ref(contrib): use Terraform for DO provisioning

carmstrong · Seth Goings · commit 4bba315601a7 · 2015-09-17T10:17:05.000-06:00
This lets us use Terraform to provision and manage Deis deployments
on Digital Ocean.

- make Terraform grab coreos user-data file relative to .tf file
- include a better README.md with rigger references
- add descriptions to all variables that will prompt the user
- add rigger support for Digital Ocean
diff --git a/.gitignore b/.gitignore
@@ -85,3 +85,6 @@ contrib/gce/gce-user-data
 /tests/bin/tmp
 !/tests/bin/accept/lib
 !/tests/bin/accept/commands
+
+# Terraform
+*.tfstate*
diff --git a/contrib/digitalocean/check b/contrib/digitalocean/check
@@ -0,0 +1,3 @@
+#!/usr/bin/env bash
+
+set -eo pipefail -o nounset
diff --git a/contrib/digitalocean/config.sh b/contrib/digitalocean/config.sh
@@ -0,0 +1,19 @@
+export DEIS_TEST_DOMAIN="xip.io"
+export DO_TOKEN
+export DO_SSH_FINGERPRINT
+
+prompt "What Digital Ocean token should I use?" DO_TOKEN
+prompt "What Digital Ocean ssh fingerprint should I use?" DO_SSH_FINGERPRINT
+
+export TF_VAR_deis_root="${DEIS_ROOT}"
+export TF_VAR_token="${DO_TOKEN}"
+export TF_VAR_ssh_keys="${DO_SSH_FINGERPRINT}"
+export TF_VAR_prefix="deis-${DEIS_ID}"
+
+rigger-save-vars DEIS_TEST_DOMAIN \
+                 DO_TOKEN \
+                 DO_SSH_FINGERPRINT \
+                 TF_VAR_deis_root \
+                 TF_VAR_prefix \
+                 TF_VAR_ssh_keys \
+                 TF_VAR_token
diff --git a/contrib/digitalocean/create b/contrib/digitalocean/create
@@ -0,0 +1,11 @@
+#!/usr/bin/env bash
+
+set -eo pipefail -o nounset
+
+terraform apply
+
+export DEISCTL_TUNNEL="$(terraform output ip)"
+export DEIS_TEST_DOMAIN="${DEISCTL_TUNNEL}.xip.io"
+
+rigger-save-vars DEISCTL_TUNNEL \
+                 DEIS_TEST_DOMAIN
diff --git a/contrib/digitalocean/deis-digitalocean.tf b/contrib/digitalocean/deis-digitalocean.tf
@@ -0,0 +1,24 @@
+provider "digitalocean" {
+    token = "${var.token}"
+}
+
+resource "digitalocean_droplet" "deis" {
+    count = "${var.instances}"
+    image = "coreos-stable"
+    name = "${var.prefix}-${count.index+1}"
+    region = "${var.region}"
+    size = "${var.size}"
+    backups = "False"
+    ipv6 = "False"
+    private_networking = "True"
+    ssh_keys = ["${var.ssh_keys}"]
+    user_data = "${file("${path.module}/../coreos/user-data")}"
+}
+
+output "msg" {
+    value = "Your hosts are ready to go! Continue following the documentation to install and start Deis. Your hosts are: ${join(", ", digitalocean_droplet.deis.*.ipv4_address)}"
+}
+
+output "ip" {
+    value = "${digitalocean_droplet.deis.0.ipv4_address}"
+}
diff --git a/contrib/digitalocean/destroy b/contrib/digitalocean/destroy
@@ -0,0 +1,5 @@
+#!/usr/bin/env bash
+
+set -eo pipefail -o nounset
+
+terraform destroy -force
diff --git a/contrib/digitalocean/install b/contrib/digitalocean/install
@@ -0,0 +1,5 @@
+#!/usr/bin/env bash
+
+set -eo pipefail -o nounset
+
+rigger-install-terraform
diff --git a/contrib/digitalocean/provision-do-cluster.sh b/contrib/digitalocean/provision-do-cluster.sh
diff --git a/contrib/digitalocean/variables.tf b/contrib/digitalocean/variables.tf
@@ -0,0 +1,23 @@
+variable "instances" {
+  default = "3"
+}
+
+variable "prefix" {
+  default = "deis"
+}
+
+variable "region" {
+  default = "sfo1"
+}
+
+variable "size" {
+  default = "8GB"
+}
+
+variable "ssh_keys" {
+  description = "The ssh fingerprint of the ssh key you'll be using"
+}
+
+variable "token" {
+  description = "Your Digital Ocean auth token"
+}
diff --git a/docs/installing_deis/digitalocean.rst b/docs/installing_deis/digitalocean.rst
@@ -20,10 +20,8 @@ To complete this guide, you must have the following:
  - A domain to point to the cluster
  - The ability to provision at least 3 DigitalOcean Droplets that are 4GB or greater
 
