. 'private_ipv4': raw_attrs['private_ip_address'],
  703. 'ansible_ssh_host': raw_attrs['public_ip_address'],
  704. 'publicly_routable': True,
  705. })
  706. except (KeyError, ValueError):
  707. attrs.update({
  708. 'ansible_ssh_host': raw_attrs['private_ip_address'],
  709. 'private_ipv4': raw_attrs['private_ip_address'],
  710. })
  712. attrs.update({
  713. 'consul_dc': _clean_dc(attrs['metadata'].get('dc', module_name)),
  714. 'role': attrs['metadata'].get('role', 'none'),
  715. })
  717. groups.append('role=' + attrs['role'])
  718. groups.append('dc=' + attrs['consul_dc'])
  719. return name, attrs, groups
  722. def iter_host_ips(hosts, ips):
  723. '''Update hosts that have an entry in the floating IP list'''
  724. for host in hosts:
  725. host_id = host[1]['id']
  726. if host_id in ips:
  727. ip = ips[host_id]
  728. host[1].update({
  729. 'access_ip_v4': ip,
  730. 'access_ip': ip,
  731. 'public_ipv4': ip,
  732. 'ansible_ssh_host': ip,
  733. })
  734. yield host
  737. ## QUERY TYPES
  738. def query_host(hosts, target):
  739. for name, attrs, _ in hosts:
  740. if name == target:
  741. return attrs
  743. return {}
  746. def query_list(hosts):
  747. groups = defaultdict(dict)
  748. meta = {}
  750. for name, attrs, hostgroups in hosts:
  751. for group in set(hostgroups):
  752. # Ansible 2.6.2 stopped supporting empty group names: https://github.com/ansible/ansible/pull/42584/commits/d4cd474b42ed23d8f8aabb2a7f84699673852eaf
  753. # Empty group name defaults to "all" in Ansible < 2.6.2 so we alter empty group names to "all"
  754. if not group: group = "all"
  756. groups[group].setdefault('hosts', [])
  757. groups[group]['hosts'].append(name)
  759. meta[name] = attrs
  761. groups['_meta'] = {'hostvars': meta}
  762. return groups
  765. def query_hostfile(hosts):
  766. out = ['## begin hosts generated by terraform.py ##']
  767. out.extend(
  768. '{}\t{}'.format(attrs['ansible_ssh_host'].ljust(16), name)
  769. for name, attrs, _ in hosts
  770. )
  772. out.append('## end hosts generated by terraform.py ##')
  773. return '\n'.join(out)
  776. def main():
  777. parser = argparse.ArgumentParser(
  778. __file__, __doc__,
  779. formatter_class=argparse.ArgumentDefaultsHelpFormatter, )
  780. modes = parser.add_mutually_exclusive_group(required=True)
  781. modes.add_argument('--list',
  782. action='store_true',
  783. help='list all variables')
  784. modes.add_argument('--host', help='list variables for a single host')
  785. modes.add_argument('--version',
  786. action='store_true',
  787. help='print version and exit')
  788. modes.add_argument('--hostfile',
  789. action='store_true',
  790. help='print hosts as a /etc/hosts snippet')
  791. parser.add_argument('--pretty',
  792. action='store_true',
  793. help='pretty-print output JSON')
  794. parser.add_argument('--nometa',
  795. action='store_true',
  796. help='with --list, exclude hostvars')
  797. default_root = os.environ.get('TERRAFORM_STATE_ROOT',
  798. os.path.abspath(os.path.join(os.path.dirname(__file__),
  799. '..', '..', )))
  800. parser.add_argument('--root',
  801. default=default_root,
  802. help='custom root to search for `.tfstate`s in')
  804. args = parser.parse_args()
  806. if args.version:
  807. print('%s %s' % (__file__, VERSION))
  808. parser.exit()
  810. hosts = iterhosts(iterresources(tfstates(args.root)))
  812. # Perform a second pass on the file to pick up floating_ip entries to update the ip address of referenced hosts
  813. ips = dict(iterips(iterresources(tfstates(args.root))))
  815. if ips:
  816. hosts = iter_host_ips(hosts, ips)
  818. if args.list:
  819. output = query_list(hosts)
  820. if args.nometa:
  821. del output['_meta']
  822. print(json.dumps(output, indent=4 if args.pretty else None))
  823. elif args.host:
  824. output = query_host(hosts, args.host)
  825. print(json.dumps(output, indent=4 if args.pretty else None))
  826. elif args.hostfile:
  827. output = query_hostfile(hosts)
  828. print(output)
  830. parser.exit()
  833. if __name__ == '__main__':
  834. main()