wbyc/terraform-vsphere-resourcegroups

Fork 0

Go to file

Patrick de Ruiter 514136f018

Code Quality & Security Scan / TFLint (push) Successful in 18s

Details

Code Quality & Security Scan / Tfsec Security Scan (push) Successful in 25s

Details

Code Quality & Security Scan / Checkov Security Scan (push) Successful in 35s

Details

Code Quality & Security Scan / SonarQube Trigger (push) Successful in 33s

Details

Code Quality & Security Scan / Terraform Init (push) Successful in 59s

Details

Code Quality & Security Scan / Terraform Apply (push) Successful in 55s

Details

Add Terraform apply job with manual approval

- New terraform-apply job runs after terraform-init
- Requires manual approval via production environment gate
- Only runs on push to master branch
- Downloads plan file from MinIO
- Applies the exact plan that was reviewed
- Includes all necessary environment variables for Vault and vSphere

2025-11-02 01:45:38 +01:00

.gitea/workflows

Add Terraform apply job with manual approval

2025-11-02 01:45:38 +01:00

.gitignore

Initial commit: Terraform vSphere resource groups module

2025-11-01 06:18:59 +01:00

.tflint.hcl

Add TFLint configuration with Terraform best practices

2025-11-01 22:59:30 +01:00

backend.tf

Refactor Terraform init to use backend-config flags

2025-11-02 00:32:28 +01:00

CLAUDE.md

Added gitea action pipeline

2025-11-01 19:45:34 +01:00

data.tf

Fix all TFLint warnings

2025-11-01 23:02:03 +01:00

main.tf

Initial commit: Terraform vSphere resource groups module

2025-11-01 06:18:59 +01:00

outputs.tf

Initial commit: Terraform vSphere resource groups module

2025-11-01 06:18:59 +01:00

provider.tf

Add skip_tls_verify to Vault provider

2025-11-02 01:20:43 +01:00

README.md

Initial commit: Terraform vSphere resource groups module

2025-11-01 06:18:59 +01:00

SERVER_ASSIGNMENT.md

Added gitea action pipeline

2025-11-01 19:45:34 +01:00

sonar-project.properties

Fix SonarQube scan Java version mismatch

2025-11-01 20:36:15 +01:00

variables.tf

Fix all TFLint warnings

2025-11-01 23:02:03 +01:00

README.md

Terraform vSphere Resource Groups Module

This Terraform module manages vSphere resource pools (resource groups) with CPU/memory allocation controls and integrated tagging for organization and management.

Purpose

Creates and manages vSphere resource pools with configurable resource allocation policies, reservations, limits, and shares. Includes automated tagging for environment and resource group classification.

What It Does

Creates resource pools under vSphere cluster
Configures CPU reservations, limits, and shares
Configures memory reservations, limits, and shares
Creates tag categories for Environment and ResourceGroupType
Applies tags to resource pools for organization

Usage

module "vsphere_resource_groups" {
  source = "./terraform-vsphere-resourcegroups"

  datacenter = "DC1"
  cluster_name = "Cluster01"
  environment = "prod"

  role_id = var.vault_role_id
  secret_id = var.vault_secret_id

  resource_groups = {
    kubernetes = {
      name = "Kubernetes"
      cpu_reservation = 4000
      cpu_shares = "high"
      memory_reservation = 8192
      memory_shares = "high"
    }
    docker = {
      name = "Docker"
      cpu_shares = "normal"
      memory_shares = "normal"
    }
    infra = {
      name = "Infrastructure"
      cpu_shares = "low"
      memory_shares = "low"
    }
  }
}

Key Features

Resource Allocation: CPU and memory reservations, limits, shares
Shares Mapping: Automatic conversion of low/normal/high to vSphere values (500/1000/2000)
Tagging System: Environment and resource group type tags
Flexible Configuration: Optional parameters with sensible defaults
Expandable Resources: Allow resources to grow beyond reservations

Default Resource Groups

Kubernetes: For Kubernetes infrastructure
Docker: For Docker containers
Infra: For infrastructure services

Prerequisites

VMware vSphere with compute cluster
Vault with vSphere credentials
Terraform >= 0.13