Add terraforming-gcp pipeline

- Adds director and srt config templates [#160937306](https://www.pivotaltracker.com/story/show/160937306) Co-authored-by: Chris Dutra <[email protected]>
vmware-archive · Oct 2, 2018 · 06cd536 · 06cd536
1 parent 3c84325
commit 06cd536
Show file tree

Hide file tree

Showing 4 changed files with 120 additions and 0 deletions.
diff --git a/.envrc b/.envrc
@@ -0,0 +1 @@
+export PROJECT_DIR="${PWD}"
diff --git a/ci/assets/template/director-config.yml b/ci/assets/template/director-config.yml
@@ -0,0 +1,44 @@
+az-configuration:
+{{range .azs}}
+- name: {{.}}
+{{end}}
+director-configuration:
+  ntp_servers_string: 169.254.169.254
+iaas-configuration:
+  auth_json: {{ toJson (env "GCP_SERVICE_ACCOUNT_KEY") }}
+  default_deployment_tag: {{.vm_tag}}
+  project: {{.project}}
+network-assignment:
+  network:
+    name: {{.management_subnet_name}}
+  singleton_availability_zone:
+    name: {{index .azs 0}}
+networks-configuration:
+  icmp_checks_enabled: false
+  networks:
+  - name: {{.management_subnet_name}}
+    subnets:
+    - availability_zone_names:
+      {{range .azs}}
+      - {{.}}
+      {{end}}
+      cidr: {{index .management_subnet_cidrs 0}}
+      dns: 169.254.169.254
+      gateway: {{.management_subnet_gateway}}
+      iaas_identifier: {{.network_name}}/{{.management_subnet_name}}/{{.region}}
+      reserved_ip_ranges: {{cidrhost (index .management_subnet_cidrs 0) 0}}-{{cidrhost (index .management_subnet_cidrs 0) 4}}
+  - name: pas
+    subnets:
+    - availability_zone_names:
+      {{range .azs}}
+      - {{.}}
+      {{end}}
+      cidr: {{index .pas_subnet_cidrs 0}}
+      dns: 169.254.169.254
+      gateway: {{.pas_subnet_gateway}}
+      iaas_identifier: {{.network_name}}/{{.pas_subnet_name}}/{{.region}}
+      reserved_ip_ranges: {{cidrhost (index .pas_subnet_cidrs 0) 0}}-{{cidrhost (index .pas_subnet_cidrs 0) 4}}
+resource-configuration:
+  compilation:
+    instance_type:
+      id: xlarge.disk
diff --git a/ci/assets/template/srt-config.yml b/ci/assets/template/srt-config.yml
@@ -0,0 +1,66 @@
+---
+network-properties:
+  network:
+    name: pas
+  other_availability_zones:
+    {{range .azs}}
+    - name: {{.}}
+    {{end}}
+  singleton_availability_zone:
+    name: {{index .azs 0}}
+product-properties:
+  .cloud_controller.apps_domain:
+    value: {{.apps_domain}}
+  .cloud_controller.system_domain:
+    value: {{.sys_domain}}
+  .ha_proxy.skip_cert_verify:
+    value: true
+  .mysql_monitor.recipient_email:
+    value: [email protected]
+  .properties.credhub_key_encryption_passwords:
+    value:
+    - key:
+        secret: 1a2b3c4d5e6f7g8h9i0j
+      name: Key
+      primary: true
+      provider: internal
+  .properties.enable_service_discovery_for_apps:
+    value: true
+  .properties.haproxy_forward_tls:
+    value: disable
+  .properties.networking_poe_ssl_certs:
+    value:
+    - certificate:
+        cert_pem: |
+{{indent 10 .ssl_cert}}
+        private_key_pem: |
+{{indent 10 .ssl_private_key}}
+      name: Certificate
+  .properties.security_acknowledgement:
+    value: X
+  .properties.system_blobstore:
+    value: internal
+  .properties.tcp_routing:
+    value: enable
+  .properties.tcp_routing.enable.reservable_ports:
+    value: 1024-1123
+  .uaa.service_provider_key_credentials:
+    value:
+        cert_pem: |
+{{indent 10 .ssl_cert}}
+        private_key_pem: |
+{{indent 10 .ssl_private_key}}
+resource-config:
+  compute:
+    instances: 1
+  control:
+    elb_names:
+    - tcp:{{.ssh_lb_name}}
+  router:
+    elb_names:
+    - http:{{.web_lb_name}}
+    - tcp:{{.ws_router_pool}}
+    instances: 1
+  tcp_router:
+    elb_names:
+    - tcp:{{.tcp_router_pool}}
diff --git a/ci/configure b/ci/configure
@@ -0,0 +1,9 @@
+#!/bin/bash -eu
+
+main() {
+fly -t "ovoc" set-pipeline -p terraforming-gcp \
+  -c "${PROJECT_DIR}/ci/pipeline.yml" \
+  -l <(lpass show --notes terraforming-pipeline-creds)
+}
+
+main "$@"