feat: EKS ClusterClass and Cluster example

The bases are included in the hack directory rather than pulling in
from external projects as we do for other providers because the EKS
CC support has not been released in CAPA yet. Once that has happened,
we can switch to the same strategy and use the upstream CC and Cluster
as the base for patching to create the CAREN CC/Cluster examples.

Author: jimmidyson

charts/cluster-api-runtime-extensions-nutanix/defaultclusterclasses/eks-cluster-class.yaml

@@ -0,0 +1,113 @@
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: ClusterClass
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: eks-quick-start
+spec:
+  controlPlane:
+    ref:
+      apiVersion: controlplane.cluster.x-k8s.io/v1beta2
+      kind: AWSManagedControlPlaneTemplate
+      name: eks-quick-start-control-plane
+  infrastructure:
+    ref:
+      apiVersion: infrastructure.cluster.x-k8s.io/v1beta2
+      kind: AWSManagedClusterTemplate
+      name: eks-quick-start
+  patches:
+  - external:
+      discoverVariablesExtension: eksclusterconfigvars-dv.cluster-api-runtime-extensions-nutanix
+      generateExtension: eksclusterv1configpatch-gp.cluster-api-runtime-extensions-nutanix
+    name: cluster-config
+  - external:
+      discoverVariablesExtension: eksworkerconfigvars-dv.cluster-api-runtime-extensions-nutanix
+      generateExtension: eksworkerv1configpatch-gp.cluster-api-runtime-extensions-nutanix
+    name: worker-config
+  - definitions:
+    - jsonPatches:
+      - op: add
+        path: /spec/template/spec/identityRef
+        value:
+          kind: AWSClusterControllerIdentity
+          name: default
+      selector:
+        apiVersion: controlplane.cluster.x-k8s.io/v1beta2
+        kind: AWSManagedControlPlaneTemplate
+        matchResources:
+          controlPlane: true
+    description: AWSClusterStaticIdentity identityRef to use when creating the cluster
+    name: identityRef
+  workers:
+    machineDeployments:
+    - class: default-worker
+      template:
+        bootstrap:
+          ref:
+            apiVersion: bootstrap.cluster.x-k8s.io/v1beta2
+            kind: EKSConfigTemplate
+            name: eks-quick-start-worker-configtemplate
+        infrastructure:
+          ref:
+            apiVersion: infrastructure.cluster.x-k8s.io/v1beta2
+            kind: AWSMachineTemplate
+            name: eks-quick-start-worker-machinetemplate
+    - class: system-worker
+      template:
+        bootstrap:
+          ref:
+            apiVersion: bootstrap.cluster.x-k8s.io/v1beta2
+            kind: EKSConfigTemplate
+            name: eks-quick-start-worker-configtemplate
+        infrastructure:
+          ref:
+            apiVersion: infrastructure.cluster.x-k8s.io/v1beta2
+            kind: AWSMachineTemplate
+            name: eks-quick-start-worker-machinetemplate
+---
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta2
+kind: AWSManagedClusterTemplate
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: eks-quick-start
+spec:
+  template:
+    spec: {}
+---
+apiVersion: controlplane.cluster.x-k8s.io/v1beta2
+kind: AWSManagedControlPlaneTemplate
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: eks-quick-start-control-plane
+spec:
+  template:
+    spec:
+      bootstrapSelfManagedAddons: false
+      kubeProxy:
+        disable: true
+      vpcCni:
+        disable: true
+---
+apiVersion: infrastructure.cluster.x-k8s.io/v1beta2
+kind: AWSMachineTemplate
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: eks-quick-start-worker-machinetemplate
+spec:
+  template:
+    spec:
+      instanceType: PLACEHOLDER
+      sshKeyName: ""
+---
+apiVersion: bootstrap.cluster.x-k8s.io/v1beta2
+kind: EKSConfigTemplate
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: eks-quick-start-worker-configtemplate
+spec:
+  template:
+    spec: {}

examples/capi-quick-start/eks-cluster.yaml

@@ -0,0 +1,120 @@
+apiVersion: v1
+data:
+  values.yaml: |-
+    cni:
+      exclusive: false
+    hubble:
+      enabled: true
+      tls:
+        auto:
+          enabled: true               # enable automatic TLS certificate generation
+          method: cronJob             # auto generate certificates using cronJob method
+          certValidityDuration: 60    # certificates validity duration in days (default 2 months)
+          schedule: "0 0 1 * *"       # schedule on the 1st day regeneration of each month
+      relay:
+        enabled: true
+        tls:
+          server:
+            enabled: true
+            mtls: true
+        image:
+          useDigest: false
+        priorityClassName: system-cluster-critical
+    image:
+      useDigest: false
+    operator:
+      image:
+        useDigest: false
+    certgen:
+      image:
+        useDigest: false
+    socketLB:
+      hostNamespaceOnly: true
+    envoy:
+      image:
+        useDigest: false
+    kubeProxyReplacement: true
+    k8sServiceHost: "{{ trimPrefix "https://" .Cluster.spec.controlPlaneEndpoint.host }}"
+    k8sServicePort: "{{ .Cluster.spec.controlPlaneEndpoint.port }}"
+    ipam:
+      mode: eni
+    enableIPv4Masquerade: false
+    eni:
+      enabled: true
+      awsReleaseExcessIPs: true
+    routingMode: native
+    endpointRoutes:
+      enabled: true
+kind: ConfigMap
+metadata:
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: Cluster
+metadata:
+  annotations:
+    preflight.cluster.caren.nutanix.com/skip: all
+  labels:
+    cluster.x-k8s.io/provider: eks
+  name: ${CLUSTER_NAME}
+spec:
+  topology:
+    class: eks-quick-start
+    controlPlane:
+      metadata:
+        annotations:
+          controlplane.cluster.x-k8s.io/skip-kube-proxy: ""
+    variables:
+    - name: clusterConfig
+      value:
+        addons:
+          clusterAutoscaler: {}
+          cni:
+            provider: Cilium
+            values:
+              sourceRef:
+                kind: ConfigMap
+                name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
+          csi:
+            defaultStorage:
+              provider: aws-ebs
+              storageClassConfig: default
+            providers:
+              aws-ebs:
+                storageClassConfigs:
+                  default: {}
+            snapshotController: {}
+          nfd: {}
+        eks:
+          region: us-west-2
+    - name: workerConfig
+      value:
+        eks:
+          instanceType: m5.2xlarge
+    version: ${KUBERNETES_VERSION}
+    workers:
+      machineDeployments:
+      - class: default-worker
+        metadata:
+          annotations:
+            cluster.x-k8s.io/cluster-api-autoscaler-node-group-max-size: "${WORKER_MACHINE_COUNT}"
+            cluster.x-k8s.io/cluster-api-autoscaler-node-group-min-size: "${WORKER_MACHINE_COUNT}"
+        name: md-0
+      - class: system-worker
+        metadata:
+          labels:
+            node-restriction.kubernetes.io/capi-controllers: ""
+        name: system
+        replicas: 1
+        variables:
+          overrides:
+          - name: workerConfig
+            value:
+              eks:
+                iamInstanceProfile: control-plane.cluster-api-provider-aws.sigs.k8s.io
+              taints:
+              - effect: NoSchedule
+                key: node-restriction.kubernetes.io/capi-controllers
+                value: "true"

