contrib/terraform/exoscale: Rework SSH public keys (#7242)

* contrib/terraform/exoscale: Rework SSH public keys Exoscale has a few limitations with `exoscale_ssh_keypair` resources. Creating several clusters with these scripts may lead to an error like: ``` Error: API error ParamError 431 (InvalidParameterValueException 4350): The key pair "lj-sc-ssh-key" already has this fingerprint ``` This patch reworks handling of SSH public keys. Specifically, we rely on the more cloud-agnostic way of configuring SSH public keys via `cloud-init`. * contrib/terraform/exoscale: terraform fmt * contrib/terraform/exoscale: Add terraform validate * contrib/terraform/exoscale: Inline public SSH keys The Terraform scripts need to install some SSH key, so that Kubespray (i.e., the "Ansible part") can take over. Initially, we pointed the Terraform scripts to `~/.ssh/id_rsa.pub`. This proved to be suboptimal: Operators sharing responbility for a cluster risk unnecessarily replacing resources. Therefore, it has been determined that it's best to inline the public SSH keys. The chosen variable `ssh_public_keys` provides some uniformity with `contrib/azurerm`. * Fix Terraform Exoscale test * Fix Terraform 0.14 test
2026-05-23 00:37:42 -02:30 · 2021-02-03 16:32:28 +01:00
parent 88bee6c68e
commit b77460ec34
11 changed files with 161 additions and 75 deletions
--- a/contrib/terraform/exoscale/default.tfvars
+++ b/contrib/terraform/exoscale/default.tfvars
@@ -3,49 +3,53 @@ zone   = "ch-gva-2"

 inventory_file = "inventory.ini"

-ssh_pub_key = "~/.ssh/id_rsa.pub"
+ssh_public_keys = [
+  # Put your public SSH key here
+  "ssh-rsa I-did-not-read-the-docs",
+  "ssh-rsa I-did-not-read-the-docs 2",
+]

 machines = {
- "master-0": {
-   "node_type": "master",
-   "size": "Small",
-   "boot_disk": {
-     "image_name": "Linux Ubuntu 20.04 LTS 64-bit",
-     "root_partition_size": 50,
-     "node_local_partition_size": 0,
-     "ceph_partition_size": 0
-   }
- },
- "worker-0": {
-   "node_type": "worker",
-   "size": "Large",
-   "boot_disk": {
-     "image_name": "Linux Ubuntu 20.04 LTS 64-bit",
-     "root_partition_size": 50,
-     "node_local_partition_size": 0,
-     "ceph_partition_size": 0
-   }
- },
- "worker-1": {
-   "node_type": "worker",
-   "size": "Large",
-   "boot_disk": {
-     "image_name": "Linux Ubuntu 20.04 LTS 64-bit",
-     "root_partition_size": 50,
-     "node_local_partition_size": 0,
-     "ceph_partition_size": 0
-   }
- },
- "worker-2": {
-   "node_type": "worker",
-   "size": "Large",
-   "boot_disk": {
-     "image_name": "Linux Ubuntu 20.04 LTS 64-bit",
-     "root_partition_size": 50,
-     "node_local_partition_size": 0,
-     "ceph_partition_size": 0
-   }
- }
+  "master-0" : {
+    "node_type" : "master",
+    "size" : "Small",
+    "boot_disk" : {
+      "image_name" : "Linux Ubuntu 20.04 LTS 64-bit",
+      "root_partition_size" : 50,
+      "node_local_partition_size" : 0,
+      "ceph_partition_size" : 0
+    }
+  },
+  "worker-0" : {
+    "node_type" : "worker",
+    "size" : "Large",
+    "boot_disk" : {
+      "image_name" : "Linux Ubuntu 20.04 LTS 64-bit",
+      "root_partition_size" : 50,
+      "node_local_partition_size" : 0,
+      "ceph_partition_size" : 0
+    }
+  },
+  "worker-1" : {
+    "node_type" : "worker",
+    "size" : "Large",
+    "boot_disk" : {
+      "image_name" : "Linux Ubuntu 20.04 LTS 64-bit",
+      "root_partition_size" : 50,
+      "node_local_partition_size" : 0,
+      "ceph_partition_size" : 0
+    }
+  },
+  "worker-2" : {
+    "node_type" : "worker",
+    "size" : "Large",
+    "boot_disk" : {
+      "image_name" : "Linux Ubuntu 20.04 LTS 64-bit",
+      "root_partition_size" : 50,
+      "node_local_partition_size" : 0,
+      "ceph_partition_size" : 0
+    }
+  }
 }

 nodeport_whitelist = [