zecfoundation
/
cloud-foundation-fabric
mirror of https://github.com/ZcashFoundation/cloud-foundation-fabric.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
cloud-foundation-fabric/modules/__experimental/cloud-function-scheduled/main.tf

135 lines
4.3 KiB
HCL
Raw Blame History

/**
* Copyright 2020 Google LLC
*
* Licensed under the Apache License, Version 2.0 (the "License");
* you may not use this file except in compliance with the License.
* You may obtain a copy of the License at
*
* http://www.apache.org/licenses/LICENSE-2.0
*
* Unless required by applicable law or agreed to in writing, software
* distributed under the License is distributed on an "AS IS" BASIS,
* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
* See the License for the specific language governing permissions and
* limitations under the License.
*/
locals {
bucket = (
var.bucket_name != null
? var.bucket_name
: google_storage_bucket.bucket[0].name
)
job_data = (
var.schedule_config.pubsub_data == null || var.schedule_config.pubsub_data == ""
? var.name
: var.schedule_config.pubsub_data
)
prefixes = (
var.prefixes == null
? {}
: {
for k, v in var.prefixes :
k => v != null && v != "" ? "${v}-${var.name}" : var.name
}
)
service_account = "serviceAccount:${google_service_account.service_account.email}"
}
###############################################################################
# Scheduler / PubSub #
###############################################################################
resource "google_pubsub_topic" "topic" {
project = var.project_id
name = lookup(local.prefixes, "topic", var.name)
}
resource "google_cloud_scheduler_job" "job" {
count = var.schedule_config.schedule == null ? 0 : 1
project = var.project_id
region = var.region
name = lookup(local.prefixes, "job", var.name)
schedule = var.schedule_config.schedule
time_zone = var.schedule_config.time_zone
pubsub_target {
attributes = {}
topic_name = google_pubsub_topic.topic.id
data = base64encode(local.job_data)
}
}
###############################################################################
# Cloud Function service account and IAM #
###############################################################################
resource "google_service_account" "service_account" {
project = var.project_id
account_id = lookup(local.prefixes, "service_account", var.name)
display_name = "Terraform-managed"
}
resource "google_project_iam_member" "service_account" {
for_each = toset(var.service_account_iam_roles)
project = var.project_id
role = each.value
member = local.service_account
}
###############################################################################
# Cloud Function and GCS code bundle #
###############################################################################
resource "google_cloudfunctions_function" "function" {
project = var.project_id
region = var.region
name = lookup(local.prefixes, "function", var.name)
description = "Terraform managed."
runtime = var.function_config.runtime
available_memory_mb = var.function_config.memory
max_instances = var.function_config.instances
timeout = var.function_config.timeout
entry_point = var.function_config.entry_point
environment_variables = var.environment_variables
service_account_email = google_service_account.service_account.email
# source_repository {
# url = var.source_repository_url
# }
event_trigger {
event_type = "providers/cloud.pubsub/eventTypes/topic.publish"
resource = google_pubsub_topic.topic.id
}
source_archive_bucket = local.bucket
source_archive_object = google_storage_bucket_object.bundle.name
}
resource "google_storage_bucket" "bucket" {
count = var.bucket_name == null ? 1 : 0
project = var.project_id
name = lookup(local.prefixes, "bucket", var.name)
lifecycle_rule {
action {
type = "Delete"
}
condition {
age = "30"
}
}
}
resource "google_storage_bucket_object" "bundle" {
name = "bundle-${data.archive_file.bundle.output_md5}.zip"
bucket = local.bucket
source = data.archive_file.bundle.output_path
}
data "archive_file" "bundle" {
type = "zip"
source_dir = var.bundle_config.source_dir
output_path = var.bundle_config.output_path
}
Reference in New Issue View Git Blame Copy Permalink