hack/examples/bases/eks/cluster/cluster.yaml

@@ -0,0 +1,100 @@
+apiVersion: v1
+data:
+  values.yaml: |-
+    cni:
+      exclusive: false
+    hubble:
+      enabled: true
+      tls:
+        auto:
+          enabled: true               # enable automatic TLS certificate generation
+          method: cronJob             # auto generate certificates using cronJob method
+          certValidityDuration: 60    # certificates validity duration in days (default 2 months)
+          schedule: "0 0 1 * *"       # schedule on the 1st day regeneration of each month
+      relay:
+        enabled: true
+        tls:
+          server:
+            enabled: true
+            mtls: true
+        image:
+          useDigest: false
+        priorityClassName: system-cluster-critical
+    image:
+      useDigest: false
+    operator:
+      image:
+        useDigest: false
+    certgen:
+      image:
+        useDigest: false
+    socketLB:
+      hostNamespaceOnly: true
+    envoy:
+      image:
+        useDigest: false
+    kubeProxyReplacement: true
+    k8sServiceHost: "{{ trimPrefix "https://" .Cluster.spec.controlPlaneEndpoint.host }}"
+    k8sServicePort: "{{ .Cluster.spec.controlPlaneEndpoint.port }}"
+    ipam:
+      mode: eni
+    enableIPv4Masquerade: false
+    eni:
+      enabled: true
+      awsReleaseExcessIPs: true
+    routingMode: native
+    endpointRoutes:
+      enabled: true
+kind: ConfigMap
+metadata:
+  name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
+---
+apiVersion: cluster.x-k8s.io/v1beta1
+kind: Cluster
+metadata:
+  name: ${CLUSTER_NAME}
+  annotations:
+    preflight.cluster.caren.nutanix.com/skip: all
+spec:
+  topology:
+    class: eks-quick-start
+    version: ${KUBERNETES_VERSION}
+    variables:
+      - name: clusterConfig
+        value:
+          addons:
+            cni:
+              provider: Cilium
+              values:
+                sourceRef:
+                  name: ${CLUSTER_NAME}-cilium-cni-helm-values-template
+                  kind: ConfigMap
+      - name: workerConfig
+        value:
+          eks:
+            instanceType: m5.2xlarge
+    controlPlane:
+      metadata:
+        annotations:
+          controlplane.cluster.x-k8s.io/skip-kube-proxy: ""
+    workers:
+      machineDeployments:
+        - class: default-worker
+          name: md-0
+          replicas: ${WORKER_MACHINE_COUNT}
+        - class: system-worker
+          name: system
+          metadata:
+            labels:
+              node-restriction.kubernetes.io/capi-controllers: ""
+          replicas: 1
+          variables:
+            overrides:
+            - name: workerConfig
+              value:
+                taints:
+                  - effect: NoSchedule
+                    key: node-restriction.kubernetes.io/capi-controllers
+                    value: "true"
+                eks:
+                  iamInstanceProfile: "control-plane.cluster-api-provider-aws.sigs.k8s.io"

hack/examples/bases/eks/cluster/kustomization.yaml.tmpl

@@ -0,0 +1,36 @@
+# Copyright 2024 Nutanix. All rights reserved.
+# SPDX-License-Identifier: Apache-2.0
+
+apiVersion: kustomize.config.k8s.io/v1beta1
+kind: Kustomization
+
+resources:
+- cluster.yaml
+
+sortOptions:
+  order: fifo
+
+labels:
+- includeSelectors: false
+  pairs:
+    cluster.x-k8s.io/provider: eks
+
+patches:
+- target:
+    kind: Cluster
+  patch: |-
+    - op: "add"
+      path: "/spec/topology/class"
+      value: "eks-quick-start"
+- target:
+    kind: Cluster
+  path: ../../../patches/eks/initialize-variables.yaml
+- target:
+    kind: Cluster
+  path: ../../../patches/cluster-autoscaler.yaml
+- target:
+    kind: Cluster
+  path: ../../../patches/eks/csi.yaml
+- target:
+    kind: Cluster
+  path: ../../../patches/eks/config-var.yaml