/** * Copyright 2022 Google LLC * * Licensed under the Apache License, Version 2.0 (the "License"); * you may not use this file except in compliance with the License. * You may obtain a copy of the License at * * https://www.apache.org/licenses/LICENSE-2.0 * * Unless required by applicable law or agreed to in writing, software * distributed under the License is distributed on an "AS IS" BASIS, * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. * See the License for the specific language governing permissions and * limitations under the License. */ resource "google_gke_hub_membership" "membership" { provider = google-beta project = var.project_id membership_id = var.gke_cluster_name endpoint { gke_cluster { resource_link = "//container.googleapis.com/${var.gke_cluster_id}" } } } resource "google_gke_hub_feature" "configmanagement_acm_feature" { count = var.enable_config_management name = "configmanagement" project = var.project_id location = "global" provider = google-beta } resource "google_gke_hub_feature_membership" "feature_member" { provider = google-beta project = var.project_id location = "global" feature = "configmanagement" membership = google_gke_hub_membership.membership.membership_id configmanagement { version = "1.15.0" config_sync { source_format = "unstructured" git { sync_repo = "https://${var.git_user}:${var.github_token}@github.com/${var.git_org}/${var.acm_repo}.git" sync_branch = var.env policy_dir = "manifests" secret_type = "none" } } policy_controller { enabled = true template_library_installed = true referential_rules_enabled = true } } provisioner "local-exec" { command = "${path.module}/create_cluster_yamls.sh ${var.git_org} ${var.acm_repo} ${var.git_user} ${var.git_email} ${var.env} ${var.gke_cluster_name}" } depends_on = [ google_gke_hub_feature.configmanagement_acm_feature ] }