-In order to provision the cluster, we will need to install a couple of administrative tools.
-`docl`_ is a convenience tool to help provision DigitalOcean Droplets. We will also require the
-`Deis Control Utility`_, which will assist us with installing, configuring and managing the Deis
-platform.
+Additionally, we'll need to install `Terraform`_ to do the heavy lifting for us.
+
 
 Check System Requirements
 -------------------------
@@ -37,6 +35,8 @@ Generate SSH Key
 
 .. include:: ../_includes/_generate-ssh-key.rst
 
+Upload this key to DigitalOcean so we can use it for the rest of the provisioning
+process.
 
 Generate a New Discovery URL
 ----------------------------
@@ -47,42 +47,29 @@ Generate a New Discovery URL
 Create CoreOS Droplets
 ----------------------
 
-Now that we have the user-data file, we can provision some Droplets. We've made this process simple
-by supplying a script that does all the heavy lifting for you. If you want to provision manually,
-however, start by uploading the SSH key you wish to use to log into each of these servers. After
-that, create at least three Droplets with the following specifications:
+The only other pieces of information we'll need are your DigitalOcean API token
+and the fingerprint of your SSH key, both of which can be obtained from the
+DigitalOcean interface.
+
+From the source code root directory, invoke Terraform:
 
- - All Droplets deployed in the same region
- - Region must have private networking enabled
- - Region must have User Data enabled. Supply the user-data file here
- - Select CoreOS Stable channel
- - Select your SSH key from the list
+.. code-block:: console
 
-If private networking is not available in your region, swap out ``$private_ipv4`` with
-``$public_ipv4`` in the user-data file.
+    $ terraform apply -var 'token=a1b2c3d3e4f5' \
+                      -var 'ssh_keys=c1:d3:a2:b4:e4:f5' \
+                      -var 'region=nyc3' \
+                      -var 'prefix=deis' \
+                      -var 'instances=3' \
+                      -var 'size=8GB' \
+                      contrib/digitalocean
 
-If you want to use the script:
 
-.. code-block:: console
+Note that only ``token`` and ``ssh_keys`` are required - if unset, the other variables
+will default to 3 hosts in the ``sfo1`` region with a size of 8GB and a prefix
+of ``deis``. Additionally, ``ssh_keys`` can be just one key, or a comma-separated
+list of keys to be added to the hosts for the ``core`` user.
 
-    $ gem install docl
-    $ docl authorize
-    $ docl upload_key deis ~/.ssh/deis.pub
-    $ # retrieve your SSH key's ID
-    $ docl keys
-    deis (id: 12345)
-    $ # retrieve the region name
-    $ docl regions --metadata --private-networking
-    Amsterdam 2 (ams2)
-    Amsterdam 3 (ams3)
-    Frankfurt 1 (fra1)
-    London 1 (lon1)
-    New York 3 (nyc3)
-    San Francisco 1 (sfo1)
-    Singapore 1 (sgp1)
-    $ ./contrib/digitalocean/provision-do-cluster.sh nyc3 12345 4GB
-
-Which will provision 3 CoreOS nodes for use.
+The ``region`` option must specify a region with private networking.
 
 Configure DNS
 -------------
@@ -154,3 +141,4 @@ start installing the platform.
 .. _`Deis Control Utility`: https://github.com/deis/deis/tree/master/deisctl#readme
 .. _`DNS control panel`: https://cloud.digitalocean.com/domains
 .. _`this tutorial`: https://www.digitalocean.com/community/tutorials/how-to-set-up-a-host-name-with-digitalocean
+.. _`Terraform`: https://terraform.io/

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+#!/usr/bin/env bash`
	`2`	`+`
	`3`	`+set -eo pipefail -o nounset`