r4f4
diff --git a/‎images/installer/Dockerfile.upi.ci‎
Lines changed: 6 additions & 0 deletions b/‎images/installer/Dockerfile.upi.ci‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎upi/vsphere/README.md‎
Lines changed: 77 additions & 2 deletions b/‎upi/vsphere/README.md‎
Lines changed: 77 additions & 2 deletions
diff --git a/‎upi/vsphere/lb/haproxy.erb.tmpl‎
Lines changed: 57 additions & 0 deletions b/‎upi/vsphere/lb/haproxy.erb.tmpl‎
Lines changed: 57 additions & 0 deletions
diff --git a/‎upi/vsphere/upi-destroy.ps1‎
Lines changed: 73 additions & 0 deletions b/‎upi/vsphere/upi-destroy.ps1‎
Lines changed: 73 additions & 0 deletions
@@ -37,6 +37,7 @@ RUN yum update -y && \
       unzip \
       openssh-clients \
       openssl \
+      powershell \
       python3-pyOpenSSL \
       python2-pyyaml \
       python3-pyyaml \
@@ -91,6 +92,11 @@ RUN mkdir /output && HOME=/output && \
     ibmcloud version && \
     ibmcloud plugin list
 
+# Install VMware plugin for powershell.  Create settings directory /output/.local/share/VMware/PowerCLI
+RUN pwsh -Command 'Install-Module VMware.PowerCLI -Force -Scope AllUsers' && \
+    pwsh -Command 'Install-Module -Name EPS -RequiredVersion 1.0 -Force -Scope AllUsers' && \
+    mkdir -p /output/.local/share/VMware/PowerCLI && chmod -R 777 /output/.local
+
 RUN chown 1000:1000 /output && chmod -R g=u "/output/.bluemix/"
 USER 1000:1000
 ENV PATH /bin
 
@@ -1,9 +1,84 @@
-# Pre-Requisites
+This project shows two ways to install an UPI cluster.  We will discuss how to install using one of these two techniques:
+- Terraform
+- PowerShell
+
+# Table of Contents
+- [PowerShell](#PowerShell)
+  - [Pre-Requisites](#pre-requisites)
+  - [PowerShell Setup](#powershell-setup)
+    - [VMware.PowerCLI](#vmwarepowercli)
+    - [EPS](#eps)
+  - [Script Configuration]
+  - [OpenShift Installation Configuration]()
+- [Terraform](#Terraform)
+  - [Pre-Requisites](#pre-requisites-1)
+  - [Build a Cluster](#build-a-cluster-1)
+
+# PowerShell
+This section will describe the process to generate the vSphere VMs using PowerShell and the supplied scripts in this module.
+
+## Pre-requisites
+* PowerShell
+* PowerShell VMware.PowerCLI Module
+* PowerShell EPS Module
+
+## PowerShell Setup
+
+PowerShell will need to have a couple of plugin installed in order for our script to work.  The plugins we need to install are VMware.PowerCLI and EPS.
+
+### VMware.PowerCLI
+
+To install the VMware.PowerCLI, you can run the following command:
+
+```shell
+pwsh -Command 'Install-Module VMware.PowerCLI -Force -Scope CurrentUser'
+```
+
+### EPS
+
+To install the EPS module, you can run the following command:
+
+```shell
+pwsh -Command 'Install-Module -Name EPS -RequiredVersion 1.0 -Force -Scope CurrentUser'
+```
+
+### Generating CLI Credentials
+
+The PowerShell scripts require that a credentials file be generated with the credentials to be used for generating the vSphere resources.  This does not have to be the credentials used by the OpenShift cluster via the install-config.yaml, but must have all permissions to create folders, tags, templates, and vms.  To generate the credentials files, run:
+
+```shell
+pwsh -command "\$User='<username>';\$Password=ConvertTo-SecureString -String '<password>' -AsPlainText -Force;\$Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList \$User, \$Password;\$Credential | Export-Clixml secrets/vcenter-creds.xml"
+```
+
+Be sure to modify `<username>` to be the username for vCenter and `<password>` to the your password.  The output of this needs to go into `secrets/vcenter-creds.xml`.  Make sure the secrets directory exists before running the credentials generation command above.
+
+## Script Configuration
+
+The PowerShell script provided by this project provides examples on how to do several aspects to creating a UPI cluster environment.  It is configurable to do as much or as little as you need.  For the CI build process, we will handle all install-config.yaml configuration, uploading of templates, and monitoring of installation progress.  This project can handle doing all that as well if configured appropriately.
+
+### Behavioral Configurations
+
+| Property            | Description                                                                                                                                                                                                                                                                                        |
+|---------------------|----------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|
+| createInstallConfig | Enable script to create install config based on configuration of variables.ps1                                                                                                                                                                                                                     |
+| downloadInstaller   | Enable script to download installer to be used.  If not downloading the installer, the installer must be placed in the same directory as this script.                                                                                                                                              |
+| uploadTemplateOva   | Enable script to upload OVA template to be used for all VM being created.                                                                                                                                                                                                                          |
+| generateIgnitions   | Enable script to generate ignition configs.  This is normally used when install-config.yaml is provided to script, but need script to generate the ignition configs for VMs.                                                                                                                       |
+| waitForComplete     | This option has the script step through the process of waiting for installation complete.  Most of this functionality is provided by `openshift-install wait-for`.  The script will will check for when api is ready, bootstrap complete, accept CSRs and then for all COs to be done installing.  |
+| delayVMStart        | This option has the script delay the start of the VMs after their creation.                                                                                                                                                                                                                        |
+
+## Build a Cluster
+
+# Terraform
+This section will walk you through generating a cluster using Terraform.
+
+<a id="terraform-pre-requisites"></a>
+## Pre-Requisites
 
