jprdonnelly/terraform-google-sql
1
0
Fork 0
mirror of synced 2025-12-19 18:05:44 -05:00
Code Issues Projects Releases Wiki Activity
Files
7a02a34de8a66cdae969b8695e862af1c28a3ea9
terraform-google-sql/modules/cloud-sql/main.tf
Rob Morgan 7a02a34de8 Terraform v0.14 update (#60)
2021-04-22 08:10:13 +08:00

332 lines
11 KiB
HCL
Raw Blame History

# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
# DEPLOY A CLOUD SQL CLUSTER
# This module deploys a Cloud SQL MySQL cluster. The cluster is managed by Google and automatically handles leader
# election, replication, failover, backups, patching, and encryption.
# ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
terraform {
# This module is now only being tested with Terraform 0.14.x. However, to make upgrading easier, we are setting
# 0.12.26 as the minimum version, as that version added support for required_providers with source URLs, making it
# forwards compatible with 0.14.x code.
required_version = ">= 0.12.26"
}
# ------------------------------------------------------------------------------
# PREPARE LOCALS
#
# NOTE: Due to limitations in terraform and heavy use of nested sub-blocks in the resource,
# we have to construct some of the configuration values dynamically
# ------------------------------------------------------------------------------
locals {
# Determine the engine type
is_postgres = replace(var.engine, "POSTGRES", "") != var.engine
is_mysql = replace(var.engine, "MYSQL", "") != var.engine
# Calculate actuals, so we get expected behavior for each engine
actual_binary_log_enabled = local.is_postgres ? false : var.mysql_binary_log_enabled
actual_availability_type = local.is_postgres && var.enable_failover_replica ? "REGIONAL" : "ZONAL"
actual_failover_replica_count = local.is_postgres ? 0 : var.enable_failover_replica ? 1 : 0
}
# ------------------------------------------------------------------------------
# CREATE THE MASTER INSTANCE
#
# NOTE: We have multiple google_sql_database_instance resources, based on
# HA and replication configuration options.
# ------------------------------------------------------------------------------
resource "google_sql_database_instance" "master" {
depends_on = [null_resource.dependency_getter]
provider = google-beta
name = var.name
project = var.project
region = var.region
database_version = var.engine
# Whether or not to allow Terraform to destroy the instance.
deletion_protection = var.deletion_protection
settings {
tier = var.machine_type
activation_policy = var.activation_policy
disk_autoresize = var.disk_autoresize
ip_configuration {
dynamic "authorized_networks" {
for_each = var.authorized_networks
content {
name = lookup(authorized_networks.value, "name", null)
value = authorized_networks.value.value
}
}
ipv4_enabled = var.enable_public_internet_access
private_network = var.private_network
require_ssl = var.require_ssl
}
dynamic "location_preference" {
for_each = var.master_zone == null ? [] : list(var.master_zone)
content {
zone = location_preference.value
}
}
backup_configuration {
binary_log_enabled = local.actual_binary_log_enabled
enabled = var.backup_enabled
start_time = var.backup_start_time
point_in_time_recovery_enabled = local.is_postgres ? var.postgres_point_in_time_recovery_enabled : null
}
maintenance_window {
day = var.maintenance_window_day
hour = var.maintenance_window_hour
update_track = var.maintenance_track
}
disk_size = var.disk_size
disk_type = var.disk_type
availability_type = local.actual_availability_type
dynamic "database_flags" {
for_each = var.database_flags
content {
name = database_flags.value.name
value = database_flags.value.value
}
}
user_labels = var.custom_labels
}
# Default timeouts are 10 minutes, which in most cases should be enough.
# Sometimes the database creation can, however, take longer, so we
# increase the timeouts slightly.
timeouts {
create = var.resource_timeout
delete = var.resource_timeout
update = var.resource_timeout
}
}
# ------------------------------------------------------------------------------
# CREATE A DATABASE
# ------------------------------------------------------------------------------
resource "google_sql_database" "default" {
depends_on = [google_sql_database_instance.master]
name = var.db_name
project = var.project
instance = google_sql_database_instance.master.name
charset = var.db_charset
collation = var.db_collation
}
resource "google_sql_user" "default" {
depends_on = [google_sql_database.default]
