djpbessems/Packer.Images
1
1
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Compare commits

base: djpbessems:Appliance.AirgappedK8s-1.25.x
Branches Tags
djpbessems:master djpbessems:Appliance.AirgappedK8s-1.27.x djpbessems:Appliance.AirgappedK8s-1.26.x djpbessems:Appliance.AirgappedK8s-1.25.x djpbessems:Test_SemRel djpbessems:UbuntuServer22.04 djpbessems:UbuntuServer20.04 djpbessems:Windows10 djpbessems:Server2019 djpbessems:ADDS
djpbessems:K8s_1.25.9-v1.0.0 djpbessems:v1.0.0
..
compare: djpbessems:76d3b6c74234af0c55a5f7e5ebff48f2ebeaacfb
Branches Tags
djpbessems:Appliance.AirgappedK8s-1.27.x djpbessems:Appliance.AirgappedK8s-1.26.x djpbessems:Appliance.AirgappedK8s-1.25.x djpbessems:Test_SemRel djpbessems:UbuntuServer22.04 djpbessems:UbuntuServer20.04 djpbessems:Windows10 djpbessems:master djpbessems:Server2019 djpbessems:ADDS
djpbessems:K8s_1.25.9-v1.0.0 djpbessems:v1.0.0

40 Commits
Appliance. ... 76d3b6c742

Author SHA1 Message Date
Danny Bessems
76d3b6c742 build: Include semantic release dry-run logic
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-07-07 17:31:32 +02:00
Danny Bessems
a5248bd54c build: Add missing variables
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-07-07 17:12:20 +02:00
Danny Bessems
cbedc9679f feat: Add version/metadata API endpoint
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-07-07 16:48:32 +02:00
Danny Bessems
740b6b3dc9 build: Disable parallel builds entirely
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-07-07 14:33:47 +02:00
Danny Bessems
0ba87988bc fix: Incorrect indentation causing malformed PEM file
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-07-07 10:30:20 +02:00
Danny Bessems
aa14a8a3a8 fix: Refactor kustomize templates
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-07-06 13:01:35 +02:00
Danny Bessems
1f55ff7cfa build: Revert to semi-working syntax
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-06-20 16:30:49 +02:00
Danny Bessems
ba4a0148ff build: Try different syntax (remove quotes)
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-06-20 15:44:45 +02:00
Danny Bessems
c177dbd03b build: Test different syntax for character escape
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-06-20 15:40:39 +02:00
Danny Bessems
2e8ce6cc00 build: Escape escape sequence characters
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-06-20 15:37:36 +02:00
Danny Bessems
7fd1cf73db build: Fix linebreak
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-06-20 15:35:09 +02:00
Danny Bessems
cf001cd0ce build:Test explicit tag format
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-06-20 15:32:53 +02:00
Danny Bessems
438b944011 build: Add missing variable export
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-22 13:43:53 +02:00
Danny Bessems
679a9457b5 build:Fix variable name
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-22 12:44:13 +02:00
Danny Bessems
8b4a1e380c build:Test semantic-release + build flow
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-22 12:19:10 +02:00
Danny Bessems
0468cd6269 build:Debug echo to file
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-22 12:11:14 +02:00
Danny Bessems
b808397d47 build:Fix var substitution
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-22 12:08:01 +02:00
Danny Bessems
8fd0136bb7 build:debug brace mismatch #2
