Use google_gkehub_feature_membership

Use google_gkehub_feature_membership to provision ASM on clusters. Ensure that the cluster membership is refreshed on cluster recreation.
2023-01-18 14:56:12 +01:00
parent 1fe108b890
commit 720213593e
2 changed files with 15 additions and 20 deletions
--- a/modules/gke-hub/main.tf
+++ b/modules/gke-hub/main.tf
@@ -38,7 +38,7 @@ resource "google_gke_hub_membership" "default" {
  provider      = google-beta
  for_each      = var.clusters
  project       = var.project_id
-  membership_id = each.key
+  membership_id = reverse(split("/", each.value))[0] # forces re-enrollment of the cluster in the fleet in case when cluster is recreated
  endpoint {
    gke_cluster {
      resource_link = each.value
@@ -70,6 +70,20 @@ resource "google_gke_hub_feature" "default" {
  }
 }

+resource "google_gke_hub_feature_membership" "servicemesh" {
+  provider   = google-beta
+  for_each   = var.features.servicemesh ? var.clusters : {}
+  project    = var.project_id
+  location   = "global"
+  feature    = google_gke_hub_feature.default["servicemesh"].name
+  membership = google_gke_hub_membership.default[each.key].membership_id
+
+  mesh {
+    management    = "MANAGEMENT_AUTOMATIC"
+    control_plane = "AUTOMATIC"
+  }
+}
+
 resource "google_gke_hub_feature_membership" "default" {
  provider   = google-beta
  for_each   = local.cluster_cm_config