project = var.project
name = var.master_user_name
instance = google_sql_database_instance.master.name
# Postgres users don't have hosts, so the API will ignore this value which causes Terraform to attempt
# to recreate the user each time.
# See https://github.com/terraform-providers/terraform-provider-google/issues/1526 for more information.
host = local.is_postgres ? null : var.master_user_host
password = var.master_user_password
}
# ------------------------------------------------------------------------------
# SET MODULE DEPENDENCY RESOURCE
# This works around a terraform limitation where we can not specify module dependencies natively.
# See https://github.com/hashicorp/terraform/issues/1178 for more discussion.
# By resolving and computing the dependencies list, we are able to make all the resources in this module depend on the
# resources backing the values in the dependencies list.
# ------------------------------------------------------------------------------
resource "null_resource" "dependency_getter" {
provisioner "local-exec" {
command = "echo ${length(var.dependencies)}"
}
}
# ------------------------------------------------------------------------------
# CREATE THE FAILOVER REPLICA
# ------------------------------------------------------------------------------
resource "google_sql_database_instance" "failover_replica" {
count = local.actual_failover_replica_count
depends_on = [
google_sql_database_instance.master,
google_sql_database.default,
google_sql_user.default,
]
provider = google-beta
name = "${var.name}-failover"
project = var.project
region = var.region
database_version = var.engine
# The name of the instance that will act as the master in the replication setup.
master_instance_name = google_sql_database_instance.master.name
# Whether or not to allow Terraform to destroy the instance.
deletion_protection = var.deletion_protection
replica_configuration {
# Specifies that the replica is the failover target.
failover_target = true
}
settings {
crash_safe_replication = true
tier = var.machine_type
disk_autoresize = var.disk_autoresize
ip_configuration {
dynamic "authorized_networks" {
for_each = var.authorized_networks
content {
name = authorized_networks.value.name
value = authorized_networks.value.value
}
}
ipv4_enabled = var.enable_public_internet_access
private_network = var.private_network
require_ssl = var.require_ssl
}
dynamic "location_preference" {
for_each = var.mysql_failover_replica_zone == null ? [] : list(var.mysql_failover_replica_zone)
content {
zone = location_preference.value
}
}
disk_size = var.disk_size
disk_type = var.disk_type
dynamic "database_flags" {
for_each = var.database_flags
content {
name = database_flags.value.name
value = database_flags.value.value
}
}
user_labels = var.custom_labels
}
# Default timeouts are 10 minutes, which in most cases should be enough.
# Sometimes the database creation can, however, take longer, so we
# increase the timeouts slightly.
timeouts {
create = var.resource_timeout
delete = var.resource_timeout
update = var.resource_timeout
}
}
# ------------------------------------------------------------------------------
# CREATE THE READ REPLICAS
# ------------------------------------------------------------------------------
resource "google_sql_database_instance" "read_replica" {
count = var.num_read_replicas
depends_on = [
google_sql_database_instance.master,
google_sql_database_instance.failover_replica,
google_sql_database.default,
google_sql_user.default,
]
provider = google-beta
name = "${var.name}-read-${count.index}"
project = var.project
region = var.region
database_version = var.engine
# The name of the instance that will act as the master in the replication setup.
master_instance_name = google_sql_database_instance.master.name
# Whether or not to allow Terraform to destroy the instance.
deletion_protection = var.deletion_protection
replica_configuration {
# Specifies that the replica is not the failover target.
failover_target = false
}
settings {
tier = var.machine_type
disk_autoresize = var.disk_autoresize
ip_configuration {
dynamic "authorized_networks" {
for_each = var.authorized_networks
content {
name = authorized_networks.value.name
value = authorized_networks.value.value
}
}
ipv4_enabled = var.enable_public_internet_access
private_network = var.private_network
require_ssl = var.require_ssl
}
location_preference {
zone = element(var.read_replica_zones, count.index)
}
disk_size = var.disk_size
disk_type = var.disk_type
dynamic "database_flags" {
for_each = var.database_flags
content {
name = database_flags.value.name
value = database_flags.value.value
}
}
user_labels = var.custom_labels
}
# Read replica creation is initiated concurrently, but the provider creates
# the resources sequentially. Therefore we increase the timeouts considerably
# to allow successful creation of multiple read replicas without having to
# fear the operation timing out.
timeouts {
create = var.resource_timeout
delete = var.resource_timeout
update = var.resource_timeout
}
}
# ------------------------------------------------------------------------------
# CREATE A TEMPLATE FILE TO SIGNAL ALL RESOURCES HAVE BEEN CREATED
# ------------------------------------------------------------------------------
data "template_file" "complete" {
depends_on = [
google_sql_database_instance.master,
google_sql_database_instance.failover_replica,
google_sql_database_instance.read_replica,
google_sql_database.default,
google_sql_user.default,
]
template = true
}
Reference in New Issue View Git Blame Copy Permalink