compliant-financial-infrastructure icon indicating copy to clipboard operation
compliant-financial-infrastructure copied to clipboard

Published 20 hours ago verified publisher icon finos

Create IaC for OCP+GCP

Open eddie-knight opened this issue 2 years ago • 8 comments

Feature Request

Description of Problem:

PR #235 has added a robust set of instructions for a compliant deployment of OCP on GCP. The next step for this is to add infrastructure as code to automate the process.

Potential Solutions:

We may want to create a new terraform module based on the documentation within #235

eddie-knight avatar Aug 12 '22 14:08 eddie-knight

We will be creating a new repo, and will use that repo's issue tracker for individual work items related to this effort

eddie-knight avatar Aug 22 '22 15:08 eddie-knight

  • [x] Create Terraform Module Template Repo
  • [ ] README to describe the structure of the repo.
  • [ ] Create modules (via template repo) for the infrastructure on GCP.
  • [ ] Create module (via template repo) for the OCP foundational administration.

devops-adeel avatar Aug 24 '22 11:08 devops-adeel

@AdrianHammond - I'd like to make you aware of this issue as discussed over Slack 👍🏻

mcleo-d avatar Aug 25 '22 11:08 mcleo-d

@AdrianHammond, would you care to update this issue with next steps (or a plan) to finalize the IaC for this effort?

Additional commenters are welcome as well :+1:

eddie-knight avatar Sep 23 '22 14:09 eddie-knight

Would it be worth initially aiming at creating a compliant GCP terraform module using our new terraform template repo, then once that is working make the OCP stuff depend on that?

thinkl33t avatar Sep 23 '22 14:09 thinkl33t

@AdrianHammond and @peter-thomas-db

It would be great to bring Deutsche Bank into the discussion on this piece of work as sponsor and champion.

Can you attend finos/compliant-financial-infrastructure#265 to discuss on the call?

James.

mcleo-d avatar Oct 06 '22 14:10 mcleo-d

Hey @devops-adeel 👋🏻

It would be great to get an update at finos/compliant-financial-infrastructure#276 seeing as you seem to be owning the tasks 😄

  • https://github.com/finos/compliant-financial-infrastructure/issues/253#issuecomment-1225581625

James.

mcleo-d avatar Oct 21 '22 11:10 mcleo-d

@AdrianHammond will provide a summary of the design, which will implement Ansible to orchestrate the sequential terraform processes.

eddie-knight avatar Oct 21 '22 14:10 eddie-knight

Following discussion with @eddie-knight @devops-adeel @ml4 it was agreed that TF was not correct tool to orchestrate install and customisation of OpenShift. Next steps to progress this issue:

  • [x] @AdrianHammond to discuss with Ansible SME on best approach to implement Ansible in CFI in a consumable/reusable way. Session arrange for 09/11.
  • [x] Create new rep for Ansible Playbooks, @AdrianHammond to discuss with CFIRIWG on 09/11.
  • [x] Issue finos/cfi-terraform-gcp-ocp#1 opened to rename / create repo for Ansible
  • [ ] Develop playbooks
  • [ ] Demo playbook to community
  • [ ] Discuss how playbook scan be brought into CFI CI

AdrianHammond avatar Oct 25 '22 15:10 AdrianHammond

Subsequent work is being tracked in finos/ansible-cfi-ocp#2 finos/ansible-cfi-ocp#3 and finos/ansible-cfi-ocp#4

eddie-knight avatar Dec 21 '22 16:12 eddie-knight