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-22 12:06:14 +02:00
Danny Bessems
479d896599 build:Debug brace mismatch
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2023-05-22 12:05:32 +02:00
Danny Bessems
263f156eb1 build:Try different syntax
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2023-05-22 11:55:28 +02:00
Danny Bessems
f1dfc83d7c build:Revert back to cli arguments while specifying custom command
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2023-05-22 09:23:44 +02:00
Danny Bessems
5b950a3834 build:Test with configuration in .releaserc.json
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-22 09:09:50 +02:00
Danny Bessems
978f39d45b build: Test different semantic-release plugins
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-21 18:27:34 +02:00
Danny Bessems
9b9ab6b784 build:Skip build on tag
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-21 18:09:22 +02:00
Danny Bessems
24dca2755a fix: Run semantic-release with different drone variable as input
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-21 18:02:00 +02:00
Danny Bessems
0d1db2f29f feat: Test semantic-release dry-run #2
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-21 17:51:04 +02:00
Danny Bessems
cce39a5bb7 fix:Test semantic release dry-run
Some checks failed
continuous-integration/drone/push Build is passing
Details
continuous-integration/drone/tag Build is failing
Details
2023-05-20 15:18:23 +02:00
Danny Bessems
823cc467fa Explicitly install semantic-release plugins #2
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-20 14:32:47 +02:00
Danny Bessems
9cb89bf055 Try different syntax
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 14:30:38 +02:00
Danny Bessems
358cbe39ea Fix quote
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 14:28:31 +02:00
Danny Bessems
0fee2df2a6 Explicitly install semantic-release plugins
Some checks reported errors
continuous-integration/drone/push Build encountered an error
Details
2023-05-20 13:44:54 +02:00
Danny Bessems
e4e58e4789 Disable npm plugin
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 13:31:48 +02:00
Danny Bessems
75158a8a5b Fix variable substitution
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 13:26:49 +02:00
Danny Bessems
c83d541a0d Remove redundant parameter
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 13:24:20 +02:00
Danny Bessems
a46610f828 Add git credentials
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 13:22:20 +02:00
Danny Bessems
fe5147bd2e Override branch during semantic-release dry-run
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 12:58:44 +02:00
Danny Bessems
6d168f0517 Add semantic-release prerequisites
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-20 12:48:40 +02:00
Danny Bessems
68445ee13f Testing semantic-release
Some checks failed
continuous-integration/drone/push Build is failing
Details
2023-05-20 12:44:32 +02:00
Danny Bessems
48c14afd0f New major version branch
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-19 13:43:23 +02:00
Danny Bessems
2addda3f06 Upgrade node template OS version;Upgrade K8s minor version
All checks were successful
continuous-integration/drone/push Build is passing
Details
2023-05-19 12:19:06 +02:00
7 changed files with 121 additions and 21 deletions
Expand all files Collapse all files

