Skip to content
/ traefik-k8s-gcp Public

Example repo of Traefik V2 running on a kubernetes cluster using Helm and Terraform

3 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

davilag/traefik-k8s-gcp

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
charts/traefik
charts/traefik
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
main.tf
main.tf
 
 
providers.tf
providers.tf
 
 
variables.auto.tfvars
variables.auto.tfvars
 
 
variables.tf
variables.tf
 
 

Repository files navigation

Requirements

In order to use this repo you will need installed:

Once you have the GCloud CLI installed, we will need to enable some APIs that the service account that Terraform will use will need:

gcloud services enable compute.googleapis.com
gcloud services enable servicenetworking.googleapis.com
gcloud services enable cloudresourcemanager.googleapis.com
gcloud services enable container.googleapis.com

Then we will need to first enable the you will also need to create a service account in GCP that is going to be the responsible for creating the cluster:

gcloud iam service-accounts create {service_account_name}

Once the service account has been created, we'll need to give it some permissions:

gcloud projects add-iam-policy-binding {project_name} --member serviceAccount:{service_account_name}@{project_name}.iam.gserviceaccount.com --role roles/container.admin
gcloud projects add-iam-policy-binding {project_name} --member serviceAccount:{service_account_name}@{project_name}.iam.gserviceaccount.com --role roles/compute.admin
gcloud projects add-iam-policy-binding {project_name} --member serviceAccount:{service_account_name}@{project_name}.iam.gserviceaccount.com --role roles/iam.serviceAccountUser
gcloud projects add-iam-policy-binding {project_name} --member serviceAccount:{service_account_name}@{project_name}.iam.gserviceaccount.com --role roles/resourcemanager.projectIamAdmin

After this, we will need to retrieve the service account keyfile that we are going to be using to authenticate with GCP. For that run:

gcloud iam service-accounts keys create terraform-gke-keyfile.json --iam-account={service_account_name}@{project_name}.iam.gserviceaccount.com

This is going to generate a terraform-gke-keyfile.json file that we will pass to the terraform configuration through the credentials variable in the variables.auto.tfvars). You will also need to populate the service_account variable on the same file with {service_account_name}@{project_name}.iam.gserviceaccount.com.

NOTE: Do not push this file to any repository as it will give you access to GCP!

Create cluster

Once all has been set, you just need to run:

terraform init

This will download the different Terraform providers needed to create the resources in GCP. To see the resources that are going to be created:

terraform plan

And finally, to create the resources:

terraform apply

If multiple people are going to use the same repo to create the same resources, the usage of Terraform Cloud is recommended.

About

Example repo of Traefik V2 running on a kubernetes cluster using Helm and Terraform

Topics

kubernetes terraform helm gcp kubernetes-cluster traefik gcp-gke traefik-v2

Resources

Readme
Activity

Stars

3 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages