added default configs for mesh gateways

Author: GuyBarros

main.tf

@@ -60,6 +60,7 @@ module "primarycluster" {
   zone_id              = var.zone_id
   run_nomad_jobs       = var.run_nomad_jobs
   host_access_ip       = var.host_access_ip
+  primary_datacenter   = var.primary_datacenter
 
   # EMEA-SE-PLAYGROUND
   ca_key_algorithm      = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.ca_key_algorithm
@@ -71,7 +72,7 @@ module "primarycluster" {
   nomad_gossip_key      = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.nomad_gossip_key
 }
 
-
+/*
 module "secondarycluster" {
     source = "./modules"
   owner                = var.owner
@@ -101,6 +102,7 @@ module "secondarycluster" {
   zone_id              = var.zone_id
   run_nomad_jobs       = var.run_nomad_jobs
   host_access_ip       = var.host_access_ip
+  primary_datacenter   = var.primary_datacenter
   # EMEA-SE-PLAYGROUND
   ca_key_algorithm      = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.ca_key_algorithm
   ca_private_key_pem    = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.ca_private_key_pem
@@ -110,7 +112,7 @@ module "secondarycluster" {
   consul_master_token   = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.consul_master_token
   nomad_gossip_key      = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.nomad_gossip_key
 }
-
+*/
 
 /*
 module "tertiarycluster" {
@@ -142,7 +144,7 @@ module "tertiarycluster" {
   zone_id            = var.zone_id
   run_nomad_jobs       = var.run_nomad_jobs
   host_access_ip       = var.host_access_ip
-
+  primary_datacenter   = var.primary_datacenter
   # EMEA-SE-PLAYGROUND
   ca_key_algorithm      = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.ca_key_algorithm
   ca_private_key_pem    = data.terraform_remote_state.emea_se_playground_tls_root_certificate.outputs.ca_private_key_pem

modules/server.tf

@@ -29,6 +29,7 @@ data "template_file" "server" {
     public_key = var.public_key
 
     # Consul
+    primary_datacenter    = var.primary_datacenter
     consul_url            = var.consul_url
     consul_ent_url        = var.consul_ent_url
     consul_gossip_key     = var.consul_gossip_key

modules/templates/server/consul.sh

@@ -18,6 +18,7 @@ sudo mkdir -p /etc/consul.d
 sudo tee /etc/consul.d/config.json > /dev/null <<EOF
 {
   "datacenter": "${region}",
+  "primary_datacenter":  "${primary_datacenter}",
   "bootstrap_expect": ${consul_servers},
   "advertise_addr": "$(private_ip)",
   "advertise_addr_wan": "$(public_ip)",
@@ -121,6 +122,16 @@ curl -so /dev/null -X PUT http://127.0.0.1:8500/v1/acl/update \
 }
 BODY
 
+echo "--> writting default gateway configs for Mesh Gateways"
+sudo tee /tmp/proxy-defaults.json > /dev/null <<"EOF"
+Kind = "proxy-defaults"
+Name = "global"
+MeshGateway {
+   Mode = "local"
+}
+EOF
+consul config write /tmp/proxy-defaults.json
+
 
 
 echo "==> Consul is done!"

modules/variables.tf

@@ -160,4 +160,9 @@ variable "run_nomad_jobs"{
 variable "host_access_ip" {
   description = "CIDR blocks allowed to connect via SSH on port 22"
   default = [  ]
+}
+
+variable "primary_datacenter"{
+  description = "the primary datacenter for mesh gateways"
+  default = ""
 }

outputs.tf

@@ -62,7 +62,7 @@ output "Primary_workers_Nodes" {
 
 
 // Secondary
-
+/*
 output "Secondary_Consul" {
   value = module.secondarycluster.consul_ui
 }
@@ -85,6 +85,7 @@ output "Secondary_servers_nodes" {
 output "Secondary_workers_Nodes" {
   value = module.secondarycluster.workers
 }
+*/
 
 // Tertiary
 /*

variables.tf

@@ -199,4 +199,9 @@ variable "run_nomad_jobs" {
 variable "host_access_ip" {
   description = "CIDR blocks allowed to connect via SSH on port 22"
   default     = []
+}
+
+variable "primary_datacenter"{
+  description = "the primary datacenter for mesh gateways"
+  default = ""
 }