# GKE cluster Autopilot module This module allows simplified creation and management of GKE Autopilot clusters. Some sensible defaults are set initially, in order to allow less verbose usage for most use cases. ## Example ### GKE Cluster ```hcl module "cluster-1" { source = "./fabric/modules/gke-cluster-autopilot" project_id = "myproject" name = "cluster-1" location = "europe-west1" vpc_config = { network = var.vpc.self_link subnetwork = var.subnet.self_link secondary_range_names = { pods = "pods" services = "services" } master_authorized_ranges = { internal-vms = "10.0.0.0/8" } master_ipv4_cidr_block = "192.168.0.0/28" } private_cluster_config = { enable_private_endpoint = true master_global_access = false } labels = { environment = "dev" } } # tftest modules=1 resources=1 inventory=basic.yaml ``` ### Cloud DNS This example shows how to [use Cloud DNS as a Kubernetes DNS provider](https://cloud.google.com/kubernetes-engine/docs/how-to/cloud-dns) for GKE Standard clusters. ```hcl module "cluster-1" { source = "./fabric/modules/gke-cluster-autopilot" project_id = var.project_id name = "cluster-1" location = "europe-west1" vpc_config = { network = var.vpc.self_link subnetwork = var.subnet.self_link secondary_range_names = { pods = "pods", services = "services" } } enable_features = { dns = { provider = "CLOUD_DNS" scope = "CLUSTER_SCOPE" domain = "gke.local" } } } # tftest modules=1 resources=1 inventory=dns.yaml ``` ### Backup for GKE This example shows how to [enable the Backup for GKE agent and configure a Backup Plan](https://cloud.google.com/kubernetes-engine/docs/add-on/backup-for-gke/concepts/backup-for-gke) for GKE Standard clusters. ```hcl module "cluster-1" { source = "./fabric/modules/gke-cluster-autopilot" project_id = var.project_id name = "cluster-1" location = "europe-west1" vpc_config = { network = var.vpc.self_link subnetwork = var.subnet.self_link secondary_range_names = { pods = "pods", services = "services" } } backup_configs = { enable_backup_agent = true backup_plans = { "backup-1" = { region = "europe-west-2" schedule = "0 9 * * 1" } } } } # tftest modules=1 resources=2 inventory=backup.yaml ``` ## Variables | name | description | type | required | default | |---|---|:---:|:---:|:---:| | [location](variables.tf#L106) | Autopilot cluster are always regional. | string | ✓ | | | [name](variables.tf#L141) | Cluster name. | string | ✓ | | | [project_id](variables.tf#L167) | Cluster project id. | string | ✓ | | | [vpc_config](variables.tf#L190) | VPC-level configuration. | object({…}) | ✓ | | | [backup_configs](variables.tf#L17) | Configuration for Backup for GKE. | object({…}) | | {} | | [description](variables.tf#L33) | Cluster description. | string | | null | | [enable_addons](variables.tf#L39) | Addons enabled in the cluster (true means enabled). | object({…}) | | {…} | | [enable_features](variables.tf#L60) | Enable cluster-level features. Certain features allow configuration. | object({…}) | | {…} | | [issue_client_certificate](variables.tf#L94) | Enable issuing client certificate. | bool | | false | | [labels](variables.tf#L100) | Cluster resource labels. | map(string) | | null | | [maintenance_config](variables.tf#L112) | Maintenance window configuration. | object({…}) | | {…} | | [min_master_version](variables.tf#L135) | Minimum version of the master, defaults to the version of the most recent official release. | string | | null | | [node_locations](variables.tf#L146) | Zones in which the cluster's nodes are located. | list(string) | | [] | | [private_cluster_config](variables.tf#L153) | Private cluster configuration. | object({…}) | | null | | [release_channel](variables.tf#L172) | Release channel for GKE upgrades. | string | | null | | [service_account](variables.tf#L178) | The Google Cloud Platform Service Account to be used by the node VMs created by GKE Autopilot. | string | | null | | [tags](variables.tf#L184) | Network tags applied to nodes. | list(string) | | null | ## Outputs | name | description | sensitive | |---|---|:---:| | [ca_certificate](outputs.tf#L17) | Public certificate of the cluster (base64-encoded). | ✓ | | [cluster](outputs.tf#L23) | Cluster resource. | ✓ | | [endpoint](outputs.tf#L29) | Cluster endpoint. | | | [id](outputs.tf#L34) | Cluster ID. | | | [location](outputs.tf#L39) | Cluster location. | | | [master_version](outputs.tf#L44) | Master version. | | | [name](outputs.tf#L49) | Cluster name. | | | [notifications](outputs.tf#L54) | GKE PubSub notifications topic. | | | [self_link](outputs.tf#L59) | Cluster self link. | ✓ | | [workload_identity_pool](outputs.tf#L65) | Workload identity pool. | |