feat: Expose gce_pd_csi_driver for Safer Cluster modules #503 (#514)

rebelthor · Daniel Patriche · web-flow · commit d4e7dc6a5857 · 2020-05-11T14:58:14.000-04:00
* Expose gce_pd_csi_driver for Safer Cluster modules #503 * Use autogen folder to generate modules #503 Co-authored-by: Daniel Patriche <daniel@mambu.com>
diff --git a/autogen/safer-cluster/main.tf.tmpl b/autogen/safer-cluster/main.tf.tmpl
@@ -154,4 +154,6 @@ module "gke" {
   enable_shielded_nodes = var.enable_shielded_nodes
 
   skip_provisioners = var.skip_provisioners
+
+  gce_pd_csi_driver = var.gce_pd_csi_driver
 }
diff --git a/autogen/safer-cluster/variables.tf.tmpl b/autogen/safer-cluster/variables.tf.tmpl
@@ -336,3 +336,9 @@ variable "pod_security_policy_config" {
     "enabled" = true
   }]
 }
+
+variable "gce_pd_csi_driver" {
+  type        = bool
+  description = "(Beta) Whether this cluster should enable the Google Compute Engine Persistent Disk Container Storage Interface (CSI) Driver."
+  default     = true
+}
diff --git a/modules/safer-cluster-update-variant/README.md b/modules/safer-cluster-update-variant/README.md
@@ -214,6 +214,7 @@ For simplicity, we suggest using `roles/container.admin` and
 | enable\_resource\_consumption\_export | Whether to enable resource consumption metering on this cluster. When enabled, a table will be created in the resource export BigQuery dataset to store resource consumption data. The resulting table can be joined with the resource usage table or with BigQuery billing export. | bool | `"true"` | no |
 | enable\_shielded\_nodes | Enable Shielded Nodes features on all nodes in this cluster. | bool | `"true"` | no |
 | enable\_vertical\_pod\_autoscaling | Vertical Pod Autoscaling automatically adjusts the resources of pods controlled by it | bool | `"false"` | no |
+| gce\_pd\_csi\_driver | (Beta) Whether this cluster should enable the Google Compute Engine Persistent Disk Container Storage Interface (CSI) Driver. | bool | `"true"` | no |
 | grant\_registry\_access | Grants created cluster-specific service account storage.objectViewer role. | bool | `"true"` | no |
 | horizontal\_pod\_autoscaling | Enable horizontal pod autoscaling addon | bool | `"true"` | no |
 | http\_load\_balancing | Enable httpload balancer addon. The addon allows whoever can create Ingress objects to expose an application to a public IP. Network policies or Gatekeeper policies should be used to verify that only authorized applications are exposed. | bool | `"true"` | no |
diff --git a/modules/safer-cluster-update-variant/main.tf b/modules/safer-cluster-update-variant/main.tf
@@ -150,4 +150,6 @@ module "gke" {
   enable_shielded_nodes = var.enable_shielded_nodes
 
   skip_provisioners = var.skip_provisioners
+
+  gce_pd_csi_driver = var.gce_pd_csi_driver
 }
diff --git a/modules/safer-cluster-update-variant/variables.tf b/modules/safer-cluster-update-variant/variables.tf
@@ -336,3 +336,9 @@ variable "pod_security_policy_config" {
     "enabled" = true
   }]
 }
+
+variable "gce_pd_csi_driver" {
+  type        = bool
+  description = "(Beta) Whether this cluster should enable the Google Compute Engine Persistent Disk Container Storage Interface (CSI) Driver."
+  default     = true
+}
diff --git a/modules/safer-cluster/README.md b/modules/safer-cluster/README.md
@@ -214,6 +214,7 @@ For simplicity, we suggest using `roles/container.admin` and
 | enable\_resource\_consumption\_export | Whether to enable resource consumption metering on this cluster. When enabled, a table will be created in the resource export BigQuery dataset to store resource consumption data. The resulting table can be joined with the resource usage table or with BigQuery billing export. | bool | `"true"` | no |
 | enable\_shielded\_nodes | Enable Shielded Nodes features on all nodes in this cluster. | bool | `"true"` | no |
 | enable\_vertical\_pod\_autoscaling | Vertical Pod Autoscaling automatically adjusts the resources of pods controlled by it | bool | `"false"` | no |
+| gce\_pd\_csi\_driver | (Beta) Whether this cluster should enable the Google Compute Engine Persistent Disk Container Storage Interface (CSI) Driver. | bool | `"true"` | no |
 | grant\_registry\_access | Grants created cluster-specific service account storage.objectViewer role. | bool | `"true"` | no |
 | horizontal\_pod\_autoscaling | Enable horizontal pod autoscaling addon | bool | `"true"` | no |
 | http\_load\_balancing | Enable httpload balancer addon. The addon allows whoever can create Ingress objects to expose an application to a public IP. Network policies or Gatekeeper policies should be used to verify that only authorized applications are exposed. | bool | `"true"` | no |
diff --git a/modules/safer-cluster/main.tf b/modules/safer-cluster/main.tf
@@ -150,4 +150,6 @@ module "gke" {
   enable_shielded_nodes = var.enable_shielded_nodes
 
   skip_provisioners = var.skip_provisioners
+
+  gce_pd_csi_driver = var.gce_pd_csi_driver
 }
diff --git a/modules/safer-cluster/variables.tf b/modules/safer-cluster/variables.tf
@@ -336,3 +336,9 @@ variable "pod_security_policy_config" {
     "enabled" = true
   }]
 }
+
+variable "gce_pd_csi_driver" {
+  type        = bool
+  description = "(Beta) Whether this cluster should enable the Google Compute Engine Persistent Disk Container Storage Interface (CSI) Driver."
+  default     = true
+}

Original file line number	Diff line number	Diff line change
`@@ -154,4 +154,6 @@ module "gke" {`
`154`	`154`	`enable_shielded_nodes = var.enable_shielded_nodes`
`155`	`155`
`156`	`156`	`skip_provisioners = var.skip_provisioners`
	`157`	`+`
	`158`	`+ gce_pd_csi_driver = var.gce_pd_csi_driver`
`157`	`159`	`}`
Original file line number	Diff line number	Diff line change
`@@ -150,4 +150,6 @@ module "gke" {`
`150`	`150`	`enable_shielded_nodes = var.enable_shielded_nodes`
`151`	`151`
`152`	`152`	`skip_provisioners = var.skip_provisioners`
	`153`	`+`
	`154`	`+ gce_pd_csi_driver = var.gce_pd_csi_driver`
`153`	`155`	`}`