Add all resources to local-dev Terraform code (#244)

onematchfox · web-flow · commit b211553b0a64 · 2023-04-07T10:44:18.000+02:00
diff --git a/.gitignore b/.gitignore
@@ -6,3 +6,6 @@ terraform-provider-argocd
 # Env variables settings
 /scripts/testacc
 /scripts/testacc_prepare_env
+
+# debug build
+__debug_bin
diff --git a/manifests/local-dev/.gitignore b/manifests/local-dev/.gitignore
@@ -1,4 +1,4 @@
 .terraform*
 terraform.tfstate*
 crash.log
-
+*-config
diff --git a/manifests/local-dev/application.tf b/manifests/local-dev/application.tf
@@ -0,0 +1,65 @@
+resource "argocd_application" "foo" {
+  metadata {
+    name      = "foo"
+    namespace = "argocd"
+    labels = {
+      acceptance = "true"
+    }
+    annotations = {
+      "this.is.a.really.long.nested.key" = "yes, really!"
+    }
+  }
+
+  spec {
+    project = argocd_project.foo.metadata[0].name
+
+    source {
+      repo_url        = "https://raw.githubusercontent.com/bitnami/charts/archive-full-index/bitnami"
+      chart           = "redis"
+      target_revision = "16.9.11"
+
+      helm {
+        release_name = "testing"
+
+        parameter {
+          name  = "image.tag"
+          value = "6.2.5"
+        }
+
+        parameter {
+          name  = "architecture"
+          value = "standalone"
+        }
+      }
+    }
+
+    destination {
+      server    = "https://kubernetes.default.svc"
+      namespace = "default"
+    }
+
+    sync_policy {
+      automated {
+        prune       = true
+        self_heal   = true
+        allow_empty = false
+      }
+
+      sync_options = [
+        "PrunePropagationPolicy=foreground",
+        "ApplyOutOfSyncOnly=true"
+      ]
+
+      retry {
+        limit = 5
+        backoff {
+          duration     = "3m"
+          factor       = "2"
+          max_duration = "30m"
+        }
+      }
+    }
+  }
+
+  # wait = true
+}
diff --git a/manifests/local-dev/cluster.tf b/manifests/local-dev/cluster.tf
@@ -0,0 +1,15 @@
+resource "kind_cluster" "secondary" {
+  name       = "secondary"
+  node_image = "kindest/node:v1.24.7"
+}
+
+resource "argocd_cluster" "kind_secondary" {
+  server = kind_cluster.secondary.endpoint
+
+  config {
+    tls_client_config {
+      ca_data = kind_cluster.secondary.cluster_ca_certificate
+      // insecure = true
+    }
+  }
+}
diff --git a/manifests/local-dev/project-token.tf b/manifests/local-dev/project-token.tf
@@ -0,0 +1,5 @@
+resource "argocd_project_token" "long" {
+  project     = argocd_project.foo.metadata.0.name
+  role        = "foo"
+  description = "long lived token"
+}
diff --git a/manifests/local-dev/project.tf b/manifests/local-dev/project.tf
@@ -1,20 +1,3 @@
-terraform {
-  required_providers {
-    argocd = {
-      source  = "oboukili/argocd"
-      version = "1.1.3"
-//      version = "0.4.8"
-    }
-  }
-}
-
-provider "argocd" {
-  server_addr = "127.0.0.1:8080"
-  insecure    = true
-  username    = "admin"
-  password    = "acceptancetesting"
-}
-
 resource "argocd_project" "foo" {
   metadata {
     name      = "foo"
@@ -35,29 +18,44 @@ resource "argocd_project" "foo" {
       server    = "https://kubernetes.default.svc"
       namespace = "default"
     }
+
     destination {
       server    = "https://kubernetes.default.svc"
       namespace = "foo"
     }
+
     cluster_resource_whitelist {
       group = "rbac.authorization.k8s.io"
       kind  = "ClusterRoleBinding"
     }
+
     cluster_resource_whitelist {
       group = "rbac.authorization.k8s.io"
       kind  = "ClusterRole"
     }
+
     namespace_resource_blacklist {
       group = "networking.k8s.io"
       kind  = "Ingress"
     }
+
     namespace_resource_whitelist {
       group = "*"
       kind  = "*"
     }
+
+    role {
+      name = "foo"
+      policies = [
+        "p, proj:foo:foo, applications, get, foo/*, allow",
+        "p, proj:foo:foo, applications, sync, foo/*, deny",
+      ]
+    }
+
     orphaned_resources {
       warn = true
     }
+
     sync_window {
       kind         = "allow"
       applications = ["api-*"]
@@ -67,6 +65,7 @@ resource "argocd_project" "foo" {
       schedule     = "10 1 * * *"
       manual_sync  = true
     }
+
     sync_window {
       kind         = "deny"
       applications = ["foo"]
diff --git a/manifests/local-dev/repository-credentials.tf b/manifests/local-dev/repository-credentials.tf
@@ -0,0 +1,5 @@
+resource "argocd_repository_credentials" "this" {
+  url      = "https://github.com/foo"
+  username = "foo"
+  password = "bar"
+}
diff --git a/manifests/local-dev/repository.tf b/manifests/local-dev/repository.tf
@@ -0,0 +1,3 @@
+resource "argocd_repository" "this" {
+  repo = "https://github.com/oboukili/terraform-provider-argocd"
+}
diff --git a/manifests/local-dev/versions.tf b/manifests/local-dev/versions.tf
@@ -0,0 +1,21 @@
+terraform {
+  required_providers {
+    argocd = {
+      source  = "oboukili/argocd"
+      version = ">= 5.0.0"
+    }
+    kind = {
+      source  = "unicell/kind"
+      version = "0.0.2-u2"
+    }
+  }
+}
+
+provider "argocd" {
+  server_addr = "127.0.0.1:8080"
+  insecure    = true
+  username    = "admin"
+  password    = "acceptancetesting"
+}
+
+provider "kind" {}

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+resource "argocd_repository" "this" {`
	`2`	`+ repo = "https://github.com/oboukili/terraform-provider-argocd"`
	`3`	`+}`