66
.drone.yml
View File

@ -10,6 +10,11 @@ volumes:
claim:
name: flexvolsmb-drone-scratch
trigger:
event:
exclude:
- tag
steps:
- name: Debugging information
image: bv11-cr01.bessems.eu/library/packer-extended
@ -21,8 +26,6 @@ steps:
- yamllint --version
- name: Linting
depends_on:
- Debugging information
image: bv11-cr01.bessems.eu/library/packer-extended
pull: always
commands:
@ -32,9 +35,48 @@ steps:
packer/preseed/UbuntuServer22.04/user-data \
scripts
- name: Semantic Release (Dry-run)
image: bv11-cr01.bessems.eu/proxy/library/node:20-slim
pull: always
commands:
- |
apt-get update
- |
apt-get install -y --no-install-recommends \
curl \
git-core \
jq \
ca-certificates
- |
curl -L https://api.github.com/repos/mikefarah/yq/releases/latest | \
jq -r '.assets[] | select(.name | endswith("yq_linux_amd64")) | .browser_download_url' | \
xargs -I {} curl -L -o /bin/yq {} && \
chmod +x /bin/yq
- |
npm install \
semantic-release \
@semantic-release/commit-analyzer \
@semantic-release/exec \
- |
export K8S_VERSION=$(yq '.components.clusterapi.workload.version.k8s' < ./ansible/vars/metacluster.yml)
export GIT_CREDENTIALS=$${GIT_USERNAME}:$${GIT_APIKEY}
- |
npx semantic-release \
--package @semantic-release/exec \
--package semantic-release \
--branches ${DRONE_BRANCH} \
--tag-format "K8s_$${K8S_VERSION}-v\$${version}" \
--dry-run \
--plugins @semantic-release/commit-analyzer,@semantic-release/exec \
--analyzeCommits @semantic-release/commit-analyzer \
--verifyRelease @semantic-release/exec \
--verifyReleaseCmd 'echo "$${nextRelease.version}" > .version'
environment:
GIT_APIKEY:
from_secret: git_apikey
GIT_USERNAME: djpbessems
- name: Install Ansible Galaxy collections
depends_on:
- Linting
image: bv11-cr01.bessems.eu/library/packer-extended
pull: always
commands:
@ -42,13 +84,8 @@ steps:
ansible-galaxy collection install \
-r ansible/requirements.yml \
-p ./ansible/collections
volumes:
- name: scratch
path: /scratch
- name: Kubernetes Bootstrap Appliance
depends_on:
- Install Ansible Galaxy collections
image: bv11-cr01.bessems.eu/library/packer-extended
pull: always
commands:
@ -57,6 +94,7 @@ steps:
packer/preseed/UbuntuServer22.04/user-data
- |
export K8S_VERSION=$(yq '.components.clusterapi.workload.version.k8s' < ./ansible/vars/metacluster.yml)
export APPLIANCE_VERSION=$(cat .version)
- |
packer init -upgrade \
./packer
@ -71,6 +109,7 @@ steps:
-var ssh_password=$${SSH_PASSWORD} \
-var vsphere_password=$${VSPHERE_PASSWORD} \
-var k8s_version=$K8S_VERSION \
-var appliance_version=$APPLIANCE_VERSION \
./packer
- |
packer build \
@ -84,6 +123,7 @@ steps:
-var ssh_password=$${SSH_PASSWORD} \
-var vsphere_password=$${VSPHERE_PASSWORD} \
-var k8s_version=$K8S_VERSION \
-var appliance_version=$APPLIANCE_VERSION \
./packer
environment:
DOCKER_USERNAME:
@ -106,8 +146,6 @@ steps:
path: /scratch
- name: Kubernetes Upgrade Appliance
depends_on:
- Install Ansible Galaxy collections
image: bv11-cr01.bessems.eu/library/packer-extended
pull: alwaysquery(
commands:
@ -116,6 +154,7 @@ steps:
packer/preseed/UbuntuServer22.04/user-data
- |
export K8S_VERSION=$(yq '.components.clusterapi.workload.version.k8s' < ./ansible/vars/metacluster.yml)
export APPLIANCE_VERSION=$(cat .version)
- |
packer init -upgrade \
./packer
@ -130,6 +169,7 @@ steps:
-var ssh_password=$${SSH_PASSWORD} \
-var vsphere_password=$${VSPHERE_PASSWORD} \
-var k8s_version=$K8S_VERSION \
-var appliance_version=$APPLIANCE_VERSION \
./packer
- |
packer build \
@ -143,6 +183,7 @@ steps:
-var ssh_password=$${SSH_PASSWORD} \
-var vsphere_password=$${VSPHERE_PASSWORD} \
-var k8s_version=$K8S_VERSION \
-var appliance_version=$APPLIANCE_VERSION \
./packer
environment:
DOCKER_USERNAME:
@ -165,9 +206,6 @@ steps:
path: /scratch
- name: Remove temporary resources
depends_on:
- Kubernetes Bootstrap Appliance
- Kubernetes Upgrade Appliance
image: bv11-cr01.bessems.eu/library/packer-extended
commands:
- |

6
ansible/roles/assets/tasks/manifests.yml
View File

@ -16,14 +16,16 @@
{ 'components': (
metacluster_chartvalues |
combine({ 'clusterapi': components.clusterapi }) |
combine({ 'kubevip' : components.kubevip }) )
combine({ 'kubevip' : components.kubevip }) ),
'appliance': {
'version': (applianceversion)
}
} | to_nice_yaml(indent=2, width=4096)
}}
- name: Aggregate chart_values into dict
ansible.builtin.set_fact:
workloadcluster_chartvalues: "{{ workloadcluster_chartvalues | default({}) | combine({ item.key: { 'chart_values': (item.value.chart_values | default('') | from_yaml) } }) }}"
# when: item.value.chart_values is defined
loop: "{{ query('ansible.builtin.dict', downstream.helm_charts) }}"
loop_control:
label: "{{ item.key }}"

27
ansible/roles/firstboot/files/ansible_payload/bootstrap/roles/metacluster/tasks/json-server.yml Normal file
View File

