Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Limit external-dns to exactly one zone #82

Merged
merged 63 commits into from
Mar 22, 2022
Merged

Limit external-dns to exactly one zone #82

Changes from 1 commit
Commits
Show all changes
63 commits
Select commit Hold shift + click to select a range
95671e8
fix: "type -p" is not available in /bin/sh
mogul Mar 2, 2022
dfb0a96
fix: -p is not the correct flag
nickumia-reisys Mar 2, 2022
c3f782f
undo: switch back to using bash, not sh
nickumia-reisys Mar 2, 2022
0d2dd40
update: use non-ancient external-dns Helm chart
mogul Mar 2, 2022
09ba6a3
fix: limit external-dns syncing to just zone IDs associated with this…
mogul Mar 2, 2022
43dfd6f
cleanup: remove redundant/unused external-dns configuration
mogul Mar 2, 2022
d96b883
update: switch to the official external-dns Helm chart
mogul Mar 2, 2022
450d3a6
doc: add providers/* to local iteration docs for modules
mogul Mar 2, 2022
4557eb2
fix: extraArgs is a list, not a map
nickumia-reisys Mar 2, 2022
189acb9
rework: convert heredoc to yamlencode
nickumia-reisys Mar 2, 2022
3bb9c59
fix: curly braces were not being properly escaped
nickumia-reisys Mar 2, 2022
2ab4c27
fix: pass AWS_DEFAULT_REGION as environment variable
nickumia-reisys Mar 2, 2022
30b0b67
new: default to using nginx ingress
nickumia-reisys Mar 2, 2022
386aedb
fix: nginx ingress helm chart is already creating the class
nickumia-reisys Mar 2, 2022
07ebb77
update: poll upto 10 mins for DNS to resolve
nickumia-reisys Mar 2, 2022
25af797
fix: don't over-escape the fqdnTemplate
mogul Mar 3, 2022
5b279c2
fix: wait for DNS resolution and ingress response separately
mogul Mar 3, 2022
8785604
cleanup: remove unnecessary flag
mogul Mar 3, 2022
bb7d728
fix: use a heredoc to specify a subdomain for the text fixture
mogul Mar 3, 2022
54452fe
fix: better test
mogul Mar 3, 2022
3d49e96
todo: fix this test in the future
nickumia-reisys Mar 3, 2022
95864b5
add encryption config to ebs
FuhuXia Feb 28, 2022
8549363
new: increase vpc cidr range
nickumia-reisys Mar 8, 2022
41abff5
fix: VPCs must be betwee 16/24 bits long for network
nickumia-reisys Mar 8, 2022
51c3ae5
fix: brush up on my cidr range math
nickumia-reisys Mar 8, 2022
a24431b
refactor: use the pre-existing k8s admin role for the namespace-admin
mogul Mar 9, 2022
0750828
refactor: logging code is split into AWS and k8s resources
mogul Mar 9, 2022
f77d57c
refactor: k8s admin account will be created in a separate module from…
mogul Mar 9, 2022
dfbb249
refactor: split external-dns into aws- and k8s-specific submodules
mogul Mar 9, 2022
884ff25
lint: remove stray comment
mogul Mar 9, 2022
a249d5f
refactor: rename modules to better indicate their purpose
mogul Mar 9, 2022
906748e
fix: add required_providers for provision-k8s
mogul Mar 9, 2022
abdefbd
refactor: sort variable inputs alphabetically
mogul Mar 9, 2022
3db20b7
refactor: rename module.provision -> module.provision-aws to match th…
mogul Mar 9, 2022
7e5a828
fix: connect provision-aws outputs to provision-k8s inputs
mogul Mar 9, 2022
7bf2395
refactor: persistent-storage.tf into provision-aws and provision-k8s …
mogul Mar 9, 2022
cbca20a
refactor: remove the need for the aws provider in the bind module
mogul Mar 10, 2022
a5a9faf
try: see if we can "reconnect" module.provision-aws to state by keepi…
mogul Mar 10, 2022
095d5ab
lint: remove unused resource
mogul Mar 10, 2022
4db3170
refactor: name the module for the directory it's using
mogul Mar 12, 2022
42847ac
doc: comment on where the subnets come from
mogul Mar 12, 2022
5a6eccc
refactor: abstract variable usage via locals
mogul Mar 15, 2022
8c115dc
refactor: rename files that will be linked into provision-aws
mogul Mar 15, 2022
5f70ebe
feat: add a provision-aws-local way to define the locals for provisio…
mogul Mar 15, 2022
db95a47
doc: adjust setup commands to allow for relative symlinks
mogul Mar 15, 2022
499cad9
fix: xlarge instances aren't available in us-west-2d, so skip that AZ
mogul Mar 16, 2022
4750d57
fix: the service-definition explicitly includes/excludes files based …
mogul Mar 16, 2022
cfa5ad7
cleanup: ran `terraform fmt`
mogul Mar 16, 2022
1f16d95
cleanup: indent to make scanning visually for filename/directory chan…
mogul Mar 16, 2022
ca81f25
fix: "admin" is a ClusterRole
mogul Mar 16, 2022
5ca6769
refactor: ran shellcheck on the file
mogul Mar 17, 2022
a4888ab
fix: add test that waits for DNS resolution of the expected domain to…
mogul Mar 17, 2022
e2e81e8
fix: turn off verbose output now that the test is working
mogul Mar 17, 2022
8b7c4fd
fix: increase the time to wait for DNS resolution to succeed
mogul Mar 17, 2022
440a12f
fix: leave terminals in a usable state after tests end
mogul Mar 18, 2022
b1be203
fix: cleanup stray output from the 60s socket closing test
mogul Mar 18, 2022
aa082e0
fix: no DNS provider is better than another; just wait longer
mogul Mar 18, 2022
db09ae1
fix: avoid naming collisions when you re-attempt a GitHub Action
mogul Mar 18, 2022
aad9c51
fix: ensure that domain names don't end with a '-'
mogul Mar 18, 2022
6acc307
fix: stty sane doesn't work in a pty
mogul Mar 18, 2022
88afd62
enh: clue people in to when they can play 2048 earlier
mogul Mar 18, 2022
6f41773
fix: wait up to 600 seconds for DNSSEC DS records to propagate
mogul Mar 18, 2022
b24aa0b
debt: disable flaky DNSSEC validation test
mogul Mar 22, 2022
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
2 changes: 1 addition & 1 deletion terraform/modules/provision/main.tf
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -16,7 +16,7 @@
# can to avoid that.
resource "null_resource" "prerequisite_binaries_present" {
provisioner "local-exec" {
interpreter = ["/bin/sh", "-c"]
interpreter = ["/bin/bash", "-c"]
command = "type -p aws-iam-authenticator git helm kubectl"
}
}