chore: Use talos terraform-module in devenv (#65)

Author: nahsi

ephemeral/backend.tf

@@ -30,6 +30,6 @@ provider "vault" {
 
 provider "helm" {
   kubernetes {
-    config_path = local_sensitive_file.kubeconfig.filename
+    config_path = module.talos.kubeconfig.path
   }
 }

ephemeral/config_patch.yml

@@ -0,0 +1,7 @@
+machine:
+  registries:
+    config:
+      docker.fluence.dev:
+        auth:
+          username: ${docker_username}
+          password: ${docker_password}

ephemeral/controlplane.tf

@@ -0,0 +1,37 @@
+data "digitalocean_vpc" "spectrum" {
+  name = "rnd-spectrum-vpc"
+}
+
+resource "tls_private_key" "spectrum" {
+  algorithm = "ED25519"
+}
+
+resource "digitalocean_ssh_key" "spectrum" {
+  name       = "${local.prefix}-ssh-key"
+  public_key = tls_private_key.spectrum.public_key_openssh
+}
+
+data "digitalocean_image" "talos" {
+  name = "talos-v1.8.4"
+}
+
+resource "digitalocean_droplet" "talos" {
+  name     = "rnd-${local.prefix}-spectrum-cp"
+  size     = "s-8vcpu-16gb"
+  image    = data.digitalocean_image.talos.id
+  region   = "fra1"
+  vpc_uuid = data.digitalocean_vpc.spectrum.id
+
+  ssh_keys = [
+    digitalocean_ssh_key.spectrum.id
+  ]
+
+  tags = [
+    local.prefix,
+  ]
+}
+
+resource "digitalocean_reserved_ip" "l2" {
+  droplet_id = digitalocean_droplet.talos.id
+  region     = digitalocean_droplet.talos.region
+}

ephemeral/instance.tf

@@ -1,19 +1,5 @@
 locals {
-  prefix           = terraform.workspace
-  loadbalancer_dns = "kube.${local.prefix}.fluence.dev"
-}
-
-resource "tls_private_key" "spectrum" {
-  algorithm = "ED25519"
-}
-
-resource "digitalocean_ssh_key" "spectrum" {
-  name       = "${local.prefix}-ssh-key"
-  public_key = tls_private_key.spectrum.public_key_openssh
-}
-
-data "digitalocean_image" "talos" {
-  name = "talos-v1.8.4"
+  prefix = terraform.workspace
 }
 
 data "vault_generic_secret" "spectrum" {
@@ -24,10 +10,19 @@ data "vault_generic_secret" "docker" {
   path = "kv/docker-registry/basicauth/ci"
 }
 
+module "talos" {
+  source       = "../terraform-modules/talos"
+  cluster_name = local.prefix
+  server_ip    = digitalocean_droplet.talos.ipv4_address
+
+  config_patches = [
+    file("${path.root}/config_patch.yml"),
+  ]
+}
+
 module "spectrum" {
   depends_on = [
-    data.http.talos_health,
-    local_sensitive_file.kubeconfig,
+    module.talos
   ]
   source  = "../terraform-modules/spectrum"
   network = var.github_branch
@@ -41,7 +36,7 @@ module "spectrum" {
     DOTOKEN         = base64encode(data.vault_generic_secret.spectrum.data.token)
     DOMAIN          = "${local.prefix}.fluence.dev"
     PREFIX          = local.prefix
-    LOADBALANCER_IP = digitalocean_loadbalancer.cp.ip
+    LOADBALANCER_IP = digitalocean_droplet.talos.ipv4_address
     L2_IP           = digitalocean_reserved_ip.l2.ip_address
   }
 }