Acasă Explorează Ajutor
Înregistrare Autentificare
z16
/
cicd_yamls
1
0
Bifurcare 0
Fisiere Probleme 0 Trageți solicitările 0 Wiki
Arbore: da6d14937f
Ramuri Etichete
cicd_yamls
/
terraform
/
tfs
/
workers.tf

workers.tf 4.2 KB
Istoric Crud

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143 
  1. resource "null_resource" "k3s_cleanup_worker1" {
    2. 

  2.   # SSH 登录到 worker 节点
    3. 

  3.   connection {
    4. 

  4.     type        = "ssh"
    5. 

  5.     host        = var.worker_ips[0]
    6. 

  6.     user        = "root"
    7. 

  7.     password    = var.worker_password
    8. 

  8.   }
    9. 

  9. 

  10.   provisioner "remote-exec" {
    11. 

  11.     inline = [
    12. 

  12.       "# Stop k3s-agent service if running",
    13. 

  13.       "systemctl stop k3s-agent 2>/dev/null || true",
    14. 

  14.       "# Kill any remaining k3s processes",
    15. 

  15.       "pkill -f k3s 2>/dev/null || true",
    16. 

  16.       "# Remove k3s data directory",
    17. 

  17.       "rm -rf /var/lib/rancher/k3s",
    18. 

  18.       "# Remove k3s-agent service file",
    19. 

  19.       "rm -f /etc/systemd/system/k3s-agent.service",
    20. 

  20.       "echo 'Cleanup completed on worker node 1'"
    21. 

  21.     ]
    22. 

  22.   }
    23. 

  23. }
    24. 

  24. 

  25. resource "null_resource" "k3s_cleanup_worker2" {
    26. 

  26.   connection {
    27. 

  27.     type        = "ssh"
    28. 

  28.     host        = var.worker_ips[1]
    29. 

  29.     user        = "root"
    30. 

  30.     password    = var.worker_password
    31. 

  31.   }
    32. 

  32. 

  33.   provisioner "remote-exec" {
    34. 

  34.     inline = [
    35. 

  35.       "# Stop k3s-agent service if running",
    36. 

  36.       "systemctl stop k3s-agent 2>/dev/null || true",
    37. 

  37.       "# Kill any remaining k3s processes",
    38. 

  38.       "pkill -f k3s 2>/dev/null || true",
    39. 

  39.       "# Remove k3s data directory",
    40. 

  40.       "rm -rf /var/lib/rancher/k3s",
    41. 

  41.       "# Remove k3s-agent service file",
    42. 

  42.       "rm -f /etc/systemd/system/k3s-agent.service",
    43. 

  43.       "echo 'Cleanup completed on worker node 2'"
    44. 

  44.     ]
    45. 

  45.   }
    46. 

  46. }
    47. 

  47. 

  48. resource "null_resource" "k3s_install_worker1" {
    49. 

  49.   depends_on = [null_resource.copy_token_to_workers, null_resource.k3s_cleanup_worker1]
    50. 

  50. 

  51.   connection {
    52. 

  52.     type        = "ssh"
    53. 

  53.     host        = var.worker_ips[0]
    54. 

  54.     user        = "root"
    55. 

  55.     password    = var.worker_password
    56. 

  56.   }
    57. 

  57. 

  58.   provisioner "remote-exec" {
    59. 

  59.     inline = [
    60. 

  60.       "if [ -f /usr/local/bin/k3s ]; then",
    61. 

  61.       "  echo 'k3s binary already exists, skipping download'",
    62. 

  62.       "else",
    63. 

  63.       "  wget -O /usr/local/bin/k3s ${var.k3s_download_url}",
    64. 

  64.       "  chmod +x /usr/local/bin/k3s",
    65. 

  65.       "fi",
    66. 

  66.       "TOKEN=$(cat /root/node-token)",
    67. 

  67.       "echo -e '\\033[32m--Install k3s-agent systemd service--\\033[0m'",
    68. 

  68.       # 注册 systemd 服务
    69. 

  69.       "echo '[Unit]
    70. 

