415e3caa97
update readmes clean up tf provider add readme and initial templates add initial pass at readmes more readme updates update various quickstarts finish cleaning up 101s more updates lots fo template updates add remaining more updates
36 lines
1.1 KiB
HCL
36 lines
1.1 KiB
HCL
# Define Kubernetes provider to use the AKS cluster
|
|
provider "kubernetes" {
|
|
host = "${azurerm_kubernetes_cluster.default.kube_config.0.host}"
|
|
|
|
client_certificate = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.client_certificate)}"
|
|
client_key = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.client_key)}"
|
|
cluster_ca_certificate = "${base64decode(azurerm_kubernetes_cluster.default.kube_config.0.cluster_ca_certificate)}"
|
|
}
|
|
|
|
# Create a service account for the Helm Tiller
|
|
resource "kubernetes_service_account" "tiller" {
|
|
metadata {
|
|
name = "tiller"
|
|
namespace = "kube-system"
|
|
}
|
|
}
|
|
|
|
# Grant cluster-admin rights to the Tiller Service Account
|
|
resource "kubernetes_cluster_role_binding" "tiller" {
|
|
metadata {
|
|
name = "${kubernetes_service_account.tiller.metadata.0.name}"
|
|
}
|
|
|
|
role_ref {
|
|
api_group = "rbac.authorization.k8s.io"
|
|
kind = "ClusterRole"
|
|
name = "cluster-admin"
|
|
}
|
|
|
|
subject {
|
|
kind = "ServiceAccount"
|
|
name = "${kubernetes_service_account.tiller.metadata.0.name}"
|
|
namespace = "kube-system"
|
|
}
|
|
}
|