replace kubernetes_namespace and kubernetes_secret with helm charts

Author: Friz-zy

modules/grafana/main.tf

@@ -8,7 +8,7 @@ locals {
         enabled: true
         size: 1Gi
       admin:
-        existingSecret: "${kubernetes_secret.grafana_admin_credentials.metadata[0].name}"
+        existingSecret: "grafana-admin-credentials"
         userKey: username
         passwordKey: password
     EOT
@@ -20,117 +20,37 @@ resource "random_password" "grafana_admin_password" {
   special          = true
 }
 
-data "kubernetes_namespace" "grafana" {
-  metadata {
-    name = var.namespace
-  }
-}
-
-resource "kubernetes_namespace" "grafana" {
-  count = var.create_namespace && ! (length(data.kubernetes_namespace.grafana) > 0) ? 1 : 0
-
-  metadata {
-    name = var.namespace
-  }
-}
-
-resource "kubernetes_secret" "grafana_admin_credentials" {
-
-  depends_on = [
-    kubernetes_namespace.grafana
-  ]
-
-  metadata {
-    generate_name = "grafana-admin-credentials"
-    namespace     = var.namespace
-  }
-
-  data = {
-    username = var.admin_user
-    password = local.admin_password
-  }
-}
-
-resource "kubernetes_secret" "grafana_operator_integration_credentials" {
-  count = var.grafana_operator_integration == true ? 1 : 0
-
-  metadata {
-    generate_name = "grafana-${var.namespace}-integration-credentials"
-    namespace     = var.grafana_operator_namespace
-  }
-
-  data = {
-    username = var.admin_user
-    password = local.admin_password
-  }
-}
-
-# https://grafana.github.io/grafana-operator/docs/grafana/#external-grafana-instances
-# resource "kubernetes_manifest" "grafana_operator_integration" {
-#   count = var.grafana_operator_integration == true ? 1 : 0
-# 
-#   manifest = {
-#     apiVersion = "grafana.integreatly.org/v1beta1"
-#     kind = "Grafana"
-#     metadata = {
-#       name = "grafana-${var.namespace}"
-#       namespace = var.namespace
-#       labels = {
-#         dashboards = "grafana"
-#       }
-#     }
-#     spec = {
-#       external = {
-#         url = "http://${module.grafana.name}.${module.grafana.namespace}.svc.cluster.local"
-#         adminPassword = {
-#           name = "${kubernetes_secret.grafana_operator_integration_credentials[0].metadata[0].name}"
-#           key = "password"
-#         }
-#         adminUser = {
-#           name = "${kubernetes_secret.grafana_operator_integration_credentials[0].metadata[0].name}"
-#           key = "username"
-#         }
-#       }
-#     }
-#   }
-# }
-
-# https://grafana.github.io/grafana-operator/docs/grafana/#external-grafana-instances
 module "kubernetes_manifests" {
   source = "../kubernetes-manifests"
-  count = var.grafana_operator_integration == true ? 1 : 0
 
-#   depends_on = [
-#     module.grafana,
-#     kubernetes_secret.grafana_operator_integration_credentials
-#   ]
-
-  name          = "grafana-${var.namespace}-integration"
-  namespace     = var.grafana_operator_namespace
+  create        = var.create
+  name          = "grafana-${var.namespace}-manifests"
+  namespace     = var.namespace
   tags          = var.tags
 
   values = [
     <<-EOT
     resources:
-      - apiVersion: "grafana.integreatly.org/v1beta1"
-        kind: "Grafana"
+      - kind: Secret
+        apiVersion: v1
         metadata:
-          name: "grafana-${var.namespace}"
+          name: "grafana-admin-credentials"
           namespace: "${var.namespace}"
-          labels:
-            dashboards: "grafana"
-        spec:
-          external:
-            url: "http://${module.grafana.name}.${module.grafana.namespace}.svc.cluster.local"
-            adminPassword:
-              name: "${kubernetes_secret.grafana_operator_integration_credentials[0].metadata[0].name}"
-              key: "password"
-            adminUser:
-              name: "${kubernetes_secret.grafana_operator_integration_credentials[0].metadata[0].name}"
-              key: "username"
+        stringData:
+          username: "${var.admin_user}"
+          password: "${local.admin_password}"
+        type: Opaque
+      - kind: Secret
+        apiVersion: v1
+        metadata:
+          name: "grafana-admin-credentials"
+          namespace: "${var.namespace}"
+        stringData:
+          username: "${var.admin_user}"
+          password: "${local.admin_password}"
+        type: Opaque
     EOT
   ]
-
 }
 
 module "grafana" {
@@ -201,3 +121,44 @@ module "grafana" {
   policy_path = var.policy_path
   policy_description = var.policy_description
 }
+
+# https://grafana.github.io/grafana-operator/docs/grafana/#external-grafana-instances
+module "grafana_operator_datasource" {
+  source = "../kubernetes-manifests"
+  count = var.grafana_operator_integration == true ? 1 : 0
+
+  name          = "grafana-${var.namespace}-integration"
+  namespace     = var.grafana_operator_namespace
+  tags          = var.tags
+
+  values = [
+    <<-EOT
+    resources:
+      - kind: Secret
+        apiVersion: v1
+        metadata:
+          name: "grafana-${var.namespace}-integration-credentials"
+          namespace: "${var.grafana_operator_namespace}"
+        stringData:
+          username: "${var.admin_user}"
+          password: "${local.admin_password}"
+        type: Opaque
+      - apiVersion: "grafana.integreatly.org/v1beta1"
+        kind: "Grafana"
+        metadata:
+          name: "grafana-${var.namespace}"
+          namespace: "${var.namespace}"
+          labels:
+            dashboards: "grafana"
+        spec:
+          external:
+            url: "http://${module.grafana.name}.${module.grafana.namespace}.svc.cluster.local"
+            adminPassword:
+              name: "grafana-${var.namespace}-integration-credentials"
+              key: "password"
+            adminUser:
+              name: "grafana-${var.namespace}-integration-credentials"
+              key: "username"
+    EOT
+  ]
+}

modules/kubernetes-manifests/main.tf

@@ -4,6 +4,7 @@ module "kubernetes_manifests" {
 
   chart = "${path.module}/chart"
 
+  create = var.create
   tags = var.tags
   create_release = var.create_release
   name = var.name

modules/kubernetes-manifests/variables.tf

@@ -1,3 +1,9 @@
+variable "create" {
+  description = "Controls if resources should be created (affects all resources)"
+  type        = bool
+  default     = true
+}
+
 variable "tags" {
   description = "A map of tags to add to all resources"
   type        = map(string)