  70. Description=Lightweight Kubernetes
    71. 

  71. Documentation=https://k3s.io
    72. 

  72. After=network-online.target
    73. 

  73. Wants=network-online.target
    74. 

  74. [Service]
    75. 

  75. Type=notify
    76. 

  76. ExecStart=/usr/local/bin/k3s agent --server https://${var.master_ip}:6443 --token $TOKEN --node-name worker-node-${replace(var.worker_ips[1], ".", "-")} --node-external-ip=${var.worker_ips[0]} --data-dir /var/lib/rancher/k3s
    77. 

  77. KillMode=process
    78. 

  78. Delegate=yes
    79. 

  79. LimitNOFILE=1048576
    80. 

  80. LimitNPROC=infinity
    81. 

  81. LimitCORE=infinity
    82. 

  82. TasksMax=infinity
    83. 

  83. TimeoutStartSec=0
    84. 

  84. Restart=always
    85. 

  85. RestartSec=5s
    86. 

  86. [Install]
    87. 

  87. WantedBy=multi-user.target' > /etc/systemd/system/k3s-agent.service",
    88. 

  88.       "systemctl daemon-reload",
    89. 

  89.       "systemctl enable --now k3s-agent",
    90. 

  90.       "echo -e '\\033[32m--k3s agent started successfully--\\033[0m'",
    91. 

  91.       "sleep 3",
    92. 

  92.     ]
    93. 

  93.   }
    94. 

  94. }
    95. 

  95. 

  96. 

  97. resource "null_resource" "k3s_install_worker2" {
    98. 

  98.   depends_on = [null_resource.copy_token_to_workers, null_resource.k3s_cleanup_worker2]
    99. 

  99. 

  100.   connection {
    101. 

  101.     type        = "ssh"
    102. 

  102.     host        = var.worker_ips[1]
    103. 

  103.     user        = "root"
    104. 

  104.     password    = var.worker_password
    105. 

  105.   }
    106. 

  106. 

  107.   provisioner "remote-exec" {
    108. 

  108.     inline = [
    109. 

  109.       "if [ -f /usr/local/bin/k3s ]; then",
    110. 

  110.       "  echo 'k3s binary already exists, skipping download'",
    111. 

  111.       "else",
    112. 

  112.       "  wget -O /usr/local/bin/k3s ${var.k3s_download_url}",
    113. 

  113.       "  chmod +x /usr/local/bin/k3s",
    114. 

  114.       "fi",
    115. 

  115.       "TOKEN=$(cat /root/node-token)",
    116. 

  116.       "echo -e '\\033[32m--Install k3s-agent systemd service--\\033[0m'",
    117. 

  117.       # 注册 systemd 服务
    118. 

  118.       "echo '[Unit]
    119. 

  119. Description=Lightweight Kubernetes
    120. 

  120. Documentation=https://k3s.io
    121. 

  121. After=network-online.target
    122. 

  122. Wants=network-online.target
    123. 

  123. [Service]
    124. 

  124. Type=notify
    125. 

  125. ExecStart=/usr/local/bin/k3s agent --server https://${var.master_ip}:6443 --token $TOKEN --node-name worker-node-${replace(var.worker_ips[1], ".", "-")} --node-external-ip=${var.worker_ips[1]} --data-dir /var/lib/rancher/k3s
    126. 

  126. KillMode=process
    127. 

  127. Delegate=yes
    128. 

  128. LimitNOFILE=1048576
    129. 

  129. LimitNPROC=infinity
    130. 

  130. LimitCORE=infinity
    131. 

  131. TasksMax=infinity
    132. 

  132. TimeoutStartSec=0
    133. 

  133. Restart=always
    134. 

  134. RestartSec=5s
    135. 

  135. [Install]
    136. 

  136. WantedBy=multi-user.target' > /etc/systemd/system/k3s-agent.service",
    137. 

  137.       "systemctl daemon-reload",
    138. 

  138.       "systemctl enable --now k3s-agent",
    139. 

  139.       "echo -e '\\033[32m--k3s agent started successfully--\\033[0m'",
    140. 

  140.       "sleep 3",
    141. 

  141.     ]
    142. 

  142.   }
    143. 

  143. }
    144.