 * terraform
 * jq
 
-# Build a Cluster
+## Build a Cluster
 
 1. Create an install-config.yaml.
 The machine CIDR for the dev cluster is 139.178.89.192/26.
 
@@ -0,0 +1,57 @@
+defaults
+  maxconn 20000
+  mode    tcp
+  log     /var/run/haproxy/haproxy-log.sock local0
+  option  dontlognull
+  retries 3
+  timeout http-request 10s
+  timeout queue        1m
+  timeout connect      10s
+  timeout client       86400s
+  timeout server       86400s
+  timeout tunnel       86400s
+
+frontend api-server
+    bind <%= $lb_ip_address %>:6443
+    default_backend api-server
+
+frontend machine-config-server
+    bind <%= $lb_ip_address %>:22623
+    default_backend machine-config-server
+
+frontend router-http
+    bind <%= $lb_ip_address %>:80
+    default_backend router-http
+
+frontend router-https
+    bind <%= $lb_ip_address %>:443
+    default_backend router-https
+
+backend api-server
+    option  httpchk GET /readyz HTTP/1.0
+    option  log-health-checks
+    balance roundrobin
+<% foreach ($addr in $api) { -%>
+    server <%= $addr %> <%= $addr %>:6443 weight 1 verify none check check-ssl inter 1s fall 2 rise 3
+<% } -%>
+
+backend machine-config-server
+    balance roundrobin
+<% foreach ($addr in $api) { -%>
+    server <%= $addr %> <%= $addr %>:22623 check
+<% } -%>
+
+backend router-http
+    balance source
+    mode tcp
+<% foreach ($addr in $ingress) { -%>
+    server <%= $addr %> <%= $addr %>:80 check
+<% } -%>
+
+backend router-https
+    balance source
+    mode tcp
+<% foreach ($addr in $ingress) { -%>
+    server <%= $addr %> <%= $addr %>:443 check
+<% } -%>
+
@@ -0,0 +1,73 @@
+#!/usr/bin/pwsh
+
+. .\variables.ps1
+
+$ErrorActionPreference = "Stop"
+
+# since we do not have ca for vsphere certs, we'll just set insecure
+Set-PowerCLIConfiguration -InvalidCertificateAction:Ignore -Confirm:$false | Out-Null
+$Env:GOVC_INSECURE = 1
+
+# Connect to vCenter
+Connect-VIServer -Server $vcenter -Credential (Import-Clixml $vcentercredpath)
+
+# Convert the installer metadata to a powershell object
+$metadata = Get-Content -Path ./metadata.json | ConvertFrom-Json
+
+# Get tag for all resources we created
+$tagCategory = Get-TagCategory -Name "openshift-$($metadata.infraID)"
+$tag = Get-Tag -Category $tagCategory -Name "$($metadata.infraID)"
+
+# Clean up all VMs
+$vms = Get-VM -Tag $tag
+foreach ($vm in $vms) {
+    if ($vm.PowerState -eq "PoweredOn") {
+        Write-Output "Stopping VM $vm"
+        Stop-VM -VM $vm -confirm:$false > $null
+    }
+    Write-Output "Removing VM $vm"
+    Remove-VM -VM $vm -DeletePermanently -confirm:$false
+}
+
+# Clean up all templates
+$templates = Get-TagAssignment -Tag $tag -Entity (Get-Template)
+foreach ($template in $templates) {
+    Write-Output "Removing template $($template.Entity)"
+    Remove-Template -Template $($template.Entity) -DeletePermanently -confirm:$false
+}
+
+# Clean up storage policy
+$storagePolicies = Get-SpbmStoragePolicy -Tag $tag
+
+foreach ($policy in $storagePolicies) {
+
+    $clusterInventory = @()
+    $splitResults = @($policy.Name -split "openshift-storage-policy-")
+
+    if ($splitResults.Count -eq 2) {
+        $clusterId = $splitResults[1]
+        if ($clusterId -ne "") {
+            Write-Host $clusterId
+            $clusterInventory = @(Get-Inventory -Name "$($clusterId)*" -ErrorAction Continue)
+
+            if ($clusterInventory.Count -eq 0) {
+                Write-Host "Removing policy: $($policy.Name)"
+                $policy | Remove-SpbmStoragePolicy -Confirm:$false
+            }
+            else {
+                Write-Host "not deleting: $($clusterInventory)"
+            }
+        }
+    }
+}
+
+# Clean up all folders
+$folders = Get-TagAssignment -Tag $tag -Entity (Get-Folder)
+foreach ($folder in $folders) {
+    Write-Output "Removing folder $($folder.Entity)"
+    Remove-Folder -Folder $($folder.Entity) -DeletePermanently -confirm:$false
+}
+
+# Clean up tags
+Remove-Tag -Tag $tag -confirm:$false
+Remove-TagCategory -Category $tagCategory -confirm:$false