@ -0,0 +1,27 @@
- block:
- name: Install json-server chart
kubernetes.core.helm:
name: json-server
chart_ref: /opt/metacluster/helm-charts/json-server
release_namespace: json-server
create_namespace: true
wait: false
kubeconfig: "{{ kubeconfig.path }}"
values: "{{ components['json-server'].chart_values }}"
- name: Ensure json-server API availability
ansible.builtin.uri:
url: https://version.{{ vapp['metacluster.fqdn'] }}/healthz
method: GET
register: api_readycheck
until:
- api_readycheck.json.status is defined
- api_readycheck.json.status == 'running'
retries: "{{ playbook.retries }}"
delay: "{{ (storage_benchmark | int) * (playbook.delay.long | int) }}"
module_defaults:
ansible.builtin.uri:
validate_certs: no
status_code: [200, 201]
body_format: json

1
ansible/roles/firstboot/files/ansible_payload/bootstrap/roles/metacluster/tasks/main.yml
View File

@ -1,5 +1,6 @@
- import_tasks: init.yml
- import_tasks: k3s.yml
- import_tasks: json-server.yml
- import_tasks: assets.yml
- import_tasks: kube-vip.yml
- import_tasks: storage.yml

38
ansible/vars/metacluster.yml
View File

@ -1,7 +1,7 @@
platform:
k3s:
version: v1.25.9+k3s1
version: v1.27.1+k3s1
packaged_components:
- name: traefik
@ -51,6 +51,8 @@ platform:
url: https://prometheus-community.github.io/helm-charts
- name: smallstep
url: https://smallstep.github.io/helm-charts/
- name: spamasaurus
url: https://code.spamasaurus.com/api/packages/djpbessems/helm
components:
@ -115,13 +117,13 @@ components:
infrastructure_vsphere: v1.6.0
ipam_incluster: v0.1.0-alpha.2
# Refer to `https://console.cloud.google.com/gcr/images/cloud-provider-vsphere/GLOBAL/cpi/release/manager` for available tags
cpi_vsphere: v1.25.2
cpi_vsphere: v1.26.2
workload:
version:
calico: v3.25.0
k8s: v1.25.10
k8s: v1.27.1
node_template:
url: https://{{ repo_username }}:{{ repo_password }}@sn.itch.fyi/Repository/rel/ubuntu-2204-kube-v1.25.10.ova
url: https://{{ repo_username }}:{{ repo_password }}@sn.itch.fyi/Repository/rel/ubuntu-2204-kube-v1.27.1.ova
# dex:
# helm:
@ -225,6 +227,34 @@ components:
registry:
size: 25Gi
json-server:
helm:
version: v0.5.1
chart: spamasaurus/json-server
parse_logic: helm template . | yq --no-doc eval '.. | .image? | select(.)' | sort -u | awk '!/ /'
chart_values: !unsafe |
ingress:
enabled: true
hosts:
- host: version.{{ vapp['metacluster.fqdn'] }}
paths:
- path: /
pathType: Prefix
seedData:
configInline: |
{
"appliance": { "version": "{{ appliance.version }}" },
"components": [
{ "app": "argo-cd", "version": "{{ components[argo-cd].helm.version }}" },
{ "app": "cert-manager", "version": "{{ components[cert-manager].helm.version }}" },
{ "app": "cluster-api",
"management": { "foo": "bar" },
"workload": { "foo": "bar" }
}
],
"healthz": { "status": "running" }
}
# keycloakx:
# helm:
# version: 2.1.1 # (= Keycloak 20.0.3)

3
packer/build.pkr.hcl
View File

@ -28,6 +28,7 @@ build {
extra_arguments = [
"--extra-vars", "appliancetype=${source.name}",
"--extra-vars", "applianceversion=${var.appliance_version}",
"--extra-vars", "ansible_ssh_pass=${var.ssh_password}",
"--extra-vars", "docker_username=${var.docker_username}",
"--extra-vars", "docker_password=${var.docker_password}",
@ -45,7 +46,7 @@ build {
" -ManifestFileName '/scratch/bld_${var.vm_name}_${source.name}.mf'",
"ovftool --acceptAllEulas --allowExtraConfig --overwrite \\",
" '/scratch/bld_${var.vm_name}_${source.name}.ovf' \\",
" /output/airgapped-k8s-${var.k8s_version}.${source.name}.ova"
" /output/airgapped-k8s-${var.appliance_version}+${var.k8s_version}-${source.name}.ova"
]
}
}

1
packer/variables.pkr.hcl
View File

@ -34,4 +34,5 @@ variable "docker_password" {
sensitive = true
}
variable "appliance_version" {}
variable "k8s_version" {}